Virus? continue live installation

Résolu/Fermé

cmoijaijai Messages postés 15 Date d'inscription jeudi 28 août 2014 Statut Membre Dernière intervention 24 février 2015 - 24 févr. 2015 à 14:19
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 5 sept. 2015 à 17:30

Bonjour,
J'ai depuis hier un programme qui se lance seul, et me demande d'installer quelque chose. Je refuse, puis un raccourcis s'ajoute sur mon bureau sous le nom : continue live installation.
J'ai bien tenté plusieurs chose, donc les fameux zhp diag/fix etc .... qui à première vu m'a bien retiré tout ça, mais pas de bol ce matin c'est revenu!
Quelqu'un aurait une solution?
Je suis sous Windows seven 64bits.
Merci

A voir également:

Sttray64.exe application error
Installation chromecast - Guide
Windows live mail - Télécharger - Mail
Windows live messenger - Télécharger - Messagerie
Asus live update - Télécharger - Utilitaires
Press esc in 1 seconds to skip startup.nsh any other key to continue ✓ - Forum Windows 10

7 réponses

Réponse 1 / 7

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
24 févr. 2015 à 14:22

Salut,

Tu as installé des adwares et programmes parasites sur ton PC.
Voici la procédure à suivre pour les supprimer :

Commence par ceci :

Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode )
Télécharge AdwCleaner sur ton bureau.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

puis :

Suis ce tutorial : https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
Cela va générer deux rapports FRST.
Envoie comme expliqué, ces deux rapports sur le site http://pjjoint.malekal.com et donne les trois liens pjjoint de ces rapports afin qu'ils puissent être consultés.

tyl
5 sept. 2015 à 11:45

voici mon rapport
# AdwCleaner v4.203 - Rapport créé le 05/09/2015 à 11:37:24
# Mis à jour le 30/04/2015 par Xplode
# Base de données : 2015-09-04.4 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : Hp - HP-PC
# Exécuté depuis : C:\Users\Hp\Downloads\adwcleaner_4.203.exe
# Option : Nettoyer

- - - - [ Services ] *****

[#] Service Supprimé : QQPCRTP
[#] Service Supprimé : TSDefenseBt
[#] Service Supprimé : TSSKX64

- - - - [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\tencent
Dossier Supprimé : C:\ProgramData\TXQMPC
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
Dossier Supprimé : C:\Program Files (x86)\DriverRestore
Dossier Supprimé : C:\Program Files (x86)\tencent
Dossier Supprimé : C:\Program Files (x86)\Exploremedia
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\ASPackage
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\tencent
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\gohtakpr.default\Extensions\***@***
Fichier Supprimé : C:\Windows\System32\drivers\TSSKX64.sys
Fichier Supprimé : C:\Windows\System32\drivers\TFsFltX64.sys
Fichier Supprimé : C:\Users\Hp\Desktop\Continue Live Installation.lnk

- - - - [ Tâches planifiées ] *****
      - [ Raccourcis ] *****
      - [ Registre ] *****

Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}
Clé Supprimée : HKCU\Software\eSupport.com
Clé Supprimée : HKCU\Software\DriverRestore
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

- - - - [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17937

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v40.0.3 (x86 fr)

[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a6a1a03975fde4c8690f6b883c36bc17d88519bfe704d8cae3851239com74253.74253.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a6a1a03975fde4c8690f6b883c36bc17d88519bfe704d8cae3851239com74253.74253.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2[...]

-\\ Google Chrome v

-\\ Comodo Dragon v

-\\ Chrome Canary v

AdwCleaner[R0].txt - [14636 octets] - [06/03/2014 03:17:21]
AdwCleaner[R10].txt - [6220 octets] - [13/08/2014 13:59:14]
AdwCleaner[R11].txt - [12907 octets] - [16/09/2014 14:54:32]
AdwCleaner[R12].txt - [23376 octets] - [03/01/2015 01:52:06]
AdwCleaner[R13].txt - [6770 octets] - [30/01/2015 01:00:05]
AdwCleaner[R14].txt - [2723 octets] - [25/02/2015 14:14:08]
AdwCleaner[R15].txt - [18288 octets] - [06/03/2015 18:10:25]
AdwCleaner[R16].txt - [4011 octets] - [22/03/2015 14:50:43]
AdwCleaner[R17].txt - [47704 octets] - [10/05/2015 15:11:35]
AdwCleaner[R18].txt - [21815 octets] - [10/05/2015 21:05:32]
AdwCleaner[R19].txt - [16913 octets] - [15/05/2015 20:42:26]
AdwCleaner[R1].txt - [19004 octets] - [07/03/2014 23:22:29]
AdwCleaner[R20].txt - [18950 octets] - [21/06/2015 13:19:48]
AdwCleaner[R21].txt - [334 octets] - [24/08/2015 16:32:09]
AdwCleaner[R22].txt - [25856 octets] - [24/08/2015 16:33:22]
AdwCleaner[R23].txt - [46915 octets] - [24/08/2015 17:10:01]
AdwCleaner[R24].txt - [70602 octets] - [24/08/2015 17:19:14]
AdwCleaner[R25].txt - [96917 octets] - [24/08/2015 17:36:18]
AdwCleaner[R26].txt - [125862 octets] - [24/08/2015 17:56:02]
AdwCleaner[R27].txt - [157473 octets] - [24/08/2015 18:16:27]
AdwCleaner[R28].txt - [181380 octets] - [24/08/2015 18:37:04]
AdwCleaner[R29].txt - [26332 octets] - [24/08/2015 18:49:27]
AdwCleaner[R2].txt - [29215 octets] - [12/03/2014 22:35:11]
AdwCleaner[R30].txt - [47430 octets] - [24/08/2015 18:56:24]
AdwCleaner[R31].txt - [12092 octets] - [03/09/2015 14:02:41]
AdwCleaner[R32].txt - [6891 octets] - [05/09/2015 11:35:02]
AdwCleaner[R3].txt - [29911 octets] - [12/03/2014 22:53:19]
AdwCleaner[R4].txt - [27864 octets] - [07/06/2014 11:14:33]
AdwCleaner[R5].txt - [2122 octets] - [29/06/2014 15:08:11]
AdwCleaner[R6].txt - [2182 octets] - [29/06/2014 15:09:26]
AdwCleaner[R7].txt - [16539 octets] - [16/07/2014 12:19:04]
AdwCleaner[R8].txt - [2469 octets] - [18/07/2014 12:49:56]
AdwCleaner[R9].txt - [6226 octets] - [13/08/2014 13:34:49]
AdwCleaner[S0].txt - [12256 octets] - [06/03/2014 03:18:29]
AdwCleaner[S10].txt - [6767 octets] - [30/01/2015 01:05:38]
AdwCleaner[S11].txt - [2800 octets] - [25/02/2015 14:22:43]
AdwCleaner[S12].txt - [17255 octets] - [06/03/2015 18:13:54]
AdwCleaner[S13].txt - [4132 octets] - [22/03/2015 14:57:15]
AdwCleaner[S14].txt - [43589 octets] - [10/05/2015 15:13:34]
AdwCleaner[S15].txt - [18885 octets] - [10/05/2015 21:07:23]
AdwCleaner[S16].txt - [14413 octets] - [15/05/2015 20:44:15]
AdwCleaner[S17].txt - [16602 octets] - [21/06/2015 13:22:03]
AdwCleaner[S18].txt - [27313 octets] - [24/08/2015 19:12:18]
AdwCleaner[S19].txt - [11645 octets] - [03/09/2015 14:05:14]
AdwCleaner[S1].txt - [7825 octets] - [07/03/2014 23:25:46]
AdwCleaner[S20].txt - [6239 octets] - [05/09/2015 11:37:24]
AdwCleaner[S2].txt - [26731 octets] - [12/03/2014 23:01:47]
AdwCleaner[S3].txt - [25121 octets] - [07/06/2014 11:15:42]
AdwCleaner[S4].txt - [2252 octets] - [29/06/2014 15:10:41]
AdwCleaner[S5].txt - [12946 octets] - [16/07/2014 12:20:39]
AdwCleaner[S6].txt - [2501 octets] - [18/07/2014 12:55:27]
AdwCleaner[S7].txt - [6158 octets] - [13/08/2014 14:05:44]
AdwCleaner[S8].txt - [10439 octets] - [16/09/2014 14:56:02]
AdwCleaner[S9].txt - [22067 octets] - [03/01/2015 01:56:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S20].txt - [6785 octets] ##########

Réponse 2 / 7

cmoijaijai Messages postés 15 Date d'inscription jeudi 28 août 2014 Statut Membre Dernière intervention 24 février 2015
24 févr. 2015 à 14:37

Voici le premier rapport. Je continue avec les deux autres d'ici quelques minutes.

# AdwCleaner v4.111 - Rapport créé le 24/02/2015 à 14:33:15
# Mis à jour le 18/02/2015 par Xplode
# Base de données : 2015-02-18.3 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : jerome - JEROME-PC
# Exécuté depuis : C:\Users\jerome\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4BBY4ZF9\adwcleaner_4.111.exe
# Option : Nettoyer

- - - - [ Services ] *****
      - [ Fichiers / Dossiers ] *****

Fichier Supprimé : C:\Users\jerome\Desktop\Continue Live Installation.lnk

- - - - [ Tâches planifiées ] *****
      - [ Raccourcis ] *****
      - [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage

- - - - [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17631

-\\ Google Chrome v40.0.2214.115

AdwCleaner[R0].txt - [1020 octets] - [24/02/2015 14:26:30]
AdwCleaner[S0].txt - [949 octets] - [24/02/2015 14:33:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1008 octets] ##########

Réponse 3 / 7

cmoijaijai Messages postés 15 Date d'inscription jeudi 28 août 2014 Statut Membre Dernière intervention 24 février 2015
24 févr. 2015 à 14:50

Voici les trois rapports :

https://pjjoint.malekal.com/files.php?id=20150224_s13f8d6s14l12
https://pjjoint.malekal.com/files.php?id=20150224_g5y11f13n13t12
https://pjjoint.malekal.com/files.php?id=20150224_r11w11k9i5r13

Réponse 4 / 7

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
24 févr. 2015 à 15:27

Voici la correction à effectuer avec FRST.
Tu peux t'inspirer de cette note explicative avec des captures d'écran pour t'aider: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/#fix

Ouvre le bloc-notes : Touche Windows + R, dans le champs executer, tape notepad et OK.
Copie/colle dedans ce qui suit :

ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe ()
R2 kekehuxi; C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437\jnsnD7F8.tmp [96256 2015-02-23] () [File not signed]
R2 dozohylo; C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437\nsiA31D.tmpfs [X]
2015-02-23 13:47 - 2015-02-23 13:52 - 00000000 ____D () C:\Users\jerome\AppData\Local\84F35E00-1424699230-81E1-3212-10BF481BC437
2015-02-23 13:45 - 2015-02-23 13:46 - 00000000 ____D () C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437
2015-01-25 17:12 - 2015-01-25 17:12 - 00001248 _____ () C:\Users\jerome\AppData\Roaming\FZSNVCQT
Task: {24667D7C-1280-4E42-8EF0-BADC755ED197} - System32\Tasks\{0F28970C-CBCB-4EA1-895F-FFE156BB9C95} => pcalua.exe -a "C:\Users\jerome\Desktop\EMC Style Works 2000 Universal v1.99.exe" -d C:\Users\jerome\Desktop

Une fois, le texte coller dans le bloc-note.
Menu Fichier puis Enregistrer sous.
A gauche, place toi sur le bureau.

Dans le champs en bas, nom du fichier mets : fixlist.txt
Clic sur Enregistrer - cela va créer un fichier fixlist.txt sur le bureau.

Relance FRST qui doit se trouver sur le bureau et clic sur le bouton Fix
Selon comment un redémarrage est nécessaire (pas obligatoire).
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur

puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :

Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 7

cmoijaijai Messages postés 15 Date d'inscription jeudi 28 août 2014 Statut Membre Dernière intervention 24 février 2015
24 févr. 2015 à 15:35

Voici le rapport suite aux fix

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-02-2015
Ran by jerome at 2015-02-24 15:33:46 Run:1
Running from C:\Users\jerome\Desktop
Loaded Profiles: jerome (Available profiles: jerome)
Boot Mode: Normal
==============================================

Content of fixlist:

ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe ()
R2 kekehuxi; C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437\jnsnD7F8.tmp [96256 2015-02-23] () [File not signed]
R2 dozohylo; C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437\nsiA31D.tmpfs [X]
2015-02-23 13:47 - 2015-02-23 13:52 - 00000000 ____D () C:\Users\jerome\AppData\Local\84F35E00-1424699230-81E1-3212-10BF481BC437
2015-02-23 13:45 - 2015-02-23 13:46 - 00000000 ____D () C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437
2015-01-25 17:12 - 2015-01-25 17:12 - 00001248 _____ () C:\Users\jerome\AppData\Roaming\FZSNVCQT
Task: {24667D7C-1280-4E42-8EF0-BADC755ED197} - System32\Tasks\{0F28970C-CBCB-4EA1-895F-FFE156BB9C95} => pcalua.exe -a "C:\Users\jerome\Desktop\EMC Style Works 2000 Universal v1.99.exe" -d C:\Users\jerome\Desktop

C:\Windows\Installer\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}\_77B5857C27147149171BE7.exe => Moved successfully.
kekehuxi => Service stopped successfully.
kekehuxi => Service deleted successfully.
dozohylo => Service stopped successfully.
dozohylo => Service deleted successfully.
C:\Users\jerome\AppData\Local\84F35E00-1424699230-81E1-3212-10BF481BC437 => Moved successfully.
C:\Users\jerome\AppData\Roaming\84F35E00-1424699139-81E1-3212-10BF481BC437 => Moved successfully.
C:\Users\jerome\AppData\Roaming\FZSNVCQT => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24667D7C-1280-4E42-8EF0-BADC755ED197}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24667D7C-1280-4E42-8EF0-BADC755ED197}" => Key deleted successfully.
C:\Windows\System32\Tasks\{0F28970C-CBCB-4EA1-895F-FFE156BB9C95} => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0F28970C-CBCB-4EA1-895F-FFE156BB9C95}" => Key deleted successfully.

End of Fixlog 15:33:52

Réponse 6 / 7

cmoijaijai Messages postés 15 Date d'inscription jeudi 28 août 2014 Statut Membre Dernière intervention 24 février 2015
24 févr. 2015 à 16:09

Pour le moment tout va bien, si au cas où il y aurait un soucis, je ne manquerais pas de revenir demander votre aide.
Encore mille merci

Réponse 7 / 7

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
24 févr. 2015 à 17:59

ok =)

Quelques conseils :

Installe Malwarebyte's Anti-Malware : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Fais des scans réguliers avec, il est efficace.

Pour prévenir les sites malicieux, tu peux installer Blockulicious : https://forum.malekal.com/viewtopic.php?t=46656&start=

Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : https://www.malekal.com/adwares-pup-protection/

Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html

Raspoutine256 Messages postés 2 Date d'inscription mercredi 25 avril 2012 Statut Membre Dernière intervention 8 juin 2015
8 juin 2015 à 11:52

Bonjour Malekal,

J'ai le même problème que cestmoijaijai que tu viens d'aider. Est-ce que je peux compter à mon tour sur ton aide? Si oui, où dois-je poster les rapport de Adwcleaner?

Merci à l'avance :)

Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 627
8 juin 2015 à 13:05

Salut,

Suis la procédure, donne les liens des rapports.

tylon Messages postés 4 Date d'inscription samedi 5 septembre 2015 Statut Membre Dernière intervention 15 mai 2016
5 sept. 2015 à 13:10

Salut,
même problème pour moi...
je me permet de t'envoyer le rapport Adwcleaner
Merci !

voici mon rapport
# AdwCleaner v4.203 - Rapport créé le 05/09/2015 à 11:37:24
# Mis à jour le 30/04/2015 par Xplode
# Base de données : 2015-09-04.4 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : Hp - HP-PC
# Exécuté depuis : C:\Users\Hp\Downloads\adwcleaner_4.203.exe
# Option : Nettoyer

[ Services ] *****

[#] Service Supprimé : QQPCRTP
[#] Service Supprimé : TSDefenseBt
[#] Service Supprimé : TSSKX64

[ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\tencent
Dossier Supprimé : C:\ProgramData\TXQMPC
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
Dossier Supprimé : C:\Program Files (x86)\DriverRestore
Dossier Supprimé : C:\Program Files (x86)\tencent
Dossier Supprimé : C:\Program Files (x86)\Exploremedia
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\ASPackage
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\tencent
Dossier Supprimé : C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\gohtakpr.default\Extensions\***@***
Fichier Supprimé : C:\Windows\System32\drivers\TSSKX64.sys
Fichier Supprimé : C:\Windows\System32\drivers\TFsFltX64.sys
Fichier Supprimé : C:\Users\Hp\Desktop\Continue Live Installation.lnk

[ Tâches planifiées ] *****
[ Raccourcis ] *****
[ Registre ] *****

Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Control\Class\{0014298C-A9BA-440D-AAA8-AD12C7010EE5}
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Control\Class\{181A06EA-B82C-47DE-B851-E20FD0E1CC7D}
Clé Supprimée : HKCU\Software\eSupport.com
Clé Supprimée : HKCU\Software\DriverRestore
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ASPackage
Donnée Supprimée : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <-loopback>

[ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17937

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v40.0.3 (x86 fr)

[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a6a1a03975fde4c8690f6b883c36bc17d88519bfe704d8cae3851239com74253.74253.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a6a1a03975fde4c8690f6b883c36bc17d88519bfe704d8cae3851239com74253.74253.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22amazon[...]
[gohtakpr.default\prefs.js] - Ligne Supprimée : user_pref("extensions.ad4db60df25f14dae9dd18185c395f9e794c9ab86be3ebcom72893.72893.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7D%2[...]

-\\ Google Chrome v

-\\ Comodo Dragon v

-\\ Chrome Canary v

AdwCleaner[R0].txt - [14636 octets] - [06/03/2014 03:17:21]
AdwCleaner[R10].txt - [6220 octets] - [13/08/2014 13:59:14]
AdwCleaner[R11].txt - [12907 octets] - [16/09/2014 14:54:32]
AdwCleaner[R12].txt - [23376 octets] - [03/01/2015 01:52:06]
AdwCleaner[R13].txt - [6770 octets] - [30/01/2015 01:00:05]
AdwCleaner[R14].txt - [2723 octets] - [25/02/2015 14:14:08]
AdwCleaner[R15].txt - [18288 octets] - [06/03/2015 18:10:25]
AdwCleaner[R16].txt - [4011 octets] - [22/03/2015 14:50:43]
AdwCleaner[R17].txt - [47704 octets] - [10/05/2015 15:11:35]
AdwCleaner[R18].txt - [21815 octets] - [10/05/2015 21:05:32]
AdwCleaner[R19].txt - [16913 octets] - [15/05/2015 20:42:26]
AdwCleaner[R1].txt - [19004 octets] - [07/03/2014 23:22:29]
AdwCleaner[R20].txt - [18950 octets] - [21/06/2015 13:19:48]
AdwCleaner[R21].txt - [334 octets] - [24/08/2015 16:32:09]
AdwCleaner[R22].txt - [25856 octets] - [24/08/2015 16:33:22]
AdwCleaner[R23].txt - [46915 octets] - [24/08/2015 17:10:01]
AdwCleaner[R24].txt - [70602 octets] - [24/08/2015 17:19:14]
AdwCleaner[R25].txt - [96917 octets] - [24/08/2015 17:36:18]
AdwCleaner[R26].txt - [125862 octets] - [24/08/2015 17:56:02]
AdwCleaner[R27].txt - [157473 octets] - [24/08/2015 18:16:27]
AdwCleaner[R28].txt - [181380 octets] - [24/08/2015 18:37:04]
AdwCleaner[R29].txt - [26332 octets] - [24/08/2015 18:49:27]
AdwCleaner[R2].txt - [29215 octets] - [12/03/2014 22:35:11]
AdwCleaner[R30].txt - [47430 octets] - [24/08/2015 18:56:24]
AdwCleaner[R31].txt - [12092 octets] - [03/09/2015 14:02:41]
AdwCleaner[R32].txt - [6891 octets] - [05/09/2015 11:35:02]
AdwCleaner[R3].txt - [29911 octets] - [12/03/2014 22:53:19]
AdwCleaner[R4].txt - [27864 octets] - [07/06/2014 11:14:33]
AdwCleaner[R5].txt - [2122 octets] - [29/06/2014 15:08:11]
AdwCleaner[R6].txt - [2182 octets] - [29/06/2014 15:09:26]
AdwCleaner[R7].txt - [16539 octets] - [16/07/2014 12:19:04]
AdwCleaner[R8].txt - [2469 octets] - [18/07/2014 12:49:56]
AdwCleaner[R9].txt - [6226 octets] - [13/08/2014 13:34:49]
AdwCleaner[S0].txt - [12256 octets] - [06/03/2014 03:18:29]
AdwCleaner[S10].txt - [6767 octets] - [30/01/2015 01:05:38]
AdwCleaner[S11].txt - [2800 octets] - [25/02/2015 14:22:43]
AdwCleaner[S12].txt - [17255 octets] - [06/03/2015 18:13:54]
AdwCleaner[S13].txt - [4132 octets] - [22/03/2015 14:57:15]
AdwCleaner[S14].txt - [43589 octets] - [10/05/2015 15:13:34]
AdwCleaner[S15].txt - [18885 octets] - [10/05/2015 21:07:23]
AdwCleaner[S16].txt - [14413 octets] - [15/05/2015 20:44:15]
AdwCleaner[S17].txt - [16602 octets] - [21/06/2015 13:22:03]
AdwCleaner[S18].txt - [27313 octets] - [24/08/2015 19:12:18]
AdwCleaner[S19].txt - [11645 octets] - [03/09/2015 14:05:14]
AdwCleaner[S1].txt - [7825 octets] - [07/03/2014 23:25:46]
AdwCleaner[S20].txt - [6239 octets] - [05/09/2015 11:37:24]
AdwCleaner[S2].txt - [26731 octets] - [12/03/2014 23:01:47]
AdwCleaner[S3].txt - [25121 octets] - [07/06/2014 11:15:42]
AdwCleaner[S4].txt - [2252 octets] - [29/06/2014 15:10:41]
AdwCleaner[S5].txt - [12946 octets] - [16/07/2014 12:20:39]
AdwCleaner[S6].txt - [2501 octets] - [18/07/2014 12:55:27]
AdwCleaner[S7].txt - [6158 octets] - [13/08/2014 14:05:44]
AdwCleaner[S8].txt - [10439 octets] - [16/09/2014 14:56:02]
AdwCleaner[S9].txt - [22067 octets] - [03/01/2015 01:56:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S20].txt - [6785 octets] ##########

tylon Messages postés 4 Date d'inscription samedi 5 septembre 2015 Statut Membre Dernière intervention 15 mai 2016
5 sept. 2015 à 17:02

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:04-09-2015
Exécuté par Hp (administrateur) sur HP-PC (05-09-2015 16:49:32)
Exécuté depuis C:\Users\Hp\Downloads
Profils chargés: Hp (Profils disponibles: Hp)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe
() C:\ProgramData\CeroHimna\vobwwou.exe
() C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\jnsmA41B.tmp
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
() C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\hnsbBE12.tmp
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe
(Validity Sensors, Inc.) C:\Windows\System32\valWBFPolicyService.exe
(Word Surfer) C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe
(SoftBrain Technologies Ltd.) C:\Users\Hp\AppData\Local\SmartWeb\SmartWebHelper.exe
(SoftBrain Technologies Ltd.) C:\Users\Hp\AppData\Local\SmartWeb\SmartWebApp.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\ProgramData\CeroHimna\vobawou.exe
() C:\Users\Hp\AppData\Local\Temp\nsx39D.tmp
() C:\Users\Hp\AppData\Local\gmsd_es_005010080\upgmsd_es_005010080.exe
() C:\Program Files (x86)\gmsd_es_005010080\gmsd_es_005010080.exe
() C:\Users\Hp\AppData\Local\Temp\nsz3C02.tmp
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\knsj8ACE.tmp

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-03-23] (IDT, Inc.)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5207272 2015-09-03] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [NeroFilterCheck] => C:\Windows\SysWOW64\NeroCheck.exe [155648 2001-07-09] (Ahead Software Gmbh)
HKLM-x32\...\Run: [APSDaemon] => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" (l'élément de données a 65 caractères en plus).
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SmartWeb] => C:\Users\Hp\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [gmsd_es_005010080] => C:\Program Files (x86)\gmsd_es_005010080\gmsd_es_005010080.exe [3982992 2015-09-04] ()
HKLM-x32\...\RunOnce: [upgmsd_es_005010080.exe] => C:\Users\Hp\AppData\Local\gmsd_es_005010080\upgmsd_es_005010080.exe [3311760 2015-09-04] ()
HKLM-x32\...\RunOnce: [Update] => C:\Users\Hp\AppData\Roaming\ASPackage\ASPackage.exe /runonce
HKU\S-1-5-21-2193914219-2526987996-3137271002-1000\...\Run: [AlcoholAutomount] => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
HKU\S-1-5-21-2193914219-2526987996-3137271002-1000\...\Run: [uTorrent] => C:\Users\Hp\AppData\Roaming\uTorrent\uTorrent.exe [1377872 2015-02-25] (BitTorrent Inc.)
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-02-08] (Microsoft Corporation)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\itunes.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\utorrent.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMGCShellExt64.dll Pas de fichier
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-02-08] (Autodesk, Inc.)
Startup: C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-09-05]
ShortcutTarget: SmartWeb.lnk -> C:\Users\Hp\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
GroupPolicy: Stratégie de groupe sur Chrome détecté(e) <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction de Stratégie <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{1152FFF2-0339-47C3-9644-9255094A0B17}: [DhcpNameServer] 172.18.13.1
Tcpip\..\Interfaces\{489AAF8C-8954-4656-835B-FFC7A5555897}: [NameServer] 172.18.13.1
Tcpip\..\Interfaces\{489AAF8C-8954-4656-835B-FFC7A5555897}: [DhcpNameServer] 80.58.61.250 80.58.61.254
Tcpip\..\Interfaces\{801BF064-AAEE-4A77-8A7F-BBB3D131C85B}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{BAC782BF-813B-4A06-8E1F-2B74DF8D55BF}: [DhcpNameServer] 80.58.61.250 80.58.61.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=130848119124450031&GUID=36F29B78-60B2-4381-A7C4-BE3DB7E986AA
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2193914219-2526987996-3137271002-1000 -> {A060E7FB-91F5-4c7c-BD0F-4A11A581D878} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=96010190_dg
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-24] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-24] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2015-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-27] (Oracle Corporation)
BHO-x32: BHOImpl Class -> {E1499FE7-129D-4B6E-B681-DDF21E14172C} -> C:\Users\Hp\Documents\iTools\Plugin\iToolsBHO.dll [2014-05-17] (iTools.hk)
Handler-x32: http - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: http - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: https - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: ipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-02-03] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-01-21] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Pas de fichier

FireFox:
========
FF ProfilePath: C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\gohtakpr.default
FF SelectedSearchEngine: webssearches
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-23] ()
FF Plugin: @iqiyi.com/npclient -> C:\IQIYI Video\LStyle\npclient.dll [Pas de fichier]
FF Plugin: @iqiyi.com/npWebPlayer -> C:\IQIYI Video\LStyle\npWebPlayer.dll [Pas de fichier]
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-24] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-24] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @itools.hk/npiTools, version=1.0.0 -> C:\Users\Hp\Documents\iTools\Plugin\npiTools.dll [2014-05-17] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Extension: CinemaPlus-4.2v - C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\gohtakpr.default\Extensions\6a1a03975fde4c8690f6b883c36bc1@7d88519bfe704d8cae3851239.com [2015-09-05]
FF Extension: CinemaPlus-3.2c - C:\Users\Hp\AppData\Roaming\Mozilla\Firefox\Profiles\gohtakpr.default\Extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2015-09-05]

Chrome:
=======
CHR dev: Chrome dev build détecté(e)! <======= ATTENTION
CHR Profile: C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgknedgcldhmimbfgbkimjoeplennnil [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\bikdacjeghfiplnmgkflpkmobmoakdgb [2014-03-08]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\eaifpmleakpkgmalbaphoafbidejoldp [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehhglpdapfkjpmaahgaalpalbgedkmnm [2014-03-05]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\haeicfcmofnbpimdjnibndhadpkanfcj [2014-03-07]
CHR Extension: (Easy Surf) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\hljnlfolmbmibdjaikiaepgepgnldclj [2014-09-10]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\iadleionbiicbakamefpkhbpgochmefj [2014-03-05]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\igcnondhihhgklilmmnlofgbgoihonjn [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\jiaaploplgbfgihkkiemcgedknmedgpc [2014-03-07]
CHR Extension: (Share the Wealth) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\lijicndbkjoplmhnclmoahmcaffaeapp [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\loeplccmgifjblbpobegmkcljobefphp [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpahbkpnghjelcbhcaffpjjjogfoeihp [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\okiddkopfmaeimjgkclkhljmfkobpeni [2014-03-07]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\olnnbjbdfbagmalmmflhboenlbanmdpl [2014-03-08]
CHR Extension: (Pas de nom) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\omjincdfedfafigadcfdffdadkaojgnm [2014-03-07]
CHR Extension: (Keep Me) - C:\Users\Hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc [2014-03-05]
CHR HKLM-x32\...\Chrome\Extension: [dnligehkhogpcngalffdoomehjcbecna] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gehmndecgbcffhmfjkenpamdgechcgpe] - https://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\AESTSr64.exe [89600 2009-03-03] (Andrea Electronics Corporation)
S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [Fichier non signé]
R2 avewloutid; C:\ProgramData\CeroHimna\vobwwou.exe [124864 2015-08-22] () [Fichier non signé]
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 guxewery; C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\knsj8ACE.tmp [1380352 2015-09-05] () [Fichier non signé]
S4 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [47416 2014-02-05] (Hewlett-Packard Company)
R2 jimocoso; C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\jnsmA41B.tmp [227328 2015-09-03] () [Fichier non signé]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5207272 2015-09-03] (SoftEther VPN Project at University of Tsukuba, Japan.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_70dacb64382a61a7\STacSV64.exe [247808 2010-03-23] (IDT, Inc.)
R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [Fichier non signé]
S4 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
R2 totyseku; C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\hnsbBE12.tmp [137728 2015-09-03] () [Fichier non signé]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2014-11-24] (AVG Technologies)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe [36352 2015-09-04] ()
R2 ujepxekjye; C:\ProgramData\CeroHimna\vobawou.exe [124864 2015-08-22] () [Fichier non signé]
R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-10-12] (Validity Sensors, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 wsasvc_1.10.0.19; C:\Program Files (x86)\WordSurfer_1.10.0.19\Service\wsasvc.exe [299608 2015-06-16] (Word Surfer)
S4 rkdownilad; pas de ImagePath

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 innfd_1_10_0_14; C:\Windows\System32\drivers\innfd_1_10_0_14.sys [58224 2015-04-10] (Infonaut)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R3 Neo_VPN; C:\Windows\System32\DRIVERS\Neo_0070.sys [40704 2015-09-03] (SoftEther Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R1 scfd_1_10_0_16; C:\Windows\System32\drivers\scfd_1_10_0_16.sys [58240 2015-05-13] (SuperClick)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2014-09-10] (Duplex Secure Ltd.)
R3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [38656 2015-04-28] (The OpenVPN Project)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-11-24] (TuneUp Software)
R1 wsafd_1_10_0_19; C:\Windows\System32\drivers\wsafd_1_10_0_19.sys [61312 2015-06-16] (Word Surfer)
U3 a3di0p7o; C:\Windows\System32\Drivers\a3di0p7o.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zéro octet Fichier/Dossier)
S2 SPDRIVER_1.42.0.1828; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.42.0.1828\jsdrv.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-05 16:49 - 2015-09-05 16:51 - 00024139 _____ C:\Users\Hp\Downloads\FRST.txt
2015-09-05 16:49 - 2015-09-05 16:50 - 00000000 ____D C:\FRST
2015-09-05 12:53 - 2015-09-05 15:59 - 00000000 ____D C:\Users\Hp\AppData\Local\gmsd_es_005010080
2015-09-05 12:53 - 2015-09-05 12:53 - 00000000 ____D C:\Program Files (x86)\gmsd_es_005010080
2015-09-05 12:22 - 2015-09-05 12:22 - 00000000 ____D C:\Program Files (x86)\predm
2015-09-05 12:14 - 2015-09-05 12:14 - 00004016 _____ C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task
2015-09-05 12:14 - 2015-09-05 12:14 - 00000000 ____D C:\Users\Hp\AppData\Local\SmartWeb
2015-09-05 12:12 - 2015-09-05 12:12 - 00004182 _____ C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update
2015-09-05 12:12 - 2015-09-05 12:12 - 00004172 _____ C:\Windows\System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core
2015-09-05 12:12 - 2015-09-05 12:12 - 00000000 ____D C:\Program Files (x86)\WordSurfer_1.10.0.19
2015-09-05 11:57 - 2015-09-05 11:57 - 02188800 _____ (Farbar) C:\Users\Hp\Downloads\FRST64.exe
2015-09-04 22:35 - 2015-08-11 03:20 - 25191936 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-09-04 22:35 - 2015-08-11 03:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-09-04 22:35 - 2015-08-11 02:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-09-04 22:35 - 2015-08-11 02:20 - 19871232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-09-04 18:39 - 2014-11-24 23:09 - 00020872 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2015-09-04 18:06 - 2015-09-04 18:06 - 00000000 ____D C:\Users\Hp\AppData\Local\tmp23112
2015-09-04 17:47 - 2015-09-04 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TunnelBear
2015-09-03 14:41 - 2015-09-03 14:41 - 00001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\SoftEther VPN Client Manager.lnk
2015-09-03 14:41 - 2015-09-03 14:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftEther VPN Client
2015-09-03 14:40 - 2015-09-05 11:10 - 00000000 ____D C:\Users\Hp\AppData\Local\30464E43-1441291259-3639-5154-C80AA9281904
2015-09-03 14:39 - 2015-09-05 16:21 - 00000000 ____D C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904
2015-09-03 13:49 - 2015-09-03 13:49 - 00000000 ____D C:\Users\Hp\AppData\Local\tmp18311
2015-09-03 13:25 - 2015-09-03 13:25 - 00040704 _____ (SoftEther Corporation) C:\Windows\system32\Drivers\Neo_0070.sys
2015-09-03 13:22 - 2015-09-05 12:22 - 00000000 ____D C:\Program Files\SoftEther VPN Client
2015-09-03 13:22 - 2015-09-03 13:22 - 00144104 _____ (SoftEther VPN Project at University of Tsukuba, Japan.) C:\Windows\system32\vpncmd.exe
2015-09-03 11:15 - 2015-09-03 11:15 - 00002704 _____ C:\Windows\System32\Tasks\Tempo Runner vob3wou
2015-09-03 11:15 - 2015-09-03 11:15 - 00000390 _____ C:\Windows\Tasks\Tempo Runner vob3wou.job
2015-08-24 00:06 - 2015-08-24 00:06 - 00759360 _____ C:\Users\Hp\Downloads\flv-player_3-0_fr_28810.exe
2015-08-23 21:06 - 2015-09-03 11:14 - 00000322 _____ C:\Windows\Tasks\Tempo Runner vobdwou.job
2015-08-23 21:06 - 2015-08-24 23:16 - 00002714 _____ C:\Windows\System32\Tasks\Tempo Runner vobdwou
2015-08-23 21:06 - 2015-08-23 21:06 - 00002222 _____ C:\Users\Hp\AppData\Roaming\NDQhpDYOyZ1dyPwrHJUKK0wU.exe.lnk
2015-08-23 21:06 - 2015-08-23 21:06 - 00002198 _____ C:\Users\Hp\AppData\Roaming\oKWhhr5fWVoU.exe.lnk
2015-08-23 21:05 - 2015-08-23 21:05 - 00003856 _____ C:\Windows\System32\Tasks\Install Google Chrome
2015-08-23 20:15 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-23 20:14 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-23 19:26 - 2015-08-23 19:26 - 00001291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-23 18:41 - 2015-08-23 18:41 - 00613255 _____ (CMI Limited) C:\Users\Hp\AppData\Local\nsqF997.tmp
2015-08-23 18:27 - 2015-08-23 18:27 - 00613255 _____ (CMI Limited) C:\Users\Hp\AppData\Local\nsfC8A1.tmp
2015-08-23 18:22 - 2015-08-23 19:28 - 00000000 ____D C:\Users\Hp\AppData\Local\Unity
2015-08-23 18:22 - 2015-08-23 18:22 - 00000000 ____D C:\ppsfile
2015-08-23 18:21 - 2015-08-23 18:21 - 00000000 ____D C:\Users\Public\QiYi
2015-08-23 18:18 - 2015-08-23 18:18 - 00000217 _____ C:\task.vbs
2015-08-23 18:08 - 2015-08-23 18:14 - 00000000 ____D C:\Users\Hp\AppData\Local\30464E43-1440353335-3639-5154-C80AA9281904
2015-08-23 18:08 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hp.bak
2015-08-23 18:06 - 2015-09-03 13:31 - 00000000 ____D C:\ProgramData\CeroHimna
2015-08-23 18:05 - 2015-08-23 18:05 - 00000000 ____D C:\Users\Hp\AppData\Local\Software
2015-08-23 18:05 - 2015-08-23 18:05 - 00000000 ____D C:\Program Files (x86)\Software
2015-08-23 18:03 - 2015-08-23 18:03 - 00764720 _____ (WDULG) C:\Users\Hp\Downloads\setup(1).exe
2015-08-23 18:02 - 2015-08-23 18:02 - 00764712 _____ (VMWLF) C:\Users\Hp\Downloads\setup.exe
2015-08-23 17:42 - 2015-09-04 17:48 - 00000000 ____D C:\Users\Hp\AppData\Roaming\TunnelBear
2015-08-23 17:42 - 2015-08-23 17:42 - 00000000 ____D C:\Users\Hp\AppData\Local\IsolatedStorage
2015-08-23 17:41 - 2015-09-05 11:06 - 00000000 ____D C:\Program Files (x86)\TunnelBear
2015-08-23 17:40 - 2015-09-04 17:47 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-23 17:37 - 2015-08-23 17:38 - 12090304 _____ (TunnelBear) C:\Users\Hp\Downloads\TunnelBear-Install.exe
2015-08-23 17:19 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-08-23 17:19 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-08-23 17:19 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-08-23 17:19 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-08-23 17:19 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-08-23 17:19 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-08-23 17:19 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-08-23 17:19 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-08-23 17:19 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-08-23 17:19 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-08-23 17:19 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-08-23 17:19 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-23 17:19 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-08-23 17:19 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-08-23 17:19 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-08-23 17:18 - 2015-07-15 20:15 - 05568960 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-23 17:18 - 2015-07-15 20:15 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-08-23 17:18 - 2015-07-15 20:15 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-08-23 17:18 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-23 17:18 - 2015-07-15 20:12 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-23 17:18 - 2015-07-15 20:11 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-08-23 17:18 - 2015-07-15 20:11 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-08-23 17:18 - 2015-07-15 20:11 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-08-23 17:18 - 2015-07-15 20:11 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-08-23 17:18 - 2015-07-15 20:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-08-23 17:18 - 2015-07-15 20:10 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-08-23 17:18 - 2015-07-15 20:10 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-08-23 17:18 - 2015-07-15 20:10 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-08-23 17:18 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-23 17:18 - 2015-07-15 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-08-23 17:18 - 2015-07-15 20:09 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-08-23 17:18 - 2015-07-15 20:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-08-23 17:18 - 2015-07-15 20:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 20:00 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:59 - 03989952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-08-23 17:18 - 2015-07-15 19:59 - 03934656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-08-23 17:18 - 2015-07-15 19:56 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-08-23 17:18 - 2015-07-15 19:55 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-08-23 17:18 - 2015-07-15 19:55 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-08-23 17:18 - 2015-07-15 19:55 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-08-23 17:18 - 2015-07-15 19:55 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-08-23 17:18 - 2015-07-15 19:55 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-08-23 17:18 - 2015-07-15 19:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-08-23 17:18 - 2015-07-15 19:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-08-23 17:18 - 2015-07-15 19:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-08-23 17:18 - 2015-07-15 19:53 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-08-23 17:18 - 2015-07-15 19:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-08-23 17:18 - 2015-07-15 19:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-08-23 17:18 - 2015-07-15 19:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-08-23 17:18 - 2015-07-15 19:53 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-08-23 17:18 - 2015-07-15 19:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-08-23 17:18 - 2015-07-15 19:48 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 19:44 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 18:46 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-08-23 17:18 - 2015-07-15 18:46 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-08-23 17:18 - 2015-07-15 18:46 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-08-23 17:18 - 2015-07-15 18:37 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-08-23 17:18 - 2015-07-15 18:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-08-23 17:18 - 2015-07-15 18:34 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 18:34 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 18:34 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-23 17:18 - 2015-07-15 18:34 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-23 17:17 - 2015-07-21 02:12 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-08-23 17:17 - 2015-07-16 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-08-23 17:17 - 2015-07-16 22:35 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-23 17:17 - 2015-07-16 22:26 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-08-23 17:17 - 2015-07-16 22:21 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-08-23 17:17 - 2015-07-16 22:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-08-23 17:17 - 2015-07-16 21:51 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-08-23 17:17 - 2015-07-16 21:50 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-08-23 17:17 - 2015-07-16 21:45 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-08-23 17:17 - 2015-07-16 21:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-08-23 17:17 - 2015-07-16 21:35 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-08-23 17:17 - 2015-07-16 21:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-08-23 17:17 - 2015-07-16 21:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-08-23 17:17 - 2015-07-16 21:17 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-08-23 17:17 - 2015-07-16 21:06 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-08-23 17:17 - 2015-07-16 20:38 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-08-23 17:17 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-08-23 17:16 - 2015-07-30 20:06 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-08-23 17:16 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-08-23 17:16 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-08-23 17:16 - 2015-07-30 19:57 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-08-23 17:16 - 2015-07-30 19:57 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-08-23 17:16 - 2015-07-30 19:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-08-23 17:16 - 2015-07-30 19:55 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-08-23 17:16 - 2015-07-30 18:56 - 03208192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-23 17:16 - 2015-07-30 18:52 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-23 17:16 - 2015-07-30 18:49 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-08-23 17:16 - 2015-07-21 02:39 - 00389840 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-08-23 17:16 - 2015-07-16 22:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-08-23 17:16 - 2015-07-16 22:37 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-08-23 17:16 - 2015-07-16 22:36 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-23 17:16 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-23 17:16 - 2015-07-16 22:35 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-08-23 17:16 - 2015-07-16 22:27 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-23 17:16 - 2015-07-16 22:26 - 05923328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-23 17:16 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-23 17:16 - 2015-07-16 22:21 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-23 17:16 - 2015-07-16 22:21 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-08-23 17:16 - 2015-07-16 22:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-23 17:16 - 2015-07-16 22:12 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-08-23 17:16 - 2015-07-16 22:08 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-23 17:16 - 2015-07-16 21:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-08-23 17:16 - 2015-07-16 21:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-23 17:16 - 2015-07-16 21:51 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-23 17:16 - 2015-07-16 21:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-08-23 17:16 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-08-23 17:16 - 2015-07-16 21:49 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-08-23 17:16 - 2015-07-16 21:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-08-23 17:16 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-08-23 17:16 - 2015-07-16 21:39 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-08-23 17:16 - 2015-07-16 21:39 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-08-23 17:16 - 2015-07-16 21:38 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-08-23 17:16 - 2015-07-16 21:36 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-23 17:16 - 2015-07-16 21:34 - 14451200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-23 17:16 - 2015-07-16 21:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-08-23 17:16 - 2015-07-16 21:32 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-23 17:16 - 2015-07-16 21:29 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-08-23 17:16 - 2015-07-16 21:20 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-08-23 17:16 - 2015-07-16 21:12 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-08-23 17:16 - 2015-07-16 21:12 - 02427904 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-23 17:16 - 2015-07-16 21:10 - 12856832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-08-23 17:16 - 2015-07-16 21:06 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-08-23 17:16 - 2015-07-16 21:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-08-23 17:16 - 2015-07-16 21:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-23 17:16 - 2015-07-16 20:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-08-23 17:16 - 2015-07-16 20:42 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-08-23 17:16 - 2015-07-16 20:37 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-08-23 17:16 - 2015-07-15 05:19 - 02004992 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-23 17:16 - 2015-07-15 05:19 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-23 17:16 - 2015-07-15 05:14 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-08-23 17:16 - 2015-07-15 05:13 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-08-23 17:16 - 2015-07-15 04:55 - 01390592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-08-23 17:16 - 2015-07-15 04:55 - 01241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-08-23 17:16 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-08-23 17:16 - 2015-07-15 04:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-08-23 17:16 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-23 17:16 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-08-23 17:16 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-23 17:16 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-23 17:16 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
2015-08-23 17:16 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-23 17:16 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-08-23 17:16 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-08-23 17:16 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 02606080 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-08-23 16:52 - 2015-07-20 20:12 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-08-23 16:52 - 2015-07-20 20:12 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-08-23 16:52 - 2015-07-20 20:12 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-08-23 16:52 - 2015-07-20 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-08-23 16:52 - 2015-07-20 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-08-23 16:52 - 2015-07-20 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-08-23 16:52 - 2015-07-20 19:56 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-08-23 16:52 - 2015-07-20 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-08-23 16:04 - 2015-08-23 16:04 - 00000000 ____D C:\Users\Hp\Y
2015-08-23 15:45 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-08-23 15:45 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-08-23 15:45 - 2015-06-09 20:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-08-23 15:45 - 2015-06-09 20:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-08-23 15:45 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-08-23 15:45 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-08-23 15:43 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-08-23 15:43 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-08-23 15:43 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-08-23 15:43 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-08-23 15:43 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-08-23 15:43 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-08-23 15:43 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-08-23 15:43 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-08-23 15:43 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-08-23 15:43 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-08-23 15:42 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-08-23 15:42 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-08-23 15:42 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-08-23 15:42 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-08-23 15:42 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-08-23 15:42 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-08-23 15:42 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-08-23 15:42 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-08-23 15:42 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-08-23 15:42 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-08-23 15:42 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-08-23 15:42 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-09-05 16:51 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-05 16:51 - 2009-07-14 06:45 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-05 16:46 - 2014-02-08 15:07 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-09-05 16:46 - 2014-02-05 22:55 - 01785627 _____ C:\Windows\WindowsUpdate.log
2015-09-05 15:40 - 2014-09-16 14:55 - 00003912 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7E2A677D-5934-44C4-A7CE-B0F5033A51F2}
2015-09-05 12:20 - 2014-02-05 23:03 - 00001619 _____ C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-09-05 12:20 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-09-05 12:20 - 2009-07-14 06:51 - 00125239 _____ C:\Windows\setupact.log
2015-09-05 12:19 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-09-05 11:39 - 2014-02-08 11:30 - 01479570 _____ C:\Windows\PFRO.log
2015-09-05 11:37 - 2014-03-06 03:17 - 00000000 ____D C:\AdwCleaner
2015-09-05 11:26 - 2014-02-05 23:02 - 00000000 ___RD C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-09-05 11:16 - 2014-03-29 19:01 - 00000000 ____D C:\ProgramData\albumphoto
2015-09-05 11:16 - 2014-03-29 19:01 - 00000000 ____D C:\Program Files (x86)\MonAlbumPhoto
2015-09-05 11:15 - 2014-02-27 22:32 - 00000000 ____D C:\Program Files (x86)\i-Funbox DevTeam
2015-09-04 22:34 - 2014-02-06 18:09 - 00000000 ____D C:\Windows\system32\MRT
2015-09-04 22:27 - 2014-02-06 18:08 - 132483416 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-09-04 10:48 - 2015-05-20 10:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-03 14:28 - 2015-06-04 17:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-09-03 14:01 - 2014-02-20 19:42 - 00000000 ____D C:\Users\Hp\AppData\Roaming\hpqLog
2015-09-03 12:46 - 2015-03-05 11:40 - 00000000 ____D C:\Users\Hp\Tor Browser
2015-08-24 00:06 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Resources
2015-08-23 21:56 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-08-23 21:41 - 2015-05-14 23:41 - 00000000 ____D C:\ProgramData\c1c05f7061d940b085ed209085e4a787
2015-08-23 21:03 - 2015-05-10 14:33 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-23 21:00 - 2009-07-14 06:45 - 00510336 _____ C:\Windows\system32\FNTCACHE.DAT
2015-08-23 20:57 - 2014-12-12 15:45 - 00000000 ____D C:\Windows\system32\appraiser
2015-08-23 20:57 - 2014-04-30 15:16 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-08-23 20:17 - 2015-03-06 17:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-08-23 20:16 - 2014-12-29 12:03 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-23 20:14 - 2014-02-07 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-23 20:12 - 2014-02-07 17:32 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-23 20:12 - 2014-02-07 17:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-23 19:57 - 2009-07-14 04:34 - 00000580 _____ C:\Windows\win.ini
2015-08-23 19:24 - 2014-02-07 13:55 - 00144320 _____ C:\Users\Hp\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-23 19:01 - 2015-03-06 18:05 - 00000000 ____D C:\Users\Hp\AppData\Local\30464E43-1425661500-3639-5154-C80AA9281904
2015-08-23 19:01 - 2015-03-06 18:04 - 00000000 ____D C:\Users\Hp\AppData\Local\30464E43-1425661484-3639-5154-C80AA9281904
2015-08-23 18:26 - 2014-11-30 13:23 - 00000000 __SHD C:\Users\Hp\AppData\Local\EmieBrowserModeList
2015-08-23 18:26 - 2014-04-24 10:07 - 00000000 __SHD C:\Users\Hp\

tylon Messages postés 4 Date d'inscription samedi 5 septembre 2015 Statut Membre Dernière intervention 15 mai 2016
5 sept. 2015 à 17:04

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:04-09-2015
Exécuté par Hp (2015-09-05 16:56:38)
Exécuté depuis C:\Users\Hp\Downloads
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

Administrateur (S-1-5-21-2193914219-2526987996-3137271002-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-2193914219-2526987996-3137271002-1003 - Limited - Enabled)
Hp (S-1-5-21-2193914219-2526987996-3137271002-1000 - Administrator - Enabled) => C:\Users\Hp
Invité (S-1-5-21-2193914219-2526987996-3137271002-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-2193914219-2526987996-3137271002-1000\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
adblocker (HKLM-x32\...\{F7F538FD-5E2F-47CF-8669-5BC9B0B6A126}) (Version: 1.1.0.31 - adblocker) <==== ATTENTION
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Reader XI (11.0.09) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Angry Birds Star Wars (HKLM-x32\...\{3EF6F0AE-5471-44BF-9809-B6FAD9D04478}) (Version: 1.1.2 - Rovio)
Apple Application Support (32 bits) (HKLM-x32\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{28791292-D18D-42FA-AE66-3D3D20AA8618}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5ED7462B-EF58-4757-B609-53755021EC34}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AutoCAD 2014 - Français (French) (Version: 19.1.18.0 - Autodesk) Hidden
AutoCAD 2014 Language Pack - Français (French) (Version: 19.1.18.0 - Autodesk) Hidden
Autodesk App Manager (HKLM-x32\...\{C070121A-C8C5-4D52-9A7D-D240631BD433}) (Version: 1.1.0 - Autodesk)
Autodesk AutoCAD 2014 - Français (French) (HKLM\...\AutoCAD 2014 - Français (French)) (Version: 19.1.18.0 - Autodesk)
Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.1.3.0 - Autodesk)
Autodesk Content Service (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (x32 Version: 3.1.3.0 - Autodesk) Hidden
Autodesk Featured Apps (HKLM-x32\...\{F732FEDA-7713-4428-934B-EF83B8DD65D0}) (Version: 1.1.0 - Autodesk)
Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)
AVG PC TuneUp 2015 (fr-FR) (x32 Version: 15.0.1001.238 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.238 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.238 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
GamesDesktop 002.005010080 (HKLM-x32\...\gmsd_es_005010080_is1) (Version: - GAMESDESKTOP) <==== ATTENTION
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
HP Support Assistant (HKLM-x32\...\{E92D47A1-D27D-430A-8368-0BAFD956507D}) (Version: 5.2.9.2 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
Hydrogen 0.9.6 preview release for windows (HKLM-x32\...\{B24839E5-A70C-48AD-B4D9-B9FB46B4B038}_is1) (Version: - hydrogen-music.org)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6276.0 - IDT)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}) (Version: 12.1.0.71 - Apple Inc.)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Junk Cleaner (x32 Version: 1.1.6.2 - Pandaje Group) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mises à jour NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 fr)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Pilote graphique 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - )
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SketchUp Import for AutoCAD 2014 (HKLM-x32\...\{644E9589-F73A-49A4-AC61-A953B9DE5669}) (Version: 1.1.0 - Autodesk)
Skype(TM) 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartWeb (HKLM-x32\...\SmartWeb) (Version: 8.0.9 - SoftBrain Technologies Ltd.) <==== ATTENTION
SoftEther VPN Client (HKLM\...\softether_sevpnclient) (Version: 4.18.9570 - SoftEther VPN Project)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)
TuneUp Utilities 2014 (fr-FR) (x32 Version: 14.0.1000.93 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (fr-FR) (x32 Version: 13.0.4000.264 - TuneUp Software) Hidden
TunnelBear (HKLM-x32\...\{b4cc6c14-7f48-445f-a563-aa0b1a1efcdb}) (Version: 2.3.17.0 - TunnelBear)
TunnelBear (x32 Version: 2.3.17.0 - TunnelBear) Hidden
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{DD51BA84-F589-4939-B5FE-5538B3DCC12E}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WordSurfer 1.10.0.19 (HKLM-x32\...\WordSurfer_1.10.0.19) (Version: 1.10.0.19 - WordSurfer)
Yahoo Community Smartbar Engine (HKU\S-1-5-21-2193914219-2526987996-3137271002-1000\...\{95853dd5-9936-4e89-854e-4f87b84cf655}) (Version: 11.63.66.17714 - Linkury Inc.) <==== ATTENTION

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2193914219-2526987996-3137271002-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2193914219-2526987996-3137271002-1000_Classes\CLSID\{7DE1BE5C-CEBA-4F1D-ACBC-9CE11EE9A2A1}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2193914219-2526987996-3137271002-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2014\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-2193914219-2526987996-3137271002-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2014\fr-FR\acadficn.dll (Autodesk, Inc.)

==================== Points de restauration =========================

23-08-2015 17:40:04 TunnelBear
23-08-2015 17:44:37 Installation du package de pilotes : TunnelBear Provider V9 Cartes réseau
23-08-2015 18:27:59 Removed Boxore Client
23-08-2015 18:29:43 Removed Autodesk Material Library 2014.
23-08-2015 18:56:44 Removed Boxore Client
23-08-2015 19:37:09 Windows Update
03-09-2015 13:25:10 Installation du package de pilotes : SoftEther Corporation Cartes réseau
03-09-2015 13:56:28 Windows Update
04-09-2015 17:45:59 TunnelBear
04-09-2015 22:27:06 Windows Update

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-03-01 17:45 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00455A2E-649D-43FC-841C-41E36819E30A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {07FCDF4C-8522-491B-B616-DB0B6F403ED3} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-11 -> Pas de fichier <==== ATTENTION
Task: {0F41DF17-7121-4809-8355-F3D1784B756C} - System32\Tasks\69b46fb8-bf6e-4109-b479-04d8d43fcb91-12 => C:\Program Files (x86)\HQProVideo 1.6V02.01\69b46fb8-bf6e-4109-b479-04d8d43fcb91-12.exe <==== ATTENTION
Task: {113F5CE7-2F1C-4737-A622-92784AA29B3D} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-1 -> Pas de fichier <==== ATTENTION
Task: {1B1D9C84-BC4B-4290-AE1D-03DAEFB2563E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {250C8FC5-A872-498A-BAD2-B84D5935D816} - \e36e30f5-7407-4d30-bac2-b72fa93c846c-1 -> Pas de fichier <==== ATTENTION
Task: {25F3BA63-4B16-45CA-ACB2-F9680E42A7BC} - \e36e30f5-7407-4d30-bac2-b72fa93c846c-2 -> Pas de fichier <==== ATTENTION
Task: {2B4967B2-2C56-493A-A21C-7538DEAC9188} - System32\Tasks\Tempo Runner vobdwou => C:\ProgramData\CeroHimna\vobawou.exe [2015-08-22] ()
Task: {32E4D11E-D4F9-4302-8417-7A7E19C3631E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {34B0931F-7239-4866-82D5-65CE84F394ED} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {37B8FE59-7DA2-4950-B2C1-8A6C478E6317} - System32\Tasks\69b46fb8-bf6e-4109-b479-04d8d43fcb91-2 => C:\Program Files (x86)\HQProVideo 1.6V02.01\69b46fb8-bf6e-4109-b479-04d8d43fcb91-2.exe <==== ATTENTION
Task: {41772BCA-C38B-4FF1-8EED-A987DEB4B064} - System32\Tasks\0820c020-f579-4a5d-b7e6-d19ea68c265d-4 => C:\Program Files (x86)\Media+PlayerVidEd2.5\0820c020-f579-4a5d-b7e6-d19ea68c265d-4.exe <==== ATTENTION
Task: {42D3E18E-03E3-4307-8203-5415E2410A29} - System32\Tasks\69b46fb8-bf6e-4109-b479-04d8d43fcb91-1 => C:\Program Files (x86)\HQProVideo 1.6V02.01\HQProVideo 1.6V02.01-codedownloader.exe <==== ATTENTION
Task: {43B9A9A9-B6E3-4380-804F-BA8BF0C8859D} - System32\Tasks\{F0AB7140-9B7D-4987-86EF-857B46D6D74F} => pcalua.exe -a C:\Users\Hp\Downloads\sp51029.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {460D1B1A-8FDE-4EE6-AFD3-BB05327E8CB4} - System32\Tasks\{738D9D79-6A37-4845-9683-4EB0B12C0328} => pcalua.exe -a C:\Users\Hp\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=ium6
Task: {4722338B-34BA-4B7D-BAF2-15410AC923FD} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {499E2B49-D7BA-41C0-B6B7-5636B76DCFE8} - System32\Tasks\SPBIW_UpdateTask_Time_3130313637303832312d3437415a556c2a3223346c41 => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {4A726AB7-A388-4A05-A76B-0A9DF271B56F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4C457EF7-9260-42C5-98BB-4B9B82BE6DE1} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-2 -> Pas de fichier <==== ATTENTION
Task: {5179EC37-7550-4541-947B-A7826A0A9E91} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-3 -> Pas de fichier <==== ATTENTION
Task: {57A270ED-A074-4683-B3C8-A5C5144C37E9} - System32\Tasks\HJPQXRTER => C:\ProgramData\c1c05f7061d940b085ed209085e4a787\c1c05f7061d940b085ed209085e4a787.exe <==== ATTENTION
Task: {65817E11-0CD8-45B6-9DEC-01A28E81F88A} - System32\Tasks\Programme de mise à jour en ligne de Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-09-12] (Adobe Systems Incorporated)
Task: {6964AC9D-5B76-492F-B299-B239EBBD523D} - System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Core => C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe [2015-06-16] (Word Surfer)
Task: {699E941B-5477-4E06-828E-039696472D8B} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-5_user -> Pas de fichier <==== ATTENTION
Task: {709221ED-1213-4642-8C5C-8AB2839277D6} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Hp\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.) <==== ATTENTION
Task: {7219A7A7-CB55-4E96-A537-E436CFC3448F} - System32\Tasks\WS-Booster-S-1884037147 => c:\programdata\hostit\ws-booster\WS-Booster.exe <==== ATTENTION
Task: {7641305C-E076-47F4-A13C-E1676A38295C} - System32\Tasks\KMCLF => C:\ProgramData\1a1fd46aab584ca2b99da2dc1dd494df\1a1fd46aab584ca2b99da2dc1dd494df.exe [2015-05-10] () <==== ATTENTION
Task: {78D8F631-DC4E-4EBD-AEB1-306CB4E424B8} - \e36e30f5-7407-4d30-bac2-b72fa93c846c-3 -> Pas de fichier <==== ATTENTION
Task: {816522B8-E071-43EB-870D-565F9F65094E} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {8669514D-1706-44BD-9715-F6EAEA6FD003} - System32\Tasks\69b46fb8-bf6e-4109-b479-04d8d43fcb91-4 => C:\Program Files (x86)\HQProVideo 1.6V02.01\69b46fb8-bf6e-4109-b479-04d8d43fcb91-4.exe <==== ATTENTION
Task: {8A5DFE2E-3120-4C2C-BBC2-57A0115725C9} - System32\Tasks\{4B891C93-A346-4117-9B7F-5C0D1E3D9BB5} => pcalua.exe -a C:\Users\Hp\AppData\Roaming\mystartsearch\UninstallManager.exe -d C:\Users\Hp\AppData\Roaming\mystartsearch
Task: {8EE616E2-A880-4B5D-B0F0-C9007EF1688F} - System32\Tasks\0820c020-f579-4a5d-b7e6-d19ea68c265d-10_user => C:\Program Files (x86)\Media+PlayerVidEd2.5\0820c020-f579-4a5d-b7e6-d19ea68c265d-10.exe <==== ATTENTION
Task: {93229CDD-9E05-4757-AC9D-36AABA9ED035} - System32\Tasks\Install Google Chrome => C:\Program Files\NixSrv\packages\ecdca85f-1f7e-487f-95a2-13f8e131d194\NixHost.exe
Task: {983EA56D-F45F-40FC-887E-880A5F0A940E} - System32\Tasks\WordSurfer Auto Updater 1.10.0.19 Pending Update => C:\Program Files (x86)\WordSurfer_1.10.0.19\Update\WordSurferAutoUpdateClient.exe [2015-06-16] (Word Surfer)
Task: {9902F091-CC9E-456C-850D-80CEBD489082} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {C07022FD-CCF1-44C0-ABD2-B96B1DF841D5} - System32\Tasks\{8093C749-67D7-430B-8A29-F5E02D5DF673} => pcalua.exe -a C:\Users\Hp\Downloads\Minecraft_install.exe -d C:\Users\Hp\Downloads
Task: {C0B9C45F-A6EF-4C00-AC28-518BA0CE502F} - System32\Tasks\{C240BA73-BC58-4556-93DC-3DE5B083B62B} => pcalua.exe -a "C:\Users\Hp\Desktop\Adobe Photoshop CS2 (9.0) Fr\Crack et Keygen\Crack Activation Photoshop CS2 Fr.exe" -d "C:\Users\Hp\Desktop\Adobe Photoshop CS2 (9.0) Fr\Crack et Keygen"
Task: {C7DEFE77-2531-4685-8F43-0C905EFE9F28} - \e36e30f5-7407-4d30-bac2-b72fa93c846c-5 -> Pas de fichier <==== ATTENTION
Task: {CE1C8C94-3872-4693-B38E-7657335119F7} - System32\Tasks\{83B1698C-982F-4B31-8642-58BA39A21BE5} => pcalua.exe -a C:\Users\Hp\AppData\Roaming\oursurfing\UninstallManager.exe -c -ptid=cmi
Task: {CE3CBA24-02A6-4AA7-80A6-DCD1C39AB914} - \AutoKMS -> Pas de fichier <==== ATTENTION
Task: {D06F71C1-CF83-4DB5-8E67-441838A7131D} - \e36e30f5-7407-4d30-bac2-b72fa93c846c-4 -> Pas de fichier <==== ATTENTION
Task: {D5CEB2CB-7FAA-4991-A577-4873A78DFEBE} - System32\Tasks\Tempo Runner vob3wou => C:\ProgramData\CeroHimna\vobawou.exe [2015-08-22] ()
Task: {DC852FB6-ED8A-430C-BDE8-447AC352C22E} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-4 -> Pas de fichier <==== ATTENTION
Task: {DE4BE926-B0A5-43B8-93FE-A1D28AD56F97} - System32\Tasks\{D443BC5D-C33D-4108-AFAE-B5F22F0B4FC7} => Firefox.exe http://ui.skype.com/ui/0/6.13.73.104.456/fr/go/help.faq.installer?LastError=1618
Task: {E0401A3C-3201-4983-B639-6A55AB48085C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-11-24] (AVG Technologies)
Task: {E394D33F-8D31-4FC9-849D-9E76182E4F16} - System32\Tasks\{FE5F26AD-B59A-47FA-B5BE-F3047E860871} => pcalua.exe -a "C:\Users\Hp\Desktop\ad\Crack et Keygen\Crack Activation Photoshop CS2 Fr.exe" -d "C:\Users\Hp\Desktop\ad\Crack et Keygen"
Task: {E68E2E15-DADE-4D47-8765-54E450EA2E54} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-23] (Adobe Systems Incorporated)
Task: {E72A56DD-82E6-4014-9AB7-9A22133D3297} - \c5b5f03e-ca42-497c-abf8-a1f533e128ee-5 -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Tempo Runner vob3wou.job => C:\ProgramData\CeroHimna\vobawou.exe-/dgad C:\ProgramData\CeroHimna\vob3wou.exe
Task: C:\Windows\Tasks\Tempo Runner vobdwou.job => C:\ProgramData\CeroHimna\vobawou.exe-/dgad C:\ProgramData\CeroHimna\vobdwou.exe

==================== Modules chargés (Avec liste blanche) ==============

2014-02-06 19:23 - 2015-02-04 04:21 - 00115400 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-22 14:07 - 2015-08-22 14:07 - 00124864 _____ () C:\ProgramData\CeroHimna\vobwwou.exe
2015-09-03 14:40 - 2015-09-03 14:40 - 00227328 _____ () C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\jnsmA41B.tmp
2015-09-03 14:40 - 2015-09-03 14:40 - 00137728 _____ () C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\hnsbBE12.tmp
2014-11-24 13:48 - 2014-11-24 13:48 - 00713528 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-09-04 16:22 - 2015-09-04 16:22 - 00036352 _____ () C:\Program Files (x86)\TunnelBear\TBear.Maintenance.exe
2014-11-24 13:49 - 2014-11-24 13:49 - 00856888 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-08-22 14:07 - 2015-08-22 14:07 - 00124864 _____ () C:\ProgramData\CeroHimna\vobawou.exe
2015-09-04 21:04 - 2015-09-04 21:04 - 00205772 _____ () C:\Users\Hp\AppData\Local\Temp\nsx39D.tmp
2015-09-05 12:53 - 2015-09-04 19:19 - 03311760 _____ () C:\Users\Hp\AppData\Local\gmsd_es_005010080\upgmsd_es_005010080.exe
2015-09-05 12:53 - 2015-09-04 19:19 - 03982992 _____ () C:\Program Files (x86)\gmsd_es_005010080\gmsd_es_005010080.exe
2015-09-05 12:58 - 2015-09-05 12:59 - 00228296 _____ () C:\Users\Hp\AppData\Local\Temp\nsz3C02.tmp
2015-09-05 15:42 - 2015-09-05 15:42 - 01380352 _____ () C:\Program Files (x86)\30464E43-1441283969-3639-5154-C80AA9281904\knsj8ACE.tmp
2015-09-05 12:59 - 2015-09-05 12:59 - 00011264 _____ () C:\Users\Hp\AppData\Local\Temp\nsp8518.tmp\System.dll
2015-09-05 12:59 - 2015-09-05 12:59 - 00009728 _____ () C:\Users\Hp\AppData\Local\Temp\nsp8518.tmp\nsDialogs.dll
2015-09-05 12:59 - 2015-09-05 12:59 - 00025088 _____ () C:\Users\Hp\AppData\Local\Temp\nsp8518.tmp\registry.dll
2015-09-05 12:59 - 2015-09-05 12:59 - 00067584 _____ () C:\Users\Hp\AppData\Local\Temp\nsp8518.tmp\Math.dll
2015-09-05 12:59 - 2015-09-05 12:59 - 00058368 _____ () C:\Users\Hp\AppData\Local\Temp\nsp8518.tmp\nsCBHTML5.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)

==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2193914219-2526987996-3137271002-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 172.18.13.1 - 80.58.61.250
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{C4C480BD-F43B-43A7-9178-668445998088}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C44ACA7F-C84C-47AA-ABC0-90894DBE8ED9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8B723655-00ED-4F0C-BD04-20B7645A775A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{F5D16398-19A2-4DCF-9964-7537D2E4725C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{5E44F3FF-C825-4C9E-BF84-5E2AC83C12B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0AE488D4-574D-45DD-AED5-6050E2A786F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7A618580-6E50-44C0-BE96-6204CCD756A7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{BE46FDBF-FFB1-4961-A066-A5AB3940A1A6}] => (Allow) LPort=50248
FirewallRules: [TCP Query User{08C97495-C136-4EB3-AED2-871201D5CC55}C:\users\hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{E9D580A3-4EE1-474F-B062-0694B4BE520B}C:\users\hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{753782C1-112A-40BA-8A75-C7BB0B4FE597}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E8B71546-AE64-45EC-8165-BDA449A856EA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{E77F86AD-288F-41CE-A3AB-28F577BC8A64}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{74811B13-C716-4AB5-BBD9-715EB1BF9F57}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{B8383514-0FF4-4866-A721-8C6BD1C8445E}C:\users\hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{E1D89B9F-FBF9-432F-A081-3F98246C1ACA}C:\users\hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{4CC2E315-4069-4EA0-84CF-FBF3C795D891}] => (Allow) C:\Users\Hp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F591D7CB-6250-453E-B60C-30A45BFC7DFE}] => (Allow) C:\Users\Hp\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E0B84063-5A4E-4B9A-A573-90502DF835FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3F4CAA9C-77D6-45F1-9CB7-F1A8A4CC6F2D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{DDF98930-F02B-49A5-8120-F5F2BE99267A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{91BE116A-0A37-4316-8B2E-1F10A1F76639}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{67BD3878-0755-4FB2-91F8-92C3EB21A34B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{CB11E08B-6389-4ED1-8DB8-F54F54A9D4A0}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [TCP Query User{2847DC6D-90E3-4666-B03A-F61CEB76F8AF}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [UDP Query User{A65E9696-C96C-485E-A635-D73DA001B468}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe
FirewallRules: [{6C8B931C-B10B-4541-8BE1-35C7D8C2A9A5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2B425DAB-5B0A-4392-ABA2-FD1BB9385892}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FC10446B-EEDB-4D4A-8A41-570CBEDA0633}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3CCBC0E0-B126-443E-B241-BFC42F47EBF7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F0B0E795-5C7A-4FA2-9AB0-49E673BB4FC8}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{7F2294F5-C614-4DFB-8EF8-A0F2672DFA0B}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{28D4411D-728F-4E95-9D62-DA50CE0BD003}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{477CA028-FD4D-4930-B572-4B0EA075C574}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{A25E2101-984D-41F0-bE68-8D224C134490}] => (Allow) C:\ProgramData\CeroHimna\vobawou.exe
FirewallRules: [{8CFABDCA-1FA2-48A3-BFC7-7B88FE5B5DE3}] => (Allow) C:\ProgramData\CeroHimna\vobawou.exe
FirewallRules: [{D9A7056D-8C2F-4711-8383-6EEB3C5D6E9E}] => (Allow) C:\ProgramData\CeroHimna\vobawou.exe
FirewallRules: [{A889CBE4-4A3D-456D-A9BA-99A581B2D771}] => (Allow) C:\ProgramData\CeroHimna\vobawou.exe
FirewallRules: [{07C2ED4A-9623-4F39-BF91-5B112AA3D1DF}] => (Allow) C:\ProgramData\CeroHimna\vobawou.exe
FirewallRules: [{163D2AD2-E489-48BB-BFDB-D04685042A1D}] => (Allow) C:\Users\Hp\AppData\Roaming\IQIYI Video\LStyle\GpUpdate.exe
FirewallRules: [{C3971800-098A-4528-A506-65FD55F6A871}] => (Allow) C:\Users\Hp\AppData\Roaming\IQIYI Video\LStyle\QyUpdate.exe
FirewallRules: [{3DB91E81-2EEC-4122-83F2-A127E840D166}] => (Allow) C:\IQIYI Video\Common\QyKernel.exe
FirewallRules: [{561197A1-5B2F-4BDE-BD78-40E85E13F7F6}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCmgrInstallGuide.exe
FirewallRules: [{0B2EAFA0-2A34-42FD-BAA9-8367D8124237}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCTray.exe
FirewallRules: [{5EE79329-92B1-4AE2-BCBE-CA72FDC2A77F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCMgr.exe
FirewallRules: [{AD6906EB-B4F3-46A5-9805-EE7E9BE05B4F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCRTP.exe
FirewallRules: [{4C50F7B6-9A91-41EE-8342-76D3F11AAC0C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMDL.exe
FirewallRules: [{628C0148-9423-4437-B9FB-0AD8C39E83A4}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\bugreport.exe
FirewallRules: [{34BFA9BD-91B8-4886-9934-CB7282207CAB}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCFileOpen.exe
FirewallRules: [{E31EE804-1737-4322-AB92-668090E5DEE1}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLeakScan.exe
FirewallRules: [{E1EC5BEF-89A5-4345-9B97-824913DF4622}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPConfig.exe
FirewallRules: [{AF4387DB-501D-4D31-9CCC-9D39B91D433F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftMgr.exe
FirewallRules: [{C448B5BC-FDCC-40D1-BAE7-38F9B7FA041B}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\plugins\QMNetMon\QQPCNetFlow.exe
FirewallRules: [{CD6E44E7-C79F-4E00-979E-FC941307791F}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCBTU.exe
FirewallRules: [{0AEDE22B-5D5E-4D64-905B-97270CD8DDD9}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCClinic.exe
FirewallRules: [{7A88BD0E-32B6-4649-ACE2-D26F76870A69}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCLaunch.exe
FirewallRules: [{9614BE0E-B053-446E-BEAA-6C52177B7FD5}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMUpdate\QQPCMgrUpdate.exe
FirewallRules: [{7CB5D1B1-566D-469C-B6FD-BE71E0A7F718}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSoftGame.exe
FirewallRules: [{B8BA0490-ACA5-41B9-AA68-48A51D8EDDCC}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCSysOptimize.exe
FirewallRules: [{719C6AB0-3276-4454-97ED-0545651F5B0C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCUpdateAVLib.exe
FirewallRules: [{AABC74AE-EBBE-473F-91BD-99475C9FBC99}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQRepair.exe
FirewallRules: [{B7AEFE86-62A0-47A1-80D4-D2F312448B93}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\Uninst.exe
FirewallRules: [{AA2A93F5-1ECE-4471-AD53-72D854E978AF}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QQPCPatch.exe
FirewallRules: [{2718C7B0-F547-4E16-9E30-30431DC9F00C}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\TpkUpdate.exe
FirewallRules: [{D9370CD5-B019-41AE-91F1-1A3E9872C0EA}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMRouterMgr.exe
FirewallRules: [{7D566A65-7552-474B-BE4B-A9E78E43BA73}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAccountProtection.exe
FirewallRules: [{DC839146-EEC9-4918-BBC1-955D0430B292}] => (Allow) C:\Program Files (x86)\Tencent\QQPCMgr\10.11.16588.235\QMAdBlock.exe
FirewallRules: [{3DD9068A-E2E8-40C0-B83E-B0C11B2BB0EE}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{6FD89EBD-4A72-48CC-9100-C94B9C1D2598}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{8DF08CE5-F00C-4494-9A61-241C6B7B2363}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\bugreport_xf.exe
FirewallRules: [{AEC1862F-AF11-4CDA-8E34-7490A1B67E73}] => (Allow) C:\program files (x86)\common files\tencent\qqdownload\130\tencentdl.exe
FirewallRules: [{A3660BD8-FAE6-405C-8CDB-B01968CAF6DD}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{16C30CB5-F98F-4FAD-BD90-69B4E337EDF6}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{781E090F-99AA-4DCC-991B-F02391BB6B84}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [{1EB4BF2F-ADCA-4968-9B13-4E3469D3279F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [{84A53C62-CC30-4A13-9B17-9328DB2D2683}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{DCAFDEA0-598F-40F3-8DA2-9362F9A7A699}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{3DAC1C8E-33E3-494E-B94B-BC5CECC77A72}] => (Allow) C:\Users\Hp\AppData\Local\Temp\nsuC65C.tmp\Installer-75886069.exe
FirewallRules: [{F420366A-B3CC-48EC-80CD-FAEB619C0E75}] => (Allow) C:\Users\Hp\AppData\Local\Temp\nsuC65C.tmp\Installer-75886069.exe

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: SPDRIVER_1.42.0.1828
Description: SPDRIVER_1.42.0.1828
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SPDRIVER_1.42.0.1828
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: A309
Description: A309
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Périphérique système de base
Description: Périphérique système de base
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Périphérique système de base
Description: Périphérique système de base
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Périphérique système de base
Description: Périphérique système de base
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (09/05/2015 12:20:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 12:20:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/05/2015 12:20:22 PM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail (2580) WindowsMail0: La sauvegarde a été arrêtée car elle a été interrompue par le client ou la connexion avec le client a échoué.

Error: (09/05/2015 11:40:28 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 11:40:28 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/05/2015 11:06:22 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 11:06:22 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/04/2015 05:30:11 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/04/2015 05:30:11 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/04/2015 05:28:38 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Erreurs système:
=============
Error: (09/05/2015 12:30:02 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: L'appel ScRegSetValueExW a échoué pour FailureCommand avec l'erreur :
%%5

Error: (09/05/2015 12:29:56 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: L'appel ScRegSetValueExW a échoué pour Start avec l'erreur :
%%5

Error: (09/05/2015 12:20:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SPDRIVER_1.42.0.1828 n'a pas pu démarrer en raison de l'erreur :
%%3

Error: (09/05/2015 11:40:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SPDRIVER_1.42.0.1828 n'a pas pu démarrer en raison de l'erreur :
%%3

Error: (09/05/2015 11:37:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service ujepxekjye s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 600 millisecondes : Redémarrer le service.

Error: (09/05/2015 11:37:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service avewloutid s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 600 millisecondes : Redémarrer le service.

Error: (09/05/2015 11:37:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Programme d'installation pour les modules Windows s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (09/05/2015 11:37:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (09/05/2015 11:37:24 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service ujepxekjye s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 600 millisecondes : Redémarrer le service.

Error: (09/05/2015 11:37:23 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Convert Operation s'est terminé de façon inattendue pour la 1ème fois.

Microsoft Office:
=========================
Error: (09/05/2015 12:20:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 12:20:40 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/05/2015 12:20:22 PM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail2580WindowsMail0:

Error: (09/05/2015 11:40:28 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 11:40:28 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/05/2015 11:06:22 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/05/2015 11:06:22 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/04/2015 05:30:11 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (09/04/2015 05:30:11 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (09/04/2015 05:28:38 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

CodeIntegrity:
===================================
Date: 2015-08-23 18:09:51.457
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2015-08-23 18:08:38.645
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2015-08-23 18:07:44.199
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2015-08-23 18:07:22.629
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2015-08-23 18:07:22.399
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume2\Program Files\SpaceSoundPro\SpaceSoundPro.dll car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i7 CPU Q 720 @ 1.60GHz
Pourcentage de mémoire utilisée: 42%
Mémoire physique - RAM - totale: 6134.87 MB
Mémoire physique - RAM - disponible: 3549.16 MB
Mémoire virtuelle totale: 12267.95 MB
Mémoire virtuelle disponible: 9554.09 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:596.07 GB) (Free:435.56 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 7389067B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=596.1 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================

Discussions similaires

Est ce que le site tlauncher est dangereux ?

Live tiktok

"La France est arrivée à l'installation locale" ça veut dire quoi ?

comment avoir accès à ma boîte mail live.fr

comment regarder mes mails "live.fr"

End of Fixlog 15:33:52

Discussions similaires

Newsletters