Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 17-12-2016
Exécuté par ORANI31 (administrateur) sur ORANI31-PC (17-12-2016 23:10:35)
Exécuté depuis C:\Users\ORANI31\Desktop
Profils chargés: ORANI31 (Profils disponibles: ORANI31)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2013-04-05] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.)
HKLM\...\Run: [BrHelp] => C:\Program Files\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824 2016-10-01] (Adobe Systems Incorporated)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3981368 2016-10-22] (Tonec Inc.)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6854360 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [uTorrent] => C:\Users\ORANI31\AppData\Roaming\uTorrent\uTorrent.exe [1995968 2016-11-18] (BitTorrent Inc.)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2012-11-16] (Tonec Inc.)
GroupPolicy: Restriction ? <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{004F94E3-E2EE-4E7F-8353-0AC16F16B736}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-3235856546-844269278-4031702888-1000 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2013-11-29] (Internet Download Manager, Tonec Inc.)
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-17] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: 7owidw96.default
FF ProfilePath: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default [2016-12-17]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2016-12-05]
FF Extension: (Turbo Download Manager) - C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2016-11-25]
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\example-engine-two.xml [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\example-engine.xml [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\search-for-firefox-search-engine.xml [2016-11-16]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-17]
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ORANI31\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\ORANI31\AppData\Roaming\IDM\idmmzcc5 [2016-12-17] [non signé]
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/AuthorwarePlayer -> C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll [2004-07-02] (Macromedia, Inc.)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll [2013-01-30] (Adobe Systems, Inc.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3235856546-844269278-4031702888-1000: @tools.google.com/Google Update;version=3 -> C:\Users\ORANI31\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3235856546-844269278-4031702888-1000: @tools.google.com/Google Update;version=9 -> C:\Users\ORANI31\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default [2016-12-17]
CHR Extension: (Google Slides) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-16]
CHR Extension: (Google Docs) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-16]
CHR Extension: (Google Drive) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-16]
CHR Extension: (YouTube) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-16]
CHR Extension: (Recherche Google) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-11-16]
CHR Extension: (Google Sheets) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-16]
CHR Extension: (Kaspersky Protection) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-11-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-17]
CHR Extension: (Floating for YouTube™) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2016-11-17]
CHR Extension: (Skype) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-16]
CHR Extension: (IDM Integration Module) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-16]
CHR Extension: (Gmail) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-11-25]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-11-25]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AVP17.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Fichier non signé]
S2 KSDE1.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-10-22] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [170840 2016-06-10] (AO Kaspersky Lab)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2016-11-24] (Disc Soft Ltd)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16440 2012-12-04] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [165296 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [57264 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [71504 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [69000 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [149840 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [120664 2016-12-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [804128 2016-12-17] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49744 2016-12-17] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [46000 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41392 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48056 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [71088 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [115936 2016-12-17] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [161712 2016-06-14] (AO Kaspersky Lab)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [108624 2013-03-04] (Qualcomm Atheros Co., Ltd.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [56432 2013-01-23] (Intel Corporation)
R3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [171072 2016-10-06] (Prolific Technology Inc.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-12-16] ()
