cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.11.19.165 - Nicolas Coolman (19/11/2014)
~ Lancé par fabdu2b (19/11/2014 20:52:45)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9860.0
MFIE: Mozilla Firefox 33.1.1 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Technical Preview, 64-bit (Build 9860)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, RETAIL channel
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 15 Plugin

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4006 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 173 GB (86%) free of 200 GB

---\\ Mode de connexion au système
~ Computer Name: WIN-9C1GJKV6KE1
~ User Name: fabdu2b
~ All Users Names: HomeGroupUser$, Guest, fabdu2b, DefaultAccount_ploc, Administrator,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\fabdu2b\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\fabdu2b\AppData\Roaming\
~ %Desktop% : C:\Users\fabdu2b\Desktop\
~ %Favorites% : C:\Users\fabdu2b\Favorites\
~ %LocalAppData% : C:\Users\fabdu2b\AppData\Local\
~ %StartMenu% : C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 173 Go of 200 Go)
D: Hard drive, Flash drive, Thumb drive (Free 27 Go of 94 Go)
F: Hard drive, Flash drive, Thumb drive (Free 2 Go of 5 Go)
G: Hard drive, Flash drive, Thumb drive (Free 8 Go of 200 Go)
H: Hard drive, Flash drive, Thumb drive (Free 90 Go of 200 Go)
I: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.AC9236F65BD37943C1BACD597304B2A6] - (.Microsoft Corporation - Windows Explorer.) (.09/10/2014 - 21:07:48.) -- C:\Windows\Explorer.exe [3318672]
[MD5.3B38409C0360D6E85A567FA07C9E53D7] - (.Microsoft Corporation - Windows Start-Up Application.) (.09/10/2014 - 21:07:26.) -- C:\Windows\System32\Wininit.exe [222336]
[MD5.C5C97068DC074E99FEC509887BFDBCDD] - (.Microsoft Corporation - Internet Extensions for Win32.) (.09/10/2014 - 21:07:33.) -- C:\Windows\System32\wininet.dll [2366464]
[MD5.AB503A5931C67C0DFE8A9CDBF2609EF6] - (.Microsoft Corporation - Windows Logon Application.) (.09/10/2014 - 21:07:25.) -- C:\Windows\System32\Winlogon.exe [544768]
[MD5.2A60718E66EE03BE8FF89E3301EAD7FC] - (.Microsoft Corporation - Software Licensing Library.) (.09/10/2014 - 21:07:29.) -- C:\Windows\System32\sppcomapi.dll [431616]
[MD5.07832560DF55E15587F46630B8D1712D] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.09/10/2014 - 21:07:37.) -- C:\Windows\system32\Drivers\AFD.sys [558080]
[MD5.B018AD4D86CBDDC1085A59CE64DC5135] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.09/10/2014 - 21:06:56.) -- C:\Windows\system32\Drivers\atapi.sys [28704]
[MD5.69B2D598EB2683345E7ECB8E66A94A06] - (.Microsoft Corporation - CD-ROM File System Driver.) (.09/10/2014 - 21:07:43.) -- C:\Windows\system32\Drivers\Cdfs.sys [91648]
[MD5.F3E53C93C491A4A62B3A95E85C37E74D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.09/10/2014 - 21:06:56.) -- C:\Windows\system32\Drivers\Cdrom.sys [179712]
[MD5.E0BA8BFC6095AC3ACFF7152B471DECA9] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.09/10/2014 - 21:07:18.) -- C:\Windows\system32\Drivers\DfsC.sys [140800]
[MD5.976249D89745B0A279A80B5971D8B340] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.09/10/2014 - 21:06:51.) -- C:\Windows\system32\Drivers\HDAudBus.sys [80896]
[MD5.171A4F3B82526F54376F2892774C70A0] - (.Microsoft Corporation - i8042 Port Driver.) (.09/10/2014 - 21:06:55.) -- C:\Windows\system32\Drivers\i8042prt.sys [104448]
[MD5.A8962C9275BD15B67B07ED802AECF282] - (.Microsoft Corporation - IP Network Address Translator.) (.09/10/2014 - 21:07:13.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.5964DB9BF91D02CF982E142F4FED22B0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.09/10/2014 - 21:07:20.) -- C:\Windows\system32\Drivers\MRxSmb.sys [425472]
[MD5.B611F02A193E9BA22F904BFD34705251] - (.Microsoft Corporation - MBT Transport driver.) (.09/10/2014 - 21:07:40.) -- C:\Windows\system32\Drivers\netBT.sys [281088]
[MD5.F8F09DEB707C0ACF066DF3F57E4FEF4E] - (.Microsoft Corporation - NT File System Driver.) (.09/10/2014 - 21:07:35.) -- C:\Windows\system32\Drivers\ntfs.sys [2056224]
[MD5.A047E14E48F01141736CE86BD7E0F03E] - (.Microsoft Corporation - Parallel Port Driver.) (.09/10/2014 - 21:06:56.) -- C:\Windows\system32\Drivers\Parport.sys [96768]
[MD5.6450DB0D38A61CE8E3449B1E620BC49C] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.09/10/2014 - 21:07:09.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [115200]
[MD5.F908043DA5D693EC0C983B9F92FF7A8A] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.09/10/2014 - 23:05:37.) -- C:\Windows\system32\Drivers\rdpdr.sys [201728]
[MD5.664115F1BD9B713D64E0B904A9FFE59B] - (.Microsoft Corporation - TDI Translation Driver.) (.09/10/2014 - 21:07:37.) -- C:\Windows\system32\Drivers\tdx.sys [119832]
[MD5.275528A75ED66D2A5217EF8E57849D57] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.09/10/2014 - 21:06:56.) -- C:\Windows\system32\Drivers\volsnap.sys [392216]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 1/3
~ Mon Bureau (My Desktop) : 1/4
~ Menu demarrer (Programs) : 1/31
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.66B1C09A03323BC0142B62769ACB195E] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056] [PID.3960]
[MD5.07AF92553C94A548C38BE54B6A668318] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064] [PID.4340]
[MD5.81B65254FD13C03DED37AB76339B7DAA] - (.Gold Barre - Gold Barre.) -- C:\Program Files\gold barre\Gold Barre.exe [60928] [PID.5856] =>Toolbar.GoldBarre
[MD5.7115853FF96289DF7F65FB6B68E095ED] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.2500]
[MD5.8180FF8E683B8A997746143F6286B668] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8129536] [PID.3208]
[MD5.E3F7EC811923F3F1A77B185F22638E5E] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1420]
[MD5.D25195B0A2075862E988B85161DF07FD] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [104416] [PID.2044]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 - MFEP: Extension [fabdu2b - 10ia9iic.default] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} =>.Adblock Plus Extension Mozilla Firefox
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9860.0 (fbl_release.141008-2044)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 15 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ BHO: 2 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [fabdu2b]: Gold Barre.lnk . (.Gold Barre - Gold Barre.) -- C:\Program Files\gold barre\Gold Barre.exe =>Toolbar.GoldBarre
~ Global Startup: 1 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\WINDOWS\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B92872E4-3960-4759-A3B4-B27338A53702}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{B92872E4-3960-4759-A3B4-B27338A53702}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 340.) - C:\WINDOWS\system32\nvinitx.dll
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) - C:\WINDOWS\system32\nvvsvc.exe
~ Services: 3 Scanned in 00mn 06s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.4BB7714617D50D77FCDA6B0182FD8A9A] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [857888]
~ Scheduled Task: 3 Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension.) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: C:\Windows\System32\todo.dll (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - QoS Packet Scheduler.) - C:\Windows\System32\drivers\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys
~ Drivers: 42 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 675b8d1 - (...) [HKLM][64Bits] -- {d1e17d14-cabc-4f6f-9f46-c7ecf813645e}.sdb
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Gold Barre - (...) [HKLM][64Bits] -- Gold Barre =>Toolbar.GoldBarre
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Mozilla Firefox 33.1.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 33.1.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA Graphics Driver 340.52 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Update 10.4.0 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: WinRAR 5.11 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
~ Logic: 33 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Gold Barre] =>Toolbar.GoldBarre
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Mine]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 89 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/10/2014 - 21:12:31 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 18/11/2014 - 23:00:41 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 09/10/2014 - 23:05:47 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/10/2014 - 21:12:31 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 19/11/2014 - 16:40:07 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 19/11/2014 - 16:40:06 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 19/11/2014 - 01:49:54 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 09/10/2014 - 23:03:57 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/10/2014 - 23:03:57 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 19/11/2014 - 01:49:55 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 09/10/2014 - 21:12:33 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 09/10/2014 - 21:12:31 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 09/10/2014 - 23:03:57 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 09/10/2014 - 21:12:33 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 19/11/2014 - 01:49:55 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 19/11/2014 - 01:49:55 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 19/11/2014 - 20:46:20 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 09/10/2014 - 23:03:57 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 09/10/2014 - 21:12:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/10/2014 - 23:03:57 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/10/2014 - 21:33:33 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 19/11/2014 - 19:20:35 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 13/09/2014 - 08:26:30 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 09/10/2014 - 21:33:33 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 09/10/2014 - 21:33:33 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 09/10/2014 - 21:34:07 - [] ----D C:\ProgramData\Feedback
O43 - CFD: 19/11/2014 - 19:24:51 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 19/11/2014 - 16:40:06 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 19/11/2014 - 01:43:58 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 19/11/2014 - 01:43:16 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 09/10/2014 - 23:05:47 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 09/10/2014 - 21:33:33 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 09/10/2014 - 21:33:33 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 09/10/2014 - 23:05:48 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/10/2014 - 23:05:48 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 19/11/2014 - 19:24:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
O43 - CFD: 19/11/2014 - 16:48:15 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gold Barre =>Toolbar.GoldBarre
O43 - CFD: 09/10/2014 - 21:12:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 09/10/2014 - 23:05:47 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 19/11/2014 - 19:45:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 19/11/2014 - 20:46:20 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 18/11/2014 - 22:57:54 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Adobe
O43 - CFD: 19/11/2014 - 19:25:29 - [] ----D C:\Users\fabdu2b\AppData\Roaming\AVAST Software
O43 - CFD: 19/11/2014 - 02:03:36 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Identities
O43 - CFD: 19/11/2014 - 18:58:13 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Macromedia
O43 - CFD: 19/11/2014 - 19:24:27 - [] -S--D C:\Users\fabdu2b\AppData\Roaming\Microsoft
O43 - CFD: 19/11/2014 - 16:40:17 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Mozilla
O43 - CFD: 19/11/2014 - 19:45:25 - [] ----D C:\Users\fabdu2b\AppData\Roaming\WinRAR
O43 - CFD: 19/11/2014 - 20:52:57 - [] ----D C:\Users\fabdu2b\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 19/11/2014 - 17:22:09 - [0] ----D C:\Users\fabdu2b\AppData\Local\Adobe
O43 - CFD: 19/11/2014 - 01:47:46 - [] -SH-D C:\Users\fabdu2b\AppData\Local\Application Data
O43 - CFD: 19/11/2014 - 16:35:50 - [] -SH-D C:\Users\fabdu2b\AppData\Local\EmieSiteList
O43 - CFD: 19/11/2014 - 16:35:50 - [] -SH-D C:\Users\fabdu2b\AppData\Local\EmieUserList
O43 - CFD: 19/11/2014 - 01:47:46 - [] -SH-D C:\Users\fabdu2b\AppData\Local\History
O43 - CFD: 19/11/2014 - 18:58:13 - [] ----D C:\Users\fabdu2b\AppData\Local\Macromedia
O43 - CFD: 19/11/2014 - 20:39:06 - [] ----D C:\Users\fabdu2b\AppData\Local\Microsoft
O43 - CFD: 19/11/2014 - 16:40:17 - [] ----D C:\Users\fabdu2b\AppData\Local\Mozilla
O43 - CFD: 19/11/2014 - 02:04:14 - [] ----D C:\Users\fabdu2b\AppData\Local\NVIDIA
O43 - CFD: 19/11/2014 - 02:06:43 - [] ----D C:\Users\fabdu2b\AppData\Local\Packages
O43 - CFD: 18/11/2014 - 22:59:04 - [0] ----D C:\Users\fabdu2b\AppData\Local\PackageStaging
O43 - CFD: 19/11/2014 - 20:50:37 - [] ----D C:\Users\fabdu2b\AppData\Local\Temp
O43 - CFD: 19/11/2014 - 01:47:46 - [] -SH-D C:\Users\fabdu2b\AppData\Local\Temporary Internet Files
O43 - CFD: 18/11/2014 - 22:57:50 - [0] ----D C:\Users\fabdu2b\AppData\Local\VirtualStore
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 19/11/2014 - 02:04:00 - [] R---D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 09/10/2014 - 21:12:33 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 19/11/2014 - 16:48:15 - [] R---D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 09/10/2014 - 21:12:33 - [] R---D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 19/11/2014 - 19:45:08 - [] ----D C:\Users\fabdu2b\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 73 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/11/2014 - 22:37:39 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf [0]
O44 - LFC:[MD5.12BCB2A86CB2570F3603D68AE695E970] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\GfxUI.exe.config [268]
O44 - LFC:[MD5.E67DA43B4CF8E15291E4F0D5C42EA1A0] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.ar-SA.resources [166170]
O44 - LFC:[MD5.51470B9F0EFCBE5A80A8B501197CA0E2] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.cs-CZ.resources [142289]
O44 - LFC:[MD5.A2BCCE562367DCDA44797A6431155E9D] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.da-DK.resources [137141]
O44 - LFC:[MD5.2FC2E0417502F50636DE03818AC83E37] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.de-DE.resources [147393]
O44 - LFC:[MD5.78C2B4C49F955534DDDFDCA2C46BE843] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.el-GR.resources [210106]
O44 - LFC:[MD5.EBD3437D5EDB8404E1E86F2552F4E458] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.en-US.resources [132623]
O44 - LFC:[MD5.1D724422FD031FC348380DF30565F378] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.es-ES.resources [147288]
O44 - LFC:[MD5.167C2A4CF15A1A6A6192798B0BBA64B5] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.fi-FI.resources [142008]
O44 - LFC:[MD5.F3EB742B8D75E8BAB4DB0271BEFBFA65] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.fr-FR.resources [145491]
O44 - LFC:[MD5.1924F5EE8CCA6761850DA2A1FB5E9233] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.he-IL.resources [159008]
O44 - LFC:[MD5.1AD276140AC09C73466542E197DFFBDC] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.hr-HR.resources [141049]
O44 - LFC:[MD5.2FFAE506730EF37784F3667CA4EA121E] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.hu-HU.resources [143932]
O44 - LFC:[MD5.2112A985F703196DB48042E2C3478849] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.it-IT.resources [149682]
O44 - LFC:[MD5.3D16226F3B3C353C8DED165C93881CD7] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.ja-JP.resources [163421]
O44 - LFC:[MD5.F848E84794792910171CB966CACD5869] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.ko-KR.resources [148042]
O44 - LFC:[MD5.D4F9A73A2D7A53B33B79B25D2C7F54A8] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.nb-NO.resources [137784]
O44 - LFC:[MD5.2CB895F3DD7239DF6785796E56FFF6EE] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.nl-NL.resources [144020]
O44 - LFC:[MD5.C22FC0D4D4DA401026C55BCF142E9EAA] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.pl-PL.resources [142717]
O44 - LFC:[MD5.61884D76B03DE138C45CE6BC826B261A] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-BR.resources [144260]
O44 - LFC:[MD5.0345103583BA5A28A74297C583D6B72B] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-PT.resources [142877]
O44 - LFC:[MD5.740CFD4AEDA63ED5A902C4012F634811] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.ro-RO.resources [146004]
O44 - LFC:[MD5.3B98DE17467E57264FB67BAAE9FC99D1] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.ru-RU.resources [194245]
O44 - LFC:[MD5.9AD3600A8802547DCA1395BF01F17D0C] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.sk-SK.resources [141838]
O44 - LFC:[MD5.ABA254E3CD5D35E6BDC98E21B754E46B] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.sl-SI.resources [137889]
O44 - LFC:[MD5.077B93A3728B0ED69F752D467EB5C432] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.sv-SE.resources [142882]
O44 - LFC:[MD5.96AAA779DA7D78893479BD24969E7644] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.th-TH.resources [223664]
O44 - LFC:[MD5.602AD24EE7F5C071C5F59EC6E510F10D] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.tr-TR.resources [144645]
O44 - LFC:[MD5.93A5633BA17BBE1726871BD5EA2B15CD] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-CN.resources [124650]
O44 - LFC:[MD5.E5FC52A12691FB17D790C08E21150AEC] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-TW.resources [126300]
O44 - LFC:[MD5.105CFE016CCB20175BEACEC146F175AB] - 18/11/2014 - 22:59:41 ---A- . (...) -- C:\Windows\System32\IccLibDll_x64.dll [94208]
O44 - LFC:[MD5.A307339D5E1E83C97EDE96701B1EBD38] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - 64 bit driver installer.) -- C:\Windows\System32\difx64.exe [185816]
O44 - LFC:[MD5.DE28E56A107E585399AFF1FF5CBABFCD] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - GfxUI.) -- C:\Windows\System32\GfxUI.exe [5904856]
O44 - LFC:[MD5.4F0663B6BB5B3D689620EBD3BA542244] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - OpenGL(R) Driver for Intel(R) Graphics Acce.) -- C:\Windows\System32\ig4icd64.dll [13031424]
O44 - LFC:[MD5.1E348C50D4D0874BC3F4885172CF7D38] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - Pas de description.) -- C:\Windows\System32\gfxSrvc.dll [175104]
O44 - LFC:[MD5.B5F20ECEE958E5DC881D66E17D39FFD1] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - hccutils Module.) -- C:\Windows\System32\hccutils.dll [110592]
O44 - LFC:[MD5.28FC280487F0BAAE5E8119257C4EEF8C] - 18/11/2014 - 22:59:41 ---A- . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [399832]
O44 - LFC:[MD5.C916D55684C349B568DB5FD4D9B5A004] - 18/11/2014 - 22:59:42 ---A- . (...) -- C:\Windows\System32\igcodeckrng600.bin [963452]
O44 - LFC:[MD5.62C72494EEB7564F7CE3A91768CA98FE] - 18/11/2014 - 22:59:42 ---A- . (.Intel Corporation - LDDM User Mode Driver for Intel(R) Graphics.) -- C:\Windows\System32\igd10umd64.dll [12859392]
O44 - LFC:[MD5.CFFE34336E3B96B3FDAFFDF85D2FE43B] - 18/11/2014 - 22:59:43 ---A- . (...) -- C:\Windows\System32\igdde64.dll [98304]
O44 - LFC:[MD5.8C44E6B688790E2AD3846C97661C54F1] - 18/11/2014 - 22:59:44 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [5363200]
O44 - LFC:[MD5.A5C186443C30B8959C168084DD39B78F] - 18/11/2014 - 22:59:45 ---A- . (...) -- C:\Windows\System32\IGFXDEVLib.dll [9728]
O44 - LFC:[MD5.7540A868B6AEE2C40A982B61118CB66E] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - CM JIT Dynamic Link Library.) -- C:\Windows\System32\igfxcmjit64.dll [3511296]
O44 - LFC:[MD5.8020700130DF0ED5C6405AD1750D8A9F] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - CM Runtime Dynamic Link Library (DX11).) -- C:\Windows\System32\igfx11cmrt64.dll [575488]
O44 - LFC:[MD5.74FA54855F0B1CA86907A6F3D947EB50] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - CM Runtime Dynamic Link Library.) -- C:\Windows\System32\igfxcmrt64.dll [1040384]
O44 - LFC:[MD5.4FC6C91B6A45D52C8B5B624943189D1E] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - LDDM User Mode Driver for Intel(R) Graphics.) -- C:\Windows\System32\igdumd64.dll [12617216]
O44 - LFC:[MD5.782F019C396F497600BEDBE06C2E679C] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxcpl Module.) -- C:\Windows\System32\igfxcpl.cpl [126976]
O44 - LFC:[MD5.5A1D948D02C63DD2D434BEFC35831EE8] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll [442880]
O44 - LFC:[MD5.92433C87694C05B59C8DB246EFD1707D] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxdo Module.) -- C:\Windows\System32\igfxdo.dll [142336]
O44 - LFC:[MD5.862DEE2B23C80FD00DB2EFD9E9AEC31A] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxext Module.) -- C:\Windows\System32\igfxexps.dll [28672]
O44 - LFC:[MD5.F9126D6A60D44E55F5DB70C9642ED848] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxext Module.) -- C:\Windows\System32\igfxext.exe [254936]
O44 - LFC:[MD5.2C10CB00DF069FCE308582FBAE1DF2CA] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxpph Module.) -- C:\Windows\System32\igfxpph.dll [384512]
O44 - LFC:[MD5.5720742FE7AF9C129E505F3F03EFCD7B] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrara.lrc [435712]
O44 - LFC:[MD5.3117358C7700C6AC13D23944A1DAFEA0] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrchs.lrc [428544]
O44 - LFC:[MD5.F29BEA821C753E4F00177690F70CDC13] - 18/11/2014 - 22:59:45 ---A- . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [442328]
O44 - LFC:[MD5.AE8E354DCD852D987F076BBBFEDD8583] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxTMM Module.) -- C:\Windows\System32\igfxTMM.dll [410624]
O44 - LFC:[MD5.28062B17191C9450BF6C6C3EF8C7EB27] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [171992]
O44 - LFC:[MD5.1EE02610306427E475603BC5489E136E] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrcht.lrc [429056]
O44 - LFC:[MD5.031679EF62C2367A71DEA01768886726] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrcsy.lrc [438272]
O44 - LFC:[MD5.3329BC590DCDA1E67AA7A145DB55E7B6] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrdan.lrc [437248]
O44 - LFC:[MD5.6A136072FF4F81AFFA44A6A43DEAB544] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrdeu.lrc [438784]
O44 - LFC:[MD5.3990CF70BFDB081CCCD61E99997C75B8] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrell.lrc [440320]
O44 - LFC:[MD5.9A9E6E8B38222BD81C29E061C40085A4] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrenu.lrc [286208]
O44 - LFC:[MD5.94B33C655F43F359FAE89E67E2E91D7C] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxresn.lrc [439808]
O44 - LFC:[MD5.4D013E1C5AC3312B192487B65450761F] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrfin.lrc [438272]
O44 - LFC:[MD5.0CF39A315690927A17CA4B46A1CF7308] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrfra.lrc [439808]
O44 - LFC:[MD5.EF266CB3940090C3C57913FC5104184A] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrheb.lrc [435712]
O44 - LFC:[MD5.D15D5EA3821E75901B09577566DF1E2F] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrhrv.lrc [438784]
O44 - LFC:[MD5.12863D687CE5A4AEC84C73FF269D6A5F] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrhun.lrc [438272]
O44 - LFC:[MD5.51BC75CABDB63BD38942EB3ECC9A111C] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrita.lrc [438784]
O44 - LFC:[MD5.61255E6F12DE1E1F353E1DFEAEE75D4B] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrjpn.lrc [432128]
O44 - LFC:[MD5.4236BAABB8E9E3348EC1FEF295918839] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrkor.lrc [431104]
O44 - LFC:[MD5.D34ED4EF1A474E52AFE1B52745879139] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrnld.lrc [438784]
O44 - LFC:[MD5.81EC05280FE7EBF1081C0198F2CA3EA1] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrnor.lrc [437760]
O44 - LFC:[MD5.5F02C80AAF8D8D7FB3F1F326D4A1F81A] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrplk.lrc [438784]
O44 - LFC:[MD5.97A8C71DC4A472F5AFE4295F1F34ABCB] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrptb.lrc [437760]
O44 - LFC:[MD5.B129C0D2B53CBFF5A3DAABFE35AD870E] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrptg.lrc [438784]
O44 - LFC:[MD5.178FA547AF610C6E23FB1019494B0F2C] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrrom.lrc [439296]
O44 - LFC:[MD5.A80B02C072029256B338F55F0475A0ED] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrrus.lrc [439296]
O44 - LFC:[MD5.6AD5469BF42E209BA597F403127D1A4D] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrsky.lrc [438784]
O44 - LFC:[MD5.7694E456F335558D627668DCE9257D90] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrslv.lrc [437760]
O44 - LFC:[MD5.8F61B0BFA9C297F1935053189E117D7F] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrsve.lrc [437760]
O44 - LFC:[MD5.90FCDE8FC73107832E90A58D7BE71AD4] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrtha.lrc [437248]
O44 - LFC:[MD5.E13A7DC4C69CA949127AAA657206EB83] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrtrk.lrc [437760]
O44 - LFC:[MD5.8204B6DC0023A0C70D9C8F2AAC0A3999] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxress Module.) -- C:\Windows\System32\igfxress.dll [9007616]
O44 - LFC:[MD5.69F0DB83D58D4FFBB7DFA99E2342A016] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.dll [64000]
O44 - LFC:[MD5.3A646BC4996C41E413CABC8E68A17DB3] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.exe [515544]
O44 - LFC:[MD5.5CFC42F2B47EB334DA7DCDB94DA59BD2] - 18/11/2014 - 22:59:46 ---A- . (.Intel Corporation - iglhcp32 Dynamic Link Library.) -- C:\Windows\System32\iglhcp64.dll [216064]
O44 - LFC:[MD5.40DFD4CFB98AB5E4666B0F607CB64921] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxa64.cpa [1981696]
O44 - LFC:[MD5.828C46F74BB7248FF401471D072BB751] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxa64.vp [1074]
O44 - LFC:[MD5.55632EAD6A6C6708C6671D4622454EDB] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxc64.vp [59230]
O44 - LFC:[MD5.555B90CAEC4AE1D3140338CF2D16A11B] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxc64_dev.vp [59104]
O44 - LFC:[MD5.6FBF733E8ACB2F13407DD9582217F720] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxg64.vp [59398]
O44 - LFC:[MD5.ECE7DBF87A6E24AC8A680064FFAE5A58] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxg64_dev.vp [58796]
O44 - LFC:[MD5.48434EAFE70409D261DAF5AD244F03CA] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxo64.vp [59425]
O44 - LFC:[MD5.9D068CF01FC9A74EF3ACAEC779962B0C] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxo64_dev.vp [58109]
O44 - LFC:[MD5.CD4CBE75B78622921E62C0AD2E9A377F] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\iglhxs64.vp [17058]
O44 - LFC:[MD5.7B085267B4B44F093565400B91C2CC6F] - 18/11/2014 - 22:59:47 ---A- . (...) -- C:\Windows\System32\igvpkrng600.bin [272928]
O44 - LFC:[MD5.DD4B6594C98E7175D996B29041801F7F] - 18/11/2014 - 22:59:47 ---A- . (.Intel Corporation - Intel(R) Graphics Media Accelerator Driver.) -- C:\Windows\System32\igfxCoIn_v3347.dll [116224]
O44 - LFC:[MD5.EEA651EC4E756A2C25AF1D3685C901A6] - 18/11/2014 - 22:59:47 ---A- . (.Intel Corporation - iglhsip32 Dynamic Link Library.) -- C:\Windows\System32\iglhsip64.dll [524800]
O44 - LFC:[MD5.A6518DCC42F7A6E999BB3BEA8FD87567] - 18/11/2014 - 23:08:21 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [56344]
O44 - LFC:[MD5.4D917F184A6AF888D68938D6AED4F492] - 18/11/2014 - 23:29:09 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 340.52.) -- C:\Windows\System32\nvapi64.dll [3196816]
O44 - LFC:[MD5.EF6A1FA396C854B4F6B9A22C0C988DCF] - 18/11/2014 - 23:29:11 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 340.52.) -- C:\Windows\System32\nvcompiler.dll [22994208]
O44 - LFC:[MD5.DDDE661AD6D0D2E16FF87CE267469C07] - 18/11/2014 - 23:29:15 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 340.52.) -- C:\Windows\System32\nvcuda.dll [13835208]
O44 - LFC:[MD5.F015F1DDBDC95B334355CADC2D1F4E46] - 18/11/2014 - 23:29:15 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 340.5.) -- C:\Windows\System32\nvcuvid.dll [4247000]
O44 - LFC:[MD5.61A6B8949D013C7494CF0F94A1215682] - 18/11/2014 - 23:29:16 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 340.52.) -- C:\Windows\System32\nvd3dumx.dll [17555104]
O44 - LFC:[MD5.3166E2388D12BD4050F757644D608F34] - 18/11/2014 - 23:29:18 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6434052.dll [1890080]
O44 - LFC:[MD5.6670FCA907690044166597B2A4AFAD3D] - 18/11/2014 - 23:29:19 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6434052.dll [1539928]
O44 - LFC:[MD5.A5FA73A696788810DBA88E4100BD9E66] - 18/11/2014 - 23:29:20 ---A- . (.NVIDIA Corporation - NVIDIA Front Buffer Capture Library, Versio.) -- C:\Windows\System32\NvFBC64.dll [903624]
O44 - LFC:[MD5.D3FD99DBAD44F786331A21C7DB4FC6A7] - 18/11/2014 - 23:29:29 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [26353]
O44 - LFC:[MD5.5D0CB01028819025524E463781CD5791] - 18/11/2014 - 23:29:29 ---A- . (.NVIDIA Corporation - NVIDIA In-band Frame Rendering Library, Ver.) -- C:\Windows\System32\NvIFR64.dll [944928]
O44 - LFC:[MD5.631583C16F6BC08A0830264A9EB1A8DB] - 18/11/2014 - 23:29:29 ---A- . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 340.) -- C:\Windows\System32\nvinitx.dll [166568]
O44 - LFC:[MD5.F604AE1332421138D469435379C941F0] - 18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA CUDA 6.5.12 OpenCL 1.1 Driver, Versi.) -- C:\Windows\System32\nvopencl.dll [13922752]
O44 - LFC:[MD5.8E8C648748CEE5DEE4EB67B72873C8CE] - 18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv64.dll [31512520]
O44 - LFC:[MD5.E9DA844414FC5E7FC8817CB20B459AAA] - 18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA OpenGL Shim Driver, Version 340.52.) -- C:\Windows\System32\nvoglshim64.dll [354016]
O44 - LFC:[MD5.2232AE1BB51A96A7381A2CA17DF12E24] - 18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12866008]
O44 - LFC:[MD5.30458B18AEA941B1FD3A6A076BE95A71] - 18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvpciflt.sys [32544]
O44 - LFC:[MD5.19D6C751D3389D14A0925E09D1BDBBB2] - 18/11/2014 - 23:29:33 ---A- . (.NVIDIA Corporation - NVIDIA D3D Shim Driver, Version 340.52.) -- C:\Windows\System32\nvumdshimx.dll [965312]
O44 - LFC:[MD5.D5A1146ACEA3A1BCB722FB99371E2FEB] - 18/11/2014 - 23:29:40 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 340.52.) -- C:\Windows\System32\nvwgf2umx.dll [18626304]
O44 - LFC:[MD5.A7B22A0542D02AB67A0A0D3107DD53F0] - 18/11/2014 - 23:30:43 ----- . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\System32\MpSigStub.exe [275080]
O44 - LFC:[MD5.B55FA6AD6C4A74AFC85433490E97C0DE] - 19/11/2014 - 01:43:49 ---A- . (...) -- C:\Windows\System32\nvcoproc.bin [3826628]
O44 - LFC:[MD5.46515803681D52A7C37AF9EC4D2F2510] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [6783776]
O44 - LFC:[MD5.1AD368C009067B7C9ED6D7FE3190E492] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [62808]
O44 - LFC:[MD5.E397B41933D34C721A776CE2F961CF42] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) -- C:\Windows\System32\nvsvc64.dll [3522392]
O44 - LFC:[MD5.CEF5C8F3DDC4F9DAD84CB2E2572AE156] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) -- C:\Windows\System32\nvsvcr.dll [2559960]
O44 - LFC:[MD5.2C8DD5A34A81715865D66D7AF39362A6] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) -- C:\Windows\System32\nvvsvc.exe [935368]
O44 - LFC:[MD5.8AEFCD4967B810BDD01CDDD179098596] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\System32\nv3dappshextr.dll [67072]
O44 - LFC:[MD5.6503C7C50CE07E00982D5B5379C98387] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [386520]
O44 - LFC:[MD5.8F98F82B825C0F074C97876C1E071C95] - 19/11/2014 - 01:43:49 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\nv3dappshext.dll [1084704]
O44 - LFC:[MD5.7292ED9BFB8CD3BCAEBADE51F67B02F3] - 19/11/2014 - 01:50:47 ---A- . (...) -- C:\Windows\DtcInstall.log [4362]
O44 - LFC:[MD5.08698A0DACC3FE62212CB858F4C5116E] - 19/11/2014 - 01:59:43 ---A- . (...) -- C:\Windows\System32\emptyregdb.dat [22744]
O44 - LFC:[MD5.AACC821E5F716ED96425C7E8C4E1CA24] - 19/11/2014 - 02:00:01 ---A- . (...) -- C:\Windows\comsetup.log [6607]
O44 - LFC:[MD5.81DD33EC695AB90466031CF430CFA1BD] - 19/11/2014 - 02:00:02 ---A- . (...) -- C:\Windows\diagerr.xml [20958]
O44 - LFC:[MD5.81DD33EC695AB90466031CF430CFA1BD] - 19/11/2014 - 02:00:03 ---A- . (...) -- C:\Windows\diagwrn.xml [20958]
O44 - LFC:[MD5.2A66BD9121612F7B97147EAABAC7AB78] - 19/11/2014 - 02:00:03 ---A- . (...) -- C:\Windows\setupact.log [295835]
O44 - LFC:[MD5.2201F4EB9A8D461BFABC2EAFF79424A3] - 19/11/2014 - 10:19:51 ---A- . (...) -- C:\$UPG$PBR.MARKER [34]
O44 - LFC:[MD5.20AFBBE595E7332B046054746152F2BD] - 19/11/2014 - 16:31:14 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [353376]
O44 - LFC:[MD5.80D28D3CDAEF05ABFAB638131CDD0ABD] - 19/11/2014 - 18:17:49 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [826972]
O44 - LFC:[MD5.78D087E67B7F07BFC1AD24A8A483E643] - 19/11/2014 - 18:17:49 ---A- . (...) -- C:\Windows\System32\perfc009.dat [129800]
O44 - LFC:[MD5.518ED097282BFEC5D1EB66B536898165] - 19/11/2014 - 18:17:49 ---A- . (...) -- C:\Windows\System32\perfh009.dat [693360]
O44 - LFC:[MD5.8025E7521EB601207627E8B4722ACE19] - 19/11/2014 - 19:23:33 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O44 - LFC:[MD5.EAFC6970073525E98D4D0E2B56741227] - 19/11/2014 - 19:23:46 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O44 - LFC:[MD5.655D6F1B8722091427FB18663A546E2C] - 19/11/2014 - 19:23:47 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1050432]
O44 - LFC:[MD5.B59EF013D567E5746F1DEE2565F747ED] - 19/11/2014 - 19:24:08 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43152]
O44 - LFC:[MD5.9BE9F2B83DE80E2752B1405CC427E2EC] - 19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208]
O44 - LFC:[MD5.1323269A92645705DEFA053F3596829D] - 19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O44 - LFC:[MD5.1A5BDDE65B648DC3AD48B6ECAA3AE9C8] - 19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632]
O44 - LFC:[MD5.7509F07BA6F84C1E3B2C0D78A1F6F782] - 19/11/2014 - 19:24:10 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O44 - LFC:[MD5.2DA1C1AEDF454F8E32A863A1AEACDD8C] - 19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [83280]
O44 - LFC:[MD5.4750016EF9CC1DEC6DA3FE5AF9A7F095] - 19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O44 - LFC:[MD5.B1881A01E301990B671694CA1623F1B6] - 19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O44 - LFC:[MD5.6663B30328C239D2AB10D2583054CF2E] - 19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [364512]
O44 - LFC:[MD5.A2E13630AE6F0BC46AA12CB1E0B722DE] - 19/11/2014 - 19:37:48 ---A- . (.Microsoft Corporation - Wi-Fi Background Task.) -- C:\Windows\System32\wifitask.exe [36864]
O44 - LFC:[MD5.7D61BEB975F7C8C4DA44CE8E8ED61C23] - 19/11/2014 - 19:37:48 ---A- . (.Microsoft Corporation - Wi-Fi Captive Portal Assist.) -- C:\Windows\System32\wificpassist.exe [181248]
O44 - LFC:[MD5.73B5CFD264C8022090275D000E0F5935] - 19/11/2014 - 19:37:48 ---A- . (.Microsoft Corporation - Wi-Fi Conn API client dll.) -- C:\Windows\System32\wificonnapi.dll [79360]
O44 - LFC:[MD5.257A26329FE5A0657999EC1F124A0EA0] - 19/11/2014 - 19:37:48 ---A- . (.Microsoft Corporation - Wi-Fi Network Manager Library.) -- C:\Windows\System32\wifinetworkmanager.dll [1019392]
O44 - LFC:[MD5.A8BB08C4B482294D265E58F0E06DC675] - 19/11/2014 - 19:37:48 ---A- . (.Microsoft Corporation - Wi-Fi Sense Tile Download.) -- C:\Windows\System32\tiledownload.exe [243200]
O44 - LFC:[MD5.93E9F7A96017070C2BA35A391C5FF0F8] - 19/11/2014 - 19:37:49 ---A- . (.Microsoft Corporation - Microsoft D2D Library.) -- C:\Windows\System32\d2d1.dll [4948992]
O44 - LFC:[MD5.DB4DB2793D1ACDA2E9C899513D9432B3] - 19/11/2014 - 19:37:54 ---A- . (.Microsoft Corporation - Windows Update AU.) -- C:\Windows\System32\wuau.dll [740864]
O44 - LFC:[MD5.13FBF8A89178D2D15AFAFFFC10C4F860] - 19/11/2014 - 19:37:54 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [18944]
O44 - LFC:[MD5.5746C72484F734F78B1469821F1855CC] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Host Process for Windows Tasks.) -- C:\Windows\System32\taskhost.exe [86968]
O44 - LFC:[MD5.26788C878306DB6DB8DCD0E429D76931] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Host Process for Windows Tasks.) -- C:\Windows\System32\taskhostex.exe [84880]
O44 - LFC:[MD5.1478355AAA0B5B4CAA2D0310AA3C3D92] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Unified Background Process Manager DLL.) -- C:\Windows\System32\ubpm.dll [217088]
O44 - LFC:[MD5.A8A38036FEF8D8817FC846E98B331917] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2236416]
O44 - LFC:[MD5.189C26F102D1E354B4E8C40D0EB2203F] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [38400]
O44 - LFC:[MD5.CD3459BB7BFA3A38CEFBBF10DCF3DFBE] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [394240]
O44 - LFC:[MD5.336B69E90E46DC150C40DB39BB2D5BD0] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288]
O44 - LFC:[MD5.0DED668176ADB7D0F1E37C60719524DE] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [48128]
O44 - LFC:[MD5.E328855D8287AA7A02B960189811D052] - 19/11/2014 - 19:37:55 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [59648]
O44 - LFC:[MD5.EFB686EB10C93FCA9334311185415DBB] - 19/11/2014 - 19:37:56 ---A- . (.Microsoft Corporation - Windows Update Client API.) -- C:\Windows\System32\wuapi.dll [833024]
O44 - LFC:[MD5.9FDA3F40020DD505891CBEEF30E64ABA] - 19/11/2014 - 19:37:56 ---A- . (.Microsoft Corporation - Windows Update Client User Experience.) -- C:\Windows\System32\wucltux.dll [1656832]
O44 - LFC:[MD5.BA69E2A48D2DEED3D6871E0797D15C99] - 19/11/2014 - 19:37:56 ---A- . (.Microsoft Corporation - Windows Update Shared UI Resources.) -- C:\Windows\System32\wushareduxresources.dll [99328]
O44 - LFC:[MD5.23158F514FCEBF9B4E20AAA09E71F461] - 19/11/2014 - 19:37:56 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [45568]
O44 - LFC:[MD5.CD225E4909AF6BB825A9ED8BEF226F04] - 19/11/2014 - 19:37:57 ---A- . (.Microsoft Corporation - Windows Update Agent plugin for Windows.) -- C:\Windows\System32\wuuhext.dll [412672]
O44 - LFC:[MD5.B1C12A8FA96E03BF2BDEFE3F94A2CE9F] - 19/11/2014 - 19:37:58 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [160768]
O44 - LFC:[MD5.64C11048B1F63CF744B8EB742F17C18C] - 19/11/2014 - 20:02:48 ---A- . (...) -- C:\Windows\PFRO.log [454974]
O44 - LFC:[MD5.6CDCE32B6569811389D3367951BC47CB] - 19/11/2014 - 20:05:01 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.F5D2A1C987F3C4B4F7FED0E839EE7DEF] - 19/11/2014 - 20:12:45 ---A- . (...) -- C:\Windows\WindowsUpdate.log [146156]
~ Files: 179 Scanned in 00mn 04s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.6D9193BE2FDDD4D691A7686B60658097] - 19/11/2014 - 20:39:21 ---A- - C:\Windows\Prefetch\GOLD BARRE.EXE-95B9E809.pf =>Toolbar.GoldBarre
~ Prefetcher: 1 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Windows Security Configuration Editor Client Engine.) -- C:\Windows\System32\scecli.dll
~ LSA: 3 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ MWPS: 19 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [109600]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782880]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [80408]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [260128]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [26656]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [134176]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208] =>.ALWIL Software
O58 - SDL:19/11/2014 - 19:23:46 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [83280]
O58 - SDL:19/11/2014 - 19:23:33 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776] =>.ALWIL Software
O58 - SDL:19/11/2014 - 19:23:47 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1050432]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O58 - SDL:19/11/2014 - 19:24:10 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632] =>.ALWIL Software
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [532000]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357728]
O58 - SDL:18/11/2014 - 23:08:21 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [56344]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [65056]
O58 - SDL:09/10/2014 - 21:06:51 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:09/10/2014 - 21:06:51 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412696]
O58 - SDL:18/11/2014 - 22:59:44 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [5363200]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [110104]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2i.sys [98840]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3i.sys [91160]
O58 - SDL:09/10/2014 - 21:06:55 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [83488]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [60448]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [576544]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [64536]
O58 - SDL:09/10/2014 - 21:07:40 ---A- . (...) -- C:\Windows\System32\Drivers\NetAdapterCx.sys [56832]
O58 - SDL:09/10/2014 - 21:06:51 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\Drivers\Netwsw00.sys [11518976]
O58 - SDL:18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 340.52.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12866008]
O58 - SDL:18/11/2014 - 23:29:30 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 340.52.) -- C:\Windows\System32\Drivers\nvpciflt.sys [32544]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [151064]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166936]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas2i.sys [57368]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas3i.sys [58392]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x64.sys [591360]
O58 - SDL:09/10/2014 - 21:12:02 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [45592]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [82464]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31768]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [167456]
O58 - SDL:09/10/2014 - 21:06:56 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [306200]
~ Drivers: 48 Scanned in 00mn 01s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (. Collective Intelligence forum.ru-board.) -- C:\Users\fabdu2b\Downloads\Kaspersky_Reset_Trial_4.0.0.21.exe [1696256]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\LocalLow\Sun\Java\jre1.8.0_25\java_sp.dll [448834]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [384958]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Microsoft\Windows\INetCache\IE\68TU6GW2\urlblockindex[1].bin [16]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Microsoft\Windows\INetCache\IE\SXBMYRFO\urlblocklist[1].bin [0]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Microsoft\Windows\appsFolderLayout-menu.bin [484]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Microsoft\Windows\appsFolderLayout.bin [484]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\NVIDIA\NvBackend\Packages\000063ef\DRS update.18761999.exe [331952]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Temp\0a029c2c.exe [943472]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Temp\675b8d1.exe [943472]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\AppData\Local\Temp\C86C53.exe [943472]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\Downloads\Crack and Setup.exe [943472]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\Downloads\Firefox Setup Stub 33.1.1.exe [244336]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\Downloads\installation.exe [1195441]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (...) -- C:\Users\fabdu2b\Downloads\winrar-x64-511.exe [1920640]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\AppData\Local\Temp\_av_iup.tm~a00644\HTMLayout.dll [3169672]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\AppData\Local\Temp\_av_iup.tm~a00644\Instup.dll [7598720]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\AppData\Local\Temp\_av_iup.tm~a00644\avBugReport.exe [1660752]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\AppData\Local\Temp\_av_iup.tm~a00644\instup.exe [204904]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\Downloads\avast_free_antivirus_setup_online.exe [5006864]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\Downloads\avast_internet_security_setup_online.exe [4978536]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.AVAST Software.) -- C:\Users\fabdu2b\Downloads\avastclear.exe [5040384]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.Kaspersky Lab.) -- C:\Users\fabdu2b\Downloads\kis15.0.0.463fr_6152.exe [170245952]
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.Nicolas Coolman.) -- C:\Users\fabdu2b\Downloads\ZHPDiag2(1).exe [6865584] =>.Nicolas Coolman
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.Nicolas Coolman.) -- C:\Users\fabdu2b\Downloads\ZHPDiag2.exe [6860008] =>.Nicolas Coolman
O61 - LFC: 19/11/2014 - 20:53:09 ---A- . (.Oracle Corporation.) -- C:\Users\fabdu2b\Downloads\jxpiinstall.exe [638888]
~ 51 Fichiers temporaires (Temporary files)
~ Files: 26 Scanned in 00mn 00s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Device Managent Enrollment Service DLL.) -- C:\Windows\System32\Windows.DeviceManagement.Enrollment.dll [376320]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [170496]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [170496]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [295936]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1323008]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [1019392]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over an IPv4 network..) -- C:\Windows\System32\iphlpsvc.dll [921600]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [31232]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [73216]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [150016]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [112128]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1283072]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [225280]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [132608]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [289792]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\sessenv.dll [339456]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [81920]
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Network Setup Service.) -- C:\Windows\System32\NetSetupSvc.dll [132608]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [352768]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RetailDemoService.) -- C:\Windows\System32\RetailDemoService.dll [124928]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [171008]
O83 - Search Svchost Services: dmwappushsvc (dmwappushsvc) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [26112]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\System32\wlidsvc.dll [1500672]
O83 - Search Svchost Services: UserTrustedSignals (UserTrustedSignals) . (.Microsoft Corporation - Windows.UserTrustedSignals.) -- C:\Windows\System32\Windows.UserTrustedSignals.dll [120832]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [59392]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [23040]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [202752]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Service.) -- C:\Windows\System32\ncasvc.dll [164864]
O83 - Search Svchost Services: DiagTrack (DiagTrack) . (.Microsoft Corporation - Microsoft Windows Diagnostics Tracking.) -- C:\Windows\System32\diagtrack.dll [1020416]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [104960]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [680960]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [495616]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\sens.dll [71168]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [452096]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [312320]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2236416]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [949760]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [593408]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [198144]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll [93216]
~ Services: 40 Scanned in 00mn 01s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 18/11/2014 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 14/11/2014 114288 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 19/11/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 19/11/2014 104416 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Demand 19/11/2014 4012248 | (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - | Auto 02/07/2014 935368 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Demand 09/10/2014 39528 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 12s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by fabdu2b at 19/11/2014 20:54:21
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by fabdu2b at 19/11/2014 20:54:23
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13026 - (19/11/2014)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 1
Fichiers trouvés (Files found) : 2

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Gold Barre] =>Toolbar.GoldBarre^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gold Barre =>Toolbar.GoldBarre^
C:\Program Files\gold barre\Gold Barre.exe =>Toolbar.GoldBarre^
[HKCU\Software\Gold Barre] =>Toolbar.GoldBarre^
~ Additionnel Scan: 155138 Items scanned in 00mn 31s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ AMI: 3 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>Toolbar.GoldBarre
~ MSI: 1 link(s) detected in 00mn 00s



End of the scan (959 lines in 02mn 12s)(0)

Publicité


Signaler le contenu de ce document

Publicité