cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2015 01
Ran by Bastian (administrator) on SKYNET-PC on 23-05-2015 16:25:30
Running from C:\Users\Bastian\Desktop
Loaded Profiles: Bastian (Available Profiles: Bastian)
Platform: Windows 7 Ultimate N Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Stardock Corporation) C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
() C:\Program Files (x86)\Stardock\MyColors\wbvista.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\Stardock\MyColors\wbvista.exe
(Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(DEVGURU Co., LTD.) E:\Fichiers programmes\USB Drivers\25_escape\conn\ss_conn_service.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Chris Pietschmann (http://pietschsoft.com)) C:\Program Files (x86)\GIGABYTE\WiFiShare\VirtualRouterService.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe
(Studio GPBeta) E:\Fichiers programmes\SAO Utils\SAO Utils.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6032.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-27] (Realtek Semiconductor)
HKLM-x32\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM-x32\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM-x32\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM-x32\...\Run: [Rainmeter] => C:\Program Files\Rainmeter\Rainmeter.exe [36536 2014-05-25] ()
HKLM\...\Run: [SunJavaUpdateSched] => "C:\Program Files\Java\jre1.8.0_31\bin\jusched.exe"
HKLM-x32\...\Run: [Super-Charger] => C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe [506864 2013-03-08] (MSI)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
Winlogon\Notify\WB: C:\Program Files (x86)\Stardock\MyColors\fast64.dll [X]
HKU\S-1-5-21-3741288205-3216972138-2177660295-1000\...\Run: [HP Photosmart 7510 series (NET)] => C:\Program Files\HP\HP Photosmart 7510 series\Bin\ScanToPCActivationApp.exe [2676584 2011-08-31] (Hewlett-Packard Co.)
HKU\S-1-5-21-3741288205-3216972138-2177660295-1000\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-21-3741288205-3216972138-2177660295-1000\...\MountPoints2: {6e3b574c-5219-11e4-8086-806e6f6e6963} - D:\Autorun.exe
HKU\S-1-5-21-3741288205-3216972138-2177660295-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-01] (Microsoft Corporation)
Startup: C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-05-03]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
Startup: C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SAO Utils.lnk [2015-01-27]
ShortcutTarget: SAO Utils.lnk -> E:\Fichiers programmes\SAO Utils\SAO Utils.exe (Studio GPBeta)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-08] (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-08] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> E:\Jeux\NeverWinter\Arc\Plugins\ArcPluginIE.dll [2015-05-07] (Perfect World Entertainment Inc)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2012-06-28] (Atheros Commnucations)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\xznpasbb.default-1431529608987
FF NewTab: https://www.google.ch/fr
FF Homepage: https://www.google.ch/fr
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-05-14] ()
FF Plugin: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelogx64.dll No File
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.0\npbattlelog.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-17] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-17] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-08] ()
FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-08] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-08] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-11-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-11-11] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> E:\Jeux\NeverWinter\Arc\Plugins\npArcPluginFF.dll [2015-05-07] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3741288205-3216972138-2177660295-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Bastian\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-18] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3741288205-3216972138-2177660295-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Extension: Classic Theme Restorer (Customize UI) - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\xznpasbb.default-1431529608987\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2015-05-13]
FF Extension: Ratings Preview for YouTube™ - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\xznpasbb.default-1431529608987\Extensions\jid0-G6461UajDjhNAwSukoedlkhD0XA@jetpack.xpi [2015-05-13]
FF Extension: Adblock Plus - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\xznpasbb.default-1431529608987\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-13]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-07]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-07]
FF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2014-10-07]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2014-10-07]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-07]

Chrome:
=======
CHR Profile: C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-13]
CHR Extension: (Google Docs) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-13]
CHR Extension: (Google Drive) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-13]
CHR Extension: (YouTube) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-13]
CHR Extension: (Adblock Plus) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-05-13]
CHR Extension: (Google Search) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-13]
CHR Extension: (Kaspersky Protection) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-05-13]
CHR Extension: (Google Sheets) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-13]
CHR Extension: (Bookmark Manager) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-13]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-13]
CHR Extension: (Google Wallet) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-15]
CHR Extension: (Gmail) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-13]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArcService; E:\Jeux\NeverWinter\Arc\ArcService.exe [88584 2015-05-07] (Perfect World Entertainment Inc)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [128640 2012-06-28] (Atheros Commnucations) []
R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-01-01] (BitRaider, LLC)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [242664 2012-05-09] (CyberLink)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [175136 2014-09-30] (EasyAntiCheat Ltd)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) []
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [48832 2013-03-13] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [180200 2013-02-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [161264 2013-02-20] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [29728 2013-05-28] (MICRO-STAR INTERNATIONAL CO., LTD.)
U2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
S3 Origin Client Service; E:\Fichiers programmes\Origin\OriginClientService.exe [1931632 2015-04-17] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-09-06] ()
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [503296 2013-05-07] () []
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254552 2012-11-19] ()
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-04-18] (Razer, Inc.)
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1026432 2015-05-13] (Enigma Software Group USA, LLC.)
R2 ss_conn_service; E:\Fichiers programmes\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 Virtual Router; C:\Program Files (x86)\GIGABYTE\WiFiShare\VirtualRouterService.exe [12288 2013-01-08] (Chris Pietschmann (http://pietschsoft.com)) []
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2013-05-07] (Qualcomm Atheros, Inc.)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-01-05] (BitRaider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-06-01] (Disc Soft Ltd)
R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2015-05-13] (Enigma Software Group USA, LLC.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-05-13] ()
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [21048 2013-02-13] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [21048 2013-02-13] ()
S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-19] (Siliten)
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [46568 2013-02-13] ()
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [165824 2013-05-07] (Qualcomm Atheros, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [141320 2014-10-08] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [793800 2014-10-08] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 PVUSB; C:\Windows\System32\DRIVERS\CESG64.sys [63808 2007-02-19] (CASIO COMPUTER CO.,LTD.)
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-04-11] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2014-04-09] (Razer Inc)
R1 RzFilter; C:\Windows\system32\drivers\RzFilter.sys [74432 2014-04-11] (Razer, Inc.)
R3 rzmpos; C:\Windows\System32\DRIVERS\rzmpos.sys [34984 2014-04-09] (Razer Inc)
R3 SaiK1107; C:\Windows\System32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-01-01] (Duplex Secure Ltd.)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-05-23] ()
U3 auw5uu4e; C:\Windows\System32\Drivers\auw5uu4e.sys [0 ] (Advanced Micro Devices) <==== ATTENTION ( File/Folder)
S3 ALSysIO; \??\C:\Users\Bastian\AppData\Local\Temp\ALSysIO64.sys [X]
S3 MSICDSetup; \??\D:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-23 16:25 - 2015-05-23 16:25 - 00029225 _____ () C:\Users\Bastian\Desktop\FRST.txt
2015-05-23 16:25 - 2015-05-23 16:25 - 00000000 ____D () C:\FRST
2015-05-23 16:24 - 2015-05-23 16:24 - 02108416 _____ (Farbar) C:\Users\Bastian\Desktop\FRST64.exe
2015-05-23 16:07 - 2015-05-23 16:14 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2015-05-23 16:07 - 2015-05-23 16:14 - 00034752 _____ () C:\Windows\system32\Drivers\WPRO_41_2001.sys
2015-05-23 16:06 - 2015-05-23 16:12 - 00000000 ____D () C:\AdwCleaner
2015-05-23 16:05 - 2015-05-23 16:05 - 02223104 _____ () C:\Users\Bastian\Desktop\AdwCleaner-4.205.exe
2015-05-23 15:48 - 2015-05-23 15:49 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Bastian\Desktop\mbam-setup-2.1.6.1022.exe
2015-05-22 22:29 - 2015-05-22 22:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rolistik
2015-05-22 22:29 - 2015-05-22 22:29 - 00000000 ____D () C:\Program Files (x86)\Rolistik
2015-05-18 19:01 - 2015-05-18 19:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-05-17 21:06 - 2015-05-17 21:07 - 00000000 ___RD () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-05-17 01:03 - 2015-05-23 16:18 - 00000000 ____D () C:\Users\Bastian\AppData\Local\LogMeIn Hamachi
2015-05-17 01:02 - 2015-05-17 01:02 - 00000931 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2015-05-17 01:02 - 2015-05-17 01:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-05-17 01:02 - 2015-05-17 01:02 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-05-13 22:40 - 2015-05-23 16:17 - 00003270 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2015-05-13 22:40 - 2015-05-13 22:40 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Enigma Software Group
2015-05-13 22:40 - 2015-05-13 22:40 - 00000000 ____D () C:\sh4ldr
2015-05-13 22:39 - 2015-05-13 22:39 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2015-05-13 22:39 - 2015-05-13 22:39 - 00000000 ____D () C:\Program Files\Enigma Software Group
2015-05-13 22:33 - 2015-05-23 16:14 - 00010102 _____ () C:\Windows\PFRO.log
2015-05-13 22:33 - 2015-05-23 16:14 - 00006496 _____ () C:\Windows\setupact.log
2015-05-13 22:33 - 2015-05-13 22:33 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-13 17:30 - 2015-05-22 19:37 - 00002186 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-13 17:30 - 2015-05-13 17:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-12 12:06 - 2015-05-12 12:06 - 00000496 __RSH () C:\ProgramData\ntuser.pol
2015-05-12 00:28 - 2015-05-12 00:28 - 00001075 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2015-05-11 23:43 - 2015-05-11 23:43 - 00015273 _____ () C:\Users\Bastian\AppData\Local\recently-used.xbel
2015-05-11 19:44 - 2015-05-11 19:44 - 00000000 ____D () C:\ProgramData\Binary Fortress Software
2015-05-11 19:21 - 2015-05-11 23:27 - 00000000 ____D () C:\Users\Bastian\AppData\Local\DisplayFusion
2015-05-11 19:19 - 2015-05-13 16:19 - 00000336 _____ () C:\Windows\Tasks\Chromium.job
2015-05-11 19:19 - 2015-05-11 19:19 - 00003282 _____ () C:\Windows\System32\Tasks\Chromium
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 __SHD () C:\Users\Bastian\AppData\Roaming\Common
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\DisplayFusion
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 ____D () C:\Users\Bastian\AppData\Local\Chromium
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 ____D () C:\Program Files (x86)\DisplayFusion
2015-05-09 12:09 - 2015-05-09 13:59 - 00000891 _____ () C:\Users\Public\Desktop\Neverwinter.lnk
2015-05-09 12:09 - 2015-05-09 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
2015-05-09 12:09 - 2015-05-09 12:12 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Arc
2015-05-09 12:09 - 2015-05-09 12:09 - 00000000 ____D () C:\Users\Public\Documents\Arc
2015-05-08 15:59 - 2015-05-08 15:59 - 00002972 _____ () C:\Windows\System32\Tasks\{C38C6D19-92E7-4A38-8BF4-CB8F70ABB5CB}
2015-05-08 15:58 - 2015-05-08 15:58 - 00002972 _____ () C:\Windows\System32\Tasks\{646D6A4E-93DC-40BA-BC1B-A2A09893B996}
2015-05-08 15:58 - 2015-05-08 15:58 - 00002960 _____ () C:\Windows\System32\Tasks\{97BDEDC3-D860-4C52-97C5-AF08E121B6AF}
2015-05-08 15:46 - 2015-05-08 15:46 - 00000000 ____D () C:\Users\Bastian\Documents\Rockstar Games
2015-05-08 15:31 - 2015-05-08 15:31 - 00000000 ____D () C:\Users\Bastian\AppData\Local\Rockstar Games
2015-05-08 15:26 - 2015-05-08 15:26 - 00000000 ____D () C:\Users\Bastian\Documents\Games for Windows - LIVE Demos
2015-05-08 15:25 - 2015-05-08 15:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-05-08 15:19 - 2015-05-08 15:19 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2015-05-08 15:09 - 1997-11-19 15:49 - 00303616 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2015-05-08 14:51 - 2015-05-08 15:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-05-08 00:26 - 2015-05-08 00:26 - 00003056 _____ () C:\Windows\System32\Tasks\{E2521191-D724-4622-BC96-86B4813728B1}
2015-05-03 23:27 - 2013-08-22 13:40 - 00040664 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys
2015-05-03 15:08 - 2015-05-03 15:08 - 00001161 _____ () C:\Users\Bastian\Desktop\Recuva.lnk
2015-04-30 18:11 - 2015-04-30 18:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2015-04-27 16:26 - 2015-05-03 23:34 - 00000000 ____D () C:\Users\Bastian\Desktop\Server

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-23 16:19 - 2014-01-01 00:01 - 01745350 _____ () C:\Windows\WindowsUpdate.log
2015-05-23 16:19 - 2009-09-01 02:54 - 00747644 _____ () C:\Windows\system32\perfh00C.dat
2015-05-23 16:19 - 2009-09-01 02:54 - 00150168 _____ () C:\Windows\system32\perfc00C.dat
2015-05-23 16:19 - 2009-07-14 07:12 - 01669584 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-23 16:19 - 2009-07-14 06:50 - 00023968 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-23 16:19 - 2009-07-14 06:50 - 00023968 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-23 16:14 - 2014-01-03 19:09 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2015-05-23 16:14 - 2014-01-02 23:31 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Skype
2015-05-23 16:14 - 2014-01-01 00:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-23 16:14 - 2014-01-01 00:12 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-23 16:14 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-23 16:05 - 2014-04-29 22:46 - 00000000 ____D () C:\Users\Bastian\Desktop\Nouveaux
2015-05-23 16:01 - 2014-01-05 18:02 - 00000260 _____ () C:\Windows\Tasks\HP Photo Creations Messager.job
2015-05-23 15:47 - 2014-01-02 21:37 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-23 15:36 - 2014-01-01 00:12 - 00001070 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-23 13:26 - 2015-02-01 16:38 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\vlc
2015-05-22 23:16 - 2014-01-01 00:01 - 00000000 ____D () C:\Users\Bastian\AppData\Local\VirtualStore
2015-05-22 07:07 - 2014-01-03 18:55 - 00003948 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{0F5BE50D-7559-4458-BFA7-2515E2B0ED67}
2015-05-21 23:33 - 2014-01-01 01:57 - 00000000 ____D () C:\Users\Bastian\AppData\Local\CrashDumps
2015-05-18 20:42 - 2014-01-03 17:29 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-18 17:47 - 2014-10-10 22:12 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\.minecraft
2015-05-17 23:54 - 2014-01-02 16:52 - 00000000 ____D () C:\ProgramData\Origin
2015-05-16 23:31 - 2014-01-01 00:12 - 00004066 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-16 23:31 - 2014-01-01 00:12 - 00003814 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-14 22:08 - 2014-01-02 21:37 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-14 22:08 - 2014-01-02 21:37 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-14 22:08 - 2014-01-02 21:37 - 00003940 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-05-14 22:08 - 2014-01-02 21:35 - 00000000 ____D () C:\Users\Bastian\AppData\Local\Adobe
2015-05-13 22:40 - 2014-01-01 00:01 - 00000000 ____D () C:\Users\Bastian
2015-05-13 17:30 - 2014-01-01 00:12 - 00000000 ____D () C:\Users\Bastian\AppData\Local\Google
2015-05-13 17:30 - 2014-01-01 00:12 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-13 16:41 - 2014-02-01 18:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-12 11:14 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-05-11 23:44 - 2015-01-28 17:51 - 00000000 ____D () C:\Users\Bastian\.gimp-2.8
2015-05-11 23:37 - 2015-01-28 17:54 - 00000000 ____D () C:\Users\Bastian\AppData\Local\gtk-2.0
2015-05-11 19:17 - 2014-01-03 17:29 - 00001156 _____ () C:\Users\Bastian\Desktop\Mozilla Firefox.lnk
2015-05-09 15:44 - 2014-01-03 20:02 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-05-09 12:09 - 2014-01-01 00:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-05-08 15:25 - 2014-09-07 11:55 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-05-08 15:25 - 2009-07-14 07:38 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-05 00:25 - 2014-01-02 23:31 - 00000000 ____D () C:\ProgramData\Skype
2015-05-04 20:20 - 2009-07-14 07:08 - 00032496 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-03 15:07 - 2014-09-16 19:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-03 15:05 - 2015-01-05 23:14 - 00000000 ___RD () C:\Users\Bastian\Documents\Raccourcis bureau
2015-05-03 14:51 - 2014-09-28 22:45 - 00000000 ____D () C:\Windows\pss
2015-04-30 14:26 - 2014-05-30 12:18 - 00348672 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr
2015-04-30 14:26 - 2014-01-04 19:37 - 00348672 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-04-30 14:26 - 2014-01-04 19:37 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-04-29 16:14 - 2014-12-13 14:38 - 00000000 ____D () C:\Users\Bastian\AppData\Local\Battle.net
2015-04-28 23:30 - 2014-01-01 02:41 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\DAEMON Tools Lite

==================== Files in the root of some directories =======

2014-07-06 16:38 - 2014-07-06 16:43 - 0000412 _____ () C:\Users\Bastian\AppData\Roaming\All CPU Meter_Settings.ini
2005-11-02 05:32 - 2005-11-02 05:32 - 0000015 ____H () C:\Users\Bastian\AppData\Roaming\Bastianv1.18.0 - Trial versionlog.dat
2014-03-01 20:51 - 2014-08-15 01:46 - 0000117 _____ () C:\Users\Bastian\AppData\Roaming\D2Info0
2014-03-01 20:51 - 2014-08-15 01:45 - 0000008 _____ () C:\Users\Bastian\AppData\Roaming\DofusAppId0_1
2014-03-01 22:07 - 2014-08-15 01:46 - 0000008 _____ () C:\Users\Bastian\AppData\Roaming\DofusAppId0_2
2014-02-02 00:06 - 2015-04-16 18:48 - 0028160 ___SH () C:\Users\Bastian\AppData\Roaming\Thumbs.db
2014-01-08 15:22 - 2014-01-08 15:22 - 0019347 _____ () C:\Users\Bastian\AppData\Roaming\UserTile.png
2015-02-11 23:19 - 2015-02-11 23:19 - 0003584 _____ () C:\Users\Bastian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-11 23:43 - 2015-05-11 23:43 - 0015273 _____ () C:\Users\Bastian\AppData\Local\recently-used.xbel
2014-10-22 13:01 - 2014-10-22 13:01 - 0000000 _____ () C:\Users\Bastian\AppData\Local\{F041DF01-07BC-42E7-8C1F-7B1A9754BF74}
2014-01-05 18:00 - 2014-01-05 18:00 - 0000057 _____ () C:\ProgramData\Ament.ini

Some files in TEMP:
====================
C:\Users\Bastian\AppData\Local\Temp\vlc-2.2.1-win32.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-17 15:39

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité