cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015
Ran by Administrateur (administrator) on ERIC on 31-03-2015 18:18:26
Running from C:\Documents and Settings\Administrateur.EBM2003\Bureau
Loaded Profiles: db2admin & Administrateur (Available profiles: ASPNET & ERIC & db2admin & tws86 & michel & Administrateur)
Platform: Microsoft Windows Server 2003 R2 Service Pack 2 (X86) OS Language: Français (France)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> smss.exe
Failed to access process -> csrss.exe
Failed to access process -> winlogon.exe
Failed to access process -> services.exe
Failed to access process -> lsass.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> svchost.exe
Failed to access process -> spoolsv.exe
Failed to access process -> NetworkLicenseServer.exe
Failed to access process -> appmgr.exe
Failed to access process -> db2dasrrm.exe
Failed to access process -> db2mgmtsvc.exe
Failed to access process -> elementmgr.exe
Failed to access process -> svchost.exe
Failed to access process -> httpd.exe
Failed to access process -> inetinfo.exe
Failed to access process -> IPROSetMonitor.exe
Failed to access process -> tcpsvcs.exe
Failed to access process -> httpd.exe
Failed to access process -> explorer.exe
Failed to access process -> omtsreco.exe
Failed to access process -> smax4pnp.exe
Failed to access process -> acrotray.exe
Failed to access process -> agntsrvc.exe
Failed to access process -> hpwuSchd2.exe
Failed to access process -> PrintDisp.exe
Failed to access process -> Apache.exe
Failed to access process -> cmd.exe
Failed to access process -> oracle.exe
Failed to access process -> dbsnmp.exe
Failed to access process -> UnlockerAssistant.exe
Failed to access process -> vspdfprsrv.exe
Failed to access process -> oracle.exe
Failed to access process -> oracle.exe
Failed to access process -> oracle.exe
Failed to access process -> avp.exe
Failed to access process -> oracle.exe
Failed to access process -> ISUSPM.exe
Failed to access process -> Skype.exe
Failed to access process -> ctfmon.exe
Failed to access process -> PrintCtrl.exe
Failed to access process -> Apache.exe
Failed to access process -> isqlplus
Failed to access process -> java.exe
Failed to access process -> java.exe
Failed to access process -> svchost.exe
Failed to access process -> srvcsurg.exe
Failed to access process -> TeamViewer_Service.exe
Failed to access process -> svchost.exe
Failed to access process -> srvany.exe
Failed to access process -> httpd.exe
Failed to access process -> mysqld.exe
Failed to access process -> wins.exe
Failed to access process -> avp.exe
Failed to access process -> nfsclnt.exe
Failed to access process -> db2rcmd.exe
Failed to access process -> UninstallMonitor.exe
Failed to access process -> nfssvc.exe
Failed to access process -> svchost.exe
Failed to access process -> httpd.exe
Failed to access process -> svchost.exe
Failed to access process -> FNPLicensingService.exe
Failed to access process -> wmiprvse.exe
Failed to access process -> IntraMessenger.exe
Failed to access process -> IM-check.exe
Failed to access process -> Acrobat.exe
Failed to access process -> FRST.exe
Failed to access process -> notepad.exe
Failed to access process -> notepad.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-08-01] (Analog Devices, Inc.)
HKLM\...\Run: [Acrobat Assistant 8.0] => D:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [624056 2011-08-30] (Adobe Systems Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-29] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [254696 2011-04-08] (Sun Microsystems, Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [PrintDisp] => C:\WINDOWS\system32\PrintDisp.exe [870400 2012-10-29] (ActMask Co.,Ltd - http://www.all2pdf.com)
HKLM\...\Run: [QuickTime Task] => D:\Program Files\QuickTime\qttask.exe [421888 2011-10-24] (Apple Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [UnlockerAssistant] => d:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKLM\...\Run: [vspdfprsrv.exe] => C:\Program Files\Avanquest\Expert PDF 9 Converter\vspdfprsrv.exe [6910976 2013-05-17] ()
HKLM\...\Run: [AVP] => C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe [741360 2013-11-27] (Kaspersky Lab ZAO)
Winlogon\Notify\klogon: C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox] ATTENTION! ====> ZeroAccess?
HKLM\...\Policies\Explorer: [ShowSuperHidden] 1
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKLM\...\Command Processor: <======= ATTENTION
HKU\S-1-5-21-1429000446-17085958-1634398645-500\...\Run: [ISUSPM] => C:\Program Files\Fichiers communs\InstallShield\UpdateService\ISUSPM.exe [206112 2008-10-24] (Macrovision Corporation)
HKU\S-1-5-21-1429000446-17085958-1634398645-500\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22041192 2014-08-27] (Skype Technologies S.A.)
HKU\S-1-5-21-1429000446-17085958-1634398645-500\...\Run: [DWQueuedReporting] => C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation)
HKU\S-1-5-21-1429000446-17085958-1634398645-500\...\Policies\Explorer: [CDRAutoRun] 0
HKU\S-1-5-21-1429000446-17085958-1634398645-500\...\MountPoints2: {919ac15f-0d2e-11e2-97aa-001e4fd9e4b9} - "F:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-18\...\RunOnce: [tscuninstall] => C:\WINDOWS\system32\tscupgrd.exe [44032 2007-03-07] (Microsoft Corporation)
Lsa: [Notification Packages] RASSFM KDCSVC WDIGEST scecli
Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\IntraMessenger.lnk
ShortcutTarget: IntraMessenger.lnk -> C:\Program Files\IntraMessenger\IntraMessenger.exe (THeUDS)
Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage\IntraMessenger.lnk
ShortcutTarget: IntraMessenger.lnk -> C:\Program Files\IntraMessenger\IntraMessenger.exe (THeUDS)
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - No File
ShellIconOverlayIdentifiers: [KAVOverlayIcon] -> {dd230880-495a-11d1-b064-008048ec2fc5} => C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\shellex.dll (Kaspersky Lab ZAO)
ShellIconOverlayIdentifiers: [NFS Shell Icon Overlay Identifier] -> {04EA2470-913A-11D2-8CB8-0000F8083420} => C:\WINDOWS\system32\nfssprop.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1429000446-17085958-1634398645-500\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1429000446-17085958-1634398645-1069\Software\Microsoft\Internet Explorer\Main,Start Page = res://iesetup.dll/hardAdmin.htm
HKU\S-1-5-21-1429000446-17085958-1634398645-500\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1429000446-17085958-1634398645-500\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.horizont-it.com/products/
http://www.horizont-it.com/
http://www.google.fr/
SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0103&cd=2XzuyEtN2Y1L1QzutDtDtC0EyE0F0Dzy0EyE0BzyyEyEzyyEtN0D0Tzu0SyByCtDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1615469886&ir=
SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0103&cd=2XzuyEtN2Y1L1QzutDtDtC0EyE0F0Dzy0EyE0BzyyEyEzyyEtN0D0Tzu0SyByCtDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1615469886&ir=
SearchScopes: HKU\S-1-5-21-1429000446-17085958-1634398645-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Aide pour le lien d'Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30] (Adobe Systems Incorporated)
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2011-08-30] (Adobe Systems Incorporated)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll [2015-03-03] (Google Inc.)
Toolbar: HKLM - No Name - {10921475-03CE-4E04-90CE-E2E7EF20C814} - No File
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2011-08-30] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-1429000446-17085958-1634398645-500 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-1429000446-17085958-1634398645-500 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2011-08-30] (Adobe Systems Incorporated)
DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.dell.com/systemprofiler/SysPro.CAB
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {1241F20B-0688-45A5-ADB2-208AFE4A5DDC} http://softplex.servehttp.com:5821/goglobal/plugins/gg-activex.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB
DPF: {33415AC7-AFFA-4D55-B41C-C64C0D07DFCA} http://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISWebManager.CAB
DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} http://i.dell.com/images/global/js/scanner/SysProExe.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1239800765826
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection2.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {A796D216-2DE1-4EA8-BABB-FE6E7C959098} http://www.hp.com/cpso-support-new/SDD/hpsddObjSigned.cab
DPF: {BC7B3941-3E35-4C50-8D16-30EC32767A5C} https://twad.horizont-it.com/zli_net_module/netmodule.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://symark.webex.com/client/T25L/webex/ieatgpc.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll [2013-09-25] (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll [2008-11-21] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File []
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 03 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{5F2F2DB2-46A1-4FF4-AB35-7DC0CD0372BF}: [NameServer] 213.244.0.15,213.244.0.16

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Administrateur.EBM2003\Application Data\Mozilla\Firefox\Profiles\9zdx0rwy.default-1424182960859
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1200112.dll [2013-02-18] (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @rim.com/npappworld -> C:\Program Files\Research In Motion Limited\Plug-in du navigateur BlackBerry App World\npappworld.dll [2011-09-01] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-06] (Google Inc.)
FF Plugin HKU\S-1-5-21-1429000446-17085958-1634398645-500: @citrixonline.com/appdetectorplugin -> C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\Citrix\Plugins\104\npappdetector.dll [2014-08-29] (Citrix Online)
FF Plugin HKU\S-1-5-21-1429000446-17085958-1634398645-500: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\atgpcdec.dll [2009-06-10] (WebEx Communications, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\atgpcext.dll [2009-06-10] (WebEx Communications, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\atmccli.dll [2009-06-10] ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ieatgpc.dll [2009-10-12] (WebEx Communications, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npatgpc.dll [2009-06-10] (WebEx Communications, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2011-08-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2011-11-30] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ptexmeet.dll [2009-10-12] (WebEx Communications Inc.)
FF Extension: IE Tab 2 (FF 3.6+) - C:\Documents and Settings\Administrateur.EBM2003\Application Data\Mozilla\Firefox\Profiles\9zdx0rwy.default-1424182960859\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2015-02-17]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-03-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-01-30]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2010-04-13]

Chrome:
=======
CHR Profile: C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (AccelerateTab) - C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jgjafhkemfjfgdmjcmhofijphjmaanak [2015-02-19]
CHR Extension: (AD Block) - C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lfgjbmhakaffflkjecineeaadpidgikb [2014-02-28]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.PDFTransformer.Classic.3.0; C:\Program Files\ABBYY PDF Transformer 3.0\NetworkLicenseServer.exe [759048 2009-04-27] (ABBYY)
R2 appmgr; C:\WINDOWS\system32\serverappliance\appmgr.exe [135168 2007-02-17] (Microsoft Corporation)
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe [741360 2013-11-27] (Kaspersky Lab ZAO)
S3 B4-Service; C:\Documents and Settings\Administrateur.EBM2003\Mes documents\B4-Service.exe [1007472 2012-08-29] ()
S3 Blackberry Device Manager; C:\Program Files\Fichiers communs\Research In Motion\USB Drivers\BbDevMgr.exe [585728 2014-01-21] (BlackBerry Limited) [File not signed]
R2 Client For NFS; C:\WINDOWS\system32\nfsclnt.exe [53760 2007-03-07] (Microsoft Corporation) [File not signed]
S2 coudmgr; C:\WINDOWS\System32\svchost.exe [14848 2007-03-07] (Microsoft Corporation)
S2 DB2-0; D:\Program Files\IBM\SQLLIB\BIN\db2syscs.exe [144744 2010-12-08] (International Business Machines Corporation)
R2 DB2DAS00; D:\Program Files\IBM\SQLLIB\\bin\db2dasrrm.exe [181608 2010-12-08] (International Business Machines Corporation)
S3 DB2GOVERNOR_DB2COPY1; D:\Program Files\IBM\SQLLIB\BIN\db2govds.exe [23912 2010-12-08] (International Business Machines Corporation)
S3 DB2LICD_DB2COPY1; D:\Program Files\IBM\SQLLIB\BIN\db2licd.exe [128360 2010-12-08] (International Business Machines Corporation)
R2 DB2MGMTSVC_DB2COPY1; D:\Program Files\IBM\SQLLIB\BIN\db2mgmtsvc.exe [37736 2010-12-08] (International Business Machines Corporation)
R2 DB2REMOTECMD_DB2COPY1; D:\Program Files\IBM\SQLLIB\BIN\db2rcmd.exe [34664 2010-12-08] (International Business Machines Corporation)
S3 DB2TS - DB2-0; D:\Program Files\IBM\SQLLIB\BIN\cielock.exe [185704 2010-12-08] (International Business Machines Corporation)
S3 Dfs; C:\WINDOWS\system32\Dfssvc.exe [164864 2007-03-07] (Microsoft Corporation)
