cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2015.5.13.48 - Nicolas Coolman (13/05/2015)
~ Lancé par goudjil (16/05/2015 11:48:26)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows(R) Operating System, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : CKBDQ
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 8.1 Pro, 32-bit (Build 9600)

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.1.6.1022
Windows Defender W8 (Activate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 18 NPAPI
Java 7 Update 80

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2013 MB (22% free)
System Restore: Activé (Enable)
System drive C: has 60 GB (53%) free of 111 GB

---\\ Mode de connexion au système
~ Computer Name: YAZID
~ User Name: goudjil
~ All Users Names: HomeGroupUser$, goudjil, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\goudjil\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\goudjil\AppData\Roaming\
~ %Desktop% : C:\Users\goudjil\Desktop\
~ %Favorites% : C:\Users\goudjil\Favorites\
~ %LocalAppData% : C:\Users\goudjil\AppData\Local\
~ %StartMenu% : C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 60 Go of 111 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.91E24273FCA076EA9E65DAFA98901225] - (.Microsoft Corporation - Explorateur Windows.) (.27/01/2015 - 17:41:17.) -- C:\Windows\Explorer.exe [2207488]
[MD5.02BC073156B3097E94D63C4D609020DD] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/08/2013 - 20:49:55.) -- C:\Windows\System32\Wininit.exe [112640]
[MD5.CCC198257901BEEA2FBF8EB1E7678356] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 16:13:59.) -- C:\Windows\System32\wininet.dll [1791488]
[MD5.70C57DC69D4A7D92D2CAC90C3AD16E6F] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.07/03/2014 - 15:57:45.) -- C:\Windows\System32\Winlogon.exe [459264]
[MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) (.07/03/2014 - 15:57:45.) -- C:\Windows\System32\sppcomapi.dll [438272]
[MD5.D75FB05E8DBF21FA0EF313C7503243F1] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.29/05/2014 - 21:05:35.) -- C:\Windows\system32\Drivers\AFD.sys [461312]
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.21/08/2013 - 23:33:25.) -- C:\Windows\system32\Drivers\atapi.sys [23392]
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/08/2013 - 22:11:55.) -- C:\Windows\system32\Drivers\Cdfs.sys [73728]
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/08/2013 - 19:59:12.) -- C:\Windows\system32\Drivers\Cdrom.sys [124928]
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.09/04/2014 - 10:50:41.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.3D06FB84CFFB1D959ACE7690A27A89E1] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 01:22:40.) -- C:\Windows\system32\Drivers\HDAudBus.sys [69632]
[MD5.5043E69532392A43549E5D41E22638AA] - (.Microsoft Corporation - Pilote de port i8042.) (.21/08/2013 - 22:10:59.) -- C:\Windows\system32\Drivers\i8042prt.sys [82944]
[MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) (.07/03/2014 - 15:57:45.) -- C:\Windows\system32\Drivers\IpNat.sys [126976]
[MD5.E11D4B798CF0FF9F739CD9BDC552FF08] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.19/06/2014 - 06:45:43.) -- C:\Windows\system32\Drivers\MRxSmb.sys [333312]
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) (.21/08/2013 - 22:08:26.) -- C:\Windows\system32\Drivers\netBT.sys [218624]
[MD5.BAFDB3519A9D1A6A0665A70696BA98D5] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.09/04/2014 - 10:50:39.) -- C:\Windows\system32\Drivers\ntfs.sys [1679704]
[MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) (.21/08/2013 - 22:11:49.) -- C:\Windows\system32\Drivers\Parport.sys [81408]
[MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/08/2013 - 22:07:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [81920]
[MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.22/08/2013 - 05:13:14.) -- C:\Windows\system32\Drivers\rdpdr.sys [143872]
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 00:13:54.) -- C:\Windows\system32\Drivers\tdx.sys [87040]
[MD5.F4138DC230FC3DFE9E31201561D0491B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 04:37:49.) -- C:\Windows\system32\Drivers\volsnap.sys [264536]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/265
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 1/113
~ Mon Bureau (My Desktop) : 2/4820
~ Menu demarrer (Programs) : 1/32
~ Hidden Files: Scanned in 00mn 12s



---\\ Processus lancés
[MD5.7E212E742BF06BF678AE35E9C1B74B8F] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe [6212920] [PID.3412]
[MD5.2197DED64442B4B342971598208A7D1A] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\Windows\system32\taskhostex.exe [66624] [PID.3200]
[MD5.22544393B0C597DED7686D4E8F851A23] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [1773856] [PID.3740]
[MD5.EE7C82B0D69F038245CECBCE9EC45A9A] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [17760] [PID.2408]
[MD5.D949222AE33DC6687BCFA100A9124CD4] - (.IObit - Smart Defrag v4.) -- C:\Program Files\IObit\Smart Defrag 4\SmartDefrag.exe [4383008] [PID.776]
[MD5.FD947F1CBB022C1DC138013049F5E33A] - (.Enigma Software Group USA, LLC. - SpyHunter4 application.) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [7125376] [PID.2632] =>PUP.EnigmaSoftware
[MD5.AF2F89E2F43D80C6878F1A177EFE9D9C] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12205784] [PID.6132]
[MD5.504AAB0AF82973329CAEF8FFC595C05D] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744] [PID.4296]
[MD5.BAC15D03EFC8249216D1D610F3B1E67F] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [695528] [PID.4584]
[MD5.D447736259F18CBCA9E4CE09465CBB5D] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe [3829328] [PID.4772]
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.5364]
[MD5.31685D8F66C40D55E915D517C1D9CF3E] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [31276160] [PID.5712]
[MD5.77C01F1850E55373280A1B865D824F58] - (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\goudjil\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008] [PID.6004]
[MD5.A9EBEFD3FC125D31EB33A8BB1AB17BE8] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [812208] [PID.6048]
[MD5.AFFE53934D6D0216B5755FA2DB683BA8] - (.Adobe Systems Incorporated - Adobe® Flash® Player Utility.) -- C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe [877536] [PID.2804]
[MD5.46769F961E4AB53D76A9E734867E0E54] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8208896] [PID.5984]
~ Processes Running: Scanned in 00mn 07s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_129.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.80.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.80.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.80.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=16.4.3528.0331] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKCU] [@omaha.playfree.org/MPCBrowser Update;version=3] - (.MyPlayCity, Inc. - MPCBrowser Update.) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\1.3.27.0\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@omaha.playfree.org/MPCBrowser Update;version=9] - (.MyPlayCity, Inc. - MPCBrowser Update.) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\1.3.27.0\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (...) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (.not file.)
~ Firefox Browser: 10 Scanned in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (28)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} . (.IObit - Uninstall for explorer.) -- C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll
O2 - BHO: LuckyTab Class - {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} . (...) -- C:\Program Files\XTab\SupTab.dll (.not file.) =>PUP.LuckyTab
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Ads Removal - {9D974C8C-6D92-44FB-BEAF-B45A1C0CF17F} . (.Adblock - Helps you remove browser ads!.) -- C:\Program Files\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 14 Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [goudjil]: SpyHunter.lnk . (.Enigma Software Group USA, LLC. - SpyHunter4 application.) -- C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe =>PUP.EnigmaSoftware
~ Global Startup: 1 Scanned in 00mn 13s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKCU\..\Run: [MPCBrowser Update] . (.MyPlayCity, Inc. - MPCBrowser Update.) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\goudjil\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (.not file.)
O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe (.not file.)
O4 - HKUS\S-1-5-21-1509035795-2533350102-424463355-1001\..\Run: [MPCBrowser Update] . (.MyPlayCity, Inc. - MPCBrowser Update.) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe
O4 - HKUS\S-1-5-21-1509035795-2533350102-424463355-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-1509035795-2533350102-424463355-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKUS\S-1-5-21-1509035795-2533350102-424463355-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-1509035795-2533350102-424463355-1001\..\Run: [BingSvc] . (.© 2015 Microsoft Corporation - Microsoft Bing Service.) -- C:\Users\goudjil\AppData\Local\Microsoft\BingSvc\BingSvc.exe
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains\www] http.google.fr
O15 - Trusted Zone: [HKCU\...\Domains\www] http.koralive.tk
O15 - Trusted Zone: [HKCU\...\Domains\www] http.startimes.com
~ IE Zone Confiance: Scanned in 00mn 01s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{557B0A7A-8AB5-470C-A297-63B73D947E70}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{557B0A7A-8AB5-470C-A297-63B73D947E70}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Photo Gallery Album Download Protocol Handl.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>PUP.EnigmaSoftware
~ Services: 6 Scanned in 00mn 20s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.3EC3D9DFD0919F4C063F881B0E9FAC86] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.22544393B0C597DED7686D4E8F851A23] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [1773856]
[MD5.EE24E1D4387E9851E1157EFEAEF3BA1C] [APT] [ASC8_SkipUac_goudjil] (.IObit.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASC.exe [5353760]
[MD5.65C90A9B036731C9D1EBCEA9F301A9B9] [APT] [AutoKMS] (...) -- C:\Windows\AutoKMS\AutoKMS.exe [3582464] =>Hacktool.AutoKMS
[MD5.00000000000000000000000000000000] [APT] [Driver Booster SkipUAC (goudjil)] (...) -- C:\Program Files\IObit\Driver Booster\DriverBooster.exe (.not file.) [0]
[MD5.84C5634339F6C989096AFE6ABB31290D] [APT] [MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001Core] (.MyPlayCity, Inc..) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe [120256]
[MD5.84C5634339F6C989096AFE6ABB31290D] [APT] [MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001UA] (.MyPlayCity, Inc..) -- C:\Users\goudjil\AppData\Local\MPCBrowser\Update\MPCBrowserUpdate.exe [120256]
[MD5.D949222AE33DC6687BCFA100A9124CD4] [APT] [SmartDefrag4_Startup] (.IObit.) -- C:\Program Files\IObit\Smart Defrag 4\SmartDefrag.exe [4383008]
[MD5.46573F4542E59BBC7BDDFB463CD52506] [APT] [SmartDefrag4_Update] (.IObit.) -- C:\Program Files\IObit\Smart Defrag 4\AutoUpdate.exe [2390816]
[MD5.FD947F1CBB022C1DC138013049F5E33A] [APT] [SpyHunter4Startup] (.Enigma Software Group USA, LLC..) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [7125376] =>PUP.EnigmaSoftware
[MD5.BA6F01FDDB4C5106CE58B48F1BCD97B1] [APT] [Uninstaller_SkipUac_Administrator] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [8022816]
[MD5.BA6F01FDDB4C5106CE58B48F1BCD97B1] [APT] [Uninstaller_SkipUac_goudjil] (.IObit.) -- C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [8022816]
[MD5.00000000000000000000000000000000] [APT] [{631124AE-3590-49BE-A426-B3A2468DD99B}] (...) -- C:\Users\goudjil\AppData\Local\Temp\costmin.exe (.not file.) [0] =>PUP.CostMin
[MD5.00000000000000000000000000000000] [APT] [{A67E50D3-814A-4438-A7F2-E88F4102D526}] (...) -- C:\Users\goudjil\AppData\Roaming\oursurfing\UninstallManager.exe (.not file.) [0] =>Hijacker.OurSurfing
[MD5.00000000000000000000000000000000] [APT] [{BE78FACF-A79E-4EC4-959B-6E9B0D00168E}] (...) -- C:\Users\goudjil\AppData\Local\Temp\instloffer.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: ASC8_SkipUac_goudjil - (.IObit.) -- C:\Windows\Tasks\ASC8_SkipUac_goudjil.job [246]
O39 - APT: ASC8_SkipUac_goudjil - (.IObit.) -- C:\Windows\System32\Tasks\ASC8_SkipUac_goudjil [246]
O39 - APT: MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001Core - (.MyPlayCity, Inc..) -- C:\Windows\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001Core.job [916]
O39 - APT: MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001Core - (.MyPlayCity, Inc..) -- C:\Windows\System32\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001Core [916]
O39 - APT: MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001UA - (.MyPlayCity, Inc..) -- C:\Windows\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001UA.job [968]
O39 - APT: MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001UA - (.MyPlayCity, Inc..) -- C:\Windows\System32\Tasks\MPCBrowserUpdateTaskUserS-1-5-21-1509035795-2533350102-424463355-1001UA [968]
O39 - APT: Uninstaller_SkipUac_Administrator - (.IObit.) -- C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job [282]
O39 - APT: Uninstaller_SkipUac_Administrator - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_Administrator [282]
O39 - APT: Uninstaller_SkipUac_goudjil - (.IObit.) -- C:\Windows\Tasks\Uninstaller_SkipUac_goudjil.job [282]
O39 - APT: Uninstaller_SkipUac_goudjil - (.IObit.) -- C:\Windows\System32\Tasks\Uninstaller_SkipUac_goudjil [282]
~ Scheduled Task: 23 Scanned in 00mn 13s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (HWiNFO32) . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) - C:\Windows\system32\drivers\HWiNFO32.sys
O41 - Driver: (MpKsl156ecd11) . (.Microsoft Corporation - KSLDriver.) - C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{58F8CE79-A39F-479D-9100-446E2297AAB0}\MpKsl156ecd11.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 38 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: IObit Apps Toolbar v9.2 - (.Spigot, Inc..) [HKLM] -- {4F5E5430-1DA8-4B2B-BB26-B29C0E7DBFDB} =>PUP.Dealio
O42 - Logiciel: IObit Malware Fighter - (.IObit.) [HKLM] -- IObit Malware Fighter_is1
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall
O42 - Logiciel: Java 7 Update 80 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F03217080FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.6.1022 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Need For Speed™ World - (.Electronic Arts.) [HKLM] -- {7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Resident Evil 4 1.10 - (...) [HKLM] -- Resident Evil 4_is1
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype Translate - (.Skype Translate.) [HKCU] -- 7e66679bf240e191
O42 - Logiciel: Skype™ 7.4 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM] -- Smart Defrag 4_is1
O42 - Logiciel: SpeedFan (remove only) - (...) [HKLM] -- SpeedFan
O42 - Logiciel: SpyHunter 4 - (.Enigma Software Group, LLC.) [HKLM] -- SpyHunter =>PUP.EnigmaSoftware
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU] -- UnityWebPlayer
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinRAR 5.10 beta 3 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Wondershare Player(Build 1.5.0) - (.Wondershare.) [HKLM] -- Wondershare Player_is1
O42 - Logiciel: Your Uninstaller! 7 - (.URSoft, Inc..) [HKLM] -- YU2010_is1
O42 - Logiciel: Zuma's Revenge! - (.AllSmartGames.) [HKLM] -- Zuma's Revenge!1.0
~ Logic: 24 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AOL]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Slick Savings] =>PUP.Dealio
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DownloadManager]
[HKCU\Software\Game Maker]
[HKCU\Software\IM Providers]
[HKCU\Software\IObit]
[HKCU\Software\JavaSoft]
[HKCU\Software\Kromtech]
[HKCU\Software\Licenses]
[HKCU\Software\MPCBrowser]
[HKCU\Software\Macromedia]
[HKCU\Software\Media Research Group]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\OB]
[HKCU\Software\ODBC]
[HKCU\Software\PlayFreeBrowser]
[HKCU\Software\Policies]
[HKCU\Software\PopCap]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\SpeedFan]
[HKCU\Software\SpinTop]
[HKCU\Software\TLK Games]
[HKCU\Software\The Silicon Realms Toolworks]
[HKCU\Software\Trolltech]
[HKCU\Software\URSoft]
[HKCU\Software\USB Disk Security]
[HKCU\Software\Unity]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Windows Live Writer]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\ADSRemoval]
[HKLM\Software\AdwCleaner]
[HKLM\Software\AppDataLow]
[HKLM\Software\CAPCOM]
[HKLM\Software\COMODO]
[HKLM\Software\Chromium]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Electronic Arts]
[HKLM\Software\EnigmaSoftwareGroup] =>PUP.EnigmaSoftware
[HKLM\Software\Exent]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\IObit]
[HKLM\Software\Intel]
[HKLM\Software\Internet Download Manager]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Knowles]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes Anti-Rootkit]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Nahimic]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\PJ]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Skype]
[HKLM\Software\SonicFocus]
[HKLM\Software\SoundResearch]
[HKLM\Software\TS]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\zbshareware]
~ Key Software: 144 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 02/04/2015 - 15:31:47 - [] ----D C:\Program Files\Capcom
O43 - CFD: 16/05/2015 - 11:29:31 - [] ----D C:\Program Files\Common Files
O43 - CFD: 06/07/2014 - 07:33:12 - [] ----D C:\Program Files\Comodo
O43 - CFD: 13/05/2015 - 17:54:55 - [] ----D C:\Program Files\Counter-Strike 1.6
O43 - CFD: 02/04/2015 - 16:22:39 - [] ----D C:\Program Files\Cpi_cs
O43 - CFD: 22/05/2014 - 11:29:36 - [] ----D C:\Program Files\Electronic Arts
O43 - CFD: 16/05/2015 - 10:40:29 - [] ----D C:\Program Files\Enigma Software Group =>PUP.EnigmaSoftware
O43 - CFD: 02/04/2015 - 15:48:12 - [0] ----D C:\Program Files\Falco Game Player
O43 - CFD: 04/05/2014 - 13:45:35 - [] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 04/07/2014 - 08:20:21 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 16/05/2014 - 12:58:13 - [] ----D C:\Program Files\Internet Download Manager
O43 - CFD: 06/08/2014 - 12:57:40 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 15/05/2015 - 13:14:20 - [] ----D C:\Program Files\IObit
O43 - CFD: 29/07/2014 - 11:15:31 - [] ----D C:\Program Files\Java
O43 - CFD: 28/08/2014 - 11:25:46 - [] ----D C:\Program Files\levels
O43 - CFD: 28/03/2015 - 13:49:59 - [] ----D C:\Program Files\Luxor Quest for the Afterlife
O43 - CFD: 15/05/2015 - 13:33:00 - [] ----D C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 12/11/2014 - 20:15:13 - [] ----D C:\Program Files\Microsoft Office
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 09/05/2014 - 15:15:26 - [] ----D C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 12/11/2014 - 20:15:11 - [] ----D C:\Program Files\Microsoft Visual Studio
O43 - CFD: 12/11/2014 - 20:12:17 - [] ----D C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 12/11/2014 - 20:15:30 - [] ----D C:\Program Files\Microsoft Works
O43 - CFD: 12/11/2014 - 20:14:26 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 12/11/2014 - 20:15:22 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 28/08/2014 - 11:25:46 - [] ----D C:\Program Files\properties
O43 - CFD: 10/06/2014 - 02:08:55 - [0] ----D C:\Program Files\RealHideIP
O43 - CFD: 19/06/2014 - 03:34:48 - [] ----D C:\Program Files\Realtek
O43 - CFD: 05/05/2014 - 14:23:51 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 09/06/2014 - 17:13:39 - [0] ----D C:\Program Files\SafeIP
O43 - CFD: 16/05/2015 - 01:20:06 - [] R---D C:\Program Files\Skype
O43 - CFD: 27/03/2015 - 17:43:38 - [] ----D C:\Program Files\SpeedFan
O43 - CFD: 28/08/2014 - 11:25:46 - [] ----D C:\Program Files\Uninstall
O43 - CFD: 22/08/2013 - 02:24:44 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 16/05/2015 - 11:16:55 - [] ----D C:\Program Files\USB Disk Security
O43 - CFD: 06/06/2014 - 17:36:25 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 14/05/2014 - 11:57:46 - [] ----D C:\Program Files\Windows Live
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 07/03/2014 - 16:58:49 - [] ----D C:\Program Files\Windows Multimedia Platform
O43 - CFD: 04/05/2014 - 13:45:35 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 13/03/2014 - 01:02:14 - [] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 07/03/2014 - 16:58:49 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 22/08/2013 - 03:17:26 - [] -SH-D C:\Program Files\Windows Sidebar
O43 - CFD: 13/05/2015 - 17:54:12 - [] --H-D C:\Program Files\WindowsApps
O43 - CFD: 22/08/2013 - 03:17:26 - [] ----D C:\Program Files\WindowsPowerShell
O43 - CFD: 05/05/2014 - 13:35:19 - [] ----D C:\Program Files\WinRAR
O43 - CFD: 04/06/2014 - 11:17:35 - [] ----D C:\Program Files\Wondershare
O43 - CFD: 05/05/2014 - 13:40:38 - [] ----D C:\Program Files\Your Uninstaller! 7
O43 - CFD: 16/05/2015 - 11:44:31 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 06/08/2014 - 13:29:06 - [] ----D C:\Program Files\Zuma's Revenge!
O43 - CFD: 12/11/2014 - 20:15:11 - [] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 14/05/2015 - 08:52:46 - [] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 15/05/2015 - 12:19:28 - [] ----D C:\Program Files\Common Files\IObit
O43 - CFD: 06/06/2014 - 17:53:54 - [] ----D C:\Program Files\Common Files\Java
O43 - CFD: 16/05/2015 - 01:20:07 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 16/05/2015 - 01:20:07 - [] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 16/05/2015 - 01:20:07 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 09/05/2014 - 14:41:14 - [] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 04/06/2014 - 11:18:03 - [] ----D C:\Program Files\Common Files\Wondershare
O43 - CFD: 22/08/2013 - 02:23:42 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 04/05/2014 - 13:45:35 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 22/08/2013 - 02:23:42 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 02:23:42 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 22/05/2014 - 11:29:36 - [] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 04/05/2014 - 14:50:10 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 16/05/2015 - 01:20:06 - [] ----D C:\ProgramData\IObit
O43 - CFD: 05/05/2014 - 15:19:09 - [] ----D C:\ProgramData\Logs
O43 - CFD: 07/05/2014 - 11:10:51 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 31/07/2014 - 15:42:42 - [0] ----D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
O43 - CFD: 04/05/2014 - 13:45:35 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 15/05/2015 - 22:47:06 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/05/2015 - 19:20:42 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 09/05/2014 - 14:46:26 - [] ----D C:\ProgramData\Microsoft OneDrive
O43 - CFD: 04/05/2014 - 14:55:01 - [] ----D C:\ProgramData\Microsoft Toolkit
O43 - CFD: 04/05/2014 - 13:45:35 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 27/03/2015 - 17:03:07 - [] ----D C:\ProgramData\MumboJumbo
O43 - CFD: 29/07/2014 - 11:15:55 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 26/08/2014 - 11:18:03 - [] ----D C:\ProgramData\PopCap Games
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\ProductData
O43 - CFD: 09/06/2014 - 17:16:28 - [] ----D C:\ProgramData\RealHideIP
O43 - CFD: 22/08/2013 - 06:13:19 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Skype
O43 - CFD: 05/06/2014 - 13:13:10 - [] ----D C:\ProgramData\SpinTop Games
O43 - CFD: 22/08/2013 - 02:23:42 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 06/06/2014 - 17:53:55 - [] ----D C:\ProgramData\Sun
O43 - CFD: 16/05/2015 - 00:04:46 - [] ---AD C:\ProgramData\TEMP
O43 - CFD: 22/08/2013 - 02:23:42 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Wondershare Player
O43 - CFD: 07/05/2014 - 12:03:53 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 15/05/2015 - 12:19:40 - [0] ----D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 07/05/2014 - 12:11:22 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 07/05/2014 - 12:11:20 - [] ----D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
O43 - CFD: 16/05/2015 - 01:20:05 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 16/05/2015 - 01:20:05 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/05/2015 - 01:20:05 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8
O43 - CFD: 06/07/2014 - 07:37:18 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
O43 - CFD: 06/08/2014 - 12:20:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 22/08/2013 - 03:17:27 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/05/2015 - 13:33:06 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 12/11/2014 - 20:16:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 4
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 16/05/2015 - 01:20:05 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
O43 - CFD: 16/05/2014 - 11:18:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 22/08/2013 - 03:17:27 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 16/05/2015 - 01:20:05 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 22/08/2013 - 06:13:19 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 16/05/2015 - 11:16:55 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB Disk Security
O43 - CFD: 22/06/2014 - 16:47:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 09/05/2014 - 15:15:42 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 05/05/2014 - 13:35:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 04/06/2014 - 11:17:54 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
O43 - CFD: 05/05/2014 - 13:40:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
O43 - CFD: 16/05/2015 - 11:44:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 04/05/2014 - 14:49:30 - [] ----D C:\Users\goudjil\AppData\Roaming\Adobe
O43 - CFD: 07/05/2014 - 12:04:04 - [] ----D C:\Users\goudjil\AppData\Roaming\Apple Computer
O43 - CFD: 16/05/2015 - 01:02:46 - [] ----D C:\Users\goudjil\AppData\Roaming\DMCache
O43 - CFD: 16/05/2015 - 10:48:55 - [] ----D C:\Users\goudjil\AppData\Roaming\Enigma Software Group =>PUP.EnigmaSoftware
O43 - CFD: 09/05/2014 - 15:32:21 - [] ----D C:\Users\goudjil\AppData\Roaming\Identities
O43 - CFD: 15/05/2015 - 13:24:59 - [] ----D C:\Users\goudjil\AppData\Roaming\IDM
O43 - CFD: 16/05/2015 - 01:20:01 - [] ----D C:\Users\goudjil\AppData\Roaming\IObit
O43 - CFD: 04/05/2014 - 14:56:00 - [] ----D C:\Users\goudjil\AppData\Roaming\Macromedia
O43 - CFD: 15/05/2015 - 11:58:40 - [] -S--D C:\Users\goudjil\AppData\Roaming\Microsoft
O43 - CFD: 05/07/2014 - 05:07:28 - [] ----D C:\Users\goudjil\AppData\Roaming\MumboJumbo
O43 - CFD: 16/05/2015 - 01:20:01 - [] ----D C:\Users\goudjil\AppData\Roaming\ProductData
O43 - CFD: 09/06/2014 - 17:16:28 - [] ----D C:\Users\goudjil\AppData\Roaming\RealHideIP
O43 - CFD: 27/07/2014 - 06:00:53 - [0] ----D C:\Users\goudjil\AppData\Roaming\rmi
O43 - CFD: 16/05/2015 - 11:33:34 - [] ----D C:\Users\goudjil\AppData\Roaming\Skype
O43 - CFD: 14/05/2014 - 14:42:27 - [] ----D C:\Users\goudjil\AppData\Roaming\Thinstall
O43 - CFD: 16/05/2014 - 07:10:10 - [] ----D C:\Users\goudjil\AppData\Roaming\Unity
O43 - CFD: 05/05/2014 - 13:40:18 - [] ----D C:\Users\goudjil\AppData\Roaming\URSoft
O43 - CFD: 16/05/2015 - 01:20:01 - [] ----D C:\Users\goudjil\AppData\Roaming\vlc
O43 - CFD: 09/05/2014 - 15:32:29 - [0] ----D C:\Users\goudjil\AppData\Roaming\Windows Live Writer
O43 - CFD: 05/05/2014 - 13:35:26 - [] ----D C:\Users\goudjil\AppData\Roaming\WinRAR
O43 - CFD: 16/05/2015 - 11:17:10 - [] ----D C:\Users\goudjil\AppData\Roaming\Zbshareware Lab
O43 - CFD: 16/05/2015 - 11:49:47 - [] ----D C:\Users\goudjil\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 07/05/2014 - 12:57:15 - [] ----D C:\Users\goudjil\AppData\Local\41
O43 - CFD: 04/05/2014 - 14:49:14 - [] -SH-D C:\Users\goudjil\AppData\Local\Application Data
O43 - CFD: 09/05/2014 - 10:27:05 - [] ----D C:\Users\goudjil\AppData\Local\Apps
O43 - CFD: 07/06/2014 - 14:19:07 - [] ----D C:\Users\goudjil\AppData\Local\cache
O43 - CFD: 06/07/2014 - 07:33:42 - [] ----D C:\Users\goudjil\AppData\Local\Comodo
O43 - CFD: 15/05/2015 - 13:51:22 - [0] ----D C:\Users\goudjil\AppData\Local\Deployment
O43 - CFD: 14/05/2015 - 18:39:12 - [] ----D C:\Users\goudjil\AppData\Local\Diagnostics
O43 - CFD: 06/08/2014 - 13:23:36 - [] ----D C:\Users\goudjil\AppData\Local\Electronic_Arts_Inc
O43 - CFD: 20/04/2015 - 23:17:39 - [] ----D C:\Users\goudjil\AppData\Local\ElevatedDiagnostics
O43 - CFD: 04/05/2014 - 14:56:05 - [] -SH-D C:\Users\goudjil\AppData\Local\EmieSiteList
O43 - CFD: 04/05/2014 - 14:56:05 - [] -SH-D C:\Users\goudjil\AppData\Local\EmieUserList
O43 - CFD: 07/05/2014 - 10:44:59 - [] ----D C:\Users\goudjil\AppData\Local\Google
O43 - CFD: 04/05/2014 - 14:49:14 - [] -SH-D C:\Users\goudjil\AppData\Local\Historique
O43 - CFD: 15/05/2015 - 21:58:56 - [] ----D C:\Users\goudjil\AppData\Local\Microsoft
O43 - CFD: 12/11/2014 - 20:11:41 - [0] ----D C:\Users\goudjil\AppData\Local\Microsoft Help
O43 - CFD: 14/05/2014 - 14:36:40 - [] ----D C:\Users\goudjil\AppData\Local\MPCBrowser
O43 - CFD: 04/05/2014 - 14:57:07 - [] ----D C:\Users\goudjil\AppData\Local\Packages
O43 - CFD: 14/05/2014 - 14:36:36 - [] ----D C:\Users\goudjil\AppData\Local\PlayFree Browser
O43 - CFD: 07/05/2014 - 10:44:12 - [] ----D C:\Users\goudjil\AppData\Local\Programs
O43 - CFD: 14/05/2014 - 11:58:02 - [] ----D C:\Users\goudjil\AppData\Local\Skype
O43 - CFD: 16/05/2015 - 11:49:06 - [] ----D C:\Users\goudjil\AppData\Local\Temp
O43 - CFD: 15/05/2015 - 13:09:59 - [0] ----D C:\Users\goudjil\AppData\Local\TempDIR
O43 - CFD: 04/05/2014 - 14:49:14 - [] -SH-D C:\Users\goudjil\AppData\Local\Temporary Internet Files
O43 - CFD: 14/05/2014 - 14:42:27 - [] ----D C:\Users\goudjil\AppData\Local\Thinstall
O43 - CFD: 16/05/2014 - 07:04:11 - [] ----D C:\Users\goudjil\AppData\Local\Unity
O43 - CFD: 09/06/2014 - 17:22:38 - [] ----D C:\Users\goudjil\AppData\Local\VirtualStore
O43 - CFD: 03/04/2015 - 16:25:05 - [] ----D C:\Users\goudjil\AppData\Local\Windows Live
O43 - CFD: 15/05/2015 - 12:42:10 - [] ----D C:\Users\goudjil\AppData\Local\Windows Live Writer
O43 - CFD: 04/06/2014 - 11:18:07 - [] ----D C:\Users\goudjil\AppData\Local\Wondershare
O43 - CFD: 07/03/2014 - 16:58:49 - [] R---D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 03:17:27 - [] R---D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/05/2015 - 01:20:01 - [] R---D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 04/04/2015 - 13:44:38 - [0] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
O43 - CFD: 16/05/2015 - 01:20:01 - [] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luxor Quest for the Afterlife
O43 - CFD: 22/08/2013 - 03:17:27 - [] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 22/05/2014 - 10:23:09 - [0] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlayFree Browser
O43 - CFD: 15/05/2015 - 13:50:56 - [] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Skype Translate
O43 - CFD: 16/05/2014 - 11:38:13 - [0] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
O43 - CFD: 16/05/2015 - 01:20:01 - [] R---D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 20/03/2014 - 02:33:42 - [] R---D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 05/05/2014 - 13:35:19 - [] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 24/10/2014 - 20:33:29 - [] ----D C:\Users\goudjil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zuma's Revenge!
~ Program Folder: 185 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.01411333E125717D9D0C1193FC08EDD5] - 15/05/2015 - 11:21:18 ---A- . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624]
O44 - LFC:[MD5.A6F2E1D713103FB38F46C26EF65E3DC6] - 15/05/2015 - 11:21:19 ---A- . (.IObit - IObit Smart Defrag Extension.) -- C:\Windows\System32\IObitSmartDefragExtension.dll [109856]
O44 - LFC:[MD5.7A5B0AA932941D3D809BBBF3A2E27694] - 15/05/2015 - 11:21:19 ---A- . (.IObit - SmartDefrag.) -- C:\Windows\System32\SmartDefragBootTime.exe [31008]
O44 - LFC:[MD5.AEE143C0E863562838583EF7A4C8783F] - 15/05/2015 - 12:00:23 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe [107352]
O44 - LFC:[MD5.86DB4BA87BAF3D467D04821602E586A9] - 15/05/2015 - 12:00:23 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3304448]
O44 - LFC:[MD5.F8D0951A75826AD557CFAC323A936AA6] - 15/05/2015 - 12:00:23 ---A- . (.Microsoft Corporation - Windows® installer.) -- C:\Windows\System32\msihnd.dll [281088]
O44 - LFC:[MD5.2C01D8EA2B0FA834597FCD96AAAE4F52] - 15/05/2015 - 12:01:02 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\System32\dxgi.dll [406400]
O44 - LFC:[MD5.27FA5460CE08F69FE536399214E0ABBB] - 15/05/2015 - 12:01:02 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1326936]
O44 - LFC:[MD5.EAF033DA24DA2D8B085B4DA6C46673CF] - 15/05/2015 - 12:01:31 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll [805136]
O44 - LFC:[MD5.CB4F9DE2981D3746BD4537512BE7CCE0] - 15/05/2015 - 12:02:05 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll [1090280]
O44 - LFC:[MD5.5C74ED314E4DA1F35B6040C85996BB53] - 15/05/2015 - 12:02:05 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3441152]
O44 - LFC:[MD5.45804906FFF3DD025BC725BE0DC98797] - 15/05/2015 - 12:02:42 ---A- . (.Microsoft Corporation - Assistant Impression de photographies.) -- C:\Windows\System32\photowiz.dll [290816]
O44 - LFC:[MD5.8AB7CD5B750234BC456ACC59B6FCDD30] - 15/05/2015 - 12:04:13 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [19731312]
O44 - LFC:[MD5.19920B416F3274640B3DE9A5248F0E74] - 15/05/2015 - 12:04:13 ---A- . (.Microsoft Corporation - SHCORE.) -- C:\Windows\System32\SHCore.dll [560392]
O44 - LFC:[MD5.AECDD11299C9814382A259E18385C927] - 15/05/2015 - 12:04:39 ---A- . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [976384]
O44 - LFC:[MD5.C443536D9279B74A162E3C39A83CB226] - 15/05/2015 - 12:05:07 ---A- . (.Microsoft Corporation - Gestionnaire de menu contextuel de stockage.) -- C:\Windows\System32\StorageContextHandler.dll [60928]
O44 - LFC:[MD5.4EA08A6C9E696D860647AE506F25C854] - 15/05/2015 - 12:06:11 ---A- . (.Microsoft Corporation - LockScreenContent Server.) -- C:\Windows\System32\LockScreenContentServer.exe [41296]
O44 - LFC:[MD5.4C48253C6A21CCEBA071B58A5CDF17C1] - 15/05/2015 - 12:06:41 ---A- . (.Microsoft Corporation - Microsoft® C Runtime Library.) -- C:\Windows\System32\msvcr120_clr0400.dll [875688]
O44 - LFC:[MD5.8F3E99586FDAD25BD0DA0C37C6DBE1EC] - 15/05/2015 - 12:07:17 ---A- . (.Microsoft Corporation - Contrôle d’édition de texte enrichi, v7.5.) -- C:\Windows\System32\msftedit.dll [2484224]
O44 - LFC:[MD5.4720D1AF566E7C2127B4EEDDD070CA87] - 15/05/2015 - 12:08:12 ---A- . (.Microsoft Corporation - Configuration d’homologue EAP.) -- C:\Windows\System32\eappcfg.dll [278016]
O44 - LFC:[MD5.B3C49AB23E9853939CEE1C0B24663B6E] - 15/05/2015 - 12:08:12 ---A- . (.Microsoft Corporation - Microsoft EAPHost Peer Client DLL.) -- C:\Windows\System32\eappprxy.dll [56320]
O44 - LFC:[MD5.20A130BE26CBB3B50C5B19B91BED669B] - 15/05/2015 - 12:08:12 ---A- . (.Microsoft Corporation - Microsoft ThirdPartyEapDispatcher.) -- C:\Windows\System32\eapp3hst.dll [250880]
O44 - LFC:[MD5.C561022F4E2882B44BDB65AE2B0756C0] - 15/05/2015 - 12:08:12 ---A- . (.Microsoft Corporation - Service homologue EAPHost Microsoft.) -- C:\Windows\System32\eapphost.dll [266752]
O44 - LFC:[MD5.958A5388C05106844C80AEB95948A32B] - 15/05/2015 - 12:08:12 ---A- . (.Microsoft Corporation - UI générique EAP.) -- C:\Windows\System32\eappgnui.dll [91648]
O44 - LFC:[MD5.E26D49197CA9E38BCC6033DE53F720BD] - 15/05/2015 - 12:09:05 ---A- . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\System32\calc.exe [816128]
O44 - LFC:[MD5.F866E2145CEC0F6839B9AD24F9E60EE5] - 15/05/2015 - 12:09:53 ---A- . (.Microsoft Corporation - Cet outil collecte les fichiers journaux du.) -- C:\Windows\System32\WSCollect.exe [83456]
O44 - LFC:[MD5.6A978C77BADD838D8A5347DBC06142A7] - 15/05/2015 - 12:09:53 ---A- . (.Microsoft Corporation - DLL WSShared.) -- C:\Windows\System32\WSShared.dll [811008]
O44 - LFC:[MD5.25921E8F3E38789C9DE9A999206F7E37] - 15/05/2015 - 12:09:53 ---A- . (.Microsoft Corporation - DLL d’exécution de l’infrastructure de test.) -- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll [210944]
O44 - LFC:[MD5.8DA2FA69A4F544B092DB43E9B3D558E4] - 15/05/2015 - 12:09:53 ---A- . (.Microsoft Corporation - DLL d’exécution du Windows Store.) -- C:\Windows\System32\Windows.ApplicationModel.Store.dll [223744]
O44 - LFC:[MD5.789CE378C176453B0E75F20D95E58BF0] - 15/05/2015 - 12:09:53 ---A- . (.Microsoft Corporation - This tool resets the Windows Store without.) -- C:\Windows\System32\WSReset.exe [78336]
O44 - LFC:[MD5.38045850ACB96313A1983A8803302906] - 15/05/2015 - 12:13:06 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe [35480]
O44 - LFC:[MD5.5D2C15BDAD48646C8CBC83903252D87C] - 15/05/2015 - 12:15:00 ---A- . (.Microsoft Corporation - Accès distant PPP EAP-TLS.) -- C:\Windows\System32\rastls.dll [514048]
O44 - LFC:[MD5.5C66E503C0ECA5C547EDA6ECF5B7E6C2] - 15/05/2015 - 12:16:10 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specificatio.) -- C:\Windows\System32\Drivers\ndis.sys [869696]
O44 - LFC:[MD5.154BC2F7D00DA9790A99787B6019535E] - 15/05/2015 - 12:16:13 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll [2459136]
O44 - LFC:[MD5.F8B2956CE0F98289F5A8D3FBF638D989] - 15/05/2015 - 12:16:24 ---A- . (.Microsoft Corporation - File Risk Estimation.) -- C:\Windows\System32\winshfhc.dll [12800]
O44 - LFC:[MD5.EFADBDDFB7AE94AE517610850EE5F293] - 15/05/2015 - 12:16:25 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [84800]
O44 - LFC:[MD5.344534CE7BC2818400053DF8462EE2FB] - 15/05/2015 - 12:16:25 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [38392]
O44 - LFC:[MD5.846680943ECE3423D5AA35A160274CE0] - 15/05/2015 - 12:16:25 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [227136]
O44 - LFC:[MD5.B2AC9E081A847ACBD5B62BE25AF39DA1] - 15/05/2015 - 12:18:15 ---A- . (.Microsoft Corporation - Microsoft SChannel Provider.) -- C:\Windows\System32\ncryptsslp.dll [88800]
O44 - LFC:[MD5.CB07788DF1639ED547F645403BECD759] - 15/05/2015 - 12:19:11 ---A- . (.Microsoft Corporation - WinRT Windows Inking DLL.) -- C:\Windows\System32\Windows.UI.Input.Inking.dll [141824]
O44 - LFC:[MD5.D1A07DE4DC408E5AA5CFBAE261919BDC] - 15/05/2015 - 12:20:27 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d’objets2.) -- C:\Windows\System32\packager.dll [72192]
O44 - LFC:[MD5.3BF6BEBD0A5666BDB426A734A4578D9B] - 15/05/2015 - 12:22:34 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [1346048]
O44 - LFC:[MD5.9E597749A44C4A39948917B5F30DE1CC] - 15/05/2015 - 12:22:59 ---A- . (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\System32\services.exe [333624]
O44 - LFC:[MD5.4CD4C8D34213975444643A5F9594E363] - 15/05/2015 - 12:24:02 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [806400]
O44 - LFC:[MD5.8F5414067D42A41490E21E46A39309E2] - 15/05/2015 - 12:24:12 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [279360]
O44 - LFC:[MD5.3E8FCF4A26FA1A75AEE64FBDE19A2290] - 15/05/2015 - 12:24:12 ---A- . (.Microsoft Corporation - Common Log Marshalling Win32 DLL.) -- C:\Windows\System32\clfsw32.dll [58880]
O44 - LFC:[MD5.3C21F7E95FFCA33EF1A83AA33D9663CF] - 15/05/2015 - 12:32:48 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [23256]
O44 - LFC:[MD5.155BF99B2B87E0C298CAC3B4B8136D83] - 15/05/2015 - 12:32:48 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [92888]
O44 - LFC:[MD5.7B527677A3A338C8F2544173DD16EE26] - 15/05/2015 - 12:32:48 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [51928]
O44 - LFC:[MD5.7EAC336CFB845753DE556D8EEDD8BD58] - 15/05/2015 - 12:32:53 ---A- . (.Microsoft Corporation - Exécuteur de file d’attente d’opérations pr.) -- C:\Windows\System32\poqexec.exe [129536]
O44 - LFC:[MD5.95BD617B467F746553AD1FC523F5D2B6] - 15/05/2015 - 12:33:45 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [36160]
O44 - LFC:[MD5.C4F65F945BB7B014DDB28B1254F6787D] - 15/05/2015 - 12:33:45 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [76096]
O44 - LFC:[MD5.E04250BEEEB22A5C323C6029C18BE5DC] - 15/05/2015 - 12:36:04 ---A- . (.Microsoft Corporation - Flux d’administration des paramètres du PC.) -- C:\Windows\System32\SystemSettingsAdminFlows.exe [224168]
O44 - LFC:[MD5.9D935FF4170E33A5F7FFC83F29BAF14C] - 15/05/2015 - 12:36:04 ---A- . (.Microsoft Corporation - Implémentation de la base de données de par.) -- C:\Windows\System32\SystemSettingsDatabase.dll [84992]
O44 - LFC:[MD5.8261C94218B98C4DE9221B463AAE4BA0] - 15/05/2015 - 12:36:04 ---A- . (.Microsoft Corporation - MDMAgent.) -- C:\Windows\System32\MDMAgent.exe [529352]
O44 - LFC:[MD5.04B1ADE1A134533441271DDEDA79C59D] - 15/05/2015 - 12:36:04 ---A- . (.Microsoft Corporation - System Settings Admin Flow XAML UI Implemen.) -- C:\Windows\System32\SystemSettingsAdminFlowUI.dll [1619968]
O44 - LFC:[MD5.570A8A49B5FFC5056E30F4169ACD3E1C] - 15/05/2015 - 12:36:04 ---A- . (.Microsoft Corporation - System settings common handler group.) -- C:\Windows\System32\SystemSettings.Handlers.dll [366592]
O44 - LFC:[MD5.C4FB74C1E96142E0A9E5DE78E3A0B494] - 15/05/2015 - 12:38:12 ---A- . (.Microsoft Corporation - Dll du fournisseur d’état de l’installation.) -- C:\Windows\System32\DeviceSetupStatusProvider.dll [28672]
O44 - LFC:[MD5.98C136EA9D0CA9C010FE49D863D29C6D] - 15/05/2015 - 12:41:20 ---A- . (.Microsoft Corporation - Crypto API32.) -- C:\Windows\System32\crypt32.dll [1612992]
O44 - LFC:[MD5.BDEB7104C079578952ECF2694D39E7DC] - 15/05/2015 - 12:50:05 ---A- . (.Microsoft Corporation - Microsoft Remote Desktop Services Web Proxy.) -- C:\Windows\System32\TSWbPrxy.exe [74240]
O44 - LFC:[MD5.2EB4CB43A7AEA50C5E36053EE0B5DE9F] - 15/05/2015 - 12:52:06 ---A- . (.Microsoft Corporation - Connaissance des emplacements réseau 2.) -- C:\Windows\System32\nlasvc.dll [314880]
O44 - LFC:[MD5.434AC762820B1C04351CB30C4884D3F7] - 15/05/2015 - 12:52:06 ---A- . (.Microsoft Corporation - Indicateur d’état de la connectivité réseau.) -- C:\Windows\System32\ncsi.dll [273408]
O44 - LFC:[MD5.DCE9FD22B136C127C85F285E083B928B] - 15/05/2015 - 12:52:06 ---A- . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll [65536]
O44 - LFC:[MD5.D8E41C1A50FC1E51F3594EFCE56BE860] - 15/05/2015 - 12:54:04 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [124928]
O44 - LFC:[MD5.91E24273FCA076EA9E65DAFA98901225] - 15/05/2015 - 12:54:22 ---A- . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe [2207488]
O44 - LFC:[MD5.4B9586A61E98A403DAE98D4E62860081] - 15/05/2015 - 12:54:24 ---A- . (.Microsoft Corporation - Modifier les paramètres de l’imprimante.) -- C:\Windows\System32\printui.exe [61952]
O44 - LFC:[MD5.8D61AE7FE763CBC3B351D6C2659814F0] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - DLL de fournisseur d’impression DAF.) -- C:\Windows\System32\DafPrintProvider.dll [203776]
O44 - LFC:[MD5.18C893EF608690C2D6B215F78A4DD8D5] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll [873984]
O44 - LFC:[MD5.14D2FCFA2D7D9781D7AA167E324E3E8F] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - DLL d’interface utilisateur de feuille des.) -- C:\Windows\System32\compstui.dll [289280]
