cjoint

Publicité


Publicité

Commentaire : Concerne Paretologic Analyse.

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:28-08-2015
Exécuté par Rémy (administrateur) sur UTILISAT-B87285 (29-08-2015 09:37:44)
Exécuté depuis C:\Documents and Settings\Rémy\Bureau
Profils chargés: Rémy (Profils disponibles: Rémy)
Platform: Microsoft Windows XP Service Pack 3 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

Impossible d'accéder au processus -> csrss.exe
Impossible d'accéder au processus -> svchost.exe
Impossible d'accéder au processus -> svchost.exe
(Uniblue Systems Ltd) C:\Program Files\Uniblue\Powersuite\powersuite_monitor.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.28.13\GoogleCrashHandler.exe
(VIA Technologies, Inc.) C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
(Pinnacle Systems GmbH) C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Logitech Inc.) C:\WINDOWS\system32\LVCOMSX.EXE
(Logitech Inc.) C:\Program Files\Logitech\Video\LogiTray.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\Rainlendar2\Rainlendar2.exe
(Avanquest Software) C:\Program Files\Avanquest\Avanquest message\AQNotif.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Nero AG) C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
() C:\Program Files\Logitech\Desktop Messenger\8876480\Program\backWeb-8876480.exe
(Dropbox, Inc.) C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\Dropbox.exe
(Logitech Inc.) C:\Program Files\Logitech\Video\FxSvr2.exe
(Apple Inc.) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(MAGIX AG) C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(RealNetworks, Inc.) C:\Program Files\Online Games Manager\ogmservice.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Nero AG) C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
(Nero AG) C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
Impossible d'accéder au processus -> svchost.exe
Impossible d'accéder au processus -> alg.exe
(Uniblue Systems Limited) C:\Program Files\Uniblue\Powersuite\powersuite.exe
Impossible d'accéder au processus -> wmiprvse.exe
() C:\Program Files\Uniblue\Powersuite\powersuite_service.exe
Impossible d'accéder au processus -> WPFFontCache_v0400.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [33673216 2009-08-28] (VIA Technologies, Inc.)
HKLM\...\Run: [USBToolTip] => C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe [199752 2007-02-20] (Pinnacle Systems GmbH)
HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [LVCOMSX] => C:\WINDOWS\system32\LVCOMSX.EXE [221184 2005-07-19] (Logitech Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe [60712 2015-02-13] (Apple Inc.)
HKLM\...\Run: [LogitechVideoRepair] => C:\Program Files\Logitech\Video\ISStart.exe [458752 2005-06-08] (Logitech Inc.)
HKLM\...\Run: [LogitechVideoTray] => C:\Program Files\Logitech\Video\LogiTray.exe [217088 2005-06-08] (Logitech Inc.)
HKLM\...\Run: [PMBVolumeWatcher] => C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe [688184 2012-02-15] (Sony Corporation)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2602784 2013-11-11] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-03] (NVIDIA Corporation)
Winlogon\Notify\klogon: C:\WINDOWS\system32\klogon.dll [2013-06-17] (Kaspersky Lab ZAO)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [Rainlendar2] => C:\Program Files\Rainlendar2\Rainlendar2.exe [2433024 2011-08-12] ()
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [LogitechSoftwareUpdate] => C:\Program Files\Logitech\Video\ManifestEngine.exe [196608 2005-06-08] (Logitech Inc.)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [GoogleChromeAutoLaunch_28E451B1B06A0C9DEEB8393C40390B61] => C:\Documents and Settings\Rémy\Local Settings\Application Data\Chromium\Application\chrome.exe [659456 2015-06-02] (The Chromium Authors)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [Avanquest message] => C:\Program Files\Avanquest\Avanquest message\AQNotif.exe [360928 2015-02-18] (Avanquest Software)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [Dropbox Update] => C:\Documents and Settings\Rémy\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-19] (Dropbox, Inc.)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe [152872 2007-06-27] (Nero AG)
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\...\Run: [LDM] => C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe [16384 2011-12-28] ()
HKU\S-1-5-18\...\Run: [Google Photos Backup] => C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3791176 2015-07-10] (Google, Inc)
HKU\S-1-5-18\...\RunOnce: [SpUninstallDeleteDir] => rmdir /s /q "C:\WINDOWS\system32\config\systemprofile\Application Data\SearchProtect"
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - Pas de fichier
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\Rémy\Application Data\Dropbox\bin\DropboxExt.27.dll [2015-08-06] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\WINDOWS\system32\mscoree.dll [2009-11-07] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\WINDOWS\system32\mscoree.dll [2009-11-07] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\WINDOWS\system32\mscoree.dll [2009-11-07] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\WINDOWS\system32\mscoree.dll [2009-11-07] (Microsoft Corporation)
GroupPolicy: Stratégie de groupe sur Chrome détecté(e) <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Stratégie de restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.myplaycity.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-1614895754-261903793-1801674531-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.yahoo.com/
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ggbg_15_24¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByDzztN1L2XzutAtFtCtDtFtCtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyDtDyByDyC0C0EtCtGyC0FtCtBtGzzyDyBtDtGyEtBzyzytG0D0AtA0ByDyByC0CyByDtB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAtCtD0E0DtD0FtGyB0FyCyCtGyE0AyDzztGzz0EtB0CtG0F0F0CtAyEtA0F0E0D0FtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyBzyyD%26cr%3D665170659%26a%3Dwncy_ggbg_15_24%26os%3DWindows XP&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ggbg_15_24¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByDzztN1L2XzutAtFtCtDtFtCtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyDtDyByDyC0C0EtCtGyC0FtCtBtGzzyDyBtDtGyEtBzyzytG0D0AtA0ByDyByC0CyByDtB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAtCtD0E0DtD0FtGyB0FyCyCtGyE0AyDzztGzz0EtB0CtG0F0F0CtAyEtA0F0E0D0FtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyBzyyD%26cr%3D665170659%26a%3Dwncy_ggbg_15_24%26os%3DWindows XP&p={searchTerms}
SearchScopes: HKLM -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_secureddownload_15_25¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByCyDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StC0A0BtD0DtD0F0AtGtD0DtCtAtG0FtCzytAtGyBzz0C0BtGtCyCtBtByCtDyB0D0B0C0BtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBzytC0CyEzzzy0AtG0A0FtBtDtGyE0BtA0CtGzy0C0FzytGzy0E0C0FyCyC0AyDyD0A0CyC2QtN0A0LzuyE%26cr%3D2018235475%26a%3Dwny_secureddownload_15_25%26os%3DWindows XP&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ggbg_15_24¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByDzztN1L2XzutAtFtCtDtFtCtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyDtDyByDyC0C0EtCtGyC0FtCtBtGzzyDyBtDtGyEtBzyzytG0D0AtA0ByDyByC0CyByDtB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAtCtD0E0DtD0FtGyB0FyCyCtGyE0AyDzztGzz0EtB0CtG0F0F0CtAyEtA0F0E0D0FtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyBzyyD%26cr%3D665170659%26a%3Dwncy_ggbg_15_24%26os%3DWindows XP&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_ggbg_15_24¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByDzztN1L2XzutAtFtCtDtFtCtDtFtCtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyDtDyByDyC0C0EtCtGyC0FtCtBtGzzyDyBtDtGyEtBzyzytG0D0AtA0ByDyByC0CyByDtB0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBtAtCtD0E0DtD0FtGyB0FyCyCtGyE0AyDzztGzz0EtB0CtG0F0F0CtAyEtA0F0E0D0FtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzuyBzyyD%26cr%3D665170659%26a%3Dwncy_ggbg_15_24%26os%3DWindows XP&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> {8CAEE6EA-016D-4711-894D-BF941AC30182} URL =
SearchScopes: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> {8CDE19E6-71C2-4B46-89B7-35F6A18C571A} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_secureddownload_15_25¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzutDtDtBtAyDyE0B0DyC0EyCtCtC0DtA0FtN0D0Tzu0StCtByCyDtN1L2XzutAtFtCtDtFtCtDtFtDtN1L1Czu1TtN1L1G1B1V1N2Y1L1Qzu2StC0A0BtD0DtD0F0AtGtD0DtCtAtG0FtCzytAtGyBzz0C0BtGtCyCtBtByCtDyB0D0B0C0BtC2QtN1M1F1B2Z1V1N2Y1L1Qzu2StBzytC0CyEzzzy0AtG0A0FtBtDtGyE0BtA0CtGzy0C0FzytGzy0E0C0FyCyC0AyDyD0A0CyC2QtN0A0LzuyE%26cr%3D2018235475%26a%3Dwny_secureddownload_15_25%26os%3DWindows XP&p={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08] (CANON INC.)
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2013-11-29] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-12-17] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2013-12-19] (Kaspersky Lab ZAO)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02] (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-05-12] (Sun Microsystems, Inc.)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-02-18] (Kaspersky Lab ZAO)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2015-02-25] (Eyeo GmbH)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
Toolbar: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
Toolbar: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-1614895754-261903793-1801674531-1004 -> Pas de nom - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - Pas de fichier
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll [2005-09-20] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02] (Skype Technologies S.A.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{B3CDCE93-FCE3-403B-8AC4-FE36C445C244}: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-14] (CANON INC.)
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-01-05] (GARMIN Corp.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=3 -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2014-02-08] (Google Inc.)
FF Plugin HKU\.DEFAULT: @tools.google.com/Google Update;version=9 -> C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2014-02-08] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll [2002-01-09] (Macromedia, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-10-03] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Extension: Analyse des liens (URL Advisor) - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2 [2011-12-08]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-06-22]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011-12-08]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-12-09]
FF HKLM\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-29]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-29]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-29]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2013-11-29]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2013-11-29]
FF HKLM\...\Firefox\Extensions: [ext@MediaPlayerV1alpha8989.net] - C:\Program Files\MediaPlayerV1\MediaPlayerV1alpha8989\ff
FF HKLM\...\Firefox\Extensions: [ext@MediaViewerV1alpha306.net] - C:\Program Files\MediaViewerV1\MediaViewerV1alpha306\ff
FF HKLM\...\Firefox\Extensions: [ext@MediaViewV1alpha2798.net] - C:\Program Files\MediaViewV1\MediaViewV1alpha2798\ff
FF HKLM\...\Firefox\Extensions: [ext@MediaViewV1alpha9312.net] - C:\Program Files\MediaViewV1\MediaViewV1alpha9312\ff
FF HKLM\...\Firefox\Extensions: [ext@MediaWatchV1home651.net] - C:\Program Files\MediaWatchV1\MediaWatchV1home651\ff
StartMenuInternet: FIREFOX.EXE - firefox.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-02-09]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-12]
CHR HKLM\...\Chrome\Extension: [djhahppjdjcfmhhpgklliomcafdlhalk] - C:\Program Files\MediaViewV1\MediaViewV1alpha2798\ch\MediaViewV1alpha2798.crx
CHR HKLM\...\Chrome\Extension: [epfgjkfbhmhpagkjfhhkmkdchobbhacm] - C:\Program Files\MediaWatchV1\MediaWatchV1home651\ch\MediaWatchV1home651.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [lplgpjmdpngfjpdjndcgdgldmdcdnlon] - C:\Program Files\MediaViewerV1\MediaViewerV1alpha306\ch\MediaViewerV1alpha306.crx
CHR HKLM\...\Chrome\Extension: [nkfpojjmhmcadihceakapbcfgghnngel] - C:\Program Files\MediaViewV1\MediaViewV1alpha9312\ch\MediaViewV1alpha9312.crx
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-12]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe [60744 2015-01-20] (Apple Inc.)
R2 avp; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-12] (Kaspersky Lab ZAO)
R2 Fabs; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [Fichier non signé]
S3 FirebirdServerMAGIXInstance; C:\Program Files\Fichiers communs\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Fichier non signé]
S3 IDriverT; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé]
R2 MDM; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-20] (Microsoft Corporation)
R3 NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-06-03] (NVIDIA Corporation)
R2 ogmservice; C:\Program Files\Online Games Manager\ogmservice.exe [581568 2014-03-27] (RealNetworks, Inc.)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [459832 2012-02-15] (Sony Corporation)
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R3 Uniblue.PowersuiteSvc; C:\Program Files\Uniblue\Powersuite\powersuite_service.exe [30432 2015-07-10] ()

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R3 CamDrL; C:\WINDOWS\System32\DRIVERS\Camdrl.sys [326656 2004-10-08] (Logitech Inc.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 grmnusb; C:\WINDOWS\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)
R0 KL1; C:\WINDOWS\System32\DRIVERS\kl1.sys [135776 2013-11-29] (Kaspersky Lab ZAO)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [576096 2014-03-24] (Kaspersky Lab ZAO)
R3 klim5; C:\WINDOWS\System32\DRIVERS\klim5.sys [36448 2013-04-19] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\WINDOWS\System32\DRIVERS\klkbdflt.sys [24672 2014-02-18] (Kaspersky Lab ZAO)
R3 klmouflt; C:\WINDOWS\System32\DRIVERS\klmouflt.sys [24672 2013-10-12] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\WINDOWS\System32\DRIVERS\kltdi.sys [45024 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\WINDOWS\System32\DRIVERS\kneps.sys [144992 2013-12-19] (Kaspersky Lab ZAO)
R3 LVUSBSta; C:\WINDOWS\System32\drivers\lvusbsta.sys [22016 2005-05-27] (Logitech Inc.)
R3 MarvinBus; C:\WINDOWS\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH) [Fichier non signé]
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2011-12-08] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PhilCam8116; C:\WINDOWS\System32\DRIVERS\CamDrL21.sys [244096 2004-02-14] (Logitech Inc.) [Fichier non signé]
S3 SWDUMon; C:\WINDOWS\System32\DRIVERS\SWDUMon.sys [13464 2014-07-21] ()
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [1390976 2009-08-17] (VIA Technologies, Inc.)
S4 IntelIde; pas de ImagePath
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [93792 2014-03-24] (Kaspersky Lab ZAO)
U1 WS2IFSL; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-08-29 09:37 - 2015-08-29 09:37 - 00000000 ____D C:\FRST
2015-08-27 20:47 - 2015-08-27 20:47 - 00000000 ____D C:\_OTL
2015-08-23 18:06 - 2015-08-23 18:07 - 00000000 ____D C:\Samsung
2015-08-23 09:02 - 2015-08-23 09:02 - 00000000 ____D C:\Program Files\Fichiers communs\Skype
2015-08-20 09:25 - 2015-08-20 09:25 - 00000000 ____D C:\Program Files\Balabolka
2015-08-20 09:22 - 2015-08-20 09:22 - 00000000 ____D C:\Program Files\ScanSoft
2015-08-01 09:33 - 2015-08-29 09:25 - 00000270 _____ C:\WINDOWS\Tasks\powersuite_monitor.job

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-08-29 09:38 - 2013-03-27 10:13 - 00000000 ____D C:\Documents and Settings\Rémy\Local Settings\Temp
2015-08-29 09:38 - 2013-03-27 10:13 - 00000000 ____D C:\Documents and Settings\Rémy\Local Settings\Temp
2015-08-29 09:38 - 2012-04-04 08:48 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:37 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy\Bureau
2015-08-29 09:25 - 2011-12-08 15:01 - 00000430 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{0DBDE0C7-73FD-40C6-AA57-810B302876C5}.job
2015-08-29 09:25 - 2011-12-08 12:58 - 01352216 _____ C:\WINDOWS\WindowsUpdate.log
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-14 12:51 - 00000000 ____D C:\Documents and Settings\Rémy\.rainlendar2
2015-08-29 09:24 - 2011-12-08 13:47 - 00000157 _____ C:\WINDOWS\wiadebug.log
2015-08-29 09:24 - 2011-12-08 13:47 - 00000050 _____ C:\WINDOWS\wiaservc.log
2015-08-29 09:23 - 2014-10-22 09:06 - 00000230 _____ C:\WINDOWS\Tasks\Driver Booster Update.job
2015-08-29 09:23 - 2014-10-22 09:06 - 00000228 _____ C:\WINDOWS\Tasks\Driver Booster Scan.job
2015-08-29 09:23 - 2014-03-07 09:48 - 00000220 _____ C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2015-08-29 09:23 - 2013-08-06 16:11 - 00001878 _____ C:\WINDOWS\Tasks\Pricora 1.1-chromeinstaller.job
2015-08-29 09:23 - 2013-08-06 16:11 - 00001804 _____ C:\WINDOWS\Tasks\Pricora 1.1-firefoxinstaller.job
2015-08-29 09:23 - 2013-08-06 16:11 - 00001184 _____ C:\WINDOWS\Tasks\Pricora 1.1-codedownloader.job
2015-08-29 09:23 - 2013-08-06 16:11 - 00001180 _____ C:\WINDOWS\Tasks\Pricora 1.1-updater.job
2015-08-29 09:23 - 2013-08-06 16:11 - 00001084 _____ C:\WINDOWS\Tasks\Pricora 1.1-enabler.job
2015-08-29 09:23 - 2013-08-06 16:10 - 00000704 _____ C:\WINDOWS\Tasks\igdhbblpcellaljokkpfhcjlagemhgjl.job
2015-08-29 09:23 - 2011-12-10 15:42 - 00001048 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-29 09:23 - 2011-12-08 13:06 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:15 - 00000132 ___SH C:\Documents and Settings\Rémy\ntuser.ini
2015-08-28 22:22 - 2011-12-08 13:06 - 00032310 _____ C:\WINDOWS\SchedLgU.Txt
2015-08-28 22:21 - 2011-12-08 13:15 - 00000000 ____D C:\Documents and Settings\Rémy
2015-08-28 21:51 - 2013-12-20 11:41 - 00020936 _____ C:\WINDOWS\system32\nvAppTimestamps
2015-08-28 21:46 - 2014-02-08 09:41 - 00001168 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18UA.job
2015-08-28 21:40 - 2015-06-19 09:29 - 00001262 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1614895754-261903793-1801674531-1004UA.job
2015-08-28 21:23 - 2011-12-10 15:42 - 00001052 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-28 18:25 - 2011-12-08 16:31 - 00000000 ____D C:\Program Files\Google
2015-08-28 15:01 - 2015-06-19 10:54 - 00000282 _____ C:\WINDOWS\Tasks\Registry Optimizer_DEFAULT.job
2015-08-28 14:56 - 2015-06-12 18:53 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2015-08-28 14:56 - 2011-12-08 14:49 - 00065536 _____ C:\WINDOWS\system32\config\Internet.evt
2015-08-28 14:53 - 2011-12-08 13:06 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-08-28 14:53 - 2011-12-08 13:06 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-08-28 14:40 - 2015-06-19 09:29 - 00001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1614895754-261903793-1801674531-1004Core.job
2015-08-28 14:33 - 2011-12-17 23:08 - 00000147 _____ C:\WINDOWS\CARTES.INI
2015-08-28 08:46 - 2014-02-08 09:41 - 00001116 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-18Core.job
2015-08-28 08:45 - 2008-04-14 14:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2015-08-26 21:53 - 2014-09-07 09:24 - 00008192 ___SH C:\WINDOWS\system32\Thumbs.db
2015-08-26 21:53 - 2014-08-10 10:11 - 00012800 ___SH C:\WINDOWS\Thumbs.db
2015-08-26 10:54 - 2015-06-19 10:54 - 00000290 _____ C:\WINDOWS\Tasks\Registry Optimizer_UPDATES.job
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:27 - 00000125 _____ C:\Documents and Settings\Rémy\default.pls
2015-08-23 21:42 - 2011-12-20 11:26 - 00000116 _____ C:\WINDOWS\NeroDigital.ini
2015-08-23 10:56 - 2011-12-08 13:06 - 00000000 __SHD C:\Documents and Settings\LocalService
2015-08-23 10:56 - 2011-12-08 13:05 - 00000000 __SHD C:\Documents and Settings\NetworkService
2015-08-23 09:02 - 2012-01-01 18:33 - 00000000 ___RD C:\Program Files\Skype
2015-08-23 09:02 - 2011-12-08 13:44 - 00000000 ____D C:\Program Files\Fichiers communs
2015-08-23 09:02 - 2011-12-08 13:44 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2015-08-23 09:02 - 2011-12-08 13:44 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2015-08-23 09:02 - 2011-12-08 13:44 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2015-08-22 15:59 - 2011-12-17 22:58 - 00000500 _____ C:\WINDOWS\PR2.JEU
2015-08-22 10:41 - 2014-07-27 18:37 - 00027068 _____ C:\WINDOWS\wmsetup.log
2015-08-20 18:40 - 2015-01-31 19:47 - 00002670 _____ C:\WINDOWS\setupact.log
2015-08-20 18:40 - 2014-07-09 08:58 - 00169546 _____ C:\WINDOWS\setupapi.log
2015-08-20 08:56 - 2011-12-08 13:43 - 00403920 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-08-19 10:23 - 2012-03-08 21:12 - 00126912 _____ C:\WINDOWS\system32\GDIPFONTCACHEV1.DAT
2015-08-18 17:52 - 2011-12-10 15:15 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2015-08-12 15:41 - 2012-04-04 08:47 - 00778440 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-08-12 15:41 - 2011-12-11 11:14 - 00142536 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-08-12 10:08 - 2013-08-06 21:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 10:00 - 2011-12-08 14:47 - 129304528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-06 16:53 - 2008-04-14 14:00 - 00000784 _____ C:\WINDOWS\win.ini
2015-08-05 09:20 - 2013-12-20 11:33 - 00000000 ____D C:\Documents and Settings\UpdatusUser.UTILISAT-B87285
2015-08-05 09:20 - 2011-12-08 12:57 - 00000000 ____D C:\WINDOWS\Registration
2015-08-01 17:35 - 2011-12-08 13:44 - 01281144 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-01 17:34 - 2012-05-12 14:04 - 09888840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtsUStoricon.dll
2015-08-01 17:34 - 2012-05-12 13:58 - 00000000 ____D C:\WINDOWS\system32\sda
2015-08-01 17:34 - 2012-05-12 13:57 - 00209112 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsUStor.sys
2015-08-01 17:34 - 2011-12-08 13:51 - 00130432 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\Rtnicxp.sys
2015-08-01 17:34 - 2011-12-08 13:51 - 00073728 _____ C:\WINDOWS\system32\RtNicProp32.dll
2015-08-01 17:34 - 2011-12-08 13:36 - 00000000 ____D C:\WINDOWS\system32\ReinstallBackups
2015-08-01 09:54 - 2015-04-06 11:04 - 00000000 ____D C:\Program Files\Uniblue

Certains fichiers dans TEMP:
====================
C:\Documents and Settings\Rémy\Local Settings\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjkxvyn.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité