Ma config: --------[ EVEREST Ultimate Edition ]------------------------------------------------------------------------------------ Version EVEREST v5.50.2100/fr Module de benchmark 2.5.292.0 Site web [url=http://www.lavalys.com/]Computer Diagnostics & Network Audits Software | Lavalys.com[/url] Type de rapport Rapport rapide Ordinateur SHIIN Générateur Aurélien Système d'exploitation Windows 8 Pro Professional 6.2.9200 Date 2013-04-28 Heure 12:36 --------[ Résumé ]------------------------------------------------------------------------------------------------------ Ordinateur: Type de système PC ACPI avec processeur x64 Système d'exploitation Windows 8 Pro Professional Service Pack du système - Internet Explorer 9.10.9200.16540 DirectX DirectX 11.0 Nom du système SHIIN Nom de l'utilisateur Aurélien Domaine de connexion SHIIN Date / Heure 2013-04-28 / 12:36 Carte mère: Type de processeur QuadCore AMD Phenom II X4 Black Edition 965, 3400 MHz (17 x 200) Nom de la carte mère Gigabyte GA-790XT-USB3 (3 PCI, 2 PCI-E x1, 2 PCI-E x16, 4 DDR3 DIMM, Audio, Gigabit LAN, IEEE-1394) Chipset de la carte mère AMD 790X, AMD K10 Mémoire système 8192 Mo (DDR3-1600 DDR3 SDRAM) DIMM1: G Skill F3-12800CL9-4GBXL 4 Go DDR3-1600 DDR3 SDRAM (10-10-10-27 @ 761 MHz) (9-9-9-24 @ 685 MHz) (8-8-8-22 @ 609 MHz) (7-7-7-19 @ 533 MHz) (6-6-6-16 @ 457 MHz) DIMM2: G Skill F3-12800CL9-4GBXL 4 Go DDR3-1600 DDR3 SDRAM (10-10-10-27 @ 761 MHz) (9-9-9-24 @ 685 MHz) (8-8-8-22 @ 609 MHz) (7-7-7-19 @ 533 MHz) (6-6-6-16 @ 457 MHz) Type de BIOS Award Modular (05/13/10) Port de communication Port de communication (COM1) Moniteur: Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Carte vidéo AMD Radeon HD 7900 Series (3072 Mo) Moniteur Samsung SyncMaster P2450H (Digital) [24" LCD] (H9MZ214760) Multimédia: Carte audio High Definition Audio Bus [1002-AAA0] [NoDB] Carte audio Realtek ALC889 @ ATI SB750 - High Definition Audio Controller Stockage: Contrôleur IDE Contrôleur IDE standard double canal PCI Contrôleur IDE Contrôleur IDE standard double canal PCI Contrôleur de stockage Contrôleur des espaces de stockage Microsoft Contrôleur de stockage JMicron JMB36X Controller Lecteur de disquettes Lecteur de disquettes Disque dur Generic STORAGE DEVICE USB Device Disque dur SAMSUNG HM500JI USB Device (500 Go, 5400 RPM, SATA-II) Disque dur WDC WD10EZRX-00A8LB0 ATA Device (931 Go, IDE) Lecteur optique DTSOFT Virtual CdRom Device Lecteur optique TSSTcorp CDDVDW SH-S222A ATA Device (DVD+R9:16x, DVD-R9:12x, DVD+RW:22x/8x, DVD-RW:22x/6x, DVD-RAM:12x, DVD-ROM:16x, CD:48x/32x/48x DVD+RW/DVD-RW/DVD-RAM) État des disques durs SMART OK Partitions: C: (NTFS) 931.4 Go (784.3 Go libre) E: (NTFS) 465.8 Go (323.9 Go libre) Taille totale 1397.2 Go (1108.2 Go libre) Entrée: Clavier Périphérique clavier PIH Clavier Périphérique clavier PIH Souris Souris HID Réseau: Adresse IP principale 192.168.0.10 Adresse MAC principale 6C-F0-49-59-1C-08 Carte réseau Realtek PCIe GBE Family Controller (192.168.0.10) Périphériques: Imprimante Fax Imprimante Microsoft XPS Document Writer Imprimante Send To OneNote 2010 Contrôleur FireWire Texas Instruments TSB43AB23 1394A-2000 OHCI PHY/Link-Layer Controller (PHY: TI TSB43AB23) Contrôleur USB1 ATI SB750 - OHCI USB Controller Contrôleur USB1 ATI SB750 - OHCI USB Controller Contrôleur USB1 ATI SB750 - OHCI USB Controller Contrôleur USB1 ATI SB750 - OHCI USB Controller Contrôleur USB1 ATI SB750 - OHCI USB Controller Contrôleur USB1 NEC uPD720200 USB 3.0 Host Controller Contrôleur USB2 ATI SB750 - EHCI USB 2.0 Controller Contrôleur USB2 ATI SB750 - EHCI USB 2.0 Controller Périphérique USB C-Media USB Audio Device Périphérique USB Dispositif de stockage de masse USB Périphérique USB Dispositif de stockage de masse USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique d’entrée USB Périphérique USB Périphérique USB composite Périphérique USB Périphérique USB composite Périphérique USB Périphérique USB composite DMI: Distributeur du BIOS Award Software International, Inc. Version du BIOS F4 Fabricant du système Gigabyte Technology Co., Ltd. Nom du système GA-790XT-USB3 Version du système Numéro de série du système UUID du système 36434630-34393539-31433038-FFFFFFFF Fabricant de la carte mère Gigabyte Technology Co., Ltd. Nom de la carte mère GA-790XT-USB3 Version de la carte mère x.x Numéro de série de la carte mère Fabricant du châssis Gigabyte Technology Co., Ltd. Version du châssis Numéro de série du châssis Identifiant du châssis Type du châssis Desktop Case Sockets mémoire (Total/Libres) 4 / 2 J'ai effectué des analyses de mon pc voici les rapports : Avec WhoCrashed : Crash Dump Analysis -------------------------------------------------------------------------------- Crash dump directory: C:\WINDOWS\Minidump Crash dumps are enabled on your computer. No valid crash dumps have been found on your computer -------------------------------------------------------------------------------- Conclusion -------------------------------------------------------------------------------- Crash dumps are enabled but no valid crash dumps have been found. It may be that there are problems which prevent crash dumps from being written out. Check out the following article for possible causes: If crash dumps are not written out. In case your computer does experience sudden reboots it is likely these are caused by malfunctioning hardware, power failure or a thermal issue. To troubleshoot a thermal issue, check the temperature using your BIOS setup program, check for dust in CPU and motherboard fans and if your computer is portable make sure it's located on a hard surface. Otherwise it's suggested you contact the support department of the manufacturer of your system or test your system with a memory test utility for further investigation. Check out the following articles for more information: Troubleshooting sudden resets and shut downs. Read the topic general suggestions for troubleshooting system crashes for more information. Note that it's not always possible to state with certainty whether a reported driver is actually responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further. Avec : ZHPDiag Rapport de ZHPDiag v2013.4.26.155 par Nicolas Coolman, Update du 26/04/2013 Run by Aurélien at 28/04/2013 12:40:37 State : Nouvelle version disponible WhiteList : Enable High Elevated Privileges : OK UAC : Activate by user ---\\ Web Browser MSIE: Internet Explorer v10.0.9200.16540 MFIE: Mozilla Firefox 20.0.1 (Defaut) ---\\ Windows Product Information ~ Langage: Français Windows 8 Business Edition, 64-bit (Build 9200) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : J4YQH Windows License : OK ~ Windows Remaining Initializations Number : 1000 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Protection Kaspersky PURE 2.0 v12.0.2.733 Malwarebytes Anti-Malware version 1.75.0.1300 Windows Defender W8 ---\\ System Optimizer CCleaner v3.27 ---\\ Software Update Adobe Flash Player 11 Plugin ---\\ System Information ~ Processor: AMD64 Family 16 Model 4 Stepping 3, AuthenticAMD ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 8189 MB (75% free) System Restore: Activé (Enable) System drive C: has 784 GB (84%) free of 931 GB ---\\ Logged in mode ~ Computer Name: SHIIN ~ User Name: Aurélien ~ All Users Names: Aurélien, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Aurélien\AppData\Roaming\ ~ %Desktop% : C:\Users\Aurélien\Desktop\ ~ %Favorites% : C:\Users\Aurélien\Favorites\ ~ %LocalAppData% : C:\Users\Aurélien\AppData\Local\ ~ %StartMenu% : C:\Users\Aurélien\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 784 Go of 931 Go) D:\ CD-ROM drive (Not Inserted) E:\ Hard drive, Flash drive, Thumb drive (Free 324 Go of 466 Go) F:\ Floppy drive, Flash card reader, USB Key (Not Inserted) G:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.E13A31D5254C25406A7946BDD9B06364] - (.Microsoft Corporation - Explorateur Windows.) (.11/10/2012 - 08:35:16.) -- C:\Windows\Explorer.exe [2380944] [MD5.FE9AB232B56A12224E8A3F3F9878C9A3] - (.Microsoft Corporation - Application de démarrage de Windows.) (.26/07/2012 - 04:08:50.) -- C:\Windows\System32\Wininit.exe [132608] [MD5.753C0848AE7872A3F59663078A517293] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/02/2013 - 11:15:07.) -- C:\Windows\System32\wininet.dll [2240512] [MD5.BCF2036A0DD579E47C008C133550283E] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.11/10/2012 - 06:46:58.) -- C:\Windows\System32\Winlogon.exe [517120] [MD5.9448F5740A037EC0C18F0E9177232DD0] - (.Microsoft Corporation - Bibliothèque de licences.) (.26/07/2012 - 04:07:20.) -- C:\Windows\System32\sppcomapi.dll [273408] [MD5.36D6A3201721558A8AFBCC09C2DA4C2C] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.06/11/2012 - 04:53:44.) -- C:\Windows\system32\Drivers\AFD.sys [560640] [MD5.A721FF570C2387E383BDDEA9632863C9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.26/07/2012 - 06:00:48.) -- C:\Windows\system32\Drivers\atapi.sys [25840] [MD5.990B1BABE6E81FB18E65A87EBEFB1772] - (.Microsoft Corporation - CD-ROM File System Driver.) (.26/07/2012 - 03:30:10.) -- C:\Windows\system32\Drivers\Cdfs.sys [108544] [MD5.339BFF85D788268752DA8C9644B188EE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.26/07/2012 - 03:26:36.) -- C:\Windows\system32\Drivers\Cdrom.sys [174080] [MD5.09D9EB9E7898F8E6561473A20CC808B9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.26/07/2012 - 03:26:53.) -- C:\Windows\system32\Drivers\DfsC.sys [118784] [MD5.7D87B5B6C7188D553E11B59DC7F0B111] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/09/2012 - 07:08:44.) -- C:\Windows\system32\Drivers\HDAudBus.sys [71168] [MD5.C9E9CBF73AFFBFE3E801EFB516787BA3] - (.Microsoft Corporation - Pilote de port i8042.) (.26/07/2012 - 03:28:51.) -- C:\Windows\system32\Drivers\i8042prt.sys [112640] [MD5.3969B9C218DD3FAA9F4ED2FFC3651C02] - (.Microsoft Corporation - IP Network Address Translator.) (.26/07/2012 - 03:23:01.) -- C:\Windows\system32\Drivers\IpNat.sys [145920] [MD5.93179D48066918323628CB016D8C94DC] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.05/02/2013 - 23:29:09.) -- C:\Windows\system32\Drivers\MRxSmb.sys [370688] [MD5.7CEC25C682D319D484630B3952C31A11] - (.Microsoft Corporation - MBT Transport driver.) (.26/07/2012 - 03:24:28.) -- C:\Windows\system32\Drivers\netBT.sys [331776] [MD5.76929F4A69E425911A63B407E26C2589] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.02/02/2013 - 11:54:54.) -- C:\Windows\system32\Drivers\ntfs.sys [1933544] [MD5.4563DAF8C6A740AD7F501E219BD10766] - (.Microsoft Corporation - Pilote de port parallèle.) (.26/07/2012 - 03:29:53.) -- C:\Windows\system32\Drivers\Parport.sys [105984] [MD5.A14D625C5AEE5FFE0F47D1A1D419FAAE] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.26/07/2012 - 03:23:17.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [124928] [MD5.B2A3AD74FF2E2FFA73AF2567108231B3] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.26/07/2012 - 03:25:18.) -- C:\Windows\system32\Drivers\rdpdr.sys [179712] [MD5.73DC722CE5DF26D7638CE2446F2655C7] - (.Microsoft Corporation - TDI Translation Driver.) (.26/07/2012 - 06:26:47.) -- C:\Windows\system32\Drivers\tdx.sys [117248] [MD5.2FB3CDFD5EAF4CD9D4AFAF96877D13AE] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.26/07/2012 - 05:57:09.) -- C:\Windows\system32\Drivers\volsnap.sys [332016] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/41 ~ Mes musiques (My Musics) : 1/1350 ~ Mes Favoris (My Favorites) : 1/3 ~ Mes Documents (My Documents) : 1/6885 ~ Mon Bureau (My Desktop) : 1/8615 ~ Menu demarrer (Programs) : 1/26 ~ Hidden Files: Scanned in 00mn 05s ---\\ Processus lancés [MD5.AEFC1353D0FB4E92A23CFB7E3372356D] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328] [PID.1648] [MD5.6F5386A655598F71BAAB2D6B63A69D6A] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.3956] [MD5.5A272D47FBE16EA49C68916380FD3C62] - (.Lavalys, Inc. - EVEREST Ultimate Edition.) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe [2465888] [PID.2820] [MD5.8E5D36B7ACE957B33941D0A35DC3712B] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7027200] [PID.2332] ~ Processes Running: Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Aurélien\AppData\Roaming\Mozilla\Firefox\Profiles\iwfiozzn.default\prefs.js M2 - MFEP: prefs.js [Aurélien - iwfiozzn.default\newtabgoogle@graememcc.co.uk] [] Add Google Search To New Tab Page v1.0.2 (..) M2 - MFEP: prefs.js [Aurélien - iwfiozzn.default\real@debrid] [] Real-Debrid Plugin v2.3b (..) ~ Firefox Browser: 12 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\WINDOWS\RaidTool\xInsIDE.exe O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe O4 - HKUS\S-1-5-21-134420898-1320481471-3943844735-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O4 - HKUS\S-1-5-21-134420898-1320481471-3943844735-1001\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe ~ Application: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop: Another Patcher.lnk . (.Aocea - Helios Emu - Thor Patcher.) -- C:\Users\Aurélien\Desktop\Another RO\Another Patcher.exe O4 - GS\Desktop: EVEREST Ultimate Edition.lnk . (.Lavalys, Inc. - EVEREST Ultimate Edition.) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe O4 - GS\Desktop: Gw2.lnk . (.ArenaNet - Guild Wars 2 Game Client.) -- C:\Users\Aurélien\Documents\Guild Wars 2\Gw2.exe O4 - GS\Desktop: MPC-HC.lnk . (.MPC-HC Team - Media Player Classic - Home Cinema.) -- C:\Program Files (x86)\MPC-HC\mpc-hc.exe O4 - GS\Desktop: Ordinateur.lnk - Clé orpheline O4 - GS\Desktop: Panneau de configuration.lnk - Clé orpheline O4 - GS\Desktop: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) -- C:\Users\Aurélien\AppData\Local\TeamSpeak 3 Client\ts3client_win32.exe O4 - GS\Desktop: TERA-Launcher.lnk . (.Solid State Networks - TERA.) -- C:\Users\Aurélien\Documents\tera\TERA-Launcher.exe O4 - GS\Desktop: WhoCrashed.lnk . (...) -- C:\Program Files (x86)\WhoCrashed\WhoCrashed.exe (.not file.) ~ Global Startup: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBttnIE.dll O9 - Extra button: Clavier &virtuel [64Bits] - {4248FE82-7FCB-46AC-B270-339F08212110} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\kbrd.ico O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBTTN~1.dll O9 - Extra button: Analyse des &liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\logo.ico ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{7A9E4ADE-7B25-46F3-9921-997F1CF1673D}: DhcpNameServer = 212.27.40.241 212.27.40.240 O17 - HKLM\System\CS1\Services\Tcpip\..\{7A9E4ADE-7B25-46F3-9921-997F1CF1673D}: DhcpNameServer = 212.27.40.241 212.27.40.240 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\System32\klogon.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job [286] [MD5.00000000000000000000000000000000] [APT] [AutoKMS] (...) -- C:\WINDOWS\AutoKMS\AutoKMS.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [EPUpdater] (...) -- C:\Users\Aurélien\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe (.not file.) [0] ~ Scheduled Task: 7 Legitimates Filtered in 00mn 02s ---\\ Logiciels installés (O42) O42 - Logiciel: Ragnarok Online2 - (.Gravity.) [HKLM][64Bits] -- {3C6A9286-2A4B-43DF-A322-01ABFFDCD248} O42 - Logiciel: Ragnarök Online - (.Gravity.) [HKLM][64Bits] -- {55725CAB-ED4D-4169-A22E-20249EFCF2B5} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent ~ Logic: 55 Legitimates Filtered in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\BitTorrent] ~ Key Software: 135 Legitimates Filtered in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 26/04/2013 - 00:15:32 - [2,433] ----D C:\Users\Aurélien\AppData\Roaming\uTorrent ~ Program Folder: 104 Legitimates Filtered in 00mn 01s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.8C0260D7B2358F4C47EE090BDF2A865B] - 27/04/2013 - 11:12:41 ---A- . (...) -- C:\Windows\DeleteOnReboot.bat [97] O44 - LFC:[MD5.DAA6AAD525D12F8985695B882301336F] - 24/04/2013 - 12:42:08 ---A- . (...) -- C:\Windows\win.ini [167] O44 - LFC:[MD5.66047A9C4A04C74B5803FA3DBC00E973] - 22/04/2013 - 17:00:24 RSHAD . (...) -- C:\Windows\System32\Drivers\klick.dat [107384] O44 - LFC:[MD5.D9444B09B7469AF32430ED0C1E578131] - 22/04/2013 - 17:00:24 RSHAD . (...) -- C:\Windows\System32\Drivers\klin.dat [153053] O44 - LFC:[MD5.AB1201F8DE199E764DA9A32ABF71049C] - 22/04/2013 - 16:59:59 RSHAD . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\Windows\System32\Drivers\CSCrySec.sys [85048] O44 - LFC:[MD5.A6EED705BB510FA6B0F9F097165A3395] - 22/04/2013 - 16:59:59 RSHAD . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\Windows\System32\Drivers\CSVirtualDiskDrv.sys [66104] O44 - LFC:[MD5.AADAFDA81303668BE6ED82AA357564CE] - 22/04/2013 - 00:20:22 RSHAD . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [449481] O44 - LFC:[MD5.4FD2E5BDBBBAB094B65E76908F9FADB3] - 21/04/2013 - 19:44:46 ---A- . (...) -- C:\Windows\SysNative\ApnDatabase.xml [387867] O44 - LFC:[MD5.4FD2E5BDBBBAB094B65E76908F9FADB3] - 21/04/2013 - 19:44:46 RSHAD . (...) -- C:\Windows\System32\ApnDatabase.xml [387867] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 21/04/2013 - 18:39:08 ---A- . (...) -- C:\Windows\ativpsrm.bin [0] ~ Files: 976 Legitimates Filtered in 00mn 17s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.48F9C722EA337C39C4926A84CB98822C] - 21/04/2013 - 19:42:43 ---A- - C:\Windows\Prefetch\MEDIA_PLAYER_CLASSIC_HOME_CIN-9E4B0C13.pf O45 - LFCP:[MD5.F1E62BE30A74546C820323A3262456FB] - 21/04/2013 - 19:43:25 ---A- - C:\Windows\Prefetch\TERACOPY_TERACOPY_2.27_ANGLAI-6DF212A1.pf O45 - LFCP:[MD5.B9F064E78724601F55E6AF2D61B8EAA3] - 21/04/2013 - 19:43:25 ---A- - C:\Windows\Prefetch\TERACOPY_TERACOPY_2.27_ANGLAI-8C2065E6.pf O45 - LFCP:[MD5.F8A793FB15051116990F1994AE0EA223] - 21/04/2013 - 20:01:58 ---A- - C:\Windows\Prefetch\INSTALLMANAGERAPP.EXE-9BBB014C.pf O45 - LFCP:[MD5.FB2527CEA4C835C65EDA0EC23C49BE8C] - 22/04/2013 - 00:11:31 ---A- - C:\Windows\Prefetch\EVEREST ULTIMATE 5.3.TMP-6C54ADD0.pf O45 - LFCP:[MD5.E997034024D7E96F86868C973F9A6924] - 22/04/2013 - 00:11:33 ---A- - C:\Windows\Prefetch\EVEREST ULTIMATE 5.3.TMP-7DD45959.pf O45 - LFCP:[MD5.089B303FBA797531B85BEEDA476B6D05] - 22/04/2013 - 00:19:56 ---A- - C:\Windows\Prefetch\VISTA_WIN7_WIN8_R271.EXE-3A691228.pf O45 - LFCP:[MD5.52AE9FD5B4BE0696BCB7B88B4716EA24] - 22/04/2013 - 16:50:10 ---A- - C:\Windows\Prefetch\OFFICE 2010 TOOLKIT.EXE-216084CD.pf O45 - LFCP:[MD5.BCC5B2CCF51E48CC86B3739A0B145AF1] - 22/04/2013 - 16:52:12 ---A- - C:\Windows\Prefetch\14.0.4734.1000_SINGLELANGUAGE-58BEAD10.pf O45 - LFCP:[MD5.FEB233CD7B6A8C9D5D9C3DA932501FDD] - 22/04/2013 - 16:58:10 ---A- - C:\Windows\Prefetch\PURE12.0.2.733FR-FR.EXE-23719B34.pf O45 - LFCP:[MD5.A6F5EF0D3196A390F61F1FD2A99D8C1D] - 22/04/2013 - 17:00:17 ---A- - C:\Windows\Prefetch\DRVINS64.EXE-DC55E9DA.pf O45 - LFCP:[MD5.B31B864BEA2B6E50B280A9A5BBC13DEF] - 24/04/2013 - 10:56:36 ---A- - C:\Windows\Prefetch\TERA.EXE-611D4AFC.pf O45 - LFCP:[MD5.3799E45EA50472E9FF69A9355B5B7B73] - 24/04/2013 - 10:56:39 ---A- - C:\Windows\Prefetch\TL.EXE-E6F8031B.pf O45 - LFCP:[MD5.C8EFD60243C361D8FB10A7CC6FBA8982] - 24/04/2013 - 20:57:45 ---A- - C:\Windows\Prefetch\dynreservedpri.db O45 - LFCP:[MD5.F4C0F6A032AE7A275E6FECBD56FE878D] - 24/04/2013 - 21:20:00 ---A- - C:\Windows\Prefetch\RAGNAROK.EXE-596832D1.pf O45 - LFCP:[MD5.9C5C97917B27C62F2D909AD605D28975] - 24/04/2013 - 21:20:10 ---A- - C:\Windows\Prefetch\RAGEXE.EXE-E5E7D454.pf O45 - LFCP:[MD5.B1D0AABE61CBC34A0C9192B7140B8EE4] - 25/04/2013 - 08:48:44 ---A- - C:\Windows\Prefetch\TORRENT_3-3-BUILD-29544_FR_18-ADACB07D.pf O45 - LFCP:[MD5.97B21199318CE32B2D98DDD6907B0F47] - 25/04/2013 - 08:49:25 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-531E9FB8.pf O45 - LFCP:[MD5.53D0FFE4576FCCEAC1F5C42F55BC2D03] - 25/04/2013 - 09:30:27 ---A- - C:\Windows\Prefetch\RAGNAROK2_VER1.3.EXE-24CC98C2.pf O45 - LFCP:[MD5.8F17F5EA36C3E6946F398E018575910D] - 25/04/2013 - 09:34:01 ---A- - C:\Windows\Prefetch\130131_RO2FULLMANUALPATCH.EXE-FB7A2145.pf O45 - LFCP:[MD5.82D63E78B151A891892F7D447094A776] - 26/04/2013 - 09:48:42 ---A- - C:\Windows\Prefetch\ANOTHER PATCHER.EXE-4D2FA68A.pf O45 - LFCP:[MD5.455BB0ECE343909F37EDDE4C53BAB6E1] - 26/04/2013 - 09:48:47 ---A- - C:\Windows\Prefetch\ANOTHER.EXE-972DD39F.pf O45 - LFCP:[MD5.EAA31F6EB3067F97EB50A320995BA201] - 27/04/2013 - 09:37:31 ---A- - C:\Windows\Prefetch\INFOPATH.EXE-39C39A91.pf O45 - LFCP:[MD5.4F9D5F5C7A410FCD1375C30A2EB0EA31] - 27/04/2013 - 11:32:17 ---A- - C:\Windows\Prefetch\SPSETUP120.EXE-FD295374.pf O45 - LFCP:[MD5.8DA12B76CD3C557C5C9753728CD65E10] - 27/04/2013 - 11:33:41 ---A- - C:\Windows\Prefetch\SPECCY64.EXE-0FB7F806.pf O45 - LFCP:[MD5.285ED4FCC04072A1D66E9E4405BB4632] - 27/04/2013 - 21:30:02 ---A- - C:\Windows\Prefetch\LIVECOMM.EXE-EF36732E.pf O45 - LFCP:[MD5.53A6CAE1D751FDBCF9956F2B574354C5] - 27/04/2013 - 23:51:30 ---A- - C:\Windows\Prefetch\LAUNCHER2.EXE-7ED19F06.pf O45 - LFCP:[MD5.55B8BC42317D1586B6FF3F4274DB00E3] - 28/04/2013 - 10:06:57 ---A- - C:\Windows\Prefetch\XINSIDE.EXE-E3BB7FE0.pf O45 - LFCP:[MD5.71FBEEE2C7646BFDCDBAC14C5978F1C6] - 28/04/2013 - 10:34:58 ---A- - C:\Windows\Prefetch\AWESOMIUM_PROCESS.EXE-9DBFDE6B.pf O45 - LFCP:[MD5.FF9214030201892ED7B1C9D066634245] - 28/04/2013 - 11:02:28 ---A- - C:\Windows\Prefetch\GW2.EXE-6DD0FD54.pf O45 - LFCP:[MD5.66C28A43A921F92A1AF5CEB5ACCB3D33] - 28/04/2013 - 11:18:43 ---A- - C:\Windows\Prefetch\PTUNER.EXE-274DF016.pf ~ Prefetcher: 234 Legitimates Filtered in 00mn 01s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 17 Legitimates Filtered in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 ~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.4F18D4C7EA14F11A7211F60D553C03DB] - 26/07/2012 - 06:00:49 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [106736] ~ Drivers: Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 25/04/2013 - 08:48:19 ---A- C:\Users\Aurélien\Downloads\torrent_3-3-build-29544_fr_18245.exe [1040720] O61 - LFC: 25/04/2013 - 08:48:32 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\utorrent.lng [1135738] O61 - LFC: 25/04/2013 - 08:48:33 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\11BE992F09EDBD864815F0130D4082E29BCDFA61 [141956] O61 - LFC: 25/04/2013 - 08:48:35 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\toolbar_offer.benc [3685] O61 - LFC: 25/04/2013 - 08:48:38 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\toolbar.benc [3741] O61 - LFC: 25/04/2013 - 08:49:14 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\uTorrent.exe [1040720] O61 - LFC: 25/04/2013 - 08:49:15 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\32F529521A3DEC709F97F761F192AABF29BDC408 [1342] O61 - LFC: 25/04/2013 - 08:49:16 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\10E6FBE4D921B475FA5FEC6E9A535A540D6FEED1 [318] O61 - LFC: 25/04/2013 - 08:49:16 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\1D67A7A87EE6B20D306B59AC55A6F73A9A1D3540 [37532] O61 - LFC: 25/04/2013 - 08:49:16 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\7C8945DA1B01DEA87CEA3DEAE371D7FEEFE460C0 [3211] O61 - LFC: 25/04/2013 - 08:49:16 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\88A5AB51DDCC8A84F1DF369D16D6C853565EC80F [13277] O61 - LFC: 25/04/2013 - 09:10:54 ---A- C:\Users\Aurélien\Downloads\130201_RO2PatchUpdate.exe [5179545] O61 - LFC: 25/04/2013 - 09:11:19 ---A- C:\Users\Aurélien\Downloads\130131_RO2PatchUpdate.exe [24128063] O61 - LFC: 25/04/2013 - 09:19:25 ---A- C:\Users\Aurélien\Downloads\130131_RO2FullManualPatch.exe [86731280] O61 - LFC: 25/04/2013 - 09:28:46 ---A- C:\Users\Aurélien\Downloads\Ragnarok2_ver1.3.exe [4151664563] O61 - LFC: 25/04/2013 - 10:11:11 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 02 [H264] [HQ] [0069C83C].mkv [249120435] O61 - LFC: 25/04/2013 - 10:11:15 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 03 [H264] [HQ] [C4D7D92C].mkv [249174029] O61 - LFC: 25/04/2013 - 20:43:06 ---A- C:\Users\Aurélien\Downloads\S03E04.VOSTFR.BBld.rar [365370534] O61 - LFC: 25/04/2013 - 20:43:06 ---A- C:\Users\Aurélien\Downloads\S03E05.VOSTFR.BBld.rar [366546000] O61 - LFC: 25/04/2013 - 20:50:56 ---A- C:\Users\Aurélien\Downloads\S03E06.VOSTFR.BBld.rar [365140904] O61 - LFC: 25/04/2013 - 21:13:22 ---A- C:\Users\Aurélien\Downloads\BB.307.rar [369544175] O61 - LFC: 25/04/2013 - 22:25:14 ---A- C:\Users\Aurélien\Downloads\[Swagger] Naruto Shippuuden - 310 HD Vostfr [SekaiAnime.com].mkv [330868981] O61 - LFC: 25/04/2013 - 23:00:00 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\settings.dat.old [13788] O61 - LFC: 25/04/2013 - 23:09:16 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\resume.dat.old [99] O61 - LFC: 25/04/2013 - 23:14:02 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dht_feed.dat.old [2] O61 - LFC: 25/04/2013 - 23:15:24 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dlimagecache\D3531D05014663D070B6423639E90485513793A3 [19480] O61 - LFC: 25/04/2013 - 23:15:25 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dht.dat [4066] O61 - LFC: 25/04/2013 - 23:15:25 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\dht_feed.dat [2] O61 - LFC: 25/04/2013 - 23:15:25 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\rss.dat [99] O61 - LFC: 25/04/2013 - 23:15:25 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\settings.dat [14867] O61 - LFC: 25/04/2013 - 23:15:32 ---A- C:\Users\Aurélien\AppData\Roaming\uTorrent\resume.dat [99] O61 - LFC: 26/04/2013 - 00:54:02 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 05 [H264] [HQ] [9B1DE28F].mkv [249174593] O61 - LFC: 26/04/2013 - 00:54:03 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 04 [H264] [HQ] [59222780].mkv [249155936] O61 - LFC: 26/04/2013 - 01:14:35 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 07 [H264] [HQ] [9389B037].mkv [249296251] O61 - LFC: 26/04/2013 - 01:14:51 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 06 [H264] [HQ] [F4F8B5C5].mkv [249327816] O61 - LFC: 26/04/2013 - 01:21:32 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 09 (h264) [HQ] [1A621DC1].mkv [235831822] O61 - LFC: 26/04/2013 - 01:21:52 ---A- C:\Users\Aurélien\Downloads\[Nohara] ZegaPain - 08 (h264) [HQ].mkv [249361380] O61 - LFC: 26/04/2013 - 14:27:20 ---A- C:\Users\Aurélien\Downloads\justificatif.pdf [7683] O61 - LFC: 26/04/2013 - 14:53:25 ---A- C:\Users\Aurélien\AppData\Roaming\Microsoft\Templates\Normal.dotm [20651] O61 - LFC: 27/04/2013 - 00:04:34 ---A- C:\Users\Aurélien\Downloads\BB.308.rar [369477797] O61 - LFC: 27/04/2013 - 09:31:29 --HA- C:\Users\Aurélien\AppData\Roaming\Microsoft\Templates\~$rmalEmail.dotm [162] O61 - LFC: 27/04/2013 - 09:32:18 ---A- C:\Users\Aurélien\Downloads\Kaerizaki_Devil_Survivor_2_The_Animation_02.mp4 [294100088] O61 - LFC: 27/04/2013 - 09:32:36 ---A- C:\Users\Aurélien\Downloads\Tekmatek_Devil_Survivor_2_The_animation_03.mp4 [262161499] O61 - LFC: 27/04/2013 - 09:38:18 ---A- C:\Users\Aurélien\Downloads\Tekmatek_Devil_Survivor_2_The_Animation_01.mp4 [262134675] O61 - LFC: 27/04/2013 - 09:46:42 ---A- C:\Users\Aurélien\Downloads\Tekmatek_Devil_Survivor_2_The_animation_04.mp4 [262069562] O61 - LFC: 27/04/2013 - 10:32:56 ---A- C:\Users\Aurélien\AppData\Local\resmon.resmoncfg [17] O61 - LFC: 27/04/2013 - 11:09:59 ---A- C:\Users\Aurélien\Downloads\adwcleaner.exe [619461] O61 - LFC: 27/04/2013 - 11:26:26 ---A- C:\Users\Aurélien\Downloads\mbam-setup-1.75.0.1300.exe [10285040] O61 - LFC: 27/04/2013 - 11:30:39 ---A- C:\Users\Aurélien\Downloads\whocrashedSetup.exe [2043928] O61 - LFC: 27/04/2013 - 11:30:56 ---A- C:\Users\Aurélien\Downloads\spsetup120.exe [4812216] O61 - LFC: 27/04/2013 - 11:37:19 ---A- C:\Users\Aurélien\Downloads\ZHPFix.exe [3435403] O61 - LFC: 27/04/2013 - 11:41:51 ---A- C:\Users\Aurélien\Documents\ZHPDiag.Txt [37406] O61 - LFC: 27/04/2013 - 19:42:57 ---A- C:\Users\Aurélien\Downloads\NCIS.Los.Angeles.S04E02.FRENCH.LD.HDTV.XviD-MiND.avi [367738554] O61 - LFC: 27/04/2013 - 19:43:01 ---A- C:\Users\Aurélien\Downloads\NCIS.Los.Angeles.S04E03.FRENCH.LD.HDTV.XViD-EPZ.avi [370274496] O61 - LFC: 27/04/2013 - 21:54:58 ---A- C:\Users\Aurélien\Downloads\le-clan-de-aurore-actual-20130427.bbtheme [2598] O61 - LFC: 27/04/2013 - 23:07:57 ---A- C:\Users\Aurélien\Downloads\NNF_To_Aru_Kagaku_no_Railgun_S_02.mp4 [244527634] O61 - LFC: 27/04/2013 - 23:08:06 ---A- C:\Users\Aurélien\Downloads\NNF_To_Aru_Kagaku_no_Railgun_S_03.mp4 [244558213] O61 - LFC: 27/04/2013 - 23:10:41 ---A- C:\Users\Aurélien\Downloads\RnF_To_Aru_Kagaku_no_Railgun_S_-_01.mp4 [254031826] O61 - LFC: 28/04/2013 - 10:58:12 ---A- C:\Users\Aurélien\Downloads\whocrashedSetup(1).exe [2043928] O61 - LFC: 28/04/2013 - 11:07:24 ---A- C:\Users\Aurélien\Downloads\13-4_vista_win7_win8_64_dd_ccc_whql.exe [142140816] O61 - LFC: 28/04/2013 - 11:09:13 ---A- C:\Users\Aurélien\Downloads\cpu-z_1.64-setup-en.exe [1697360] O61 - LFC: 28/04/2013 - 11:09:32 ---A- C:\Users\Aurélien\Downloads\hddh.exe [4211152] O61 - LFC: 28/04/2013 - 11:13:14 ---A- C:\Users\Aurélien\Downloads\hwmonitor_1.22-setup.exe [1409000] O61 - LFC: 28/04/2013 - 11:13:50 ---A- C:\Users\Aurélien\Downloads\bitpro.exe [9089000] O61 - LFC: 28/04/2013 - 11:14:17 ---A- C:\Users\Aurélien\Downloads\thermal_utility_power.zip [51946454] O61 - LFC: 28/04/2013 - 11:36:15 ---A- C:\Users\Aurélien\Documents\EVEREST Reports\Report.txt [48885] ~ 65 Fichiers temporaires (Temporary files) ~ Files: 940 Legitimates Filtered in 00mn 14s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1 ~ ADS: Scanned in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - [url=http://www.bing.com]Bing[/url] ~ Keys: Scanned in 00mn 00s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "{DF8555FB-E22C-456D-8909-C9D769559A83}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Aurélien\AppData\Roaming\uTorrent\uTorrent.exe O87 - FAEL: "{3B3E253A-03F9-4C90-84D2-B0890E65A5A6}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Aurélien\AppData\Roaming\uTorrent\uTorrent.exe ~ Firewall: 211 Legitimates Filtered in 00mn 00s ---\\ Scan Additionnel (O88) Database Version : v2.11719 - (26/04/2013) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 ~ Additionnel Scan: 148134 Items scanned in 00mn 10s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 21/04/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 19/12/2012 240640 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe SR - | Auto 19/12/2012 361984 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe SR - | Auto 30/08/2012 202328 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe SR - | Auto 21/12/2009 743992 | (CSObjectsSrv) . (.Infowatch.) - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe SR - | Demand 26752 | (EverestDriver) . (...) - C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 SR - | Auto 22/04/2013 1141072 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe SS - | Demand 10/04/2013 115608 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Auto 07/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe SS - | Demand 20/09/2012 29696 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 00s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, [url=http://www.gmer.net]GMER - Rootkit Detector and Remover[/url] ~ MBR: 1 Legitimates Filtered in 00mn 02s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, [url=http://ad13.geekstog]http://ad13.geekstog[/url] Run by Aurélien at 28/04/2013 12:42:46 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ~ 2890 Legitimates filtered by white list End of the scan (469 lines in 02mn 08s)(0)