cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:17-12-2015
Exécuté par cylin (administrateur) sur PCFRANCIS (17-12-2015 11:39:46)
Exécuté depuis C:\Users\cylin\Desktop
Profils chargés: cylin (Profils disponibles: cylin)
Platform: Windows 10 Pro (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\avp.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\avpui.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVDtray.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\kpm.exe
() C:\Program Files (x86)\EZ-RC\ez-rc-tray.exe
() C:\Program Files (x86)\Avanquest\Expert PDF 9 Professional\vspdfprsrv.exe
(Mega Limited) C:\ProgramData\MEGAsync\MEGAsync.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
() C:\Program Files (x86)\SlySoft\AnyDVD\ADvdDiscHlp64.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_15.1208.10480.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1512.4020.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.5.11021.0_x64__8wekyb3d8bbwe\Solitaire.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795728 2015-09-15] (NVIDIA Corporation)
HKLM-x32\...\Run: [vspdfprsrv.exe] => C:\Program Files (x86)\Avanquest\Expert PDF 9 Professional\vspdfprsrv.exe [6986240 2013-05-17] ()
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-29] (SlySoft, Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3084288 2012-07-31] (Brother Industries, Ltd.)
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\Run: [AnyDVD] => C:\Program Files (x86)\SlySoft\AnyDVD\AnyDVD.exe [109480 2015-11-12] (SlySoft, Inc.)
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\Run: [kpm.exe] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\kpm.exe [7473880 2015-07-18] (AO Kaspersky Lab)
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\Run: [DAEMON Tools Lite Automount] => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd)
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\MountPoints2: {49bd05e1-6a87-11e5-bb5b-00235433871d} - "O:\setup.exe"
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\MountPoints2: {49bd0633-6a87-11e5-bb5b-00235433871d} - "P:\InstallLauncher.bat"
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\MountPoints2: {ba609288-702a-11e5-bb5c-00235433871d} - "R:\InstallLauncher.bat"
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\MountPoints2: {bc46ff2e-6435-11e5-bb58-00235433871d} - "N:\NTSE.EXE"
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\MountPoints2: {bc470236-6435-11e5-bb58-00235433871d} - "P:\NTSE.EXE"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\EZ-RC System Tray.lnk [2015-11-29]
ShortcutTarget: EZ-RC System Tray.lnk -> C:\Program Files (x86)\EZ-RC\ez-rc-tray.exe ()
Startup: C:\Users\cylin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2015-12-08]
ShortcutTarget: MEGAsync.lnk -> C:\ProgramData\MEGAsync\MEGAsync.exe (Mega Limited)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{aa472efc-aec2-4a50-88e2-43c61a6864ad}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130948178674519539&GUID=68B3C4CA-5C1B-42AF-8198-5FC58C6490AD
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1627173476-3828273904-1565687476-1001 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-1627173476-3828273904-1565687476-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
BHO: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO: Kaspersky Password Manager -> {F710F7E5-A520-471D-989C-F653AC328FB2} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\x64\ie_engine.dll [2015-07-18] (AO Kaspersky Lab)
BHO-x32: Virtual Keyboard Plugin -> {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin -> {93BC2EA7-2F17-4729-948A-D2E03FFB2412} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
BHO-x32: Safe Money Plugin -> {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\IEExt\ie_plugin.dll [2014-12-23] (Kaspersky Lab ZAO)
BHO-x32: Kaspersky Password Manager -> {F710F7E5-A520-471D-989C-F653AC328FB2} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\ie_engine.dll [2015-07-18] (AO Kaspersky Lab)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-20] (Google Inc.)
Toolbar: HKU\S-1-5-21-1627173476-3828273904-1565687476-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-20] (Google Inc.)
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/fr/Core/Player/2020PlayerAX_IKEA_Win32.cab
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\cylin\AppData\Roaming\Mozilla\Firefox\Profiles\4vxeoio2.default
FF Homepage: hxxp://www.orange.fr/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_235.dll [2015-12-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-09] ()
FF Plugin-x32: @kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-09-15] ()
FF Plugin-x32: @kaspersky.com/online_banking_08806E753BE44495B44E90AA2513BDC5 -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-09-15] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-09-15] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2014-08-29] (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1627173476-3828273904-1565687476-1001: kaspersky.com/KPMPlugin -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\npKPMPlugin.dll [2015-07-18] (Kaspersky Lab)
FF Plugin HKU\S-1-5-21-1627173476-3828273904-1565687476-1001: kpm_add_on@kaspersky -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\kpm_add_on@kaspersky [2015-09-16] ()
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com [2015-09-15] [non signé]
FF Extension: 20-20 3D Viewer - IKEA - C:\Users\cylin\AppData\Roaming\Mozilla\Firefox\Profiles\4vxeoio2.default\extensions\2020Player_IKEA@2020Technologies.com [2015-09-27]
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com [2015-09-15] [non signé]
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com [2015-09-15] [non signé]
FF Extension: MEGA - C:\Users\cylin\AppData\Roaming\Mozilla\Firefox\Profiles\4vxeoio2.default\Extensions\firefox@mega.co.nz.xpi [2015-12-14]
FF Extension: Adblock Plus - C:\Users\cylin\AppData\Roaming\Mozilla\Firefox\Profiles\4vxeoio2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker_663BE84DBCC949E88C7600F63CA7F098@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard_07402848C2F6470194F131B0F3DE025E@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking_08806E753BE44495B44E90AA2513BDC5@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\FFExt\online_banking@kaspersky.com
FF HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\...\Firefox\Extensions: [kpm_add_on@kaspersky] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\kpm_add_on@kaspersky
FF Extension: Kaspersky Password Manager - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.3\kpm_add_on@kaspersky [2015-09-16]
StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://orange.fr/"
CHR Profile: C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-16]
CHR Extension: (Google Docs) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-16]
CHR Extension: (Google Drive) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-16]
CHR Extension: (YouTube) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-16]
CHR Extension: (Google Cast) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-12-17]
CHR Extension: (Recherche Google) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-16]
CHR Extension: (Kaspersky Protection) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbhjdbfgekjfcfkkfjjmlmojhbllhbho [2015-12-16]
CHR Extension: (Google Sheets) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-16]
CHR Extension: (Kaspersky Password Manager) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlpfbladobbejblkbfleiljmikcfhkem [2015-12-16]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-16]
CHR Extension: (Gmail) - C:\Users\cylin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-16]
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKU\S-1-5-21-1627173476-3828273904-1565687476-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hlpfbladobbejblkbfleiljmikcfhkem] - hxxps://chrome.google.com/webstore/detail/hlpfbladobbejblkbfleiljmikcfhkem
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AVP15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 15.0.2\avp.exe [194000 2015-06-29] (Kaspersky Lab ZAO)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [270336 2012-07-13] (Brother Industries, Ltd.) [Fichier non signé]
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-27] (Disc Soft Ltd)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-11-27] (Maxthon)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 androidusb; C:\Windows\System32\Drivers\androidusb.sys [32768 2015-12-08] (Google Inc)
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [150440 2015-04-28] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [150440 2015-04-28] (SlySoft, Inc.)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [247016 2015-06-29] (Kaspersky Lab UK Ltd)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30352 2015-10-04] (Disc Soft Ltd)
S3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-01-31] (Disc Soft Ltd)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2015-12-16] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-06-29] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [64368 2015-06-29] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [159960 2015-06-29] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [226480 2015-06-29] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [817848 2015-10-06] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [39792 2015-06-29] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [40304 2015-06-29] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [39792 2015-06-29] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [24944 2015-06-29] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [77680 2015-06-29] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [85360 2015-06-29] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [190648 2015-10-06] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\drivers\ASACPI.sys [17280 2013-05-17] ()
S3 qcusbser; C:\Windows\System32\drivers\qcusbser.sys [242688 2013-01-14] (QUALCOMM Incorporated)
S3 SGHIDI; C:\Windows\system32\drivers\tgimonx64.sys [40960 2006-02-16] ()
S3 SGIR; C:\Windows\system32\drivers\iMON_x64.sys [30208 2005-12-16] ()
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
U4 klkbdflt2; \SystemRoot\system32\DRIVERS\klkbdflt2.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-12-17 11:39 - 2015-12-17 11:40 - 00022262 _____ C:\Users\cylin\Desktop\FRST.txt
2015-12-17 11:38 - 2015-12-17 11:39 - 02370048 _____ (Farbar) C:\Users\cylin\Desktop\FRST64.exe
2015-12-17 11:36 - 2015-12-17 11:36 - 00016148 _____ C:\WINDOWS\system32\PCFRANCIS_cylin_HistoryPrediction.bin
2015-12-17 10:51 - 2015-12-17 10:51 - 00085593 _____ C:\Users\cylin\Desktop\ZHPDiag.txt
2015-12-17 10:44 - 2015-12-17 10:44 - 00002269 _____ C:\Users\cylin\Desktop\Rapport MBAM.txt
2015-12-17 10:19 - 2015-12-17 10:42 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-12-17 10:19 - 2015-12-17 10:19 - 00001135 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-12-17 10:19 - 2015-12-17 10:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-17 10:19 - 2015-12-17 10:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-17 10:19 - 2015-12-17 10:19 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-17 10:19 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-12-17 10:19 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-12-17 10:19 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-12-17 10:15 - 2015-12-17 10:19 - 22908888 _____ (Malwarebytes ) C:\Users\cylin\Desktop\mbam-setup-2.2.0.1024.exe
2015-12-17 10:07 - 2015-12-17 10:09 - 00000000 ____D C:\AdwCleaner
2015-12-17 09:48 - 2015-12-17 10:07 - 01740288 _____ C:\Users\cylin\Desktop\adwcleaner_5.025.exe
2015-12-17 09:43 - 2015-12-17 09:43 - 00008691 _____ C:\Users\cylin\Desktop\ZHPCleaner.txt
2015-12-17 09:19 - 2015-12-17 09:50 - 00000875 _____ C:\Users\cylin\Desktop\ZHPCleaner.lnk
2015-12-17 09:17 - 2015-12-17 09:19 - 01946112 _____ C:\Users\cylin\Desktop\ZHPCleaner.exe
2015-12-16 19:44 - 2012-06-05 15:59 - 00025299 ____R (Brother Industries, Ltd) C:\Tempo.zhp
2015-12-16 19:37 - 2015-12-17 10:45 - 00000000 ____D C:\Users\cylin\AppData\Roaming\ZHP
2015-12-16 19:37 - 2015-12-17 10:44 - 00000865 _____ C:\Users\cylin\Desktop\ZHPDiag.lnk
2015-12-16 19:36 - 2015-12-16 19:36 - 02019328 _____ C:\Users\cylin\Downloads\ZHPDiag3.exe
2015-12-16 19:07 - 2015-12-16 19:07 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2015-12-16 19:06 - 2015-12-16 19:06 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\cylin\Downloads\SpyHunter-Installer.exe
2015-12-16 19:01 - 2015-12-16 19:01 - 00044278 _____ C:\Users\cylin\Documents\FRST.txt
2015-12-16 19:01 - 2015-12-16 19:01 - 00035206 _____ C:\Users\cylin\Documents\Addition.txt
2015-12-16 18:53 - 2015-12-16 18:55 - 00035206 _____ C:\Users\cylin\Downloads\Addition.txt
2015-12-16 18:51 - 2015-12-17 11:39 - 00000000 ____D C:\FRST
2015-12-16 18:51 - 2015-12-16 18:55 - 00044278 _____ C:\Users\cylin\Downloads\FRST.txt
2015-12-16 18:51 - 2015-12-16 18:51 - 02370048 _____ (Farbar) C:\Users\cylin\Downloads\FRST64.exe
2015-12-16 18:45 - 2015-12-16 18:45 - 00002294 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-16 18:45 - 2015-12-16 18:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-16 15:39 - 2015-12-17 10:41 - 00000290 __RSH C:\ProgramData\ntuser.pol
2015-12-16 15:34 - 2015-12-16 15:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-14 13:30 - 2015-12-14 13:30 - 00118364 _____ C:\Users\cylin\Documents\Cuisine complete.pdf
2015-12-13 17:19 - 2015-12-13 17:19 - 00025088 _____ C:\Users\cylin\Downloads\vitesses de coupe.xls
2015-12-13 11:49 - 2015-12-13 11:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DYNALOG
2015-12-13 11:46 - 2015-12-13 12:15 - 00000000 ____D C:\Program Files (x86)\Blum
2015-12-13 11:46 - 2015-12-13 12:12 - 00000000 ____D C:\Users\cylin\Documents\Blum
2015-12-12 13:16 - 2015-12-12 13:16 - 02067981 _____ C:\Users\cylin\Documents\raffinerad-four-a-pyrolyse__AA-1514909-3.pdf
2015-12-12 12:45 - 2015-12-12 12:45 - 01470859 _____ C:\Users\cylin\Documents\raffinerad-four-a-micro-ondes__AA-1514903-1.pdf
2015-12-09 14:23 - 2015-11-25 05:44 - 21872640 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-09 14:23 - 2015-11-25 05:42 - 24592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-09 14:23 - 2015-11-25 05:34 - 12504576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-09 14:23 - 2015-11-25 05:23 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-12-09 14:23 - 2015-11-25 05:22 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-09 14:23 - 2015-11-25 05:10 - 18801664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-12-09 14:23 - 2015-11-25 05:05 - 11263488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-12-09 14:22 - 2015-11-25 06:33 - 03622272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 14:22 - 2015-11-25 06:01 - 02879024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-12-09 14:22 - 2015-11-25 05:23 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-09 14:22 - 2015-11-25 05:22 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 14:21 - 2015-12-01 06:51 - 07523840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-12-09 14:21 - 2015-12-01 05:59 - 05455360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-12-09 14:21 - 2015-11-25 06:27 - 01366680 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 14:21 - 2015-11-25 06:09 - 01310880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 14:21 - 2015-11-25 05:49 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-12-09 14:21 - 2015-11-25 05:36 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-09 14:21 - 2015-11-25 05:35 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-09 14:21 - 2015-11-25 05:35 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2015-12-09 14:21 - 2015-11-25 05:29 - 01649152 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-09 14:21 - 2015-11-25 05:27 - 02180608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-12-09 14:21 - 2015-11-25 05:19 - 01795584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-12-09 14:21 - 2015-11-25 05:18 - 01233920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-12-09 14:21 - 2015-11-25 05:17 - 00774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-12-09 14:21 - 2015-11-25 05:16 - 01442816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2015-12-09 14:21 - 2015-11-25 05:16 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Magnify.exe
2015-12-09 14:21 - 2015-11-25 05:10 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-12-09 14:21 - 2015-11-25 05:04 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 14:20 - 2015-12-01 08:01 - 02115936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-09 14:20 - 2015-11-25 06:42 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-12-09 14:20 - 2015-11-25 06:42 - 00168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2015-12-09 14:20 - 2015-11-25 06:41 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 14:20 - 2015-11-25 06:40 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-12-09 14:20 - 2015-11-25 06:32 - 00113184 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2015-12-09 14:20 - 2015-11-25 06:12 - 04047288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-12-09 14:20 - 2015-11-25 06:11 - 01532984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 14:20 - 2015-11-25 05:59 - 00092992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2015-12-09 14:20 - 2015-11-25 05:49 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-12-09 14:20 - 2015-11-25 05:49 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-09 14:20 - 2015-11-25 05:49 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2015-12-09 14:20 - 2015-11-25 05:48 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EthernetMediaManager.dll
2015-12-09 14:20 - 2015-11-25 05:48 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMediaManager.dll
2015-12-09 14:20 - 2015-11-25 05:37 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 14:20 - 2015-11-25 05:36 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-12-09 14:20 - 2015-11-25 05:31 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2015-12-09 14:20 - 2015-11-25 05:30 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2015-12-09 14:20 - 2015-11-25 05:30 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-09 14:20 - 2015-11-25 05:30 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2015-12-09 14:20 - 2015-11-25 05:29 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2015-12-09 14:20 - 2015-11-25 05:28 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-09 14:20 - 2015-11-25 05:28 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-09 14:20 - 2015-11-25 05:26 - 00849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-12-09 14:20 - 2015-11-25 05:26 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-09 14:20 - 2015-11-25 05:25 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-12-09 14:20 - 2015-11-25 05:23 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-12-09 14:20 - 2015-11-25 05:22 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-12-09 14:20 - 2015-11-25 05:13 - 02153984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-12-09 14:20 - 2015-11-25 05:11 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2015-12-09 14:20 - 2015-11-25 05:10 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-12-09 14:20 - 2015-11-25 05:10 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2015-12-09 14:20 - 2015-11-25 05:08 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-12-09 14:20 - 2015-11-25 05:04 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-12-09 14:20 - 2015-11-25 05:04 - 00474624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-12-09 14:20 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-12-09 14:20 - 2015-11-25 03:52 - 00775312 _____ C:\WINDOWS\system32\locale.nls
2015-12-09 14:19 - 2015-12-01 07:03 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gpuenergydrv.sys
2015-12-09 14:19 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2015-12-09 14:19 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2015-12-09 14:19 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2015-12-09 14:19 - 2015-11-25 05:22 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2015-12-09 14:19 - 2015-11-25 05:19 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-12-09 14:19 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2015-12-09 14:19 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2015-12-09 14:19 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2015-12-09 14:19 - 2015-11-25 05:04 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2015-12-09 14:18 - 2015-12-01 06:54 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-12-09 14:18 - 2015-11-25 05:25 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2015-12-09 14:18 - 2015-11-25 05:07 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2015-12-09 14:15 - 2015-12-01 06:49 - 04792320 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-12-09 14:14 - 2015-12-01 06:02 - 03580416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-12-08 21:03 - 2015-12-08 21:03 - 00032768 _____ (Google Inc) C:\WINDOWS\system32\Drivers\androidusb.sys
2015-12-08 21:02 - 2015-12-08 21:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2015-12-08 20:48 - 2013-04-11 10:27 - 01002728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller2.dll
2015-12-08 18:51 - 2015-12-08 18:51 - 03909223 _____ C:\Users\cylin\Documents\BDC.pdf
2015-12-08 18:00 - 2015-12-08 18:00 - 00000055 _____ C:\WINDOWS\SysWOW64\BRDH3170CDW.DAT
2015-12-08 09:19 - 2015-12-08 09:20 - 00000000 ___RD C:\Users\cylin\Documents\MEGAsync
2015-12-07 13:24 - 2015-12-07 13:24 - 00029006 _____ C:\Users\cylin\Documents\Meublefours.pdf
2015-12-07 09:52 - 2015-12-07 09:52 - 00000799 _____ C:\Users\Public\Desktop\MEGAsync.lnk
2015-12-07 09:52 - 2015-12-07 09:52 - 00000000 ____D C:\Users\cylin\AppData\Local\Mega Limited
2015-12-07 09:52 - 2015-12-07 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync
2015-12-07 09:51 - 2015-12-16 09:10 - 00000000 ____D C:\ProgramData\MEGAsync
2015-12-07 09:50 - 2015-12-07 09:51 - 10144904 _____ (MEGA Limited) C:\Users\cylin\Downloads\MEGAsyncSetup.exe
2015-12-07 09:49 - 2015-12-04 19:35 - 00000116 _____ C:\Users\cylin\Downloads\Clipv154.txt
2015-12-05 13:45 - 2015-12-05 13:45 - 00027197 _____ C:\Users\cylin\Documents\Commande.pdf
2015-12-05 13:39 - 2015-12-05 13:39 - 00120064 _____ C:\Users\cylin\Documents\Meublefourseul.pdf
2015-12-03 20:55 - 2015-12-03 20:55 - 00002092 _____ C:\Users\Public\Desktop\Brother Utilities.lnk
2015-12-03 20:55 - 2015-12-03 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2015-12-03 20:54 - 2015-12-03 20:54 - 00000000 ____D C:\Program Files (x86)\Browny02
2015-12-03 20:54 - 2015-12-03 20:54 - 00000000 ____D C:\Brother
2015-12-03 14:09 - 2015-12-03 14:10 - 00000000 ____D C:\Users\cylin\Desktop\Nouveau dossier
2015-12-02 09:42 - 2015-12-02 09:43 - 19057520 _____ (Microsoft) C:\Users\cylin\Downloads\NokiaSoftwareRecoveryToolInstaller.exe
2015-11-29 19:23 - 2015-11-29 19:23 - 00095574 _____ C:\Users\cylin\Documents\TV codes dreambox.pdf
2015-11-29 18:52 - 2015-12-09 12:14 - 00001983 _____ C:\Users\Public\Desktop\EZ-RC.lnk
2015-11-29 18:52 - 2015-11-29 18:52 - 01170160 _____ (Universal Electronics) C:\Users\cylin\Downloads\conduit.exe
2015-11-29 18:52 - 2015-11-29 18:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZ-RC
2015-11-29 18:52 - 2015-11-29 18:52 - 00000000 ____D C:\Program Files (x86)\EZ-RC
2015-11-25 19:25 - 2015-11-25 19:25 - 00009828 _____ C:\Users\cylin\Documents\Dimensions cuisine.fpf
2015-11-25 18:50 - 2015-11-25 18:50 - 00002551 _____ C:\Users\Public\Desktop\IKEA Home Planner.lnk
2015-11-25 18:50 - 2015-11-25 18:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IKEA HomePlanner
2015-11-25 18:50 - 2015-11-25 18:50 - 00000000 ____D C:\Program Files (x86)\IKEA HomePlanner
2015-11-24 19:48 - 2015-11-24 19:48 - 00000000 _____ C:\autoexec.bat
2015-11-22 15:14 - 2015-11-25 12:23 - 00000000 ____D C:\Users\cylin\Desktop\Photos
2015-11-22 15:07 - 2015-11-22 15:07 - 00254038 _____ C:\Users\cylin\Documents\LISTE_TV_COMPATIBLE_FRANSAT_2015-WEB.pdf
2015-11-18 10:58 - 2015-11-18 10:58 - 00000000 ____D C:\Users\cylin\Downloads\IMMO_SOFT

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-12-17 11:35 - 2015-09-15 19:51 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-12-17 11:29 - 2015-09-16 11:28 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-17 11:20 - 2015-09-15 18:10 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-17 10:44 - 2015-09-15 16:36 - 01839260 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-12-17 10:44 - 2015-09-15 15:28 - 00819778 _____ C:\WINDOWS\system32\perfh00C.dat
2015-12-17 10:44 - 2015-09-15 15:28 - 00154144 _____ C:\WINDOWS\system32\perfc00C.dat
2015-12-17 10:44 - 2015-09-15 15:19 - 00000000 ____D C:\WINDOWS\INF
2015-12-17 10:41 - 2015-09-15 18:10 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-17 10:40 - 2015-09-16 01:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-12-17 10:40 - 2015-09-15 17:35 - 00000000 ____D C:\ProgramData\NVIDIA
2015-12-17 10:39 - 2015-09-15 15:34 - 00000000 ____D C:\WINDOWS\Setup
2015-12-17 10:39 - 2015-09-15 15:02 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-17 10:39 - 2015-09-15 15:02 - 00000000 ____D C:\Windows
2015-12-17 09:25 - 2015-09-15 15:21 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-17 09:25 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-16 18:45 - 2015-09-15 18:10 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-16 18:45 - 2015-09-15 18:09 - 00000000 ____D C:\Users\cylin\AppData\Local\Google
2015-12-16 17:28 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-16 15:45 - 2015-09-15 17:37 - 00001220 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-12-16 15:41 - 2015-09-15 17:37 - 00001232 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-12-16 15:39 - 2015-09-15 15:21 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-12-16 15:39 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-12-16 15:37 - 2015-09-15 17:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-16 14:42 - 2015-11-12 10:54 - 00000706 _____ C:\WINDOWS\BRRBCOM.INI
2015-12-14 13:43 - 2015-09-15 17:37 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-14 13:36 - 2015-09-15 17:37 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-13 12:18 - 2015-09-16 01:09 - 00216648 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-11 18:32 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\rescache
2015-12-09 19:35 - 2015-11-07 18:46 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-09 19:35 - 2015-11-07 18:46 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-12-09 19:32 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-09 15:46 - 2015-11-07 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-09 15:44 - 2015-09-15 15:10 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-09 11:45 - 2015-09-15 15:02 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-09 09:15 - 2015-09-15 16:34 - 00002411 _____ C:\Users\cylin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-09 09:15 - 2015-09-15 16:34 - 00000000 ___RD C:\Users\cylin\OneDrive
2015-12-09 04:39 - 2015-09-29 10:30 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-04 09:15 - 2015-09-15 18:10 - 00004154 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-04 09:15 - 2015-09-15 18:10 - 00003922 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-03 20:54 - 2015-11-11 18:53 - 00000000 ____D C:\Program Files (x86)\Brother
2015-12-03 20:54 - 2015-09-15 18:07 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-03 19:48 - 2015-11-04 13:06 - 00000000 ____D C:\Program Files (x86)\Samsung Printers
2015-12-03 19:48 - 2015-09-15 18:01 - 00000000 ____D C:\ProgramData\Samsung
2015-12-03 19:30 - 2015-09-16 09:18 - 00000000 ____D C:\Users\cylin\AppData\Local\ElevatedDiagnostics
2015-12-03 14:59 - 2015-09-15 15:36 - 00000000 ___DC C:\WINDOWS\Panther
2015-12-03 14:55 - 2015-10-30 20:25 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-01 01:32 - 2015-09-15 15:24 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-01 01:32 - 2015-09-15 15:24 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-30 17:41 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2015-11-30 17:31 - 2015-09-15 18:07 - 00000000 ____D C:\Users\cylin\AppData\Roaming\Expert PDF 9
2015-11-28 09:45 - 2015-10-26 14:31 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-26 11:11 - 2015-09-16 09:07 - 00000000 ____D C:\Users\cylin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 11:11 - 2015-09-16 09:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-26 11:10 - 2015-09-16 09:07 - 00000000 ____D C:\Program Files\WinRAR
2015-11-25 18:50 - 2015-09-15 16:30 - 00000000 ____D C:\Users\cylin\AppData\Local\VirtualStore
2015-11-25 10:00 - 2015-09-15 16:30 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-25 09:44 - 2015-09-15 15:21 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-24 19:47 - 2015-09-15 16:29 - 00000000 ____D C:\Users\cylin
2015-11-17 15:22 - 2015-09-16 08:23 - 00001178 _____ C:\Users\Public\Desktop\AnyDVD.lnk

==================== Fichiers à la racine de certains dossiers =======

2015-10-18 08:38 - 2015-10-18 08:38 - 0000043 ___SH () C:\ProgramData\.zreglib
2015-09-16 01:14 - 2015-09-16 01:14 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains fichiers dans TEMP:
====================
C:\Users\cylin\AppData\Local\Temp\adrdr910en.exe
C:\Users\cylin\AppData\Local\Temp\adrdr910fr.exe
C:\Users\cylin\AppData\Local\Temp\sqlite3.dll
C:\Users\cylin\AppData\Local\Temp\sskinst.exe
C:\Users\cylin\AppData\Local\Temp\_isF238.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-12-11 08:53

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité