Aller au contenu
Zebulon

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Malware « Filter Results »

cedriclr

Par cedriclr
dans Analyses et éradication malwares

 Partager

Messages recommandés

cedriclr Member

cedriclr

Posté(e)
Posté(e) (modifié)

Bonjour à tous,

J'ai contracté cette infection sur mon ordinateur, nommée Filter Results, qui consiste à me harceler avec des fenêtrées publicitaires au point de ne plus pouvoir naviguer sur internet correctement.

J'ai essayé de désinfecter avec zhpcleaner, adwcleaner, malwarebytes mais rien n'y fait, le virus reste présent même après redémarrage de la machine !

Si quelqu'un était disposé à m'aider ça serait merveilleux !

Merci

 

 

Free Antivirus
Date de création du fichier de rapport: mercredi 15 juillet 2015 11:16
Le programme fonctionne en version intégrale illimitée.
Les services en ligne sont disponibles.
Détenteur de la licence : Free
Numéro de série : 0000149996-AVHOE-0000001
Plateforme : Windows 7 Professional
Version de Windows : (Service Pack 1) [6.1.7601]
Mode Boot : Démarré normalement
Identifiant : Système
Nom de l'ordinateur : DELL-PC
Informations de version:
BUILD.DAT : 15.0.11.579 109711 Bytes 19/06/2015 09:12:00
AVSCAN.EXE : 15.0.11.576 1041656 Bytes 19/06/2015 07:11:51
AVSCANRC.DLL : 15.0.11.478 63792 Bytes 19/06/2015 07:11:51
LUKE.DLL : 15.0.11.550 59696 Bytes 19/06/2015 07:12:08
AVSCPLR.DLL : 15.0.11.550 95024 Bytes 19/06/2015 07:11:51
REPAIR.DLL : 15.0.11.576 463608 Bytes 19/06/2015 07:11:50
REPAIR.RDF : 1.0.8.88 950848 Bytes 15/07/2015 09:09:42
AVREG.DLL : 15.0.11.550 276784 Bytes 19/06/2015 07:11:49
AVLODE.DLL : 15.0.11.572 611632 Bytes 19/06/2015 07:11:46
AVLODE.RDF : 14.0.4.72 79262 Bytes 15/07/2015 09:09:26
XBV00022.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00023.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00024.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00025.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00026.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00027.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00028.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00029.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00030.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00031.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00032.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00033.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00034.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00035.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00036.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00037.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00038.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00039.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00040.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00041.VDF : 8.11.165.190 2048 Bytes 07/08/2014 07:12:25
XBV00233.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:39
XBV00234.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00235.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00236.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00237.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00238.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00239.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00240.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00241.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:40
XBV00242.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00243.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00244.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00245.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00246.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00247.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00248.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00249.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00250.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00251.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00252.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00253.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00254.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:41
XBV00255.VDF : 8.11.243.12 2048 Bytes 26/06/2015 09:09:42
XBV00000.VDF : 7.11.70.0 66736640 Bytes 04/04/2013 07:12:25
XBV00001.VDF : 7.11.74.226 2201600 Bytes 30/04/2013 07:12:25
XBV00002.VDF : 7.11.80.60 2751488 Bytes 28/05/2013 07:12:25
XBV00003.VDF : 7.11.85.214 2162688 Bytes 21/06/2013 07:12:25
XBV00004.VDF : 7.11.91.176 3903488 Bytes 23/07/2013 07:12:25
XBV00005.VDF : 7.11.98.186 6822912 Bytes 29/08/2013 07:12:25
XBV00006.VDF : 7.11.139.38 15708672 Bytes 27/03/2014 07:12:25
XBV00007.VDF : 7.11.152.100 4193792 Bytes 02/06/2014 07:12:25
XBV00008.VDF : 8.11.165.192 4251136 Bytes 07/08/2014 07:12:25
XBV00009.VDF : 8.11.172.30 2094080 Bytes 15/09/2014 07:12:25
XBV00010.VDF : 8.11.178.32 1581056 Bytes 14/10/2014 07:12:25
XBV00011.VDF : 8.11.184.50 2178560 Bytes 11/11/2014 07:12:25
XBV00012.VDF : 8.11.190.32 1876992 Bytes 03/12/2014 07:12:25
XBV00013.VDF : 8.11.201.28 2973696 Bytes 14/01/2015 07:12:25
XBV00014.VDF : 8.11.206.252 2695680 Bytes 04/02/2015 07:12:25
XBV00015.VDF : 8.11.213.84 3175936 Bytes 03/03/2015 07:12:25
XBV00016.VDF : 8.11.213.176 212480 Bytes 05/03/2015 07:12:25
XBV00017.VDF : 8.11.219.166 2033664 Bytes 25/03/2015 07:12:25
XBV00018.VDF : 8.11.225.88 2367488 Bytes 22/04/2015 07:12:25
XBV00019.VDF : 8.11.230.186 1674752 Bytes 13/05/2015 07:12:25
XBV00020.VDF : 8.11.237.30 4711936 Bytes 02/06/2015 07:12:25
XBV00021.VDF : 8.11.243.12 2747904 Bytes 26/06/2015 09:09:28
XBV00042.VDF : 8.11.243.20 3584 Bytes 26/06/2015 09:09:28
XBV00043.VDF : 8.11.243.28 2048 Bytes 26/06/2015 09:09:28
XBV00044.VDF : 8.11.243.36 2048 Bytes 26/06/2015 09:09:28
XBV00045.VDF : 8.11.243.46 38912 Bytes 26/06/2015 09:09:28
XBV00046.VDF : 8.11.243.48 3584 Bytes 26/06/2015 09:09:28
XBV00047.VDF : 8.11.243.52 27136 Bytes 27/06/2015 09:09:28
XBV00048.VDF : 8.11.243.54 36864 Bytes 27/06/2015 09:09:28
XBV00049.VDF : 8.11.243.56 8704 Bytes 27/06/2015 09:09:28
XBV00050.VDF : 8.11.243.60 83968 Bytes 28/06/2015 09:09:28
XBV00051.VDF : 8.11.243.62 2048 Bytes 28/06/2015 09:09:28
XBV00052.VDF : 8.11.243.70 6656 Bytes 28/06/2015 09:09:28
XBV00053.VDF : 8.11.243.78 8192 Bytes 28/06/2015 09:09:28
XBV00054.VDF : 8.11.243.86 3584 Bytes 28/06/2015 09:09:28
XBV00055.VDF : 8.11.243.94 68608 Bytes 29/06/2015 09:09:28
XBV00056.VDF : 8.11.243.96 4608 Bytes 29/06/2015 09:09:28
XBV00057.VDF : 8.11.243.98 5120 Bytes 29/06/2015 09:09:28
XBV00058.VDF : 8.11.243.100 5632 Bytes 29/06/2015 09:09:28
XBV00059.VDF : 8.11.243.102 5120 Bytes 29/06/2015 09:09:28
XBV00060.VDF : 8.11.243.122 46080 Bytes 29/06/2015 09:09:29
XBV00061.VDF : 8.11.243.124 2048 Bytes 29/06/2015 09:09:29
XBV00062.VDF : 8.11.243.126 26624 Bytes 29/06/2015 09:09:29
XBV00063.VDF : 8.11.243.128 2048 Bytes 29/06/2015 09:09:29
XBV00064.VDF : 8.11.243.134 18944 Bytes 29/06/2015 09:09:29
XBV00065.VDF : 8.11.243.138 33280 Bytes 30/06/2015 09:09:29
XBV00066.VDF : 8.11.243.146 30208 Bytes 30/06/2015 09:09:29
XBV00067.VDF : 8.11.243.152 14336 Bytes 30/06/2015 09:09:29
XBV00068.VDF : 8.11.243.158 3584 Bytes 30/06/2015 09:09:29
XBV00069.VDF : 8.11.243.170 33792 Bytes 30/06/2015 09:09:29
XBV00070.VDF : 8.11.243.176 2560 Bytes 30/06/2015 09:09:29
XBV00071.VDF : 8.11.243.184 29184 Bytes 30/06/2015 09:09:29
XBV00072.VDF : 8.11.243.186 15360 Bytes 30/06/2015 09:09:29
XBV00073.VDF : 8.11.243.188 10752 Bytes 30/06/2015 09:09:29
XBV00074.VDF : 8.11.243.192 85504 Bytes 01/07/2015 09:09:29
XBV00075.VDF : 8.11.243.194 2048 Bytes 01/07/2015 09:09:29
XBV00076.VDF : 8.11.243.196 2048 Bytes 01/07/2015 09:09:29
XBV00077.VDF : 8.11.243.198 2048 Bytes 01/07/2015 09:09:29
XBV00078.VDF : 8.11.243.200 12288 Bytes 01/07/2015 09:09:29
XBV00079.VDF : 8.11.243.234 47104 Bytes 01/07/2015 09:09:30
XBV00080.VDF : 8.11.244.42 33792 Bytes 01/07/2015 09:09:30
XBV00081.VDF : 8.11.244.74 42496 Bytes 01/07/2015 09:09:30
XBV00082.VDF : 8.11.244.106 23040 Bytes 01/07/2015 09:09:30
XBV00083.VDF : 8.11.244.142 17408 Bytes 01/07/2015 09:09:30
XBV00084.VDF : 8.11.244.148 59904 Bytes 02/07/2015 09:09:30
XBV00085.VDF : 8.11.244.152 2048 Bytes 02/07/2015 09:09:30
XBV00086.VDF : 8.11.244.154 8192 Bytes 02/07/2015 09:09:30
XBV00087.VDF : 8.11.244.156 5120 Bytes 02/07/2015 09:09:30
XBV00088.VDF : 8.11.244.158 3584 Bytes 02/07/2015 09:09:30
XBV00089.VDF : 8.11.244.160 3584 Bytes 02/07/2015 09:09:30
XBV00090.VDF : 8.11.244.164 34816 Bytes 02/07/2015 09:09:30
XBV00091.VDF : 8.11.244.166 2048 Bytes 02/07/2015 09:09:30
XBV00092.VDF : 8.11.244.170 32256 Bytes 02/07/2015 09:09:30
XBV00093.VDF : 8.11.244.172 4608 Bytes 02/07/2015 09:09:30
XBV00094.VDF : 8.11.244.174 7168 Bytes 02/07/2015 09:09:30
XBV00095.VDF : 8.11.244.198 9216 Bytes 03/07/2015 09:09:30
XBV00096.VDF : 8.11.244.218 29184 Bytes 03/07/2015 09:09:30
XBV00097.VDF : 8.11.244.220 2048 Bytes 03/07/2015 09:09:31
XBV00098.VDF : 8.11.244.240 7168 Bytes 03/07/2015 09:09:31
XBV00099.VDF : 8.11.244.242 4096 Bytes 03/07/2015 09:09:31
XBV00100.VDF : 8.11.245.8 35840 Bytes 03/07/2015 09:09:31
XBV00101.VDF : 8.11.245.10 10752 Bytes 03/07/2015 09:09:31
XBV00102.VDF : 8.11.245.12 6144 Bytes 03/07/2015 09:09:31
XBV00103.VDF : 8.11.245.14 4608 Bytes 03/07/2015 09:09:31
XBV00104.VDF : 8.11.245.16 2048 Bytes 03/07/2015 09:09:31
XBV00105.VDF : 8.11.245.18 2048 Bytes 03/07/2015 09:09:31
XBV00106.VDF : 8.11.245.20 3072 Bytes 03/07/2015 09:09:31
XBV00107.VDF : 8.11.245.22 2048 Bytes 03/07/2015 09:09:31
XBV00108.VDF : 8.11.245.24 2048 Bytes 03/07/2015 09:09:31
XBV00109.VDF : 8.11.245.34 3072 Bytes 04/07/2015 09:09:31
XBV00110.VDF : 8.11.245.36 2048 Bytes 04/07/2015 09:09:31
XBV00111.VDF : 8.11.245.40 82944 Bytes 04/07/2015 09:09:31
XBV00112.VDF : 8.11.245.42 12288 Bytes 04/07/2015 09:09:31
XBV00113.VDF : 8.11.245.44 73216 Bytes 05/07/2015 09:09:31
XBV00114.VDF : 8.11.245.64 5120 Bytes 05/07/2015 09:09:31
XBV00115.VDF : 8.11.245.84 7680 Bytes 05/07/2015 09:09:32
XBV00116.VDF : 8.11.245.104 10752 Bytes 05/07/2015 09:09:32
XBV00117.VDF : 8.11.245.124 3072 Bytes 05/07/2015 09:09:32
XBV00118.VDF : 8.11.245.126 4096 Bytes 05/07/2015 09:09:32
XBV00119.VDF : 8.11.245.128 8192 Bytes 05/07/2015 09:09:32
XBV00120.VDF : 8.11.245.130 5120 Bytes 05/07/2015 09:09:32
XBV00121.VDF : 8.11.245.132 41472 Bytes 06/07/2015 09:09:32
XBV00122.VDF : 8.11.245.134 22528 Bytes 06/07/2015 09:09:32
XBV00123.VDF : 8.11.245.136 6144 Bytes 06/07/2015 09:09:32
XBV00124.VDF : 8.11.245.138 7680 Bytes 06/07/2015 09:09:32
XBV00125.VDF : 8.11.245.140 6656 Bytes 06/07/2015 09:09:32
XBV00126.VDF : 8.11.245.142 11776 Bytes 06/07/2015 09:09:32
XBV00127.VDF : 8.11.245.146 24064 Bytes 06/07/2015 09:09:32
XBV00128.VDF : 8.11.245.148 8704 Bytes 06/07/2015 09:09:32
XBV00129.VDF : 8.11.245.150 2048 Bytes 06/07/2015 09:09:32
XBV00130.VDF : 8.11.245.152 2048 Bytes 06/07/2015 09:09:32
XBV00131.VDF : 8.11.245.154 25600 Bytes 06/07/2015 09:09:32
XBV00132.VDF : 8.11.245.158 19968 Bytes 06/07/2015 09:09:32
XBV00133.VDF : 8.11.245.178 7680 Bytes 06/07/2015 09:09:32
XBV00134.VDF : 8.11.245.196 2048 Bytes 06/07/2015 09:09:33
XBV00135.VDF : 8.11.245.214 3584 Bytes 06/07/2015 09:09:33
XBV00136.VDF : 8.11.245.234 8192 Bytes 07/07/2015 09:09:33
XBV00137.VDF : 8.11.245.252 2560 Bytes 07/07/2015 09:09:33
XBV00138.VDF : 8.11.245.254 2560 Bytes 07/07/2015 09:09:33
XBV00139.VDF : 8.11.246.0 2048 Bytes 07/07/2015 09:09:33
XBV00140.VDF : 8.11.246.2 11264 Bytes 07/07/2015 09:09:33
XBV00141.VDF : 8.11.246.4 2048 Bytes 07/07/2015 09:09:33
XBV00142.VDF : 8.11.246.8 34816 Bytes 07/07/2015 09:09:33
XBV00143.VDF : 8.11.246.10 2048 Bytes 07/07/2015 09:09:33
XBV00144.VDF : 8.11.246.12 20480 Bytes 07/07/2015 09:09:33
XBV00145.VDF : 8.11.246.14 4608 Bytes 07/07/2015 09:09:33
XBV00146.VDF : 8.11.246.18 38912 Bytes 07/07/2015 09:09:33
XBV00147.VDF : 8.11.246.20 18944 Bytes 07/07/2015 09:09:33
XBV00148.VDF : 8.11.246.22 18432 Bytes 07/07/2015 09:09:33
XBV00149.VDF : 8.11.246.24 5632 Bytes 07/07/2015 09:09:33
XBV00150.VDF : 8.11.246.28 26112 Bytes 08/07/2015 09:09:33
XBV00151.VDF : 8.11.246.30 3584 Bytes 08/07/2015 09:09:33
XBV00152.VDF : 8.11.246.32 8704 Bytes 08/07/2015 09:09:33
XBV00153.VDF : 8.11.246.34 11264 Bytes 08/07/2015 09:09:33
XBV00154.VDF : 8.11.246.52 2048 Bytes 08/07/2015 09:09:33
XBV00155.VDF : 8.11.246.70 18432 Bytes 08/07/2015 09:09:33
XBV00156.VDF : 8.11.246.108 53760 Bytes 08/07/2015 09:09:34
XBV00157.VDF : 8.11.246.126 4608 Bytes 08/07/2015 09:09:34
XBV00158.VDF : 8.11.246.128 2048 Bytes 08/07/2015 09:09:34
XBV00159.VDF : 8.11.246.130 3072 Bytes 08/07/2015 09:09:34
XBV00160.VDF : 8.11.246.132 2048 Bytes 08/07/2015 09:09:34
XBV00161.VDF : 8.11.246.134 2048 Bytes 08/07/2015 09:09:34
XBV00162.VDF : 8.11.246.136 2048 Bytes 08/07/2015 09:09:34
XBV00163.VDF : 8.11.246.140 7680 Bytes 09/07/2015 09:09:34
XBV00164.VDF : 8.11.246.144 33792 Bytes 09/07/2015 09:09:34
XBV00165.VDF : 8.11.246.146 31744 Bytes 09/07/2015 09:09:34
XBV00166.VDF : 8.11.246.148 8704 Bytes 09/07/2015 09:09:34
XBV00167.VDF : 8.11.246.150 3072 Bytes 09/07/2015 09:09:34
XBV00168.VDF : 8.11.246.152 2048 Bytes 09/07/2015 09:09:34
XBV00169.VDF : 8.11.246.156 3584 Bytes 09/07/2015 09:09:34
XBV00170.VDF : 8.11.246.158 32256 Bytes 09/07/2015 09:09:34
XBV00171.VDF : 8.11.246.176 10240 Bytes 09/07/2015 09:09:34
XBV00172.VDF : 8.11.246.192 2048 Bytes 09/07/2015 09:09:34
XBV00173.VDF : 8.11.246.210 44544 Bytes 09/07/2015 09:09:35
XBV00174.VDF : 8.11.246.226 11776 Bytes 09/07/2015 09:09:35
XBV00175.VDF : 8.11.246.244 21504 Bytes 10/07/2015 09:09:35
XBV00176.VDF : 8.11.246.246 2560 Bytes 10/07/2015 09:09:35
XBV00177.VDF : 8.11.246.248 2560 Bytes 10/07/2015 09:09:35
XBV00178.VDF : 8.11.246.250 27136 Bytes 10/07/2015 09:09:35
XBV00179.VDF : 8.11.246.252 12800 Bytes 10/07/2015 09:09:35
XBV00180.VDF : 8.11.246.254 2560 Bytes 10/07/2015 09:09:35
XBV00181.VDF : 8.11.247.4 45568 Bytes 10/07/2015 09:09:35
XBV00182.VDF : 8.11.247.6 2048 Bytes 10/07/2015 09:09:35
XBV00183.VDF : 8.11.247.8 2048 Bytes 10/07/2015 09:09:35
XBV00184.VDF : 8.11.247.10 2048 Bytes 10/07/2015 09:09:35
XBV00185.VDF : 8.11.247.14 67072 Bytes 10/07/2015 09:09:35
XBV00186.VDF : 8.11.247.16 12288 Bytes 10/07/2015 09:09:35
XBV00187.VDF : 8.11.247.20 45056 Bytes 11/07/2015 09:09:35
XBV00188.VDF : 8.11.247.36 17408 Bytes 11/07/2015 09:09:35
XBV00189.VDF : 8.11.247.52 2048 Bytes 11/07/2015 09:09:35
XBV00190.VDF : 8.11.247.68 18944 Bytes 11/07/2015 09:09:36
XBV00191.VDF : 8.11.247.84 7680 Bytes 11/07/2015 09:09:36
XBV00192.VDF : 8.11.247.100 57856 Bytes 12/07/2015 09:09:36
XBV00193.VDF : 8.11.247.102 11776 Bytes 12/07/2015 09:09:36
XBV00194.VDF : 8.11.247.104 10240 Bytes 12/07/2015 09:09:36
XBV00195.VDF : 8.11.247.106 7680 Bytes 12/07/2015 09:09:36
XBV00196.VDF : 8.11.247.108 10240 Bytes 12/07/2015 09:09:36
XBV00197.VDF : 8.11.247.110 6144 Bytes 12/07/2015 09:09:36
XBV00198.VDF : 8.11.247.112 68608 Bytes 13/07/2015 09:09:36
XBV00199.VDF : 8.11.247.128 2048 Bytes 13/07/2015 09:09:36
XBV00200.VDF : 8.11.247.142 10240 Bytes 13/07/2015 09:09:36
XBV00201.VDF : 8.11.247.144 2048 Bytes 13/07/2015 09:09:36
XBV00202.VDF : 8.11.247.158 17920 Bytes 13/07/2015 09:09:36
XBV00203.VDF : 8.11.247.160 2048 Bytes 13/07/2015 09:09:36
XBV00204.VDF : 8.11.247.174 6656 Bytes 13/07/2015 09:09:36
XBV00205.VDF : 8.11.247.176 9728 Bytes 13/07/2015 09:09:36
XBV00206.VDF : 8.11.247.180 33792 Bytes 13/07/2015 09:09:36
XBV00207.VDF : 8.11.247.184 8704 Bytes 13/07/2015 09:09:37
XBV00208.VDF : 8.11.247.186 6144 Bytes 13/07/2015 09:09:37
XBV00209.VDF : 8.11.247.188 21504 Bytes 13/07/2015 09:09:37
XBV00210.VDF : 8.11.247.192 23552 Bytes 13/07/2015 09:09:37
XBV00211.VDF : 8.11.247.194 2048 Bytes 13/07/2015 09:09:37
XBV00212.VDF : 8.11.247.196 9216 Bytes 13/07/2015 09:09:37
XBV00213.VDF : 8.11.247.198 18944 Bytes 13/07/2015 09:09:37
XBV00214.VDF : 8.11.247.202 30208 Bytes 14/07/2015 09:09:37
XBV00215.VDF : 8.11.247.204 3584 Bytes 14/07/2015 09:09:37
XBV00216.VDF : 8.11.247.206 2048 Bytes 14/07/2015 09:09:37
XBV00217.VDF : 8.11.247.208 2048 Bytes 14/07/2015 09:09:38
XBV00218.VDF : 8.11.247.210 2048 Bytes 14/07/2015 09:09:38
XBV00219.VDF : 8.11.247.212 24576 Bytes 14/07/2015 09:09:38
XBV00220.VDF : 8.11.247.242 42496 Bytes 14/07/2015 09:09:38
XBV00221.VDF : 8.11.247.244 18944 Bytes 14/07/2015 09:09:38
XBV00222.VDF : 8.11.248.2 2048 Bytes 14/07/2015 09:09:38
XBV00223.VDF : 8.11.248.16 4096 Bytes 14/07/2015 09:09:38
XBV00224.VDF : 8.11.248.30 2048 Bytes 14/07/2015 09:09:38
XBV00225.VDF : 8.11.248.32 2048 Bytes 14/07/2015 09:09:38
XBV00226.VDF : 8.11.248.34 2048 Bytes 14/07/2015 09:09:38
XBV00227.VDF : 8.11.248.48 4096 Bytes 14/07/2015 09:09:38
XBV00228.VDF : 8.11.248.50 2048 Bytes 14/07/2015 09:09:39
XBV00229.VDF : 8.11.248.52 2048 Bytes 14/07/2015 09:09:39
XBV00230.VDF : 8.11.248.54 2048 Bytes 14/07/2015 09:09:39
XBV00231.VDF : 8.11.248.56 17408 Bytes 14/07/2015 09:09:39
XBV00232.VDF : 8.11.248.60 39936 Bytes 15/07/2015 09:09:39
LOCAL000.VDF : 8.11.248.60 131443200 Bytes 15/07/2015 09:11:00
Version du moteur : 8.3.32.22
AEBB.DLL : 8.1.2.0 60448 Bytes 19/06/2015 07:11:33
AECORE.DLL : 8.3.7.2 249920 Bytes 15/07/2015 09:09:23
AEDROID.DLL : 8.4.3.302 1506160 Bytes 15/07/2015 09:09:26
AEEMU.DLL : 8.1.3.4 399264 Bytes 19/06/2015 07:11:33
AEEXP.DLL : 8.4.2.88 266296 Bytes 19/06/2015 07:11:33
AEGEN.DLL : 8.1.7.42 457576 Bytes 15/07/2015 09:09:23
AEHELP.DLL : 8.3.2.2 281456 Bytes 15/07/2015 09:09:23
AEHEUR.DLL : 8.1.4.1784 8551280 Bytes 15/07/2015 09:09:25
AEMOBILE.DLL : 8.1.8.2 303168 Bytes 15/07/2015 09:09:26
AEOFFICE.DLL : 8.3.1.44 404608 Bytes 15/07/2015 09:09:25
AEPACK.DLL : 8.4.0.82 792488 Bytes 15/07/2015 09:09:25
AERDL.DLL : 8.2.1.20 731040 Bytes 19/06/2015 07:11:33
AESBX.DLL : 8.2.21.0 1622072 Bytes 19/06/2015 07:11:33
AESCN.DLL : 8.3.2.10 142456 Bytes 19/06/2015 07:11:33
AESCRIPT.DLL : 8.2.2.82 534440 Bytes 15/07/2015 09:09:25
AEVDF.DLL : 8.3.1.6 133992 Bytes 19/06/2015 07:11:33
AVWINLL.DLL : 15.0.11.478 25904 Bytes 19/06/2015 07:11:53
AVPREF.DLL : 15.0.11.478 54216 Bytes 19/06/2015 07:11:49
AVREP.DLL : 15.0.11.478 220464 Bytes 19/06/2015 07:11:49
AVARKT.DLL : 15.0.11.478 228088 Bytes 19/06/2015 07:11:35
AVEVTLOG.DLL : 15.0.11.550 195320 Bytes 19/06/2015 07:11:36
SQLITE3.DLL : 15.0.11.478 455472 Bytes 19/06/2015 07:12:23
AVSMTP.DLL : 15.0.11.478 79096 Bytes 19/06/2015 07:11:52
NETNT.DLL : 15.0.11.478 16384 Bytes 19/06/2015 07:12:11
CommonImageRc.dll : 15.0.11.478 4280568 Bytes 19/06/2015 07:12:13
CommonTextRc.dll : 15.0.11.478 71984 Bytes 19/06/2015 07:12:15
Configuration pour la recherche actuelle:
Nom de la tâche...............................: Contrôle intégral du système
Fichier de configuration......................: C:\Program Files (x86)\Avira\Antivirus\sysscan.avp
Documentation.................................: par défaut
Action principale.............................: Interactif
Action secondaire.............................: Ignorer
Recherche sur les secteurs d'amorçage maître..: marche
Contrôle en cours des secteurs d'amorçage.....: marche
Secteurs d'amorçage...........................: C:,
Contrôle en cours des programmes actifs.......: marche
Programmes en cours étendus...................: marche
Recherche du registre.........................: marche
Recherche de Rootkits.........................: marche
Contrôle d'intégrité de fichiers système......: arrêt
Recherche sur tous les fichiers...............: Tous les fichiers
Recherche sur les archives....................: marche
Limiter la profondeur de récursivité..........: 20
Archive Smart Extensions......................: marche
Heuristique de macrovirus.....................: marche
Heuristique de fichiers.......................: avancé
Début de la recherche: mercredi 15 juillet 2015 11:16
La recherche sur les secteurs d'amorçage commence:
Secteur d'amorçage 'HDD0(C:)'
[iNFO] Aucun virus trouvé!
La recherche d'objets cachés commence.
La recherche sur les processus démarrés commence:
Recherche en cours du processus 'svchost.exe' - '52' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '36' module(s) ont été recherchés
Recherche en cours du processus 'MsMpEng.exe' - '67' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '94' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '125' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '82' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '154' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '28' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '72' module(s) ont été recherchés
Recherche en cours du processus 'spoolsv.exe' - '77' module(s) ont été recherchés
Recherche en cours du processus 'taskhost.exe' - '57' module(s) ont été recherchés
Recherche en cours du processus 'Dwm.exe' - '31' module(s) ont été recherchés
Recherche en cours du processus 'Explorer.EXE' - '168' module(s) ont été recherchés
Recherche en cours du processus 'sched.exe' - '94' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '61' module(s) ont été recherchés
Recherche en cours du processus 'armsvc.exe' - '28' module(s) ont été recherchés
Recherche en cours du processus 'avguard.exe' - '115' module(s) ont été recherchés
Recherche en cours du processus 'igfxtray.exe' - '29' module(s) ont été recherchés
Recherche en cours du processus 'hkcmd.exe' - '54' module(s) ont été recherchés
Recherche en cours du processus 'igfxpers.exe' - '33' module(s) ont été recherchés
Recherche en cours du processus 'taskeng.exe' - '30' module(s) ont été recherchés
Recherche en cours du processus 'itype.exe' - '66' module(s) ont été recherchés
Recherche en cours du processus 'ipoint.exe' - '65' module(s) ont été recherchés
Recherche en cours du processus 'msseces.exe' - '53' module(s) ont été recherchés
Recherche en cours du processus 'SSScheduler.exe' - '48' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '58' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '32' module(s) ont été recherchés
Recherche en cours du processus 'GWX.exe' - '41' module(s) ont été recherchés
Recherche en cours du processus 'Avira.ServiceHost.exe' - '128' module(s) ont été recherchés
Recherche en cours du processus 'avgnt.exe' - '113' module(s) ont été recherchés
Recherche en cours du processus 'avshadow.exe' - '29' module(s) ont été recherchés
Recherche en cours du processus 'SearchIndexer.exe' - '55' module(s) ont été recherchés
Recherche en cours du processus 'NisSrv.exe' - '41' module(s) ont été recherchés
Recherche en cours du processus 'wmpnetwk.exe' - '119' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '60' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '59' module(s) ont été recherchés
Recherche en cours du processus 'Avira.Systray.exe' - '143' module(s) ont été recherchés
Recherche en cours du processus 'wmiprvse.exe' - '32' module(s) ont été recherchés
Recherche en cours du processus 'avcenter.exe' - '127' module(s) ont été recherchés
Recherche en cours du processus 'avscan.exe' - '127' module(s) ont été recherchés
Recherche en cours du processus 'vssvc.exe' - '47' module(s) ont été recherchés
Recherche en cours du processus 'svchost.exe' - '28' module(s) ont été recherchés
Recherche en cours du processus 'TrustedInstaller.exe' - '49' module(s) ont été recherchés
Recherche en cours du processus 'SearchProtocolHost.exe' - '29' module(s) ont été recherchés
Recherche en cours du processus 'SearchFilterHost.exe' - '27' module(s) ont été recherchés
Recherche en cours du processus 'Reader_sl.exe' - '37' module(s) ont été recherchés
Recherche en cours du processus 'smss.exe' - '2' module(s) ont été recherchés
Recherche en cours du processus 'csrss.exe' - '16' module(s) ont été recherchés
Recherche en cours du processus 'wininit.exe' - '26' module(s) ont été recherchés
Recherche en cours du processus 'csrss.exe' - '16' module(s) ont été recherchés
Recherche en cours du processus 'services.exe' - '33' module(s) ont été recherchés
Recherche en cours du processus 'lsass.exe' - '65' module(s) ont été recherchés
Recherche en cours du processus 'lsm.exe' - '16' module(s) ont été recherchés
Recherche en cours du processus 'winlogon.exe' - '31' module(s) ont été recherchés
La recherche sur les renvois aux fichiers exécutables (registre) commence:
Le registre a été contrôlé ( '1172' fichiers).
La recherche sur les fichiers sélectionnés commence:
Recherche débutant dans 'C:\'
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Uninstaller.exe.vir
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\cckaogkkkkeakjcommpboibminldbpno.crx.vir
[0] Type d'archive: ZIP
--> content.js
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.JX
[AVERTISSEMENT] Impossible de réparer les fichiers dans les archives
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\dd4c66b8-f943-4b10-8053-7e9ee39bba4a.dll.vir
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen7
C:\Users\dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XG49YKJE\FirefoxSetup.exe
[RESULTAT] Contient le modèle du logiciel PUA/InstallCore.Gen4
Début de la désinfection:
C:\Users\dell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XG49YKJE\FirefoxSetup.exe
[RESULTAT] Contient le modèle du logiciel PUA/InstallCore.Gen4
[REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine!
[REMARQUE] Le fichier n'existe pas!
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\dd4c66b8-f943-4b10-8053-7e9ee39bba4a.dll.vir
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen7
[REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine!
[REMARQUE] Le fichier n'existe pas!
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Extensions\cckaogkkkkeakjcommpboibminldbpno.crx.vir
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.JX
[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '1803ef61.qua'!
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Filter Results\Uninstaller.exe.vir
[RESULTAT] Contient le modèle de détection du logiciel publicitaire ADWARE/BrowseFox.Gen
[REMARQUE] Impossible de déplacer le fichier dans le répertoire de quarantaine!
[REMARQUE] Le fichier n'existe pas!
Fin de la recherche: mercredi 15 juillet 2015 12:20
Temps écoulé: 1:03:39 Heure(s)
La recherche a été effectuée intégralement.
23437 Les répertoires ont été contrôlés
392357 Des fichiers ont été contrôlés
4 Des virus ou programmes indésirables ont été trouvés
0 Des fichiers ont été classés comme suspects
0 Des fichiers ont été supprimés
0 Des virus ou programmes indésirables ont été réparés
1 Les fichiers ont été déplacés dans la quarantaine
0 Les fichiers ont été renommés
0 Impossible de scanner des fichiers
392353 Fichiers non infectés
5565 Les archives ont été contrôlées
1 Avertissements
4 Consignes
617536 Des objets ont été contrôlés lors du Rootkitscan
0 Des objets cachés ont été trouvés
~ ZHPCleaner v2015.7.14.297 by Nicolas Coolman (2015/07/14)
~ Run by dell (Administrator) (15/07/2015 10:49:40)
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\dell\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\dell\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)
---\\ Service. (0)
~ Aucun élément malicieux trouvé.
---\\ Navigateur internet. (0)
~ Aucun élément malicieux trouvé.
---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)
---\\ Tâche planifiée. (0)
~ Aucun élément malicieux trouvé.
---\\ Explorateur ( Dossiers, Fichiers ). (0)
~ Aucun élément malicieux trouvé.
---\\ Base de Registres ( Clés, Valeurs, Données ). (0)
~ Aucun élément malicieux trouvé.
---\\ Bilan de la réparation
~ Aucune réparation effectuée.
~ Ce navigateur est absent (Opera Software)
---\\ Statistiques
~ Items scannés : 53769
~ Items trouvés : 0
~ Items annulés : 0
~ Items réparés : 0
End of clean at 10:53:11
===================
ZHPCleaner-[R]-15072015-00_09_08.txt
ZHPCleaner--15072015-00_08_22.txt
ZHPCleaner--15072015-00_25_26.txt
ZHPCleaner--15072015-10_53_11.txt

 

Modifié par cedriclr
Lien vers le commentaire
Partager sur d’autres sites

pear Devil Member !

pear

Posté(e)
Posté(e)

 

J'ai essayé de désinfecter avec zhpcleaner, adwcleaner, malwarebytes mais rien n'y fait, le virus reste présent même après redémarrage de la machine !

1)Relancez Adwcleaner

 

2)Réinitialiser le navigateur en cliquant ici

 

Cela désinstallera plugins et extensions que vous pourrez réinstaller avec la prudence nécessaire

 

3)Télécharger et installer la dernière version de Zhpdiag

 

450987Capture.png

 

Sous XP, double clic sur l'icône ZhpDiag

Sous Vista et +, faire un clic droit et Exécuter en tant qu'administrateur

 

Cliquez sur le bouton Scanner à gauche

 

Patientez quelques instants

Cliquer sur le bouton Rapport

Lien vers le commentaire
Partager sur d’autres sites
cedriclr Member

cedriclr

Posté(e)
  • Auteur
Posté(e)

Bonjour, merci pour votre aide !

 

Voici ce que j'obtient après les manipulations demandées:

 

# AdwCleaner v4.208 - Rapport créé le 15/07/2015 à 19:16:10
# Mis à jour le 09/07/2015 par Xplode
# Base de données : 2015-07-15.1 [serveur]
# Système d'exploitation : Windows 7 Professional Service Pack 1 (x64)
# Nom d'utilisateur : dell - DELL-PC
# Exécuté depuis : C:\Users\dell\Desktop\adwcleaner_4.208.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage
Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.pricepeep00.pricepeep.net_0.localstorage-journal
Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage
Fichier Supprimé : C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.boostsaves.com_0.localstorage-journal
***** [ Tâches planifiées ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
***** [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17909
-\\ Mozilla Firefox v
-\\ Google Chrome v43.0.2357.134
-\\ Chromium v
*************************
AdwCleaner[R0].txt - [7104 octets] - [14/07/2015 23:46:32]
AdwCleaner[R1].txt - [958 octets] - [14/07/2015 23:53:07]
AdwCleaner[R2].txt - [1016 octets] - [14/07/2015 23:55:38]
AdwCleaner[R3].txt - [2040 octets] - [15/07/2015 00:13:38]
AdwCleaner[R4].txt - [1777 octets] - [15/07/2015 19:14:59]
AdwCleaner[s0].txt - [6529 octets] - [14/07/2015 23:47:45]
AdwCleaner[s1].txt - [2108 octets] - [15/07/2015 00:14:31]
AdwCleaner[s2].txt - [1706 octets] - [15/07/2015 19:16:10]
########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1766 octets] ##########
~ ZHPDiag v2015.7.15.90 Par Nicolas Coolman (2015/07/15)
~ Démarré par dell (Administrator) (2015/07/15 19:24:25)
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\dell\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\dell\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v43.0.2357.134
MSIE: Internet Explorer v11.0.9600.17914
---\\ Informations sur les produits Windows (8) - 8s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Windows® 7, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : 7KVYH
Windows License : OK
~ Windows Remaining Initializations Number : 3
Windows Activation Technologies : OK
---\\ Logiciels de protection (3) - 0s
Avira Antivirus v15.0.11.579
Microsoft Security Client v4.8.0204.0
Microsoft Security Essentials v4.8.204.0
---\\ Logiciels de protection et autres (Superflus) (1) - 0s
McAfee Security Scan Plus v3.8.150.1
---\\ Surveillance de Logiciels (1) - 0s
Adobe Acrobat Reader DC - Français
---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 2059928
~ System Restore: Activé (Enable)
~ System drive C: has 207 GB free of 238 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DELL-PC
~ User Name: dell
~ Logged in as Administrator
---\\ Enumération des unités disques (1) - 0s
~ Drive C: has 207 GB free of 238 GB (System)
---\\ Recherche particulière de fichiers génériques (24) - 2s
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\Windows\System32\Wininit.exe [129024]
[MD5.E066FDC3A2074D926903B8C31EF3B347] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\Windows\System32\wininet.dll [2427392]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\Windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [116224]
[MD5.1877EB1495CFBDAB27D6A32F6DDF3818] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [159232]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\Windows\System32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\Windows\System32\drivers\volsnap.sys [295808]
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (22) - 1s
G0 - GCSP: Preferences [user Data\Default][HomePage] http://forum.zebulon.fr/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://accounts.google.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://accounts.youtube.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://clients4.google.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://filterresults-a.akamaihd.net/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://offers.avira.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://ssl.gstatic.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.google.com/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.google.fr/
G0 - GCSP: Preferences [user Data\Default][HomePage] http://www.googleapis.com/
G0 - GCSP: Secure Preferences [user Data\Default][HomePage] http://www.google.fr/
G2 - GCE: Preference [user Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__
G2 - GCE: Preference [user Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety
G2 - GCE: Preference [user Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [user Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [user Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Applications lancées au démarrage du sytème (O4) (10) - 0s
O4 - HKLM\..\Run: [igfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Wow6432Node\Run: [Avira Systray] . (.Avira Operations GmbH & Co. KG - Avira.) -- C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
---\\ Modification Domaine/Adresses DNS (O17) (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
---\\ Liste des services NT non Microsoft et non désactivés (O23) (7) - 1s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard WFP Service.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
---\\ Tâches planifiées en automatique (O39) (9) - 3s
[MD5.70685AC6E02E9C2DFB88D4851954F5B4] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998088]
[MD5.00000000000000000000000000000000] [APT] [Chromium] (.Adobe Systems Incorporated.) -- C:\Users\dell\AppData\Local\Chromium\APPLIC~1\450244~1.0\INSTAL~1\UNINST~1.EXE (.not file.) [0]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe [3092]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe [3090]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe [3118]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe [3062]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe [3060]
---\\ Logiciels installés (O42) (18) - 3s
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Centre Souris et Claviers Microsoft - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Mouse and Keyboard Center
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Broadcom NetXtreme-I Netlink Driver and Management Installer - (.Broadcom Corporation.) [HKLM][64Bits] -- {64973F6A-8754-43D1-BDD0-FC6F0546347B}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}
O42 - Logiciel: Avira Antivirus v15.0.11.579 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- Avira Antivirus
O42 - Logiciel: EBP Devis et Facturation Bâtiment Classic 2012 13.0 - (.EBP.) [HKLM][64Bits] -- EBP Devis et Facturation Bâtiment Classic 2012 13.0
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: PokerStars.fr - (.PokerStars.fr.) [HKLM][64Bits] -- PokerStars.fr
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Avira v1.1.40.29239 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {8467e01f-0496-42ce-b247-88ef205b4880}
O42 - Logiciel: Avira v1.1.40.29239 - (.Avira Operations GmbH & Co. KG.) [HKLM][64Bits] -- {A4D3E7B8-410D-443A-B6AB-F32CDD4BD28C}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824144531}
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}
O42 - Logiciel: Belkin N300 Micro USB Wireless Adapter - (...) [HKLM][64Bits] -- {B20F9D1C-A0A5-4cd8-8306-DA03872311B1}
O42 - Logiciel: EBP Devis et Facturation Bâtiment Classic 2012 13.0 - (.EBP.) [HKLM][64Bits] -- {E548E511-B805-4152-A72D-58E794AF0C42}
---\\ HKCU & HKLM Software Keys (34) - 3s
HKLM\SOFTWARE\Wow6432Node\Adobe
HKLM\SOFTWARE\Wow6432Node\AdwCleaner
HKLM\SOFTWARE\Wow6432Node\Avira
HKLM\SOFTWARE\Wow6432Node\BcmSetup
HKLM\SOFTWARE\Wow6432Node\Belkin International, Inc.
HKLM\SOFTWARE\Wow6432Node\Brother
HKLM\SOFTWARE\Wow6432Node\EBP
HKLM\SOFTWARE\Wow6432Node\Google
HKLM\SOFTWARE\Wow6432Node\Intel
HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
HKLM\SOFTWARE\Wow6432Node\MimarSinan
HKLM\SOFTWARE\Wow6432Node\Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\VideoLAN
HKLM\SOFTWARE\Wow6432Node\X-AVCSD
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\Addictive Software
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\Broadcom
HKCU\SOFTWARE\Brother
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (97) - 4s
O43 - CFD: 2015/06/30 18:49:30 - [] D -- C:\Program Files (x86)\Adobe
O43 - CFD: 2015/07/15 11:05:25 - [] D -- C:\Program Files (x86)\Avira
O43 - CFD: 2015/06/30 17:58:52 - [] D -- C:\Program Files (x86)\Belkin
O43 - CFD: 2015/07/15 00:51:53 - [] D -- C:\Program Files (x86)\Common Files
O43 - CFD: 2015/06/30 18:33:48 - [] D -- C:\Program Files (x86)\EBP
O43 - CFD: 2015/06/11 11:24:59 - [] D -- C:\Program Files (x86)\Google
O43 - CFD: 2015/06/30 17:58:48 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 2015/06/11 11:01:09 - [] D -- C:\Program Files (x86)\Intel
O43 - CFD: 2015/07/14 23:40:33 - [] D -- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 2015/06/11 11:24:41 - [] D -- C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 2015/06/11 14:07:36 - [] D -- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 2015/06/11 10:09:53 - [] D -- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\MSBuild
O43 - CFD: 2015/07/14 21:32:33 - [] D -- C:\Program Files (x86)\PokerStars.FR
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2015/06/11 11:27:28 - [] D -- C:\Program Files (x86)\VideoLAN
O43 - CFD: 2015/06/11 09:51:45 - [] D -- C:\Program Files (x86)\Windows Defender
O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Mail
O43 - CFD: 2015/06/11 11:09:43 - [] D -- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 2009/07/14 07:32:38 - [] D -- C:\Program Files (x86)\Windows NT
O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 2010/11/21 05:31:38 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 2015/06/11 11:11:50 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/10 15:37:16 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/15 11:07:28 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 2015/06/10 16:10:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broadcom
O43 - CFD: 2015/07/01 21:52:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre Souris et Claviers Microsoft
O43 - CFD: 2015/06/30 18:33:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBP
O43 - CFD: 2011/04/12 11:28:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2015/06/11 11:25:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 2009/07/14 06:57:09 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/01 16:20:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
O43 - CFD: 2015/06/11 14:08:34 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2015/06/30 19:26:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.FR
O43 - CFD: 2015/07/01 16:20:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2011/04/12 11:28:08 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 2015/06/11 11:27:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 2015/06/30 18:54:51 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/07/15 11:05:25 - [] D -- C:\ProgramData\Avira
O43 - CFD: 2015/06/30 19:06:26 - [] D -- C:\ProgramData\Brother
O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2015/07/01 16:25:02 - [] D -- C:\ProgramData\EBP
O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2015/07/15 00:41:05 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2015/06/30 18:50:31 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/01 16:20:42 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 2015/06/30 18:03:56 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/06/10 15:54:54 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 2015/06/30 18:09:10 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2015/07/15 11:02:28 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2015/06/30 18:33:16 - [] HDC -- C:\ProgramData\{3FEAFE1E-B171-4F43-9D22-153B42A7D1BF}
O43 - CFD: 2015/06/30 18:33:56 - [] HDC -- C:\ProgramData\{8E571D06-FBEB-44A3-9DC6-5572313D7B2D}
O43 - CFD: 2015/06/30 18:49:33 - [] D -- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 2011/04/12 11:16:36 - [] D -- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 2009/07/14 05:20:08 - [] D -- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 2015/06/11 11:09:42 - [] D -- C:\Program Files (x86)\Common Files\System
O43 - CFD: 2015/06/30 19:05:14 - [] D -- C:\Users\dell\AppData\Roaming\Adobe
O43 - CFD: 2015/07/15 11:08:26 - [] D -- C:\Users\dell\AppData\Roaming\Avira
O43 - CFD: 2015/06/10 16:05:04 - [] D -- C:\Users\dell\AppData\Roaming\BACS.exe
O43 - CFD: 2015/06/10 15:55:07 - [] D -- C:\Users\dell\AppData\Roaming\Identities
O43 - CFD: 2011/04/12 11:28:08 - [0] D -- C:\Users\dell\AppData\Roaming\Media Center Programs
O43 - CFD: 2015/07/01 21:52:40 - [] SD -- C:\Users\dell\AppData\Roaming\Microsoft
O43 - CFD: 2015/06/30 18:09:29 - [] D -- C:\Users\dell\AppData\Roaming\Mozilla
O43 - CFD: 2015/06/11 11:28:19 - [] D -- C:\Users\dell\AppData\Roaming\vlc
O43 - CFD: 2015/07/15 19:24:38 - [] D -- C:\Users\dell\AppData\Roaming\ZHP
O43 - CFD: 2015/06/30 18:54:24 - [] D -- C:\Users\dell\AppData\Local\Adobe
O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Application Data
O43 - CFD: 2015/06/11 11:22:50 - [] D -- C:\Users\dell\AppData\Local\Apps
O43 - CFD: 2015/07/14 23:50:38 - [] D -- C:\Users\dell\AppData\Local\Chromium
O43 - CFD: 2015/06/10 15:58:03 - [] D -- C:\Users\dell\AppData\Local\Dell
O43 - CFD: 2015/06/11 11:23:46 - [0] D -- C:\Users\dell\AppData\Local\Deployment
O43 - CFD: 2015/06/10 15:58:11 - [] D -- C:\Users\dell\AppData\Local\Downloaded Installations
O43 - CFD: 2015/07/01 16:28:05 - [] D -- C:\Users\dell\AppData\Local\EBP
O43 - CFD: 2015/06/11 11:25:41 - [] D -- C:\Users\dell\AppData\Local\Google
O43 - CFD: 2015/07/04 11:00:39 - [] D -- C:\Users\dell\AppData\Local\GWX
O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Historique
O43 - CFD: 2015/06/30 18:24:34 - [] D -- C:\Users\dell\AppData\Local\Microsoft
O43 - CFD: 2015/06/30 18:09:30 - [] D -- C:\Users\dell\AppData\Local\Mozilla
O43 - CFD: 2015/07/14 21:33:35 - [] D -- C:\Users\dell\AppData\Local\PokerStars.FR
O43 - CFD: 2015/07/15 00:40:48 - [] D -- C:\Users\dell\AppData\Local\Programs
O43 - CFD: 2015/07/15 19:24:17 - [] D -- C:\Users\dell\AppData\Local\Temp
O43 - CFD: 2015/06/10 15:54:58 - [0] SHD -- C:\Users\dell\AppData\Local\Temporary Internet Files
O43 - CFD: 2015/07/01 16:27:05 - [] D -- C:\Users\dell\AppData\Local\VirtualStore
O43 - CFD: 2009/07/14 06:54:32 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2015/06/11 09:59:25 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2009/07/14 06:49:38 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/06/11 09:59:25 - [] RD -- C:\Users\dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
---\\ Liste des pilotes du système (SDL) (O58) (50) - 7s
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2015/06/19 09:11:40 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys [153256]
O58 - SDL:2015/06/19 09:11:43 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys [132656]
O58 - SDL:2015/06/19 09:11:45 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys [28600]
O58 - SDL:2015/06/19 09:11:49 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys [44088]
O58 - SDL:2009/06/10 22:34:23 A . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x.) -- C:\Windows\System32\drivers\b57nd60a.sys [270848]
O58 - SDL:2010/09/03 10:40:24 A . (.Broadcom Corporation - Broadcom Advanced Server Program Driver.) -- C:\Windows\System32\drivers\basp.sys [104960]
O58 - SDL:2010/10/18 17:49:02 A . (.Broadcom Corporation - Broadcom NetXtreme Unified Crash Dump (x64).) -- C:\Windows\System32\drivers\bnxcd64.sys [286288]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2010/11/21 05:23:47 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2011/03/11 08:41:26 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\drivers\iaStorV.sys [410496]
O58 - SDL:2011/02/11 19:16:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd64.sys [10628640]
O58 - SDL:2009/07/14 03:48:04 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [44112]
O58 - SDL:2010/12/01 22:36:04 A . (.Broadcom Corporation - Broadcom NetLink Gigabit Ethernet NDIS.) -- C:\Windows\System32\drivers\k57nd60a.sys [411688]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2009/07/14 03:48:26 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [51264]
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [148352]
O58 - SDL:2011/03/11 08:41:34 A . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [166272]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2011/06/01 04:17:34 RA . (.Realtek Semiconductor Corporation - Realtek RTL8192C USB NDIS Driver.) -- C:\Windows\System32\drivers\rtl8192cu.sys [848384]
O58 - SDL:2009/06/10 22:37:19 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [23040]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (5) - 49s
O61 - LFC: 2015/07/14 23:58:08 A . (.Enigma Software Group USA, LLC..) -- C:\Users\dell\Downloads\sh-remover.exe [3237248]
O61 - LFC: 2015/07/08 22:21:24 A . (..) -- C:\Users\dell\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [331781]
O61 - LFC: 2015/07/15 19:20:24 A . (..) -- C:\Users\dell\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 2015/07/13 10:14:22 A . (..) -- C:\Users\dell\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll [16307888]
O61 - LFC: 2015/07/08 22:09:53 A . (..) -- C:\Users\dell\AppData\Local\Adobe\Acrobat\DC\UserCache.bin [42890]
---\\ Associations Shell Spawning (O67) (9) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\Shell\open\Command] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- iexplore.exe
O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <Chromium.SKQ2TGUKITMBB4IDJEMF736MLI> <Chromium>[HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (2) - 3s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {2f23ab71-4ac6-41f2-a955-ea576e553146} - (Bing) - http://www.bing.com/
---\\ Enumère les services démarrés par Svchost (SSS) (O83) (33) - 2s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\system32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [680960]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [683520]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\system32\wuaueng.dll [2603008]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\system32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\system32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\system32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\system32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\system32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\system32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [193536]
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (9) - 12s
SR - Auto [2015/06/12 09:25:00] [ 82112] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - Auto [2015/06/19 09:11:47] [ 827184] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
SR - Auto [2015/06/19 09:12:17] [ 450808] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\sched.exe
SR - Auto [2015/06/19 09:11:41] [ 450808] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
SS - Auto [2015/06/19 09:11:52] [ 1188360] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
SR - Auto [2015/06/02 17:14:58] [ 217280] Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
SS - Auto [2015/06/11 11:23:55] [ 107848] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2015/06/11 11:23:55] [ 107848] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - Demand [2014/04/09 15:13:48] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
---\\ Scan Additionnel (O88) (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
---\\ Récapitulatif des éléments trouvées sur votre station (1) - 0s
~ Aucun élément malicieux ou superflu trouvé.
~ End of the scan, 29531 items in 105 seconds (423)(0)()

 

 

 

 

1)Relancez Adwcleaner

 

2)Réinitialiser le navigateur en cliquant ici

Cela désinstallera plugins et extensions que vous pourrez réinstaller avec la prudence nécessaire

 

3)Télécharger et installer la dernière version de Zhpdiag

450987Capture.png


Sous XP, double clic sur l'icône ZhpDiag
Sous Vista et +, faire un clic droit et Exécuter en tant qu'administrateur

Cliquez sur le bouton Scanner à gauche

Patientez quelques instants
Cliquer sur le bouton Rapport

 

Lien vers le commentaire
Partager sur d’autres sites
pear Devil Member !

pear

Posté(e)
Posté(e)

Télécharger
Farbar Recovery Scanner(FRST)
Choisissez la version 32 ou 64 bits en fonction de votre système

Installez FRST sur le Bureau et pas ailleurs
Fermez toutes les applications, y compris le navigateur
Double-clic sur FRST.exe et sur Oui pour accepter le Disclaimer]
Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
Sur le menu principal,
Cochez tous les options et cliquez sur le bouton Scan
FRST2Offic.gif
A la fin du scan, un rapport FRST.txt s'ouvre.
Au premier lancement, un fichier nommé Addition.txt sera créé

Il y aura 2 rapports à poster.

Lien vers le commentaire
Partager sur d’autres sites
cedriclr Member

cedriclr

Posté(e)
  • Auteur
Posté(e)
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015

Ran by dell at 2015-07-15 23:53:23

Running from C:\Users\dell\Downloads

Boot Mode: Normal

==========================================================



==================== Accounts: =============================


Administrateur (S-1-5-21-749268923-2805857201-2158450924-500 - Administrator - Disabled)

dell (S-1-5-21-749268923-2805857201-2158450924-1000 - Administrator - Enabled) => C:\Users\dell

HomeGroupUser$ (S-1-5-21-749268923-2805857201-2158450924-1002 - Limited - Enabled)

Invité (S-1-5-21-749268923-2805857201-2158450924-501 - Limited - Disabled)


==================== Security Center ========================


(If an entry is included in the fixlist, it will be removed.)


AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}

AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}

AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


==================== Installed Programs ======================


(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)


Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)

Avira (HKLM-x32\...\{8467e01f-0496-42ce-b247-88ef205b4880}) (Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG)

Avira (x32 Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG) Hidden

Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.579 - Avira Operations GmbH & Co. KG)

Belkin N300 Micro USB Wireless Adapter (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.00.0155 - )

Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{64973F6A-8754-43D1-BDD0-FC6F0546347B}) (Version: 14.4.6.2 - Broadcom Corporation)

Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)

Centre Souris et Claviers Microsoft (Version: 2.3.188.0 - Microsoft Corporation) Hidden

EBP Devis et Facturation Bâtiment Classic 2012 13.0 (HKLM-x32\...\EBP Devis et Facturation Bâtiment Classic 2012 13.0) (Version: 13.0.1 - EBP)

EBP Devis et Facturation Bâtiment Classic 2012 13.0 (x32 Version: 13.0.1 - EBP) Hidden

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)

Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)

Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)

PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr)

Utilitaire de mise à jour des logiciels EBP 1.1.3 (HKLM-x32\...\Utilitaire de mise à jour des logiciels EBP 1.1.3) (Version: 1.1.3 - EBP)

Utilitaire de mise à jour des logiciels EBP 1.1.3 (Version: 1.1.3 - EBP) Hidden

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)


==================== Custom CLSID (Whitelisted): ==========================


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)



==================== Restore Points =========================


30-06-2015 17:58:28 Installé Belkin N300 Micro USB Wireless Adapter

30-06-2015 18:17:14 Windows Update

30-06-2015 22:44:24 Windows Update

01-07-2015 21:51:42 DCInstallRestorePoint

08-07-2015 22:04:17 Windows Update

12-07-2015 23:07:34 Windows Update

14-07-2015 23:28:24 Windows Update


==================== Hosts content: ===============================


(If needed Hosts: directive could be included in the fixlist to reset Hosts.)


2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


Task: {26374755-00DF-40B1-8BF2-A952FCB5B0BB} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)

Task: {31D9B2C0-E87B-4BAD-B8DA-AB83B0FEBDD1} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

Task: {3984381F-D137-480E-90E7-A94011EC7E9E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-11] (Google Inc.)

Task: {5A6755A9-F580-4144-956B-D5F5F37ED13E} - System32\Tasks\Chromium => C:\Users\dell\AppData\Local\Chromium\APPLIC~1\450244~1.0\INSTAL~1\UNINST~1.EXE

Task: {6739F102-8B98-4C73-BD56-48772F54A197} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-11] (Google Inc.)

Task: {7B3C4E89-C98A-4131-BFC8-C0047C7B9CBE} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)

Task: {81E18DE3-71D5-45B2-9F64-06CAEAEF0496} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)

Task: {8E9EF033-F4FA-4B22-94C9-E75E3C3200D9} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)

Task: {A6B3A969-DC66-4C51-B5D1-9681C1A48BFE} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)


(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


Task: C:\Windows\Tasks\Chromium.job => 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

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe


==================== Loaded Modules (Whitelisted) ==============


2015-07-14 21:51 - 2015-07-13 23:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll

2015-07-14 21:51 - 2015-07-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll

2015-07-14 21:51 - 2015-07-13 23:55 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll


==================== Alternate Data Streams (Whitelisted) =========


(If an entry is included in the fixlist, only the ADS will be removed.)



==================== Safe Mode (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)



==================== EXE Association (Whitelisted) ===============


(If an entry is included in the fixlist, the registry item will be restored to default or removed.)



==================== Internet Explorer trusted/restricted ===============


(If an entry is included in the fixlist, it will be removed from the registry.)



==================== Other Areas ============================


(Currently there is no automatic fix for this section.)


HKU\S-1-5-21-749268923-2805857201-2158450924-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\dell\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.1.1


==================== MSCONFIG/TASK MANAGER disabled items ==


(Currently there is no automatic fix for this section.)



==================== FirewallRules (Whitelisted) ===============


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe

FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe

FirewallRules: [{0DBA975B-957E-421D-B53E-99C2ECA3B709}] => (Allow) C:\Users\dell\AppData\Local\Chromium\Application\chrome.exe

FirewallRules: [{FA307E5F-58E2-44D1-9CBC-5315FB13B2B7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Faulty Device Manager Devices =============



==================== Event log errors: =========================


Application errors:

==================

Error: (07/15/2015 11:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 07:19:19 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 07:10:58 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:25:49 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 11:15:55 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 10:57:37 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 10:44:37 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 01:10:56 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:54:52 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:17:27 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003



System errors:

=============

Error: (07/15/2015 07:27:45 PM) (Source: Service Control Manager) (EventID: 7006) (User: )

Description: L’appel ScRegSetValueExW a échoué pour FailureCommand avec l’erreur :

%%5


Error: (07/15/2015 07:27:40 PM) (Source: Service Control Manager) (EventID: 7006) (User: )

Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur :

%%5


Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Le service Service Partage réseau du Lecteur Windows Media s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.


Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.


Error: (07/15/2015 07:16:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Le service Avira Service Host s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.


Error: (07/15/2015 07:16:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Le service Adobe Acrobat Update Service s’est terminé de façon inattendue pour la 1ème fois.


Error: (07/15/2015 07:16:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Le service Spouleur d’impression s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.


Error: (07/15/2015 07:13:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Microsoft .NET Framework NGEN v4.0.30319_X64.


Error: (07/15/2015 12:34:17 PM) (Source: Service Control Manager) (EventID: 7006) (User: )

Description: L’appel ScRegSetValueExW a échoué pour FailureCommand avec l’erreur :

%%5


Error: (07/15/2015 12:34:14 PM) (Source: Service Control Manager) (EventID: 7006) (User: )

Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur :

%%5



Microsoft Office:

=========================

Error: (07/15/2015 11:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 07:19:19 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 07:10:58 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:25:49 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 11:15:55 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 10:57:37 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 10:44:37 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 01:10:56 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:54:52 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Error: (07/15/2015 12:17:27 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003



==================== Memory info ===========================


Processor: Pentium® Dual-Core CPU E5700 @ 3.00GHz

Percentage of memory in use: 74%

Total physical RAM: 2011.65 MB

Available physical RAM: 513.56 MB

Total Virtual: 4023.3 MB

Available Virtual: 1862.51 MB


==================== Drives ================================


Drive c: () (Fixed) (Total:232.82 GB) (Free:202.52 GB) NTFS ==>[drive with boot components (obtained from BCD)]


==================== MBR & Partition Table ==================


========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.8 GB) (Disk ID: 2F96BE29)

Partition 1: (Active) - (Size=232.8 GB) - (Type=07 NTFS)


==================== End of log ============================

















Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015

Ran by dell (administrator) on DELL-PC on 15-07-2015 23:51:22

Running from C:\Users\dell\Downloads

Loaded Profiles: dell (Available Profiles: dell)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Français (France)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal



==================== Processes (Whitelisted) =================


(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)


(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe

(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe

(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe

(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\msiexec.exe

(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\LogTransport2.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe



==================== Registry (Whitelisted) ==================


(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)


HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)

HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-06-19] (Avira Operations GmbH & Co. KG)

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-06-30]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION


==================== Internet (Whitelisted) ====================


(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)


SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{688DE5AC-223B-480B-A3A9-BBD245F0CA0E}: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{D6B04078-9364-4A4C-B828-7B7414C25846}: [DhcpNameServer] 192.168.1.1

StartMenuInternet: IEXPLORE.EXE - iexplore.exe


FireFox:

========

FF ProfilePath: C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default

FF Plugin: @microsoft.com/GENUINE -> disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)

FF Extension: Avira Browser Safety - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default\Extensions\[email protected] [2015-07-15]

FF Extension: Filter Results - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default\Extensions\{621b949b-df4c-4be6-99ce-72ca3c909971}.xpi [2015-06-30]

FF HKU\S-1-5-21-749268923-2805857201-2158450924-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi

FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]

FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]


Chrome:

=======

CHR Profile: C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Slides) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-11]

CHR Extension: (Google Docs) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-11]

CHR Extension: (Google Drive) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-11]

CHR Extension: (YouTube) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-11]

CHR Extension: (Adblock Plus) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-14]

CHR Extension: (Google Search) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-11]

CHR Extension: (Google Sheets) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-11]

CHR Extension: (Avira Browser Safety) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-07-15]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-11]

CHR Extension: (Google Wallet) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-11]

CHR Extension: (Gmail) - C:\Users\dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-11]

CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx


==================== Services (Whitelisted) =================


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-06-19] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-06-19] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-06-19] (Avira Operations GmbH & Co. KG)

S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-06-19] (Avira Operations GmbH & Co. KG)

R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)

R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)


==================== Drivers (Whitelisted) ====================


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-06-19] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132656 2015-06-19] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2015-06-19] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-06-19] (Avira Operations GmbH & Co. KG)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)

R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)

R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-06-01] (Realtek Semiconductor Corporation )

S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]


==================== NetSvcs (Whitelisted) ===================


(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)



==================== One Month Created files and folders ========


(If an entry is included in the fixlist, the file/folder will be moved.)


2015-07-15 23:51 - 2015-07-15 23:52 - 00010904 _____ C:\Users\dell\Downloads\FRST.txt

2015-07-15 23:50 - 2015-07-15 23:51 - 00000000 ____D C:\FRST

2015-07-15 23:50 - 2015-07-15 23:50 - 02133504 _____ (Farbar) C:\Users\dell\Downloads\FRST64.exe

2015-07-15 23:49 - 2015-07-15 23:50 - 01636864 _____ (Farbar) C:\Users\dell\Downloads\FRST.exe

2015-07-15 19:26 - 2015-07-15 19:26 - 00045531 _____ C:\Users\dell\Desktop\ZHPDiag.txt

2015-07-15 19:21 - 2015-07-15 19:21 - 01839104 _____ C:\Users\dell\Desktop\ZHPDiag3.exe

2015-07-15 19:18 - 2015-07-15 19:18 - 00001847 _____ C:\Users\dell\Desktop\AdwCleaner[s2].txt

2015-07-15 12:26 - 2015-07-15 12:22 - 00063752 _____ C:\Users\dell\Desktop\AVSCAN-20150715-111617-19028EE5.LOG

2015-07-15 12:22 - 2015-07-15 12:22 - 00063752 _____ C:\AVSCAN-20150715-111617-19028EE5.LOG

2015-07-15 11:08 - 2015-07-15 11:08 - 00000000 ____D C:\Users\dell\AppData\Roaming\Avira

2015-07-15 11:05 - 2015-06-19 09:11 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2015-07-15 11:05 - 2015-06-19 09:11 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2015-07-15 11:05 - 2015-06-19 09:11 - 00044088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2015-07-15 11:05 - 2015-06-19 09:11 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2015-07-15 11:03 - 2015-07-15 11:03 - 00001194 _____ C:\Users\Public\Desktop\Avira.lnk

2015-07-15 11:02 - 2015-07-15 11:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira

2015-07-15 11:02 - 2015-07-15 11:05 - 00000000 ____D C:\ProgramData\Avira

2015-07-15 11:02 - 2015-07-15 11:05 - 00000000 ____D C:\Program Files (x86)\Avira

2015-07-15 11:02 - 2015-07-15 11:02 - 00000000 ____D C:\ProgramData\Package Cache

2015-07-15 11:01 - 2015-07-15 11:01 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\dell\Downloads\avira_fr_av_55a62121d6acb__ws.exe

2015-07-15 10:53 - 2015-07-15 10:53 - 00001356 _____ C:\Users\dell\Desktop\ZHPCleaner.txt

2015-07-15 10:48 - 2015-07-15 10:48 - 01846272 _____ C:\Users\dell\ZHPCleaner.exe

2015-07-15 00:41 - 2015-07-15 00:41 - 00000000 ____D C:\ProgramData\Malwarebytes

2015-07-15 00:40 - 2015-07-15 00:40 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\dell\Downloads\mbam-setup-2.1.8.1057.exe

2015-07-15 00:21 - 2015-07-15 00:21 - 01846272 _____ C:\Users\dell\Downloads\ZHPCleaner.exe

2015-07-15 00:04 - 2015-07-15 19:24 - 00000000 ____D C:\Users\dell\AppData\Roaming\ZHP

2015-07-15 00:02 - 2015-07-15 00:03 - 01846272 _____ C:\Users\dell\Desktop\ZHPCleaner.exe

2015-07-14 23:58 - 2015-07-14 23:58 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\dell\Downloads\sh-remover.exe

2015-07-14 23:46 - 2015-07-15 19:16 - 00000000 ____D C:\AdwCleaner

2015-07-14 23:45 - 2015-07-14 23:45 - 02248704 _____ C:\Users\dell\Desktop\adwcleaner_4.208.exe

2015-07-14 21:46 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-07-14 21:46 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-07-14 21:46 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-07-14 21:46 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll

2015-07-14 21:46 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-07-14 21:46 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-07-14 21:46 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-07-14 21:46 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-07-14 21:46 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-07-14 21:46 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-07-14 21:46 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-07-14 21:46 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-07-14 21:46 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-07-14 21:46 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-07-14 21:46 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-07-14 21:46 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-07-14 21:46 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-07-14 21:46 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-07-14 21:46 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-07-14 21:46 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-07-14 21:46 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-07-14 21:46 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2015-07-14 21:46 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-07-14 21:46 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2015-07-14 21:46 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-07-14 21:46 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-07-14 21:46 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2015-07-14 21:46 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2015-07-14 21:46 - 2015-06-09 20:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2015-07-14 21:46 - 2015-06-09 20:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll

2015-07-14 21:46 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll

2015-07-14 21:46 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll

2015-07-14 21:45 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-07-14 21:45 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-07-14 21:45 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2015-07-14 21:45 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-07-14 21:45 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-07-14 21:45 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-07-14 21:45 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2015-07-14 21:45 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2015-07-14 21:45 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-07-14 21:45 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-07-14 21:45 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-07-14 21:45 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-07-14 21:45 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2015-07-14 21:45 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-07-14 21:45 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-07-14 21:45 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2015-07-14 21:45 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-07-14 21:45 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-07-14 21:45 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-07-14 21:45 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-07-14 21:45 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-07-14 21:45 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-07-14 21:45 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-07-14 21:45 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-07-14 21:45 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-07-14 21:45 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-07-14 21:45 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-07-14 21:45 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-07-14 21:45 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2015-07-14 21:45 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2015-07-14 21:45 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-07-14 21:45 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-07-14 21:45 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-07-14 21:45 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-07-14 21:45 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-07-14 21:45 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2015-07-14 21:45 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-07-14 21:45 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-07-14 21:45 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-07-14 21:45 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-07-14 21:45 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-07-14 21:45 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-07-14 21:45 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-07-14 21:45 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-07-14 21:44 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll

2015-07-14 21:44 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll

2015-07-14 21:44 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-07-14 21:44 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-07-14 21:44 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-07-14 21:44 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-07-14 21:44 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll

2015-07-14 21:44 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-07-14 21:44 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-07-14 21:44 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-07-14 21:44 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-07-14 21:44 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-07-14 21:44 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-07-14 21:44 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-07-14 21:44 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-07-14 21:44 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-07-14 21:44 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-07-14 21:44 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-07-14 21:44 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-07-14 21:44 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-07-14 21:44 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys

2015-07-14 21:44 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys

2015-07-14 21:44 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys

2015-07-14 21:44 - 2015-06-11 19:57 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2015-07-14 21:44 - 2015-06-11 19:57 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll

2015-07-14 21:44 - 2015-06-11 19:57 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll

2015-07-14 21:44 - 2015-06-11 19:56 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2015-07-14 21:44 - 2015-06-11 19:56 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll

2015-07-14 21:44 - 2015-06-11 19:56 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll

2015-07-14 21:44 - 2015-06-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe

2015-07-14 21:44 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2015-07-14 21:44 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2015-07-14 21:44 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2015-07-14 21:44 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2015-07-14 21:44 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2015-07-14 21:44 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2015-07-14 21:44 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2015-07-14 21:44 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2015-07-14 21:43 - 2015-07-09 19:59 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe

2015-07-14 21:43 - 2015-07-09 19:58 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll

2015-07-14 21:43 - 2015-07-09 19:58 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll

2015-07-14 21:43 - 2015-07-09 19:58 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2015-07-14 21:43 - 2015-07-09 19:58 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll

2015-07-14 21:43 - 2015-07-09 19:58 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2015-07-14 21:43 - 2015-07-09 19:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll

2015-07-14 21:43 - 2015-07-09 19:50 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2015-07-14 21:43 - 2015-07-03 20:05 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2015-07-14 21:43 - 2015-07-03 20:05 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2015-07-14 21:43 - 2015-07-03 20:05 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2015-07-14 21:43 - 2015-07-03 20:05 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2015-07-14 21:43 - 2015-07-03 19:56 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2015-07-14 21:43 - 2015-07-03 19:56 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2015-07-14 21:43 - 2015-07-03 19:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2015-07-14 21:43 - 2015-07-03 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2015-07-14 21:43 - 2015-07-03 18:52 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2015-07-14 21:43 - 2015-07-03 18:42 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2015-07-14 21:43 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe

2015-07-14 21:43 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2015-07-14 21:43 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2015-07-14 21:43 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll

2015-07-14 21:43 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll

2015-07-14 21:43 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe

2015-07-14 21:43 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2015-07-14 21:43 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2015-07-14 21:43 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll

2015-07-14 21:43 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe

2015-07-14 21:43 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll

2015-07-14 21:43 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll

2015-07-04 11:00 - 2015-07-04 11:00 - 00000000 ____D C:\Users\dell\AppData\Local\GWX

2015-07-01 21:52 - 2015-07-01 21:52 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe

2015-07-01 21:52 - 2015-07-01 21:52 - 00003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe

2015-07-01 21:52 - 2015-07-01 21:52 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe

2015-07-01 21:52 - 2015-07-01 21:52 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe

2015-07-01 21:52 - 2015-07-01 21:52 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe

2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_point64_01011.Wdf

2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_NuidFltr_01011.Wdf

2015-07-01 21:52 - 2015-07-01 21:52 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center

2015-07-01 21:50 - 2015-07-01 21:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_dc3d_01011.Wdf

2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus

2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\Program Files\McAfee Security Scan

2015-06-30 22:44 - 2015-06-30 22:44 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_NuidFltr_01005.Wdf

2015-06-30 21:25 - 2015-06-30 21:25 - 00000496 __RSH C:\ProgramData\ntuser.pol

2015-06-30 19:26 - 2015-07-14 21:33 - 00000000 ____D C:\Users\dell\AppData\Local\PokerStars.FR

2015-06-30 19:26 - 2015-07-14 21:32 - 00000000 ____D C:\Program Files (x86)\PokerStars.FR

2015-06-30 19:26 - 2015-06-30 19:26 - 00001982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PokerStars.fr.lnk

2015-06-30 19:26 - 2015-06-30 19:26 - 00001976 _____ C:\Users\Public\Desktop\PokerStars.fr.lnk

2015-06-30 19:26 - 2015-06-30 19:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.FR

2015-06-30 19:23 - 2015-06-30 19:25 - 67782896 _____ (PokerStars) C:\Users\dell\Downloads\PokerStarsInstallFR.exe

2015-06-30 19:09 - 2015-07-03 17:09 - 00000100 _____ C:\Users\dell\AppData\Roaming\WB.CFG

2015-06-30 19:06 - 2015-06-30 19:06 - 00000000 ____D C:\ProgramData\Brother

2015-06-30 18:50 - 2015-07-15 23:42 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-06-30 18:50 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\McAfee Security Scan

2015-06-30 18:50 - 2015-06-30 18:50 - 00000000 ____D C:\ProgramData\McAfee

2015-06-30 18:49 - 2015-06-30 18:54 - 00000000 ____D C:\ProgramData\Adobe

2015-06-30 18:49 - 2015-06-30 18:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-06-30 18:49 - 2015-06-30 18:49 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk

2015-06-30 18:49 - 2015-06-30 18:49 - 00000000 ____D C:\Program Files (x86)\Adobe

2015-06-30 18:48 - 2015-06-30 18:54 - 00000000 ____D C:\Users\dell\AppData\Local\Adobe

2015-06-30 18:33 - 2015-07-01 16:28 - 00000000 ____D C:\Users\dell\AppData\Local\EBP

2015-06-30 18:33 - 2015-07-01 16:25 - 00000000 ____D C:\ProgramData\EBP

2015-06-30 18:33 - 2015-06-30 18:33 - 00001130 _____ C:\Users\Public\Desktop\EBP Devis et Facturation Bâtiment Classic 2012 13.0.lnk

2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 __HDC C:\ProgramData\{8E571D06-FBEB-44A3-9DC6-5572313D7B2D}

2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 __HDC C:\ProgramData\{3FEAFE1E-B171-4F43-9D22-153B42A7D1BF}

2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EBP

2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\Program Files\EBP

2015-06-30 18:33 - 2015-06-30 18:33 - 00000000 ____D C:\Program Files (x86)\EBP

2015-06-30 18:32 - 2015-06-30 18:32 - 17635922 _____ (EBP ) C:\Users\dell\Downloads\EBP_2012_BatimentDevis_13_0_1_2026.exe

2015-06-30 18:24 - 2015-06-30 18:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf

2015-06-30 18:09 - 2015-07-14 23:50 - 00000000 ____D C:\Users\dell\AppData\Local\Chromium

2015-06-30 18:09 - 2015-07-14 23:09 - 00000324 _____ C:\Windows\Tasks\Chromium.job

2015-06-30 18:09 - 2015-06-30 18:09 - 00003260 _____ C:\Windows\System32\Tasks\Chromium

2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\Users\dell\AppData\Roaming\Mozilla

2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\Users\dell\AppData\Local\Mozilla

2015-06-30 18:09 - 2015-06-30 18:09 - 00000000 ____D C:\ProgramData\Mozilla

2015-06-30 18:07 - 2015-06-30 18:07 - 24656704 _____ (Mozilla) C:\Users\dell\Downloads\FirefoxSetup [1].exe

2015-06-30 17:58 - 2015-06-30 17:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2015-06-30 17:58 - 2015-06-30 17:58 - 00000000 ____D C:\Program Files (x86)\Belkin

2015-06-30 17:58 - 2011-06-01 04:17 - 00848384 ____R (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192cu.sys

2015-06-30 17:58 - 2011-01-19 15:01 - 00451072 _____ C:\Windows\SysWOW64\ISSRemoveSP.exe


==================== One Month Modified files and folders ========


(If an entry is included in the fixlist, the file/folder will be moved.)


2015-07-15 23:48 - 2015-06-11 11:24 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-07-15 23:48 - 2015-06-11 11:23 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-07-15 23:47 - 2015-06-10 15:54 - 01477981 _____ C:\Windows\WindowsUpdate.log

2015-07-15 23:43 - 2015-06-11 11:24 - 00004066 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-07-15 23:43 - 2015-06-11 11:24 - 00003814 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-07-15 23:40 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-07-15 23:40 - 2009-07-14 06:45 - 00032080 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-07-15 23:28 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-07-15 23:28 - 2009-07-14 06:51 - 00034242 _____ C:\Windows\setupact.log

2015-07-15 19:15 - 2011-04-12 11:16 - 00746950 _____ C:\Windows\system32\perfh00C.dat

2015-07-15 19:15 - 2011-04-12 11:16 - 00149474 _____ C:\Windows\system32\perfc00C.dat

2015-07-15 19:15 - 2009-07-14 07:13 - 01667292 _____ C:\Windows\system32\PerfStringBackup.INI

2015-07-15 11:14 - 2010-11-21 05:47 - 00287184 _____ C:\Windows\PFRO.log

2015-07-15 10:48 - 2015-06-10 15:54 - 00000000 ____D C:\Users\dell

2015-07-14 23:42 - 2009-07-14 06:45 - 00268536 _____ C:\Windows\system32\FNTCACHE.DAT

2015-07-14 23:40 - 2015-06-11 11:09 - 00000000 ___SD C:\Windows\system32\CompatTel

2015-07-14 23:40 - 2015-06-11 11:09 - 00000000 ____D C:\Windows\system32\appraiser

2015-07-14 23:33 - 2015-06-10 17:22 - 00000000 ____D C:\Windows\system32\MRT

2015-07-14 21:51 - 2015-06-11 11:25 - 00002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-07-05 12:08 - 2010-11-21 05:27 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2015-07-03 16:43 - 2015-06-10 16:05 - 00058408 _____ C:\Users\dell\AppData\Local\GDIPFONTCACHEV1.DAT

2015-07-03 08:43 - 2015-06-10 17:21 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-07-01 16:27 - 2015-06-10 15:55 - 00000000 ____D C:\Users\dell\AppData\Local\VirtualStore

2015-06-30 20:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\GroupPolicy

2015-06-30 19:05 - 2015-06-11 09:59 - 00000000 ____D C:\Users\dell\AppData\Roaming\Adobe

2015-06-30 18:46 - 2011-04-12 11:28 - 00000000 ___RD C:\Users\Public\Recorded TV

2015-06-30 18:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat

2015-06-30 18:03 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries

2015-06-30 17:58 - 2009-07-14 04:34 - 00000468 _____ C:\Windows\win.ini


==================== Files in the root of some directories =======


2015-06-30 19:09 - 2015-07-03 17:09 - 0000100 _____ () C:\Users\dell\AppData\Roaming\WB.CFG


Files to move or delete:

====================

C:\Users\dell\ZHPCleaner.exe



Some files in TEMP:

====================

C:\Users\dell\AppData\Local\Temp\avgnt.exe

C:\Users\dell\AppData\Local\Temp\MouseKeyboardCenterx64_1036.exe

C:\Users\dell\AppData\Local\Temp\Quarantine.exe

C:\Users\dell\AppData\Local\Temp\sqlite3.dll



==================== Bamital & volsnap Check =================


(There is no automatic fix for files that do not pass verification.)


C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed



LastRegBack: 2015-07-08 23:02


==================== End of log ============================

Lien vers le commentaire
Partager sur d’autres sites
pear Devil Member !

pear

Posté(e)
Posté(e)

Nettoyage
Dans le Bloc-notes (Démarrer -> Tous les programmes -> Accessoires -> Bloc-notes)
Copier/coller le texte ci-dessous :

start
CloseProcesses:
SS - Demand [2014/04/09 15:13:48] [ 289256] McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security
O43 - CFD: 2015/06/30 18:50:31 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/01 16:20:42 - [] D -- C:\ProgramData\McAfee Security Scan
O43 - CFD: 2015/06/30 18:33:56 - [] HDC -- C:\ProgramData\{8E571D06-FBEB-44A3-9DC6-5572313D7B2D}
O43 - CFD: 2015/07/01 16:20:46 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
HKCU\SOFTWARE\MCAFEE
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
G0 - GCSP: Preferences [user Data\Default][HomePage] http://filterresults-a.akamaihd.net/
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-06-30]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.)
FF Extension: Filter Results - C:\Users\dell\AppData\Roaming\Mozilla\Firefox\Profiles\xleshk8j.default\Extensions\{621b949b-df4c-4be6-99ce-72ca3c909971}.xpi [2015-06-30]
FF HKU\S-1-5-21-749268923-2805857201-2158450924-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]
2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
2015-07-01 16:20 - 2015-07-01 16:20 - 00000000 ____D C:\Program Files\McAfee Security Scan
2015-06-30 18:50 - 2015-07-01 16:20 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2015-06-30 18:50 - 2015-06-30 18:50 - 00000000 ____D C:\ProgramData\McAfee

end


Enregistrer le fichier sur le Bureau (au même endroit que FRST) sous fixlist.txt
Fermer toutes les applications, y compris le navigateur
Double-clic sur FRST64.exe
/!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
Sur le menu principal, cliquer une seule fois sur Fix et patienter le temps de la correction

L'outil va créer un rapport de correction Fixlog.txt. Poster ce rapport dans la réponse.

Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...