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1841272 2012-10-22] (VIA Technologies, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-08-16] (MBB)
S3 catchme; \??\C:\Users\ORANI31\AppData\Local\Temp\catchme.sys [X]
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
S3 MSICDSetup; \??\E:\CDriver.sys [X]
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-17 23:10 - 2016-12-17 23:11 - 00014852 _____ C:\Users\ORANI31\Desktop\FRST.txt
2016-12-17 23:10 - 2016-12-17 23:10 - 00000000 ____D C:\FRST
2016-12-17 22:57 - 2016-12-17 22:57 - 01762304 _____ (Farbar) C:\Users\ORANI31\Desktop\FRST.exe
2016-12-17 22:25 - 2016-12-17 22:18 - 00017984 _____ C:\Users\ORANI31\Desktop\ComboFix.txt
2016-12-17 22:18 - 2016-12-17 22:18 - 00017984 _____ C:\ComboFix.txt
2016-12-17 22:11 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-12-17 22:11 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-12-17 22:11 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2016-12-17 22:09 - 2016-12-17 22:18 - 00000000 ____D C:\Windows\erdnt
2016-12-17 22:09 - 2016-12-17 22:18 - 00000000 ____D C:\Qoobox
2016-12-17 22:02 - 2016-12-17 22:03 - 05659917 ____R (Swearware) C:\Users\ORANI31\Desktop\ComboFix.exe
2016-12-17 19:34 - 2016-12-17 20:05 - 00001332 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2016-12-17 19:34 - 2016-12-17 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2016-12-17 19:34 - 2016-12-17 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-12-17 19:34 - 2016-12-17 19:33 - 00002120 _____ C:\Users\Public\Desktop\Safe Money.lnk
2016-12-17 19:34 - 2016-12-17 19:33 - 00002102 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-12-17 19:32 - 2016-12-17 19:52 - 00804128 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-12-17 19:32 - 2016-12-17 19:34 - 00000000 ____D C:\Program Files\Kaspersky Lab
2016-12-17 19:32 - 2016-12-17 19:32 - 00000000 ____D C:\Windows\ELAMBKUP
2016-12-17 19:32 - 2016-06-26 15:10 - 00149840 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-12-17 19:15 - 2016-12-17 19:15 - 02409648 _____ (Kaspersky Lab) C:\Users\ORANI31\Desktop\startup.exe
2016-12-17 13:03 - 2016-12-17 13:03 - 00010920 ____R C:\Pre_Scan_17_12_2016_13_03_24.txt
2016-12-17 12:25 - 2016-12-17 21:01 - 00000000 ____D C:\Pre_Scan
2016-12-17 12:19 - 2016-12-17 12:19 - 03486120 _____ (SosVirus) C:\Users\ORANI31\Downloads\Pre_Scan.com
2016-12-16 22:55 - 2016-12-16 22:55 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-12-16 22:55 - 2016-12-16 22:55 - 00000000 ____D C:\ProgramData\RogueKiller
2016-12-16 22:21 - 2016-12-16 22:22 - 03977168 _____ C:\Users\ORANI31\Downloads\adwcleaner_6.041.exe
2016-12-16 22:12 - 2016-12-17 21:01 - 00000000 ____D C:\AdwCleaner
2016-12-16 16:29 - 2016-12-17 21:26 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\ZHP
2016-12-16 16:27 - 2016-12-16 16:28 - 02588160 _____ C:\Users\ORANI31\Downloads\ZHPDiag3.exe
2016-12-16 15:46 - 2016-12-17 21:01 - 00000000 ____D C:\UsbFix
2016-12-16 15:45 - 2016-12-16 15:46 - 03814429 _____ (SOSVirus) C:\Users\ORANI31\Downloads\UsbFix_9.010.exe
2016-12-16 11:55 - 2016-12-16 11:55 - 00151592 _____ C:\Windows\Minidump\121616-13353-01.dmp
2016-12-16 09:23 - 2016-12-16 09:48 - 00000000 ____D C:\Users\ORANI31\Desktop\ICONE-CANAL+
2016-12-15 12:23 - 2016-12-17 21:01 - 00000000 ___RD C:\Skypee
2016-12-15 12:22 - 2016-12-17 21:01 - 00000000 ___RD C:\Google
2016-12-15 10:32 - 2016-12-15 10:32 - 00147864 _____ C:\Windows\Minidump\121516-13400-01.dmp
2016-12-12 11:07 - 2016-12-17 20:13 - 00000461 _____ C:\Users\ORANI31\Desktop\Nouveau document texte.txt
2016-12-09 09:43 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Zatoichi.Meets.the.One-Armed.Swordsman.1971.480p.BluRay.x264-mSD
2016-12-08 20:34 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\The.Tale.of.Zatoichi.Continues.1962.480p.BluRay.x264-mSD
2016-12-08 20:08 - 2016-12-08 20:08 - 00000000 ____D C:\Users\ORANI31\Downloads\The.Tale.of.Zatoichi.1962.480p.BluRay.x264-mSD
2016-12-08 13:51 - 2016-12-09 10:16 - 00000000 ____D C:\Users\ORANI31\Downloads\Ghostbusters The Video Game [MULTI5][PS2DVD][PAL][WwW.GamesTorrents.CoM]
2016-12-08 13:51 - 2016-12-08 19:03 - 00000000 ____D C:\Users\ORANI31\Downloads\Teenage Mutant Ninja Turtles Smash-Up [English][PS2DVD][USA][WwW.GamesTorrents.CoM]
2016-12-08 13:49 - 2016-12-08 14:25 - 00000000 ____D C:\Users\ORANI31\Downloads\Ben 10 Alien Force Vilgax Attacks [MULTI4][PS2DVD][PAL][WwW.GamesTorrents.CoM]
2016-12-08 13:48 - 2016-12-08 13:48 - 00032404 _____ C:\Users\ORANI31\Downloads\Ben.10.Alien.Force.Vilgax.Attacks.%5BMULTI4%5D%5BPS2DVD%5D%5BPAL%5D%5BWwW.GamesTorrents.CoM%5D.t5605.torrent
2016-12-08 13:48 - 2016-12-08 13:48 - 00024201 _____ C:\Users\ORANI31\Downloads\Ghostbusters.The.Video.Game.%5BMULTI5%5D%5BPS2DVD%5D%5BPAL%5D%5BWwW.GamesTorrents.CoM%5D.t5162.torrent
2016-12-08 13:48 - 2016-12-08 13:48 - 00023020 _____ C:\Users\ORANI31\Downloads\Teenage.Mutant.Ninja.Turtles.Smash-Up.%5BEnglish%5D%5BPS2DVD%5D%5BUSA%5D%5BWwW.GamesTorrents.CoM%5D.t5454.torrent
2016-12-08 00:02 - 2016-12-08 12:48 - 00000000 ____D C:\Users\ORANI31\Downloads\WWE All Stars [MULTI5][USA][PS2DVD][WwW.GamesTorrents.CoM]
2016-12-07 23:54 - 2016-12-07 23:55 - 00018990 _____ C:\Users\ORANI31\Downloads\Superbike.World.Championship.2008.%5BEnglish%5D%5BPS2DVD%5D%5BWwW.GamesTorrents.CoM%5D.t4172.torrent
2016-12-07 19:47 - 2016-12-07 19:47 - 00002805 _____ C:\Users\ORANI31\Downloads\tv_channels_2016-12-07.m3u
2016-12-06 20:40 - 2016-12-06 20:40 - 00001895 _____ C:\Users\ORANI31\Downloads\tv_channels_star.m3u
2016-12-06 20:40 - 2016-12-06 20:40 - 00001895 _____ C:\Users\ORANI31\Downloads\tv_channels_star (1).m3u
2016-12-04 22:09 - 2016-12-04 22:09 - 00000000 ____D C:\Program Files\Karmian
2016-12-04 11:15 - 2016-12-04 11:15 - 00019888 _____ C:\Users\ORANI31\Downloads\Pro.Evolution.Soccer.2016.v1.05.Incl.DLCs-Repack.torrent
2016-12-04 00:12 - 2016-11-29 13:15 - 00000000 ____D C:\Users\ORANI31\Downloads\Crack
2016-12-04 00:11 - 2016-12-04 00:11 - 01370476 _____ C:\Users\ORANI31\Downloads\Crack.rar
2016-12-04 00:03 - 2016-12-04 00:03 - 06830020 _____ C:\Users\ORANI31\Downloads\idman626build12.rar
2016-12-03 11:16 - 2016-12-03 11:16 - 00000212 _____ C:\Users\ORANI31\Downloads\chunklist (1).m3u8
2016-12-03 11:13 - 2016-12-03 11:13 - 00000209 _____ C:\Users\ORANI31\Downloads\chunklist.m3u8
2016-12-01 22:40 - 2016-12-01 22:40 - 00163976 _____ C:\Windows\Minidump\120116-13946-01.dmp
2016-11-30 23:37 - 2016-12-17 21:01 - 00000000 ____D C:\wifidata
2016-11-29 22:57 - 2016-11-29 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive
2016-11-29 22:48 - 2016-11-29 22:48 - 00000000 ____D C:\Program Files\City Interactive
2016-11-29 17:38 - 2016-11-29 17:38 - 00000000 ____D C:\Users\ORANI31\Downloads\Street Fighter V
2016-11-28 17:38 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Sniper.Ghost.Warrior-SKIDROW
2016-11-28 17:37 - 2016-11-28 17:37 - 00041840 _____ C:\Users\ORANI31\Downloads\Sniper.Ghost.Warrior-font.color=#ccc--SKIDROW--font-.torrent
2016-11-28 17:19 - 2016-11-28 17:19 - 00000000 ____D C:\Users\ORANI31\Downloads\Street.Fighter.X.Tekken-SKIDROW
2016-11-24 16:47 - 2016-11-24 16:47 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Ubisoft
2016-11-24 16:47 - 2016-11-24 16:47 - 00000000 ____D C:\Users\ORANI31\AppData\Local\storage
2016-11-24 16:46 - 2016-11-24 16:46 - 00000000 ____D C:\Users\ORANI31\Documents\Ubisoft
2016-11-24 16:17 - 2016-11-24 16:17 - 00000000 ____D C:\Program Files\Ubisoft
2016-11-24 01:45 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Disc_Soft_Ltd
2016-11-24 01:42 - 2016-11-24 01:42 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-11-24 01:41 - 2016-11-24 01:49 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DAEMON Tools Lite
2016-11-24 01:41 - 2016-11-24 01:42 - 00026168 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-11-24 01:37 - 2016-11-24 01:41 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-11-23 23:41 - 2016-11-23 23:41 - 00000675 _____ C:\Users\ORANI31\Downloads\PIRC6.KICH New March.txt
2016-11-23 17:47 - 2016-11-23 17:47 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\PowerISO
2016-11-23 13:28 - 2016-12-04 14:15 - 00000000 ____D C:\Users\ORANI31\Desktop\ardiya
2016-11-21 22:58 - 2016-11-22 21:23 - 00000000 ____D C:\Users\ORANI31\Downloads\Tom Clancy's Ghost Recon Future Soldier Complete Ed. - CorePack
2016-11-21 22:57 - 2016-11-21 22:57 - 00017153 _____ C:\Users\ORANI31\Downloads\Ghost.Recon.Future.Soldier.Complete.Edition-Repack.torrent
2016-11-21 22:03 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Redemption.Saints.And.Sinners-HI2U
2016-11-21 17:14 - 2016-11-21 17:14 - 00163976 _____ C:\Windows\Minidump\112116-16504-01.dmp
2016-11-21 17:09 - 2011-12-16 13:26 - 00306688 _____ C:\Windows\system32\unarc.dll
2016-11-21 17:09 - 2011-12-16 13:26 - 00000222 _____ C:\Windows\system32\._unarc.dll
2016-11-20 21:28 - 2016-11-20 21:29 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\dvdcss
2016-11-20 12:49 - 2016-11-21 12:02 - 00000000 ____D C:\Users\ORANI31\Downloads\WWE 2K15-RePack V2 by CorePack
2016-11-20 12:03 - 2016-11-20 12:03 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Risen3
2016-11-19 01:04 - 2016-11-19 01:04 - 00000000 ___RD C:\Users\ORANI31\AppData\Roaming\Brother
2016-11-19 01:04 - 2016-11-19 01:04 - 00000000 ____D C:\Users\ORANI31\AppData\LocalLow\Brother
2016-11-19 00:50 - 2016-11-19 00:50 - 00000000 ____D C:\Program Files\SAMSUNG
2016-11-19 00:49 - 2016-11-19 00:49 - 00000000 ____D C:\ProgramData\Samsung
2016-11-19 00:37 - 2016-11-19 00:37 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DRPNPS
2016-11-18 23:03 - 2016-11-19 16:29 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Mediatek
2016-11-18 22:57 - 2016-11-18 22:57 - 00000000 ____D C:\Program Files\DIFX
2016-11-18 22:51 - 2016-11-18 22:51 - 00001089 _____ C:\Users\ORANI31\Desktop\flash_tool - Raccourci.lnk
2016-11-18 22:49 - 2016-11-19 16:29 - 00000000 ____D C:\ProgramData\SP_FT_Logs
2016-11-18 22:48 - 2015-11-26 00:45 - 00000000 ____D C:\Program Files\SP Flash Tool v5.1352.01
2016-11-17 00:54 - 2016-12-17 19:11 - 00000000 ____D C:\Users\ORANI31\AppData\LocalLow\Mozilla
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-17 23:11 - 2016-11-16 22:56 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-12-17 23:11 - 2016-10-12 21:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-17 22:56 - 2016-10-13 10:39 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Skype
2016-12-17 22:56 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DMCache
2016-12-17 22:48 - 2016-10-14 17:58 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-17 22:42 - 2016-10-13 23:38 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-12-17 22:41 - 2016-10-12 23:59 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\vlc
2016-12-17 22:36 - 2016-10-12 23:23 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\uTorrent
2016-12-17 22:34 - 2009-07-14 05:34 - 00034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-17 22:34 - 2009-07-14 05:34 - 00034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-17 22:26 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-17 22:17 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2016-12-17 21:01 - 2016-11-13 01:42 - 00000000 ____D C:\Program Files (x86)
2016-12-17 21:01 - 2016-11-07 21:09 - 00000000 ____D C:\GOG Games
2016-12-17 21:01 - 2016-10-13 09:48 - 00000000 ____D C:\FFOutput
2016-12-17 21:01 - 2016-10-12 22:58 - 00000000 ____D C:\Brother
2016-12-17 21:01 - 2016-10-12 21:25 - 00000000 ____D C:\cc43201530a9150fbed2acde37
2016-12-17 21:00 - 2016-10-12 22:08 - 00000000 ____D C:\9c1cf3a1e520e8a3157b13e37b
2016-12-17 21:00 - 2016-10-12 22:08 - 00000000 ____D C:\779cbfff222e38630e1287f2d3f0bb72
2016-12-17 21:00 - 2016-10-12 21:24 - 00000000 ____D C:\121c7040caad96d512b575
2016-12-17 20:13 - 2016-10-12 23:00 - 00007891 _____ C:\Windows\BRRBCOM.INI
2016-12-17 20:12 - 2011-04-12 02:35 - 00749672 _____ C:\Windows\system32\perfh00C.dat
2016-12-17 20:12 - 2011-04-12 02:35 - 00150318 _____ C:\Windows\system32\perfc00C.dat
2016-12-17 20:12 - 2010-11-20 22:01 - 01675006 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-17 20:12 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-12-17 19:53 - 2016-06-02 22:39 - 00115936 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2016-12-17 19:52 - 2016-06-20 17:51 - 00120664 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-12-17 19:52 - 2016-06-20 17:29 - 00049744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2016-12-17 19:44 - 2016-10-19 13:34 - 00000000 ____D C:\Windows\Minidump
2016-12-17 19:39 - 2016-10-13 23:42 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-17 19:35 - 2016-10-13 00:47 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-12-16 18:46 - 2016-10-12 22:11 - 00108824 _____ C:\Users\ORANI31\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-16 18:45 - 2009-07-14 05:33 - 00412688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-16 11:55 - 2016-10-19 13:34 - 206212809 _____ C:\Windows\MEMORY.DMP
2016-12-16 09:20 - 2016-11-16 22:44 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Mozilla Firefox
2016-12-15 12:49 - 2016-10-12 21:01 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-12-15 12:49 - 2016-10-12 21:01 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-12-15 10:43 - 2016-11-13 10:35 - 00000000 ____D C:\Users\ORANI31\AppData\Local\bf2battlelog
2016-12-15 10:43 - 2016-11-13 01:40 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spencer Sharkey
2016-12-15 10:41 - 2016-11-16 22:34 - 00002342 _____ C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-15 10:41 - 2016-11-16 22:34 - 00002334 _____ C:\Users\ORANI31\Desktop\Google Chrome.lnk
2016-12-15 10:32 - 2016-10-12 19:50 - 00000000 ____D C:\Users\ORANI31
2016-12-15 10:20 - 2016-11-16 22:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-15 10:20 - 2016-10-25 18:01 - 00000000 ____D C:\Users\ORANI31\Desktop\SAT-2016
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-12-15 10:20 - 2016-10-12 23:22 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\TeraCopy
2016-12-15 10:20 - 2016-10-12 22:58 - 00000000 ____D C:\Program Files\ControlCenter4
2016-12-15 10:20 - 2016-10-12 21:03 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\AIMP3
2016-12-15 10:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-12-15 10:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2016-12-15 10:19 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\IDM
2016-12-12 17:24 - 2016-10-14 17:10 - 00000000 ____D C:\Users\ORANI31\Documents\FFOutput
2016-12-07 11:07 - 2016-10-25 01:48 - 00000604 _____ C:\Users\ORANI31\Desktop\PROGRAM NATIONAL2.txt
2016-12-05 14:20 - 2016-11-06 11:11 - 00000000 ____D C:\Users\ORANI31\Desktop\Copie Ps 2
2016-11-26 14:23 - 2016-10-25 11:49 - 00000000 ____D C:\Users\ORANI31\Desktop\CD MP3 2017
2016-11-23 22:50 - 2016-10-12 21:35 - 00000000 ____D C:\Windows\system32\directx
2016-11-23 21:02 - 2016-10-12 19:50 - 00000000 ____D C:\Users\ORANI31\AppData\Local\VirtualStore
2016-11-23 10:45 - 2009-07-14 05:53 - 00032484 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-20 12:03 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-20 11:45 - 2016-10-27 20:38 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2016-11-19 16:23 - 2016-10-29 16:59 - 00000000 ____D C:\Users\ORANI31\Desktop\GIGASOFT-2015
2016-11-17 00:56 - 2016-11-10 21:46 - 00000000 ___SD C:\Users\ORANI31\AppData\LocalLow\Temp
==================== Fichiers à la racine de certains dossiers =======
2013-02-07 13:22 - 2013-02-07 13:22 - 0050330 _____ () C:\Program Files\AntiDust.exe
2016-10-26 15:18 - 2016-10-26 15:18 - 0138904 _____ () C:\Users\ORANI31\AppData\Roaming\PnkBstrK.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-11-04 17:23
==================== Fin de FRST.txt ============================
Exécuté par ORANI31 (administrateur) sur ORANI31-PC (17-12-2016 23:10:35)
Exécuté depuis C:\Users\ORANI31\Desktop
Profils chargés: ORANI31 (Profils disponibles: ORANI31)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2013-04-05] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [4522496 2012-12-27] (Brother Industries, Ltd.)
HKLM\...\Run: [BrHelp] => C:\Program Files\Brother\Brother Help\BrotherHelp.exe [2009088 2013-01-18] (Brother Industries, Ltd.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1156824 2016-10-01] (Adobe Systems Incorporated)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3981368 2016-10-22] (Tonec Inc.)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6854360 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [uTorrent] => C:\Users\ORANI31\AppData\Roaming\uTorrent\uTorrent.exe [1995968 2016-11-18] (BitTorrent Inc.)
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2012-11-16] (Tonec Inc.)
GroupPolicy: Restriction ? <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{004F94E3-E2EE-4E7F-8353-0AC16F16B736}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3235856546-844269278-4031702888-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\S-1-5-21-3235856546-844269278-4031702888-1000 -> DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2013-11-29] (Internet Download Manager, Tonec Inc.)
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-17] (AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2016-12-17] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: 7owidw96.default
FF ProfilePath: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default [2016-12-17]
FF Extension: (YouTube Video and Audio Downloader) - C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2016-12-05]
FF Extension: (Turbo Download Manager) - C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\Extensions\jid0-dsq67mf5kjjhiiju2dfb6kk8dfw@jetpack.xpi [2016-11-25]
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\example-engine-two.xml [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\example-engine.xml [2016-11-16]
FF SearchPlugin: C:\Users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\searchplugins\search-for-firefox-search-engine.xml [2016-11-16]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2016-12-17]
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\ORANI31\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\ORANI31\AppData\Roaming\IDM\idmmzcc5 [2016-12-17] [non signé]
FF HKU\S-1-5-21-3235856546-844269278-4031702888-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/AuthorwarePlayer -> C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll [2004-07-02] (Macromedia, Inc.)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-15] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll [2013-01-30] (Adobe Systems, Inc.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Pas de fichier]
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3235856546-844269278-4031702888-1000: @tools.google.com/Google Update;version=3 -> C:\Users\ORANI31\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3235856546-844269278-4031702888-1000: @tools.google.com/Google Update;version=9 -> C:\Users\ORANI31\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default [2016-12-17]
CHR Extension: (Google Slides) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-16]
CHR Extension: (Google Docs) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-16]
CHR Extension: (Google Drive) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-16]
CHR Extension: (YouTube) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-16]
CHR Extension: (Recherche Google) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-11-16]
CHR Extension: (Google Sheets) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-16]
CHR Extension: (Kaspersky Protection) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2016-11-16]
CHR Extension: (Google Docs hors connexion) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-17]
CHR Extension: (Floating for YouTube™) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjphmlaoffndcnecccgemfdaaoighkel [2016-11-17]
CHR Extension: (Skype) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-11-16]
CHR Extension: (IDM Integration Module) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-16]
CHR Extension: (Gmail) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\ORANI31\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-15]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-11-25]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-11-25]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AVP17.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [Fichier non signé]
S2 KSDE1.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-10-22] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [170840 2016-06-10] (AO Kaspersky Lab)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [26168 2016-11-24] (Disc Soft Ltd)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16440 2012-12-04] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [165296 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [57264 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [71504 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [69000 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [149840 2016-06-26] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [120664 2016-12-17] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [804128 2016-12-17] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49744 2016-12-17] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [46000 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41392 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48056 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [71088 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [115936 2016-12-17] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [161712 2016-06-14] (AO Kaspersky Lab)
R3 L1C; C:\Windows\System32\DRIVERS\L1C62x86.sys [108624 2013-03-04] (Qualcomm Atheros Co., Ltd.)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [56432 2013-01-23] (Intel Corporation)
R3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [171072 2016-10-06] (Prolific Technology Inc.)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-12-16] ()
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [1841272 2012-10-22] (VIA Technologies, Inc.)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-08-16] (MBB)
S3 catchme; \??\C:\Users\ORANI31\AppData\Local\Temp\catchme.sys [X]
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
S3 MSICDSetup; \??\E:\CDriver.sys [X]
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-17 23:10 - 2016-12-17 23:11 - 00014852 _____ C:\Users\ORANI31\Desktop\FRST.txt
2016-12-17 23:10 - 2016-12-17 23:10 - 00000000 ____D C:\FRST
2016-12-17 22:57 - 2016-12-17 22:57 - 01762304 _____ (Farbar) C:\Users\ORANI31\Desktop\FRST.exe
2016-12-17 22:25 - 2016-12-17 22:18 - 00017984 _____ C:\Users\ORANI31\Desktop\ComboFix.txt
2016-12-17 22:18 - 2016-12-17 22:18 - 00017984 _____ C:\ComboFix.txt
2016-12-17 22:11 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-12-17 22:11 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-12-17 22:11 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-12-17 22:11 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2016-12-17 22:09 - 2016-12-17 22:18 - 00000000 ____D C:\Windows\erdnt
2016-12-17 22:09 - 2016-12-17 22:18 - 00000000 ____D C:\Qoobox
2016-12-17 22:02 - 2016-12-17 22:03 - 05659917 ____R (Swearware) C:\Users\ORANI31\Desktop\ComboFix.exe
2016-12-17 19:34 - 2016-12-17 20:05 - 00001332 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2016-12-17 19:34 - 2016-12-17 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2016-12-17 19:34 - 2016-12-17 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2016-12-17 19:34 - 2016-12-17 19:33 - 00002120 _____ C:\Users\Public\Desktop\Safe Money.lnk
2016-12-17 19:34 - 2016-12-17 19:33 - 00002102 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-12-17 19:32 - 2016-12-17 19:52 - 00804128 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2016-12-17 19:32 - 2016-12-17 19:34 - 00000000 ____D C:\Program Files\Kaspersky Lab
2016-12-17 19:32 - 2016-12-17 19:32 - 00000000 ____D C:\Windows\ELAMBKUP
2016-12-17 19:32 - 2016-06-26 15:10 - 00149840 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2016-12-17 19:15 - 2016-12-17 19:15 - 02409648 _____ (Kaspersky Lab) C:\Users\ORANI31\Desktop\startup.exe
2016-12-17 13:03 - 2016-12-17 13:03 - 00010920 ____R C:\Pre_Scan_17_12_2016_13_03_24.txt
2016-12-17 12:25 - 2016-12-17 21:01 - 00000000 ____D C:\Pre_Scan
2016-12-17 12:19 - 2016-12-17 12:19 - 03486120 _____ (SosVirus) C:\Users\ORANI31\Downloads\Pre_Scan.com
2016-12-16 22:55 - 2016-12-16 22:55 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-12-16 22:55 - 2016-12-16 22:55 - 00000000 ____D C:\ProgramData\RogueKiller
2016-12-16 22:21 - 2016-12-16 22:22 - 03977168 _____ C:\Users\ORANI31\Downloads\adwcleaner_6.041.exe
2016-12-16 22:12 - 2016-12-17 21:01 - 00000000 ____D C:\AdwCleaner
2016-12-16 16:29 - 2016-12-17 21:26 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\ZHP
2016-12-16 16:27 - 2016-12-16 16:28 - 02588160 _____ C:\Users\ORANI31\Downloads\ZHPDiag3.exe
2016-12-16 15:46 - 2016-12-17 21:01 - 00000000 ____D C:\UsbFix
2016-12-16 15:45 - 2016-12-16 15:46 - 03814429 _____ (SOSVirus) C:\Users\ORANI31\Downloads\UsbFix_9.010.exe
2016-12-16 11:55 - 2016-12-16 11:55 - 00151592 _____ C:\Windows\Minidump\121616-13353-01.dmp
2016-12-16 09:23 - 2016-12-16 09:48 - 00000000 ____D C:\Users\ORANI31\Desktop\ICONE-CANAL+
2016-12-15 12:23 - 2016-12-17 21:01 - 00000000 ___RD C:\Skypee
2016-12-15 12:22 - 2016-12-17 21:01 - 00000000 ___RD C:\Google
2016-12-15 10:32 - 2016-12-15 10:32 - 00147864 _____ C:\Windows\Minidump\121516-13400-01.dmp
2016-12-12 11:07 - 2016-12-17 20:13 - 00000461 _____ C:\Users\ORANI31\Desktop\Nouveau document texte.txt
2016-12-09 09:43 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Zatoichi.Meets.the.One-Armed.Swordsman.1971.480p.BluRay.x264-mSD
2016-12-08 20:34 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\The.Tale.of.Zatoichi.Continues.1962.480p.BluRay.x264-mSD
2016-12-08 20:08 - 2016-12-08 20:08 - 00000000 ____D C:\Users\ORANI31\Downloads\The.Tale.of.Zatoichi.1962.480p.BluRay.x264-mSD
2016-12-08 13:51 - 2016-12-09 10:16 - 00000000 ____D C:\Users\ORANI31\Downloads\Ghostbusters The Video Game [MULTI5][PS2DVD][PAL][WwW.GamesTorrents.CoM]
2016-12-08 13:51 - 2016-12-08 19:03 - 00000000 ____D C:\Users\ORANI31\Downloads\Teenage Mutant Ninja Turtles Smash-Up [English][PS2DVD][USA][WwW.GamesTorrents.CoM]
2016-12-08 13:49 - 2016-12-08 14:25 - 00000000 ____D C:\Users\ORANI31\Downloads\Ben 10 Alien Force Vilgax Attacks [MULTI4][PS2DVD][PAL][WwW.GamesTorrents.CoM]
2016-12-08 13:48 - 2016-12-08 13:48 - 00032404 _____ C:\Users\ORANI31\Downloads\Ben.10.Alien.Force.Vilgax.Attacks.%5BMULTI4%5D%5BPS2DVD%5D%5BPAL%5D%5BWwW.GamesTorrents.CoM%5D.t5605.torrent
2016-12-08 13:48 - 2016-12-08 13:48 - 00024201 _____ C:\Users\ORANI31\Downloads\Ghostbusters.The.Video.Game.%5BMULTI5%5D%5BPS2DVD%5D%5BPAL%5D%5BWwW.GamesTorrents.CoM%5D.t5162.torrent
2016-12-08 13:48 - 2016-12-08 13:48 - 00023020 _____ C:\Users\ORANI31\Downloads\Teenage.Mutant.Ninja.Turtles.Smash-Up.%5BEnglish%5D%5BPS2DVD%5D%5BUSA%5D%5BWwW.GamesTorrents.CoM%5D.t5454.torrent
2016-12-08 00:02 - 2016-12-08 12:48 - 00000000 ____D C:\Users\ORANI31\Downloads\WWE All Stars [MULTI5][USA][PS2DVD][WwW.GamesTorrents.CoM]
2016-12-07 23:54 - 2016-12-07 23:55 - 00018990 _____ C:\Users\ORANI31\Downloads\Superbike.World.Championship.2008.%5BEnglish%5D%5BPS2DVD%5D%5BWwW.GamesTorrents.CoM%5D.t4172.torrent
2016-12-07 19:47 - 2016-12-07 19:47 - 00002805 _____ C:\Users\ORANI31\Downloads\tv_channels_2016-12-07.m3u
2016-12-06 20:40 - 2016-12-06 20:40 - 00001895 _____ C:\Users\ORANI31\Downloads\tv_channels_star.m3u
2016-12-06 20:40 - 2016-12-06 20:40 - 00001895 _____ C:\Users\ORANI31\Downloads\tv_channels_star (1).m3u
2016-12-04 22:09 - 2016-12-04 22:09 - 00000000 ____D C:\Program Files\Karmian
2016-12-04 11:15 - 2016-12-04 11:15 - 00019888 _____ C:\Users\ORANI31\Downloads\Pro.Evolution.Soccer.2016.v1.05.Incl.DLCs-Repack.torrent
2016-12-04 00:12 - 2016-11-29 13:15 - 00000000 ____D C:\Users\ORANI31\Downloads\Crack
2016-12-04 00:11 - 2016-12-04 00:11 - 01370476 _____ C:\Users\ORANI31\Downloads\Crack.rar
2016-12-04 00:03 - 2016-12-04 00:03 - 06830020 _____ C:\Users\ORANI31\Downloads\idman626build12.rar
2016-12-03 11:16 - 2016-12-03 11:16 - 00000212 _____ C:\Users\ORANI31\Downloads\chunklist (1).m3u8
2016-12-03 11:13 - 2016-12-03 11:13 - 00000209 _____ C:\Users\ORANI31\Downloads\chunklist.m3u8
2016-12-01 22:40 - 2016-12-01 22:40 - 00163976 _____ C:\Windows\Minidump\120116-13946-01.dmp
2016-11-30 23:37 - 2016-12-17 21:01 - 00000000 ____D C:\wifidata
2016-11-29 22:57 - 2016-11-29 22:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\City Interactive
2016-11-29 22:48 - 2016-11-29 22:48 - 00000000 ____D C:\Program Files\City Interactive
2016-11-29 17:38 - 2016-11-29 17:38 - 00000000 ____D C:\Users\ORANI31\Downloads\Street Fighter V
2016-11-28 17:38 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Sniper.Ghost.Warrior-SKIDROW
2016-11-28 17:37 - 2016-11-28 17:37 - 00041840 _____ C:\Users\ORANI31\Downloads\Sniper.Ghost.Warrior-font.color=#ccc--SKIDROW--font-.torrent
2016-11-28 17:19 - 2016-11-28 17:19 - 00000000 ____D C:\Users\ORANI31\Downloads\Street.Fighter.X.Tekken-SKIDROW
2016-11-24 16:47 - 2016-11-24 16:47 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Ubisoft
2016-11-24 16:47 - 2016-11-24 16:47 - 00000000 ____D C:\Users\ORANI31\AppData\Local\storage
2016-11-24 16:46 - 2016-11-24 16:46 - 00000000 ____D C:\Users\ORANI31\Documents\Ubisoft
2016-11-24 16:17 - 2016-11-24 16:17 - 00000000 ____D C:\Program Files\Ubisoft
2016-11-24 01:45 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Disc_Soft_Ltd
2016-11-24 01:42 - 2016-11-24 01:42 - 00000000 ____D C:\Users\Public\Documents\Daemon Tools Images
2016-11-24 01:41 - 2016-11-24 01:49 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DAEMON Tools Lite
2016-11-24 01:41 - 2016-11-24 01:42 - 00026168 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtlitescsibus.sys
2016-11-24 01:37 - 2016-11-24 01:41 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-11-23 23:41 - 2016-11-23 23:41 - 00000675 _____ C:\Users\ORANI31\Downloads\PIRC6.KICH New March.txt
2016-11-23 17:47 - 2016-11-23 17:47 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\PowerISO
2016-11-23 13:28 - 2016-12-04 14:15 - 00000000 ____D C:\Users\ORANI31\Desktop\ardiya
2016-11-21 22:58 - 2016-11-22 21:23 - 00000000 ____D C:\Users\ORANI31\Downloads\Tom Clancy's Ghost Recon Future Soldier Complete Ed. - CorePack
2016-11-21 22:57 - 2016-11-21 22:57 - 00017153 _____ C:\Users\ORANI31\Downloads\Ghost.Recon.Future.Soldier.Complete.Edition-Repack.torrent
2016-11-21 22:03 - 2016-12-15 10:20 - 00000000 ____D C:\Users\ORANI31\Downloads\Redemption.Saints.And.Sinners-HI2U
2016-11-21 17:14 - 2016-11-21 17:14 - 00163976 _____ C:\Windows\Minidump\112116-16504-01.dmp
2016-11-21 17:09 - 2011-12-16 13:26 - 00306688 _____ C:\Windows\system32\unarc.dll
2016-11-21 17:09 - 2011-12-16 13:26 - 00000222 _____ C:\Windows\system32\._unarc.dll
2016-11-20 21:28 - 2016-11-20 21:29 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\dvdcss
2016-11-20 12:49 - 2016-11-21 12:02 - 00000000 ____D C:\Users\ORANI31\Downloads\WWE 2K15-RePack V2 by CorePack
2016-11-20 12:03 - 2016-11-20 12:03 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Risen3
2016-11-19 01:04 - 2016-11-19 01:04 - 00000000 ___RD C:\Users\ORANI31\AppData\Roaming\Brother
2016-11-19 01:04 - 2016-11-19 01:04 - 00000000 ____D C:\Users\ORANI31\AppData\LocalLow\Brother
2016-11-19 00:50 - 2016-11-19 00:50 - 00000000 ____D C:\Program Files\SAMSUNG
2016-11-19 00:49 - 2016-11-19 00:49 - 00000000 ____D C:\ProgramData\Samsung
2016-11-19 00:37 - 2016-11-19 00:37 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DRPNPS
2016-11-18 23:03 - 2016-11-19 16:29 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Mediatek
2016-11-18 22:57 - 2016-11-18 22:57 - 00000000 ____D C:\Program Files\DIFX
2016-11-18 22:51 - 2016-11-18 22:51 - 00001089 _____ C:\Users\ORANI31\Desktop\flash_tool - Raccourci.lnk
2016-11-18 22:49 - 2016-11-19 16:29 - 00000000 ____D C:\ProgramData\SP_FT_Logs
2016-11-18 22:48 - 2015-11-26 00:45 - 00000000 ____D C:\Program Files\SP Flash Tool v5.1352.01
2016-11-17 00:54 - 2016-12-17 19:11 - 00000000 ____D C:\Users\ORANI31\AppData\LocalLow\Mozilla
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-12-17 23:11 - 2016-11-16 22:56 - 00001064 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-12-17 23:11 - 2016-10-12 21:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-12-17 22:56 - 2016-10-13 10:39 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Skype
2016-12-17 22:56 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\DMCache
