cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-07-2013 01 (ATTENTION: FRST version is 980 days old)
Ran by Famille Aouchiche (administrator) on 16-03-2016 09:37:49
Running from J:\Programs\FRST
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) OS Language: French Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(SigmaTel, Inc.) C:\Windows\system32\STacSV.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0\bin\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(SigmaTel, Inc.) C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
(Microsoft Corporation) C:\Windows\system32\wbem\unsecapp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(OldTimer Tools) J:\Programs\OTLPE\OTLPE.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] - %ProgramFiles%\Windows Defender\MSASCui.exe -hide [1008184 2008-01-18] (Microsoft Corporation)
HKLM\...\Run: [SDTray] - "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM\...\Run: [IAAnotif] - "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [178712 2007-07-26] (Intel Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - "C:\Program Files\Java\jre1.6.0\bin\jusched.exe" [77824 2015-12-27] (Sun Microsystems, Inc.)
HKLM\...\Run: [AvastUI.exe] - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui [7137664 2016-03-12] (AVAST Software)
HKLM\...\Run: [NvBackend] - "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe" [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [SigmatelSysTrayApp] - C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe [405504 2007-05-06] (SigmaTel, Inc.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKCU\...\Run: [CCleaner Monitoring] - "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR [6602152 2015-12-08] (Piriform Ltd)
HKCU\...\Run: [SpybotPostWindows10UpgradeReInstall] - "C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" [1011200 2015-07-28] (Safer-Networking Ltd.)
HKCU\...\Run: [Spybot-S&D Cleaning] - "C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\Default\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter [ 2009-04-11] (Microsoft Corporation)
HKU\Default User\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter [ 2009-04-11] (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM SearchScopes: DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM - {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
HKCU SearchScopes: DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKCU - {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: PDF Architect 4 Helper - {38279E1A-7019-40C1-B579-E99DFB3312E8} - C:\Program Files\PDF Architect 4\creator-ie-helper.dll (pdfforge GmbH)
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files\PDF Architect 4\creator-ie-plugin.dll (pdfforge GmbH)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0-windows-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Famille Aouchiche\AppData\Roaming\Mozilla\Firefox\Profiles\cm7q8oy5.default
FF Homepage: hxxp://portail.free.fr/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_21_0_0_182.dll ()
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: PDF Architect 4 - C:\Program Files\PDF Architect 4\np-previewer.dll (pdfforge GmbH)
FF Extension: EPUBReader - C:\Users\Famille Aouchiche\AppData\Roaming\Mozilla\Firefox\Profiles\cm7q8oy5.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
FF Extension: No Name - C:\Users\Famille Aouchiche\AppData\Roaming\Mozilla\Firefox\Profiles\cm7q8oy5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension\
FF Extension: PDF Architect 4 Creator - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension\

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-03-12] (AVAST Software)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
S3 PDF Architect 4; C:\Program Files\PDF Architect 4\ws.exe [2220768 2016-01-15] (pdfforge GmbH)
S3 PDF Architect 4 CrashHandler; C:\Program Files\PDF Architect 4\crash-handler-ws.exe [970464 2016-01-15] (pdfforge GmbH)
S2 PDF Architect 4 Manager; C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe [959248 2015-10-05] (© pdfforge GmbH.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 STacSV; C:\Windows\system32\STacSV.exe [94208 2007-05-06] (SigmaTel, Inc.)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [32792 2016-03-12] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [91168 2016-03-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [64272 2016-03-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [58776 2016-03-12] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [816304 2016-03-12] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447848 2016-03-12] (AVAST Software)
R3 aswStmXP; C:\Windows\system32\drivers\aswStmXP.sys [171608 2016-03-12] (AVAST Software)
S3 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [67088 2016-03-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [221240 2016-03-12] (AVAST Software)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes)
R3 STHDA; C:\Windows\System32\drivers\stwrt.sys [326656 2007-05-06] (SigmaTel, Inc.)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 MSICDSetup; \??\E:\CDriver.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 OMCI; \??\C:\Windows\SYSTEM32\DRIVERS\OMCI.SYS [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2016-03-16 09:37 - 2016-03-16 09:37 - 00000000 ____D C:\FRST
2016-03-16 09:32 - 2016-03-16 09:34 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\RK_Quarantine
2016-03-15 23:04 - 2016-03-15 23:05 - 00000790 ____A C:\Windows\setupact.log
2016-03-15 23:04 - 2016-03-15 23:04 - 00000000 ____A C:\Windows\setuperr.log
2016-03-12 12:19 - 2016-03-12 12:19 - 00079930 ____A C:\Windows\PFRO.log
2016-03-12 09:54 - 2016-03-12 09:53 - 00334280 ____A (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-12 09:53 - 2016-03-12 09:53 - 00052184 ____A (AVAST Software) C:\Windows\avastSS.scr
2016-03-12 09:52 - 2016-03-16 09:32 - 00096944 ____A C:\Windows\WindowsUpdate.log
2016-03-12 06:58 - 2016-03-12 06:58 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\QuickScan
2016-03-09 15:56 - 2016-03-09 15:56 - 00717786 ____A C:\Users\Famille Aouchiche\Desktop\test_adjoint_patrimoine_concours_examen_pro_2008_2009_2010_2011.zip
2016-03-09 15:56 - 2016-03-09 15:56 - 00144278 ____A C:\Users\Famille Aouchiche\Desktop\test_adjoint_patrimoine_concours_2012_0.zip
2016-03-09 06:50 - 2016-03-09 06:50 - 00000000 __SHD C:\found.001
2016-03-09 06:30 - 2016-03-09 06:30 - 00000300 ____A C:\Windows\system32\swhealthex.log
2016-03-09 06:23 - 2016-03-09 06:24 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\A trier
2016-02-28 16:21 - 2016-02-28 16:36 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Photos TEL DJAMEL
2016-02-28 15:50 - 2016-02-28 16:10 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Photos TEL MATMAT
2016-02-26 09:36 - 2016-02-26 09:55 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Livret d'évaluation Nael GS 1er semestre
2016-02-26 01:02 - 2016-03-04 14:38 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Concours commun
2016-02-20 01:12 - 2016-02-20 01:12 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\PDF Producer
2016-02-18 11:55 - 2016-02-18 11:55 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\EPSON
2016-02-18 11:50 - 2016-02-26 09:18 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\IMPRESSION

==================== One Month Modified Files and Folders =======

2016-03-16 09:37 - 2016-03-16 09:37 - 00000000 ____D C:\FRST
2016-03-16 09:35 - 2006-11-02 11:33 - 00888112 ____A C:\Windows\system32\PerfStringBackup.INI
2016-03-16 09:34 - 2016-03-16 09:32 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\RK_Quarantine
2016-03-16 09:32 - 2016-03-12 09:52 - 00096944 ____A C:\Windows\WindowsUpdate.log
2016-03-16 09:30 - 2015-12-27 16:19 - 00000644 ____A C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2016-03-16 09:29 - 2006-11-02 14:01 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2016-03-16 09:29 - 2006-11-02 13:47 - 00003664 ___AH C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-16 09:29 - 2006-11-02 13:47 - 00003664 ___AH C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-16 09:23 - 2006-11-02 14:01 - 00028916 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-16 09:22 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2016-03-16 09:19 - 2006-11-02 13:47 - 00374104 ____A C:\Windows\system32\FNTCACHE.DAT
2016-03-16 09:17 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\fr-FR
2016-03-16 09:17 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\System
2016-03-16 06:40 - 2015-12-29 20:59 - 00001002 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-03-16 05:05 - 2015-12-27 16:19 - 00000616 ____A C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2016-03-15 23:05 - 2016-03-15 23:04 - 00000790 ____A C:\Windows\setupact.log
2016-03-15 23:04 - 2016-03-15 23:04 - 00000000 ____A C:\Windows\setuperr.log
2016-03-14 20:54 - 2016-01-20 06:36 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\vlc
2016-03-12 12:19 - 2016-03-12 12:19 - 00079930 ____A C:\Windows\PFRO.log
2016-03-12 09:54 - 2015-12-28 08:07 - 00816304 ____A (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-12 09:54 - 2015-12-28 08:07 - 00447848 ____A (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-03-12 09:54 - 2015-12-28 08:07 - 00221240 ____A (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-03-12 09:54 - 2015-12-28 08:07 - 00091168 ____A (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-12 09:53 - 2016-03-12 09:54 - 00334280 ____A (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-03-12 09:53 - 2016-03-12 09:53 - 00052184 ____A (AVAST Software) C:\Windows\avastSS.scr
2016-03-12 09:53 - 2015-12-28 08:07 - 00171608 ____A (AVAST Software) C:\Windows\system32\Drivers\aswStmXP.sys
2016-03-12 09:53 - 2015-12-28 08:07 - 00067088 ____A (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2016-03-12 09:53 - 2015-12-28 08:07 - 00064272 ____A (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2016-03-12 09:53 - 2015-12-28 08:07 - 00058776 ____A (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-03-12 09:53 - 2015-12-28 08:07 - 00032792 ____A (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-03-12 08:39 - 2015-12-29 13:40 - 00000000 ____D C:\Program Files\CCleaner
2016-03-12 08:39 - 2015-12-27 15:18 - 00170200 ____A (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-12 06:58 - 2016-03-12 06:58 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\QuickScan
2016-03-11 19:04 - 2016-01-03 20:24 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2016-03-11 19:04 - 2016-01-03 20:24 - 00000000 ____D C:\Program Files\WinRAR
2016-03-11 16:40 - 2015-12-29 20:59 - 00797376 ____A (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-03-11 16:40 - 2015-12-29 20:59 - 00142528 ____A (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-03-11 07:19 - 2016-02-13 09:23 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\uTorrent
2016-03-10 20:09 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2016-03-10 19:42 - 2006-11-02 13:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2016-03-10 19:32 - 2015-12-27 21:36 - 00000000 ____D C:\Windows\system32\MRT
2016-03-10 19:28 - 2006-11-02 11:24 - 141270216 ____A (Microsoft Corporation) C:\Windows\system32\mrt.exe
2016-03-10 15:16 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\Msdtc
2016-03-10 15:15 - 2006-11-02 11:22 - 48758784 ____A C:\Windows\system32\config\components_previous
2016-03-10 15:15 - 2006-11-02 11:22 - 40108032 ____A C:\Windows\system32\config\software_previous
2016-03-10 15:15 - 2006-11-02 11:22 - 27000832 ____A C:\Windows\system32\config\system_previous
2016-03-10 15:15 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\system32\config\security_previous
2016-03-10 15:15 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\system32\config\sam_previous
2016-03-10 15:15 - 2006-11-02 11:22 - 00262144 ____A C:\Windows\system32\config\default_previous
2016-03-10 15:14 - 2015-12-27 13:06 - 00000000 ____D C:\Users\Famille Aouchiche
2016-03-10 15:14 - 2006-11-02 12:18 - 00000000 __RSD C:\Windows\Media
2016-03-10 15:14 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\spool
2016-03-10 15:14 - 2006-11-02 12:18 - 00000000 ____D C:\Program Files\Common Files\Services
2016-03-10 15:13 - 2016-01-16 15:35 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-03-10 15:13 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\registration
2016-03-09 15:56 - 2016-03-09 15:56 - 00717786 ____A C:\Users\Famille Aouchiche\Desktop\test_adjoint_patrimoine_concours_examen_pro_2008_2009_2010_2011.zip
2016-03-09 15:56 - 2016-03-09 15:56 - 00144278 ____A C:\Users\Famille Aouchiche\Desktop\test_adjoint_patrimoine_concours_2012_0.zip
2016-03-09 06:50 - 2016-03-09 06:50 - 00000000 __SHD C:\found.001
2016-03-09 06:30 - 2016-03-09 06:30 - 00000300 ____A C:\Windows\system32\swhealthex.log
2016-03-09 06:24 - 2016-03-09 06:23 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\A trier
2016-03-05 21:14 - 2015-12-27 14:17 - 00082944 ____A C:\Users\Famille Aouchiche\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-03-04 15:47 - 2016-02-10 16:09 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Concours adjoint territorial du patrimoine
2016-03-04 14:38 - 2016-02-26 01:02 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Concours commun
2016-03-01 00:30 - 2015-12-27 16:19 - 00000446 ____A C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2016-02-28 16:36 - 2016-02-28 16:21 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Photos TEL DJAMEL
2016-02-28 16:10 - 2016-02-28 15:50 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Photos TEL MATMAT
2016-02-28 15:57 - 2015-12-29 13:42 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Sécurité
2016-02-28 15:55 - 2015-12-29 20:56 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Djamel Monop
2016-02-26 09:55 - 2016-02-26 09:36 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Livret d'évaluation Nael GS 1er semestre
2016-02-26 09:18 - 2016-02-18 11:50 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\IMPRESSION
2016-02-25 19:26 - 2015-12-30 10:38 - 00000000 ___SD C:\Users\Famille Aouchiche\Desktop\PLANTES CARNIVORES
2016-02-20 15:00 - 2015-12-30 01:04 - 00000000 ____D C:\Users\Famille Aouchiche\Desktop\Photos
2016-02-20 01:12 - 2016-02-20 01:12 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\PDF Producer
2016-02-19 00:09 - 2016-01-18 19:38 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\dvdcss
2016-02-18 11:55 - 2016-02-18 11:55 - 00000000 ____D C:\Users\Famille Aouchiche\AppData\Roaming\EPSON

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe
[2015-12-31 01:28] - [2015-04-11 00:22] - 0279552 ____A (Microsoft Corporation) 4F0A7910FC7D8A66433FA9961EEF8BB5

C:\Windows\System32\User32.dll
[2015-12-31 02:34] - [2015-11-06 18:05] - 0627712 ____A (Microsoft Corporation) 52C062F4CE889FCC6C445CFF47286FF3

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2016-03-16 09:34

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité