Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 18-10-2017
Exécuté par boulon ecrou (administrateur) sur TITIAFRANCOIS (18-10-2017 18:53:40)
Exécuté depuis C:\Documents and Settings\boulon ecrou\Bureau
Profils chargés: boulon ecrou (Profils disponibles: boulon ecrou & Administrateur)
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Opera)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Logitech Inc.) C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\UMVPFSrv.exe
(Acer Inc.) C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehrecvr.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehSched.exe
(Seiko Epson Corporation) C:\WINDOWS\system32\escsvc.exe
(Hewlett-Packard Company) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
(Seiko Epson Corporation) C:\Program Files\epson\MyEpson Portal\mepService.exe
(Microsoft Corporation) C:\WINDOWS\ehome\mcrdsvc.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
( ) C:\WINDOWS\system32\SysMonitor.exe
(HiTRUST) C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
(Acer Inc.) C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
(Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON Software\Event Manager\EEventManager.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\avastui.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\drivers\w32x86\3\E_TATIPEE.EXE
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Acer Inc.) C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
(X-Micro Technology Corp.) C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
(Seiko Epson Corporation) C:\Program Files\epson\MyEpson Portal\mep.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(AVAST Software s.r.o.) C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ehTray] => C:\WINDOWS\ehome\ehtray.exe [67584 2005-09-29] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16208384 2006-06-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ntiMUI] => c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [45056 2005-05-11] ()
HKLM\...\Run: [Acer Empowering Technology Monitor] => C:\WINDOWS\system32\SysMonitor.exe [49152 2006-04-18] ( )
HKLM\...\Run: [eDataSecurity Loader] => C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe [345088 2006-03-17] (HiTRUST)
HKLM\...\Run: [eRecoveryService] => C:\Acer\Empowering Technology\eRecovery\eRAgent.exe [413696 2006-06-01] (Acer Inc.)
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [253344 2017-10-04] (AVAST Software)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3410384 2017-08-21] (Malwarebytes)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
Winlogon\Notify\WgaLogon:
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_TATIPEE.EXE [380400 2014-11-14] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27716568 2017-05-05] (Skype Technologies S.A.)
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\Control Panel\Desktop\\SCRNSAVE.EXE -> COMMER~1.SCR
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Acer Empowering Technology.lnk [2006-12-05]
ShortcutTarget: Acer Empowering Technology.lnk -> C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe (Acer Inc.)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Acer WLAN 11g USB Dongle.lnk [2006-08-11]
ShortcutTarget: Acer WLAN 11g USB Dongle.lnk -> C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe (X-Micro Technology Corp.)
BootExecute: autocheck autochk * sprecovr \SystemRoot\sprecovr.txt
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{62F67248-3FA0-470A-914E-6074EA720233}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{731A4854-E2EC-442A-8E79-E21BB77C8390}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-3497736386-3567904547-2928701048-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
URLSearchHook: HKU\S-1-5-21-3497736386-3567904547-2928701048-1005 - (Pas de nom) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - Pas de fichier
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3497736386-3567904547-2928701048-1005 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3497736386-3567904547-2928701048-1005 -> {BB183821-39E7-4DB2-BE90-3987136EB3CD} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle
SearchScopes: HKU\S-1-5-21-3497736386-3567904547-2928701048-1005 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-18] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2017-10-04] (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll => Pas de fichier
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-18] (Oracle Corporation)
Toolbar: HKLM - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll Pas de fichier
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} hxxp://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} hxxp://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
DPF: {BD393C14-72AD-4790-A095-76522973D6B8} hxxp://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} hxxp://support.f-secure.com/ols/fscax.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0017-0000-0004-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_04-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\msdaipp.dll [2008-04-14] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll [2017-04-05] (Skype Technologies)
FireFox:
========
FF DefaultProfile: y1kxe73z.default
FF ProfilePath: C:\Documents and Settings\boulon ecrou\Application Data\Mozilla\Firefox\Profiles\y1kxe73z.default [2017-10-18]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_27_0_0_170.dll [2017-10-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1228198.dll [Pas de fichier]
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\Google\Chrome\User Data\Default [2017-10-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-05]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChromeSp.crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AcerMemUsageCheckService; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [28672 2006-05-11] (Acer Inc.) [Fichier non signé]
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [272384 2017-10-17] (Adobe Systems Incorporated) [Fichier non signé]
R3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [5828816 2017-10-04] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [281416 2017-10-04] (AVAST Software)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc.exe [126128 2012-05-17] (Seiko Epson Corporation)
R2 LightScribeService; c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [73728 2006-02-17] (Hewlett-Packard Company) [Fichier non signé]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4430792 2017-08-07] (Malwarebytes)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S3 MHN; C:\WINDOWS\System32\mhn.dll [85504 2004-08-10] (Microsoft Corporation) [Fichier non signé]
R2 MyEpson Portal Service; C:\Program Files\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (Seiko Epson Corporation)
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [Fichier non signé]
R2 UMVPFSrv; C:\Program Files\Fichiers communs\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-06-18] (Advanced Micro Devices) [Fichier non signé]
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [255624 2017-10-04] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [157416 2017-10-04] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [276736 2017-10-04] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [50384 2017-10-04] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [42856 2017-10-04] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-08-31] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [124952 2017-10-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [70112 2017-10-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [70864 2017-10-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [777952 2017-10-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [499560 2017-10-04] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [203848 2017-10-04] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35272 2013-10-16] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [297840 2017-10-04] (AVAST Software)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59904 2017-10-04] ()
S3 FilterService; C:\WINDOWS\System32\DRIVERS\lvuvcflt.sys [23832 2009-10-07] (Logitech Inc.)
S1 hidfltr; C:\WINDOWS\System32\drivers\MWhid.sys [13332 2004-11-03] () [Fichier non signé]
R3 int15.sys; C:\Acer\Empowering Technology\eRecovery\int15.sys [69632 2005-01-13] () [Fichier non signé]
S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [40352 2017-10-16] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [221632 2017-10-18] (Malwarebytes)
S3 MHNDRV; C:\WINDOWS\System32\DRIVERS\mhndrv.sys [11008 2004-08-10] (Microsoft Corporation) [Fichier non signé]
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 NTIDrvr; C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys [6144 2006-08-11] (NewTech Infosystems, Inc.) [Fichier non signé]
R0 nvatabus; C:\WINDOWS\System32\drivers\nvatabus.sys [105088 2006-06-28] (NVIDIA Corporation)
R3 psdfilter; C:\WINDOWS\system32\Drivers\psdfilter.sys [12288 2006-04-07] (HiTRUST) [Fichier non signé]
R3 psdvdisk; C:\WINDOWS\system32\Drivers\psdvdisk.sys [60416 2006-03-08] (HiTRUST) [Fichier non signé]
R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [36624 2007-01-30] (Sonic Solutions) [Fichier non signé]
R3 RTL8192cu; C:\WINDOWS\System32\DRIVERS\RTL8192cu.sys [987904 2011-06-01] (Realtek Semiconductor Corporation )
S3 s0017bus; C:\WINDOWS\System32\DRIVERS\s0017bus.sys [90536 2008-05-27] (MCCI Corporation)
S3 tap0901; C:\WINDOWS\System32\DRIVERS\tap0901.sys [35088 2013-04-30] (The OpenVPN Project)
S3 USB_RNDIS; C:\WINDOWS\System32\DRIVERS\usb8023.sys [12928 2013-02-12] (Microsoft Corporation)
S3 V0260VID; C:\WINDOWS\System32\DRIVERS\V0260Vid.sys [162176 2006-04-01] (Creative Technology Ltd.)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [285952 2007-12-06] (Marvell) [Fichier non signé]
S3 ZD1211BU(ZyDAS); C:\WINDOWS\System32\DRIVERS\zd1211Bu.sys [402432 2005-10-28] (ZyDAS Technology Corporation)
S3 ZD1211U(ZyDAS); C:\WINDOWS\System32\DRIVERS\zd1211u.sys [280064 2005-10-04] (ZyDAS Technology Corporation)
R3 ZDPSp50; C:\WINDOWS\System32\Drivers\ZDPSp50.sys [17664 2004-10-25] (Printing Communications Assoc., Inc. (PCAUSA)) [Fichier non signé]
S2 Ca533av; System32\Drivers\Ca533av.sys [X]
S4 IntelIde; pas de ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 USBCamera; System32\Drivers\Bulk533.sys [X]
U1 WS2IFSL; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-18 18:53 - 2017-10-18 18:54 - 000020399 _____ C:\Documents and Settings\boulon ecrou\Bureau\FRST.txt
2017-10-18 18:53 - 2017-10-18 18:53 - 000000000 ____D C:\FRST
2017-10-18 18:52 - 2017-10-18 18:52 - 001798144 _____ (Farbar) C:\Documents and Settings\boulon ecrou\Bureau\FRST.exe
2017-10-18 17:57 - 2017-10-18 17:57 - 000000000 ____D C:\Program Files\Fichiers communs\Java
2017-10-18 17:47 - 2017-10-18 17:47 - 000131833 _____ C:\Documents and Settings\boulon ecrou\Bureau\ZHPDiag.txt
2017-10-18 17:41 - 2017-10-18 17:41 - 002900480 _____ C:\Documents and Settings\boulon ecrou\Mes documents\zhpdiag_v2017.10.9.179.exe
2017-10-17 19:27 - 2017-10-17 19:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-17 17:31 - 2017-10-17 17:31 - 000000000 ____D C:\Documents and Settings\LocalService\Application Data\Macromedia
2017-10-16 18:44 - 2017-10-16 18:44 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\Mozilla
2017-10-16 18:42 - 2017-10-16 18:42 - 000000728 _____ C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
2017-10-16 18:27 - 2017-10-16 18:27 - 000106496 _____ C:\WINDOWS\Minidump\Mini101617-01.dmp
2017-10-16 17:38 - 2017-10-16 17:38 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Mozilla
2017-10-16 17:36 - 2017-10-16 17:37 - 039732736 _____ C:\Documents and Settings\boulon ecrou\Mes documents\Firefox Setup 34.0.exe
2017-10-16 16:33 - 2017-10-17 19:19 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-10-16 16:33 - 2017-10-16 18:42 - 000000734 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk
2017-10-16 16:25 - 2017-10-16 16:26 - 042088400 _____ C:\Documents and Settings\boulon ecrou\Mes documents\Firefox Setup 40.0.exe
2017-10-16 13:31 - 2017-10-16 13:31 - 038494576 _____ (Apple Inc.) C:\Documents and Settings\boulon ecrou\Mes documents\SafariSetup.exe
2017-10-16 12:35 - 2017-10-16 12:36 - 045548736 _____ (Mozilla) C:\Documents and Settings\boulon ecrou\Mes documents\Firefox Setup 52.4.1esr.exe
2017-10-09 19:06 - 2017-10-09 19:11 - 045570336 _____ (Mozilla) C:\Documents and Settings\boulon ecrou\Mes documents\Firefox Setup 52.4.0esr (2).exe
2017-10-09 17:42 - 2017-10-09 17:42 - 000000886 _____ C:\Documents and Settings\All Users\Bureau\Revo Uninstaller.lnk
2017-10-09 17:42 - 2017-10-09 17:42 - 000000000 ____D C:\Program Files\VS Revo Group
2017-10-09 17:42 - 2017-10-09 17:42 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Revo Uninstaller
2017-10-09 17:40 - 2017-10-09 17:41 - 007178424 _____ (VS Revo Group ) C:\Documents and Settings\boulon ecrou\Mes documents\revosetup.exe
2017-10-09 11:24 - 2017-10-09 11:24 - 000001193 _____ C:\Documents and Settings\boulon ecrou\Bureau\ZHPFixReport.txt
2017-10-09 11:14 - 2017-10-09 11:14 - 000000000 ____D C:\WINDOWS\CSC
2017-10-09 11:13 - 2017-10-09 11:14 - 000086838 _____ C:\WINDOWS\ntbtlog.txt
2017-10-08 17:43 - 2017-10-08 17:43 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Mes documents\Quarantine
2017-10-08 17:42 - 2017-10-08 17:42 - 003067264 _____ (Nicolas Coolman) C:\Documents and Settings\boulon ecrou\Mes documents\zhpfix_2017-6-13-1.exe
2017-10-08 16:53 - 2017-10-08 16:54 - 045570336 _____ (Mozilla) C:\Documents and Settings\boulon ecrou\Mes documents\Firefox Setup 52.4.0esr.exe
2017-10-08 15:14 - 2017-10-08 15:14 - 000000543 _____ C:\Documents and Settings\boulon ecrou\Bureau\Raccourci vers JRT.lnk
2017-10-08 14:51 - 2017-10-08 14:51 - 002840448 _____ C:\Documents and Settings\boulon ecrou\Mes documents\zhpdiag_2017.9.13.157 (1).exe
2017-10-08 14:38 - 2017-10-08 14:39 - 001790024 _____ (Malwarebytes) C:\Documents and Settings\boulon ecrou\Mes documents\JRT.exe
2017-10-08 12:08 - 2017-10-08 12:08 - 000000871 _____ C:\Documents and Settings\boulon ecrou\Bureau\Raccourci vers adwcleaner_7.0.3.1.lnk
2017-10-08 12:07 - 2017-10-08 12:07 - 008250832 _____ (Malwarebytes) C:\Documents and Settings\boulon ecrou\Mes documents\adwcleaner_7.0.3.1 (1).exe
2017-10-08 12:04 - 2017-10-08 12:04 - 008250832 _____ (Malwarebytes) C:\Documents and Settings\boulon ecrou\Mes documents\adwcleaner_7.0.3.1.exe
2017-10-08 12:02 - 2017-10-08 12:02 - 002882432 _____ C:\Documents and Settings\boulon ecrou\Mes documents\zhpcleaner_2017.9.13.157 (1).exe
2017-10-08 11:45 - 2017-10-08 11:45 - 000000623 _____ C:\Documents and Settings\boulon ecrou\Bureau\ZHPCleaner.lnk
2017-10-08 11:44 - 2017-10-08 11:44 - 002882432 _____ C:\Documents and Settings\boulon ecrou\Mes documents\zhpcleaner_2017.9.13.157.exe
2017-10-08 09:58 - 2017-10-08 09:59 - 002840448 _____ C:\Documents and Settings\boulon ecrou\Mes documents\zhpdiag_2017.9.13.157.exe
2017-10-08 04:41 - 2017-10-08 16:37 - 000000000 ____D C:\Program Files\Opera
2017-10-08 04:40 - 2017-10-08 04:40 - 000735064 _____ (Opera Software) C:\Documents and Settings\boulon ecrou\Mes documents\OperaSetupWinxpvista.exe
2017-10-08 03:42 - 2017-10-08 03:42 - 000029956 ____H C:\WINDOWS\system32\mlfcache.dat
2017-10-08 03:41 - 2017-10-16 16:31 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\Apple Computer
2017-10-08 03:41 - 2017-10-16 16:31 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Application Data\Apple Computer
2017-10-05 20:20 - 2017-10-05 20:20 - 000037320 _____ C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2017-10-05 20:19 - 2017-10-05 20:19 - 000171488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-04 18:16 - 2017-10-04 18:15 - 000304816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-10-04 17:42 - 2017-10-08 11:45 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\ZHP
2017-10-04 09:37 - 2017-10-04 09:37 - 000000000 ____D C:\Program Files\GUM2B.tmp
2017-10-04 08:57 - 2017-10-18 18:02 - 000001068 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2017-10-04 08:57 - 2017-10-18 17:24 - 000001064 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2017-10-02 18:00 - 2017-10-09 11:14 - 000150816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-10-02 17:59 - 2017-10-18 17:26 - 000221632 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-10-02 17:59 - 2017-10-16 17:23 - 000040352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-10-02 17:58 - 2017-10-02 17:58 - 000001719 _____ C:\Documents and Settings\All Users\Bureau\Malwarebytes.lnk
2017-10-02 17:58 - 2017-10-02 17:58 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-18 18:54 - 2006-12-05 21:11 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Local Settings\Temp
2017-10-18 18:53 - 2006-12-05 21:11 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Bureau
2017-10-18 18:52 - 2010-02-01 18:26 - 000000446 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{80C22FCB-3485-4A39-8AFD-8CB68E00DB95}.job
2017-10-18 18:30 - 2016-04-04 14:05 - 000001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-10-18 18:25 - 2016-09-25 11:25 - 000000917 _____ C:\WINDOWS\Tasks\EPSON XP-332 335 Series Update {071657A5-36BF-4397-B108-C5F436185C68}.job
2017-10-18 18:18 - 2017-02-23 11:54 - 000000360 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2017-10-18 18:12 - 2006-08-11 19:56 - 000032594 _____ C:\WINDOWS\SchedLgU.Txt
2017-10-18 17:58 - 2014-08-22 21:49 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Oracle
2017-10-18 17:57 - 2014-08-09 19:06 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Java
2017-10-18 17:57 - 2006-12-05 21:11 - 000000000 ____D C:\Program Files\Java
2017-10-18 17:57 - 2006-08-11 19:53 - 000000000 ____D C:\Program Files\Fichiers communs
2017-10-18 17:54 - 2014-08-09 19:06 - 000160256 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2017-10-18 17:54 - 2014-08-09 19:06 - 000095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-10-18 17:44 - 2015-03-28 00:50 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Application Data\ZHP
2017-10-18 17:41 - 2006-12-05 21:11 - 000000000 ___RD C:\Documents and Settings\boulon ecrou\Mes documents
2017-10-18 17:25 - 2016-04-21 05:48 - 000000502 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1461210447.job
2017-10-18 17:25 - 2006-08-11 19:51 - 000000000 ____D C:\WINDOWS\Registration
2017-10-18 17:24 - 2014-03-23 21:01 - 000000236 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2017-10-18 17:24 - 2012-04-14 19:53 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2017-10-18 17:24 - 2006-08-11 19:56 - 000001158 _____ C:\WINDOWS\system32\wpa.dbl
2017-10-18 17:24 - 2006-08-11 19:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-17 20:38 - 2006-12-05 21:11 - 000000184 ___SH C:\Documents and Settings\boulon ecrou\ntuser.ini
2017-10-17 20:38 - 2006-12-05 21:11 - 000000000 ____D C:\Documents and Settings\boulon ecrou
2017-10-17 19:58 - 2006-12-05 21:11 - 000000000 ___RD C:\Documents and Settings\boulon ecrou\Mes documents\Mes images
2017-10-17 18:30 - 2016-04-21 13:50 - 000001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-10-17 18:30 - 2016-04-04 14:05 - 000803328 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-10-17 18:30 - 2016-04-04 14:05 - 000144896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-10-17 18:30 - 2006-08-11 19:28 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-10-17 16:45 - 2013-03-24 23:55 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Application Data\Skype
2017-10-16 18:44 - 2016-04-04 10:43 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Application Data\Mozilla
2017-10-16 18:42 - 2006-08-11 19:53 - 000000000 ____D C:\Documents and Settings\All Users\Bureau
2017-10-16 18:27 - 2006-12-25 01:35 - 000000000 ____D C:\WINDOWS\Minidump
2017-10-16 18:14 - 2006-08-11 19:54 - 000000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2017-10-16 12:13 - 2006-12-17 23:26 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Creative
2017-10-09 11:16 - 2010-07-24 20:49 - 000001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2017-10-08 15:00 - 2014-03-23 21:01 - 000000230 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2017-10-08 05:40 - 2006-08-11 19:55 - 000000000 _RSDC C:\WINDOWS\system32\dllcache
2017-10-08 04:36 - 2006-12-05 21:18 - 000000000 ____D C:\Program Files\Yahoo!
2017-10-08 04:21 - 2014-12-13 05:34 - 000154784 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2017-10-07 23:58 - 2014-12-13 05:16 - 000000000 ____D C:\Documents and Settings\boulon ecrou\Application Data\Gyazo
2017-10-05 20:19 - 2009-07-20 21:42 - 000065536 _____ C:\WINDOWS\system32\config\Canal+.evt
2017-10-05 20:19 - 2007-03-08 17:04 - 000065536 _____ C:\WINDOWS\system32\config\Antivirus.Evt
2017-10-05 20:19 - 2006-12-17 12:51 - 000065536 _____ C:\WINDOWS\system32\config\Internet.evt
2017-10-05 20:19 - 2006-08-11 19:27 - 000065536 _____ C:\WINDOWS\system32\config\Media Ce.evt
2017-10-05 18:01 - 2011-12-31 16:40 - 000000686 _____ C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2017-10-04 18:21 - 2006-08-11 19:54 - 000000000 ____D C:\WINDOWS\inf
2017-10-04 18:16 - 2013-10-16 00:45 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software
2017-10-04 18:15 - 2015-08-05 12:42 - 000203848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2017-10-04 18:15 - 2014-04-20 20:48 - 000042856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-10-04 18:15 - 2013-03-04 21:39 - 000297840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-10-04 18:15 - 2013-03-04 21:39 - 000124952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-10-04 18:15 - 2013-03-04 21:39 - 000070864 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-10-04 18:15 - 2008-04-06 18:40 - 000499560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-10-04 18:15 - 2007-03-08 16:00 - 000070112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2017-10-04 18:14 - 2017-02-23 11:54 - 000276736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-10-04 18:14 - 2017-02-23 11:54 - 000255624 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-10-04 18:14 - 2017-02-23 11:54 - 000157416 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-10-04 18:14 - 2017-02-23 11:54 - 000050384 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-10-04 18:14 - 2011-02-24 01:29 - 000777952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-10-04 17:11 - 2017-05-18 00:21 - 000059904 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-10-04 09:37 - 2006-12-18 18:43 - 000000000 ____D C:\Program Files\Google
2017-10-04 09:37 - 2006-08-11 19:31 - 000000000 ___SD C:\Documents and Settings\NetworkService
2017-10-04 09:37 - 2006-08-11 19:31 - 000000000 ___SD C:\Documents and Settings\LocalService
2017-10-04 09:37 - 2006-08-11 19:31 - 000000000 ____D C:\Documents and Settings\Administrateur
2017-10-04 08:15 - 2009-07-20 21:42 - 000000000 ____D C:\Program Files\Fichiers communs\Adobe AIR
2017-10-03 20:07 - 2017-03-31 11:14 - 000002265 _____ C:\Documents and Settings\All Users\Bureau\Skype.lnk
==================== Fichiers à la racine de certains dossiers =======
2013-06-24 16:33 - 2013-06-24 16:33 - 000000000 ____C () C:\Documents and Settings\boulon ecrou\Application Data\1.txt
2012-09-06 20:02 - 2012-09-06 20:02 - 000195085 _____ () C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\ars.cache
2012-09-06 20:02 - 2012-09-06 20:02 - 000259194 _____ () C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\census.cache
2012-04-14 20:10 - 2017-06-04 22:47 - 000087552 _____ () C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-04-14 20:33 - 2012-04-14 20:33 - 000000135 _____ () C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\fusioncache.dat
2012-09-06 19:50 - 2012-09-06 19:50 - 000000036 _____ () C:\Documents and Settings\boulon ecrou\Local Settings\Application Data\housecall.guid.cache
Certains fichiers dans TEMP:
====================
2017-10-18 17:52 - 2017-10-18 17:52 - 001856576 _____ (Oracle Corporation) C:\Documents and Settings\boulon ecrou\Local Settings\Temp\jre-8u151-windows-au.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================