cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2016
Exécuté par Alexandre (administrateur) sur PC-ALEX (12-09-2016 13:28:38)
Exécuté depuis C:\Users\Alexandre\Desktop
Profils chargés: Alexandre (Profils disponibles: Alexandre & Alexandre_2)
Platform: Windows 10 Home Version 1511 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2016\bdagent.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1608.2213.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\NetworkUXBroker.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.XboxApp_19.21.7006.0_x64__8wekyb3d8bbwe\XboxApp.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-18] (Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-10-16] (Apple Inc.)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\Run: [Dropbox Update] => C:\Users\Alexandre\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-17] (Dropbox, Inc.)
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\Run: [Bitdefender Agent Wallet] => C:\Program Files\Bitdefender\Bitdefender 2016\bdwtxag.exe [1450520 2016-06-29] (Bitdefender)
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8551848 2015-10-19] (Piriform Ltd)
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-05-30] (Disc Soft Ltd)
HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\DropboxExt64.42.dll [2016-08-30] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => Pas de fichier
Startup: C:\Users\Alexandre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-09-05]
ShortcutTarget: Dropbox.lnk -> C:\Users\Alexandre\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a97c8b81-eee4-4764-9a48-f5b5de2996fe}: [DhcpNameServer] 192.168.10.254
Tcpip\..\Interfaces\{d0c10a88-8bb3-4c31-9c3d-2dacba9ffcb4}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3198640613-2510851431-658617093-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-3198640613-2510851431-658617093-1001 -> DefaultScope {8CA72F4A-F6B1-49C0-BA9E-8FDFC148CDF4} URL =
SearchScopes: HKU\S-1-5-21-3198640613-2510851431-658617093-1001 -> {8CA72F4A-F6B1-49C0-BA9E-8FDFC148CDF4} URL =
SearchScopes: HKU\S-1-5-21-3198640613-2510851431-658617093-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-07-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-07-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-23] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default
FF Homepage: hxxps://duckduckgo.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-08-03] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-08-03] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-16] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-03] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-07-28] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3198640613-2510851431-658617093-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Alexandre\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS)
FF Extension: (AdBlocker Ultimate) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\adblockultimate@adblockultimate.net.xpi [2016-06-25]
FF Extension: (Firefox Hotfix) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-09]
FF Extension: (Smart HTTPS) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\jid0-oFwt2ZcakHhkFl7Kp4lJn@jetpack.xpi [2016-09-05]
FF Extension: (AdBlock for YouTube™) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2016-06-30]
FF Extension: (DuckDuckGo Plus) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2016-09-05]
FF Extension: (uBlock Origin) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\uBlock0@raymondhill.net.xpi [2016-09-09]
FF Extension: (FT DeepDark) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2016-08-26]
FF Extension: (Adblock Plus) - C:\Users\Alexandre\AppData\Roaming\Mozilla\Firefox\Profiles\uzsbg8my.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-03]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext [2016-04-26] [non signé]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2016\bdtbext
FF HKU\S-1-5-21-3198640613-2510851431-658617093-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi => non trouvé(e)

Chrome:
=======
CHR Profile: C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-24]
CHR Extension: (Google Docs) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-24]
CHR Extension: (Google Drive) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-19]
CHR Extension: (YouTube) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-19]
CHR Extension: (Recherche Google) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-10]
CHR Extension: (Google Sheets) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-24]
CHR Extension: (Google Docs hors connexion) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-19]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-18]
CHR Extension: (Gmail) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-10]
CHR Extension: (Chrome Media Router) - C:\Users\Alexandre\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-09]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2015-03-27] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3189488 2016-07-05] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-05-30] (Disc Soft Ltd)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-09-30] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [950200 2016-05-24] (Bitdefender)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2016\updatesrv.exe [156016 2016-06-29] (Bitdefender)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2016\vsserv.exe [1693104 2016-06-29] (Bitdefender)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1603264 2016-08-24] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [850464 2016-08-24] (BitDefender)
S3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [173312 2015-03-27] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7549616 2014-02-25] (Broadcom Corporation)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-29] (BitDefender LLC)
S4 BDVEDISK; C:\Windows\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-11-05] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-08-09] (Disc Soft Ltd)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [182936 2015-12-16] (BitDefender LLC)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [886528 2015-07-22] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [761600 2015-06-24] (Realsil Semiconductor Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [51368 2015-05-11] (Synaptics Incorporated)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [520032 2016-06-29] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-09-12 13:28 - 2016-09-12 13:29 - 00022419 _____ C:\Users\Alexandre\Desktop\FRST.txt
2016-09-12 13:28 - 2016-09-12 13:28 - 00000000 ____D C:\FRST
2016-09-12 13:26 - 2016-09-12 13:26 - 02397696 _____ (Farbar) C:\Users\Alexandre\Desktop\FRST64.exe
2016-09-11 21:47 - 2016-09-12 13:27 - 1397536912 _____ C:\Users\Alexandre\Downloads\Cube.1997.1080p.BrRip.x264.bitloks.YIFY.mkv
2016-09-11 21:45 - 2016-09-11 23:16 - 00000000 ____D C:\Users\Alexandre\AppData\LocalLow\uTorrent
2016-09-11 21:44 - 2016-09-11 21:44 - 00027122 _____ C:\Users\Alexandre\Downloads\Cube.1997.1080p.BrRip.x264.bitloks.YIFY.mkv.torrent
2016-09-09 09:10 - 2016-09-09 09:10 - 00128726 _____ C:\Users\Alexandre\Desktop\ZHPDiag.txt
2016-09-09 09:00 - 2016-09-09 08:42 - 00694736 ____N () C:\Users\Alexandre\_iu14D2N.tmp
2016-09-09 08:58 - 2016-09-09 08:58 - 00094483 _____ C:\ProgramData\1473404314.bdinstall.bin
2016-09-09 08:50 - 2016-06-25 08:29 - 09296122 _____ C:\Users\Alexandre\Desktop\.zip
2016-09-09 08:44 - 2016-09-09 08:47 - 00001241 _____ C:\Users\Alexandre\Desktop\ZHPFixReport.txt
2016-09-09 08:43 - 2016-09-09 09:00 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-09-09 08:41 - 2016-09-09 08:42 - 03521617 _____ (Nicolas Coolman ) C:\Users\Alexandre\Downloads\ZHPFix.exe
2016-09-09 08:28 - 2016-09-09 08:29 - 00448512 _____ (OldTimer Tools) C:\Users\Alexandre\Downloads\TFC.exe
2016-09-08 15:18 - 2016-09-08 15:32 - 00000000 ____D C:\Users\Alexandre\Desktop\Mafia de cuba
2016-09-08 15:17 - 2016-09-08 15:17 - 02583011 _____ C:\Users\Alexandre\Downloads\mcuba_rg.pdf
2016-09-07 11:09 - 2016-09-07 13:58 - 00000016 _____ C:\Users\Alexandre\Desktop\PE.txt
2016-09-07 11:05 - 2016-09-07 11:06 - 00034769 _____ C:\Users\Alexandre\Downloads\2016164039483.pdf
2016-09-06 20:25 - 2016-09-09 09:02 - 02323968 _____ C:\Users\Alexandre\Desktop\ZHPDiag3.exe
2016-09-06 20:25 - 2016-09-09 09:02 - 00000914 _____ C:\Users\Alexandre\Desktop\ZHPDiag.lnk
2016-09-06 12:13 - 2016-09-09 09:04 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\ZHP
2016-09-05 22:50 - 2016-09-05 22:50 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-09-05 22:37 - 2016-09-05 22:37 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-28 16:05 - 2016-09-06 14:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auslogics
2016-08-28 16:05 - 2016-09-06 14:22 - 00000000 ____D C:\Program Files (x86)\Auslogics
2016-08-28 16:02 - 2016-09-05 22:30 - 00000000 ____D C:\ProgramData\Auslogics
2016-08-28 16:01 - 2016-08-28 16:05 - 00001349 _____ C:\Users\Alexandre\Desktop\Auslogics Disk Defrag.lnk
2016-08-28 15:51 - 2016-08-28 15:58 - 07900192 _____ (Auslogics Labs Pty Ltd ) C:\Users\Alexandre\Downloads\disk-defrag-setup(1).exe

