Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 13-10-01.03 - Jeremy 02/10/2013 22:23:46.1.4 - x64
Microsoft Windows 8 Professionnel 6.2.9200.0.1252.33.1036.18.8012.5821 [GMT 2:00]
Lanc� depuis: c:\users\Jeremy\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
[i] ADS - windows: deleted 0 bytes in 1 streams. [/i]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini
c:\programdata\Roaming
c:\users\Jeremy\AppData\Roaming\Microsoft\Windows\Recent\Thumbs.db
c:\windows\PFRO.log
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((( Fichiers cr��s du 2013-09-02 au 2013-10-02 ))))))))))))))))))))))))))))))))))))
.
.
2013-10-02 20:28 . 2013-10-02 20:28 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-10-02 20:28 . 2013-10-02 20:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-02 19:41 . 2013-10-02 19:41 -------- d-----w- c:\programdata\Malwarebytes
2013-10-02 19:33 . 2013-10-02 19:33 -------- d-----w- c:\windows\ServiceProfiles\LocalService\winhttp
2013-10-02 15:58 . 2013-10-02 15:58 -------- d-----w- c:\program files (x86)\PDF Technologies
2013-10-02 14:41 . 2013-10-02 14:41 -------- d-----w- c:\program files\Enigma Software Group
2013-10-02 14:41 . 2013-10-02 15:00 -------- d-----w- c:\windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-10-02 14:41 . 2013-10-02 14:41 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-09-27 07:35 . 2013-09-30 06:16 -------- d-----w- c:\program files (x86)\SEO Soft
2013-09-26 15:06 . 2013-09-26 15:06 -------- d-----w- c:\program files (x86)\Cisco
2013-09-20 07:07 . 2013-09-20 07:07 -------- d-----w- c:\users\Jeremy\AppData\Local\Eraser 6
2013-09-20 06:56 . 2013-09-20 07:00 -------- d-----w- c:\program files\Eraser
2013-09-16 11:06 . 2013-09-16 11:06 -------- d-----w- c:\program files\VideoLAN
2013-09-14 20:06 . 2013-09-14 20:06 279040 ----a-w- c:\windows\system32\StartMenuHelper64.dll
2013-09-14 20:05 . 2013-09-14 20:05 229376 ----a-w- c:\windows\SysWow64\StartMenuHelper32.dll
2013-09-11 06:35 . 2013-08-16 05:32 209200 ----a-w- c:\windows\system32\NotificationUI.exe
2013-09-11 06:34 . 2013-08-21 04:11 19246592 ----a-w- c:\windows\system32\mshtml.dll
2013-09-05 09:12 . 2013-09-05 09:12 66344 ----a-w- c:\windows\system32\ibmpmsvc.exe
2013-09-05 09:12 . 2013-09-05 09:12 60712 ----a-w- c:\windows\system32\ibmpmctl.exe
2013-09-05 09:12 . 2013-09-05 09:12 54528 ----a-w- c:\windows\system32\drivers\ibmpmdrv.sys
2013-09-05 09:12 . 2013-09-05 09:12 40232 ----a-w- c:\windows\system32\tpinspm.dll
2013-09-03 13:28 . 2013-09-03 13:28 59816 ----a-r- c:\users\Jeremy\AppData\Roaming\Microsoft\Installer\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}\ARPPRODUCTICON.exe
2013-09-03 13:28 . 2013-09-03 13:28 -------- d-----w- c:\program files\Common Files\Lenovo
2013-09-03 13:28 . 2013-09-03 13:28 59816 ----a-r- c:\users\Jeremy\AppData\Roaming\Microsoft\Installer\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}\ARPPRODUCTICON.exe
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-18 23:26 . 2012-07-26 08:14 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-18 23:26 . 2012-07-26 08:14 694232 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-09-11 06:36 . 2013-08-05 11:22 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-30 07:48 . 2013-08-06 06:16 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-08-06 06:16 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-08-06 06:16 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-08-06 06:16 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-08-06 06:16 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-08-06 06:16 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-08-06 06:16 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-08-06 06:16 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-08-06 06:15 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2013-08-06 06:16 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-06 06:27 . 2013-08-05 21:36 135736 ----a-w- c:\windows\system32\vpncmd.exe
2013-08-05 21:38 . 2013-08-05 21:38 28768 ----a-w- c:\windows\system32\drivers\Neo_VPN.sys
2013-08-05 20:00 . 2013-08-05 20:00 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-08-05 10:33 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-08-02 11:42 . 2013-08-02 11:42 4262128 ----a-w- c:\windows\system32\wlihvui.dll
2013-08-02 11:42 . 2013-08-02 11:42 2352368 ----a-w- c:\windows\system32\iwmssvc.dll
2013-08-01 11:59 . 2013-08-05 13:29 2775336 ----a-w- c:\windows\system32\drivers\UMDF\PMVUDDRV.dll
2013-08-01 05:42 . 2012-12-11 00:22 20736 ----a-w- c:\windows\system32\drivers\TPPWR64V.SYS
2013-07-27 03:58 . 2012-07-26 07:24 2207232 ----a-w- c:\windows\SysWow64\PrintConfig.dll
2013-07-17 18:55 . 2012-12-11 00:18 2832208 ----a-w- c:\windows\system32\nvapi64.dll
2013-07-17 18:55 . 2012-12-11 00:18 245872 ----a-w- c:\windows\system32\nvinitx.dll
2013-07-17 18:55 . 2012-12-11 00:18 1107440 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-07-17 18:55 . 2012-10-08 18:42 961192 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2013-07-17 18:55 . 2012-10-08 18:42 2510800 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-07-17 18:55 . 2012-10-08 18:42 15136640 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-07-17 18:55 . 2012-10-08 18:42 201576 ----a-w- c:\windows\SysWow64\nvinit.dll
2013-07-17 13:17 . 2012-12-11 00:18 6415648 ----a-w- c:\windows\system32\nvcpl.dll
2013-07-17 13:17 . 2012-12-11 00:18 3459360 ----a-w- c:\windows\system32\nvsvc64.dll
2013-07-17 13:16 . 2012-12-11 00:18 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-07-17 13:16 . 2012-12-11 00:18 560928 ----a-w- c:\windows\SysWow64\oemdspif.dll
2013-07-17 13:16 . 2012-12-11 00:18 3274475 ----a-w- c:\windows\system32\nvcoproc.bin
2013-07-17 13:16 . 2012-12-11 00:18 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-07-17 13:16 . 2012-12-11 00:18 2558240 ----a-w- c:\windows\system32\nvsvcr.dll
2013-07-17 13:16 . 2012-12-11 00:18 118560 ----a-w- c:\windows\system32\nvmctray.dll
2013-07-17 13:16 . 2012-12-11 00:18 76064 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-07-17 13:16 . 2012-12-11 00:18 1001760 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-07-17 07:31 . 2013-07-17 07:31 551712 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-07-13 06:18 . 2013-08-14 09:37 337408 ----a-w- c:\windows\system32\wintrust.dll
2013-07-13 06:16 . 2013-08-14 09:37 68096 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-13 06:16 . 2013-08-14 09:37 1889280 ----a-w- c:\windows\system32\crypt32.dll
2013-07-13 06:15 . 2013-08-14 09:37 98304 ----a-w- c:\windows\system32\apprepsync.dll
2013-07-13 06:15 . 2013-08-14 09:37 124416 ----a-w- c:\windows\system32\apprepapi.dll
2013-07-13 04:24 . 2013-08-14 09:37 261120 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-07-13 04:23 . 2013-08-14 09:37 1568256 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-13 04:23 . 2013-08-14 09:37 87040 ----a-w- c:\windows\SysWow64\apprepapi.dll
2013-07-13 04:23 . 2013-08-14 09:37 74240 ----a-w- c:\windows\SysWow64\apprepsync.dll
2013-07-09 08:04 . 2013-08-14 09:43 120144 ----a-w- c:\windows\system32\drivers\msgpioclx.sys
2013-07-09 06:18 . 2013-08-14 09:43 439488 ----a-w- c:\windows\system32\WerFault.exe
2013-07-09 04:25 . 2013-08-14 09:43 385768 ----a-w- c:\windows\SysWow64\WerFault.exe
2013-07-09 03:57 . 2013-08-14 09:43 245760 ----a-w- c:\windows\SysWow64\LocationApi.dll
2013-07-08 22:46 . 2013-08-14 09:43 414208 ----a-w- c:\windows\system32\wwanconn.dll
2013-07-08 22:46 . 2013-08-14 09:43 370688 ----a-w- c:\windows\system32\Wwanadvui.dll
2013-07-08 22:46 . 2013-08-14 09:43 543744 ----a-w- c:\windows\system32\wwanmm.dll
2013-07-08 22:45 . 2013-08-14 09:43 312832 ----a-w- c:\windows\system32\LocationApi.dll
2013-07-06 00:16 . 2013-08-14 09:43 1025024 ----a-w- c:\windows\system32\localspl.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les �l�ments vides & les �l�ments initiaux l�gitimes ne sont pas list�s
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-09-14 20:06 605664 ----a-w- c:\program files\Classic Shell\ClassicExplorer32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BrowserChoice"="c:\windows\BrowserChoice\browserchoice.exe" [2012-08-15 86696]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-07-25 20684656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2013-05-30 132920]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2012-05-03 59392]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2013-08-01 6618920]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"BingDesktop"="c:\program files (x86)\Microsoft\BingDesktop\BingDesktop.exe" [2013-06-20 2249352]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" [2013-05-11 3478600]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
UltraMon.lnk - c:\windows\Installer\{ED7FE81C-378C-411D-B5B4-509B978BA204}\IcoUltraMon.ico /auto [2013-8-6 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 LSCWinService;LSCWinService;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R3 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
R3 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 SWIX64;SWIX64;c:\program files (x86)\Lenovo\System Update\tvsuhd64.sys;c:\program files (x86)\Lenovo\System Update\tvsuhd64.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WSDScan;Prise en charge de la num�risation WSD;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys;c:\windows\SYSNATIVE\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 BingDesktopUpdate;Bing Desktop Update service;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Lenovo Settings Service;Lenovo Settings Service;c:\program files\Lenovo\SettingsDependency\SettingsService.exe;c:\program files\Lenovo\SettingsDependency\SettingsService.exe [x]
S2 Lenovo System Agent Service;Lenovo System Agent Service;c:\program files\lenovo\SystemAgent\SystemAgentService.exe;c:\program files\lenovo\SystemAgent\SystemAgentService.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller;c:\program files\Lenovo\Communications Utility\vcamsvc.exe;c:\program files\Lenovo\Communications Utility\vcamsvc.exe [x]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [x]
S2 LnvHotSpotSvc;LnvMHService;c:\program files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe;c:\program files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [x]
S2 LocationTaskManager;Location Task Manager;c:\program files (x86)\Lenovo\LocationAware\loctaskmgr.exe;c:\program files (x86)\Lenovo\LocationAware\loctaskmgr.exe [x]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]
S2 SEVPNCLIENT;SoftEther VPN Client;c:\program files\SoftEther VPN Client\vpnclient_x64.exe;c:\program files\SoftEther VPN Client\vpnclient_x64.exe [x]
S2 smihlp2;SMI Helper Driver (smihlp2);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys;c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 AVControlCenter;AVControlCenter;c:\program files\Lenovo\Communications Utility\AVControlCenter32.exe;c:\program files\Lenovo\Communications Utility\AVControlCenter32.exe [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BthLEEnum;Pilote Bluetooth Low Energy;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 BTWPANFL;BTW PAN filter driver;c:\windows\system32\drivers\btwpanfl.sys;c:\windows\SYSNATIVE\drivers\btwpanfl.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\System32\drivers\iwdbus.sys;c:\windows\SYSNATIVE\drivers\iwdbus.sys [x]
S3 LenovoRd;LenovoRd;c:\windows\system32\DRIVERS\LenovoRd.sys;c:\windows\SYSNATIVE\DRIVERS\LenovoRd.sys [x]
S3 LnvHIDHW;Lenovo HID Mini-driver for Hardware Radio Switch;c:\windows\System32\drivers\LnvHIDHW.sys;c:\windows\SYSNATIVE\drivers\LnvHIDHW.sys [x]
S3 Neo_VPN;VPN Client Device Driver - VPN;c:\windows\system32\DRIVERS\Neo_VPN.sys;c:\windows\SYSNATIVE\DRIVERS\Neo_VPN.sys [x]
S3 NETwNe64;@oem131.inf,___ %NIC_Service_DispName_WIN8_64%;___ Pilote de carte de la s�rie Intel(R) Wireless WiFi Link 5000 pour Windows 8 64 bits ;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]
S3 Power Manager DBC Service;Lenovo Settings Power Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [x]
S3 RCUVCAVS;Ricoh UVC AVStream driver;c:\windows\system32\DRIVERS\RCUVCAVS.sys;c:\windows\SYSNATIVE\DRIVERS\RCUVCAVS.sys [x]
S3 risdxc;risdxc;c:\windows\System32\drivers\risdxc64.sys;c:\windows\SYSNATIVE\drivers\risdxc64.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 usb3Hub;Intel UoIP Bus;c:\windows\System32\drivers\usb3Hub.sys;c:\windows\SYSNATIVE\drivers\usb3Hub.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S3 XHCIPort;Intel UoIP Host Controller;c:\windows\System32\drivers\XHCIPort.sys;c:\windows\SYSNATIVE\drivers\XHCIPort.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-25 06:30 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe
.
Contenu du dossier 'T�ches planifi�es'
.
2013-10-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-05 05:51]
.
2013-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-05 20:25]
.
2013-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-05 20:25]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-09-14 20:06 743392 ----a-w- c:\program files\Classic Shell\ClassicExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-05-21 13538376]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2013-05-20 1308232]
"TpShocks"="TpShocks.exe" [2012-08-24 222720]
"LnvMobHotspotClient"="c:\program files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe" [2013-06-25 937976]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2013-07-04 593408]
"LenovoOptMouseUpdate"="c:\program files\Lenovo\HOTKEY\extapsup.exe" [2013-04-19 255480]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
"SoftEther VPN Client UI Helper"="c:\program files\SoftEther VPN Client\vpnclient_x64.exe" [2013-08-06 4307000]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-28 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-28 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-28 441152]
.
------- Examen suppl�mentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Ajouter la cible du lien � un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Ajouter � un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.254
DPF: {A6616B31-4860-41E2-98E3-CA7649AF172F} - file:///E:/launch.ocx
FF - ProfilePath - c:\users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\dgy7wig2.default\
FF - prefs.js: browser.search.selectedEngine - Google France (sans personnalisation)
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - prefs.js: keyword.URL - hxxp://www.google.fr/search?hl=fr&pws=0&q=
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 9050
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-08-05 21:33; web2pdfextension@web2pdf.adobedotcom; c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF - ExtSQL: 2013-08-06 08:15; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKCU-Run-SEO Soft - c:\program files (x86)\SEO Soft\seosoft.exe
Wow6432Node-HKLM-Run- - (no file)
Notify-SDWinLogon - SDWinLogon.dll
SafeBoot-76466087.sys
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{A759AFF6-5851-457D-A540-F4ECED148351} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{1574C9EF-7D58-488F-B358-8B78C1538F51} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Heure de fin: 2013-10-02 22:29:45
ComboFix-quarantined-files.txt 2013-10-02 20:29
.
Avant-CF: 117�625�597�952 octets libres
Apr�s-CF: 116�880�805�888 octets libres
.
- - End Of File - - 95DF5740EE22E950DACCBFD235D4D7FA
5FB38429D5D77768867C76DCBDB35194
Microsoft Windows 8 Professionnel 6.2.9200.0.1252.33.1036.18.8012.5821 [GMT 2:00]
Lanc� depuis: c:\users\Jeremy\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
[i] ADS - windows: deleted 0 bytes in 1 streams. [/i]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini
c:\programdata\Roaming
c:\users\Jeremy\AppData\Roaming\Microsoft\Windows\Recent\Thumbs.db
c:\windows\PFRO.log
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((( Fichiers cr��s du 2013-09-02 au 2013-10-02 ))))))))))))))))))))))))))))))))))))
.
.
2013-10-02 20:28 . 2013-10-02 20:28 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-10-02 20:28 . 2013-10-02 20:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-10-02 19:41 . 2013-10-02 19:41 -------- d-----w- c:\programdata\Malwarebytes
2013-10-02 19:33 . 2013-10-02 19:33 -------- d-----w- c:\windows\ServiceProfiles\LocalService\winhttp
2013-10-02 15:58 . 2013-10-02 15:58 -------- d-----w- c:\program files (x86)\PDF Technologies
2013-10-02 14:41 . 2013-10-02 14:41 -------- d-----w- c:\program files\Enigma Software Group
2013-10-02 14:41 . 2013-10-02 15:00 -------- d-----w- c:\windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-10-02 14:41 . 2013-10-02 14:41 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-09-27 07:35 . 2013-09-30 06:16 -------- d-----w- c:\program files (x86)\SEO Soft
2013-09-26 15:06 . 2013-09-26 15:06 -------- d-----w- c:\program files (x86)\Cisco
2013-09-20 07:07 . 2013-09-20 07:07 -------- d-----w- c:\users\Jeremy\AppData\Local\Eraser 6
2013-09-20 06:56 . 2013-09-20 07:00 -------- d-----w- c:\program files\Eraser
2013-09-16 11:06 . 2013-09-16 11:06 -------- d-----w- c:\program files\VideoLAN
2013-09-14 20:06 . 2013-09-14 20:06 279040 ----a-w- c:\windows\system32\StartMenuHelper64.dll
2013-09-14 20:05 . 2013-09-14 20:05 229376 ----a-w- c:\windows\SysWow64\StartMenuHelper32.dll
2013-09-11 06:35 . 2013-08-16 05:32 209200 ----a-w- c:\windows\system32\NotificationUI.exe
2013-09-11 06:34 . 2013-08-21 04:11 19246592 ----a-w- c:\windows\system32\mshtml.dll
2013-09-05 09:12 . 2013-09-05 09:12 66344 ----a-w- c:\windows\system32\ibmpmsvc.exe
2013-09-05 09:12 . 2013-09-05 09:12 60712 ----a-w- c:\windows\system32\ibmpmctl.exe
2013-09-05 09:12 . 2013-09-05 09:12 54528 ----a-w- c:\windows\system32\drivers\ibmpmdrv.sys
2013-09-05 09:12 . 2013-09-05 09:12 40232 ----a-w- c:\windows\system32\tpinspm.dll
2013-09-03 13:28 . 2013-09-03 13:28 59816 ----a-r- c:\users\Jeremy\AppData\Roaming\Microsoft\Installer\{053ACA98-6B07-4DD0-9DB3-F51E3EB1780C}\ARPPRODUCTICON.exe
2013-09-03 13:28 . 2013-09-03 13:28 -------- d-----w- c:\program files\Common Files\Lenovo
2013-09-03 13:28 . 2013-09-03 13:28 59816 ----a-r- c:\users\Jeremy\AppData\Roaming\Microsoft\Installer\{C6FB6B4A-1378-4CD3-9CD3-42BA69FCBD43}\ARPPRODUCTICON.exe
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-09-18 23:26 . 2012-07-26 08:14 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-18 23:26 . 2012-07-26 08:14 694232 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-09-11 06:36 . 2013-08-05 11:22 79143768 ----a-w- c:\windows\system32\MRT.exe
2013-08-30 07:48 . 2013-08-06 06:16 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-30 07:48 . 2013-08-06 06:16 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-30 07:48 . 2013-08-06 06:16 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-30 07:48 . 2013-08-06 06:16 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-30 07:48 . 2013-08-06 06:16 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-30 07:48 . 2013-08-06 06:16 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-30 07:48 . 2013-08-06 06:16 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-30 07:48 . 2013-08-06 06:16 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-30 07:47 . 2013-08-06 06:15 41664 ----a-w- c:\windows\avastSS.scr
2013-08-30 07:47 . 2013-08-06 06:16 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-06 06:27 . 2013-08-05 21:36 135736 ----a-w- c:\windows\system32\vpncmd.exe
2013-08-05 21:38 . 2013-08-05 21:38 28768 ----a-w- c:\windows\system32\drivers\Neo_VPN.sys
2013-08-05 20:00 . 2013-08-05 20:00 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-08-05 10:33 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-08-02 11:42 . 2013-08-02 11:42 4262128 ----a-w- c:\windows\system32\wlihvui.dll
2013-08-02 11:42 . 2013-08-02 11:42 2352368 ----a-w- c:\windows\system32\iwmssvc.dll
2013-08-01 11:59 . 2013-08-05 13:29 2775336 ----a-w- c:\windows\system32\drivers\UMDF\PMVUDDRV.dll
2013-08-01 05:42 . 2012-12-11 00:22 20736 ----a-w- c:\windows\system32\drivers\TPPWR64V.SYS
2013-07-27 03:58 . 2012-07-26 07:24 2207232 ----a-w- c:\windows\SysWow64\PrintConfig.dll
2013-07-17 18:55 . 2012-12-11 00:18 2832208 ----a-w- c:\windows\system32\nvapi64.dll
2013-07-17 18:55 . 2012-12-11 00:18 245872 ----a-w- c:\windows\system32\nvinitx.dll
2013-07-17 18:55 . 2012-12-11 00:18 1107440 ----a-w- c:\windows\system32\nvumdshimx.dll
2013-07-17 18:55 . 2012-10-08 18:42 961192 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2013-07-17 18:55 . 2012-10-08 18:42 2510800 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-07-17 18:55 . 2012-10-08 18:42 15136640 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-07-17 18:55 . 2012-10-08 18:42 201576 ----a-w- c:\windows\SysWow64\nvinit.dll
2013-07-17 13:17 . 2012-12-11 00:18 6415648 ----a-w- c:\windows\system32\nvcpl.dll
2013-07-17 13:17 . 2012-12-11 00:18 3459360 ----a-w- c:\windows\system32\nvsvc64.dll
2013-07-17 13:16 . 2012-12-11 00:18 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-07-17 13:16 . 2012-12-11 00:18 560928 ----a-w- c:\windows\SysWow64\oemdspif.dll
2013-07-17 13:16 . 2012-12-11 00:18 3274475 ----a-w- c:\windows\system32\nvcoproc.bin
2013-07-17 13:16 . 2012-12-11 00:18 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-07-17 13:16 . 2012-12-11 00:18 2558240 ----a-w- c:\windows\system32\nvsvcr.dll
2013-07-17 13:16 . 2012-12-11 00:18 118560 ----a-w- c:\windows\system32\nvmctray.dll
2013-07-17 13:16 . 2012-12-11 00:18 76064 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-07-17 13:16 . 2012-12-11 00:18 1001760 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-07-17 07:31 . 2013-07-17 07:31 551712 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2013-07-13 06:18 . 2013-08-14 09:37 337408 ----a-w- c:\windows\system32\wintrust.dll
2013-07-13 06:16 . 2013-08-14 09:37 68096 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-13 06:16 . 2013-08-14 09:37 1889280 ----a-w- c:\windows\system32\crypt32.dll
2013-07-13 06:15 . 2013-08-14 09:37 98304 ----a-w- c:\windows\system32\apprepsync.dll
2013-07-13 06:15 . 2013-08-14 09:37 124416 ----a-w- c:\windows\system32\apprepapi.dll
2013-07-13 04:24 . 2013-08-14 09:37 261120 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-07-13 04:23 . 2013-08-14 09:37 1568256 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-13 04:23 . 2013-08-14 09:37 87040 ----a-w- c:\windows\SysWow64\apprepapi.dll
2013-07-13 04:23 . 2013-08-14 09:37 74240 ----a-w- c:\windows\SysWow64\apprepsync.dll
2013-07-09 08:04 . 2013-08-14 09:43 120144 ----a-w- c:\windows\system32\drivers\msgpioclx.sys
2013-07-09 06:18 . 2013-08-14 09:43 439488 ----a-w- c:\windows\system32\WerFault.exe
2013-07-09 04:25 . 2013-08-14 09:43 385768 ----a-w- c:\windows\SysWow64\WerFault.exe
2013-07-09 03:57 . 2013-08-14 09:43 245760 ----a-w- c:\windows\SysWow64\LocationApi.dll
2013-07-08 22:46 . 2013-08-14 09:43 414208 ----a-w- c:\windows\system32\wwanconn.dll
2013-07-08 22:46 . 2013-08-14 09:43 370688 ----a-w- c:\windows\system32\Wwanadvui.dll
2013-07-08 22:46 . 2013-08-14 09:43 543744 ----a-w- c:\windows\system32\wwanmm.dll
2013-07-08 22:45 . 2013-08-14 09:43 312832 ----a-w- c:\windows\system32\LocationApi.dll
2013-07-06 00:16 . 2013-08-14 09:43 1025024 ----a-w- c:\windows\system32\localspl.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les �l�ments vides & les �l�ments initiaux l�gitimes ne sont pas list�s
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-09-14 20:06 605664 ----a-w- c:\program files\Classic Shell\ClassicExplorer32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BrowserChoice"="c:\windows\BrowserChoice\browserchoice.exe" [2012-08-15 86696]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-07-25 20684656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IMSS"="c:\program files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" [2013-05-30 132920]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2012-05-03 59392]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2013-08-01 6618920]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"BingDesktop"="c:\program files (x86)\Microsoft\BingDesktop\BingDesktop.exe" [2013-06-20 2249352]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" [2013-05-11 3478600]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-31 152392]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
UltraMon.lnk - c:\windows\Installer\{ED7FE81C-378C-411D-B5B4-509B978BA204}\IcoUltraMon.ico /auto [2013-8-6 29310]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 LSCWinService;LSCWinService;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe;c:\program files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
R3 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
R3 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 SWIX64;SWIX64;c:\program files (x86)\Lenovo\System Update\tvsuhd64.sys;c:\program files (x86)\Lenovo\System Update\tvsuhd64.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WSDScan;Prise en charge de la num�risation WSD;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys;c:\windows\SYSNATIVE\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 BingDesktopUpdate;Bing Desktop Update service;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Lenovo Settings Service;Lenovo Settings Service;c:\program files\Lenovo\SettingsDependency\SettingsService.exe;c:\program files\Lenovo\SettingsDependency\SettingsService.exe [x]
S2 Lenovo System Agent Service;Lenovo System Agent Service;c:\program files\lenovo\SystemAgent\SystemAgentService.exe;c:\program files\lenovo\SystemAgent\SystemAgentService.exe [x]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [x]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [x]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [x]
S2 LENOVO.TVTVCAM;ThinkVantage Virtual Camera Controller;c:\program files\Lenovo\Communications Utility\vcamsvc.exe;c:\program files\Lenovo\Communications Utility\vcamsvc.exe [x]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [x]
S2 LnvHotSpotSvc;LnvMHService;c:\program files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe;c:\program files\Lenovo\Lenovo Mobile Hotspot\LnvHotSpotSvc.exe [x]
S2 LocationTaskManager;Location Task Manager;c:\program files (x86)\Lenovo\LocationAware\loctaskmgr.exe;c:\program files (x86)\Lenovo\LocationAware\loctaskmgr.exe [x]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]
S2 SEVPNCLIENT;SoftEther VPN Client;c:\program files\SoftEther VPN Client\vpnclient_x64.exe;c:\program files\SoftEther VPN Client\vpnclient_x64.exe [x]
S2 smihlp2;SMI Helper Driver (smihlp2);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys;c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [x]
S2 UltraMonUtility;UltraMon Utility Driver;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys;c:\program files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [x]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 AVControlCenter;AVControlCenter;c:\program files\Lenovo\Communications Utility\AVControlCenter32.exe;c:\program files\Lenovo\Communications Utility\AVControlCenter32.exe [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BthLEEnum;Pilote Bluetooth Low Energy;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 BTWPANFL;BTW PAN filter driver;c:\windows\system32\drivers\btwpanfl.sys;c:\windows\SYSNATIVE\drivers\btwpanfl.sys [x]
S3 iwdbus;IWD Bus Enumerator;c:\windows\System32\drivers\iwdbus.sys;c:\windows\SYSNATIVE\drivers\iwdbus.sys [x]
S3 LenovoRd;LenovoRd;c:\windows\system32\DRIVERS\LenovoRd.sys;c:\windows\SYSNATIVE\DRIVERS\LenovoRd.sys [x]
S3 LnvHIDHW;Lenovo HID Mini-driver for Hardware Radio Switch;c:\windows\System32\drivers\LnvHIDHW.sys;c:\windows\SYSNATIVE\drivers\LnvHIDHW.sys [x]
S3 Neo_VPN;VPN Client Device Driver - VPN;c:\windows\system32\DRIVERS\Neo_VPN.sys;c:\windows\SYSNATIVE\DRIVERS\Neo_VPN.sys [x]
S3 NETwNe64;@oem131.inf,___ %NIC_Service_DispName_WIN8_64%;___ Pilote de carte de la s�rie Intel(R) Wireless WiFi Link 5000 pour Windows 8 64 bits ;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x]
S3 Power Manager DBC Service;Lenovo Settings Power Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [x]
S3 RCUVCAVS;Ricoh UVC AVStream driver;c:\windows\system32\DRIVERS\RCUVCAVS.sys;c:\windows\SYSNATIVE\DRIVERS\RCUVCAVS.sys [x]
S3 risdxc;risdxc;c:\windows\System32\drivers\risdxc64.sys;c:\windows\SYSNATIVE\drivers\risdxc64.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 usb3Hub;Intel UoIP Bus;c:\windows\System32\drivers\usb3Hub.sys;c:\windows\SYSNATIVE\drivers\usb3Hub.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S3 XHCIPort;Intel UoIP Host Controller;c:\windows\System32\drivers\XHCIPort.sys;c:\windows\SYSNATIVE\drivers\XHCIPort.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-25 06:30 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe
.
Contenu du dossier 'T�ches planifi�es'
.
2013-10-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-05 05:51]
.
2013-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-05 20:25]
.
2013-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-05 20:25]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ShareOverlay]
@="{594D4122-1F87-41E2-96C7-825FB4796516}"
[HKEY_CLASSES_ROOT\CLSID\{594D4122-1F87-41E2-96C7-825FB4796516}]
2013-09-14 20:06 743392 ----a-w- c:\program files\Classic Shell\ClassicExplorer64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-05-21 13538376]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2013-05-20 1308232]
"TpShocks"="TpShocks.exe" [2012-08-24 222720]
"LnvMobHotspotClient"="c:\program files\Lenovo\Lenovo Mobile Hotspot\MobileHotspotclient.exe" [2013-06-25 937976]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2013-07-04 593408]
"LenovoOptMouseUpdate"="c:\program files\Lenovo\HOTKEY\extapsup.exe" [2013-04-19 255480]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-09-20 444904]
"SoftEther VPN Client UI Helper"="c:\program files\SoftEther VPN Client\vpnclient_x64.exe" [2013-08-06 4307000]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-28 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-28 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-28 441152]
.
------- Examen suppl�mentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Ajouter la cible du lien � un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Ajouter � un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.254
DPF: {A6616B31-4860-41E2-98E3-CA7649AF172F} - file:///E:/launch.ocx
FF - ProfilePath - c:\users\Jeremy\AppData\Roaming\Mozilla\Firefox\Profiles\dgy7wig2.default\
FF - prefs.js: browser.search.selectedEngine - Google France (sans personnalisation)
FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/
FF - prefs.js: keyword.URL - hxxp://www.google.fr/search?hl=fr&pws=0&q=
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 9050
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-08-05 21:33; web2pdfextension@web2pdf.adobedotcom; c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF - ExtSQL: 2013-08-06 08:15; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKCU-Run-SEO Soft - c:\program files (x86)\SEO Soft\seosoft.exe
Wow6432Node-HKLM-Run-
Notify-SDWinLogon - SDWinLogon.dll
SafeBoot-76466087.sys
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{62CCD8E3-9C21-41E1-B55E-1E26DFC68511} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{A759AFF6-5851-457D-A540-F4ECED148351} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
ShellIconOverlayIdentifiers-{1574C9EF-7D58-488F-B358-8B78C1538F51} - c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Heure de fin: 2013-10-02 22:29:45
ComboFix-quarantined-files.txt 2013-10-02 20:29
.
Avant-CF: 117�625�597�952 octets libres
Apr�s-CF: 116�880�805�888 octets libres
.
- - End Of File - - 95DF5740EE22E950DACCBFD235D4D7FA
5FB38429D5D77768867C76DCBDB35194