Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 01.12.2018 01
Exécuté par aaa (administrateur) sur LORBA-CBCA4B26C (06-12-2018 17:37:34)
Exécuté depuis C:\Documents and Settings\aaa\Bureau
Profils chargés: aaa (Profils disponibles: aaa)
Platform: Microsoft Windows XP Édition familiale Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: FF)
Mode d'amorçage: Safe Mode (minimal)
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [1046488 2017-02-10] (DivX, LLC)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-11-28] (AVG Technologies CZ, s.r.o.)
HKLM\...\RunOnce: [B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll] => "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXBannerAdPlugin.dll",DllRegisterServer
HKLM\...\RunOnce: [B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll] => "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXDownloadManagerPlugin.dll",DllRegisterServer
HKLM\...\RunOnce: [B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll] => "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXMediaManagerPlugin.dll",DllRegisterServer
HKLM\...\RunOnce: [B Register C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll] => "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\DivX\DivX Plus Player\DPXPlugins\DPXPlayerPlugin.dll",DllRegisterServer
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2006-02-21] (ATI Technologies Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1708537768-1592454029-682003330-1004\...\Run: [H/PC Connection Agent] => C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE [401491 2004-02-24] (Microsoft Corporation)
HKU\S-1-5-21-1708537768-1592454029-682003330-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\WLXPGSS.SCR [307560 2009-07-10] (Microsoft Corporation)
BootExecute: autocheck autochk /k:x*
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{3ECC5CB7-8EF0-43D9-894E-377C1B5CF2E4}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{5B5D8326-FDDD-4CED-AB20-BCBCDF0EFE65}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\.DEFAULT -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-09-11] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll => Pas de fichier
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-09-11] (Oracle Corporation)
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} hxxp://www.touslesdrivers.com/fichiers/maconfig/MaConfig_3_5_1_0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E4CF4E86-D0DC-4864-8F0E-4F6EA2526334} hxxps://img.ui-portal.de/os/activex/gmxinc_osupload_2002.cab
DPF: {FF1CD9A3-00CD-45C1-8182-4EEC229A182D} hxxps://www.plaxo.com/activex/plx_upldr-2k-xp.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll [2009-06-24] (Logitech)
Handler: bwz0s - {fcf4c582-17ea-4701-8b24-f2afd7c40af4} - Pas de fichier
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82} - C:\Program Files\Microsoft ActiveSync\aatp.dll [2004-02-24] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation)
Handler: offline-8876480 - {FCF4C582-17EA-4701-8B24-F2AFD7C40AF4} - Pas de fichier
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-11-22] (Skype Technologies S.A.)
FireFox:
========
FF ProfilePath: C:\Documents and Settings\aaa\Application Data\TomTom\HOME\Profiles\nqrh7s4a.default [2009-12-01]
FF Extension: (Emulator) - C:\Documents and Settings\aaa\Application Data\TomTom\HOME\Profiles\nqrh7s4a.default\Extensions\Navcore.7.903.9183@tomtom.com [2009-10-20] [Legacy] [non signé]
FF Extension: (Pas de nom) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Documents and Settings\aaa\Application Data\Mozilla\Firefox\Profiles\gxohsi2l.default-1480873198593 [2018-02-17]
FF Extension: (2020 3D Viewer for IKEA) - C:\Documents and Settings\aaa\Application Data\Mozilla\Firefox\Profiles\gxohsi2l.default-1480873198593\Extensions\2020Player_IKEA@2020Technologies.com [2016-12-22] [Legacy]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-02] [Legacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_153.dll [2018-11-20] ()
FF Plugin: @canon.com/UCPlugin -> C:\Program Files\Canon\Uploader for CANON iMAGE GATEWAY Plugin\\npUploaderForCiG.dll [2013-03-14] (CANON INC.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll [Pas de fichier]
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2017-02-09] (DivX, LLC)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-11-02] (GARMIN Corp.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-02-27] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\WINDOWS\system32\npDeployJava1.dll [2013-09-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-09-11] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2012-05-16] ( )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-06-27] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\adslTV\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxps://www.google.com
CHR StartupUrls: Default -> "hxxps://google.fr/"
CHR Profile: C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default [2018-12-06]
CHR Extension: (Appel Skype) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2018-11-25]
CHR Extension: (Mark as important for Gmail™) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\choagfemmpcnmehbhkfoedlakeafcodp [2018-11-28]
CHR Extension: (Gmail hors connexion) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk [2018-11-28]
CHR Extension: (AdBlock) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-12-06]
CHR Extension: (MapsGalaxy) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lkfkgnbjmeminilhckfckamlbkdgeaik [2018-11-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-25]
CHR Extension: (EcoSmart Filter) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oanjaainialpjhapkonplmlbkenhcokc [2018-11-28]
CHR Extension: (Streak CRM pour Gmail) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pnnfemgpilpdaojpnkjdgfgbnnjojfik [2018-11-28]
CHR Extension: (ProductivityBoss) - C:\Documents and Settings\aaa\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\poickeeehimalfeceghopkmbjdbpbpie [2018-11-28]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-11-20] (Adobe Systems Incorporated) [Fichier non signé]
S2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-11-28] (AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6848016 2018-11-28] (AVG Technologies CZ, s.r.o.)
S2 FreeMiWindowsService; C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe [71680 2015-07-21] (Stéphane Mitermite) [Fichier non signé]
S2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [431960 2014-04-01] (Garmin Ltd or its subsidiaries)
S2 gupdate1c9f372e43ae5ba; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-09-01] (Google Inc.)
S3 IDriverT; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-09-11] (Oracle Corporation)
S2 LVPrcSrv; C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe [154136 2009-10-07] (Logitech Inc.)
S4 MDM; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [275752 2008-01-22] (Nero AG)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
S2 SkypeUpdate; C:\Program Files\Skype\Updater\Updater.exe [317400 2017-04-05] (Skype Technologies) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2012-09-18] (Cisco Systems, Inc.) [Fichier non signé]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2314560 2008-08-04] (Realtek Semiconductor Corp.)
S3 ATIAVAIW; C:\WINDOWS\System32\DRIVERS\atinavt2.sys [170496 2009-02-04] (ATI Technologies Inc.)
S1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [167728 2018-11-28] (AVG Technologies CZ, s.r.o.)
S1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriverx.sys [189344 2018-11-28] (AVG Technologies CZ, s.r.o.)
S0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidshx.sys [165944 2018-11-28] (AVG Technologies CZ, s.r.o.)
S0 avgblog; C:\WINDOWS\System32\drivers\avgblogx.sys [284304 2018-11-28] (AVG Technologies CZ, s.r.o.)
S0 avgbuniv; C:\WINDOWS\System32\drivers\avgbunivx.sys [57952 2018-11-28] (AVG Technologies CZ, s.r.o.)
S3 avgHwid; C:\WINDOWS\System32\drivers\avgHwid.sys [42984 2018-11-28] (AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [40936 2018-11-28] (AVG Technologies CZ, s.r.o.)
S2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [135440 2018-11-28] (AVG Technologies CZ, s.r.o.)
S1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr.sys [70888 2018-11-28] (AVG Technologies CZ, s.r.o.)
S0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [73040 2018-11-28] (AVG Technologies CZ, s.r.o.)
S1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [784800 2018-11-28] (AVG Technologies CZ, s.r.o.)
S1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [398232 2018-11-28] (AVG Technologies CZ, s.r.o.)
S3 avgStmXP; C:\WINDOWS\System32\drivers\avgStmXP.sys [146832 2018-11-28] (AVG Technologies CZ, s.r.o.)
S0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [310248 2018-11-28] (AVG Technologies CZ, s.r.o.)
S3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [34704 2007-05-11] (IVT Corporation.)
S3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [27792 2007-03-05] (IVT Corporation.)
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [18320 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [36496 2007-05-09] (IVT Corporation.)
R0 BTHidEnum; C:\WINDOWS\System32\Drivers\vbtenum.sys [20880 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [35600 2007-03-05] (IVT Corporation.)
S3 BTNetFilter; C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys [22416 2006-11-21] (IVT Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S4 EUDSKCP; C:\WINDOWS\system32\drivers\EuDskCp.sys [65352 2018-05-03] (CHENGDU YIWO Tech Development Co., Ltd)
S4 EUEUMDK; C:\WINDOWS\system32\drivers\EuEumDk.sys [19912 2018-05-03] (CHENGDU YIWO Tech Development Co., Ltd)
S3 evserial; C:\WINDOWS\System32\DRIVERS\evserial.sys [53888 2008-05-19] (ELTIMA Software)
S3 FET5X86V; C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys [43520 2008-12-04] (VIA Technologies, Inc. )
S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. )
S2 fssfltr; C:\WINDOWS\System32\DRIVERS\fssfltr_tdi.sys [54752 2009-08-05] (Microsoft Corporation)
S3 grmnusb; C:\WINDOWS\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)
S3 LVPr2Mon; C:\WINDOWS\System32\Drivers\LVPr2Mon.sys [25752 2009-10-07] ()
S3 LVUSBSta; C:\WINDOWS\System32\drivers\lvusbsta.sys [38960 2006-06-22] (Logitech Inc.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 pepifilter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [13976 2009-04-30] (Logitech Inc.)
S3 PID_08A0; C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [720176 2006-06-22] (Logitech Inc.)
S3 PID_PEPI; C:\WINDOWS\System32\DRIVERS\LV302V32.SYS [2687512 2009-04-30] (Logitech Inc.)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
S3 RTLWUSB; C:\WINDOWS\System32\DRIVERS\RTL8187.sys [323328 2009-06-26] (Realtek Semiconductor Corporation ) [Fichier non signé]
S3 SCR3XX2K; C:\WINDOWS\System32\DRIVERS\SCR3XX2K.sys [56960 2008-12-29] (SCM Microsystems Inc.)
S3 usbUDisc; C:\WINDOWS\System32\DRIVERS\USBDrv.sys [13824 2014-03-21] (Scott)
S3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [34448 2007-03-05] (IVT Corporation.)
S3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [44304 2007-03-05] (IVT Corporation.)
R0 viaagp1; C:\WINDOWS\System32\DRIVERS\viaagp1.sys [27904 2003-07-02] (VIA Technologies, Inc.)
R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [13976 2009-05-05] (VIA Technologies, Inc.)
S3 VSBC; C:\WINDOWS\System32\DRIVERS\evsbc.sys [27904 2008-05-19] (ELTIMA Software)
R3 vulfnths; C:\WINDOWS\System32\Drivers\vulfnth.sys [6912 2005-01-05] (VIA Technologies, Inc.) [Fichier non signé]
R3 vulfntrs; C:\WINDOWS\System32\Drivers\vulfntr.sys [11264 2005-06-06] (VIA Technologies, Inc.) [Fichier non signé]
S3 W8100XP; C:\WINDOWS\System32\DRIVERS\mrv8ka51.sys [258560 2004-05-20] (Marvell Semiconductor, Inc)
S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [104064 2003-12-22] (Microsoft Corporation)
S3 X86BDA; C:\WINDOWS\System32\DRIVERS\OEMDrv.sys [195712 2011-06-08] ( ) [Fichier non signé]
S0 PCIIde; system32\drivers\pciide.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-12-06 17:37 - 2018-12-06 17:38 - 000020771 _____ C:\Documents and Settings\aaa\Bureau\FRST.txt
2018-12-06 17:36 - 2018-12-06 17:36 - 000256082 _____ C:\WINDOWS\ntbtlog.txt
2018-12-06 17:14 - 2018-12-06 17:14 - 000000432 _____ C:\Documents and Settings\aaa\Bureau\Raccourci vers FRST.lnk
2018-12-05 21:16 - 2018-12-05 21:16 - 001776128 _____ (Farbar) C:\Documents and Settings\aaa\Bureau\FRST.exe
2018-12-05 15:09 - 2018-12-05 15:08 - 000216827 _____ C:\Documents and Settings\aaa\Bureau\ZHPDiag.txt
2018-12-05 10:33 - 2018-12-05 10:33 - 003183488 _____ C:\Documents and Settings\aaa\Bureau\ZHPDiag3 (1).exe
2018-12-04 21:40 - 2015-06-15 18:47 - 000590248 _____ (Western Digital Corporation ) C:\Documents and Settings\aaa\Bureau\setup.exe
2018-12-04 21:40 - 2015-06-15 18:35 - 000008102 _____ C:\Documents and Settings\aaa\Bureau\WinDlg.txt
2018-12-04 21:40 - 2015-06-15 17:53 - 000897024 _____ (Western Digital) C:\Documents and Settings\aaa\Bureau\WinDlg.exe
2018-12-04 21:40 - 2014-03-04 03:09 - 000018197 _____ C:\Documents and Settings\aaa\Bureau\smart.htm
2018-12-04 21:40 - 2014-02-28 03:06 - 000016581 _____ C:\Documents and Settings\aaa\Bureau\help.htm
2018-12-04 21:39 - 2018-12-04 21:39 - 000974733 _____ C:\Documents and Settings\aaa\Bureau\WinDlg_v1_29.zip
2018-12-04 15:12 - 2018-12-03 02:37 - 000046510 ____N C:\Documents and Settings\aaa\Bureau\TF87930134_20181130FAC003893_F8Z03585_OC.pdf
2018-12-04 15:11 - 2018-12-04 15:11 - 000037939 _____ C:\Documents and Settings\aaa\Bureau\Total_Fuel_Card_20181130_FACPJ850003893_.zip
2018-11-30 12:16 - 2018-11-30 12:16 - 000000717 _____ C:\Documents and Settings\All Users\Bureau\CPUID CPU-Z.lnk
2018-11-30 12:16 - 2018-11-30 12:16 - 000000000 ____D C:\Program Files\CPUID
2018-11-30 12:16 - 2018-11-30 12:16 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CPUID
2018-11-30 12:12 - 2018-11-30 12:15 - 001816696 _____ (CPUID, Inc. ) C:\Documents and Settings\aaa\Bureau\cpu-z_1-87_en_11090.exe
2018-11-28 22:09 - 2018-11-28 22:10 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\AVG
2018-11-28 22:09 - 2018-11-28 22:09 - 000001608 _____ C:\Documents and Settings\All Users\Bureau\AVG AntiVirus Gratuit.lnk
2018-11-28 21:42 - 2018-11-28 21:34 - 000398232 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000310248 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000167728 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000146832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStmXP.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000135440 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000073040 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000070888 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000042984 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgHwid.sys
2018-11-28 21:42 - 2018-11-28 21:34 - 000040936 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2018-11-28 21:42 - 2018-11-28 21:33 - 000784800 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2018-11-28 21:42 - 2018-11-28 21:32 - 000284304 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgblogx.sys
2018-11-28 21:42 - 2018-11-28 21:32 - 000189344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriverx.sys
2018-11-28 21:42 - 2018-11-28 21:32 - 000165944 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidshx.sys
2018-11-28 21:42 - 2018-11-28 21:32 - 000057952 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbunivx.sys
2018-11-28 21:35 - 2018-11-28 21:34 - 000323344 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2018-11-28 20:41 - 2018-11-28 20:41 - 000000000 _____ C:\Documents and Settings\aaa\last.dump
2018-11-28 19:42 - 2018-11-28 19:44 - 000000000 ____D C:\Program Files\GUMD2.tmp
2018-11-28 19:27 - 2018-11-28 19:27 - 000000000 ____D C:\Documents and Settings\aaa\Application Data\AVG
2018-11-28 18:40 - 2018-11-28 19:43 - 000000000 ____D C:\Program Files\AVG
2018-11-25 18:28 - 2018-12-04 19:33 - 000081853 _____ C:\WINDOWS\setuplog.txt
2018-11-23 15:29 - 2018-11-23 15:29 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Symobi
2018-11-23 15:00 - 2018-11-23 15:00 - 000000781 _____ C:\Documents and Settings\All Users\Bureau\HDClone.lnk
2018-11-23 15:00 - 2018-11-23 15:00 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HDClone 8 Free Edition
2018-11-23 14:54 - 2018-11-23 15:00 - 000000000 ____D C:\Program Files\HDClone 8 Free Edition
2018-11-23 12:30 - 2018-11-23 12:25 - 057731568 _____ (Miray Software AG) C:\Documents and Settings\aaa\Bureau\hdclone-free-edition_8-0-7_fr_56930.exe
2018-11-21 18:10 - 2011-03-14 19:38 - 033513472 _____ C:\Disk_Copy_Image.iso
2018-11-15 20:42 - 2018-11-15 20:42 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\SystemAcCrux
2018-11-15 20:28 - 2018-05-03 09:30 - 000065352 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuDskCp.sys
2018-11-15 20:28 - 2018-05-03 09:30 - 000019912 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\WINDOWS\system32\Drivers\EuEumDk.sys
2018-11-15 18:31 - 2011-03-23 10:46 - 000000111 _____ C:\Documents and Settings\aaa\Bureau\EASEUS Backup Tool.url
2018-11-15 18:17 - 2018-11-21 18:17 - 000000000 ____D C:\Program Files\EaseUS
2018-11-15 11:38 - 2018-11-15 11:38 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Acronis
2018-11-13 14:20 - 2018-11-13 14:21 - 000000000 ____D C:\Documents and Settings\aaa\Local Settings\Application Data\AVAST Software
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-12-06 17:38 - 2011-12-30 11:32 - 000000000 ____D C:\Documents and Settings\aaa\Local Settings\temp
2018-12-06 17:37 - 2018-02-16 11:46 - 000000000 ____D C:\FRST
2018-12-06 17:37 - 2009-06-18 13:24 - 000000000 ____D C:\Documents and Settings\aaa\Bureau
2018-12-06 17:34 - 2018-01-14 21:27 - 000000338 ____H C:\WINDOWS\Tasks\Antivirus Emergency Update.job
2018-12-06 17:34 - 2009-06-18 13:24 - 000000284 ___SH C:\Documents and Settings\aaa\ntuser.ini
2018-12-06 17:34 - 2009-06-18 13:20 - 000032362 _____ C:\WINDOWS\SchedLgU.Txt
2018-12-06 17:34 - 2009-06-18 13:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-12-06 17:33 - 2018-01-15 19:47 - 000000330 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-12-06 17:33 - 2014-03-24 18:03 - 000000218 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2018-12-06 17:33 - 2009-07-01 10:35 - 000001046 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-12-06 17:31 - 2009-06-18 13:24 - 000000000 ____D C:\Documents and Settings\aaa
2018-12-06 17:17 - 2012-04-15 10:27 - 000001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-12-06 17:11 - 2016-03-03 14:15 - 000000296 _____ C:\WINDOWS\Tasks\DivXUpdate.job
2018-12-06 17:06 - 2016-03-03 15:06 - 000000917 _____ C:\WINDOWS\Tasks\EPSON XP-422 423 425 Series Update {3E881011-7F27-42EB-9CC4-5525516610D6}.job
2018-12-06 16:48 - 2009-07-01 10:35 - 000001050 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-12-06 12:13 - 2008-04-14 13:00 - 000001374 _____ C:\WINDOWS\system32\wpa.dbl
2018-12-05 15:08 - 2016-12-02 20:24 - 000000000 ____D C:\Documents and Settings\aaa\Application Data\ZHP
2018-12-05 10:38 - 2018-02-13 19:55 - 000000000 ____D C:\Documents and Settings\aaa\Local Settings\Application Data\ZHP
2018-12-04 18:09 - 2012-06-18 22:11 - 000000000 ____D C:\Documents and Settings\aaa\Application Data\vlc
2018-12-04 17:49 - 2009-06-23 23:07 - 000000000 ___HD C:\BJPrinter
2018-11-30 12:35 - 2009-06-18 13:24 - 000000000 ___RD C:\Mes documents
2018-11-30 12:16 - 2009-06-18 14:52 - 000000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2018-11-30 12:16 - 2009-06-18 14:52 - 000000000 ____D C:\Documents and Settings\All Users\Bureau
2018-11-29 11:54 - 2009-06-18 13:24 - 000000000 ___RD C:\Documents and Settings\aaa\Menu Démarrer
2018-11-28 22:13 - 2017-04-12 09:40 - 000000000 ____D C:\Documents and Settings\aaa\Local Settings\Application Data\Avg
2018-11-28 22:02 - 2009-06-18 14:46 - 000000000 ___HD C:\WINDOWS\inf
2018-11-28 21:24 - 2011-10-28 21:55 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software
2018-11-28 20:02 - 2009-06-18 13:20 - 000000000 __SHD C:\Documents and Settings\LocalService
2018-11-28 20:02 - 2009-06-18 13:08 - 000000000 __SHD C:\Documents and Settings\NetworkService
2018-11-28 20:02 - 2009-06-18 13:03 - 000000000 ____D C:\WINDOWS\Registration
2018-11-28 18:46 - 2017-04-12 09:40 - 000000000 ____D C:\Documents and Settings\All Users\Application Data\Avg
2018-11-25 19:59 - 2016-11-27 23:49 - 000543904 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2018-11-25 19:25 - 2015-10-02 12:05 - 002322432 _____ C:\Mes documents.mny
2018-11-25 18:52 - 2009-06-18 14:19 - 000001316 ____C C:\WINDOWS\system32\wpa.bak
2018-11-25 18:38 - 2010-09-30 20:59 - 000005788 ____C C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2018-11-24 17:57 - 2018-03-21 19:25 - 000001052 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-11-24 17:57 - 2009-06-18 13:04 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-11-24 10:55 - 2012-05-02 21:57 - 000000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2018-11-23 15:55 - 2009-06-18 14:46 - 000000000 ____D C:\WINDOWS\repair
2018-11-20 20:25 - 2012-04-15 10:27 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-11-20 20:25 - 2011-05-23 18:07 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-11-13 15:34 - 2009-06-18 14:46 - 000000000 ____D C:\WINDOWS\Network Diagnostic
2018-11-13 14:27 - 2010-01-12 23:27 - 000000000 ____D C:\Program Files\CCleaner
==================== Fichiers à la racine de certains dossiers =======
2013-12-29 17:30 - 2013-12-29 17:30 - 000000268 ___RH () C:\Documents and Settings\aaa\Application Data\docInfo
2013-02-07 00:37 - 2013-02-07 00:37 - 000009293 _____ () C:\Documents and Settings\aaa\Application Data\Microsoft Access.EML
2013-12-31 18:01 - 2013-12-31 18:17 - 000038418 _____ () C:\Documents and Settings\aaa\Application Data\Microsoft Excel.ADR
2013-12-29 17:32 - 2013-12-29 17:32 - 000000268 ___RH () C:\Documents and Settings\aaa\Application Data\User Pictures
2013-12-29 17:34 - 2013-12-29 17:34 - 000000268 ___RH () C:\Documents and Settings\aaa\Application Data\Utilities
2013-02-07 00:38 - 2013-02-07 00:38 - 000009323 _____ () C:\Documents and Settings\aaa\Application Data\Valeurs séparées par des tabulations (Windows).EML
2013-12-31 18:21 - 2013-12-31 18:21 - 000038446 _____ () C:\Documents and Settings\aaa\Application Data\Valeurs séparées par des virgules (DOS).ADR
2013-12-31 18:18 - 2013-12-31 18:18 - 000038445 _____ () C:\Documents and Settings\aaa\Application Data\Valeurs séparées par des virgules (Windows).ADR
2013-02-07 00:35 - 2013-02-07 00:35 - 000009335 _____ () C:\Documents and Settings\aaa\Application Data\Valeurs séparées par des virgules (Windows).EML
2013-12-29 17:32 - 2013-12-29 17:32 - 000000268 ___RH () C:\Documents and Settings\aaa\Application Data\Vocal Transformer
2014-01-15 21:26 - 2014-01-15 21:26 - 000000111 _____ () C:\Documents and Settings\aaa\Application Data\WB.CFG
2013-12-18 15:54 - 2013-12-18 20:00 - 000000796 _____ () C:\Documents and Settings\aaa\Application Data\wklnhst.dat
2009-06-19 18:58 - 2018-03-21 19:36 - 000026112 _____ () C:\Documents and Settings\aaa\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2009-12-26 20:11 - 2009-12-26 20:11 - 000000126 ____C () C:\Documents and Settings\aaa\Local Settings\Application Data\fusioncache.dat
2009-11-18 22:37 - 2011-12-12 22:54 - 000000000 ____C () C:\Documents and Settings\aaa\Local Settings\Application Data\prvlcl.dat
2013-12-29 17:30 - 2013-12-29 17:30 - 000000012 ___RH () C:\Documents and Settings\All Users\Application Data\Automatic Filter
2013-12-29 17:30 - 2013-12-29 17:30 - 000000268 ___RH () C:\Documents and Settings\All Users\Application Data\images
2010-02-01 22:49 - 2010-02-01 22:49 - 000004940 ____C () C:\Documents and Settings\All Users\Application Data\mtbjfghn.xbe
2013-12-29 17:30 - 2013-12-29 17:32 - 000000020 ____H () C:\Documents and Settings\All Users\Application Data\PKP_DLeo.DAT
2013-12-29 17:34 - 2016-03-03 17:38 - 000000020 ____H () C:\Documents and Settings\All Users\Application Data\PKP_DLes.DAT
2013-12-29 17:32 - 2016-03-03 17:36 - 000000020 ____H () C:\Documents and Settings\All Users\Application Data\PKP_DLet.DAT
2013-12-29 17:32 - 2014-01-09 15:10 - 000000020 ____H () C:\Documents and Settings\All Users\Application Data\PKP_DLev.DAT
2013-12-29 17:32 - 2013-12-29 17:32 - 000000268 ___RH () C:\Documents and Settings\All Users\Application Data\WebServer
2013-12-29 17:34 - 2013-12-29 17:34 - 000000268 ___RH () C:\Documents and Settings\All Users\Application Data\Widgets
2013-12-29 17:32 - 2013-12-29 17:32 - 000000268 ___RH () C:\Documents and Settings\All Users\Application Data\Woodwind
Certains fichiers dans TEMP:
====================
2018-11-15 18:30 - 2011-03-24 11:25 - 000151944 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\AuConv.dll
2018-11-15 18:31 - 2011-03-24 11:25 - 000094600 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\AuConvEx.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000091528 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Documents and Settings\aaa\Local Settings\temp\Boot.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000030088 _____ () C:\Documents and Settings\aaa\Local Settings\temp\BootDriver.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000036744 _____ () C:\Documents and Settings\aaa\Local Settings\temp\Burn.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000106888 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\DataMana.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000110984 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\DevCtrl.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000072584 _____ () C:\Documents and Settings\aaa\Local Settings\temp\FatLib.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000023944 _____ () C:\Documents and Settings\aaa\Local Settings\temp\GetDriverInfo.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000122760 _____ (CHENGDU YIWO Tech Development Co., Ltd) C:\Documents and Settings\aaa\Local Settings\temp\grubinst.exe
2018-11-15 18:30 - 2011-03-24 15:33 - 002688000 _____ (EASEUS) C:\Documents and Settings\aaa\Local Settings\temp\ISOExport.exe
2018-11-15 18:30 - 2011-03-24 11:25 - 000405952 _____ (Microsoft Corporation) C:\Documents and Settings\aaa\Local Settings\temp\MSVCP60.DLL
2018-11-15 18:30 - 2011-03-24 11:25 - 000291208 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\RecLib.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 000031112 _____ () C:\Documents and Settings\aaa\Local Settings\temp\syslinux.exe
2018-11-15 18:29 - 2018-11-21 18:07 - 040930854 _____ () C:\Documents and Settings\aaa\Local Settings\temp\temp.exe
2018-11-15 18:30 - 2011-03-24 11:25 - 009413000 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\UserRes.dll
2018-11-15 18:30 - 2011-03-24 11:25 - 002249096 _____ (YNET Technology Co.,Ltd. (www.softgogo.com)) C:\Documents and Settings\aaa\Local Settings\temp\UserResEx.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
==================== Fin de FRST.txt ============================