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-09-12 13:30 - 2014-11-28 17:50 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-12 13:28 - 2014-11-28 17:34 - 00004170 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{71AA7508-4A50-4416-A7C3-ACB8E4C385DE}
2016-09-12 13:25 - 2014-12-26 12:31 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\uTorrent
2016-09-11 23:20 - 2014-12-26 11:50 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-11 22:41 - 2015-06-17 13:52 - 00001230 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3198640613-2510851431-658617093-1001UA.job
2016-09-11 22:36 - 2016-08-05 10:44 - 00000000 ____D C:\Users\Alexandre\Downloads\Gunnm Last Order Intégrale T01 à T19 +Gunnm Mars chronicles
2016-09-11 22:32 - 2015-11-10 13:19 - 00000000 ____D C:\Program Files\Bitdefender Agent
2016-09-11 19:43 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-09 18:28 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-09 09:05 - 2016-03-11 18:08 - 00000681 _____ C:\Users\Alexandre\Desktop\Nouveau document texte.txt
2016-09-09 09:00 - 2015-12-15 17:59 - 00000000 ____D C:\Users\Alexandre
2016-09-09 08:29 - 2015-11-17 11:17 - 00000000 ____D C:\Users\Alexandre\AppData\Temp
2016-09-08 15:33 - 2014-12-26 01:07 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\vlc
2016-09-07 10:26 - 2014-12-26 13:26 - 00000000 ___RD C:\Users\Alexandre\Dropbox
2016-09-07 10:26 - 2014-11-28 17:50 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-07 10:25 - 2015-12-15 17:55 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-07 10:25 - 2014-11-28 17:22 - 00000000 __SHD C:\Users\Alexandre\IntelGraphicsProfiles
2016-09-06 14:25 - 2015-10-30 08:28 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-09-06 14:24 - 2015-12-15 18:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-06 14:24 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-09-06 14:24 - 2014-11-28 17:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-06 11:56 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-06 11:56 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-05 22:51 - 2014-12-26 13:21 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\Dropbox
2016-09-05 22:37 - 2015-12-15 17:50 - 00000000 ___DC C:\WINDOWS\Panther
2016-08-28 22:19 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-28 19:41 - 2015-06-17 13:52 - 00001178 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-3198640613-2510851431-658617093-1001Core.job
2016-08-28 16:09 - 2016-06-18 11:14 - 00000000 ____D C:\Users\Alexandre\Desktop\Anim' Juillet
2016-08-28 15:48 - 2015-11-05 15:05 - 00000000 ____D C:\Users\Alexandre\AppData\Roaming\DAEMON Tools Lite
2016-08-26 11:03 - 2014-11-28 17:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-08-24 20:54 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-24 20:53 - 2014-11-29 12:33 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-08-24 20:15 - 2016-05-11 10:43 - 01603264 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2016-08-24 20:15 - 2016-05-11 10:43 - 00850464 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2016-08-24 12:29 - 2015-11-09 20:41 - 01848398 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-24 12:29 - 2015-10-30 21:00 - 00825500 _____ C:\WINDOWS\system32\perfh00C.dat
2016-08-24 12:29 - 2015-10-30 21:00 - 00155764 _____ C:\WINDOWS\system32\perfc00C.dat

==================== Fichiers à la racine de certains dossiers =======

2016-05-11 10:51 - 2016-05-11 10:51 - 0446019 _____ () C:\ProgramData\1462955834.bdinstall.bin
2016-05-11 10:59 - 2016-05-11 10:59 - 0026034 _____ () C:\ProgramData\1462957150.bdinstall.bin
2016-05-11 11:00 - 2016-05-11 11:00 - 0026033 _____ () C:\ProgramData\1462957235.bdinstall.bin
2016-06-14 18:14 - 2016-06-14 18:14 - 0026789 _____ () C:\ProgramData\1465920847.bdinstall.bin
2016-09-09 08:58 - 2016-09-09 08:58 - 0094483 _____ () C:\ProgramData\1473404314.bdinstall.bin
2015-12-15 17:56 - 2015-12-15 17:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-09-07 11:54

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité