Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 18-08-08.01 - Jean-Marie 13/09/2018 11:18:12.2.2 - x64 NETWORK
Microsoft Windows 8 6.2.9200.0.1252.33.1036.18.3660.341 [GMT 2:00]
Lancé depuis: c:\users\JEAN-M~1\AppData\Local\Temp\0204mx_nitro_1.2.11.1903\combofix_18.8.8.1.exe
Commutateurs utilisés :: /S
AV: Avast Antivirus *Disabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes *Enabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Norton Internet Security *Disabled/Updated* {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security *Disabled* {6BFC5632-188D-B806-D13E-C607121B42A0}
SP: Avast Antivirus *Disabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Malwarebytes *Enabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Norton Internet Security *Disabled/Updated* {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jean-Marie\AppData\Local\assembly\tmp
c:\users\Jean-Marie\ZHPDiag3.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2018-08-13 au 2018-09-13 ))))))))))))))))))))))))))))))))))))
.
.
2018-09-13 09:33 . 2018-09-13 09:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2018-09-13 09:05 . 2018-09-13 09:05 -------- d-----w- c:\program files\Diag
2018-09-13 09:05 . 2013-12-06 14:05 18096 ----a-w- c:\windows\system32\roboot64.exe
2018-09-13 09:04 . 2018-09-13 09:04 -------- d-----w- c:\program files (x86)\UTILILAB
2018-09-13 09:02 . 2018-09-13 09:02 -------- d-----w- c:\program files (x86)\Common Files\Java
2018-09-13 09:02 . 2018-09-13 09:02 110968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\programdata\Oracle
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\program files\Java
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\program files (x86)\Common Files\Oracle
2018-09-13 08:54 . 2018-09-13 08:54 -------- d-----w- c:\program files (x86)\Inno Setup 5
2018-09-13 08:54 . 2018-09-13 08:54 -------- d-----w- c:\program files\FileZilla FTP Client
2018-09-13 08:52 . 2018-09-13 08:52 -------- d-----w- c:\program files\RogueKiller
2018-09-13 08:50 . 2018-09-13 08:50 -------- d-----w- c:\program files (x86)\MusicBee
2018-09-13 08:48 . 2018-09-13 08:48 -------- d-----w- c:\program files (x86)\Common Files\PX Storage Engine
2018-09-13 08:48 . 2018-09-13 08:48 -------- d-----w- c:\program files (x86)\Winamp
2018-09-13 08:47 . 2018-09-13 08:47 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2018-09-13 08:44 . 2018-09-13 08:44 -------- d-----w- c:\program files (x86)\TSS
2018-09-13 08:44 . 2018-09-13 08:44 -------- d-----w- c:\program files (x86)\Comodo
2018-09-13 08:40 . 2018-09-13 08:40 -------- d-----w- c:\program files (x86)\FormatFactory
2018-09-13 08:34 . 2018-09-13 08:37 -------- d-----w- c:\program files\ComicRack
2018-09-13 08:33 . 2018-09-13 08:33 -------- d-----w- c:\program files\Calibre2
2018-09-13 08:30 . 2018-09-13 08:30 -------- d-----w- c:\program files (x86)\K-Lite Codec Pack
2018-09-13 08:29 . 2018-09-13 08:29 -------- d-----w- c:\program files (x86)\Mp3tag
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files\Greenshot
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files\WinRAR
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files (x86)\WinDirStat
2018-09-13 08:26 . 2018-09-13 08:27 -------- d-----w- c:\program files (x86)\TeamViewer
2018-09-13 08:25 . 2018-09-13 08:25 -------- d-----w- c:\program files\CCleaner
2018-09-13 08:20 . 2018-09-13 08:21 -------- d-----w- c:\program files\Wireshark
2018-09-13 08:17 . 2018-09-13 08:17 -------- d-----w- c:\program files\The Bat!
2018-09-13 07:45 . 2018-09-13 08:16 -------- d-----w- c:\program files\Mozilla Firefox
2018-09-13 07:42 . 2018-09-13 07:42 -------- d-----w- c:\programdata\UCheck
2018-09-13 07:42 . 2018-09-13 07:42 -------- d-----w- c:\program files\UCheck
2018-09-12 18:56 . 2018-09-12 18:56 -------- d-----w- c:\programdata\Blackmagic Design
2018-09-12 18:36 . 2018-09-12 18:36 -------- d-----w- c:\program files\Blackmagic Design
2018-09-12 18:36 . 2018-09-12 18:36 -------- d-----w- c:\program files (x86)\Blackmagic Design
2018-09-12 18:33 . 2018-09-12 18:33 -------- d-----w- c:\program files\PostgreSQL
2018-09-12 13:22 . 2018-09-12 13:27 -------- d-----w- c:\windows\system32\catroot2
2018-09-12 13:01 . 2018-09-12 13:01 -------- d-----w- c:\windows\SysWow64\wbem\Performance
2018-09-12 12:50 . 2018-09-12 12:50 -------- d-----w- C:\RegBackup
2018-09-12 12:42 . 2018-09-12 12:42 -------- d-----w- c:\program files\HitmanPro
2018-09-12 11:40 . 2018-09-12 11:40 -------- d-----w- c:\program files (x86)\Tweaking.com
2018-09-12 11:35 . 2018-09-12 11:35 -------- d-----w- c:\program files (x86)\TagScanner
2018-09-12 11:33 . 2018-09-12 11:33 -------- d-----w- c:\programdata\PassMark
2018-09-12 11:33 . 2018-09-12 11:33 -------- d-----w- c:\program files (x86)\SoundCheck
2018-09-12 07:57 . 2018-09-12 07:57 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2018-09-12 07:57 . 2018-09-13 08:55 -------- d-----w- c:\programdata\RogueKiller
2018-09-12 04:56 . 2018-09-12 04:56 55232 ----a-w- c:\windows\system32\drivers\hitmanpro37.sys
2018-09-12 04:56 . 2018-09-12 05:03 -------- d-----w- c:\programdata\HitmanPro
2018-09-12 03:56 . 2018-09-12 12:47 -------- d-----w- C:\AdwCleaner
2018-09-12 02:20 . 2018-09-12 02:20 -------- d-s---w- c:\windows\SysWow64\Microsoft
2018-09-11 15:31 . 2018-09-12 02:15 -------- d-----w- C:\PcPinPoint
2018-09-11 13:45 . 2018-09-11 15:00 -------- d-----w- C:\Pre_Scan
2018-09-11 07:54 . 2018-09-11 07:54 -------- d-----w- c:\program files\Google
2018-09-11 07:53 . 2018-09-11 07:53 -------- d-----w- c:\users\Default\AppData\Local\Google
2018-09-11 03:58 . 2018-09-11 10:36 -------- d-----w- c:\program files (x86)\Dropbox
2018-09-11 03:58 . 2018-09-11 03:58 -------- d-----w- c:\programdata\Dropbox
2018-09-10 21:16 . 2017-02-19 19:15 233248 ----a-w- c:\windows\system32\drivers\keyscrambler.sys
2018-09-10 21:16 . 2018-09-10 21:17 -------- d-----w- c:\program files (x86)\KeyScrambler
2018-09-10 21:16 . 2018-09-10 21:16 -------- d-----w- c:\program files (x86)\Pegasun
2018-09-10 21:16 . 2018-09-10 21:16 -------- d-----w- c:\program files\Remo Repair MOV 2.0
2018-09-10 21:11 . 2018-09-10 21:14 -------- d-----w- c:\program files\Hasleo
2018-09-10 15:18 . 2018-09-10 15:18 993632 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 987848 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 690016 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 484552 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
2018-09-10 15:17 . 2018-09-10 15:17 28352 ----a-w- c:\windows\SysWow64\aspnet_counters.dll
2018-09-10 15:17 . 2018-09-10 15:17 30400 ----a-w- c:\windows\system32\aspnet_counters.dll
2018-09-10 09:39 . 2018-09-10 09:39 -------- d-----w- c:\programdata\RedFox
2018-09-10 09:39 . 2018-09-10 09:39 -------- d-----w- c:\program files (x86)\RedFox
2018-09-10 09:31 . 2018-09-10 09:31 -------- d-----w- c:\program files (x86)\ProgDVB
2018-09-10 09:30 . 2018-09-10 09:30 -------- d-----w- c:\programdata\Macrium
2018-09-10 09:23 . 2018-09-10 09:23 -------- d-----w- c:\program files\Sandboxie
2018-09-10 09:22 . 2018-09-13 07:52 -------- d-----w- c:\program files (x86)\K-Meleon
2018-09-10 04:19 . 2018-09-10 04:19 -------- d-----w- c:\program files\VideoLAN
2018-09-09 18:02 . 2018-09-09 18:02 -------- d-----w- c:\program files (x86)\Silent Install Builder 5
2018-09-09 15:37 . 2018-09-09 15:37 -------- d-----w- c:\program files\CPUID
2018-09-09 15:37 . 2018-09-09 15:37 -------- d-----w- c:\program files\MultiCommander (x64)
2018-09-09 13:25 . 2018-09-09 13:25 -------- d-----w- c:\program files (x86)\SlimBoat
2018-09-09 13:24 . 2018-09-09 13:24 -------- d-----w- c:\program files (x86)\CoreFTP
2018-09-09 13:24 . 2018-09-09 13:24 -------- d-----w- c:\program files\MediaInfo
2018-09-09 13:15 . 2018-09-09 13:15 -------- d-----w- c:\programdata\ProcessLasso
2018-09-09 13:14 . 2018-09-09 13:14 -------- d-----w- c:\program files\Process Lasso
2018-09-09 13:13 . 2018-09-09 13:13 -------- d-----w- c:\program files (x86)\SeaMonkey
2018-09-09 13:08 . 2018-09-11 01:49 -------- d-----w- c:\program files\Pale Moon
2018-09-08 09:00 . 2018-09-08 09:19 -------- d-----w- C:\Look_my_hardware
2018-09-08 08:40 . 2018-09-08 08:42 -------- d-----w- c:\program files (x86)\Kingo ROOT
2018-09-08 07:51 . 2018-09-13 07:56 -------- d-----w- c:\program files (x86)\PDF24
2018-09-08 07:51 . 2018-09-08 07:51 28936 ----a-w- c:\windows\system32\drivers\GUSBootStartup.sys
2018-09-08 07:51 . 2018-09-08 07:51 -------- d-----w- c:\programdata\GlarySoft
2018-09-08 07:46 . 2018-09-09 13:03 -------- d-----w- c:\program files (x86)\Glarysoft
2018-09-08 06:14 . 2018-09-11 07:59 -------- d-----w- c:\program files (x86)\Google
2018-09-08 05:37 . 2018-09-08 06:05 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2018-09-07 12:20 . 2018-09-07 12:20 -------- d-----w- c:\program files\DAUM
2018-09-07 11:42 . 2015-07-20 18:18 22088 ----a-w- c:\windows\system32\drivers\AQFileRestore.sys
2018-09-07 11:26 . 2018-09-07 17:55 -------- d-----w- c:\programdata\WinZip
2018-09-07 11:20 . 2018-09-07 11:20 -------- d-----w- c:\windows\system32\ShellExtBridge
2018-09-07 11:17 . 2018-09-07 11:17 -------- d-----w- c:\program files\McAfee
2018-09-07 11:16 . 2018-09-07 11:18 -------- d-----w- c:\programdata\McAfee
2018-09-07 11:12 . 2018-09-07 11:12 -------- d-----w- c:\program files (x86)\Moo0
2018-09-07 10:46 . 2018-09-07 10:47 -------- d-----w- c:\program files (x86)\Common Files\logishrd
2018-09-07 10:20 . 2018-09-07 10:47 -------- d-----w- c:\program files\Common Files\logishrd
2018-09-07 09:08 . 2018-04-20 06:28 33280 ----a-w- c:\windows\system32\drivers\usbser.sys
2018-09-07 09:08 . 2018-04-20 06:28 287232 ----a-w- c:\windows\system32\drivers\hw_quusbnet.sys
2018-09-07 09:08 . 2018-04-20 06:28 226560 ----a-w- c:\windows\system32\drivers\hw_quusbmdm.sys
2018-09-07 09:08 . 2018-04-20 06:28 2152176 ----a-w- c:\windows\system32\drivers\WUDFUpdate_01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 18944 ----a-w- c:\windows\system32\drivers\ew_usbccgpfilter.sys
2018-09-07 09:08 . 2018-04-20 06:28 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 1721576 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 127360 ----a-w- c:\windows\system32\drivers\hw_cdcacm.sys
2018-09-07 09:08 . 2018-04-20 06:28 116864 ----a-w- c:\windows\system32\drivers\hw_usbdev.sys
2018-09-07 09:08 . 2018-04-20 06:28 1002728 ----a-w- c:\windows\system32\drivers\winusbcoinstaller2.dll
2018-09-07 09:08 . 2018-09-07 09:09 -------- d-----w- c:\program files (x86)\HiSuite
2018-09-07 09:00 . 2018-09-07 09:00 -------- d-----w- c:\programdata\UniqueId
2018-09-07 05:22 . 2018-09-07 05:22 -------- d-----w- C:\Recovery
2018-09-06 19:12 . 2018-09-06 19:12 -------- d-----w- c:\program files (x86)\JetStart
2018-09-06 13:57 . 2018-09-06 13:57 -------- d-----w- c:\windows\ERUNT
2018-09-06 13:56 . 2018-09-06 13:56 -------- d-----w- c:\program files (x86)\EPSON Software
2018-09-06 13:35 . 2018-09-06 13:35 -------- d-----w- C:\MaConfig
2018-09-06 12:54 . 2018-09-06 12:54 -------- d-----w- c:\programdata\Aimersoft
2018-09-06 12:52 . 2018-09-06 12:52 -------- d-----w- c:\program files (x86)\Direct Folders
2018-09-06 12:46 . 2018-09-06 12:46 -------- d-----w- c:\program files (x86)\Common Files\Aimersoft
2018-09-06 12:45 . 2018-09-06 12:45 -------- d-----w- c:\programdata\Keepvid
2018-09-06 12:43 . 2018-01-19 14:31 39112 ----a-w- c:\windows\system32\drivers\VirtualAudio.sys
2018-09-06 12:42 . 2018-09-06 12:44 -------- d-----w- c:\program files (x86)\Keepvid
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-09-02 20:10 . 2013-03-04 23:49 177312 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2018-09-02 16:45 . 2012-07-26 08:13 34496 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adlice CDE"="c:\program files\CrashDumpExtractor\CrashDumpExtractor64.exe" [2018-08-02 26603064]
"KeepVidMusicService"="c:\program files (x86)\Keepvid\KeepVid Music\KeepVidMusicService.exe" [2018-02-03 16896]
"AshSnap"="c:\program files (x86)\Ashampoo\Ashampoo Snap 9\ashsnap.exe" [2017-04-11 7439264]
"UCheck"="c:\program files\UCheck\UCheck64.exe" [2018-06-19 27737160]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-08 642216]
"CLMLServer_For_P2G8"="c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" [2012-06-08 111120]
"CLVirtualDrive"="c:\program files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" [2012-07-02 491120]
"Aimersoft Helper Compact.exe"="c:\program files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" [2016-10-08 2138272]
"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2018-08-31 3753280]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2018-06-28 432776]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2018-07-07 601424]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableSecureUIAPath"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"TaskbarNoResize"= 1 (0x1)
"ConfirmFileDelete"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /m /P \Device\HarddiskVolume20\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService]
@="Service"
.
R1 aswArPot;aswArPot;c:\windows\system32\drivers\aswArPot.sys;c:\windows\SYSNATIVE\drivers\aswArPot.sys [x]
R1 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys;c:\windows\SYSNATIVE\drivers\aswHdsKe.sys [x]
R1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
R1 GUSBootStartup;GUSBootStartup;c:\windows\System32\drivers\GUSBootStartup.sys;c:\windows\SYSNATIVE\drivers\GUSBootStartup.sys [x]
R2 .AVQWindowsMonitorService;SystemSuite Professional Process Monitor;c:\program files (x86)\Avanquest\SystemSuite\AVQWinMonEngine.exe;c:\program files (x86)\Avanquest\SystemSuite\AVQWinMonEngine.exe [x]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R2 AQFileRestoreSrv;AQFileRestoreSrv;c:\program files (x86)\Avanquest\SystemSuite\AQFileRestoreSrv.exe;c:\program files (x86)\Avanquest\SystemSuite\AQFileRestoreSrv.exe [x]
R2 BitlockerAnywhere;Hasleo Bitlocker Anywhere Service;c:\program files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe;c:\program files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe [x]
R2 csvol;Core Storage Volumes Driver;c:\windows\system32\DRIVERS\csvol.sys;c:\windows\SYSNATIVE\DRIVERS\csvol.sys [x]
R2 dbupdate;Service Mise à jour Dropbox (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R2 DbxSvc;DbxSvc;c:\windows\system32\DbxSvc.exe;c:\windows\SYSNATIVE\DbxSvc.exe [x]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe [x]
R2 HfsplusRec;HFS+ File System Recognizer;c:\windows\system32\DRIVERS\hfsplusrec.sys;c:\windows\SYSNATIVE\DRIVERS\hfsplusrec.sys [x]
R2 HitmanProScheduler;HitmanPro Scheduler;c:\program files\HitmanPro\hmpsched.exe;c:\program files\HitmanPro\hmpsched.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HPConnectedRemote;HP Connected Remote Service;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [x]
R2 HPRegistrationSvc;HP Registration Service;c:\program files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe;c:\program files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [x]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [x]
R2 KvAppService;Keepvid Application Framework Service;c:\program files (x86)\Keepvid\KAF\2.4.2.222\KvAppService.exe;c:\program files (x86)\Keepvid\KAF\2.4.2.222\KvAppService.exe [x]
R2 McAfee WebAdvisor;McAfee WebAdvisor;c:\program files\McAfee\WebAdvisor\ServiceHost.exe;c:\program files\McAfee\WebAdvisor\ServiceHost.exe [x]
R2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe;c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe [x]
R2 PDF24;PDF24;c:\program files (x86)\PDF24\pdf24.exe;c:\program files (x86)\PDF24\pdf24.exe [x]
R2 postgresql-x64-9.5;postgresql-x64-9.5 - PostgreSQL Server 9.5;c:\program files\PostgreSQL\9.5\bin\pg_ctl.exe;c:\program files\PostgreSQL\9.5\bin\pg_ctl.exe [x]
R2 USODiskOptimizer;USODiskOptimizer;c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USODefragSrv64.exe;c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USODefragSrv64.exe [x]
R2 VCOMCloudAgent;VCOM Cloud Agent;c:\program files (x86)\Avanquest\SystemSuite\VcomCloudAgent.exe;c:\program files (x86)\Avanquest\SystemSuite\VcomCloudAgent.exe [x]
R2 WsAppService;Wondershare Application Framework Service;c:\program files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe;c:\program files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe [x]
R3 AQFileRestore;AQFileRestore;c:\windows\system32\DRIVERS\AQFileRestore.sys;c:\windows\SYSNATIVE\DRIVERS\AQFileRestore.sys [x]
R3 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20180904.003\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20180904.003\BHDrvx64.sys [x]
R3 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1406000.01B\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\ccSetx64.sys [x]
R3 dbupdatem;Service Mise à jour Dropbox (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 GUMHFilters;GUMHFilters;c:\program files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys;c:\program files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys [x]
R3 hfsplus;HFS+ File System Driver;c:\windows\system32\DRIVERS\hfsplus.sys;c:\windows\SYSNATIVE\DRIVERS\hfsplus.sys [x]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
R3 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20180907.061\IDSvia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20180907.061\IDSvia64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;@oem24.inf,%PID_081B_DD%(UVC);Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 mfesapsn;McAfee Process Start Notification Service;c:\program files\McAfee\WebAdvisor\mfesapsn.sys;c:\program files\McAfee\WebAdvisor\mfesapsn.sys [x]
R3 QFXUpdateService;QFX Software Update Service;c:\program files (x86)\KeyScrambler\x64\QFXUpdateService.exe;c:\program files (x86)\KeyScrambler\x64\QFXUpdateService.exe [x]
R3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1406000.01B\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SYMDS64.SYS [x]
R3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1406000.01B\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SYMEFA64.SYS [x]
R3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1406000.01B\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\Ironx64.SYS [x]
R3 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1406000.01B\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\NISx64\1406000.01B\SYMNETS.SYS [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\System32\drivers\wdcsam64.sys;c:\windows\SYSNATIVE\drivers\wdcsam64.sys [x]
R3 WsAudio_Device;WsAudio_Device;c:\windows\system32\drivers\VirtualAudio.sys;c:\windows\SYSNATIVE\drivers\VirtualAudio.sys [x]
R3 WsDrvInst;Wondershare Driver Install Service;c:\program files (x86)\Keepvid\KeepVid Music\DriverInstall.exe;c:\program files (x86)\Keepvid\KeepVid Music\DriverInstall.exe [x]
R3 WSDScan;Prise en charge de la numérisation WSD;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\System32\drivers\WUDFRd.sys;c:\windows\SYSNATIVE\drivers\WUDFRd.sys [x]
R4 SymELAM;Symantec ELAM Driver;c:\windows\system32\drivers\NISx64\1406000.01B\SymELAM.sys;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SymELAM.sys [x]
S0 amd_sata;amd_sata;c:\windows\System32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\System32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 apmwin;Apple Partition Map Driver;c:\windows\system32\DRIVERS\apmwin.sys;c:\windows\SYSNATIVE\DRIVERS\apmwin.sys [x]
S0 gpt_loader;GUID Partition table support driver;c:\windows\system32\DRIVERS\gpt_loader.sys;c:\windows\SYSNATIVE\DRIVERS\gpt_loader.sys [x]
S0 mounthlp;Mounter helper driver for HFS+ volumes;c:\windows\system32\DRIVERS\mounthlp.sys;c:\windows\SYSNATIVE\DRIVERS\mounthlp.sys [x]
S3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys;c:\windows\SYSNATIVE\drivers\keyscrambler.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\System32\drivers\usbfilter.sys;c:\windows\SYSNATIVE\drivers\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
apphost REG_MULTI_SZ apphostsvc
iissvcs REG_MULTI_SZ w3svc was
.
Contenu du dossier 'Tâches planifiées'
.
2018-09-13 c:\windows\Tasks\Adobe Flash Player NPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [2018-09-13 09:07]
.
2018-09-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-13 09:07]
.
2018-09-13 c:\windows\Tasks\CCleaner Update.job
- c:\program files\CCleaner\CCUpdate.exe [2018-08-24 18:38]
.
2018-09-13 c:\windows\Tasks\DriverUPDATER.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
2018-09-13 c:\windows\Tasks\DriverUPDATER.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
2018-09-11 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-11 03:58]
.
2018-09-11 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-11 03:58]
.
2018-09-11 c:\windows\Tasks\EPSON XP-710 Series Invitation {A8B0E697-2C32-488D-8B8A-B2A1A0DCFCD2}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2018-09-06 07:12]
.
2018-09-11 c:\windows\Tasks\EPSON XP-710 Series Update {A8B0E697-2C32-488D-8B8A-B2A1A0DCFCD2}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2018-09-06 07:12]
.
2018-09-12 c:\windows\Tasks\Tweaking.com - Windows Repair Tray Icon.job
- c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2018-05-20 19:20]
.
2018-09-13 c:\windows\Tasks\User_Feed_Synchronization-{894F9756-3BDE-4E8A-AC50-A7CC1E86F4AD}.job
- c:\windows\system32\msfeedssync.exe [2012-07-26 03:20]
.
2018-09-13 c:\windows\Tasks\UTILILAB SystemOPTIMIZER.job
- c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USO.exe [2018-09-13 14:05]
.
2018-09-13 c:\windows\Tasks\UTILILABDriverUPDATERRunAtStartup.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Greenshot"="c:\program files\Greenshot\Greenshot.exe" [2017-08-09 527792]
.
------- Examen supplémentaire -------
.
uStart Page = https://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_IEe64_w10e64_odc
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0411
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0412
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0804
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\program files\McAfee\WebAdvisor\win32\IEPlugin.dll
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Wow6432Node-HKLM-RunOnce- - (no file)
SafeBoot-vga.sys
SafeBoot-vgasave.sys
SafeBoot-AppXSvc
SafeBoot-camsvc
SafeBoot-ClipSvc
SafeBoot-lfsvc
SafeBoot-MBAMService
SafeBoot-semgrsvc
SafeBoot-TokenBroker
SafeBoot-TweakingRemoveSafeBoot
HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - c:\program files (x86)\Google\Chrome\Application\64.0.3282.119\Installer\chrmstp.exe
ShellIconOverlayIdentifiers-{F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
ShellIconOverlayIdentifiers-{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
ShellIconOverlayIdentifiers-{BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
HKLM-Run-AvastUI.exe - c:\program files\AVAST Software\Avast\AvLaunch.exe
AddRemove-{FF27F674-821E-4BA2-985B-DDF539C2CD03} - c:\program files (x86)\InstallShield Installation Information\{FF27F674-821E-4BA2-985B-DDF539C2CD03}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\diMaster.dll\" /prefetch:1"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Heure de fin: 2018-09-13 11:39:33
ComboFix-quarantined-files.txt 2018-09-13 09:39
.
Avant-CF: 827 291 774 976 octets libres
Après-CF: 827 368 026 112 octets libres
.
- - End Of File - - 01AB3D61B6818125CCD4BE72F08AB695
5FB38429D5D77768867C76DCBDB35194
Microsoft Windows 8 6.2.9200.0.1252.33.1036.18.3660.341 [GMT 2:00]
Lancé depuis: c:\users\JEAN-M~1\AppData\Local\Temp\0204mx_nitro_1.2.11.1903\combofix_18.8.8.1.exe
Commutateurs utilisés :: /S
AV: Avast Antivirus *Disabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes *Enabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Norton Internet Security *Disabled/Updated* {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton Internet Security *Disabled* {6BFC5632-188D-B806-D13E-C607121B42A0}
SP: Avast Antivirus *Disabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Malwarebytes *Enabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Norton Internet Security *Disabled/Updated* {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jean-Marie\AppData\Local\assembly\tmp
c:\users\Jean-Marie\ZHPDiag3.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2018-08-13 au 2018-09-13 ))))))))))))))))))))))))))))))))))))
.
.
2018-09-13 09:33 . 2018-09-13 09:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2018-09-13 09:05 . 2018-09-13 09:05 -------- d-----w- c:\program files\Diag
2018-09-13 09:05 . 2013-12-06 14:05 18096 ----a-w- c:\windows\system32\roboot64.exe
2018-09-13 09:04 . 2018-09-13 09:04 -------- d-----w- c:\program files (x86)\UTILILAB
2018-09-13 09:02 . 2018-09-13 09:02 -------- d-----w- c:\program files (x86)\Common Files\Java
2018-09-13 09:02 . 2018-09-13 09:02 110968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\programdata\Oracle
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\program files\Java
2018-09-13 09:01 . 2018-09-13 09:01 -------- d-----w- c:\program files (x86)\Common Files\Oracle
2018-09-13 08:54 . 2018-09-13 08:54 -------- d-----w- c:\program files (x86)\Inno Setup 5
2018-09-13 08:54 . 2018-09-13 08:54 -------- d-----w- c:\program files\FileZilla FTP Client
2018-09-13 08:52 . 2018-09-13 08:52 -------- d-----w- c:\program files\RogueKiller
2018-09-13 08:50 . 2018-09-13 08:50 -------- d-----w- c:\program files (x86)\MusicBee
2018-09-13 08:48 . 2018-09-13 08:48 -------- d-----w- c:\program files (x86)\Common Files\PX Storage Engine
2018-09-13 08:48 . 2018-09-13 08:48 -------- d-----w- c:\program files (x86)\Winamp
2018-09-13 08:47 . 2018-09-13 08:47 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2018-09-13 08:44 . 2018-09-13 08:44 -------- d-----w- c:\program files (x86)\TSS
2018-09-13 08:44 . 2018-09-13 08:44 -------- d-----w- c:\program files (x86)\Comodo
2018-09-13 08:40 . 2018-09-13 08:40 -------- d-----w- c:\program files (x86)\FormatFactory
2018-09-13 08:34 . 2018-09-13 08:37 -------- d-----w- c:\program files\ComicRack
2018-09-13 08:33 . 2018-09-13 08:33 -------- d-----w- c:\program files\Calibre2
2018-09-13 08:30 . 2018-09-13 08:30 -------- d-----w- c:\program files (x86)\K-Lite Codec Pack
2018-09-13 08:29 . 2018-09-13 08:29 -------- d-----w- c:\program files (x86)\Mp3tag
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files\Greenshot
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files\WinRAR
2018-09-13 08:27 . 2018-09-13 08:27 -------- d-----w- c:\program files (x86)\WinDirStat
2018-09-13 08:26 . 2018-09-13 08:27 -------- d-----w- c:\program files (x86)\TeamViewer
2018-09-13 08:25 . 2018-09-13 08:25 -------- d-----w- c:\program files\CCleaner
2018-09-13 08:20 . 2018-09-13 08:21 -------- d-----w- c:\program files\Wireshark
2018-09-13 08:17 . 2018-09-13 08:17 -------- d-----w- c:\program files\The Bat!
2018-09-13 07:45 . 2018-09-13 08:16 -------- d-----w- c:\program files\Mozilla Firefox
2018-09-13 07:42 . 2018-09-13 07:42 -------- d-----w- c:\programdata\UCheck
2018-09-13 07:42 . 2018-09-13 07:42 -------- d-----w- c:\program files\UCheck
2018-09-12 18:56 . 2018-09-12 18:56 -------- d-----w- c:\programdata\Blackmagic Design
2018-09-12 18:36 . 2018-09-12 18:36 -------- d-----w- c:\program files\Blackmagic Design
2018-09-12 18:36 . 2018-09-12 18:36 -------- d-----w- c:\program files (x86)\Blackmagic Design
2018-09-12 18:33 . 2018-09-12 18:33 -------- d-----w- c:\program files\PostgreSQL
2018-09-12 13:22 . 2018-09-12 13:27 -------- d-----w- c:\windows\system32\catroot2
2018-09-12 13:01 . 2018-09-12 13:01 -------- d-----w- c:\windows\SysWow64\wbem\Performance
2018-09-12 12:50 . 2018-09-12 12:50 -------- d-----w- C:\RegBackup
2018-09-12 12:42 . 2018-09-12 12:42 -------- d-----w- c:\program files\HitmanPro
2018-09-12 11:40 . 2018-09-12 11:40 -------- d-----w- c:\program files (x86)\Tweaking.com
2018-09-12 11:35 . 2018-09-12 11:35 -------- d-----w- c:\program files (x86)\TagScanner
2018-09-12 11:33 . 2018-09-12 11:33 -------- d-----w- c:\programdata\PassMark
2018-09-12 11:33 . 2018-09-12 11:33 -------- d-----w- c:\program files (x86)\SoundCheck
2018-09-12 07:57 . 2018-09-12 07:57 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2018-09-12 07:57 . 2018-09-13 08:55 -------- d-----w- c:\programdata\RogueKiller
2018-09-12 04:56 . 2018-09-12 04:56 55232 ----a-w- c:\windows\system32\drivers\hitmanpro37.sys
2018-09-12 04:56 . 2018-09-12 05:03 -------- d-----w- c:\programdata\HitmanPro
2018-09-12 03:56 . 2018-09-12 12:47 -------- d-----w- C:\AdwCleaner
2018-09-12 02:20 . 2018-09-12 02:20 -------- d-s---w- c:\windows\SysWow64\Microsoft
2018-09-11 15:31 . 2018-09-12 02:15 -------- d-----w- C:\PcPinPoint
2018-09-11 13:45 . 2018-09-11 15:00 -------- d-----w- C:\Pre_Scan
2018-09-11 07:54 . 2018-09-11 07:54 -------- d-----w- c:\program files\Google
2018-09-11 07:53 . 2018-09-11 07:53 -------- d-----w- c:\users\Default\AppData\Local\Google
2018-09-11 03:58 . 2018-09-11 10:36 -------- d-----w- c:\program files (x86)\Dropbox
2018-09-11 03:58 . 2018-09-11 03:58 -------- d-----w- c:\programdata\Dropbox
2018-09-10 21:16 . 2017-02-19 19:15 233248 ----a-w- c:\windows\system32\drivers\keyscrambler.sys
2018-09-10 21:16 . 2018-09-10 21:17 -------- d-----w- c:\program files (x86)\KeyScrambler
2018-09-10 21:16 . 2018-09-10 21:16 -------- d-----w- c:\program files (x86)\Pegasun
2018-09-10 21:16 . 2018-09-10 21:16 -------- d-----w- c:\program files\Remo Repair MOV 2.0
2018-09-10 21:11 . 2018-09-10 21:14 -------- d-----w- c:\program files\Hasleo
2018-09-10 15:18 . 2018-09-10 15:18 993632 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 987848 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 690016 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2018-09-10 15:18 . 2018-09-10 15:18 484552 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
2018-09-10 15:17 . 2018-09-10 15:17 28352 ----a-w- c:\windows\SysWow64\aspnet_counters.dll
2018-09-10 15:17 . 2018-09-10 15:17 30400 ----a-w- c:\windows\system32\aspnet_counters.dll
2018-09-10 09:39 . 2018-09-10 09:39 -------- d-----w- c:\programdata\RedFox
2018-09-10 09:39 . 2018-09-10 09:39 -------- d-----w- c:\program files (x86)\RedFox
2018-09-10 09:31 . 2018-09-10 09:31 -------- d-----w- c:\program files (x86)\ProgDVB
2018-09-10 09:30 . 2018-09-10 09:30 -------- d-----w- c:\programdata\Macrium
2018-09-10 09:23 . 2018-09-10 09:23 -------- d-----w- c:\program files\Sandboxie
2018-09-10 09:22 . 2018-09-13 07:52 -------- d-----w- c:\program files (x86)\K-Meleon
2018-09-10 04:19 . 2018-09-10 04:19 -------- d-----w- c:\program files\VideoLAN
2018-09-09 18:02 . 2018-09-09 18:02 -------- d-----w- c:\program files (x86)\Silent Install Builder 5
2018-09-09 15:37 . 2018-09-09 15:37 -------- d-----w- c:\program files\CPUID
2018-09-09 15:37 . 2018-09-09 15:37 -------- d-----w- c:\program files\MultiCommander (x64)
2018-09-09 13:25 . 2018-09-09 13:25 -------- d-----w- c:\program files (x86)\SlimBoat
2018-09-09 13:24 . 2018-09-09 13:24 -------- d-----w- c:\program files (x86)\CoreFTP
2018-09-09 13:24 . 2018-09-09 13:24 -------- d-----w- c:\program files\MediaInfo
2018-09-09 13:15 . 2018-09-09 13:15 -------- d-----w- c:\programdata\ProcessLasso
2018-09-09 13:14 . 2018-09-09 13:14 -------- d-----w- c:\program files\Process Lasso
2018-09-09 13:13 . 2018-09-09 13:13 -------- d-----w- c:\program files (x86)\SeaMonkey
2018-09-09 13:08 . 2018-09-11 01:49 -------- d-----w- c:\program files\Pale Moon
2018-09-08 09:00 . 2018-09-08 09:19 -------- d-----w- C:\Look_my_hardware
2018-09-08 08:40 . 2018-09-08 08:42 -------- d-----w- c:\program files (x86)\Kingo ROOT
2018-09-08 07:51 . 2018-09-13 07:56 -------- d-----w- c:\program files (x86)\PDF24
2018-09-08 07:51 . 2018-09-08 07:51 28936 ----a-w- c:\windows\system32\drivers\GUSBootStartup.sys
2018-09-08 07:51 . 2018-09-08 07:51 -------- d-----w- c:\programdata\GlarySoft
2018-09-08 07:46 . 2018-09-09 13:03 -------- d-----w- c:\program files (x86)\Glarysoft
2018-09-08 06:14 . 2018-09-11 07:59 -------- d-----w- c:\program files (x86)\Google
2018-09-08 05:37 . 2018-09-08 06:05 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2018-09-07 12:20 . 2018-09-07 12:20 -------- d-----w- c:\program files\DAUM
2018-09-07 11:42 . 2015-07-20 18:18 22088 ----a-w- c:\windows\system32\drivers\AQFileRestore.sys
2018-09-07 11:26 . 2018-09-07 17:55 -------- d-----w- c:\programdata\WinZip
2018-09-07 11:20 . 2018-09-07 11:20 -------- d-----w- c:\windows\system32\ShellExtBridge
2018-09-07 11:17 . 2018-09-07 11:17 -------- d-----w- c:\program files\McAfee
2018-09-07 11:16 . 2018-09-07 11:18 -------- d-----w- c:\programdata\McAfee
2018-09-07 11:12 . 2018-09-07 11:12 -------- d-----w- c:\program files (x86)\Moo0
2018-09-07 10:46 . 2018-09-07 10:47 -------- d-----w- c:\program files (x86)\Common Files\logishrd
2018-09-07 10:20 . 2018-09-07 10:47 -------- d-----w- c:\program files\Common Files\logishrd
2018-09-07 09:08 . 2018-04-20 06:28 33280 ----a-w- c:\windows\system32\drivers\usbser.sys
2018-09-07 09:08 . 2018-04-20 06:28 287232 ----a-w- c:\windows\system32\drivers\hw_quusbnet.sys
2018-09-07 09:08 . 2018-04-20 06:28 226560 ----a-w- c:\windows\system32\drivers\hw_quusbmdm.sys
2018-09-07 09:08 . 2018-04-20 06:28 2152176 ----a-w- c:\windows\system32\drivers\WUDFUpdate_01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 18944 ----a-w- c:\windows\system32\drivers\ew_usbccgpfilter.sys
2018-09-07 09:08 . 2018-04-20 06:28 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 1721576 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01009.dll
2018-09-07 09:08 . 2018-04-20 06:28 127360 ----a-w- c:\windows\system32\drivers\hw_cdcacm.sys
2018-09-07 09:08 . 2018-04-20 06:28 116864 ----a-w- c:\windows\system32\drivers\hw_usbdev.sys
2018-09-07 09:08 . 2018-04-20 06:28 1002728 ----a-w- c:\windows\system32\drivers\winusbcoinstaller2.dll
2018-09-07 09:08 . 2018-09-07 09:09 -------- d-----w- c:\program files (x86)\HiSuite
2018-09-07 09:00 . 2018-09-07 09:00 -------- d-----w- c:\programdata\UniqueId
2018-09-07 05:22 . 2018-09-07 05:22 -------- d-----w- C:\Recovery
2018-09-06 19:12 . 2018-09-06 19:12 -------- d-----w- c:\program files (x86)\JetStart
2018-09-06 13:57 . 2018-09-06 13:57 -------- d-----w- c:\windows\ERUNT
2018-09-06 13:56 . 2018-09-06 13:56 -------- d-----w- c:\program files (x86)\EPSON Software
2018-09-06 13:35 . 2018-09-06 13:35 -------- d-----w- C:\MaConfig
2018-09-06 12:54 . 2018-09-06 12:54 -------- d-----w- c:\programdata\Aimersoft
2018-09-06 12:52 . 2018-09-06 12:52 -------- d-----w- c:\program files (x86)\Direct Folders
2018-09-06 12:46 . 2018-09-06 12:46 -------- d-----w- c:\program files (x86)\Common Files\Aimersoft
2018-09-06 12:45 . 2018-09-06 12:45 -------- d-----w- c:\programdata\Keepvid
2018-09-06 12:43 . 2018-01-19 14:31 39112 ----a-w- c:\windows\system32\drivers\VirtualAudio.sys
2018-09-06 12:42 . 2018-09-06 12:44 -------- d-----w- c:\program files (x86)\Keepvid
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-09-02 20:10 . 2013-03-04 23:49 177312 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS
2018-09-02 16:45 . 2012-07-26 08:13 34496 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 325456 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt.24.0.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adlice CDE"="c:\program files\CrashDumpExtractor\CrashDumpExtractor64.exe" [2018-08-02 26603064]
"KeepVidMusicService"="c:\program files (x86)\Keepvid\KeepVid Music\KeepVidMusicService.exe" [2018-02-03 16896]
"AshSnap"="c:\program files (x86)\Ashampoo\Ashampoo Snap 9\ashsnap.exe" [2017-04-11 7439264]
"UCheck"="c:\program files\UCheck\UCheck64.exe" [2018-06-19 27737160]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-08 642216]
"CLMLServer_For_P2G8"="c:\program files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" [2012-06-08 111120]
"CLVirtualDrive"="c:\program files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" [2012-07-02 491120]
"Aimersoft Helper Compact.exe"="c:\program files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" [2016-10-08 2138272]
"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2018-08-31 3753280]
"PDFPrint"="c:\program files (x86)\PDF24\pdf24.exe" [2018-06-28 432776]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2018-07-07 601424]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableSecureUIAPath"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"TaskbarNoResize"= 1 (0x1)
"ConfirmFileDelete"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /m /P \Device\HarddiskVolume20\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService]
@="Service"
.
R1 aswArPot;aswArPot;c:\windows\system32\drivers\aswArPot.sys;c:\windows\SYSNATIVE\drivers\aswArPot.sys [x]
R1 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys;c:\windows\SYSNATIVE\drivers\aswHdsKe.sys [x]
R1 CLVirtualDrive;CLVirtualDrive;c:\windows\system32\DRIVERS\CLVirtualDrive.sys;c:\windows\SYSNATIVE\DRIVERS\CLVirtualDrive.sys [x]
R1 GUSBootStartup;GUSBootStartup;c:\windows\System32\drivers\GUSBootStartup.sys;c:\windows\SYSNATIVE\drivers\GUSBootStartup.sys [x]
R2 .AVQWindowsMonitorService;SystemSuite Professional Process Monitor;c:\program files (x86)\Avanquest\SystemSuite\AVQWinMonEngine.exe;c:\program files (x86)\Avanquest\SystemSuite\AVQWinMonEngine.exe [x]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R2 AQFileRestoreSrv;AQFileRestoreSrv;c:\program files (x86)\Avanquest\SystemSuite\AQFileRestoreSrv.exe;c:\program files (x86)\Avanquest\SystemSuite\AQFileRestoreSrv.exe [x]
R2 BitlockerAnywhere;Hasleo Bitlocker Anywhere Service;c:\program files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe;c:\program files\Hasleo\BitLocker Anywhere\bin\BitlockerAnywhereService.exe [x]
R2 csvol;Core Storage Volumes Driver;c:\windows\system32\DRIVERS\csvol.sys;c:\windows\SYSNATIVE\DRIVERS\csvol.sys [x]
R2 dbupdate;Service Mise à jour Dropbox (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R2 DbxSvc;DbxSvc;c:\windows\system32\DbxSvc.exe;c:\windows\SYSNATIVE\DbxSvc.exe [x]
R2 DragonUpdater;COMODO Dragon Update Service;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe;c:\program files (x86)\Comodo\Dragon\dragon_updater.exe [x]
R2 HfsplusRec;HFS+ File System Recognizer;c:\windows\system32\DRIVERS\hfsplusrec.sys;c:\windows\SYSNATIVE\DRIVERS\hfsplusrec.sys [x]
R2 HitmanProScheduler;HitmanPro Scheduler;c:\program files\HitmanPro\hmpsched.exe;c:\program files\HitmanPro\hmpsched.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HPConnectedRemote;HP Connected Remote Service;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe;c:\program files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [x]
R2 HPRegistrationSvc;HP Registration Service;c:\program files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe;c:\program files (x86)\Hewlett-Packard\HP Registration Service\HPRegistrationService.exe [x]
R2 HuaweiHiSuiteService64.exe;HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe;c:\program files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [x]
R2 KvAppService;Keepvid Application Framework Service;c:\program files (x86)\Keepvid\KAF\2.4.2.222\KvAppService.exe;c:\program files (x86)\Keepvid\KAF\2.4.2.222\KvAppService.exe [x]
R2 McAfee WebAdvisor;McAfee WebAdvisor;c:\program files\McAfee\WebAdvisor\ServiceHost.exe;c:\program files\McAfee\WebAdvisor\ServiceHost.exe [x]
R2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe;c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe [x]
R2 PDF24;PDF24;c:\program files (x86)\PDF24\pdf24.exe;c:\program files (x86)\PDF24\pdf24.exe [x]
R2 postgresql-x64-9.5;postgresql-x64-9.5 - PostgreSQL Server 9.5;c:\program files\PostgreSQL\9.5\bin\pg_ctl.exe;c:\program files\PostgreSQL\9.5\bin\pg_ctl.exe [x]
R2 USODiskOptimizer;USODiskOptimizer;c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USODefragSrv64.exe;c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USODefragSrv64.exe [x]
R2 VCOMCloudAgent;VCOM Cloud Agent;c:\program files (x86)\Avanquest\SystemSuite\VcomCloudAgent.exe;c:\program files (x86)\Avanquest\SystemSuite\VcomCloudAgent.exe [x]
R2 WsAppService;Wondershare Application Framework Service;c:\program files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe;c:\program files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe [x]
R3 AQFileRestore;AQFileRestore;c:\windows\system32\DRIVERS\AQFileRestore.sys;c:\windows\SYSNATIVE\DRIVERS\AQFileRestore.sys [x]
R3 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20180904.003\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\BASHDefs\20180904.003\BHDrvx64.sys [x]
R3 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1406000.01B\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\ccSetx64.sys [x]
R3 dbupdatem;Service Mise à jour Dropbox (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 GUMHFilters;GUMHFilters;c:\program files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys;c:\program files (x86)\Glarysoft\Malware Hunter\Native\winxp_x64\GUMHFilter.sys [x]
R3 hfsplus;HFS+ File System Driver;c:\windows\system32\DRIVERS\hfsplus.sys;c:\windows\SYSNATIVE\DRIVERS\hfsplus.sys [x]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
R3 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20180907.061\IDSvia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.0.0.136\Definitions\IPSDefs\20180907.061\IDSvia64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;@oem24.inf,%PID_081B_DD%(UVC);Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 mfesapsn;McAfee Process Start Notification Service;c:\program files\McAfee\WebAdvisor\mfesapsn.sys;c:\program files\McAfee\WebAdvisor\mfesapsn.sys [x]
R3 QFXUpdateService;QFX Software Update Service;c:\program files (x86)\KeyScrambler\x64\QFXUpdateService.exe;c:\program files (x86)\KeyScrambler\x64\QFXUpdateService.exe [x]
R3 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1406000.01B\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SYMDS64.SYS [x]
R3 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1406000.01B\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SYMEFA64.SYS [x]
R3 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1406000.01B\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\Ironx64.SYS [x]
R3 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1406000.01B\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\NISx64\1406000.01B\SYMNETS.SYS [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\System32\drivers\wdcsam64.sys;c:\windows\SYSNATIVE\drivers\wdcsam64.sys [x]
R3 WsAudio_Device;WsAudio_Device;c:\windows\system32\drivers\VirtualAudio.sys;c:\windows\SYSNATIVE\drivers\VirtualAudio.sys [x]
R3 WsDrvInst;Wondershare Driver Install Service;c:\program files (x86)\Keepvid\KeepVid Music\DriverInstall.exe;c:\program files (x86)\Keepvid\KeepVid Music\DriverInstall.exe [x]
R3 WSDScan;Prise en charge de la numérisation WSD;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\System32\drivers\WUDFRd.sys;c:\windows\SYSNATIVE\drivers\WUDFRd.sys [x]
R4 SymELAM;Symantec ELAM Driver;c:\windows\system32\drivers\NISx64\1406000.01B\SymELAM.sys;c:\windows\SYSNATIVE\drivers\NISx64\1406000.01B\SymELAM.sys [x]
S0 amd_sata;amd_sata;c:\windows\System32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\System32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 apmwin;Apple Partition Map Driver;c:\windows\system32\DRIVERS\apmwin.sys;c:\windows\SYSNATIVE\DRIVERS\apmwin.sys [x]
S0 gpt_loader;GUID Partition table support driver;c:\windows\system32\DRIVERS\gpt_loader.sys;c:\windows\SYSNATIVE\DRIVERS\gpt_loader.sys [x]
S0 mounthlp;Mounter helper driver for HFS+ volumes;c:\windows\system32\DRIVERS\mounthlp.sys;c:\windows\SYSNATIVE\DRIVERS\mounthlp.sys [x]
S3 KeyScrambler;KeyScrambler;c:\windows\system32\drivers\keyscrambler.sys;c:\windows\SYSNATIVE\drivers\keyscrambler.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\System32\drivers\usbfilter.sys;c:\windows\SYSNATIVE\drivers\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
apphost REG_MULTI_SZ apphostsvc
iissvcs REG_MULTI_SZ w3svc was
.
Contenu du dossier 'Tâches planifiées'
.
2018-09-13 c:\windows\Tasks\Adobe Flash Player NPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_108_Plugin.exe [2018-09-13 09:07]
.
2018-09-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-13 09:07]
.
2018-09-13 c:\windows\Tasks\CCleaner Update.job
- c:\program files\CCleaner\CCUpdate.exe [2018-08-24 18:38]
.
2018-09-13 c:\windows\Tasks\DriverUPDATER.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
2018-09-13 c:\windows\Tasks\DriverUPDATER.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
2018-09-11 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-11 03:58]
.
2018-09-11 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-09-11 03:58]
.
2018-09-11 c:\windows\Tasks\EPSON XP-710 Series Invitation {A8B0E697-2C32-488D-8B8A-B2A1A0DCFCD2}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2018-09-06 07:12]
.
2018-09-11 c:\windows\Tasks\EPSON XP-710 Series Update {A8B0E697-2C32-488D-8B8A-B2A1A0DCFCD2}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_ITSLPE.EXE [2018-09-06 07:12]
.
2018-09-12 c:\windows\Tasks\Tweaking.com - Windows Repair Tray Icon.job
- c:\program files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2018-05-20 19:20]
.
2018-09-13 c:\windows\Tasks\User_Feed_Synchronization-{894F9756-3BDE-4E8A-AC50-A7CC1E86F4AD}.job
- c:\windows\system32\msfeedssync.exe [2012-07-26 03:20]
.
2018-09-13 c:\windows\Tasks\UTILILAB SystemOPTIMIZER.job
- c:\program files (x86)\UTILILAB\SystemOPTIMIZER\USO.exe [2018-09-13 14:05]
.
2018-09-13 c:\windows\Tasks\UTILILABDriverUPDATERRunAtStartup.job
- c:\program files (x86)\UTILILAB\DriverUPDATER\utililabdu.exe [2018-09-13 13:09]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt01]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt02]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt03]
@="{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt04]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt05]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt06]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt07]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt08]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt09]
@="{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt10]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2018-08-31 08:15 367952 ----a-w- c:\program files (x86)\Dropbox\Client\DropboxExt64.24.0.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveBlacklisted]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSynced]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ GoogleDriveSyncing]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2018-05-30 09:03 775096 ----a-w- c:\program files\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Greenshot"="c:\program files\Greenshot\Greenshot.exe" [2017-08-09 527792]
.
------- Examen supplémentaire -------
.
uStart Page = https://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_IEe64_w10e64_odc
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0411
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0412
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C}\Lang0804
IE: {{48A61126-9A19-4C50-A214-FF08CB94995C} - {29B24532-6CE1-41BA-8BF0-F580EA174AF1} - c:\program files\McAfee\WebAdvisor\win32\IEPlugin.dll
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jean-Marie\AppData\Roaming\Mozilla\Firefox\Profiles\5786dgji.default\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Wow6432Node-HKLM-RunOnce-
SafeBoot-vga.sys
SafeBoot-vgasave.sys
SafeBoot-AppXSvc
SafeBoot-camsvc
SafeBoot-ClipSvc
SafeBoot-lfsvc
SafeBoot-MBAMService
SafeBoot-semgrsvc
SafeBoot-TokenBroker
SafeBoot-TweakingRemoveSafeBoot
HKLM_Wow6432Node-ActiveSetup-{8A69D345-D564-463c-AFF1-A69D9E530F96} - c:\program files (x86)\Google\Chrome\Application\64.0.3282.119\Installer\chrmstp.exe
ShellIconOverlayIdentifiers-{F241C880-6982-4CE5-8CF7-7085BA96DA5A} - (no file)
ShellIconOverlayIdentifiers-{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} - (no file)
ShellIconOverlayIdentifiers-{BBACC218-34EA-4666-9D7A-C78F2274A524} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
HKLM-Run-AvastUI.exe - c:\program files\AVAST Software\Avast\AvLaunch.exe
AddRemove-{FF27F674-821E-4BA2-985B-DDF539C2CD03} - c:\program files (x86)\InstallShield Installation Information\{FF27F674-821E-4BA2-985B-DDF539C2CD03}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\20.6.0.27\diMaster.dll\" /prefetch:1"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Heure de fin: 2018-09-13 11:39:33
ComboFix-quarantined-files.txt 2018-09-13 09:39
.
Avant-CF: 827 291 774 976 octets libres
Après-CF: 827 368 026 112 octets libres
.
- - End Of File - - 01AB3D61B6818125CCD4BE72F08AB695
5FB38429D5D77768867C76DCBDB35194