Aller au contenu

cedriclr

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    34

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par cedriclr

  1. cedriclr
    Bonjour, Le problème persiste après lancement du logiciel, la réparation a été automatique le logiciel n'a pas semblé travailler. http://www.cjoint.com/c/FJbkdRxmiHA Je note microsoft essetials security s'active en même temps que l'icone de connexion au réseau local, est ce que les deux programmes sont liés ? Bien à vous,
  2. cedriclr
    Bonjour, Cependant l'icone de connexion réseau en bas a droite ne se synchronise pas avec ma connexion internet, j'ai deja la connexion active et l'icone est encore en recherche pendant une minute, est ce normal ? Bien a vous,
  3. cedriclr
    Bonjour, Suite aux manips que vous m'avez fait effectuer, l'assistant dépannage semble re fonctionner !! Merci beaucoup ! Bien à vous,
  4. cedriclr
    Bonjour, Merci beaucoup pour votre aide ! Voici les liens que vous avez demandé: http://www.cjoint.com/c/FIEtnDMuQrA http://www.cjoint.com/c/FIEtoVuAdFA http://www.cjoint.com/c/FIEtpr5ykuA J’espère que vous trouverez une solution ! Bien a vous,
  5. cedriclr
    Bonjour a tous, Mon PC fonctionne bien a l'exception d'un petit problème dont je viens de me rendre compte ... L'icone en bas a droite de Windows qui indique la connexion active au réseau mettait un moment a s'afficher actif alors qu'internet était actif. J'ai donc tenté de cliquer sur cet icone pour lancer l'assistant de dépannage pour résoudre le problème et voici le message: Une erreur s'est produite lors de la résolution de problèmes: une erreur inattendue s'est produite. L'assistant dépannage ne peut pas continuer. En affichant le détail de l'erreur: ID du package: Inconnu Chemin d'accès: Inconnu Code d'erreur: 0x80070005 Source: Fichiers temporaires Utilisateur: Cedric-PC/Cedric Contexte: Restreint Mon OS est Windows 7 Edition familiale Premium Service Pack 1 Quelqu'un saurait il réparer ce petit soucis ? Merci d'avance,
  6. cedriclr
    Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015 Ran by dell at 2015-07-15 23:53:23 Running from C:\Users\dell\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-749268923-2805857201-2158450924-500 - Administrator - Disabled) dell (S-1-5-21-749268923-2805857201-2158450924-1000 - Administrator - Enabled) => C:\Users\dell HomeGroupUser$ (S-1-5-21-749268923-2805857201-2158450924-1002 - Limited - Enabled) Invité (S-1-5-21-749268923-2805857201-2158450924-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated) Avira (HKLM-x32\...\{8467e01f-0496-42ce-b247-88ef205b4880}) (Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG) Avira (x32 Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG) Hidden Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.579 - Avira Operations GmbH & Co. KG) Belkin N300 Micro USB Wireless Adapter (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.00.0155 - ) Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{64973F6A-8754-43D1-BDD0-FC6F0546347B}) (Version: 14.4.6.2 - Broadcom Corporation) Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation) Centre Souris et Claviers Microsoft (Version: 2.3.188.0 - Microsoft Corporation) Hidden EBP Devis et Facturation Bâtiment Classic 2012 13.0 (HKLM-x32\...\EBP Devis et Facturation Bâtiment Classic 2012 13.0) (Version: 13.0.1 - EBP) EBP Devis et Facturation Bâtiment Classic 2012 13.0 (x32 Version: 13.0.1 - EBP) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.) Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr) Utilitaire de mise à jour des logiciels EBP 1.1.3 (HKLM-x32\...\Utilitaire de mise à jour des logiciels EBP 1.1.3) (Version: 1.1.3 - EBP) Utilitaire de mise à jour des logiciels EBP 1.1.3 (Version: 1.1.3 - EBP) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 30-06-2015 17:58:28 Installé Belkin N300 Micro USB Wireless Adapter 30-06-2015 18:17:14 Windows Update 30-06-2015 22:44:24 Windows Update 01-07-2015 21:51:42 DCInstallRestorePoint 08-07-2015 22:04:17 Windows Update 12-07-2015 23:07:34 Windows Update 14-07-2015 23:28:24 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {26374755-00DF-40B1-8BF2-A952FCB5B0BB} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation) Task: {31D9B2C0-E87B-4BAD-B8DA-AB83B0FEBDD1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation) Task: {3984381F-D137-480E-90E7-A94011EC7E9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-11] (Google Inc.) Task: {5A6755A9-F580-4144-956B-D5F5F37ED13E} - System32\Tasks\Chromium => C:\Users\dell\AppData\Local\Chromium\APPLIC~1\450244~1.0\INSTAL~1\UNINST~1.EXE Task: {6739F102-8B98-4C73-BD56-48772F54A197} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-11] (Google Inc.) Task: {7B3C4E89-C98A-4131-BFC8-C0047C7B9CBE} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft) Task: {81E18DE3-71D5-45B2-9F64-06CAEAEF0496} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {8E9EF033-F4FA-4B22-94C9-E75E3C3200D9} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation) Task: {A6B3A969-DC66-4C51-B5D1-9681C1A48BFE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Chromium.job => 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ask: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-07-14 21:51 - 2015-07-13 23:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll 2015-07-14 21:51 - 2015-07-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll 2015-07-14 21:51 - 2015-07-13 23:55 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-749268923-2805857201-2158450924-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\dell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{0DBA975B-957E-421D-B53E-99C2ECA3B709}] => (Allow) C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{FA307E5F-58E2-44D1-9CBC-5315FB13B2B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/15/2015 11:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 07:19:19 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 07:10:58 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:25:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 11:15:55 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 10:57:37 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 10:44:37 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 01:10:56 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:54:52 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:17:27 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/15/2015 07:27:45 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: L’appel ScRegSetValueExW a échoué pour FailureCommand avec l’erreur : %%5 Error: (07/15/2015 07:27:40 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur : %%5 Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Partage réseau du Lecteur Windows Media s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Avira Service Host s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (07/15/2015 07:16:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Adobe Acrobat Update Service s’est terminé de façon inattendue pour la 1ème fois. Error: (07/15/2015 07:16:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Spouleur d’impression s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service. Error: (07/15/2015 07:13:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Microsoft .NET Framework NGEN v4.0.30319_X64. Error: (07/15/2015 12:34:17 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: L’appel ScRegSetValueExW a échoué pour FailureCommand avec l’erreur : %%5 Error: (07/15/2015 12:34:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: ) Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur : %%5 Microsoft Office: ========================= Error: (07/15/2015 11:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 07:19:19 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 07:10:58 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:25:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 11:15:55 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 10:57:37 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 10:44:37 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 01:10:56 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:54:52 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/15/2015 12:17:27 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Processor: Pentium® Dual-Core CPU E5700 @ 3.00GHz Percentage of memory in use: 74% Total physical RAM: 2011.65 MB Available physical RAM: 513.56 MB Total Virtual: 4023.3 MB Available Virtual: 1862.51 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:232.82 GB) (Free:202.52 GB) NTFS ==>[drive with boot components (obtained from BCD)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or (Size: 232.8 GB) (Disk ID: 2F96BE29) Partition 1: (Active) - (Size=232.8 GB) - (Type=07 NTFS) ==================== End of log ============================ Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015 Ran by dell (administrator) on DELL-PC on 15-07-2015 23:51:22 Running from C:\Users\dell\Downloads Loaded Profiles: dell (Available Profiles: dell) Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Français (France) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\msiexec.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\LogTransport2.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation) HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-06-19] (Avira Operations GmbH & Co. KG) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-06-30] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{688DE5AC-223B-480B-A3A9-BBD245F0CA0E}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{D6B04078-9364-4A4C-B828-7B7414C25846}: [DhcpNameServer] 192.168.1.1 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.) FF Extension: Avira Browser Safety - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default\Extensions\abs@avira.com [2015-07-15] FF Extension: Filter Results - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default\Extensions\{621b949b-df4c-4be6-99ce-72ca3c909971}.xpi [2015-06-30] FF HKU\S-1-5-21-749268923-2805857201-2158450924-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found] Chrome: ======= CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-11] CHR Extension: (Google Docs) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-11] CHR Extension: (Google Drive) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-11] CHR Extension: (YouTube) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-11] CHR Extension: (Adblock Plus) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-14] CHR Extension: (Google Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-11] CHR Extension: (Google Sheets) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-11] CHR Extension: (Avira Browser Safety) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-07-15] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-11] CHR Extension: (Google Wallet) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-11] CHR Extension: (Gmail) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-11] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-06-19] (Avira Operations GmbH & Co. KG) R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-06-19] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-06-19] (Avira Operations GmbH & Co. KG) S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-06-19] (Avira Operations GmbH & Co. KG) R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-06-19] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132656 2015-06-19] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-06-19] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-06-19] (Avira Operations GmbH & Co. KG) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation) R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-06-01] (Realtek Semiconductor Corporation ) S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-15 23:51 - 2015-07-15 23:52 - 00010904 _____ C:\Users\dell\Downloads\FRST.txt 2015-07-15 23:50 - 2015-07-15 23:51 - 00000000 ____D C:\FRST 2015-07-15 23:50 - 2015-07-15 23:50 - 02133504 _____ (Farbar) C:\Users\dell\Downloads\FRST64.exe 2015-07-15 23:49 - 2015-07-15 23:50 - 01636864 _____ (Farbar) C:\Users\dell\Downloads\FRST.exe 2015-07-15 19:26 - 2015-07-15 19:26 - 00045531 _____ C:\Users\dell\Desktop\ZHPDiag.txt 2015-07-15 19:21 - 2015-07-15 19:21 - 01839104 _____ C:\Users\dell\Desktop\ZHPDiag3.exe 2015-07-15 19:18 - 2015-07-15 19:18 - 00001847 _____ C:\Users\dell\Desktop\AdwCleaner[s2].txt 2015-07-15 12:26 - 2015-07-15 12:22 - 00063752 _____ C:\Users\dell\Desktop\AVSCAN-20150715-111617-19028EE5.LOG 2015-07-15 12:22 - 2015-07-15 12:22 - 00063752 _____ C:\AVSCAN-20150715-111617-19028EE5.LOG 2015-07-15 11:08 - 2015-07-15 11:08 - 00000000 ____D C:\Users\dell\AppData\Roaming\Avira 2015-07-15 11:05 - 2015-06-19 09:11 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2015-07-15 11:05 - 2015-06-19 09:11 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys 2015-07-15 11:05 - 2015-06-19 09:11 - 00044088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys 2015-07-15 11:05 - 2015-06-19 09:11 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys 2015-07-15 11:03 - 2015-07-15 11:03 - 00001194 _____ C:\Users\Public\Desktop\Avira.lnk 2015-07-15 11:02 - 2015-07-15 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira 2015-07-15 11:02 - 2015-07-15 11:05 - 00000000 ____D C:\ProgramData\Avira 2015-07-15 11:02 - 2015-07-15 11:05 - 00000000 ____D C:\Program Files (x86)\Avira 2015-07-15 11:02 - 2015-07-15 11:02 - 00000000 ____D C:\ProgramData\Package Cache 2015-07-15 11:01 - 2015-07-15 11:01 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\dell\Downloads\avira_fr_av_55a62121d6acb__ws.exe 2015-07-15 10:53 - 2015-07-15 10:53 - 00001356 _____ C:\Users\dell\Desktop\ZHPCleaner.txt 2015-07-15 10:48 - 2015-07-15 10:48 - 01846272 _____ C:\Users\dell\ZHPCleaner.exe 2015-07-15 00:41 - 2015-07-15 00:41 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-07-15 00:40 - 2015-07-15 00:40 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\dell\Downloads\mbam-setup-2.1.8.1057.exe 2015-07-15 00:21 - 2015-07-15 00:21 - 01846272 _____ C:\Users\dell\Downloads\ZHPCleaner.exe 2015-07-15 00:04 - 2015-07-15 19:24 - 00000000 ____D C:\Users\dell\AppData\Roaming\ZHP 2015-07-15 00:02 - 2015-07-15 00:03 - 01846272 _____ C:\Users\dell\Desktop\ZHPCleaner.exe 2015-07-14 23:58 - 2015-07-14 23:58 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\dell\Downloads\sh-remover.exe 2015-07-14 23:46 - 2015-07-15 19:16 - 00000000 ____D C:\AdwCleaner 2015-07-14 23:45 - 2015-07-14 23:45 - 02248704 _____ C:\Users\dell\Desktop\adwcleaner_4.208.exe 2015-07-14 21:46 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-07-14 21:46 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-07-14 21:46 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-07-14 21:46 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-07-14 21:46 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-07-14 21:46 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-07-14 21:46 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-07-14 21:46 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-07-14 21:46 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-07-14 21:46 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-07-14 21:46 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-07-14 21:46 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-07-14 21:46 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-07-14 21:46 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-07-14 21:46 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-07-14 21:46 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-07-14 21:46 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-07-14 21:46 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-07-14 21:46 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-07-14 21:46 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-07-14 21:46 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-07-14 21:46 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-07-14 21:46 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-07-14 21:46 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-07-14 21:46 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-07-14 21:46 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-07-14 21:46 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-07-14 21:46 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2015-07-14 21:46 - 2015-06-09 20:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-07-14 21:46 - 2015-06-09 20:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2015-07-14 21:46 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-07-14 21:46 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll 2015-07-14 21:45 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-07-14 21:45 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-07-14 21:45 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-07-14 21:45 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-07-14 21:45 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-07-14 21:45 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-07-14 21:45 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-07-14 21:45 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-07-14 21:45 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-07-14 21:45 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-07-14 21:45 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-07-14 21:45 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-07-14 21:45 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-07-14 21:45 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-07-14 21:45 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-07-14 21:45 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-07-14 21:45 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-07-14 21:45 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-07-14 21:45 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-07-14 21:45 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-07-14 21:45 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-07-14 21:45 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-07-14 21:45 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-07-14 21:45 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-07-14 21:45 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-07-14 21:45 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-07-14 21:45 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-07-14 21:45 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-07-14 21:45 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-07-14 21:45 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-07-14 21:45 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-07-14 21:45 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-07-14 21:45 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-07-14 21:45 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-07-14 21:45 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-07-14 21:45 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-07-14 21:45 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-07-14 21:45 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-07-14 21:45 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-07-14 21:45 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-07-14 21:45 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-07-14 21:45 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-07-14 21:45 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-07-14 21:45 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-07-14 21:44 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-07-14 21:44 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2015-07-14 21:44 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-07-14 21:44 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-07-14 21:44 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-07-14 21:44 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-07-14 21:44 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-07-14 21:44 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-07-14 21:44 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-07-14 21:44 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-07-14 21:44 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-07-14 21:44 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-07-14 21:44 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-07-14 21:44 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-07-14 21:44 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-07-14 21:44 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-07-14 21:44 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-07-14 21:44 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-07-14 21:44 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-07-14 21:44 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-07-14 21:44 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-07-14 21:44 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-07-14 21:44 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-07-14 21:44 - 2015-06-11 19:57 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-07-14 21:44 - 2015-06-11 19:57 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll 2015-07-14 21:44 - 2015-06-11 19:57 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2015-07-14 21:44 - 2015-06-11 19:56 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-07-14 21:44 - 2015-06-11 19:56 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2015-07-14 21:44 - 2015-06-11 19:56 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2015-07-14 21:44 - 2015-06-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2015-07-14 21:44 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-07-14 21:44 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2015-07-14 21:44 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-07-14 21:44 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2015-07-14 21:44 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2015-07-14 21:44 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2015-07-14 21:44 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2015-07-14 21:44 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2015-07-14 21:43 - 2015-07-09 19:59 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-07-14 21:43 - 2015-07-09 19:58 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-07-14 21:43 - 2015-07-09 19:58 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-07-14 21:43 - 2015-07-09 19:58 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-07-14 21:43 - 2015-07-09 19:58 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-07-14 21:43 - 2015-07-09 19:58 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-07-14 21:43 - 2015-07-09 19:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-07-14 21:43 - 2015-07-09 19:50 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-07-14 21:43 - 2015-07-03 20:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-07-14 21:43 - 2015-07-03 20:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-07-14 21:43 - 2015-07-03 20:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-07-14 21:43 - 2015-07-03 20:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-07-14 21:43 - 2015-07-03 19:56 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-07-14 21:43 - 2015-07-03 19:56 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-07-14 21:43 - 2015-07-03 19:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-07-14 21:43 - 2015-07-03 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-07-14 21:43 - 2015-07-03 18:52 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-07-14 21:43 - 2015-07-03 18:42 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-07-14 21:43 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-07-14 21:43 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-07-14 21:43 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-07-14 21:43 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2015-07-14 21:43 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2015-07-14 21:43 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-07-14 21:43 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2015-07-14 21:43 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-07-14 21:43 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2015-07-14 21:43 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2015-07-14 21:43 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2015-07-14 21:43 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll 2015-07-04 11:00 - 2015-07-04 11:00 - 00000000 ____D C:\Users\dell\AppData\Local\GWX 2015-07-01 21:52 - 2015-07-01 21:52 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2015-07-01 21:52 - 2015-07-01 21:52 - 00003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2015-07-01 21:52 - 2015-07-01 21:52 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2015-07-01 21:52 - 2015-07-01 21:52 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2015-07-01 21:52 - 2015-07-01 21:52 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01011.Wdf 2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_NuidFltr_01011.Wdf 2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center 2015-07-01 21:50 - 2015-07-01 21:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf 2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\Program Files\McAfee Security Scan 2015-06-30 22:44 - 2015-06-30 22:44 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_NuidFltr_01005.Wdf 2015-06-30 21:25 - 2015-06-30 21:25 - 00000496 __RSH C:\ProgramData\ntuser.pol 2015-06-30 19:26 - 2015-07-14 21:33 - 00000000 ____D C:\Users\dell\AppData\Local\PokerStars.FR 2015-06-30 19:26 - 2015-07-14 21:32 - 00000000 ____D C:\Program Files (x86)\PokerStars.FR 2015-06-30 19:26 - 2015-06-30 19:26 - 00001982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.fr.lnk 2015-06-30 19:26 - 2015-06-30 19:26 - 00001976 _____ C:\Users\Public\Desktop\PokerStars.fr.lnk 2015-06-30 19:26 - 2015-06-30 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.FR 2015-06-30 19:23 - 2015-06-30 19:25 - 67782896 _____ (PokerStars) C:\Users\dell\Downloads\PokerStarsInstallFR.exe 2015-06-30 19:09 - 2015-07-03 17:09 - 00000100 _____ C:\Users\dell\AppData\Roaming\WB.CFG 2015-06-30 19:06 - 2015-06-30 19:06 - 00000000 ____D C:\ProgramData\Brother 2015-06-30 18:50 - 2015-07-15 23:42 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-06-30 18:50 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2015-06-30 18:50 - 2015-06-30 18:50 - 00000000 ____D C:\ProgramData\McAfee 2015-06-30 18:49 - 2015-06-30 18:54 - 00000000 ____D C:\ProgramData\Adobe 2015-06-30 18:49 - 2015-06-30 18:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-06-30 18:49 - 2015-06-30 18:49 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2015-06-30 18:49 - 2015-06-30 18:49 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-06-30 18:48 - 2015-06-30 18:54 - 00000000 ____D C:\Users\dell\AppData\Local\Adobe 2015-06-30 18:33 - 2015-07-01 16:28 - 00000000 ____D C:\Users\dell\AppData\Local\EBP 2015-06-30 18:33 - 2015-07-01 16:25 - 00000000 ____D C:\ProgramData\EBP 2015-06-30 18:33 - 2015-06-30 18:33 - 00001130 _____ C:\Users\Public\Desktop\EBP Devis et Facturation Bâtiment Classic 2012 13.0.lnk 2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 __HDC C:\ProgramData\{8E571D06-FBEB-44A3-9DC6-5572313D7B2D} 2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 __HDC C:\ProgramData\{3FEAFE1E-B171-4F43-9D22-153B42A7D1BF} 2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBP 2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\Program Files\EBP 2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\Program Files (x86)\EBP 2015-06-30 18:32 - 2015-06-30 18:32 - 17635922 _____ (EBP ) C:\Users\dell\Downloads\EBP_2012_BatimentDevis_13_0_1_2026.exe 2015-06-30 18:24 - 2015-06-30 18:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2015-06-30 18:09 - 2015-07-14 23:50 - 00000000 ____D C:\Users\dell\AppData\Local\Chromium 2015-06-30 18:09 - 2015-07-14 23:09 - 00000324 _____ C:\Windows\Tasks\Chromium.job 2015-06-30 18:09 - 2015-06-30 18:09 - 00003260 _____ C:\Windows\System32\Tasks\Chromium 2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\Users\dell\AppData\Roaming\Mozilla 2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\Users\dell\AppData\Local\Mozilla 2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\ProgramData\Mozilla 2015-06-30 18:07 - 2015-06-30 18:07 - 24656704 _____ (Mozilla) C:\Users\dell\Downloads\FirefoxSetup [1].exe 2015-06-30 17:58 - 2015-06-30 17:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-06-30 17:58 - 2015-06-30 17:58 - 00000000 ____D C:\Program Files (x86)\Belkin 2015-06-30 17:58 - 2011-06-01 04:17 - 00848384 ____R (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192cu.sys 2015-06-30 17:58 - 2011-01-19 15:01 - 00451072 _____ C:\Windows\SysWOW64\ISSRemoveSP.exe ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-15 23:48 - 2015-06-11 11:24 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-15 23:48 - 2015-06-11 11:23 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-15 23:47 - 2015-06-10 15:54 - 01477981 _____ C:\Windows\WindowsUpdate.log 2015-07-15 23:43 - 2015-06-11 11:24 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-07-15 23:43 - 2015-06-11 11:24 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-07-15 23:40 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-15 23:40 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-15 23:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-15 23:28 - 2009-07-14 06:51 - 00034242 _____ C:\Windows\setupact.log 2015-07-15 19:15 - 2011-04-12 11:16 - 00746950 _____ C:\Windows\system32\perfh00C.dat 2015-07-15 19:15 - 2011-04-12 11:16 - 00149474 _____ C:\Windows\system32\perfc00C.dat 2015-07-15 19:15 - 2009-07-14 07:13 - 01667292 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-15 11:14 - 2010-11-21 05:47 - 00287184 _____ C:\Windows\PFRO.log 2015-07-15 10:48 - 2015-06-10 15:54 - 00000000 ____D C:\Users\dell 2015-07-14 23:42 - 2009-07-14 06:45 - 00268536 _____ C:\Windows\system32\FNTCACHE.DAT 2015-07-14 23:40 - 2015-06-11 11:09 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-07-14 23:40 - 2015-06-11 11:09 - 00000000 ____D C:\Windows\system32\appraiser 2015-07-14 23:33 - 2015-06-10 17:22 - 00000000 ____D C:\Windows\system32\MRT 2015-07-14 21:51 - 2015-06-11 11:25 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-07-05 12:08 - 2010-11-21 05:27 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-07-03 16:43 - 2015-06-10 16:05 - 00058408 _____ C:\Users\dell\AppData\Local\GDIPFONTCACHEV1.DAT 2015-07-03 08:43 - 2015-06-10 17:21 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-07-01 16:27 - 2015-06-10 15:55 - 00000000 ____D C:\Users\dell\AppData\Local\VirtualStore 2015-06-30 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\GroupPolicy 2015-06-30 19:05 - 2015-06-11 09:59 - 00000000 ____D C:\Users\dell\AppData\Roaming\Adobe 2015-06-30 18:46 - 2011-04-12 11:28 - 00000000 ___RD C:\Users\Public\Recorded TV 2015-06-30 18:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2015-06-30 18:03 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2015-06-30 17:58 - 2009-07-14 04:34 - 00000468 _____ C:\Windows\win.ini ==================== Files in the root of some directories ======= 2015-06-30 19:09 - 2015-07-03 17:09 - 0000100 _____ () C:\Users\dell\AppData\Roaming\WB.CFG Files to move or delete: ==================== C:\Users\dell\ZHPCleaner.exe Some files in TEMP: ==================== C:\Users\dell\AppData\Local\Temp\avgnt.exe C:\Users\dell\AppData\Local\Temp\MouseKeyboardCenterx64_1036.exe C:\Users\dell\AppData\Local\Temp\Quarantine.exe C:\Users\dell\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-08 23:02 ==================== End of log ============================
  7. cedriclr
    Malheureusement non Il est même très difficile de répondre dans le forum tellement ce malware prend le contrôle du navigateur avec toutes ses fenêtres de pub !
  8. cedriclr
    Bonjour, merci pour votre aide ! Voici ce que j'obtient après les manipulations demandées: # AdwCleaner v4.208 - Rapport créé le 15/07/2015 à 19:16:10 # Mis à jour le 09/07/2015 par Xplode # Base de données : 2015-07-15.1 [serveur] # Système d'exploitation : Windows 7 Professional Service Pack 1 (x64) # Nom d'utilisateur : dell - DELL-PC # Exécuté depuis : C:\Users\dell\Desktop\adwcleaner_4.208.exe # Option : Nettoyer ***** [ Services ] ***** ***** [ Fichiers / Dossiers ] ***** Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage-journal ***** [ Tâches planifiées ] ***** ***** [ Raccourcis ] ***** ***** [ Registre ] ***** ***** [ Navigateurs ] ***** -\\ Internet Explorer v11.0.9600.17909 -\\ Mozilla Firefox v -\\ Google Chrome v43.0.2357.134 -\\ Chromium v ************************* AdwCleaner[R0].txt - [7104 octets] - [14/07/2015 23:46:32] AdwCleaner[R1].txt - [958 octets] - [14/07/2015 23:53:07] AdwCleaner[R2].txt - [1016 octets] - [14/07/2015 23:55:38] AdwCleaner[R3].txt - [2040 octets] - [15/07/2015 00:13:38] AdwCleaner[R4].txt - [1777 octets] - [15/07/2015 19:14:59] AdwCleaner[s0].txt - [6529 octets] - [14/07/2015 23:47:45] AdwCleaner[s1].txt - [2108 octets] - [15/07/2015 00:14:31] AdwCleaner[s2].txt - [1706 octets] - [15/07/2015 19:16:10] ########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1766 octets] ########## ~ ZHPDiag v2015.7.15.90 Par Nicolas Coolman (2015/07/15) ~ Démarré par dell (Administrator) (2015/07/15 19:24:25) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\dell\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\dell\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) ~ Windows 7, 64-bit Service Pack 1 (Build 7601) ---\\ Navigateurs Internet (2) - 0s GCIE: Google Chrome v43.0.2357.134 MSIE: Internet Explorer v11.0.9600.17914 ---\\ Informations sur les produits Windows ( - 8s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows Operating System - Windows® 7, OEM_COA_SLP channel Windows ID Activation : OK ~ Windows Partial Key : 7KVYH Windows License : OK ~ Windows Remaining Initializations Number : 3 Windows Activation Technologies : OK ---\\ Logiciels de protection (3) - 0s Avira Antivirus v15.0.11.579 Microsoft Security Client v4.8.0204.0 Microsoft Security Essentials v4.8.204.0 ---\\ Logiciels de protection et autres (Superflus) (1) - 0s McAfee Security Scan Plus v3.8.150.1 ---\\ Surveillance de Logiciels (1) - 0s Adobe Acrobat Reader DC - Français ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) ~ Total physical RAM (KB): 2059928 ~ System Restore: Activé (Enable) ~ System drive C: has 207 GB free of 238 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: DELL-PC ~ User Name: dell ~ Logged in as Administrator ---\\ Enumération des unités disques (1) - 0s ~ Drive C: has 207 GB free of 238 GB (System) ---\\ Recherche particulière de fichiers génériques (24) - 2s [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808] [MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024] [MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392] [MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224] [MD5.1877EB1495CFBDAB27D6A32F6DDF3818] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632] [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] [MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184] [MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808] ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (22) - 1s G0 - GCSP: Preferences [user Data\Default][HomePage] http://forum.zebulon.fr/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://accounts.google.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://accounts.youtube.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://clients4.google.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://filterresults-a.akamaihd.net/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://offers.avira.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://ssl.gstatic.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.google.com/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.google.fr/ G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.googleapis.com/ G0 - GCSP: Secure Preferences [user Data\Default][HomePage] http://www.google.fr/ G2 - GCE: Preference [user Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__ G2 - GCE: Preference [user Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety G2 - GCE: Preference [user Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Preference [user Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [user Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (15) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (R5) (3) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Hosts file redirection (O1) (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (21) ---\\ Applications lancées au démarrage du sytème (O4) (10) - 0s O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe O4 - HKLM\..\Wow6432Node\Run: [Avira Systray] . (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ---\\ Modification Domaine/Adresses DNS (O17) (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Liste des services NT non Microsoft et non désactivés (O23) (7) - 1s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ---\\ Tâches planifiées en automatique (O39) (9) - 3s [MD5.70685AC6E02E9C2DFB88D4851954F5B4] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998088] [MD5.00000000000000000000000000000000] [APT] [Chromium] (.Adobe Systems Incorporated.) -- C:\Users\dell\AppData\Local\Chromium\APPLIC~1\450244~1.0\INSTAL~1\UNINST~1.EXE (.not file.) [0] [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe [3092] O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe [3090] O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe [3118] O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe [3062] O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe [3060] ---\\ Logiciels installés (O42) (18) - 3s O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client O42 - Logiciel: Broadcom NetXtreme-I Netlink Driver and Management Installer - (.Broadcom Corporation.) [HKLM][64Bits] -- {64973F6A-8754-43D1-BDD0-FC6F0546347B} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6} O42 - Logiciel: Avira Antivirus v15.0.11.579 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus O42 - Logiciel: EBP Devis et Facturation Bâtiment Classic 2012 13.0 - (.EBP.) [HKLM][64Bits] -- EBP Devis et Facturation Bâtiment Classic 2012 13.0 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Avira v1.1.40.29239 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {8467e01f-0496-42ce-b247-88ef205b4880} O42 - Logiciel: Avira v1.1.40.29239 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {A4D3E7B8-410D-443A-B6AB-F32CDD4BD28C} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824144531} O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} O42 - Logiciel: Belkin N300 Micro USB Wireless Adapter - (...) [HKLM][64Bits] -- {B20F9D1C-A0A5-4cd8-8306-DA03872311B1} O42 - Logiciel: EBP Devis et Facturation Bâtiment Classic 2012 13.0 - (.EBP.) [HKLM][64Bits] -- {E548E511-B805-4152-A72D-58E794AF0C42} ---\\ HKCU & HKLM Software Keys (34) - 3s HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\Avira HKLM\SOFTWARE\Wow6432Node\BcmSetup HKLM\SOFTWARE\Wow6432Node\Belkin International, Inc. HKLM\SOFTWARE\Wow6432Node\Brother HKLM\SOFTWARE\Wow6432Node\EBP HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\mcafeeupdater HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\X-AVCSD HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Addictive Software HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Avira HKCU\SOFTWARE\Broadcom HKCU\SOFTWARE\Brother HKCU\SOFTWARE\Google HKCU\SOFTWARE\Intel HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\VB and VBA Program Settings HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (97) - 4s O43 - CFD: 2015/06/30 18:49:30 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2015/07/15 11:05:25 - [] D -- C:\Program Files (x86)\Avira O43 - CFD: 2015/06/30 17:58:52 - [] D -- C:\Program Files (x86)\Belkin O43 - CFD: 2015/07/15 00:51:53 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2015/06/30 18:33:48 - [] D -- C:\Program Files (x86)\EBP O43 - CFD: 2015/06/11 11:24:59 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/06/30 17:58:48 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/06/11 11:01:09 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2015/07/14 23:40:33 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/06/11 11:24:41 - [] D -- C:\Program Files (x86)\Microsoft Security Client O43 - CFD: 2015/06/11 14:07:36 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2015/06/11 10:09:53 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/07/14 21:32:33 - [] D -- C:\Program Files (x86)\PokerStars.FR O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2015/06/11 11:27:28 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2015/06/11 09:51:45 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/06/11 11:09:43 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2015/06/11 11:11:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/06/10 15:37:16 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/07/15 11:07:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira O43 - CFD: 2015/06/10 16:10:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom O43 - CFD: 2015/07/01 21:52:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre Souris et Claviers Microsoft O43 - CFD: 2015/06/30 18:33:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBP O43 - CFD: 2011/04/12 11:28:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/06/11 11:25:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/07/01 16:20:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus O43 - CFD: 2015/06/11 14:08:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2015/06/30 19:26:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.FR O43 - CFD: 2015/07/01 16:20:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2011/04/12 11:28:08 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/06/11 11:27:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2015/06/30 18:54:51 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2015/07/15 11:05:25 - [] D -- C:\ProgramData\Avira O43 - CFD: 2015/06/30 19:06:26 - [] D -- C:\ProgramData\Brother O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/07/01 16:25:02 - [] D -- C:\ProgramData\EBP O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Favoris O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites O43 - CFD: 2015/07/15 00:41:05 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2015/06/30 18:50:31 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2015/07/01 16:20:42 - [] D -- C:\ProgramData\McAfee Security Scan O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 2015/06/30 18:03:56 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 2015/06/30 18:09:10 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2015/07/15 11:02:28 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2015/06/30 18:33:16 - [] HDC -- C:\ProgramData\{3FEAFE1E-B171-4F43-9D22-153B42A7D1BF} O43 - CFD: 2015/06/30 18:33:56 - [] HDC -- C:\ProgramData\{8E571D06-FBEB-44A3-9DC6-5572313D7B2D} O43 - CFD: 2015/06/30 18:49:33 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 2015/06/11 11:09:42 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2015/06/30 19:05:14 - [] D -- C:\Users\dell\AppData\Roaming\Adobe O43 - CFD: 2015/07/15 11:08:26 - [] D -- C:\Users\dell\AppData\Roaming\Avira O43 - CFD: 2015/06/10 16:05:04 - [] D -- C:\Users\dell\AppData\Roaming\BACS.exe O43 - CFD: 2015/06/10 15:55:07 - [] D -- C:\Users\dell\AppData\Roaming\Identities O43 - CFD: 2011/04/12 11:28:08 - [0] D -- C:\Users\dell\AppData\Roaming\Media Center Programs O43 - CFD: 2015/07/01 21:52:40 - [] SD -- C:\Users\dell\AppData\Roaming\Microsoft O43 - CFD: 2015/06/30 18:09:29 - [] D -- C:\Users\dell\AppData\Roaming\Mozilla O43 - CFD: 2015/06/11 11:28:19 - [] D -- C:\Users\dell\AppData\Roaming\vlc O43 - CFD: 2015/07/15 19:24:38 - [] D -- C:\Users\dell\AppData\Roaming\ZHP O43 - CFD: 2015/06/30 18:54:24 - [] D -- C:\Users\dell\AppData\Local\Adobe O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Application Data O43 - CFD: 2015/06/11 11:22:50 - [] D -- C:\Users\dell\AppData\Local\Apps O43 - CFD: 2015/07/14 23:50:38 - [] D -- C:\Users\dell\AppData\Local\Chromium O43 - CFD: 2015/06/10 15:58:03 - [] D -- C:\Users\dell\AppData\Local\Dell O43 - CFD: 2015/06/11 11:23:46 - [0] D -- C:\Users\dell\AppData\Local\Deployment O43 - CFD: 2015/06/10 15:58:11 - [] D -- C:\Users\dell\AppData\Local\Downloaded Installations O43 - CFD: 2015/07/01 16:28:05 - [] D -- C:\Users\dell\AppData\Local\EBP O43 - CFD: 2015/06/11 11:25:41 - [] D -- C:\Users\dell\AppData\Local\Google O43 - CFD: 2015/07/04 11:00:39 - [] D -- C:\Users\dell\AppData\Local\GWX O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Historique O43 - CFD: 2015/06/30 18:24:34 - [] D -- C:\Users\dell\AppData\Local\Microsoft O43 - CFD: 2015/06/30 18:09:30 - [] D -- C:\Users\dell\AppData\Local\Mozilla O43 - CFD: 2015/07/14 21:33:35 - [] D -- C:\Users\dell\AppData\Local\PokerStars.FR O43 - CFD: 2015/07/15 00:40:48 - [] D -- C:\Users\dell\AppData\Local\Programs O43 - CFD: 2015/07/15 19:24:17 - [] D -- C:\Users\dell\AppData\Local\Temp O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Temporary Internet Files O43 - CFD: 2015/07/01 16:27:05 - [] D -- C:\Users\dell\AppData\Local\VirtualStore O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/06/11 09:59:25 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/06/11 09:59:25 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup ---\\ Liste des pilotes du système (SDL) (O58) (50) - 7s O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088] O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536] O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864] O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440] O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904] O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128] O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008] O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632] O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856] O58 - SDL:2015/06/19 09:11:40 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [153256] O58 - SDL:2015/06/19 09:11:43 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [132656] O58 - SDL:2015/06/19 09:11:45 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600] O58 - SDL:2015/06/19 09:11:49 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [44088] O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848] O58 - SDL:2010/09/03 10:40:24 A . (.Broadcom Corporation - Broadcom Advanced Server Program Driver.) -- C:\Windows\System32\drivers\basp.sys [104960] O58 - SDL:2010/10/18 17:49:02 A . (.Broadcom Corporation - Broadcom NetXtreme Unified Crash Dump (x64).) -- C:\Windows\System32\drivers\bnxcd64.sys [286288] O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432] O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704] O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720] O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104] O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976] O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720] O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480] O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488] O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496] O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016] O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232] O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720] O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496] O58 - SDL:2011/02/11 19:16:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10628640] O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112] O58 - SDL:2010/12/01 22:36:04 A . (.Broadcom Corporation - Broadcom NetLink Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [411688] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392] O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736] O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264] O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352] O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272] O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816] O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592] O58 - SDL:2011/06/01 04:17:34 RA . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\drivers\rtl8192cu.sys [848384] O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040] O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584] O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464] O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656] O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488] O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (5) - 49s O61 - LFC: 2015/07/14 23:58:08 A . (.Enigma Software Group USA, LLC..) -- C:\Users\dell\Downloads\sh-remover.exe [3237248] O61 - LFC: 2015/07/08 22:21:24 A . (..) -- C:\Users\dell\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [331781] O61 - LFC: 2015/07/15 19:20:24 A . (..) -- C:\Users\dell\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\dell\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll [16307888] O61 - LFC: 2015/07/08 22:09:53 A . (..) -- C:\Users\dell\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [42890] ---\\ Associations Shell Spawning (O67) (9) - 0s O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\Shell\open\Command] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- iexplore.exe O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.) O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.) O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.) O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (2) - 3s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ O69 - SBI: SearchScopes [HKCU] {2f23ab71-4ac6-41f2-a955-ea576e553146} - (Bing) - http://www.bing.com/ ---\\ Enumère les services démarrés par Svchost (SSS) (O83) (33) - 2s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2603008] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (9) - 12s SR - Auto [2015/06/12 09:25:00] [ 82112] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - Auto [2015/06/19 09:11:47] [ 827184] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe SR - Auto [2015/06/19 09:12:17] [ 450808] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe SR - Auto [2015/06/19 09:11:41] [ 450808] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe SS - Auto [2015/06/19 09:11:52] [ 1188360] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe SR - Auto [2015/06/02 17:14:58] [ 217280] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe SS - Auto [2015/06/11 11:23:55] [ 107848] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - Demand [2015/06/11 11:23:55] [ 107848] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - Demand [2014/04/09 15:13:48] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe ---\\ Scan Additionnel (O88) (1) - 0s ~ Aucun élément malicieux ou superflu trouvé. ---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s ~ Aucun élément malicieux ou superflu trouvé. ~ End of the scan, 29531 items in 105 seconds (423)(0)()
  9. cedriclr
    Bonjour à tous, J'ai contracté cette infection sur mon ordinateur, nommée Filter Results, qui consiste à me harceler avec des fenêtrées publicitaires au point de ne plus pouvoir naviguer sur internet correctement. J'ai essayé de désinfecter avec zhpcleaner, adwcleaner, malwarebytes mais rien n'y fait, le virus reste présent même après redémarrage de la machine ! Si quelqu'un était disposé à m'aider ça serait merveilleux ! Merci Free Antivirus Date de création du fichier de rapport: mercredi 15 juillet 2015 11:16 Le programme fonctionne en version intégrale illimitée. Les services en ligne sont disponibles. Détenteur de la licence : Free Numéro de série : 0000149996-AVHOE-0000001 Plateforme : Windows 7 Professional Version de Windows : (Service Pack 1) [6.1.7601] Mode Boot : Démarré normalement Identifiant : Système Nom de l'ordinateur : DELL-PC Informations de version: BUILD.DAT : 15.0.11.579 109711 Bytes 19/06/2015 09:12:00 AVSCAN.EXE : 15.0.11.576 1041656 Bytes 19/06/2015 07:11:51 AVSCANRC.DLL : 15.0.11.478 63792 Bytes 19/06/2015 07:11:51 LUKE.DLL : 15.0.11.550 59696 Bytes 19/06/2015 07:12:08 AVSCPLR.DLL : 15.0.11.550 95024 Bytes 19/06/2015 07:11:51 REPAIR.DLL : 15.0.11.576 463608 Bytes 19/06/2015 07:11:50 REPAIR.RDF : 1.0.8.88 950848 Bytes 15/07/2015 09:09:42 AVREG.DLL : 15.0.11.550 276784 Bytes 19/06/2015 07:11:49 AVLODE.DLL : 15.0.11.572 611632 Bytes 19/06/2015 07:11:46 AVLODE.RDF : 14.0.4.72 79262 Bytes 15/07/2015 09:09:26 XBV00022.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00023.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00024.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00025.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00026.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00027.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00028.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00029.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00030.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00031.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00032.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00033.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00034.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00035.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00036.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00037.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00038.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00039.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00040.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00041.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25 XBV00233.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:39 XBV00234.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00235.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00236.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00237.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00238.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00239.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00240.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00241.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40 XBV00242.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00243.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00244.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00245.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00246.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00247.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00248.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00249.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00250.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00251.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00252.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00253.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00254.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41 XBV00255.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:42 XBV00000.VDF : 7.11.70.0 66736640 Bytes 04/04/2013 07:12:25 XBV00001.VDF : 7.11.74.226 2201600 Bytes 30/04/2013 07:12:25 XBV00002.VDF : 7.11.80.60 2751488 Bytes 28/05/2013 07:12:25 XBV00003.VDF : 7.11.85.214 2162688 Bytes 21/06/2013 07:12:25 XBV00004.VDF : 7.11.91.176 3903488 Bytes 23/07/2013 07:12:25 XBV00005.VDF : 7.11.98.186 6822912 Bytes 29/08/2013 07:12:25 XBV00006.VDF : 7.11.139.38 15708672 Bytes 27/03/2014 07:12:25 XBV00007.VDF : 7.11.152.100 4193792 Bytes 02/06/2014 07:12:25 XBV00008.VDF : 8.11.165.192 4251136 Bytes 07/08/2014 07:12:25 XBV00009.VDF : 8.11.172.30 2094080 Bytes 15/09/2014 07:12:25 XBV00010.VDF : 8.11.178.32 1581056 Bytes 14/10/2014 07:12:25 XBV00011.VDF : 8.11.184.50 2178560 Bytes 11/11/2014 07:12:25 XBV00012.VDF : 8.11.190.32 1876992 Bytes 03/12/2014 07:12:25 XBV00013.VDF : 8.11.201.28 2973696 Bytes 14/01/2015 07:12:25 XBV00014.VDF : 8.11.206.252 2695680 Bytes 04/02/2015 07:12:25 XBV00015.VDF : 8.11.213.84 3175936 Bytes 03/03/2015 07:12:25 XBV00016.VDF : 8.11.213.176 212480 Bytes 05/03/2015 07:12:25 XBV00017.VDF : 8.11.219.166 2033664 Bytes 25/03/2015 07:12:25 XBV00018.VDF : 8.11.225.88 2367488 Bytes 22/04/2015 07:12:25 XBV00019.VDF : 8.11.230.186 1674752 Bytes 13/05/2015 07:12:25 XBV00020.VDF : 8.11.237.30 4711936 Bytes 02/06/2015 07:12:25 XBV00021.VDF : 8.11.243.12 2747904 Bytes 26/06/2015 09:09:28 XBV00042.VDF : 8.11.243.20 3584 Bytes 26/06/2015 09:09:28 XBV00043.VDF : 8.11.243.28 2048 Bytes 26/06/2015 09:09:28 XBV00044.VDF : 8.11.243.36 2048 Bytes 26/06/2015 09:09:28 XBV00045.VDF : 8.11.243.46 38912 Bytes 26/06/2015 09:09:28 XBV00046.VDF : 8.11.243.48 3584 Bytes 26/06/2015 09:09:28 XBV00047.VDF : 8.11.243.52 27136 Bytes 27/06/2015 09:09:28 XBV00048.VDF : 8.11.243.54 36864 Bytes 27/06/2015 09:09:28 XBV00049.VDF : 8.11.243.56 8704 Bytes 27/06/2015 09:09:28 XBV00050.VDF : 8.11.243.60 83968 Bytes 28/06/2015 09:09:28 XBV00051.VDF : 8.11.243.62 2048 Bytes 28/06/2015 09:09:28 XBV00052.VDF : 8.11.243.70 6656 Bytes 28/06/2015 09:09:28 XBV00053.VDF : 8.11.243.78 8192 Bytes 28/06/2015 09:09:28 XBV00054.VDF : 8.11.243.86 3584 Bytes 28/06/2015 09:09:28 XBV00055.VDF : 8.11.243.94 68608 Bytes 29/06/2015 09:09:28 XBV00056.VDF : 8.11.243.96 4608 Bytes 29/06/2015 09:09:28 XBV00057.VDF : 8.11.243.98 5120 Bytes 29/06/2015 09:09:28 XBV00058.VDF : 8.11.243.100 5632 Bytes 29/06/2015 09:09:28 XBV00059.VDF : 8.11.243.102 5120 Bytes 29/06/2015 09:09:28 XBV00060.VDF : 8.11.243.122 46080 Bytes 29/06/2015 09:09:29 XBV00061.VDF : 8.11.243.124 2048 Bytes 29/06/2015 09:09:29 XBV00062.VDF : 8.11.243.126 26624 Bytes 29/06/2015 09:09:29 XBV00063.VDF : 8.11.243.128 2048 Bytes 29/06/2015 09:09:29 XBV00064.VDF : 8.11.243.134 18944 Bytes 29/06/2015 09:09:29 XBV00065.VDF : 8.11.243.138 33280 Bytes 30/06/2015 09:09:29 XBV00066.VDF : 8.11.243.146 30208 Bytes 30/06/2015 09:09:29 XBV00067.VDF : 8.11.243.152 14336 Bytes 30/06/2015 09:09:29 XBV00068.VDF : 8.11.243.158 3584 Bytes 30/06/2015 09:09:29 XBV00069.VDF : 8.11.243.170 33792 Bytes 30/06/2015 09:09:29 XBV00070.VDF : 8.11.243.176 2560 Bytes 30/06/2015 09:09:29 XBV00071.VDF : 8.11.243.184 29184 Bytes 30/06/2015 09:09:29 XBV00072.VDF : 8.11.243.186 15360 Bytes 30/06/2015 09:09:29 XBV00073.VDF : 8.11.243.188 10752 Bytes 30/06/2015 09:09:29 XBV00074.VDF : 8.11.243.192 85504 Bytes 01/07/2015 09:09:29 XBV00075.VDF : 8.11.243.194 2048 Bytes 01/07/2015 09:09:29 XBV00076.VDF : 8.11.243.196 2048 Bytes 01/07/2015 09:09:29 XBV00077.VDF : 8.11.243.198 2048 Bytes 01/07/2015 09:09:29 XBV00078.VDF : 8.11.243.200 12288 Bytes 01/07/2015 09:09:29 XBV00079.VDF : 8.11.243.234 47104 Bytes 01/07/2015 09:09:30 XBV00080.VDF : 8.11.244.42 33792 Bytes 01/07/2015 09:09:30 XBV00081.VDF : 8.11.244.74 42496 Bytes 01/07/2015 09:09:30 XBV00082.VDF : 8.11.244.106 23040 Bytes 01/07/2015 09:09:30 XBV00083.VDF : 8.11.244.142 17408 Bytes 01/07/2015 09:09:30 XBV00084.VDF : 8.11.244.148 59904 Bytes 02/07/2015 09:09:30 XBV00085.VDF : 8.11.244.152 2048 Bytes 02/07/2015 09:09:30 XBV00086.VDF : 8.11.244.154 8192 Bytes 02/07/2015 09:09:30 XBV00087.VDF : 8.11.244.156 5120 Bytes 02/07/2015 09:09:30 XBV00088.VDF : 8.11.244.158 3584 Bytes 02/07/2015 09:09:30 XBV00089.VDF : 8.11.244.160 3584 Bytes 02/07/2015 09:09:30 XBV00090.VDF : 8.11.244.164 34816 Bytes 02/07/2015 09:09:30 XBV00091.VDF : 8.11.244.166 2048 Bytes 02/07/2015 09:09:30 XBV00092.VDF : 8.11.244.170 32256 Bytes 02/07/2015 09:09:30 XBV00093.VDF : 8.11.244.172 4608 Bytes 02/07/2015 09:09:30 XBV00094.VDF : 8.11.244.174 7168 Bytes 02/07/2015 09:09:30 XBV00095.VDF : 8.11.244.198 9216 Bytes 03/07/2015 09:09:30 XBV00096.VDF : 8.11.244.218 29184 Bytes 03/07/2015 09:09:30 XBV00097.VDF : 8.11.244.220 2048 Bytes 03/07/2015 09:09:31 XBV00098.VDF : 8.11.244.240 7168 Bytes 03/07/2015 09:09:31 XBV00099.VDF : 8.11.244.242 4096 Bytes 03/07/2015 09:09:31 XBV00100.VDF : 8.11.245.8 35840 Bytes 03/07/2015 09:09:31 XBV00101.VDF : 8.11.245.10 10752 Bytes 03/07/2015 09:09:31 XBV00102.VDF : 8.11.245.12 6144 Bytes 03/07/2015 09:09:31 XBV00103.VDF : 8.11.245.14 4608 Bytes 03/07/2015 09:09:31 XBV00104.VDF : 8.11.245.16 2048 Bytes 03/07/2015 09:09:31 XBV00105.VDF : 8.11.245.18 2048 Bytes 03/07/2015 09:09:31 XBV00106.VDF : 8.11.245.20 3072 Bytes 03/07/2015 09:09:31 XBV00107.VDF : 8.11.245.22 2048 Bytes 03/07/2015 09:09:31 XBV00108.VDF : 8.11.245.24 2048 Bytes 03/07/2015 09:09:31 XBV00109.VDF : 8.11.245.34 3072 Bytes 04/07/2015 09:09:31 XBV00110.VDF : 8.11.245.36 2048 Bytes 04/07/2015 09:09:31 XBV00111.VDF : 8.11.245.40 82944 Bytes 04/07/2015 09:09:31 XBV00112.VDF : 8.11.245.42 12288 Bytes 04/07/2015 09:09:31 XBV00113.VDF : 8.11.245.44 73216 Bytes 05/07/2015 09:09:31 XBV00114.VDF : 8.11.245.64 5120 Bytes 05/07/2015 09:09:31 XBV00115.VDF : 8.11.245.84 7680 Bytes 05/07/2015 09:09:32 XBV00116.VDF : 8.11.245.104 10752 Bytes 05/07/2015 09:09:32 XBV00117.VDF : 8.11.245.124 3072 Bytes 05/07/2015 09:09:32 XBV00118.VDF : 8.11.245.126 4096 Bytes 05/07/2015 09:09:32 XBV00119.VDF : 8.11.245.128 8192 Bytes 05/07/2015 09:09:32 XBV00120.VDF : 8.11.245.130 5120 Bytes 05/07/2015 09:09:32 XBV00121.VDF : 8.11.245.132 41472 Bytes 06/07/2015 09:09:32 XBV00122.VDF : 8.11.245.134 22528 Bytes 06/07/2015 09:09:32 XBV00123.VDF : 8.11.245.136 6144 Bytes 06/07/2015 09:09:32 XBV00124.VDF : 8.11.245.138 7680 Bytes 06/07/2015 09:09:32 XBV00125.VDF : 8.11.245.140 6656 Bytes 06/07/2015 09:09:32 XBV00126.VDF : 8.11.245.142 11776 Bytes 06/07/2015 09:09:32 XBV00127.VDF : 8.11.245.146 24064 Bytes 06/07/2015 09:09:32 XBV00128.VDF : 8.11.245.148 8704 Bytes 06/07/2015 09:09:32 XBV00129.VDF : 8.11.245.150 2048 Bytes 06/07/2015 09:09:32 XBV00130.VDF : 8.11.245.152 2048 Bytes 06/07/2015 09:09:32 XBV00131.VDF : 8.11.245.154 25600 Bytes 06/07/2015 09:09:32 XBV00132.VDF : 8.11.245.158 19968 Bytes 06/07/2015 09:09:32 XBV00133.VDF : 8.11.245.178 7680 Bytes 06/07/2015 09:09:32 XBV00134.VDF : 8.11.245.196 2048 Bytes 06/07/2015 09:09:33 XBV00135.VDF : 8.11.245.214 3584 Bytes 06/07/2015 09:09:33 XBV00136.VDF : 8.11.245.234 8192 Bytes 07/07/2015 09:09:33 XBV00137.VDF : 8.11.245.252 2560 Bytes 07/07/2015 09:09:33 XBV00138.VDF : 8.11.245.254 2560 Bytes 07/07/2015 09:09:33 XBV00139.VDF : 8.11.246.0 2048 Bytes 07/07/2015 09:09:33 XBV00140.VDF : 8.11.246.2 11264 Bytes 07/07/2015 09:09:33 XBV00141.VDF : 8.11.246.4 2048 Bytes 07/07/2015 09:09:33 XBV00142.VDF : 8.11.246.8 34816 Bytes 07/07/2015 09:09:33 XBV00143.VDF : 8.11.246.10 2048 Bytes 07/07/2015 09:09:33 XBV00144.VDF : 8.11.246.12 20480 Bytes 07/07/2015 09:09:33 XBV00145.VDF : 8.11.246.14 4608 Bytes 07/07/2015 09:09:33 XBV00146.VDF : 8.11.246.18 38912 Bytes 07/07/2015 09:09:33 XBV00147.VDF : 8.11.246.20 18944 Bytes 07/07/2015 09:09:33 XBV00148.VDF : 8.11.246.22 18432 Bytes 07/07/2015 09:09:33 XBV00149.VDF : 8.11.246.24 5632 Bytes 07/07/2015 09:09:33 XBV00150.VDF : 8.11.246.28 26112 Bytes 08/07/2015 09:09:33 XBV00151.VDF : 8.11.246.30 3584 Bytes 08/07/2015 09:09:33 XBV00152.VDF : 8.11.246.32 8704 Bytes 08/07/2015 09:09:33 XBV00153.VDF : 8.11.246.34 11264 Bytes 08/07/2015 09:09:33 XBV00154.VDF : 8.11.246.52 2048 Bytes 08/07/2015 09:09:33 XBV00155.VDF : 8.11.246.70 18432 Bytes 08/07/2015 09:09:33 XBV00156.VDF : 8.11.246.108 53760 Bytes 08/07/2015 09:09:34 XBV00157.VDF : 8.11.246.126 4608 Bytes 08/07/2015 09:09:34 XBV00158.VDF : 8.11.246.128 2048 Bytes 08/07/2015 09:09:34 XBV00159.VDF : 8.11.246.130 3072 Bytes 08/07/2015 09:09:34 XBV00160.VDF : 8.11.246.132 2048 Bytes 08/07/2015 09:09:34 XBV00161.VDF : 8.11.246.134 2048 Bytes 08/07/2015 09:09:34 XBV00162.VDF : 8.11.246.136 2048 Bytes 08/07/2015 09:09:34 XBV00163.VDF : 8.11.246.140 7680 Bytes 09/07/2015 09:09:34 XBV00164.VDF : 8.11.246.144 33792 Bytes 09/07/2015 09:09:34 XBV00165.VDF : 8.11.246.146 31744 Bytes 09/07/2015 09:09:34 XBV00166.VDF : 8.11.246.148 8704 Bytes 09/07/2015 09:09:34 XBV00167.VDF : 8.11.246.150 3072 Bytes 09/07/2015 09:09:34 XBV00168.VDF : 8.11.246.152 2048 Bytes 09/07/2015 09:09:34 XBV00169.VDF : 8.11.246.156 3584 Bytes 09/07/2015 09:09:34 XBV00170.VDF : 8.11.246.158 32256 Bytes 09/07/2015 09:09:34 XBV00171.VDF : 8.11.246.176 10240 Bytes 09/07/2015 09:09:34 XBV00172.VDF : 8.11.246.192 2048 Bytes 09/07/2015 09:09:34 XBV00173.VDF : 8.11.246.210 44544 Bytes 09/07/2015 09:09:35 XBV00174.VDF : 8.11.246.226 11776 Bytes 09/07/2015 09:09:35 XBV00175.VDF : 8.11.246.244 21504 Bytes 10/07/2015 09:09:35 XBV00176.VDF : 8.11.246.246 2560 Bytes 10/07/2015 09:09:35 XBV00177.VDF : 8.11.246.248 2560 Bytes 10/07/2015 09:09:35 XBV00178.VDF : 8.11.246.250 27136 Bytes 10/07/2015 09:09:35 XBV00179.VDF : 8.11.246.252 12800 Bytes 10/07/2015 09:09:35 XBV00180.VDF : 8.11.246.254 2560 Bytes 10/07/2015 09:09:35 XBV00181.VDF : 8.11.247.4 45568 Bytes 10/07/2015 09:09:35 XBV00182.VDF : 8.11.247.6 2048 Bytes 10/07/2015 09:09:35 XBV00183.VDF : 8.11.247.8 2048 Bytes 10/07/2015 09:09:35 XBV00184.VDF : 8.11.247.10 2048 Bytes 10/07/2015 09:09:35 XBV00185.VDF : 8.11.247.14 67072 Bytes 10/07/2015 09:09:35 XBV00186.VDF : 8.11.247.16 12288 Bytes 10/07/2015 09:09:35 XBV00187.VDF : 8.11.247.20 45056 Bytes 11/07/2015 09:09:35 XBV00188.VDF : 8.11.247.36 17408 Bytes 11/07/2015 09:09:35 XBV00189.VDF : 8.11.247.52 2048 Bytes 11/07/2015 09:09:35 XBV00190.VDF : 8.11.247.68 18944 Bytes 11/07/2015 09:09:36 XBV00191.VDF : 8.11.247.84 7680 Bytes 11/07/2015 09:09:36 XBV00192.VDF : 8.11.247.100 57856 Bytes 12/07/2015 09:09:36 XBV00193.VDF : 8.11.247.102 11776 Bytes 12/07/2015 09:09:36 XBV00194.VDF : 8.11.247.104 10240 Bytes 12/07/2015 09:09:36 XBV00195.VDF : 8.11.247.106 7680 Bytes 12/07/2015 09:09:36 XBV00196.VDF : 8.11.247.108 10240 Bytes 12/07/2015 09:09:36 XBV00197.VDF : 8.11.247.110 6144 Bytes 12/07/2015 09:09:36 XBV00198.VDF : 8.11.247.112 68608 Bytes 13/07/2015 09:09:36 XBV00199.VDF : 8.11.247.128 2048 Bytes 13/07/2015 09:09:36 XBV00200.VDF : 8.11.247.142 10240 Bytes 13/07/2015 09:09:36 XBV00201.VDF : 8.11.247.144 2048 Bytes 13/07/2015 09:09:36 XBV00202.VDF : 8.11.247.158 17920 Bytes 13/07/2015 09:09:36 XBV00203.VDF : 8.11.247.160 2048 Bytes 13/07/2015 09:09:36 XBV00204.VDF : 8.11.247.174 6656 Bytes 13/07/2015 09:09:36 XBV00205.VDF : 8.11.247.176 9728 Bytes 13/07/2015 09:09:36 XBV00206.VDF : 8.11.247.180 33792 Bytes 13/07/2015 09:09:36 XBV00207.VDF : 8.11.247.184 8704 Bytes 13/07/2015 09:09:37 XBV00208.VDF : 8.11.247.186 6144 Bytes 13/07/2015 09:09:37 XBV00209.VDF : 8.11.247.188 21504 Bytes 13/07/2015 09:09:37 XBV00210.VDF : 8.11.247.192 23552 Bytes 13/07/2015 09:09:37 XBV00211.VDF : 8.11.247.194 2048 Bytes 13/07/2015 09:09:37 XBV00212.VDF : 8.11.247.196 9216 Bytes 13/07/2015 09:09:37 XBV00213.VDF : 8.11.247.198 18944 Bytes 13/07/2015 09:09:37 XBV00214.VDF : 8.11.247.202 30208 Bytes 14/07/2015 09:09:37 XBV00215.VDF : 8.11.247.204 3584 Bytes 14/07/2015 09:09:37 XBV00216.VDF : 8.11.247.206 2048 Bytes 14/07/2015 09:09:37 XBV00217.VDF : 8.11.247.208 2048 Bytes 14/07/2015 09:09:38 XBV00218.VDF : 8.11.247.210 2048 Bytes 14/07/2015 09:09:38 XBV00219.VDF : 8.11.247.212 24576 Bytes 14/07/2015 09:09:38 XBV00220.VDF : 8.11.247.242 42496 Bytes 14/07/2015 09:09:38 XBV00221.VDF : 8.11.247.244 18944 Bytes 14/07/2015 09:09:38 XBV00222.VDF : 8.11.248.2 2048 Bytes 14/07/2015 09:09:38 XBV00223.VDF : 8.11.248.16 4096 Bytes 14/07/2015 09:09:38 XBV00224.VDF : 8.11.248.30 2048 Bytes 14/07/2015 09:09:38 XBV00225.VDF : 8.11.248.32 2048 Bytes 14/07/2015 09:09:38 XBV00226.VDF : 8.11.248.34 2048 Bytes 14/07/2015 09:09:38 XBV00227.VDF : 8.11.248.48 4096 Bytes 14/07/2015 09:09:38 XBV00228.VDF : 8.11.248.50 2048 Bytes 14/07/2015 09:09:39 XBV00229.VDF : 8.11.248.52 2048 Bytes 14/07/2015 09:09:39 XBV00230.VDF : 8.11.248.54 2048 Bytes 14/07/2015 09:09:39 XBV00231.VDF : 8.11.248.56 17408 Bytes 14/07/2015 09:09:39 XBV00232.VDF : 8.11.248.60 39936 Bytes 15/07/2015 09:09:39 LOCAL000.VDF : 8.11.248.60 131443200 Bytes 15/07/2015 09:11:00 Version du moteur : 8.3.32.22 AEBB.DLL : 8.1.2.0 60448 Bytes 19/06/2015 07:11:33 AECORE.DLL : 8.3.7.2 249920 Bytes 15/07/2015 09:09:23 AEDROID.DLL : 8.4.3.302 1506160 Bytes 15/07/2015 09:09:26 AEEMU.DLL : 8.1.3.4 399264 Bytes 19/06/2015 07:11:33 AEEXP.DLL : 8.4.2.88 266296 Bytes 19/06/2015 07:11:33 AEGEN.DLL : 8.1.7.42 457576 Bytes 15/07/2015 09:09:23 AEHELP.DLL : 8.3.2.2 281456 Bytes 15/07/2015 09:09:23 AEHEUR.DLL : 8.1.4.1784 8551280 Bytes 15/07/2015 09:09:25 AEMOBILE.DLL : 8.1.8.2 303168 Bytes 15/07/2015 09:09:26 AEOFFICE.DLL : 8.3.1.44 404608 Bytes 15/07/2015 09:09:25 AEPACK.DLL : 8.4.0.82 792488 Bytes 15/07/2015 09:09:25 AERDL.DLL : 8.2.1.20 731040 Bytes 19/06/2015 07:11:33 AESBX.DLL : 8.2.21.0 1622072 Bytes 19/06/2015 07:11:33 AESCN.DLL : 8.3.2.10 142456 Bytes 19/06/2015 07:11:33 AESCRIPT.DLL : 8.2.2.82 534440 Bytes 15/07/2015 09:09:25 AEVDF.DLL : 8.3.1.6 133992 Bytes 19/06/2015 07:11:33 AVWINLL.DLL : 15.0.11.478 25904 Bytes 19/06/2015 07:11:53 AVPREF.DLL : 15.0.11.478 54216 Bytes 19/06/2015 07:11:49 AVREP.DLL : 15.0.11.478 220464 Bytes 19/06/2015 07:11:49 AVARKT.DLL : 15.0.11.478 228088 Bytes 19/06/2015 07:11:35 AVEVTLOG.DLL : 15.0.11.550 195320 Bytes 19/06/2015 07:11:36 SQLITE3.DLL : 15.0.11.478 455472 Bytes 19/06/2015 07:12:23 AVSMTP.DLL : 15.0.11.478 79096 Bytes 19/06/2015 07:11:52 NETNT.DLL : 15.0.11.478 16384 Bytes 19/06/2015 07:12:11 CommonImageRc.dll : 15.0.11.478 4280568 Bytes 19/06/2015 07:12:13 CommonTextRc.dll : 15.0.11.478 71984 Bytes 19/06/2015 07:12:15 Configuration pour la recherche actuelle: Nom de la tâche...............................: Contrôle intégral du système Fichier de configuration......................: C:\Program Files (x86)\Avira\Antivirus\sysscan.avp Documentation.................................: par défaut Action principale.............................: Interactif Action secondaire.............................: Ignorer Recherche sur les secteurs d'amorçage maître..: marche Contrôle en cours des secteurs d'amorçage.....: marche Secteurs d'amorçage...........................: C:, Contrôle en cours des programmes actifs.......: marche Programmes en cours étendus...................: marche Recherche du registre.........................: marche Recherche de Rootkits.........................: marche Contrôle d'intégrité de fichiers système......: arrêt Recherche sur tous les fichiers...............: Tous les fichiers Recherche sur les archives....................: marche Limiter la profondeur de récursivité..........: 20 Archive Smart Extensions......................: marche Heuristique de macrovirus.....................: marche Heuristique de fichiers.......................: avancé Début de la recherche: mercredi 15 juillet 2015 11:16 La recherche sur les secteurs d'amorçage commence: Secteur d'amorçage 'HDD0(C:)' [iNFO] Aucun virus trouvé! La recherche d'objets cachés commence. La recherche sur les processus démarrés commence: Recherche en cours du processus 'svchost.exe' - '52' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '36' module(s) ont été recherchés Recherche en cours du processus 'MsMpEng.exe' - '67' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '94' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '125' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '82' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '154' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '28' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '72' module(s) ont été recherchés Recherche en cours du processus 'spoolsv.exe' - '77' module(s) ont été recherchés Recherche en cours du processus 'taskhost.exe' - '57' module(s) ont été recherchés Recherche en cours du processus 'Dwm.exe' - '31' module(s) ont été recherchés Recherche en cours du processus 'Explorer.EXE' - '168' module(s) ont été recherchés Recherche en cours du processus 'sched.exe' - '94' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '61' module(s) ont été recherchés Recherche en cours du processus 'armsvc.exe' - '28' module(s) ont été recherchés Recherche en cours du processus 'avguard.exe' - '115' module(s) ont été recherchés Recherche en cours du processus 'igfxtray.exe' - '29' module(s) ont été recherchés Recherche en cours du processus 'hkcmd.exe' - '54' module(s) ont été recherchés Recherche en cours du processus 'igfxpers.exe' - '33' module(s) ont été recherchés Recherche en cours du processus 'taskeng.exe' - '30' module(s) ont été recherchés Recherche en cours du processus 'itype.exe' - '66' module(s) ont été recherchés Recherche en cours du processus 'ipoint.exe' - '65' module(s) ont été recherchés Recherche en cours du processus 'msseces.exe' - '53' module(s) ont été recherchés Recherche en cours du processus 'SSScheduler.exe' - '48' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '58' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '32' module(s) ont été recherchés Recherche en cours du processus 'GWX.exe' - '41' module(s) ont été recherchés Recherche en cours du processus 'Avira.ServiceHost.exe' - '128' module(s) ont été recherchés Recherche en cours du processus 'avgnt.exe' - '113' module(s) ont été recherchés Recherche en cours du processus 'avshadow.exe' - '29' module(s) ont été recherchés Recherche en cours du processus 'SearchIndexer.exe' - '55' module(s) ont été recherchés Recherche en cours du processus 'NisSrv.exe' - '41' module(s) ont été recherchés Recherche en cours du processus 'wmpnetwk.exe' - '119' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '60' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '59' module(s) ont été recherchés Recherche en cours du processus 'Avira.Systray.exe' - '143' module(s) ont été recherchés Recherche en cours du processus 'wmiprvse.exe' - '32' module(s) ont été recherchés Recherche en cours du processus 'avcenter.exe' - '127' module(s) ont été recherchés Recherche en cours du processus 'avscan.exe' - '127' module(s) ont été recherchés Recherche en cours du processus 'vssvc.exe' - '47' module(s) ont été recherchés Recherche en cours du processus 'svchost.exe' - '28' module(s) ont été recherchés Recherche en cours du processus 'TrustedInstaller.exe' - '49' module(s) ont été recherchés Recherche en cours du processus 'SearchProtocolHost.exe' - '29' module(s) ont été recherchés Recherche en cours du processus 'SearchFilterHost.exe' - '27' module(s) ont été recherchés Recherche en cours du processus 'Reader_sl.exe' - '37' module(s) ont été recherchés Recherche en cours du processus 'smss.exe' - '2' module(s) ont été recherchés Recherche en cours du processus 'csrss.exe' - '16' module(s) ont été recherchés Recherche en cours du processus 'wininit.exe' - '26' module(s) ont été recherchés Recherche en cours du processus 'csrss.exe' - '16' module(s) ont été recherchés Recherche en cours du processus 'services.exe' - '33' module(s) ont été recherchés Recherche en cours du processus 'lsass.exe' - '65' module(s) ont été recherchés Recherche en cours du processus 'lsm.exe' - '16' module(s) ont été recherchés Recherche en cours du processus 'winlogon.exe' - '31' module(s) ont été recherchés La recherche sur les renvois aux fichiers exécutables (registre) commence: Le registre a été contrôlé ( '1172' fichiers). La recherche sur les fichiers sélectionnés commence: Recherche débutant dans 'C:\' C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Uninstaller.exe.vir [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\cckaogkkkkeakjcommpboibminldbpno.crx.vir [0] Type d'archive: ZIP --> content.js [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.JX [AVERTISSEMENT] Impossible de réparer les fichiers dans les archives C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\dd4c66b8-f943-4b10-8053-7e9ee39bba4a.dll.vir [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen7 C:\Users\dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XG49YKJE\FirefoxSetup.exe [RESULTAT] Contient le modèle du logiciel PUA/InstallCore.Gen4 Début de la désinfection: C:\Users\dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XG49YKJE\FirefoxSetup.exe [RESULTAT] Contient le modèle du logiciel PUA/InstallCore.Gen4 [REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine! [REMARQUE] Le fichier n'existe pas! C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\dd4c66b8-f943-4b10-8053-7e9ee39bba4a.dll.vir [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen7 [REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine! [REMARQUE] Le fichier n'existe pas! C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\cckaogkkkkeakjcommpboibminldbpno.crx.vir [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.JX [REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '1803ef61.qua'! C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Uninstaller.exe.vir [RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen [REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine! [REMARQUE] Le fichier n'existe pas! Fin de la recherche: mercredi 15 juillet 2015 12:20 Temps écoulé: 1:03:39 Heure(s) La recherche a été effectuée intégralement. 23437 Les répertoires ont été contrôlés 392357 Des fichiers ont été contrôlés 4 Des virus ou programmes indésirables ont été trouvés 0 Des fichiers ont été classés comme suspects 0 Des fichiers ont été supprimés 0 Des virus ou programmes indésirables ont été réparés 1 Les fichiers ont été déplacés dans la quarantaine 0 Les fichiers ont été renommés 0 Impossible de scanner des fichiers 392353 Fichiers non infectés 5565 Les archives ont été contrôlées 1 Avertissements 4 Consignes 617536 Des objets ont été contrôlés lors du Rootkitscan 0 Des objets cachés ont été trouvés ~ ZHPCleaner v2015.7.14.297 by Nicolas Coolman (2015/07/14) ~ Run by dell (Administrator) (15/07/2015 10:49:40) ~ Site : http://www.nicolascoolman.fr ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ State version : Version OK ~ Type : Scanner ~ Report : C:\Users\dell\Desktop\ZHPCleaner.txt ~ Quarantine : C:\Users\dell\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt ~ UAC : Activate ~ Boot Mode : Normal (Normal boot) ~ Windows 7, 64-bit Service Pack 1 (Build 7601) ---\\ Service. (0) ~ Aucun élément malicieux trouvé. ---\\ Navigateur internet. (0) ~ Aucun élément malicieux trouvé. ---\\ Fichier hôte. (1) ~ Le fichier hôte est légitime. (21) ---\\ Tâche planifiée. (0) ~ Aucun élément malicieux trouvé. ---\\ Explorateur ( Dossiers, Fichiers ). (0) ~ Aucun élément malicieux trouvé. ---\\ Base de Registres ( Clés, Valeurs, Données ). (0) ~ Aucun élément malicieux trouvé. ---\\ Bilan de la réparation ~ Aucune réparation effectuée. ~ Ce navigateur est absent (Opera Software) ---\\ Statistiques ~ Items scannés : 53769 ~ Items trouvés : 0 ~ Items annulés : 0 ~ Items réparés : 0 End of clean at 10:53:11 =================== ZHPCleaner-[R]-15072015-00_09_08.txt ZHPCleaner--15072015-00_08_22.txt ZHPCleaner--15072015-00_25_26.txt ZHPCleaner--15072015-10_53_11.txt
×
×
  • Créer...