2016-12-17 22:48 - 2016-10-14 17:58 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-12-17 22:42 - 2016-10-13 23:38 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-12-17 22:41 - 2016-10-12 23:59 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\vlc
2016-12-17 22:36 - 2016-10-12 23:23 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\uTorrent
2016-12-17 22:34 - 2009-07-14 05:34 - 00034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-12-17 22:34 - 2009-07-14 05:34 - 00034800 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-12-17 22:26 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-12-17 22:17 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2016-12-17 21:01 - 2016-11-13 01:42 - 00000000 ____D C:\Program Files (x86)
2016-12-17 21:01 - 2016-11-07 21:09 - 00000000 ____D C:\GOG Games
2016-12-17 21:01 - 2016-10-13 09:48 - 00000000 ____D C:\FFOutput
2016-12-17 21:01 - 2016-10-12 22:58 - 00000000 ____D C:\Brother
2016-12-17 21:01 - 2016-10-12 21:25 - 00000000 ____D C:\cc43201530a9150fbed2acde37
2016-12-17 21:00 - 2016-10-12 22:08 - 00000000 ____D C:\9c1cf3a1e520e8a3157b13e37b
2016-12-17 21:00 - 2016-10-12 22:08 - 00000000 ____D C:\779cbfff222e38630e1287f2d3f0bb72
2016-12-17 21:00 - 2016-10-12 21:24 - 00000000 ____D C:\121c7040caad96d512b575
2016-12-17 20:13 - 2016-10-12 23:00 - 00007891 _____ C:\Windows\BRRBCOM.INI
2016-12-17 20:12 - 2011-04-12 02:35 - 00749672 _____ C:\Windows\system32\perfh00C.dat
2016-12-17 20:12 - 2011-04-12 02:35 - 00150318 _____ C:\Windows\system32\perfc00C.dat
2016-12-17 20:12 - 2010-11-20 22:01 - 01675006 _____ C:\Windows\system32\PerfStringBackup.INI
2016-12-17 20:12 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-12-17 19:53 - 2016-06-02 22:39 - 00115936 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2016-12-17 19:52 - 2016-06-20 17:51 - 00120664 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2016-12-17 19:52 - 2016-06-20 17:29 - 00049744 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2016-12-17 19:44 - 2016-10-19 13:34 - 00000000 ____D C:\Windows\Minidump
2016-12-17 19:39 - 2016-10-13 23:42 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-17 19:35 - 2016-10-13 00:47 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2016-12-16 18:46 - 2016-10-12 22:11 - 00108824 _____ C:\Users\ORANI31\AppData\Local\GDIPFONTCACHEV1.DAT
2016-12-16 18:45 - 2009-07-14 05:33 - 00412688 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-16 11:55 - 2016-10-19 13:34 - 206212809 _____ C:\Windows\MEMORY.DMP
2016-12-16 09:20 - 2016-11-16 22:44 - 00000000 ____D C:\Users\ORANI31\AppData\Local\Mozilla Firefox
2016-12-15 12:49 - 2016-10-12 21:01 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-12-15 12:49 - 2016-10-12 21:01 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-12-15 10:43 - 2016-11-13 10:35 - 00000000 ____D C:\Users\ORANI31\AppData\Local\bf2battlelog
2016-12-15 10:43 - 2016-11-13 01:40 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spencer Sharkey
2016-12-15 10:41 - 2016-11-16 22:34 - 00002342 _____ C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-15 10:41 - 2016-11-16 22:34 - 00002334 _____ C:\Users\ORANI31\Desktop\Google Chrome.lnk
2016-12-15 10:32 - 2016-10-12 19:50 - 00000000 ____D C:\Users\ORANI31
2016-12-15 10:20 - 2016-11-16 22:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-15 10:20 - 2016-10-25 18:01 - 00000000 ____D C:\Users\ORANI31\Desktop\SAT-2016
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2016-12-15 10:20 - 2016-10-13 09:19 - 00000000 ____D C:\Program Files\Internet Download Manager
2016-12-15 10:20 - 2016-10-12 23:22 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\TeraCopy
2016-12-15 10:20 - 2016-10-12 22:58 - 00000000 ____D C:\Program Files\ControlCenter4
2016-12-15 10:20 - 2016-10-12 21:03 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\AIMP3
2016-12-15 10:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2016-12-15 10:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2016-12-15 10:19 - 2016-10-13 09:19 - 00000000 ____D C:\Users\ORANI31\AppData\Roaming\IDM
2016-12-12 17:24 - 2016-10-14 17:10 - 00000000 ____D C:\Users\ORANI31\Documents\FFOutput
2016-12-07 11:07 - 2016-10-25 01:48 - 00000604 _____ C:\Users\ORANI31\Desktop\PROGRAM NATIONAL2.txt
2016-12-05 14:20 - 2016-11-06 11:11 - 00000000 ____D C:\Users\ORANI31\Desktop\Copie Ps 2
2016-11-26 14:23 - 2016-10-25 11:49 - 00000000 ____D C:\Users\ORANI31\Desktop\CD MP3 2017
2016-11-23 22:50 - 2016-10-12 21:35 - 00000000 ____D C:\Windows\system32\directx
2016-11-23 21:02 - 2016-10-12 19:50 - 00000000 ____D C:\Users\ORANI31\AppData\Local\VirtualStore
2016-11-23 10:45 - 2009-07-14 05:53 - 00032484 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-11-20 12:03 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-11-20 11:45 - 2016-10-27 20:38 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2016-11-19 16:23 - 2016-10-29 16:59 - 00000000 ____D C:\Users\ORANI31\Desktop\GIGASOFT-2015
2016-11-17 00:56 - 2016-11-10 21:46 - 00000000 ___SD C:\Users\ORANI31\AppData\LocalLow\Temp
==================== Fichiers à la racine de certains dossiers =======
2013-02-07 13:22 - 2013-02-07 13:22 - 0050330 _____ () C:\Program Files\AntiDust.exe
2016-10-26 15:18 - 2016-10-26 15:18 - 0138904 _____ () C:\Users\ORANI31\AppData\Roaming\PnkBstrK.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-11-04 17:23
==================== Fin de FRST.txt ============================