Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 17-09-01.01 - MOA 13/09/2017 12:50:56.5.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4005.2067 [GMT 2:00]
Lancé depuis: c:\users\MOA\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\MOA\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\MOA\Documents\~WRL0005.tmp
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2017-08-13 au 2017-09-13 ))))))))))))))))))))))))))))))))))))
.
.
2017-09-13 11:04 . 2017-09-13 11:04 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2017-09-13 11:04 . 2017-09-13 11:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-09-12 14:31 . 2017-09-09 23:39 13482976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0D847434-F507-4428-B69A-14F1EB7F2560}\mpengine.dll
2017-09-05 20:23 . 2017-09-05 20:23 -------- d-----w- C:\NAPACHE
2017-09-01 16:29 . 2017-09-01 16:29 112592 ----a-w- c:\program files (x86)\Mozilla Firefox\AccessibleHandler.dll
2017-08-27 15:54 . 2017-08-29 23:48 -------- d-----w- C:\DIDIER
2017-08-24 09:54 . 2017-08-24 10:17 146696 ----a-w- c:\windows\system32\drivers\aswmonflt.sys.150356983038607
2017-08-24 09:54 . 2017-08-24 10:16 146664 ----a-w- c:\windows\system32\drivers\aswmonflt.sys.150356982550403
2017-08-24 09:54 . 2017-08-24 10:15 1015848 ----a-w- c:\windows\system32\drivers\aswsnx.sys.150356983038607
2017-08-24 09:53 . 2017-08-24 09:53 53904 ----a-w- c:\windows\system32\drivers\aswTap.sys
2017-08-20 16:38 . 2017-08-20 16:38 -------- d-----w- C:\$AV_ASW
2017-08-18 14:49 . 2017-08-30 11:23 -------- d-----w- C:\FRST
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-09-13 10:45 . 2017-07-28 05:38 45472 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-09-13 10:45 . 2017-07-28 05:38 253856 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2017-09-09 08:02 . 2017-07-28 13:30 101784 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-09-09 06:50 . 2017-07-28 05:38 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-08-27 13:39 . 2017-07-28 05:38 188352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2017-08-25 21:09 . 2017-06-07 20:40 506400 ----a-w- c:\windows\system32\drivers\RapportKE64.sys
2017-08-25 21:09 . 2017-06-07 20:40 252352 ----a-w- c:\windows\system32\drivers\RapportHades64.sys
2017-08-23 18:31 . 2017-08-11 00:31 803328 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2017-08-23 18:31 . 2017-08-11 00:31 144896 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-09 09:01 . 2017-04-21 15:54 140394280 -c--a-w- c:\windows\system32\MRT.exe
2017-08-05 16:26 . 2017-08-05 16:31 225568 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2017-07-29 14:56 . 2017-08-09 06:58 117248 ----a-w- c:\windows\system32\drivers\tdx.sys
2017-07-28 13:33 . 2017-07-28 13:29 77376 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-07-24 13:41 . 2015-03-21 14:12 146696 ----a-w- c:\windows\system32\drivers\asw87df28ff1def473a.tmp
2017-07-21 14:26 . 2017-08-09 06:57 282624 ----a-w- c:\windows\SysWow64\mstext40.dll
2017-07-21 14:26 . 2017-08-09 06:58 518144 ----a-w- c:\windows\SysWow64\msjetoledb40.dll
2017-07-21 14:26 . 2017-08-09 06:58 290816 ----a-w- c:\windows\SysWow64\msjtes40.dll
2017-07-21 14:26 . 2017-08-09 06:57 409600 ----a-w- c:\windows\SysWow64\msexch40.dll
2017-07-18 14:52 . 2017-02-07 14:08 57728 ----a-w- c:\windows\system32\drivers\aswdda16e2a8c827fa1.tmp
2017-07-18 14:52 . 2017-02-07 14:08 343288 ----a-w- c:\windows\system32\drivers\asw9b317ee47c5f5d34.tmp
2017-07-18 14:52 . 2017-02-07 14:08 320008 ----a-w- c:\windows\system32\drivers\asw3a494d8621e2843c.tmp
2017-07-18 14:52 . 2017-02-07 14:08 198976 ----a-w- c:\windows\system32\drivers\asw3925f9b5953bf73c.tmp
2017-07-15 18:35 . 2017-08-09 06:58 394448 ----a-w- c:\windows\system32\iedkcs32.dll
2017-07-14 15:29 . 2017-08-09 06:58 486400 ----a-w- c:\windows\system32\wer.dll
2017-07-14 15:29 . 2017-08-09 06:58 34304 ----a-w- c:\windows\system32\werdiagcontroller.dll
2017-07-14 15:29 . 2017-08-09 06:58 2319872 ----a-w- c:\windows\system32\tquery.dll
2017-07-14 15:29 . 2017-08-09 06:58 2058240 ----a-w- c:\windows\system32\Query.dll
2017-07-14 15:29 . 2017-08-09 06:58 2222080 ----a-w- c:\windows\system32\mssrch.dll
2017-07-14 15:29 . 2017-08-09 06:58 778240 ----a-w- c:\windows\system32\mssvp.dll
2017-07-14 15:29 . 2017-08-09 06:58 491520 ----a-w- c:\windows\system32\mssph.dll
2017-07-14 15:29 . 2017-08-09 06:58 99840 ----a-w- c:\windows\system32\mssprxy.dll
2017-07-14 15:29 . 2017-08-09 06:58 288256 ----a-w- c:\windows\system32\mssphtb.dll
2017-07-14 15:29 . 2017-08-09 06:58 115200 ----a-w- c:\windows\system32\mssitlb.dll
2017-07-14 15:29 . 2017-08-09 06:58 75264 ----a-w- c:\windows\system32\msscntrs.dll
2017-07-14 15:29 . 2017-08-09 06:58 14336 ----a-w- c:\windows\system32\msshooks.dll
2017-07-14 15:12 . 2017-08-09 06:58 591872 ----a-w- c:\windows\system32\SearchIndexer.exe
2017-07-14 15:12 . 2017-08-09 06:58 249856 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2017-07-14 15:11 . 2017-08-09 06:58 113664 ----a-w- c:\windows\system32\SearchFilterHost.exe
2017-07-14 15:10 . 2017-08-09 06:58 382976 ----a-w- c:\windows\SysWow64\wer.dll
2017-07-14 15:10 . 2017-08-09 06:58 1549824 ----a-w- c:\windows\SysWow64\tquery.dll
2017-07-14 15:10 . 2017-08-09 06:58 1363968 ----a-w- c:\windows\SysWow64\Query.dll
2017-07-14 15:10 . 2017-08-09 06:58 1400320 ----a-w- c:\windows\SysWow64\mssrch.dll
2017-07-14 15:10 . 2017-08-09 06:58 666624 ----a-w- c:\windows\SysWow64\mssvp.dll
2017-07-14 15:10 . 2017-08-09 06:58 337408 ----a-w- c:\windows\SysWow64\mssph.dll
2017-07-14 15:10 . 2017-08-09 06:58 197120 ----a-w- c:\windows\SysWow64\mssphtb.dll
2017-07-14 15:10 . 2017-08-09 06:58 104448 ----a-w- c:\windows\SysWow64\mssitlb.dll
2017-07-14 15:10 . 2017-08-09 06:58 34816 ----a-w- c:\windows\SysWow64\mssprxy.dll
2017-07-14 15:10 . 2017-08-09 06:58 59392 ----a-w- c:\windows\SysWow64\msscntrs.dll
2017-07-14 15:00 . 2017-08-09 06:58 427520 ----a-w- c:\windows\SysWow64\SearchIndexer.exe
2017-07-14 15:00 . 2017-08-09 06:58 164352 ----a-w- c:\windows\SysWow64\SearchProtocolHost.exe
2017-07-14 14:59 . 2017-08-09 06:58 86528 ----a-w- c:\windows\SysWow64\SearchFilterHost.exe
2017-07-14 14:59 . 2017-08-09 06:58 9728 ----a-w- c:\windows\SysWow64\msshooks.dll
2017-07-14 14:57 . 2017-08-09 06:58 50688 ----a-w- c:\windows\system32\wermgr.exe
2017-07-14 14:50 . 2017-08-09 06:58 54272 ----a-w- c:\windows\SysWow64\wermgr.exe
2017-07-14 14:50 . 2017-08-09 06:58 28672 ----a-w- c:\windows\SysWow64\werdiagcontroller.dll
2017-07-14 07:16 . 2017-08-09 06:58 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2017-07-14 07:15 . 2017-08-09 06:57 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2017-07-14 06:49 . 2017-08-09 06:58 25733632 ----a-w- c:\windows\system32\mshtml.dll
2017-07-14 06:47 . 2017-08-09 06:58 66560 ----a-w- c:\windows\system32\iesetup.dll
2017-07-14 06:45 . 2017-08-09 06:58 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2017-07-14 06:45 . 2017-08-09 06:58 417792 ----a-w- c:\windows\system32\html.iec
2017-07-14 06:44 . 2017-08-09 06:58 576512 ----a-w- c:\windows\system32\vbscript.dll
2017-07-14 06:44 . 2017-08-09 06:58 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2017-07-14 06:38 . 2017-08-09 06:58 2899456 ----a-w- c:\windows\system32\iertutil.dll
2017-07-14 06:29 . 2017-08-09 06:58 54784 ----a-w- c:\windows\system32\jsproxy.dll
2017-07-14 06:28 . 2017-08-09 06:58 34304 ----a-w- c:\windows\system32\iernonce.dll
2017-07-14 06:22 . 2017-08-09 06:58 615936 ----a-w- c:\windows\system32\ieui.dll
2017-07-14 06:20 . 2017-08-09 06:58 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2017-07-14 06:20 . 2017-08-09 06:58 116224 ----a-w- c:\windows\system32\ieetwcollector.exe
2017-07-14 06:19 . 2017-08-09 06:58 817664 ----a-w- c:\windows\system32\jscript.dll
2017-07-14 06:19 . 2017-08-09 06:58 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2017-07-14 06:08 . 2017-08-09 06:58 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2017-07-14 06:02 . 2017-08-09 06:58 489984 ----a-w- c:\windows\system32\dxtmsft.dll
2017-07-14 05:49 . 2017-08-09 06:58 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2017-07-14 05:48 . 2017-08-09 06:58 87552 ----a-w- c:\windows\system32\tdc.ocx
2017-07-14 05:47 . 2017-08-09 06:58 107520 ----a-w- c:\windows\system32\inseng.dll
2017-07-14 05:42 . 2017-08-09 06:58 199680 ----a-w- c:\windows\system32\msrating.dll
2017-07-14 05:40 . 2017-08-09 06:58 92160 ----a-w- c:\windows\system32\mshtmled.dll
2017-07-14 05:35 . 2017-08-09 06:58 315392 ----a-w- c:\windows\system32\dxtrans.dll
2017-07-14 05:35 . 2017-08-09 06:58 5981184 ----a-w- c:\windows\system32\jscript9.dll
2017-07-14 05:33 . 2017-08-09 06:58 152064 ----a-w- c:\windows\system32\occache.dll
2017-07-14 05:16 . 2017-08-09 06:58 262144 ----a-w- c:\windows\system32\webcheck.dll
2017-07-14 05:11 . 2017-08-09 06:58 725504 ----a-w- c:\windows\system32\ie4uinit.exe
2017-07-14 05:10 . 2017-08-09 06:58 806912 ----a-w- c:\windows\system32\msfeeds.dll
2017-07-14 05:09 . 2017-08-09 06:58 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2017-07-14 05:09 . 2017-08-09 06:58 2132992 ----a-w- c:\windows\system32\inetcpl.cpl
2017-07-14 04:40 . 2017-08-09 06:58 15254016 ----a-w- c:\windows\system32\ieframe.dll
2017-07-14 04:23 . 2017-08-09 06:58 3240960 ----a-w- c:\windows\system32\wininet.dll
2017-07-14 04:07 . 2017-08-09 06:58 1545728 ----a-w- c:\windows\system32\urlmon.dll
2017-07-14 03:58 . 2017-08-09 06:58 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2017-07-14 03:01 . 2017-08-09 06:58 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2017-07-14 02:48 . 2017-08-09 06:58 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2017-07-14 02:48 . 2017-08-09 06:58 499200 ----a-w- c:\windows\SysWow64\vbscript.dll
2017-07-14 02:48 . 2017-08-09 06:58 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2017-07-14 02:48 . 2017-08-09 06:58 341504 ----a-w- c:\windows\SysWow64\html.iec
2017-07-14 02:47 . 2017-08-09 06:58 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2017-07-14 02:38 . 2017-08-09 06:58 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2017-07-14 02:38 . 2017-08-09 06:58 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2017-07-14 02:26 . 2017-08-09 06:58 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-07-14 02:25 . 2017-08-09 06:58 73216 ----a-w- c:\windows\SysWow64\tdc.ocx
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mobile Partner"="c:\program files (x86)\Parametres SFR 3G\Parametres SFR 3G" [X]
"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2015-07-27 1566016]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2017-08-03 9832152]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE" [2014-11-14 417776]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2017-08-05 4027504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-13 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2015-07-27 311616]
.
c:\users\MOA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 - Capture d'écran et lancement.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswTap;avast! SecureLine TAP Adapter v3;c:\windows\system32\DRIVERS\aswTap.sys;c:\windows\SYSNATIVE\DRIVERS\aswTap.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\DRIVERS\ew_jucdcecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcecm.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
R3 MBAMProtection;MBAMProtection;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Prise en charge de la numérisation WSD via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 RapportHades64;RapportHades64;c:\windows\System32\Drivers\RapportHades64.sys;c:\windows\SYSNATIVE\Drivers\RapportHades64.sys [x]
S0 RapportKE64;RapportKE64;c:\windows\System32\Drivers\RapportKE64.sys;c:\windows\SYSNATIVE\Drivers\RapportKE64.sys [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S1 RapportAegle64;RapportAegle64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [x]
S1 RapportCerberus_1804073;RapportCerberus_1804073;c:\programdata\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804073.sys;c:\programdata\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804073.sys [x]
S1 RapportEI64;RapportEI64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [x]
S1 RapportPG64;RapportPG64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe;c:\windows\SYSNATIVE\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EPSON_PM_RPCV4_06;EPSON V3 Service4(06);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 RapportMgmtService;Rapport Management Service;c:\program files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe;c:\program files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [x]
S2 ss_conn_service;SAMSUNG Mobile Connectivity Service;c:\program files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe;c:\program files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AiCharger;ASUS Charger Driver;c:\windows\system32\DRIVERS\AiCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AiCharger.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Contenu du dossier 'Tâches planifiées'
.
2017-09-13 c:\windows\Tasks\EPSON XP-243 245 247 Series Update {029954AE-9BC4-41CE-89FB-B75570391B92}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [2017-06-05 23:30]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-11 2213992]
"ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"IntelTBRunOnce"="wscript.exe" [2013-10-12 168960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Télécharger avec IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\MOA\AppData\Roaming\Mozilla\Firefox\Profiles\8ho6fuj7.default-1426972149348\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
{CDC95B92-E27C-4745-A8C5-64A52A78855D}"-IDM Shell Extension - ShellIconOverlayIdentifiers
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\FaceLogon\sensorsrv.exe
c:\program files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\windows\AsScrPro.exe
c:\program files (x86)\Trusteer\Rapport\bin\RapportService.exe
c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Heure de fin: 2017-09-13 13:14:25 - La machine a redémarré
ComboFix-quarantined-files.txt 2017-09-13 11:14
ComboFix2.txt 2017-09-09 15:18
ComboFix4.txt 2017-08-21 19:22
.
Avant-CF: 235 754 778 624 octets libres
Après-CF: 235 678 863 360 octets libres
.
- - End Of File - - F9A477DB793A32A8258BDCE0BDDA01F6
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4005.2067 [GMT 2:00]
Lancé depuis: c:\users\MOA\Desktop\ComboFix.exe
Commutateurs utilisés :: c:\users\MOA\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\MOA\Documents\~WRL0005.tmp
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2017-08-13 au 2017-09-13 ))))))))))))))))))))))))))))))))))))
.
.
2017-09-13 11:04 . 2017-09-13 11:04 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2017-09-13 11:04 . 2017-09-13 11:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-09-12 14:31 . 2017-09-09 23:39 13482976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0D847434-F507-4428-B69A-14F1EB7F2560}\mpengine.dll
2017-09-05 20:23 . 2017-09-05 20:23 -------- d-----w- C:\NAPACHE
2017-09-01 16:29 . 2017-09-01 16:29 112592 ----a-w- c:\program files (x86)\Mozilla Firefox\AccessibleHandler.dll
2017-08-27 15:54 . 2017-08-29 23:48 -------- d-----w- C:\DIDIER
2017-08-24 09:54 . 2017-08-24 10:17 146696 ----a-w- c:\windows\system32\drivers\aswmonflt.sys.150356983038607
2017-08-24 09:54 . 2017-08-24 10:16 146664 ----a-w- c:\windows\system32\drivers\aswmonflt.sys.150356982550403
2017-08-24 09:54 . 2017-08-24 10:15 1015848 ----a-w- c:\windows\system32\drivers\aswsnx.sys.150356983038607
2017-08-24 09:53 . 2017-08-24 09:53 53904 ----a-w- c:\windows\system32\drivers\aswTap.sys
2017-08-20 16:38 . 2017-08-20 16:38 -------- d-----w- C:\$AV_ASW
2017-08-18 14:49 . 2017-08-30 11:23 -------- d-----w- C:\FRST
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-09-13 10:45 . 2017-07-28 05:38 45472 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-09-13 10:45 . 2017-07-28 05:38 253856 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2017-09-09 08:02 . 2017-07-28 13:30 101784 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-09-09 06:50 . 2017-07-28 05:38 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-08-27 13:39 . 2017-07-28 05:38 188352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2017-08-25 21:09 . 2017-06-07 20:40 506400 ----a-w- c:\windows\system32\drivers\RapportKE64.sys
2017-08-25 21:09 . 2017-06-07 20:40 252352 ----a-w- c:\windows\system32\drivers\RapportHades64.sys
2017-08-23 18:31 . 2017-08-11 00:31 803328 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2017-08-23 18:31 . 2017-08-11 00:31 144896 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-08-09 09:01 . 2017-04-21 15:54 140394280 -c--a-w- c:\windows\system32\MRT.exe
2017-08-05 16:26 . 2017-08-05 16:31 225568 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2017-07-29 14:56 . 2017-08-09 06:58 117248 ----a-w- c:\windows\system32\drivers\tdx.sys
2017-07-28 13:33 . 2017-07-28 13:29 77376 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-07-24 13:41 . 2015-03-21 14:12 146696 ----a-w- c:\windows\system32\drivers\asw87df28ff1def473a.tmp
2017-07-21 14:26 . 2017-08-09 06:57 282624 ----a-w- c:\windows\SysWow64\mstext40.dll
2017-07-21 14:26 . 2017-08-09 06:58 518144 ----a-w- c:\windows\SysWow64\msjetoledb40.dll
2017-07-21 14:26 . 2017-08-09 06:58 290816 ----a-w- c:\windows\SysWow64\msjtes40.dll
2017-07-21 14:26 . 2017-08-09 06:57 409600 ----a-w- c:\windows\SysWow64\msexch40.dll
2017-07-18 14:52 . 2017-02-07 14:08 57728 ----a-w- c:\windows\system32\drivers\aswdda16e2a8c827fa1.tmp
2017-07-18 14:52 . 2017-02-07 14:08 343288 ----a-w- c:\windows\system32\drivers\asw9b317ee47c5f5d34.tmp
2017-07-18 14:52 . 2017-02-07 14:08 320008 ----a-w- c:\windows\system32\drivers\asw3a494d8621e2843c.tmp
2017-07-18 14:52 . 2017-02-07 14:08 198976 ----a-w- c:\windows\system32\drivers\asw3925f9b5953bf73c.tmp
2017-07-15 18:35 . 2017-08-09 06:58 394448 ----a-w- c:\windows\system32\iedkcs32.dll
2017-07-14 15:29 . 2017-08-09 06:58 486400 ----a-w- c:\windows\system32\wer.dll
2017-07-14 15:29 . 2017-08-09 06:58 34304 ----a-w- c:\windows\system32\werdiagcontroller.dll
2017-07-14 15:29 . 2017-08-09 06:58 2319872 ----a-w- c:\windows\system32\tquery.dll
2017-07-14 15:29 . 2017-08-09 06:58 2058240 ----a-w- c:\windows\system32\Query.dll
2017-07-14 15:29 . 2017-08-09 06:58 2222080 ----a-w- c:\windows\system32\mssrch.dll
2017-07-14 15:29 . 2017-08-09 06:58 778240 ----a-w- c:\windows\system32\mssvp.dll
2017-07-14 15:29 . 2017-08-09 06:58 491520 ----a-w- c:\windows\system32\mssph.dll
2017-07-14 15:29 . 2017-08-09 06:58 99840 ----a-w- c:\windows\system32\mssprxy.dll
2017-07-14 15:29 . 2017-08-09 06:58 288256 ----a-w- c:\windows\system32\mssphtb.dll
2017-07-14 15:29 . 2017-08-09 06:58 115200 ----a-w- c:\windows\system32\mssitlb.dll
2017-07-14 15:29 . 2017-08-09 06:58 75264 ----a-w- c:\windows\system32\msscntrs.dll
2017-07-14 15:29 . 2017-08-09 06:58 14336 ----a-w- c:\windows\system32\msshooks.dll
2017-07-14 15:12 . 2017-08-09 06:58 591872 ----a-w- c:\windows\system32\SearchIndexer.exe
2017-07-14 15:12 . 2017-08-09 06:58 249856 ----a-w- c:\windows\system32\SearchProtocolHost.exe
2017-07-14 15:11 . 2017-08-09 06:58 113664 ----a-w- c:\windows\system32\SearchFilterHost.exe
2017-07-14 15:10 . 2017-08-09 06:58 382976 ----a-w- c:\windows\SysWow64\wer.dll
2017-07-14 15:10 . 2017-08-09 06:58 1549824 ----a-w- c:\windows\SysWow64\tquery.dll
2017-07-14 15:10 . 2017-08-09 06:58 1363968 ----a-w- c:\windows\SysWow64\Query.dll
2017-07-14 15:10 . 2017-08-09 06:58 1400320 ----a-w- c:\windows\SysWow64\mssrch.dll
2017-07-14 15:10 . 2017-08-09 06:58 666624 ----a-w- c:\windows\SysWow64\mssvp.dll
2017-07-14 15:10 . 2017-08-09 06:58 337408 ----a-w- c:\windows\SysWow64\mssph.dll
2017-07-14 15:10 . 2017-08-09 06:58 197120 ----a-w- c:\windows\SysWow64\mssphtb.dll
2017-07-14 15:10 . 2017-08-09 06:58 104448 ----a-w- c:\windows\SysWow64\mssitlb.dll
2017-07-14 15:10 . 2017-08-09 06:58 34816 ----a-w- c:\windows\SysWow64\mssprxy.dll
2017-07-14 15:10 . 2017-08-09 06:58 59392 ----a-w- c:\windows\SysWow64\msscntrs.dll
2017-07-14 15:00 . 2017-08-09 06:58 427520 ----a-w- c:\windows\SysWow64\SearchIndexer.exe
2017-07-14 15:00 . 2017-08-09 06:58 164352 ----a-w- c:\windows\SysWow64\SearchProtocolHost.exe
2017-07-14 14:59 . 2017-08-09 06:58 86528 ----a-w- c:\windows\SysWow64\SearchFilterHost.exe
2017-07-14 14:59 . 2017-08-09 06:58 9728 ----a-w- c:\windows\SysWow64\msshooks.dll
2017-07-14 14:57 . 2017-08-09 06:58 50688 ----a-w- c:\windows\system32\wermgr.exe
2017-07-14 14:50 . 2017-08-09 06:58 54272 ----a-w- c:\windows\SysWow64\wermgr.exe
2017-07-14 14:50 . 2017-08-09 06:58 28672 ----a-w- c:\windows\SysWow64\werdiagcontroller.dll
2017-07-14 07:16 . 2017-08-09 06:58 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2017-07-14 07:15 . 2017-08-09 06:57 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2017-07-14 06:49 . 2017-08-09 06:58 25733632 ----a-w- c:\windows\system32\mshtml.dll
2017-07-14 06:47 . 2017-08-09 06:58 66560 ----a-w- c:\windows\system32\iesetup.dll
2017-07-14 06:45 . 2017-08-09 06:58 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2017-07-14 06:45 . 2017-08-09 06:58 417792 ----a-w- c:\windows\system32\html.iec
2017-07-14 06:44 . 2017-08-09 06:58 576512 ----a-w- c:\windows\system32\vbscript.dll
2017-07-14 06:44 . 2017-08-09 06:58 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2017-07-14 06:38 . 2017-08-09 06:58 2899456 ----a-w- c:\windows\system32\iertutil.dll
2017-07-14 06:29 . 2017-08-09 06:58 54784 ----a-w- c:\windows\system32\jsproxy.dll
2017-07-14 06:28 . 2017-08-09 06:58 34304 ----a-w- c:\windows\system32\iernonce.dll
2017-07-14 06:22 . 2017-08-09 06:58 615936 ----a-w- c:\windows\system32\ieui.dll
2017-07-14 06:20 . 2017-08-09 06:58 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2017-07-14 06:20 . 2017-08-09 06:58 116224 ----a-w- c:\windows\system32\ieetwcollector.exe
2017-07-14 06:19 . 2017-08-09 06:58 817664 ----a-w- c:\windows\system32\jscript.dll
2017-07-14 06:19 . 2017-08-09 06:58 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2017-07-14 06:08 . 2017-08-09 06:58 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2017-07-14 06:02 . 2017-08-09 06:58 489984 ----a-w- c:\windows\system32\dxtmsft.dll
2017-07-14 05:49 . 2017-08-09 06:58 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2017-07-14 05:48 . 2017-08-09 06:58 87552 ----a-w- c:\windows\system32\tdc.ocx
2017-07-14 05:47 . 2017-08-09 06:58 107520 ----a-w- c:\windows\system32\inseng.dll
2017-07-14 05:42 . 2017-08-09 06:58 199680 ----a-w- c:\windows\system32\msrating.dll
2017-07-14 05:40 . 2017-08-09 06:58 92160 ----a-w- c:\windows\system32\mshtmled.dll
2017-07-14 05:35 . 2017-08-09 06:58 315392 ----a-w- c:\windows\system32\dxtrans.dll
2017-07-14 05:35 . 2017-08-09 06:58 5981184 ----a-w- c:\windows\system32\jscript9.dll
2017-07-14 05:33 . 2017-08-09 06:58 152064 ----a-w- c:\windows\system32\occache.dll
2017-07-14 05:16 . 2017-08-09 06:58 262144 ----a-w- c:\windows\system32\webcheck.dll
2017-07-14 05:11 . 2017-08-09 06:58 725504 ----a-w- c:\windows\system32\ie4uinit.exe
2017-07-14 05:10 . 2017-08-09 06:58 806912 ----a-w- c:\windows\system32\msfeeds.dll
2017-07-14 05:09 . 2017-08-09 06:58 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2017-07-14 05:09 . 2017-08-09 06:58 2132992 ----a-w- c:\windows\system32\inetcpl.cpl
2017-07-14 04:40 . 2017-08-09 06:58 15254016 ----a-w- c:\windows\system32\ieframe.dll
2017-07-14 04:23 . 2017-08-09 06:58 3240960 ----a-w- c:\windows\system32\wininet.dll
2017-07-14 04:07 . 2017-08-09 06:58 1545728 ----a-w- c:\windows\system32\urlmon.dll
2017-07-14 03:58 . 2017-08-09 06:58 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2017-07-14 03:01 . 2017-08-09 06:58 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2017-07-14 02:48 . 2017-08-09 06:58 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2017-07-14 02:48 . 2017-08-09 06:58 499200 ----a-w- c:\windows\SysWow64\vbscript.dll
2017-07-14 02:48 . 2017-08-09 06:58 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2017-07-14 02:48 . 2017-08-09 06:58 341504 ----a-w- c:\windows\SysWow64\html.iec
2017-07-14 02:47 . 2017-08-09 06:58 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2017-07-14 02:38 . 2017-08-09 06:58 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2017-07-14 02:38 . 2017-08-09 06:58 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2017-07-14 02:26 . 2017-08-09 06:58 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-07-14 02:25 . 2017-08-09 06:58 73216 ----a-w- c:\windows\SysWow64\tdc.ocx
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mobile Partner"="c:\program files (x86)\Parametres SFR 3G\Parametres SFR 3G" [X]
"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2015-07-27 1566016]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2017-08-03 9832152]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE" [2014-11-14 417776]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2017-08-05 4027504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-13 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2011-07-21 5716608]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2015-07-27 311616]
.
c:\users\MOA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 - Capture d'écran et lancement.lnk - c:\program files (x86)\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswTap;avast! SecureLine TAP Adapter v3;c:\windows\system32\DRIVERS\aswTap.sys;c:\windows\SYSNATIVE\DRIVERS\aswTap.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys;c:\windows\SYSNATIVE\DRIVERS\ew_hwusbdev.sys [x]
R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys;c:\windows\SYSNATIVE\DRIVERS\ew_usbenumfilter.sys [x]
R3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\DRIVERS\ew_jucdcacm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcacm.sys [x]
R3 huawei_cdcecm;huawei_cdcecm;c:\windows\system32\DRIVERS\ew_jucdcecm.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jucdcecm.sys [x]
R3 huawei_ext_ctrl;huawei_ext_ctrl;c:\windows\system32\DRIVERS\ew_juextctrl.sys;c:\windows\SYSNATIVE\DRIVERS\ew_juextctrl.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
R3 MBAMProtection;MBAMProtection;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;Prise en charge de la numérisation WSD via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 RapportHades64;RapportHades64;c:\windows\System32\Drivers\RapportHades64.sys;c:\windows\SYSNATIVE\Drivers\RapportHades64.sys [x]
S0 RapportKE64;RapportKE64;c:\windows\System32\Drivers\RapportKE64.sys;c:\windows\SYSNATIVE\Drivers\RapportKE64.sys [x]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S1 RapportAegle64;RapportAegle64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [x]
S1 RapportCerberus_1804073;RapportCerberus_1804073;c:\programdata\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804073.sys;c:\programdata\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1804073.sys [x]
S1 RapportEI64;RapportEI64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [x]
S1 RapportPG64;RapportPG64;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys;c:\program files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe;c:\windows\SYSNATIVE\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EPSON_PM_RPCV4_06;EPSON V3 Service4(06);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 RapportMgmtService;Rapport Management Service;c:\program files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe;c:\program files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [x]
S2 ss_conn_service;SAMSUNG Mobile Connectivity Service;c:\program files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe;c:\program files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AiCharger;ASUS Charger Driver;c:\windows\system32\DRIVERS\AiCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AiCharger.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys;c:\windows\SYSNATIVE\DRIVERS\ew_jubusenum.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Contenu du dossier 'Tâches planifiées'
.
2017-09-13 c:\windows\Tasks\EPSON XP-243 245 247 Series Update {029954AE-9BC4-41CE-89FB-B75570391B92}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [2017-06-05 23:30]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-05-11 2213992]
"ETDCtrl"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"IntelTBRunOnce"="wscript.exe" [2013-10-12 168960]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Télécharger avec IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\MOA\AppData\Roaming\Mozilla\Firefox\Profiles\8ho6fuj7.default-1426972149348\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
{CDC95B92-E27C-4745-A8C5-64A52A78855D}"-IDM Shell Extension - ShellIconOverlayIdentifiers
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_171_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_25_0_0_171_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\FaceLogon\sensorsrv.exe
c:\program files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\windows\AsScrPro.exe
c:\program files (x86)\Trusteer\Rapport\bin\RapportService.exe
c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
.
**************************************************************************
.
Heure de fin: 2017-09-13 13:14:25 - La machine a redémarré
ComboFix-quarantined-files.txt 2017-09-13 11:14
ComboFix2.txt 2017-09-09 15:18
ComboFix4.txt 2017-08-21 19:22
.
Avant-CF: 235 754 778 624 octets libres
Après-CF: 235 678 863 360 octets libres
.
- - End Of File - - F9A477DB793A32A8258BDCE0BDDA01F6