S3 DXINFO36; E:\xinfo36\server\LOAD\SRVANY.EXE [13312 2013-06-18] () [File not signed]
R2 elementmgr; C:\WINDOWS\system32\serverappliance\elementmgr.exe [79360 2007-02-17] (Microsoft Corporation)
R3 FLEXnet Licensing Service; C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2011-07-27] (Macrovision Europe Ltd.) [File not signed]
S4 HidServ; C:\WINDOWS\System32\svchost.exe [14848 2007-03-07] (Microsoft Corporation)
S2 HORIZONT RDBMS Database System - PostgreSQL; e:\webadminz\hdb\pgsql\bin\pg_ctl.exe [77312 2015-02-03] (PostgreSQL Global Development Group) [File not signed]
R2 HORIZONTWebAppsFramework-ApacheHTTPServer; e:\webadminz\hwf\httpd\bin\httpd.exe [20992 2015-01-22] (Apache Software Foundation) [File not signed]
R2 IAS; C:\WINDOWS\System32\ias.dll [8192 2007-03-07] (Microsoft Corporation)
S2 IBMWAS70Service - tws86; E:\IBM\TWA\eWAS\bin\wasservice.exe [81920 2015-03-27] () [File not signed]
S3 IDriverT; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 IISADMIN; C:\WINDOWS\system32\inetsrv\inetinfo.exe [14336 2007-03-07] (Microsoft Corporation)
R2 Intel(R) PROSet Monitoring Service; C:\WINDOWS\system32\IProsetMonitor.exe [112800 2011-04-11] (Intel Corporation)
S4 IsmServ; C:\WINDOWS\System32\ismserv.exe [40448 2007-03-07] (Microsoft Corporation)
S4 kdc; C:\WINDOWS\System32\lsass.exe [16384 2007-03-07] (Microsoft Corporation)
S3 kudcma_DB2; D:\Program Files\IBM\SQLLIB\itma\TMAITM6\KUDCMA_DB2.exe [1217896 2010-12-08] ()
S4 LicenseService; C:\WINDOWS\System32\llssrv.exe [94720 2007-03-07] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2283296 2014-10-31] (IObit)
R2 LPDSVC; C:\WINDOWS\system32\tcpsvcs.exe [21504 2007-03-07] (Microsoft Corporation)
R2 MSFtpsvc; C:\WINDOWS\system32\inetsrv\inetinfo.exe [14336 2007-03-07] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [45568 2011-04-13] (Hewlett-Packard) [File not signed]
S2 Network_Server; C:\WINDOWS\system32\srvany.exe [15360 2009-05-03] () [File not signed]
R2 NfsSvc; C:\WINDOWS\system32\nfssvc.exe [36352 2007-03-07] (Microsoft Corporation)
S3 NtFrs; C:\WINDOWS\system32\ntfrs.exe [792576 2007-03-07] (Microsoft Corporation)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
R2 OracleMTSRecoveryService; E:\ORACLE9I\bin\omtsreco.exe [57603 2002-04-30] (Oracle Corporation) [File not signed]
R2 Oracleoracle9iAgent; E:\ORACLE9I\bin\agntsrvc.exe [28944 2002-04-26] (Oracle Corporation) [File not signed]
S3 Oracleoracle9iClientCache; E:\ORACLE9I\BIN\ONRSD.EXE [242328 2002-04-26] () [File not signed]
R2 Oracleoracle9iHTTPServer; E:\ORACLE9I\Apache\Apache\apache.exe [4096 2002-04-18] () [File not signed]
S3 Oracleoracle9iPagingServer; E:\ORACLE9I/bin/pagntsrv.exe [49152 2002-08-20] () [File not signed]
S3 Oracleoracle9iSNMPPeerEncapsulator; E:\ORACLE9I\BIN\ENCSVC.EXE [187392 2002-02-13] () [File not signed]
S3 Oracleoracle9iSNMPPeerMasterAgent; E:\ORACLE9I\BIN\AGNTSVC.EXE [254464 2002-02-13] () [File not signed]
R2 OracleServiceDXINFO35; e:\oracle9i\bin\ORACLE.EXE [29475088 2002-05-14] (Oracle Corporation) [File not signed]
R2 OracleServiceDXINFO36; e:\oracle9i\bin\ORACLE.EXE [29475088 2002-05-14] (Oracle Corporation) [File not signed]
R2 OracleServiceDXINFOE; e:\oracle9i\bin\ORACLE.EXE [29475088 2002-05-14] (Oracle Corporation) [File not signed]
R2 OracleServiceWEBADMIN; e:\oracle9i\bin\ORACLE.EXE [29475088 2002-05-14] (Oracle Corporation) [File not signed]
R2 OracleServiceWEBADMIZ; e:\oracle9i\bin\ORACLE.EXE [29475088 2002-05-14] (Oracle Corporation) [File not signed]
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [55808 2011-04-13] (Hewlett-Packard) [File not signed]
R2 Printer Control; C:\WINDOWS\system32\PrintCtrl.exe [102400 2012-10-21] (ActMask Co.,Ltd - HTTP://WWW.ALL2PDF.COM) [File not signed]
S3 RSoPProv; C:\WINDOWS\system32\RSoPProv.exe [67072 2007-03-07] (Microsoft Corporation)
S3 sacsvr; C:\WINDOWS\system32\sacsvr.dll [12288 2007-03-07] (Microsoft Corporation)
S2 SecureUpdateSvc; C:\Program Files\Secure Speed Dial\IE\SecureUpdate.exe [2580304 2014-05-28] () <==== ATTENTION
R2 SimpSMTPSVC; C:\WINDOWS\system32\simysvc.dll [126976 2008-04-14] () [File not signed]
R2 SMTPSVC; C:\WINDOWS\system32\inetsrv\inetinfo.exe [14336 2007-03-07] (Microsoft Corporation)
R2 srvcsurg; C:\WINDOWS\system32\serverappliance\srvcsurg.exe [67584 2003-03-27] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5426448 2014-12-15] (TeamViewer GmbH)
S4 TrkSvr; C:\WINDOWS\system32\trksvr.dll [50688 2007-03-07] (Microsoft Corporation)
S4 Tssdis; C:\WINDOWS\System32\tssdis.exe [72192 2007-03-07] (Microsoft Corporation)
S2 tws_cpa_agent_tws86; E:\IBM\TWA\TWS\ITA\cpa\ita\agentsvc.exe [11776 2014-07-03] (International Business Machines Corp.) [File not signed]
S2 tws_maestro_tws86; E:\IBM\TWA\TWS\bin\batchup.exe [659456 2012-12-10] () [File not signed]
S2 tws_netman_tws86; E:\IBM\TWA\TWS\bin\netman.exe [745472 2012-12-10] () [File not signed]
S3 tws_ssm_agent_tws86; E:\IBM\TWA\TWS\ssm\Bin\ssmagent.exe [134768 2012-12-10] (IBM Corporation)
S2 tws_tokensrv_tws86; E:\IBM\TWA\TWS\bin\tokensrv.exe [90112 2012-12-10] () [File not signed]
R2 tws_webadmin3_ec; E:\IBM\TWA\TWS\webadmin\bin\srvany.exe [15360 2013-12-11] () [File not signed]
S3 UBrokerService; E:\Universal\UBroker\bin\ubrsvc.exe [2211840 2011-11-22] (Stonebranch, Inc.) [File not signed]
R2 wampapache; E:\2WAMP\wamp\bin\apache\apache2.2.17\bin\httpd.exe [20549 2010-12-31] (Apache Software Foundation) [File not signed]
R2 wampmysqld; E:\2WAMP\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe [8133120 2010-12-31] () [File not signed]
R2 WINS; C:\WINDOWS\System32\wins.exe [158720 2011-08-10] (Microsoft Corporation)
S3 XINFO Collector Client; C:\Program Files\HORIZONT\XINFO Collector Client\SRVANY.EXE [13312 2009-04-29] () [File not signed]
S3 XINFO Collector Server; C:\Program Files\Horizont\XINFO Collector Server\xxrnsrv.exe [10240 2009-04-29] () [File not signed]
S2 Apache2.2; No ImagePath
R2 Eventlog; [X]
S3 HelpEvent700426906; cmd.exe /c PM9.tmp [X]
S2 MySql; E:/wamp/im-xampplite/xampplite/mysql/bin/mysqld-nt.exe [X]
S2 Net Client; C:\WINDOWS\system32\app2srv.exe SERVICE /SN="Net Client" /PM="C:\WINDOWS\inf\svchost.exe -install" /CON1 /SWH
S3 OracleORACLE9ITNSListenerDXINFO36; E:\ORACLE9I\BIN\TNSLSNR [X]
S3 WinHttpAutoProxySvc; winhttp.dll [X]
S4 XAMPP; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 Anydlc; C:\WINDOWS\System32\drivers\anydlc.sys [32640 1996-12-02] () [File not signed]
S3 Appn; C:\WINDOWS\System32\drivers\appn.sys [723168 1996-12-02] () [File not signed]
S3 AppnApi; C:\WINDOWS\System32\drivers\appnapi.sys [85888 1996-12-02] () [File not signed]
S4 AppnBase; C:\WINDOWS\System32\drivers\AppnBase.sys [142272 1996-12-02] () [File not signed]
R2 CITMDRV; C:\WINDOWS\System32\drivers\CITMDRV.SYS [16240 2012-05-24] ()
S4 ClusDisk; C:\WINDOWS\System32\DRIVERS\ClusDisk.sys [69120 2007-03-07] (Microsoft Corporation)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2011-06-02] ()
R0 DfsDriver; C:\WINDOWS\System32\drivers\Dfs.sys [34816 2007-03-07] (Microsoft Corporation)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13904 2011-05-06] ()
S3 ExterminateIt; C:\WINDOWS\system32\drivers\extit.sys [39936 2015-02-17] (CurioLab S.M.B.A.) [File not signed]
R3 HECI; C:\WINDOWS\System32\DRIVERS\HECI.sys [45056 2007-07-23] (Intel Corporation) [File not signed]
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2014-12-30] (REALiX(tm))
R0 KL1; C:\WINDOWS\System32\DRIVERS\kl1.sys [135776 2013-09-05] (Kaspersky Lab ZAO)
R1 kl2; C:\WINDOWS\System32\DRIVERS\kl2.sys [13144 2012-06-19] (Kaspersky Lab ZAO)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [621664 2013-11-06] (Kaspersky Lab ZAO)
R3 klim5; C:\WINDOWS\System32\DRIVERS\klim5.sys [34648 2012-11-23] (Kaspersky Lab ZAO)
R3 KLOGNT; C:\WINDOWS\System32\drivers\klognt.sys [22596 1996-12-02] () [File not signed]
R1 kltdi; C:\WINDOWS\System32\DRIVERS\kltdi.sys [43864 2012-11-22] (Kaspersky Lab ZAO)
R1 kneps; C:\WINDOWS\System32\DRIVERS\kneps.sys [144224 2013-07-01] (Kaspersky Lab ZAO)
R3 msnfsflt; C:\WINDOWS\System32\DRIVERS\msnfsflt.sys [22528 2007-03-07] (Microsoft Corporation) [File not signed]
R3 NfsSvr; C:\WINDOWS\System32\DRIVERS\nfssvr.sys [471552 2007-03-07] (Microsoft Corporation)
S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [42496 2007-03-07] (Microsoft Corporation)
R2 NsTrcNT; C:\WINDOWS\System32\drivers\nstrcnt.sys [11264 1996-12-02] () [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [90624 2007-03-07] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [65024 2007-03-07] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [58368 2007-03-07] (Microsoft Corporation)
R2 pcscoax; C:\WINDOWS\System32\drivers\pcscoax.sys [15360 1996-12-02] () [File not signed]
S3 pdlnacom; C:\WINDOWS\System32\drivers\pdlnacom.sys [77568 1996-12-02] () [File not signed]
S3 pdlnafac; C:\WINDOWS\System32\drivers\pdlnafac.sys [41504 1996-12-02] () [File not signed]
S3 pdlnampa; C:\WINDOWS\System32\drivers\pdlnampa.sys [61968 1996-12-02] () [File not signed]
S3 pdlnatcm; C:\WINDOWS\System32\drivers\pdlnatcm.sys [13824 1996-12-02] () [File not signed]
S3 pdlnatdl; C:\WINDOWS\System32\drivers\pdlnatdl.sys [18944 1996-12-02] () [File not signed]
S3 pdlnatnm; C:\WINDOWS\System32\drivers\pdlnatnm.sys [56832 1996-12-02] () [File not signed]
S3 pdlnatsn; C:\WINDOWS\System32\drivers\pdlnatsn.sys [36352 1996-12-02] () [File not signed]
S3 pdlnawac; C:\WINDOWS\System32\drivers\pdlnawac.sys [73904 1996-12-02] () [File not signed]
S3 pdlncbas; C:\WINDOWS\System32\drivers\pdlncbas.sys [5728 1996-12-02] () [File not signed]
S3 pdlncfwk; C:\WINDOWS\System32\drivers\pdlncfwk.sys [174720 1996-12-02] () [File not signed]
S3 pdlndint; C:\WINDOWS\System32\drivers\pdlndint.sys [11776 1996-12-02] () [File not signed]
S3 pdlndsdl; C:\WINDOWS\System32\drivers\pdlndsdl.sys [74752 1996-12-02] () [File not signed]
S3 pdlndtdl; C:\WINDOWS\System32\drivers\pdlndtdl.sys [58880 1996-12-02] () [File not signed]
S3 pdlnebas; C:\WINDOWS\System32\drivers\pdlnebas.sys [7680 1996-12-02] () [File not signed]
S3 pdlnecfg; C:\WINDOWS\System32\drivers\pdlnecfg.sys [45440 1996-12-02] () [File not signed]
S3 pdlnemap; C:\WINDOWS\System32\drivers\pdlnemap.sys [70368 1996-12-02] () [File not signed]
S3 pdlnemsg; C:\WINDOWS\System32\drivers\pdlnemsg.sys [10736 1996-12-02] () [File not signed]
S3 pdlnepkt; C:\WINDOWS\System32\drivers\pdlnepkt.sys [20080 1996-12-02] () [File not signed]
S3 pdlnshay; C:\WINDOWS\System32\drivers\pdlnshay.sys [61584 1996-12-02] () [File not signed]
S3 pdlnslea; C:\WINDOWS\System32\drivers\pdlnslea.sys [25200 1996-12-02] () [File not signed]
S3 pdlnsv25; C:\WINDOWS\System32\drivers\pdlnsv25.sys [57824 1996-12-02] () [File not signed]
R3 Portmap; C:\WINDOWS\System32\DRIVERS\portmap.sys [26112 2007-03-07] (Microsoft Corporation)
S3 RimUsb; C:\WINDOWS\System32\Drivers\RimUsb.sys [68096 2013-12-02] (BlackBerry Limited)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-17] (Sensaura)
S3 WLBS; C:\WINDOWS\System32\DRIVERS\wlbs.sys [174592 2007-03-07] (Microsoft Corporation)
S4 adpu320; No ImagePath
S4 afcnt; No ImagePath
S4 AmdIde; No ImagePath
S4 arc; No ImagePath
S4 cpqarry2; No ImagePath
S4 cpqcissm; No ImagePath
S4 cpqfcalm; No ImagePath
S4 dellcerc; No ImagePath
S4 elxstor; No ImagePath
S4 hpcisss; No ImagePath
S4 hpt3xx; No ImagePath
S4 iirsp; No ImagePath
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S4 ipsraidn; No ImagePath
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [78432 2013-11-06] (Kaspersky Lab ZAO)
U3 LicenseInfo; No ImagePath
S4 lp6nds35; No ImagePath
S4 nfrd960; No ImagePath
S3 PCAMp50; System32\Drivers\PCAMp50.sys [X]
U5 PSched; C:\Windows\System32\Drivers\PSched.sys [62464 2007-03-07] (Microsoft Corporation)
S4 ql2100; No ImagePath
S4 ql2200; No ImagePath
S4 ql2300; No ImagePath
S3 RkHit; No ImagePath
U5 sacdrv; C:\Windows\System32\Drivers\sacdrv.sys [74752 2007-03-07] (Microsoft Corporation)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [105472 2007-03-07] (Microsoft Corporation)
U1 SharedAccess; No ImagePath
S4 symmpi; No ImagePath
U5 UnlockerDriver5; d:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
U1 WS2IFSL; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

NETSVC: Sacsvr -> C:\Windows\system32\sacsvr.dll (Microsoft Corporation)
NETSVC: TrkSvr -> C:\Windows\system32\trksvr.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-31 18:17 - 2015-03-31 18:18 - 00051039 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\Addition.txt
2015-03-31 18:16 - 2015-03-31 18:18 - 00036220 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\FRST.txt
2015-03-31 18:12 - 2015-03-31 18:18 - 00000000 ____D () C:\FRST
2015-03-31 18:11 - 2015-03-31 18:11 - 01135104 _____ (Farbar) C:\Documents and Settings\Administrateur.EBM2003\Bureau\FRST.exe
2015-03-31 15:09 - 2015-03-31 15:10 - 00000479 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\CTR.txt
2015-03-31 10:38 - 2015-03-31 12:36 - 00001640 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\ZHPFix.lnk
2015-03-31 10:38 - 2015-03-31 12:36 - 00001535 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\ZHPDiag.lnk
2015-03-31 10:38 - 2015-03-31 12:36 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\ZHP
2015-03-31 10:38 - 2015-03-31 12:36 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\ZHP
2015-03-31 10:37 - 2015-03-31 15:44 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\ZHP
2015-03-31 10:37 - 2015-03-31 12:36 - 00000000 ____D () C:\Program Files\ZHPDiag
2015-03-31 10:36 - 2015-03-31 10:36 - 06867801 _____ (Nicolas Coolman ) C:\Documents and Settings\Administrateur.EBM2003\Bureau\ZHPDiag2.exe
2015-03-30 17:06 - 2015-03-30 17:06 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-03-30 14:39 - 2003-03-27 23:13 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.dll
2015-03-30 14:27 - 2015-03-30 14:30 - 00000095 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\cbslog.bat
2015-03-30 14:27 - 2015-03-30 14:27 - 00001958 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\cbslog1.bat
2015-03-30 13:00 - 2015-03-30 13:10 - 00000285 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\RapportCHK_30-03-2015.txt
2015-03-30 12:18 - 2015-03-30 12:18 - 00290111 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\Report_CHKDSK.exe
2015-03-26 17:19 - 2015-03-26 17:19 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\Nouveau dossier (2)
2015-03-26 17:14 - 2015-03-26 17:19 - 00002751 _____ () C:\Documents and Settings\Administrateur.EBM2003\reset.cmd
2015-03-26 17:14 - 2015-03-26 17:14 - 00000000 ____D () C:\Program Files\Windows Resource Kits
2015-03-26 14:56 - 2015-03-31 10:44 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Package Cache
2015-03-26 14:56 - 2015-03-31 10:44 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Package Cache
2015-03-23 10:36 - 2015-03-23 10:36 - 00000312 _____ () C:\WINDOWS\PFRO.log
2015-03-20 13:26 - 2015-03-20 13:26 - 01048576 _____ () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\events.evt
2015-03-19 18:06 - 2015-03-31 10:45 - 00012308 _____ () C:\WINDOWS\setupapi.log
2015-03-18 14:54 - 2015-03-31 15:01 - 00000280 _____ () C:\WINDOWS\Tasks\WinThruster_DEFAULT.job
2015-03-18 14:54 - 2015-03-25 14:54 - 00000288 _____ () C:\WINDOWS\Tasks\WinThruster_UPDATES.job
2015-03-18 14:54 - 2015-03-18 14:54 - 00000000 ____D () C:\Program Files\WinThruster
2015-03-18 14:54 - 2015-03-18 14:54 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\WinThruster
2015-03-18 14:54 - 2015-03-18 14:54 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\WinThruster
2015-03-18 14:54 - 2015-03-18 14:54 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Solvusoft
2015-03-18 14:54 - 2012-10-15 18:02 - 00017840 _____ (solvusoft) C:\WINDOWS\system32\roboot.exe
2015-03-18 12:49 - 2015-03-18 12:49 - 00000184 ___SH () C:\Documents and Settings\postgres.ERIC.002\ntuser.ini
2015-03-18 12:49 - 2015-03-18 12:49 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002
2015-03-18 12:49 - 2014-09-28 19:42 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\Oracle
2015-03-18 12:49 - 2014-04-22 11:55 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\IBM
2015-03-18 12:49 - 2013-11-29 10:34 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\IObit
2015-03-18 12:49 - 2013-04-29 12:24 - 00001611 _____ () C:\Documents and Settings\postgres.ERIC.002\Menu Démarrer\Programmes\Assistance à distance.lnk
2015-03-18 12:49 - 2012-11-19 18:19 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\Macromedia
2015-03-18 12:49 - 2012-11-19 18:18 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\Adobe
2015-03-18 12:49 - 2012-03-12 17:49 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\TightVNC
2015-03-18 12:49 - 2012-01-03 14:00 - 00000000 __SHD () C:\Documents and Settings\postgres.ERIC.002\IETldCache
2015-03-18 12:49 - 2009-10-26 13:16 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Application Data\Roxio
2015-03-18 12:49 - 2009-04-14 19:37 - 00000000 _____ () C:\Documents and Settings\postgres.ERIC.002\Sti_Trace.log
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.002\Menu Démarrer\Programmes\Démarrage
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.002\Menu Démarrer
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.002\Voisinage réseau
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.002\Voisinage d'impression
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.002\Modèles
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Favoris
2015-03-18 12:49 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.002\Bureau
2015-03-18 12:49 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.002\Menu Démarrer\Programmes\Accessoires
2015-03-18 12:49 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.002\Menu Démarrer\Programmes
2015-03-18 12:04 - 2015-03-18 12:04 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2015-03-16 11:01 - 2015-03-16 11:01 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Kaspersky Endpoint Security 10 for Windows
2015-03-16 11:01 - 2015-03-16 11:01 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Kaspersky Endpoint Security 10 for Windows
2015-03-14 02:58 - 2015-03-14 02:58 - 00439808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\netlogon.dll
2015-03-14 02:58 - 2015-03-14 02:58 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2015-03-13 15:09 - 2015-03-13 15:09 - 00005430 _____ () C:\dd_vcredist_x86_20150313140829.log
2015-03-13 05:46 - 2015-03-13 05:46 - 02466816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2015-03-12 18:10 - 2015-03-12 19:01 - 00000000 ____D () C:\Program Files\PostgreSQL
2015-03-12 18:07 - 2015-03-13 13:43 - 00000184 ___SH () C:\Documents and Settings\postgres.ERIC.001\ntuser.ini
2015-03-12 18:07 - 2015-03-12 18:07 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001
2015-03-12 18:07 - 2014-09-28 19:42 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\Oracle
2015-03-12 18:07 - 2014-04-22 11:55 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\IBM
2015-03-12 18:07 - 2013-11-29 10:34 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\IObit
2015-03-12 18:07 - 2013-04-29 12:24 - 00001611 _____ () C:\Documents and Settings\postgres.ERIC.001\Menu Démarrer\Programmes\Assistance à distance.lnk
2015-03-12 18:07 - 2012-11-19 18:19 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\Macromedia
2015-03-12 18:07 - 2012-11-19 18:18 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\Adobe
2015-03-12 18:07 - 2012-03-12 17:49 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\TightVNC
2015-03-12 18:07 - 2012-01-03 14:00 - 00000000 __SHD () C:\Documents and Settings\postgres.ERIC.001\IETldCache
2015-03-12 18:07 - 2009-10-26 13:16 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Application Data\Roxio
2015-03-12 18:07 - 2009-04-14 19:37 - 00000000 _____ () C:\Documents and Settings\postgres.ERIC.001\Sti_Trace.log
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.001\Menu Démarrer\Programmes\Démarrage
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.001\Menu Démarrer
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.001\Voisinage réseau
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.001\Voisinage d'impression
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.001\Modèles
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Favoris
2015-03-12 18:07 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.001\Bureau
2015-03-12 18:07 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.001\Menu Démarrer\Programmes\Accessoires
2015-03-12 18:07 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.001\Menu Démarrer\Programmes
2015-03-11 18:30 - 2015-03-31 13:48 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Bureau\GrantPerms
2015-03-11 18:30 - 2015-03-11 18:30 - 00453083 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\GrantPerms.zip
2015-03-11 15:30 - 2015-03-31 15:02 - 01196032 _____ () C:\Documents and Settings\Administrateur.EBM2003\Bureau\CTR.exe
2015-03-11 12:33 - 2015-03-11 14:33 - 00454064 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-11 12:22 - 2015-03-11 12:22 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Mozilla
2015-03-11 12:22 - 2015-03-11 12:22 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Macromedia
2015-03-11 12:19 - 2015-03-11 12:19 - 00000000 __SHD () C:\Documents and Settings\ERIC.ERIC\PrivacIE
2015-03-11 12:18 - 2015-03-11 12:18 - 00045831 _____ () C:\WINDOWS\qfelist.htm
2015-03-11 12:18 - 2015-03-11 12:18 - 00001511 _____ () C:\WINDOWS\UPGRADE.TXT
2015-03-11 12:18 - 2015-03-11 12:18 - 00000781 _____ () C:\WINDOWS\svcpack.htm
2015-03-11 11:38 - 2015-03-11 11:38 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Sun
2015-03-11 11:36 - 2015-03-11 11:48 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Notepad++
2015-03-11 11:34 - 2015-03-11 12:32 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Expert PDF 9
2015-03-11 11:34 - 2015-03-11 11:34 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Mes documents\PDF Files
2015-03-11 11:34 - 2015-03-11 11:34 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Apple Computer
2015-03-11 11:33 - 2015-03-11 11:33 - 00000000 __SHD () C:\Documents and Settings\ERIC.ERIC\IETldCache
2015-03-11 11:33 - 2015-03-11 11:33 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\THeUDS
2015-03-11 11:05 - 2013-01-07 02:43 - 00132096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmgr.sys
2015-03-11 11:04 - 2015-02-13 02:21 - 11086848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 06009344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 06009344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 01217536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\urlmon.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 01217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00420864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vbscript.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00348160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dxtmsft.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2015-03-11 11:04 - 2015-02-13 02:21 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2015-03-10 19:39 - 2015-03-12 16:17 - 00000184 ___SH () C:\Documents and Settings\postgres.ERIC.000\ntuser.ini
2015-03-10 19:39 - 2015-03-10 19:39 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000
2015-03-10 19:39 - 2014-09-28 19:42 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\Oracle
2015-03-10 19:39 - 2014-04-22 11:55 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\IBM
2015-03-10 19:39 - 2013-11-29 10:34 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\IObit
2015-03-10 19:39 - 2013-04-29 12:24 - 00001611 _____ () C:\Documents and Settings\postgres.ERIC.000\Menu Démarrer\Programmes\Assistance à distance.lnk
2015-03-10 19:39 - 2012-11-19 18:19 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\Macromedia
2015-03-10 19:39 - 2012-11-19 18:18 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\Adobe
2015-03-10 19:39 - 2012-03-12 17:49 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\TightVNC
2015-03-10 19:39 - 2012-01-03 14:00 - 00000000 __SHD () C:\Documents and Settings\postgres.ERIC.000\IETldCache
2015-03-10 19:39 - 2009-10-26 13:16 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Application Data\Roxio
2015-03-10 19:39 - 2009-04-14 19:37 - 00000000 _____ () C:\Documents and Settings\postgres.ERIC.000\Sti_Trace.log
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.000\Menu Démarrer\Programmes\Démarrage
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.000\Menu Démarrer
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.000\Voisinage réseau
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.000\Voisinage d'impression
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ___HD () C:\Documents and Settings\postgres.ERIC.000\Modèles
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Favoris
2015-03-10 19:39 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\postgres.ERIC.000\Bureau
2015-03-10 19:39 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.000\Menu Démarrer\Programmes\Accessoires
2015-03-10 19:39 - 2009-04-14 17:52 - 00000000 ___RD () C:\Documents and Settings\postgres.ERIC.000\Menu Démarrer\Programmes
2015-03-09 18:05 - 2015-03-09 18:05 - 01114112 _____ () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\sysem.evt
2015-03-06 09:48 - 2015-03-06 09:48 - 00154624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\schannel.dll
2015-03-06 09:48 - 2015-03-06 09:48 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-04 12:09 - 2015-03-04 13:16 - 00080316 _____ () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\Présentation1.pptx

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-31 18:18 - 2014-10-22 09:59 - 00001056 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-31 18:18 - 2009-04-14 17:56 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Bureau
2015-03-31 18:02 - 2009-04-15 15:48 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2015-03-31 18:02 - 2009-04-15 15:48 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft Help
2015-03-31 17:38 - 2014-10-20 19:14 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-31 17:33 - 2011-02-02 14:23 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Skype
2015-03-31 17:27 - 2015-02-03 15:43 - 00000532 _____ () C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-1429000446-17085958-1634398645-500.job
2015-03-31 17:20 - 2013-05-22 18:23 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab
2015-03-31 17:20 - 2013-05-22 18:23 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab
2015-03-31 16:18 - 2014-10-22 09:58 - 00001052 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-31 16:04 - 2014-08-25 17:16 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-03-31 15:40 - 2011-07-29 11:40 - 00000594 ____H () C:\WINDOWS\Tasks\DataUpload.job
2015-03-31 15:40 - 2009-04-14 17:56 - 00000184 ___SH () C:\Documents and Settings\NetworkService.AUTORITE NT\ntuser.ini
2015-03-31 15:36 - 2013-04-29 11:39 - 01845662 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-31 15:36 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-03-31 15:35 - 2011-07-29 11:40 - 00000624 ____H () C:\WINDOWS\Tasks\ConfigExec.job
2015-03-31 15:35 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\system32\ias
2015-03-31 15:33 - 2014-07-03 14:51 - 00000184 ___SH () C:\Documents and Settings\tws86\ntuser.ini
2015-03-31 15:33 - 2009-04-14 17:56 - 00000184 ___SH () C:\Documents and Settings\LocalService.AUTORITE NT\ntuser.ini
2015-03-31 15:33 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\system32\wins
2015-03-31 15:31 - 2014-09-17 17:43 - 00000308 _____ () C:\WINDOWS\Tasks\start.job
2015-03-31 15:31 - 2009-04-14 17:56 - 00000184 ___SH () C:\Documents and Settings\Administrateur.EBM2003\ntuser.ini
2015-03-31 15:31 - 2009-04-14 17:56 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-31 15:30 - 2013-05-21 18:19 - 00524288 _____ () C:\WINDOWS\system32\config\Kaspersky Event Log.evt
2015-03-31 15:30 - 2009-04-14 17:56 - 00032490 _____ () C:\WINDOWS\Tasks\SchedLgU.Txt
2015-03-31 12:35 - 2013-11-19 12:21 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\Téléchargements
2015-03-31 12:16 - 2014-06-19 13:29 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-03-31 10:46 - 2009-07-01 15:03 - 00000033 ____C () C:\WINDOWS\unicon.ini
2015-03-31 10:43 - 2009-06-24 17:15 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Horizont
2015-03-31 10:43 - 2009-06-24 17:15 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Horizont
2015-03-31 10:43 - 2008-12-23 17:24 - 00000000 ____D () C:\Program Files\Horizont
2015-03-31 10:38 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes
2015-03-31 10:38 - 2009-04-14 19:33 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes
2015-03-31 09:03 - 2009-04-14 17:56 - 00000000 __SHD () C:\Documents and Settings\LocalService.AUTORITE NT
2015-03-30 18:08 - 2009-04-15 15:55 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2015-03-30 15:22 - 2009-07-21 16:04 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\webex
2015-03-30 13:04 - 2009-04-14 19:34 - 01850252 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-30 09:04 - 2007-03-07 14:00 - 00013734 _____ () C:\WINDOWS\system32\wpa.dbl
2015-03-27 14:36 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\system32\LogFiles
2015-03-27 11:13 - 2013-11-28 11:56 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\ProductData
2015-03-27 11:13 - 2013-11-28 11:56 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\ProductData
2015-03-26 17:14 - 2009-04-14 17:56 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003
2015-03-20 18:52 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-03-18 14:26 - 2009-09-08 17:26 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Notepad++
2015-03-18 14:05 - 2010-07-06 17:43 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Application Data\TeamViewer
2015-03-18 14:00 - 2011-01-12 14:49 - 00000000 ____D () C:\Documents and Settings\Administrateur.EBM2003\Menu Démarrer\Programmes\LastBit Excel Password (DEMO)
2015-03-18 14:00 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
2015-03-18 14:00 - 2009-04-14 19:33 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
2015-03-18 12:38 - 2012-10-17 14:10 - 00003636 _____ () C:\Documents and Settings\Administrateur.EBM2003\Mes documents\pgadmin.log
2015-03-13 14:45 - 2008-10-10 14:34 - 00000000 ____D () C:\WINDOWS\security
2015-03-13 14:11 - 2011-03-08 18:14 - 00000184 ___SH () C:\Documents and Settings\ERIC.ERIC\ntuser.ini
2015-03-13 05:46 - 2015-01-21 18:53 - 02358784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2015-03-13 05:46 - 2015-01-21 18:53 - 02318336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2015-03-13 05:46 - 2007-03-07 14:00 - 02507264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2015-03-13 05:46 - 2007-03-07 14:00 - 02507264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-13 05:46 - 2007-02-17 08:49 - 02358784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntkrnlpa.exe
2015-03-11 14:14 - 2013-08-19 11:44 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-11 14:06 - 2009-04-22 18:28 - 119837696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-11 14:03 - 2011-10-24 14:02 - 00000000 ____D () C:\WINDOWS\ie8updates
2015-03-11 12:22 - 2011-03-08 18:15 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC\Application Data\Adobe
2015-03-11 12:19 - 2011-03-08 18:14 - 00000000 ____D () C:\Documents and Settings\ERIC.ERIC
2015-03-11 12:13 - 2009-04-27 11:13 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-11 11:33 - 2011-03-08 18:14 - 00000815 _____ () C:\Documents and Settings\ERIC.ERIC\Menu Démarrer\Programmes\Internet Explorer.lnk
2015-03-11 11:33 - 2011-03-08 18:14 - 00000000 ___RD () C:\Documents and Settings\ERIC.ERIC\Menu Démarrer\Programmes
2015-03-10 19:16 - 2012-09-24 12:48 - 00000184 ___SH () C:\Documents and Settings\postgres.ERIC\ntuser.ini
2015-03-10 17:54 - 2012-09-21 15:37 - 00000000 ____D () C:\Program Files\pgAdmin III
2015-03-09 17:46 - 2009-04-16 16:22 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\FLEXnet
2015-03-09 17:46 - 2009-04-16 16:22 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Application Data\FLEXnet
2015-03-06 15:59 - 2009-11-05 18:05 - 00002371 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Acrobat Distiller 8.lnk
2015-03-06 15:59 - 2009-11-05 18:05 - 00002371 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Acrobat Distiller 8.lnk
2015-03-06 15:59 - 2009-11-05 18:05 - 00002359 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Adobe Acrobat 8 Professional.lnk
2015-03-06 15:59 - 2009-11-05 18:05 - 00002359 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Adobe Acrobat 8 Professional.lnk

==================== Files in the root of some directories =======

2013-07-12 15:23 - 2013-07-12 15:23 - 0000000 _____ () C:\Program Files\GUM6F.tmp
2013-07-08 12:34 - 2013-07-08 12:34 - 0889416 _____ (Microsoft Corporation) C:\Documents and Settings\Administrateur.EBM2003\Application Data\dotNetFx40_Full_setup.exe
2009-09-21 14:16 - 2015-01-16 13:17 - 0022791 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Microsoft Excel 97-2003.ADR
2012-08-28 12:46 - 2013-08-28 12:21 - 0000616 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Rim.Desktop.Exception.log
2012-08-28 12:44 - 2013-04-26 15:21 - 0003478 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Rim.Desktop.HttpServerSetup.log
2012-08-28 12:46 - 2012-08-28 12:46 - 0000000 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Rim.DesktopHelper.Exception.log
2012-08-28 12:56 - 2013-08-28 12:21 - 0006776 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Rim.Transcoder.Exception.log
2014-06-19 09:55 - 2014-06-19 09:55 - 0000024 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\temp.ini
2012-01-11 12:22 - 2012-01-13 12:30 - 0022261 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\Valeurs séparées par une tabulation (Windows).ADR
2014-01-30 11:27 - 2014-01-30 11:27 - 0000058 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\WB.CFG
2012-02-27 11:58 - 2012-02-27 11:58 - 0000600 _____ () C:\Documents and Settings\Administrateur.EBM2003\Application Data\winscp.rnd
2010-02-09 14:49 - 2013-04-05 13:56 - 0019968 _____ () C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-02-16 18:32 - 2010-02-16 18:32 - 0000145 _____ () C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\fusioncache.dat
2010-10-04 16:07 - 2012-04-04 12:55 - 0000600 _____ () C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\PUTTY.RND
2014-12-31 19:09 - 2014-12-31 19:09 - 0000959 _____ () C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\recently-used.xbel
2008-02-05 14:28 - 2008-02-05 14:28 - 0000051 _____ () C:\Documents and Settings\Administrateur.EBM2003\Local Settings\Application Data\setup.txt

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
C:\Windows\system32\codeintegrity\Bootcat.cache IS MISSING <==== ATTENTION!.

==================== BCD ================================
'bcdedit' n'est pas reconnu en tant que commande interne
ou externe, un programme ex‚cutable ou un fichier de commandes.


==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité