Publicité
Publicité
Format du document : text/plain
Prévisualisation
start
CloseProcesses:
CreateRestorePoint:
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Akamai Technologies, Inc.) C:\Users\ju\AppData\Local\Akamai\netsession_win.exe
HKU\S-1-5-21-916762157-3973933057-369929435-1000\...\Run: [Akamai NetSession Interface] => C:\Users\ju\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-916762157-3973933057-369929435-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08] (pdfforge GmbH)
SearchScopes: HKU\S-1-5-21-916762157-3973933057-369929435-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={77A0D201-4848-470B-B398-5D1D38524ACF}&mid=3738278bb0b147d28736a5662e2a15a1-ac172878a36dc718c2e20c382a38c740620d8351&lang=fr&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-14 07:31:42&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
U3 idsvc; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Pas de fichier
2015-08-22 06:11 - 2013-09-17 16:45 - 00000000 ____D C:\Users\ju\AppData\Roaming\BabSolution
2015-08-11 14:57 - 2013-07-22 16:12 - 00000000 ____D C:\Users\ju\AppData\Local\Akamai
Task: {36B4415C-0836-4FE5-8F10-265F78017153} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {38E1A6F7-FC81-4A67-A02A-E4713B664CE4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {43DF12C4-7214-4148-9F18-850C6F6ABBFF} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> Pas de fichier <==== ATTENTION
Task: {4FFF95A1-44B0-4CC0-BC19-87BF8C50EB61} - System32\Tasks\{C4390539-6737-43DF-BB62-6D29D0116378} => pcalua.exe -a "C:\Users\ju\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe" -c /initurl http://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {54F8C5A6-0F47-4009-AA68-33EAFB968057} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {5EC109D9-6B7D-4E14-8A6A-00F9BD3A001B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {6892DE38-4E8D-40A9-8861-387A4BD509A1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {984393EB-AB5F-4D21-8719-8C970244D92E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {9D34DEA2-1F37-4824-8444-2C25E935B09A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {AD3C72EE-4D59-4CB2-A2A0-ECB420988EAC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {CEC26054-F65F-4FDB-B0CF-58DACC0F0A73} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {D332F311-FCAB-450B-B44B-905F9B3DBD82} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {E8CA16E0-8845-4107-AE55-E83622318E78} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100051F85801323F147B76A2AC517DF72994600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570049004E0044004F00570053005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000
FirewallRules: [UDP Query User{7602AB86-9EDD-41BD-B9B0-A1E03562FEA2}C:\users\ju\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ju\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{FFA5C16D-1C48-4D09-A323-9BC25E58B0CE}C:\users\ju\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ju\appdata\local\akamai\netsession_win.exe
EmptyTemp:
end
CloseProcesses:
CreateRestorePoint:
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Akamai Technologies, Inc.) C:\Users\ju\AppData\Local\Akamai\netsession_win.exe
HKU\S-1-5-21-916762157-3973933057-369929435-1000\...\Run: [Akamai NetSession Interface] => C:\Users\ju\AppData\Local\Akamai\netsession_win.exe [4691384 2015-07-23] (Akamai Technologies, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-916762157-3973933057-369929435-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08] (pdfforge GmbH)
SearchScopes: HKU\S-1-5-21-916762157-3973933057-369929435-1000 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={77A0D201-4848-470B-B398-5D1D38524ACF}&mid=3738278bb0b147d28736a5662e2a15a1-ac172878a36dc718c2e20c382a38c740620d8351&lang=fr&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-14 07:31:42&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms}
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
U3 idsvc; pas de ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> Pas de fichier
2015-08-22 06:11 - 2013-09-17 16:45 - 00000000 ____D C:\Users\ju\AppData\Roaming\BabSolution
2015-08-11 14:57 - 2013-07-22 16:12 - 00000000 ____D C:\Users\ju\AppData\Local\Akamai
Task: {36B4415C-0836-4FE5-8F10-265F78017153} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {38E1A6F7-FC81-4A67-A02A-E4713B664CE4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {43DF12C4-7214-4148-9F18-850C6F6ABBFF} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> Pas de fichier <==== ATTENTION
Task: {4FFF95A1-44B0-4CC0-BC19-87BF8C50EB61} - System32\Tasks\{C4390539-6737-43DF-BB62-6D29D0116378} => pcalua.exe -a "C:\Users\ju\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe" -c /initurl http://bi.bisrv.com/:affid:/:sid:/:uid:? /affid uninstall /id uninstall /name "Bundled software uninstaller"
Task: {54F8C5A6-0F47-4009-AA68-33EAFB968057} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {5EC109D9-6B7D-4E14-8A6A-00F9BD3A001B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {6892DE38-4E8D-40A9-8861-387A4BD509A1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {984393EB-AB5F-4D21-8719-8C970244D92E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {9D34DEA2-1F37-4824-8444-2C25E935B09A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {AD3C72EE-4D59-4CB2-A2A0-ECB420988EAC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {CEC26054-F65F-4FDB-B0CF-58DACC0F0A73} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {D332F311-FCAB-450B-B44B-905F9B3DBD82} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {E8CA16E0-8845-4107-AE55-E83622318E78} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => 0x000A0100051F85801323F147B76A2AC517DF72994600D400000000003C000A00200000000014730F000000000513040020200401000000000000000000000000000000000000180043003A005C00570049004E0044004F00570053005C006500780070006C006F007200650072002E0065007800650000000C002F004E004F0055004100430043004800450043004B000000000018004500780070006C006F007200650072005300680065006C006C0055006E0065006C00650076006100740065006400000000000000080003130400000000000000
FirewallRules: [UDP Query User{7602AB86-9EDD-41BD-B9B0-A1E03562FEA2}C:\users\ju\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ju\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{FFA5C16D-1C48-4D09-A323-9BC25E58B0CE}C:\users\ju\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\ju\appdata\local\akamai\netsession_win.exe
EmptyTemp:
end