Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:12-12-2015 01
Exécuté par Julien (administrateur) sur PC-DE-JULIEN (12-12-2015 20:58:20)
Exécuté depuis C:\Users\Julien\Downloads
Profils chargés: Julien (Profils disponibles: Julien)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut non détecté(e)!)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\conime.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{79031B81-BC4B-4D28-9C78-33FECBB0493B}: [DhcpNameServer] 10.0.0.1
Internet Explorer:
==================
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2015-09-08] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2015-09-08] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Julien\AppData\Roaming\Mozilla\Firefox\Profiles\5p369jda.default
FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-09-09] [non signé]
Chrome:
=======
CHR HomePage: Default -> hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=629DD43D7E4F35FF&affID=119357&tsp=4970
CHR StartupUrls: Default -> "hxxp://www.google.be/","hxxp://isearch.omiga-plus.com/?type=hp&ts=1414075520&from=tugs&uid=ST1000DM003-1CH162_S1D7T0WNXXXXS1D7T0WN"
CHR Profile: C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-12]
CHR Extension: (Google Docs) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-12]
CHR Extension: (Google Drive) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Recherche Google) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Kaspersky Protection) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-09-12]
CHR Extension: (Google Sheets) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-12]
CHR Extension: (Gmail) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-12]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [141320 2015-09-08] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [793800 2015-09-08] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)
R0 Si3531; C:\Windows\System32\DRIVERS\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22568 2009-02-09] (Silicon Image, Inc.)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [16936 2009-02-09] (Silicon Image, Inc.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-12-12 20:58 - 2015-12-12 20:59 - 00012171 _____ C:\Users\Julien\Downloads\FRST.txt
2015-12-12 20:57 - 2015-12-12 20:58 - 00000000 ____D C:\FRST
2015-12-12 20:57 - 2015-12-12 20:57 - 02369536 _____ (Farbar) C:\Users\Julien\Downloads\FRST64.exe
2015-12-12 20:26 - 2015-12-12 20:26 - 00000881 _____ C:\Users\Public\Desktop\DriversCloud.com - Démarrer la détection.lnk
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\ProgramData\DriversCloud.com
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\Program Files\DriversCloud.com
2015-12-12 20:24 - 2015-12-12 20:24 - 00268248 _____ C:\Users\Julien\Downloads\DriversCloud_Win.exe
2015-12-12 20:03 - 2015-12-12 20:03 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Mozilla
2015-12-12 20:03 - 2015-12-12 20:03 - 00000000 ____D C:\Users\Julien\AppData\Local\Mozilla
2015-12-12 20:01 - 2015-12-12 20:02 - 43299576 _____ C:\Users\Julien\Downloads\Firefox Setup 42.0.exe
2015-12-11 17:15 - 2015-12-11 17:15 - 00000000 ____D C:\Users\Julien\Downloads\28 Weeks Later - 2007 - VO sub Fr Esp Eng Port Ita Ger
2015-12-09 19:55 - 2015-12-12 19:39 - 00000000 ____D C:\Windows\pss
2015-12-09 19:35 - 2015-11-05 10:07 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-12-09 19:35 - 2015-11-05 09:55 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-12-09 19:35 - 2015-11-05 08:54 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-09 19:33 - 2015-11-02 18:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2015-12-09 19:33 - 2015-11-02 17:44 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-09 19:31 - 2015-11-06 18:05 - 00648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-09 19:31 - 2015-11-06 17:43 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-12-09 19:31 - 2015-11-06 17:00 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-12-09 19:31 - 2015-11-06 16:59 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-12-09 19:31 - 2015-11-06 16:50 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-12-09 19:31 - 2015-11-06 16:47 - 01561600 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-09 19:31 - 2015-11-06 16:47 - 01154560 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-09 19:31 - 2015-11-06 16:37 - 02799104 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-09 19:31 - 2015-11-06 16:27 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-12-09 19:31 - 2015-11-06 16:26 - 00486400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-12-09 19:31 - 2015-11-06 16:20 - 01073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-09 19:31 - 2015-11-06 16:20 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-12-09 18:42 - 2015-11-05 08:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-09 18:42 - 2015-11-05 08:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-12-09 18:40 - 2015-11-10 18:03 - 01208832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-09 18:40 - 2015-11-10 18:03 - 00488448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-09 18:40 - 2015-11-10 17:40 - 01683968 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-09 18:40 - 2015-11-10 17:40 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-09 16:09 - 2015-11-12 22:16 - 17892864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-09 16:09 - 2015-11-12 22:13 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-09 16:09 - 2015-11-12 22:09 - 10937856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-09 16:09 - 2015-11-12 22:08 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-09 16:09 - 2015-11-12 22:08 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-09 16:09 - 2015-11-12 22:07 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-09 16:09 - 2015-11-12 22:07 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-09 16:09 - 2015-11-12 22:06 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-09 16:09 - 2015-11-12 22:06 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-09 16:09 - 2015-11-12 22:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-12-09 16:09 - 2015-11-12 22:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-12-09 16:09 - 2015-11-12 21:39 - 01814528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-12-09 16:09 - 2015-11-12 21:37 - 12389376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-12-09 16:09 - 2015-11-12 21:36 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-12-09 16:09 - 2015-11-12 21:34 - 09753088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-12-09 16:09 - 2015-11-12 21:34 - 01140224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-12-09 16:09 - 2015-11-12 21:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-12-09 16:09 - 2015-11-12 21:32 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00424448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-12-09 16:09 - 2015-11-12 21:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-12-09 16:09 - 2015-11-12 21:31 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-12-09 16:09 - 2015-11-12 21:31 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-12-09 16:01 - 2015-12-12 13:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2015-12-09 16:01 - 2015-12-12 13:31 - 00000000 ____D C:\Program Files (x86)\Xvid
2015-12-09 16:01 - 2015-12-09 16:02 - 00000000 ____D C:\Program Files (x86)\Xvid(102)
2015-12-09 16:01 - 2015-12-09 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid(134)
2015-12-09 16:01 - 2015-06-21 16:09 - 00713216 _____ C:\Windows\system32\xvidcore.dll
2015-12-09 16:01 - 2015-06-21 16:09 - 00251392 _____ C:\Windows\system32\xvidvfw.dll
2015-12-09 16:01 - 2015-06-21 16:09 - 00171520 _____ C:\Windows\system32\xvid.ax
2015-12-09 16:01 - 2015-06-21 16:09 - 00147968 _____ C:\Windows\SysWOW64\xvid.ax
2015-12-09 16:01 - 2015-06-21 16:08 - 00638976 _____ C:\Windows\SysWOW64\xvidcore.dll
2015-12-09 16:01 - 2015-06-21 16:08 - 00235520 _____ C:\Windows\SysWOW64\xvidvfw.dll
2015-12-09 15:58 - 2015-12-09 15:59 - 11854272 _____ (Xvid Team) C:\Users\Julien\Downloads\xvid-codec_1-3-4_fr_12459.exe
2015-12-09 15:47 - 2015-12-12 13:31 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-09 15:47 - 2015-12-09 15:47 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Julien\Downloads\revosetup.exe
2015-12-09 15:47 - 2015-12-09 15:47 - 00001099 _____ C:\Users\Julien\Desktop\Revo Uninstaller.lnk
2015-12-09 15:47 - 2015-12-09 15:47 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-07 20:07 - 2015-12-07 20:07 - 00000000 ____D C:\Users\Julien\AppData\Roaming\WinRAR
2015-12-04 08:25 - 2015-12-04 08:25 - 00000000 _____ C:\Users\Julien\AppData\Local\{23B59B95-871E-4023-9733-AA4B969B0530}
2015-12-02 22:02 - 2015-12-02 22:05 - 00000000 ____D C:\Users\Julien\AppData\Roaming\DivX
2015-12-02 21:58 - 2015-12-09 15:21 - 00000000 ____D C:\Program Files (x86)\DivX
2015-12-02 21:57 - 2015-12-12 13:31 - 00000000 ____D C:\ProgramData\DivX
2015-11-30 22:58 - 2015-11-30 23:32 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Opera Software
2015-11-30 22:58 - 2015-11-30 23:32 - 00000000 ____D C:\Users\Julien\AppData\Local\Opera Software
2015-11-30 22:56 - 2015-12-11 17:11 - 00000000 ____D C:\ProgramData\Freemake
2015-11-30 22:56 - 2015-11-30 23:33 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-30 22:55 - 2015-11-30 22:55 - 00000000 ____D C:\Users\Julien\AppData\Roaming\RPEng
2015-11-25 19:56 - 2015-11-27 19:05 - 00000000 ____D C:\Program Files (x86)\Gabest
2015-11-23 19:46 - 2015-11-23 19:46 - 00002550 _____ C:\Users\Julien\Desktop\µTorrent.lnk
2015-11-23 19:46 - 2015-11-23 19:46 - 00002550 _____ C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-11-23 19:42 - 2015-12-12 13:31 - 00000000 ____D C:\Users\Julien\AppData\Roaming\uTorrent
2015-11-23 19:41 - 2015-11-23 19:41 - 02026520 _____ (BitTorrent Inc.) C:\Users\Julien\Downloads\uTorrent.exe
2015-11-19 20:25 - 2015-11-19 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2015-11-19 20:25 - 2015-11-19 20:25 - 00000000 ____D C:\Program Files (x86)\AC3Filter
2015-11-19 20:25 - 2009-07-19 16:07 - 00580096 _____ C:\Windows\system32\ac3filter64.acm
2015-11-19 20:25 - 2009-07-19 16:03 - 00497664 _____ C:\Windows\SysWOW64\ac3filter.acm
2015-11-19 20:24 - 2015-11-19 20:24 - 02652884 _____ (Alexander Vigovsky ) C:\Users\Julien\Downloads\ac3filter_1_62b.exe
2015-11-17 10:26 - 2015-09-26 17:05 - 00281600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-17 10:26 - 2015-09-26 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-17 10:26 - 2015-09-26 17:04 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-17 10:26 - 2015-09-26 16:58 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-17 10:26 - 2015-09-26 16:58 - 00257536 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-17 10:26 - 2015-09-26 14:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2015-11-17 10:26 - 2015-09-22 14:10 - 00517976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-17 10:26 - 2015-09-22 14:10 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2015-11-17 10:23 - 2015-10-17 17:01 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-17 10:23 - 2015-10-17 16:41 - 00659456 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-17 10:22 - 2015-10-10 16:48 - 00736192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-17 10:19 - 2015-10-13 15:45 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-17 10:19 - 2015-10-13 15:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-17 10:03 - 2015-10-14 21:25 - 01586304 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-17 10:03 - 2015-10-14 21:25 - 01168600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-17 10:03 - 2015-10-14 16:47 - 04691392 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-12-12 20:57 - 2006-11-02 14:33 - 00000000 ____D C:\Windows
2015-12-12 20:55 - 2006-11-02 16:22 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-12 20:55 - 2006-11-02 16:22 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-12 20:25 - 2015-09-12 13:02 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-12 19:58 - 2015-09-08 09:56 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-12-12 19:41 - 2015-09-12 13:02 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-12 19:41 - 2006-11-02 16:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-12 19:39 - 2006-11-02 16:42 - 00032568 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-12 13:33 - 2015-09-05 15:38 - 00000000 ____D C:\Users\Julien
2015-12-12 13:32 - 2006-11-02 13:33 - 75497472 _____ C:\Windows\system32\config\system_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 54788096 _____ C:\Windows\system32\config\components_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 52166656 _____ C:\Windows\system32\config\software_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\default_previous
2015-12-12 13:31 - 2015-10-08 12:27 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-12 13:31 - 2015-09-12 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-12 13:31 - 2006-11-02 16:07 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-12-12 13:31 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\spool
2015-12-12 13:31 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\Msdtc
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 __RSD C:\Windows\Media
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\rescache
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\inf
2015-12-12 13:30 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\registration
2015-12-12 12:41 - 2015-09-12 13:31 - 00002695 _____ C:\Users\Julien\Desktop\Microsoft Word.lnk
2015-12-11 19:40 - 2015-09-12 13:33 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Skype
2015-12-10 22:31 - 2015-10-28 15:21 - 00003716 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C5DCA189-C2E9-44B3-94E1-7AEEF78F4358}
2015-12-10 18:08 - 2015-09-12 13:10 - 00002023 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-09 20:01 - 2015-10-16 18:29 - 00028160 _____ C:\Users\Julien\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-09 19:44 - 2006-11-02 16:21 - 00245848 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-09 19:22 - 2008-01-21 11:01 - 01519816 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-09 19:22 - 2008-01-21 11:00 - 00679042 _____ C:\Windows\system32\perfh00C.dat
2015-12-09 19:22 - 2008-01-21 11:00 - 00126626 _____ C:\Windows\system32\perfc00C.dat
2015-12-09 19:11 - 2015-09-09 09:21 - 00000000 ____D C:\Windows\system32\MRT
2015-12-09 18:47 - 2006-11-02 13:35 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-12-04 08:20 - 2015-09-12 13:02 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-04 08:20 - 2015-09-12 13:02 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 08:07 - 2015-09-12 13:01 - 00000000 ____D C:\Users\Julien\AppData\Local\Google
2015-12-02 13:18 - 2015-09-08 10:25 - 00301728 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-11-30 23:32 - 2015-09-05 15:38 - 00000905 _____ C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-11-28 10:50 - 2015-10-08 13:09 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-21 13:13 - 2015-09-12 13:33 - 00000000 ____D C:\ProgramData\Skype
2015-11-17 10:59 - 2006-11-02 16:07 - 00000000 ____D C:\Program Files\Windows Journal
==================== Fichiers à la racine de certains dossiers =======
2015-12-09 16:09 - 2015-12-09 16:09 - 0017043 _____ () C:\Users\Julien\AppData\Roaming\UserTile.png
2015-09-05 15:38 - 2015-09-05 15:38 - 0000732 _____ () C:\Users\Julien\AppData\Local\d3d9caps64.dat
2015-10-16 18:29 - 2015-12-09 20:01 - 0028160 _____ () C:\Users\Julien\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-04 08:25 - 2015-12-04 08:25 - 0000000 _____ () C:\Users\Julien\AppData\Local\{23B59B95-871E-4023-9733-AA4B969B0530}
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-12-12 19:47
==================== Fin de FRST.txt ============================
Exécuté par Julien (administrateur) sur PC-DE-JULIEN (12-12-2015 20:58:20)
Exécuté depuis C:\Users\Julien\Downloads
Profils chargés: Julien (Profils disponibles: Julien)
Platform: Windows Vista (TM) Home Premium Service Pack 2 (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut non détecté(e)!)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\conime.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{79031B81-BC4B-4D28-9C78-33FECBB0493B}: [DhcpNameServer] 10.0.0.1
Internet Explorer:
==================
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2015-09-08] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2015-09-08] (Kaspersky Lab ZAO)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Julien\AppData\Roaming\Mozilla\Firefox\Profiles\5p369jda.default
FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-09-08] ()
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2015-09-08] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-09-09] [non signé]
Chrome:
=======
CHR HomePage: Default -> hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=629DD43D7E4F35FF&affID=119357&tsp=4970
CHR StartupUrls: Default -> "hxxp://www.google.be/","hxxp://isearch.omiga-plus.com/?type=hp&ts=1414075520&from=tugs&uid=ST1000DM003-1CH162_S1D7T0WNXXXXS1D7T0WN"
CHR Profile: C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-12]
CHR Extension: (Google Docs) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-12]
CHR Extension: (Google Drive) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-23]
CHR Extension: (YouTube) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Recherche Google) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26]
CHR Extension: (Kaspersky Protection) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-09-12]
CHR Extension: (Google Sheets) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-12]
CHR Extension: (Google Docs hors connexion) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-12]
CHR Extension: (Gmail) - C:\Users\Julien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-12]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [141320 2015-09-08] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [793800 2015-09-08] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2014-03-25] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)
R0 Si3531; C:\Windows\System32\DRIVERS\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [22568 2009-02-09] (Silicon Image, Inc.)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [16936 2009-02-09] (Silicon Image, Inc.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-12-12 20:58 - 2015-12-12 20:59 - 00012171 _____ C:\Users\Julien\Downloads\FRST.txt
2015-12-12 20:57 - 2015-12-12 20:58 - 00000000 ____D C:\FRST
2015-12-12 20:57 - 2015-12-12 20:57 - 02369536 _____ (Farbar) C:\Users\Julien\Downloads\FRST64.exe
2015-12-12 20:26 - 2015-12-12 20:26 - 00000881 _____ C:\Users\Public\Desktop\DriversCloud.com - Démarrer la détection.lnk
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\ProgramData\DriversCloud.com
2015-12-12 20:26 - 2015-12-12 20:26 - 00000000 ____D C:\Program Files\DriversCloud.com
2015-12-12 20:24 - 2015-12-12 20:24 - 00268248 _____ C:\Users\Julien\Downloads\DriversCloud_Win.exe
2015-12-12 20:03 - 2015-12-12 20:03 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Mozilla
2015-12-12 20:03 - 2015-12-12 20:03 - 00000000 ____D C:\Users\Julien\AppData\Local\Mozilla
2015-12-12 20:01 - 2015-12-12 20:02 - 43299576 _____ C:\Users\Julien\Downloads\Firefox Setup 42.0.exe
2015-12-11 17:15 - 2015-12-11 17:15 - 00000000 ____D C:\Users\Julien\Downloads\28 Weeks Later - 2007 - VO sub Fr Esp Eng Port Ita Ger
2015-12-09 19:55 - 2015-12-12 19:39 - 00000000 ____D C:\Windows\pss
2015-12-09 19:35 - 2015-11-05 10:07 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshrm.dll
2015-12-09 19:35 - 2015-11-05 09:55 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2015-12-09 19:35 - 2015-11-05 08:54 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2015-12-09 19:33 - 2015-11-02 18:04 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\els.dll
2015-12-09 19:33 - 2015-11-02 17:44 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2015-12-09 19:31 - 2015-11-06 18:05 - 00648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-12-09 19:31 - 2015-11-06 17:43 - 00820224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-12-09 19:31 - 2015-11-06 17:36 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2015-12-09 19:31 - 2015-11-06 17:32 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2015-12-09 19:31 - 2015-11-06 17:00 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-12-09 19:31 - 2015-11-06 16:59 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-12-09 19:31 - 2015-11-06 16:50 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-12-09 19:31 - 2015-11-06 16:47 - 01561600 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-12-09 19:31 - 2015-11-06 16:47 - 01154560 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-12-09 19:31 - 2015-11-06 16:37 - 02799104 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-12-09 19:31 - 2015-11-06 16:27 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-12-09 19:31 - 2015-11-06 16:26 - 00486400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-12-09 19:31 - 2015-11-06 16:20 - 01073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-12-09 19:31 - 2015-11-06 16:20 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-12-09 18:42 - 2015-11-05 08:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-12-09 18:42 - 2015-11-05 08:26 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-12-09 18:40 - 2015-11-10 18:03 - 01208832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-12-09 18:40 - 2015-11-10 18:03 - 00488448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2015-12-09 18:40 - 2015-11-10 17:40 - 01683968 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-12-09 18:40 - 2015-11-10 17:40 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2015-12-09 16:09 - 2015-11-12 22:16 - 17892864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-12-09 16:09 - 2015-11-12 22:13 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-12-09 16:09 - 2015-11-12 22:09 - 10937856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-12-09 16:09 - 2015-11-12 22:08 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-12-09 16:09 - 2015-11-12 22:08 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-12-09 16:09 - 2015-11-12 22:07 - 02158080 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-12-09 16:09 - 2015-11-12 22:07 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-12-09 16:09 - 2015-11-12 22:06 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-12-09 16:09 - 2015-11-12 22:06 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-12-09 16:09 - 2015-11-12 22:06 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-12-09 16:09 - 2015-11-12 22:06 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-12-09 16:09 - 2015-11-12 22:06 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-12-09 16:09 - 2015-11-12 21:39 - 01814528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-12-09 16:09 - 2015-11-12 21:37 - 12389376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-12-09 16:09 - 2015-11-12 21:36 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-12-09 16:09 - 2015-11-12 21:34 - 09753088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-12-09 16:09 - 2015-11-12 21:34 - 01140224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-12-09 16:09 - 2015-11-12 21:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 01804288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-12-09 16:09 - 2015-11-12 21:32 - 00718848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00424448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-12-09 16:09 - 2015-11-12 21:32 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2015-12-09 16:09 - 2015-11-12 21:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2015-12-09 16:09 - 2015-11-12 21:31 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-12-09 16:09 - 2015-11-12 21:31 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-12-09 16:09 - 2015-11-12 21:31 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2015-12-09 16:01 - 2015-12-12 13:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid
2015-12-09 16:01 - 2015-12-12 13:31 - 00000000 ____D C:\Program Files (x86)\Xvid
2015-12-09 16:01 - 2015-12-09 16:02 - 00000000 ____D C:\Program Files (x86)\Xvid(102)
2015-12-09 16:01 - 2015-12-09 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid(134)
2015-12-09 16:01 - 2015-06-21 16:09 - 00713216 _____ C:\Windows\system32\xvidcore.dll
2015-12-09 16:01 - 2015-06-21 16:09 - 00251392 _____ C:\Windows\system32\xvidvfw.dll
2015-12-09 16:01 - 2015-06-21 16:09 - 00171520 _____ C:\Windows\system32\xvid.ax
2015-12-09 16:01 - 2015-06-21 16:09 - 00147968 _____ C:\Windows\SysWOW64\xvid.ax
2015-12-09 16:01 - 2015-06-21 16:08 - 00638976 _____ C:\Windows\SysWOW64\xvidcore.dll
2015-12-09 16:01 - 2015-06-21 16:08 - 00235520 _____ C:\Windows\SysWOW64\xvidvfw.dll
2015-12-09 15:58 - 2015-12-09 15:59 - 11854272 _____ (Xvid Team) C:\Users\Julien\Downloads\xvid-codec_1-3-4_fr_12459.exe
2015-12-09 15:47 - 2015-12-12 13:31 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-09 15:47 - 2015-12-09 15:47 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Julien\Downloads\revosetup.exe
2015-12-09 15:47 - 2015-12-09 15:47 - 00001099 _____ C:\Users\Julien\Desktop\Revo Uninstaller.lnk
2015-12-09 15:47 - 2015-12-09 15:47 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-07 20:07 - 2015-12-07 20:07 - 00000000 ____D C:\Users\Julien\AppData\Roaming\WinRAR
2015-12-04 08:25 - 2015-12-04 08:25 - 00000000 _____ C:\Users\Julien\AppData\Local\{23B59B95-871E-4023-9733-AA4B969B0530}
2015-12-02 22:02 - 2015-12-02 22:05 - 00000000 ____D C:\Users\Julien\AppData\Roaming\DivX
2015-12-02 21:58 - 2015-12-09 15:21 - 00000000 ____D C:\Program Files (x86)\DivX
2015-12-02 21:57 - 2015-12-12 13:31 - 00000000 ____D C:\ProgramData\DivX
2015-11-30 22:58 - 2015-11-30 23:32 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Opera Software
2015-11-30 22:58 - 2015-11-30 23:32 - 00000000 ____D C:\Users\Julien\AppData\Local\Opera Software
2015-11-30 22:56 - 2015-12-11 17:11 - 00000000 ____D C:\ProgramData\Freemake
2015-11-30 22:56 - 2015-11-30 23:33 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-30 22:55 - 2015-11-30 22:55 - 00000000 ____D C:\Users\Julien\AppData\Roaming\RPEng
2015-11-25 19:56 - 2015-11-27 19:05 - 00000000 ____D C:\Program Files (x86)\Gabest
2015-11-23 19:46 - 2015-11-23 19:46 - 00002550 _____ C:\Users\Julien\Desktop\µTorrent.lnk
2015-11-23 19:46 - 2015-11-23 19:46 - 00002550 _____ C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2015-11-23 19:42 - 2015-12-12 13:31 - 00000000 ____D C:\Users\Julien\AppData\Roaming\uTorrent
2015-11-23 19:41 - 2015-11-23 19:41 - 02026520 _____ (BitTorrent Inc.) C:\Users\Julien\Downloads\uTorrent.exe
2015-11-19 20:25 - 2015-11-19 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AC3Filter
2015-11-19 20:25 - 2015-11-19 20:25 - 00000000 ____D C:\Program Files (x86)\AC3Filter
2015-11-19 20:25 - 2009-07-19 16:07 - 00580096 _____ C:\Windows\system32\ac3filter64.acm
2015-11-19 20:25 - 2009-07-19 16:03 - 00497664 _____ C:\Windows\SysWOW64\ac3filter.acm
2015-11-19 20:24 - 2015-11-19 20:24 - 02652884 _____ (Alexander Vigovsky ) C:\Users\Julien\Downloads\ac3filter_1_62b.exe
2015-11-17 10:26 - 2015-09-26 17:05 - 00281600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-17 10:26 - 2015-09-26 17:05 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-17 10:26 - 2015-09-26 17:04 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-17 10:26 - 2015-09-26 16:58 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-17 10:26 - 2015-09-26 16:58 - 00257536 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-17 10:26 - 2015-09-26 14:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2015-11-17 10:26 - 2015-09-22 14:10 - 00517976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-17 10:26 - 2015-09-22 14:10 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2015-11-17 10:23 - 2015-10-17 17:01 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-17 10:23 - 2015-10-17 16:41 - 00659456 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-17 10:22 - 2015-10-10 16:48 - 00736192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-17 10:19 - 2015-10-13 15:45 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-17 10:19 - 2015-10-13 15:44 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-17 10:03 - 2015-10-14 21:25 - 01586304 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-17 10:03 - 2015-10-14 21:25 - 01168600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-17 10:03 - 2015-10-14 16:47 - 04691392 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2015-12-12 20:57 - 2006-11-02 14:33 - 00000000 ____D C:\Windows
2015-12-12 20:55 - 2006-11-02 16:22 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-12 20:55 - 2006-11-02 16:22 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-12 20:25 - 2015-09-12 13:02 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-12 19:58 - 2015-09-08 09:56 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-12-12 19:41 - 2015-09-12 13:02 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-12 19:41 - 2006-11-02 16:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-12 19:39 - 2006-11-02 16:42 - 00032568 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-12 13:33 - 2015-09-05 15:38 - 00000000 ____D C:\Users\Julien
2015-12-12 13:32 - 2006-11-02 13:33 - 75497472 _____ C:\Windows\system32\config\system_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 54788096 _____ C:\Windows\system32\config\components_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 52166656 _____ C:\Windows\system32\config\software_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\security_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\sam_previous
2015-12-12 13:32 - 2006-11-02 13:33 - 00262144 _____ C:\Windows\system32\config\default_previous
2015-12-12 13:31 - 2015-10-08 12:27 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-12 13:31 - 2015-09-12 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-12 13:31 - 2006-11-02 16:07 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-12-12 13:31 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\spool
2015-12-12 13:31 - 2006-11-02 14:34 - 00000000 ____D C:\Windows\system32\Msdtc
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 __RSD C:\Windows\Media
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\rescache
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-12-12 13:31 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\inf
2015-12-12 13:30 - 2006-11-02 14:33 - 00000000 ____D C:\Windows\registration
2015-12-12 12:41 - 2015-09-12 13:31 - 00002695 _____ C:\Users\Julien\Desktop\Microsoft Word.lnk
2015-12-11 19:40 - 2015-09-12 13:33 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Skype
2015-12-10 22:31 - 2015-10-28 15:21 - 00003716 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C5DCA189-C2E9-44B3-94E1-7AEEF78F4358}
2015-12-10 18:08 - 2015-09-12 13:10 - 00002023 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-09 20:01 - 2015-10-16 18:29 - 00028160 _____ C:\Users\Julien\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-09 19:44 - 2006-11-02 16:21 - 00245848 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-09 19:22 - 2008-01-21 11:01 - 01519816 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-09 19:22 - 2008-01-21 11:00 - 00679042 _____ C:\Windows\system32\perfh00C.dat
2015-12-09 19:22 - 2008-01-21 11:00 - 00126626 _____ C:\Windows\system32\perfc00C.dat
2015-12-09 19:11 - 2015-09-09 09:21 - 00000000 ____D C:\Windows\system32\MRT
2015-12-09 18:47 - 2006-11-02 13:35 - 140158008 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-12-04 08:20 - 2015-09-12 13:02 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-04 08:20 - 2015-09-12 13:02 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-04 08:07 - 2015-09-12 13:01 - 00000000 ____D C:\Users\Julien\AppData\Local\Google
2015-12-02 13:18 - 2015-09-08 10:25 - 00301728 _____ (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-11-30 23:32 - 2015-09-05 15:38 - 00000905 _____ C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-11-28 10:50 - 2015-10-08 13:09 - 00000000 ____D C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-21 13:13 - 2015-09-12 13:33 - 00000000 ____D C:\ProgramData\Skype
2015-11-17 10:59 - 2006-11-02 16:07 - 00000000 ____D C:\Program Files\Windows Journal
==================== Fichiers à la racine de certains dossiers =======
2015-12-09 16:09 - 2015-12-09 16:09 - 0017043 _____ () C:\Users\Julien\AppData\Roaming\UserTile.png
2015-09-05 15:38 - 2015-09-05 15:38 - 0000732 _____ () C:\Users\Julien\AppData\Local\d3d9caps64.dat
2015-10-16 18:29 - 2015-12-09 20:01 - 0028160 _____ () C:\Users\Julien\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-04 08:25 - 2015-12-04 08:25 - 0000000 _____ () C:\Users\Julien\AppData\Local\{23B59B95-871E-4023-9733-AA4B969B0530}
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2015-12-12 19:47
==================== Fin de FRST.txt ============================