Alerte avast svchost.exe

saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention   -  
 saronada -
Bonjour a tous , j'aurais besoin d'aide de superhéro svp . j'ai un problème d'alerte de avast sur un lien de svchost.exe , en faite 16 alerte a la fois . j'ai essayer plusieurs chose , malwarebyte , rogue killer ,hitman pro ,etc... mais toujours pareil. a chaque fois que mon ordi sort de veille l'alerte es sonner . svp aidez-moi , sa fait une semaine que sa dur et je ne sais plus quoi faire.

URL: http://alwaysisobar.com/4242/SectionDouble_142669629436749.dll
Infection: URL:Mal
Processus: C:\Windows\System32\svchost.exe

URL: http://simplesitescan.net/4242/SectionAppend_142669233579137.dll
Infection: URL:Mal
Processus: C:\Windows\System32\svchost.exe

entre autre comme alerte, merci d'avance a tous

5 réponses

  1. lilidurhone Messages postés 800 Date d'inscription   Statut Contributeur sécurité Dernière intervention   3 818
     
    ▶ Télécharge ici : FRST (de Farbar)
    !!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
    Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

    ▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

    ▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

    ▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

    Les rapport se trouvent ici : C:\FRST\Logs

    ▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
    0
    1. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      ok parfait , j'essaye tout sa et je poste
      0
    2. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      voici les rapport addition.txt:

      Additional scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
      Ran by max07 at 2015-06-13 09:06:33
      Running from C:\Users\romu\Desktop
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrator (S-1-5-21-3530046813-1433694769-850257653-500 - Administrator - Disabled)
      Guest (S-1-5-21-3530046813-1433694769-850257653-501 - Limited - Disabled)
      max07 (S-1-5-21-3530046813-1433694769-850257653-1001 - Administrator - Enabled) => C:\Users\romu

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)


      ==================== Installed Programs ======================

      (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      µTorrent (HKU\S-1-5-21-3530046813-1433694769-850257653-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
      4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.)
      Airport Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
      Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
      AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
      Azkend 2: The World Beneath (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
      Bounce Symphony (x32 Version: 2.2.0.97 - WildTangent) Hidden
      Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden
      CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
      Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
      Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
      Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
      Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Curse at Twilight (x32 Version: 3.0.2.32 - WildTangent) Hidden
      CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
      CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3303 - CyberLink Corp.)
      CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.5.3416 - CyberLink Corp.)
      CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.)
      CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.)
      D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
      Delicious: Emily's Childhood Memories Premium Edition (x32 Version: 3.0.2.32 - WildTangent) Hidden
      DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
      Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
      Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Fishdom 3: Collector's Edition (x32 Version: 3.0.2.38 - WildTangent) Hidden
      Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
      Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
      Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
      Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
      Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
      House of 1000 Doors: Family Secrets (x32 Version: 2.2.0.98 - WildTangent) Hidden
      HP Documentation (HKLM-x32\...\{F29E3AA8-CF19-4452-92B7-F1FE31CD11C5}) (Version: 1.1.0.0 - Hewlett-Packard)
      HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7372.4698 - Hewlett-Packard)
      HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard)
      HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
      HP Utility Center (HKLM\...\{891A1782-8B20-4403-8383-458962525926}) (Version: 2.3.4 - Hewlett-Packard Company)
      HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
      Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden
      Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden
      Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3408 - Intel Corporation)
      Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.70.305.16316 - Intel Corporation)
      Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation)
      Java 8 Update 40 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418040F0}) (Version: 8.0.400 - Oracle Corporation)
      Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
      John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
      Letters from Nowhere 2 (x32 Version: 2.2.0.97 - WildTangent) Hidden
      Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Mahjongg Dimensions Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
      Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
      Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-3530046813-1433694769-850257653-1001\...\OneDriveSetup.exe) (Version: 17.3.4724.0224 - Microsoft Corporation)
      Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
      MyFreeCodec (HKU\S-1-5-21-3530046813-1433694769-850257653-1001\...\MyFreeCodec) (Version: - )
      Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
      Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
      Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
      Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Pinger (HKLM-x32\...\Pinger 1.4.0.1) (Version: 1.4.0.1 - Pinger Inc.)
      Pinger (x32 Version: 1.4.0.1 - Pinger Inc.) Hidden
      Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
      Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.29075 - Realtek Semiconductor Corp.)
      Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 8.24.1218.2013 - Realtek)
      Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7156 - Realtek Semiconductor Corp.)
      REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.13.1216 - REALTEK Semiconductor Corp.)
      Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
      SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
      swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
      Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 18.0.4.0 - Synaptics Incorporated)
      The Treasures of Mystery Island: The Ghost Ship (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden
      Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 5.1.3 - Universal Media Server)
      Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
      Vacation Quest(TM) - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
      VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
      WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
      WildTangent Games App (HP Games) (x32 Version: 4.0.10.15 - WildTangent) Hidden
      Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
      WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
      Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden
      Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      CustomCLSID: HKU\S-1-5-21-3530046813-1433694769-850257653-1001_Classes\CLSID\{2D349E57-23E4-4A67-9624-F1DC6B65AABF}\InprocServer32 -> C:\ProgramData\{F66CB4EE-546F-4D54-9332-216DE189AAB0}\wpccpl.dll No File

      ==================== Restore Points =========================

      Could not list restore points
      Check "winmgmt" service or repair WMI.


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {001AA63E-2832-47C9-B45F-1D6BB26A4DE3} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-13] (Synaptics Incorporated)
      Task: {08234EAB-967C-4BD1-8DD2-89FB589FB2BE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)
      Task: {09BA7AD8-918A-4017-A7FC-71C65F04F183} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-12] (CyberLink Corp.)
      Task: {0FB96692-9ADA-4E9E-80E5-16BC123E5D68} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-12] (Microsoft Corporation)
      Task: {2B474CA2-B47E-4C5B-8A68-0284C8104F06} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-04-27] (Avast Software s.r.o.)
      Task: {38839B49-F562-4C6E-B42E-FB0DBADCC91E} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
      Task: {3EAE1913-4A7D-44AF-98E8-5DDEE2E09FF7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-06] (Google Inc.)
      Task: {712FECC7-7945-4236-BC8D-B007B88CF41E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
      Task: {741901A6-1B15-41B9-B9AF-25EB0FF9574E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-05-22] (Microsoft Corporation)
      Task: {81A6BCCD-D027-4092-B2D5-8AD7957FCD49} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3530046813-1433694769-850257653-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
      Task: {81C487C6-9D6C-4FE6-899F-C41F15594761} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.)
      Task: {A4849630-BD08-44C7-AF81-B4E999177316} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
      Task: {A51DBF44-656A-4AC3-8369-8DBB52CCECBE} - System32\Tasks\Microsoft Office 15 Sync Maintenance for ROMU-max07 romu => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
      Task: {B5CC5E42-D351-4794-80B5-46411F749965} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
      Task: {BD4F3EE3-302F-4903-BEF7-9E54266CBA8C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
      Task: {BE46863C-26E6-453D-94F2-DC27FDC957C6} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-08-05] (CyberLink)
      Task: {C41E4E0A-78A2-4934-9890-31217B8E3122} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-03-06] (Google Inc.)
      Task: {E0A696F5-8140-4E28-89C4-50C1C8047555} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
      Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

      ==================== Loaded Modules (Whitelisted) ==============

      2014-03-28 16:31 - 2014-03-28 16:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
      2014-03-28 16:27 - 2014-03-28 16:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
      2014-03-28 16:27 - 2014-03-28 16:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
      2014-03-28 16:27 - 2014-03-28 16:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
      2014-03-28 16:48 - 2014-03-28 16:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
      2014-03-28 16:48 - 2014-03-28 16:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
      2015-02-11 08:00 - 2014-05-20 12:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
      2014-03-28 16:36 - 2014-03-28 16:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
      2015-06-10 20:09 - 2015-06-10 19:59 - 00020288 ____R () C:\Program Files\CCleaner\branding.dll
      2015-04-08 15:53 - 2015-04-08 15:53 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
      2015-04-27 16:05 - 2015-04-27 16:05 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
      2015-04-27 16:05 - 2015-04-27 16:05 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
      2015-06-11 19:21 - 2015-06-11 19:21 - 02954752 _____ () C:\Program Files\AVAST Software\Avast\defs\15061102\algo.dll
      2015-06-13 08:23 - 2015-06-13 08:23 - 02954752 _____ () C:\Program Files\AVAST Software\Avast\defs\15061300\algo.dll
      2015-03-06 14:13 - 2015-03-06 14:13 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2014-08-20 09:09 - 2013-08-05 03:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
      2013-08-05 18:48 - 2013-08-05 18:48 - 00016856 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
      2015-06-10 04:33 - 2015-06-05 14:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libglesv2.dll
      2015-06-10 04:33 - 2015-06-05 14:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libegl.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00143296 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 02631616 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00554944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdshow_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00041920 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libdirectsound_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00039872 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_output\libwaveout_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00086464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirect3d_plugin.dll
      2015-04-13 09:56 - 2015-04-13 09:56 - 00070675 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_output\libdirectdraw_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 02158528 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\liblibbluray_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00114112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libaccess_bd_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00245184 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libdvdnav_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00089536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libvdr_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00055744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libfilesystem_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00072128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libsmooth_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00593344 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libhttplive_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00771520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\libdash_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00131520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\libzip_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00052672 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\access\librar_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\stream_filter\librecord_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00145856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libplaylist_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 01566656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libtaglib_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00332736 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\lua\liblua_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 01264064 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\misc\libxml_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_msg_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00069568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libhotkeys_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00048576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\control\libwin_hotkeys_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 12001728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00242112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmp4_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00108992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libavi_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00096704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libasf_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00091584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libflacsys_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libes_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00046528 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\meta_engine\libfolder_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 01303488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmkv_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00032192 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libnuv_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libtta_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00261056 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libjpeg_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libcdg_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00084928 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libmpc_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00304576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libpng_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libwav_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 01291200 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libschroedinger_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00754624 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvorbis_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00344512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libtheora_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdts_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaraw_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00052160 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsubstx3g_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00456128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libflac_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00034752 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libcaf_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00035776 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libg711_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libaes3_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00157632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspeex_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 01549248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblibass_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00356288 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libfaad_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liba52_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libmpeg_audio_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00031680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\liblpcm_plugin.dll
      2015-04-13 09:57 - 2015-04-13 09:57 - 00961472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\demux\libsid_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00363456 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libopus_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 00121792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libdvbsub_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libspudec_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 13522368 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libavcodec_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00137152 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\services_discovery\libsap_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 01532864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libvpx_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00038336 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libscte27_plugin.dll
      2015-04-13 10:00 - 2015-04-13 10:00 - 01573824 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libzvbi_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\librawvideo_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00067008 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\codec\libsubsdec_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00772544 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\text_renderer\libfreetype_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_mixer\libfloat_mixer_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00027072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libscaletempo_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00038848 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_sse2_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00140224 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00176576 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00030144 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_mmx_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00067520 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00702400 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libswscale_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 01504704 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsamplerate_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00028096 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00036800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_sse2_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00125376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_sse2_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00064448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_mmx_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00029632 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00028608 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_mmx_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00022464 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i422_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00024512 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libgrey_yuv_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00034240 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\audio_filter\libaudio_format_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00030656 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libyuy2_i420_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00027584 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_yuy2_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00029120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_yuy2_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00037312 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi420_rgb_plugin.dll
      2015-04-13 09:58 - 2015-04-13 09:58 - 00024000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_chroma\libi422_i420_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00023488 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libscale_plugin.dll
      2015-04-13 09:59 - 2015-04-13 09:59 - 00022976 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\video_filter\libyuvp_plugin.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\Users\romu\OneDrive:ms-properties
      AlternateDataStreams: C:\Users\romu\OneDrive.old:ms-properties

      ==================== Safe Mode (Whitelisted) ===================

      (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
      HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

      ==================== EXE Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-3530046813-1433694769-850257653-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\romu\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg
      DNS Servers: 24.200.241.37 - 24.202.72.13

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      (Currently there is no automatic fix for this section.)


      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
      FirewallRules: [{9EFA48B6-0533-409D-BB68-4592556D64F4}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
      FirewallRules: [{E3A73772-F3B8-44F0-A3F4-8978EDB47A63}] => (Allow) LPort=2869
      FirewallRules: [{DDA84707-76D6-4A36-B416-20D93D57ECF6}] => (Allow) LPort=1900
      FirewallRules: [{ED3B31AE-EE04-4E51-BC5F-F56C495E36B0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
      FirewallRules: [{FD1F734A-59B5-43C0-8A12-FF5E64BCCDDF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
      FirewallRules: [{38BF6891-5156-4C87-B3C4-44A6082DA442}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
      FirewallRules: [{61B35C54-5A7D-456A-945D-DE273F3C97A1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
      FirewallRules: [{C9F05DCB-AE4A-4E18-93D5-D0FB563D89A2}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
      FirewallRules: [{35B2D470-D275-4A35-A3F1-3CCB3922E701}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      FirewallRules: [TCP Query User{14B01A30-0A7F-4769-BE91-DB514E7DF19C}C:\users\romu\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\romu\appdata\roaming\utorrent\utorrent.exe
      FirewallRules: [UDP Query User{02A0C5AE-E3FD-4004-922D-258A0FF96E3B}C:\users\romu\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\romu\appdata\roaming\utorrent\utorrent.exe
      FirewallRules: [TCP Query User{438D5255-BDEC-4111-83EE-F57D31D3F459}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
      FirewallRules: [UDP Query User{2F08002E-727E-413B-AFB7-229BE2B8ABAD}C:\program files\java\jre1.8.0_40\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_40\bin\javaw.exe
      FirewallRules: [{08622FE8-6B49-4F13-9492-C32968A238AA}] => (Block) C:\program files\java\jre1.8.0_40\bin\javaw.exe
      FirewallRules: [{E5C6D4D7-3C75-41CC-84A8-2F69AD99DF9B}] => (Block) C:\program files\java\jre1.8.0_40\bin\javaw.exe
      FirewallRules: [{11D245EA-3448-4E5F-92CE-B3119055E9A6}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
      FirewallRules: [{B71B6452-A034-4D42-8605-A76C50FDC277}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
      FirewallRules: [{43142811-31E1-4648-81B9-4202CAF8CA6B}] => (Allow) C:\Program Files (x86)\Windows Audio\R2\WMIPrvSD.exe
      FirewallRules: [{C5AB9A4C-2E7D-4B3E-8B9E-84F3598AD115}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{762FD806-58E9-4984-B1E4-5069EF097311}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
      FirewallRules: [{4E0CA583-89D8-453F-8B5C-902ACA186640}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{871C091B-5FAB-4DD6-9F66-4BCF9A520F75}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
      FirewallRules: [{A65F8AD4-A675-4D3D-843C-C8CE8481FE4A}] => (Allow) C:\Users\romu\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{E911BEE0-85EA-4B3B-87AE-B48F9E713271}] => (Allow) C:\Users\romu\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{95D614CA-A178-4165-9B7A-26D28939B130}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

      ==================== Faulty Device Manager Devices =============

      Could not list Devices. Check "winmgmt" service or repair WMI.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (06/12/2015 08:46:16 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
      Description: Subscription licensing service failed: -1073415161

      Error: (06/12/2015 07:50:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: Le programme LiveComm.exe version 17.5.9600.20856 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

      ID de processus : f28

      Heure de début : 01d0a52aa3282056

      Heure de fin : 4294967295

      Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.exe

      ID de rapport : cd806b12-115d-11e5-8317-1458d00f06c3

      Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe

      ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

      Error: (06/12/2015 00:13:27 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nom de l'application défaillante HPMSGSVC.exe, version : 1.0.10.0, horodatage : 0x52537ee1
      Nom du module défaillant : HPMSGSVC.exe, version : 1.0.10.0, horodatage : 0x52537ee1
      Code d'exception : 0xc0000005
      Décalage d'erreur : 0x000023e9
      ID du processus défaillant : 0x13c0
      Heure de début de l'application défaillante : 0xHPMSGSVC.exe0
      Chemin d'accès de l'application défaillante : HPMSGSVC.exe1
      Chemin d'accès du module défaillant: HPMSGSVC.exe2
      ID de rapport : HPMSGSVC.exe3
      Nom complet du package défaillant : HPMSGSVC.exe4
      ID de l'application relative au package défaillant : HPMSGSVC.exe5

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
      Description: Impossible d'initialiser l'index.


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
      Description: Impossible d'initialiser l'application.

      Context: Windows Application


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
      Description: Impossible d'initialiser l'objet rassembleur.

      Context: Windows Application, SystemIndex Catalog


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
      Description: Impossible d'initialiser le plug-in dans <Search.TripoliIndexer>.

      Context: Windows Application, SystemIndex Catalog


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 3057) (User: )
      Description: Impossible d'initialiser le gestionnaire plug-in <Search.TripoliIndexer>.

      Context: Windows Application


      Details:
      (HRESULT : 0x8e5e0210) (0x8e5e0210)

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
      Description: Le service de recherche Windows a été arrêté à cause d'un problème avec l'indexeur : The catalog is corrupt.


      Details:
      The content index catalog is corrupt. 0xc0041801 (0xc0041801)

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
      Description: Le service de recherche a détecté des fichiers de données endommagés dans l'index {id=4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)}. Le service tentera de corriger automatiquement ce problème en recréant l'index.


      Details:
      0x8e5e0210 (0x8e5e0210)


      System errors:
      =============
      Error: (06/13/2015 08:56:11 AM) (Source: disk) (EventID: 11) (User: )
      Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1.

      Error: (06/13/2015 08:35:49 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:49 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:48 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:48 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:47 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:47 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:46 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:46 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.

      Error: (06/13/2015 08:35:45 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
      Description: Le service Security Center dépend du service suivant : winmgmt. Ce dernier n'est peut-être pas installé.


      Microsoft Office:
      =========================
      Error: (06/12/2015 08:46:16 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
      Description: Subscription licensing service failed: -1073415161

      Error: (06/12/2015 07:50:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
      Description: LiveComm.exe17.5.9600.20856f2801d0a52aa32820564294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.execd806b12-115d-11e5-8317-1458d00f06c3microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

      Error: (06/12/2015 00:13:27 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: HPMSGSVC.exe1.0.10.052537ee1HPMSGSVC.exe1.0.10.052537ee1c0000005000023e913c001d0a52ab3e25222C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exeC:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exef4d518bb-111d-11e5-8317-1458d00f06c3

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
      Description:
      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
      Description: Context: Windows Application


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
      Description: Context: Windows Application, SystemIndex Catalog


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)

      Error: (06/12/2015 10:46:33 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
      Description: Context: Windows Application, SystemIndex Catalog


      Details:
      The specified object cannot be found. Specify the name of an existing object. (HRESULT : 0x80040d06) (0x80040d06)
      Search.TripoliIndexer

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 3057) (User: )
      Description: Context: Windows Application


      Details:
      (HRESULT : 0x8e5e0210) (0x8e5e0210)
      Search.TripoliIndexer

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 7042) (User: )
      Description:
      Details:
      The content index catalog is corrupt. 0xc0041801 (0xc0041801)
      The catalog is corrupt

      Error: (06/12/2015 10:45:42 AM) (Source: Windows Search Service) (EventID: 7040) (User: )
      Description:
      Details:
      0x8e5e0210 (0x8e5e0210)
      4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)


      CodeIntegrity Errors:
      ===================================
      Date: 2015-06-10 23:30:17.186
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:16.030
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:15.373
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:14.264
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:13.076
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:12.217
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:11.436
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:10.764
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:10.029
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.

      Date: 2015-06-10 23:30:09.295
      Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.


      ==================== Memory info ===========================

      Processor: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz
      Percentage of memory in use: 64%
      Total physical RAM: 3984.27 MB
      Available physical RAM: 1404.02 MB
      Total Pagefile: 8080.27 MB
      Available Pagefile: 5179.38 MB
      Total Virtual: 131072 MB
      Available Virtual: 131071.8 MB

      ==================== Drives ================================

      Drive c: (Windows) (Fixed) (Total:442.26 GB) (Free:276.31 GB) NTFS
      Drive d: (RECOVERY) (Fixed) (Total:22.49 GB) (Free:22.36 GB) NTFS
      Drive f: (romu) (Fixed) (Total:465.76 GB) (Free:77.65 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (Size: 465.8 GB) (Disk ID: 2873FD28)

      Partition: GPT Partition Type.

      ========================================================
      Disk: 1 (Size: 465.8 GB) (Disk ID: 4D544F4F)
      No partition Table on disk 1.

      ==================== End of log ============================
      0
  2. lilidurhone Messages postés 800 Date d'inscription   Statut Contributeur sécurité Dernière intervention   3 818
     
    Héberge les rapports
    Je vais m'absenter un peu je reviens ce soir
    0
    1. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      pas de probleme A+ merci du coup de main
      0
  3. lilidurhone Messages postés 800 Date d'inscription   Statut Contributeur sécurité Dernière intervention   3 818
     
    ZHPCleaner

    Désactiver l'Anti-virus

    Ton moteur de recherche va se fermer il faudra le réouvrir pour poster les rapports

    téléchargement : https://nicolascoolman.eu

    - Cet outil ne nécessite aucune installation, il est très rapide car basé sur l'éxécution de scripts.
    - Clique droit sur le dossier téléchargé

    - Clique sur Scanner :

    - Savoir que tous les navigateurs ou onglets ouvert seront fermés et qu'il faudra les remettre

    - En cas de présence d'un proxy, un message apparaît avec la question suivante
    - Avez-vous installé ce proxy ? suivi de l'adresse IP du proxy
    - Si vous n'avez pas installé de Proxy, cliquer sur "NON" pour accepter la réparation du proxy.

    - En cas de présence d'un serveur inconnu, un message peut apparaître avec la question suivante
    - Avez-vous installé ce serveur ? suivi du nom du serveur
    - Si vous n'avez pas installé de serveur,, cliquer sur "NON" pour accepter la réparation

    - Fournir le rapport
    0
    1. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      voici le rapport , il a trouvé 6 infections:
      ~ ZHPCleaner v2015.6.13.275 by Nicolas Coolman (2015\06\13)
      ~ Run by max07 (Administrator) (14/06/2015 08:47:08)
      ~ Site : https://nicolascoolman.eu
      ~ Facebook : https://www.facebook.com/nicolascoolman1
      ~ State version : Version OK
      ~ Type : Scanner
      ~ Report : C:\Users\romu\Desktop\ZHPCleaner.txt
      ~ Quarantine : C:\Users\romu\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
      ~ UAC : Activate
      ~ Boot Mode : Normal (Normal boot)
      ~ Windows 8.1, 64-bit (Build 9600)


      ---\\ Service. (0)
      ~ Aucun élément malicieux trouvé.


      ---\\ Navigateur internet. (0)
      ~ Aucun élément malicieux trouvé.


      ---\\ Fichier hôte. (1)
      ~ Le fichier hôte est légitime. (21)


      ---\\ Tâche planifiée. (0)
      ~ Aucun élément malicieux trouvé.


      ---\\ Explorateur ( Dossiers, Fichiers ). (0)
      ~ Aucun élément malicieux trouvé.


      ---\\ Base de Registres ( Clés, Valeurs, Données ). (0)
      ~ Aucun élément malicieux trouvé.


      ---\\ Bilan de la réparation
      ~ Aucune réparation effectuée.
      ~ Ce navigateur est absent (Mozilla Firefox)
      ~ Ce navigateur est absent (Opera Software)


      ---\\ Statistiques
      ~ Items scannés : 77564
      ~ Items trouvés : 0
      ~ Items annulés : 0
      ~ Items réparés : 0


      End of clean at 08:55:17
      ===================
      ZHPCleaner-[R]-14062015-08_47_01.txt
      ZHPCleaner-[S]-14062015-08_40_52.txt
      ZHPCleaner-[S]-14062015-08_55_17.txt
      0
    2. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      oh scuse ,le rapport n'est plus le même car j'ai nettoyer apès le scan. j'en fait un autre
      0
    3. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      merci pour ta patience , je ne suis pas king en informatique , je fait juste me débrouiller ;)
      0
    4. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      bon mon ordi me donne encore des alertes après le scan de zhpcleaner . quand je re-scan après une alerte sa me dit qu'il ne détecte rien. je ne comprend pas car au début il détecter 6 infections.
      0
  4. lilidurhone Messages postés 800 Date d'inscription   Statut Contributeur sécurité Dernière intervention   3 818
     
    Avast fume il n'y a aucune infection
    Fais remonter chez avast
    0
    1. saronada
       
      parfais ma installer avast de nouveau et je vous donne des news
      0
    2. saronada
       
      wow un gros merci , j'ai réinstaller une nouvelle license avast et apres plusieur test de mettre l'ordi en veille et de déconnecter et reconnecter internet . pour l'instant tout es nickel . vraiment merci pour tout ,oh dieu des dieux lol
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. lilidurhone Messages postés 800 Date d'inscription   Statut Contributeur sécurité Dernière intervention   3 818
     
    Bonjour
    As tu essayé de désinstaller réinstaller avast?
    -1
    1. saronada Messages postés 10 Date d'inscription   Statut Membre Dernière intervention  
       
      humm non sa ne marche pas , c'est la même chose
      0