O44 - LFC:[MD5.34D389FFF7935BD3BB6E1DE6D7E40FE8] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - DLL d’objets PrintUI.) -- C:\Windows\System32\puiobj.dll [367104]
O44 - LFC:[MD5.35539720B7EFE9B2C8E0213EF7C7461E] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - DLL puiapi.) -- C:\Windows\System32\puiapi.dll [167424]
O44 - LFC:[MD5.B032B91ED45EFE15EBFB6CD381B3B4FE] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - Find Network Printers COM Component.) -- C:\Windows\System32\findnetprinters.dll [55808]
O44 - LFC:[MD5.590EB39B3269B03756B7387F87B7FC20] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll [602624]
O44 - LFC:[MD5.CA1E78B56BA270B93AE9047BB62BCD6B] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - pmcsnap dll.) -- C:\Windows\System32\pmcsnap.dll [730624]
O44 - LFC:[MD5.12234066BCB4B9E488F32A0F73615413] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - ppcsnap DLL.) -- C:\Windows\System32\ppcsnap.dll [238592]
O44 - LFC:[MD5.6855C34F63F8F7FB540BAA88DE1CA9D9] - 15/05/2015 - 12:54:25 ---A- . (.Microsoft Corporation - prnntfy DLL.) -- C:\Windows\System32\prnntfy.dll [199168]
O44 - LFC:[MD5.5EB5142C178BED2C4372406203B9BC1D] - 15/05/2015 - 12:54:32 ---A- . (.Microsoft Corporation - Bibliothèque partagée MFCDLL - Version comm.) -- C:\Windows\System32\mfc42.dll [1204224]
O44 - LFC:[MD5.E094D21FE482A0DC59056B6B9D421B07] - 15/05/2015 - 12:54:33 ---A- . (.Microsoft Corporation - Bibliothèque partagée MFCDLL - Version comm.) -- C:\Windows\System32\mfc42u.dll [1230336]
O44 - LFC:[MD5.08B8F2E5FAAC73EF1AFD99B2AEC104FD] - 15/05/2015 - 12:54:33 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_47.dll [3551744]
O44 - LFC:[MD5.4577BA56C4FA74F8D12870420AEFE074] - 15/05/2015 - 12:54:33 ---A- . (.Microsoft Corporation - atlthunk.dll.) -- C:\Windows\System32\atlthunk.dll [35840]
O44 - LFC:[MD5.7C29FBB11679B9B4F08D5AA771DABD90] - 15/05/2015 - 12:54:35 ---A- . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll [358912]
O44 - LFC:[MD5.1F6FF782DCFAF4CBBD3D9DB3CAB63B6A] - 15/05/2015 - 12:54:36 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périp.) -- C:\Windows\System32\Drivers\hidbth.sys [83456]
O44 - LFC:[MD5.D4A564BABFF82F56E68835FBFDA7AB00] - 15/05/2015 - 12:54:37 ---A- . (...) -- C:\Windows\System32\locale.nls [513488]
O44 - LFC:[MD5.E398551943ABF67B0849C3049140056B] - 15/05/2015 - 12:54:37 ---A- . (.Microsoft Corporation - HôteClassementGlobal.) -- C:\Windows\System32\GlobCollationHost.dll [200704]
O44 - LFC:[MD5.A830881BBCDE47DB73E6EF2E0640C193] - 15/05/2015 - 12:54:37 ---A- . (.Microsoft Corporation - Windows Globalization.) -- C:\Windows\System32\Windows.Globalization.dll [868352]
O44 - LFC:[MD5.D5496CF5DF8921CFC1EF1770F98C2192] - 15/05/2015 - 12:54:38 ---A- . (.Microsoft Corporation - Microsoft Windows MRM.) -- C:\Windows\System32\MrmCoreR.dll [791040]
O44 - LFC:[MD5.5E88986E655935B4D68B964A47A9BFB7] - 15/05/2015 - 12:54:38 ---A- . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll [208896]
O44 - LFC:[MD5.3EE4808DA6AFB088E1111A2CA620E521] - 15/05/2015 - 12:54:41 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [22848]
O44 - LFC:[MD5.39D9DBCB87F127AA740DAB4D7B200DB7] - 15/05/2015 - 12:54:41 ---A- . (.Microsoft Corporation - Microsoft RemoteFX VM Transport.) -- C:\Windows\System32\rfxvmt.dll [33792]
O44 - LFC:[MD5.777A2903082CA816CF57878A81DE1B61] - 15/05/2015 - 12:54:41 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [200000]
O44 - LFC:[MD5.F0ECF90E78A43D06BA86D9FE5133FACA] - 15/05/2015 - 12:54:41 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [131904]
O44 - LFC:[MD5.1EC9D299CC381C07594F8E18C2082835] - 15/05/2015 - 12:54:41 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [117248]
O44 - LFC:[MD5.91EFE0A08799ACBB732FE7C9E653F079] - 15/05/2015 - 12:54:42 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [2975744]
O44 - LFC:[MD5.8F36AA9EDF2A4118992F94E5E0DBB2B3] - 15/05/2015 - 12:54:43 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [65536]
O44 - LFC:[MD5.498D5BC0289F8DD995FEEE8E7CD906CA] - 15/05/2015 - 12:54:43 ---A- . (.Microsoft Corporation - Codec pour photographie Windows Media Photo.) -- C:\Windows\System32\WMPhoto.dll [357376]
O44 - LFC:[MD5.FBB116D627CBE7D8DD73A6AF7DE187F3] - 15/05/2015 - 12:54:43 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [260096]
O44 - LFC:[MD5.001692647D6A62D05B40CD388FC60C3B] - 15/05/2015 - 12:54:44 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers.dll [2241024]
O44 - LFC:[MD5.95AB9B30166221ED22E43290D47198CD] - 15/05/2015 - 12:55:11 ---A- . (.Microsoft Corporation - Photo Metadata Handler.) -- C:\Windows\System32\PhotoMetadataHandler.dll [364544]
O44 - LFC:[MD5.3250046189DF6429ECD93D9B483C62C7] - 15/05/2015 - 12:55:12 ---A- . (.Microsoft Corporation - Bibliothèque principale du Gestionnaire de.) -- C:\Windows\System32\dwmcore.dll [1943040]
O44 - LFC:[MD5.032D9982B72E4F9A9B62A43B4CEDB072] - 15/05/2015 - 12:55:12 ---A- . (.Microsoft Corporation - Extension de l’environnement des appareils.) -- C:\Windows\System32\wpdshext.dll [1969664]
O44 - LFC:[MD5.502865C0DFD9008033CE18B4FDF5A125] - 15/05/2015 - 12:55:12 ---A- . (.Microsoft Corporation - Gestionnaire d’exécution automatique d’exte.) -- C:\Windows\System32\WPDShextAutoplay.exe [26624]
O44 - LFC:[MD5.2CC0E5DC1650A5247638C8B1C1004828] - 15/05/2015 - 12:55:12 ---A- . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\Windows\System32\WPDShServiceObj.dll [86528]
O44 - LFC:[MD5.1F712F324B45457509C520CABC4970C3] - 15/05/2015 - 12:55:32 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [738112]
O44 - LFC:[MD5.D94A6E35D5CF73BC4AADAB104825E7E4] - 15/05/2015 - 12:55:33 ---A- . (.Microsoft Corporation - Framebuffer Display Driver.) -- C:\Windows\System32\workerdd.dll [12800]
O44 - LFC:[MD5.D9E63684F7DFD835051E88551B95DE61] - 15/05/2015 - 12:55:33 ---A- . (.Microsoft Corporation - Service du gestionnaire de session locale.) -- C:\Windows\System32\lsm.dll [667648]
O44 - LFC:[MD5.69304975B8DF00BDC9567AAAF97791F2] - 15/05/2015 - 12:55:38 ---A- . (.Microsoft Corporation - Screen Reader Helper DLL.) -- C:\Windows\System32\SRH.dll [1812992]
O44 - LFC:[MD5.632A23DA33B53B9B33AC504E0C8300F8] - 15/05/2015 - 12:55:43 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d’arrière-.) -- C:\Windows\System32\ubpm.dll [162304]
O44 - LFC:[MD5.2807EC1167D79735E4F9A964E76F071C] - 15/05/2015 - 12:56:10 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [187904]
O44 - LFC:[MD5.EB75202872E2A233CA0C4E84D122B266] - 15/05/2015 - 12:56:30 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [35840]
O44 - LFC:[MD5.1E14074826BCDAC8764743D8F92E6CFE] - 15/05/2015 - 12:56:30 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [301056]
O44 - LFC:[MD5.42CF6C97F1F87DA34451EF0E2B0F411A] - 15/05/2015 - 12:56:30 ---A- . (.Microsoft Corporation - DCI Manager.) -- C:\Windows\System32\dciman32.dll [11776]
O44 - LFC:[MD5.C388460B936AC64BA6FA26D69E949E98] - 15/05/2015 - 12:56:30 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\System32\fontsub.dll [77824]
O44 - LFC:[MD5.A21697CB0D4719CB0944EAB89954645C] - 15/05/2015 - 12:56:30 ---A- . (.Microsoft Corporation - Language Pack.) -- C:\Windows\System32\lpk.dll [3072]
O44 - LFC:[MD5.4B56EAB79339F37E0C5B325405C4FF95] - 15/05/2015 - 12:56:40 ---A- . (.Microsoft Corporation - Microsoft Windows Codecs Library.) -- C:\Windows\System32\WindowsCodecs.dll [1488040]
O44 - LFC:[MD5.D14C3D8CEBE73EBE60759C3C0CBBDCCB] - 15/05/2015 - 12:57:01 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [376128]
O44 - LFC:[MD5.E24B133494DBAA14D09EAE279B7AE867] - 15/05/2015 - 12:57:22 ---A- . (.Microsoft Corporation - DPAPI Server.) -- C:\Windows\System32\dpapisrv.dll [147968]
O44 - LFC:[MD5.46DE9C72EE0F23B9AB6A625214C16FE3] - 15/05/2015 - 12:57:26 ---A- . (.Microsoft Corporation - DLL de MSCTF Server.) -- C:\Windows\System32\msctf.dll [1124352]
O44 - LFC:[MD5.5CE33B8007CDAD032E3E081F5FD4C0CB] - 15/05/2015 - 12:57:51 ---A- . (.Microsoft Corporation - DLL du moniteur de port du Journal Windows.) -- C:\Windows\System32\jnwmon.dll [20480]
O44 - LFC:[MD5.CCE72211E7FC16D21ABB65560B7D4E1B] - 15/05/2015 - 12:57:51 ---A- . (.Microsoft Corporation - Microsoft Tablet PC InkEdit Control.) -- C:\Windows\System32\InkEd.dll [230912]
O44 - LFC:[MD5.B1EF65066A743E04E5260E475D65C6A0] - 15/05/2015 - 12:57:58 ---A- . (.Microsoft Corporation - Software Protection Platform Plugins.) -- C:\Windows\System32\sppobjs.dll [1192552]
O44 - LFC:[MD5.84AA915A6833DFEF3F28730189E53B5A] - 15/05/2015 - 12:58:45 ---A- . (.Microsoft Corporation - Service journal des événements.) -- C:\Windows\System32\wevtsvc.dll [1328640]
O44 - LFC:[MD5.74887EBB4777EC450EF167645C99163E] - 15/05/2015 - 12:59:07 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\oleaut32.dll [602776]
O44 - LFC:[MD5.7875CF65A8A7C886CCC2CA5B66ADAACC] - 15/05/2015 - 12:59:28 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control.) -- C:\Windows\System32\Drivers\bthhfenum.sys [49664]
O44 - LFC:[MD5.8793CB54F88DAC3B87D86DA31FBE3526] - 15/05/2015 - 12:59:28 ---A- . (.Microsoft Corporation - Service mains libre Bluetooth.) -- C:\Windows\System32\BthHFSrv.dll [250880]
O44 - LFC:[MD5.D1A8B05080045EFBDE290458B120F57D] - 15/05/2015 - 12:59:42 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [166400]
O44 - LFC:[MD5.8C5AC6E142A13CA7E26EC0487DD8D7D8] - 15/05/2015 - 12:59:42 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [14848]
O44 - LFC:[MD5.35BEC56B1460B4A2586BADED6F760AC3] - 15/05/2015 - 12:59:43 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3040768]
O44 - LFC:[MD5.23957F4FCA930B9FCC40F6935AF52718] - 15/05/2015 - 12:59:43 ---A- . (.Microsoft Corporation - Windows Setup UI.) -- C:\Windows\System32\WinSetupUI.dll [183808]
O44 - LFC:[MD5.1F457FACEBEE5F9C3882163FF9A51AFC] - 15/05/2015 - 12:59:44 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [721920]
O44 - LFC:[MD5.B69E6C59F77E16FDA524517C01C37257] - 15/05/2015 - 12:59:44 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [2309120]
O44 - LFC:[MD5.9A1B278F133E68D081ACF26CCCA8075F] - 15/05/2015 - 12:59:44 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [333312]
O44 - LFC:[MD5.8CFC7E67F92588E880D3543F49BA0299] - 15/05/2015 - 12:59:44 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [23552]
O44 - LFC:[MD5.2D177435983B132853BCFC07BB389A22] - 15/05/2015 - 12:59:44 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [125472]
O44 - LFC:[MD5.1DAD87D13FE06EF4ECD873A1DDF445E3] - 15/05/2015 - 12:59:45 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [29696]
O44 - LFC:[MD5.A7964350B8F9E26679225CB897A522A4] - 15/05/2015 - 12:59:45 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [124928]
O44 - LFC:[MD5.9C8D7CE66075A93954F3082CD6896F0D] - 15/05/2015 - 12:59:45 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [81920]
O44 - LFC:[MD5.CBEF7D91BEFC6DD37B368627CEAD37B3] - 15/05/2015 - 12:59:45 ---A- . (.Microsoft Corporation - Windows Update client proxy stub for intern.) -- C:\Windows\System32\wu.upgrade.ps.dll [11776]
O44 - LFC:[MD5.307FED3A389198547D6446693E8FEFAA] - 15/05/2015 - 12:59:45 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [27136]
O44 - LFC:[MD5.9D17F78BB04A3EF67426AFD087660188] - 15/05/2015 - 13:00:06 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [410017]
O44 - LFC:[MD5.1663E8E480EDD51FEEFDAF46E3949A9C] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Bibliothèque de l’application auxiliaire de.) -- C:\Windows\System32\tdh.dll [749568]
O44 - LFC:[MD5.A2AE5C4AE0E64B39687EBD015293A531] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Host for SCM/SDDL/LSA Lookup APIs.) -- C:\Windows\System32\sechost.dll [257216]
O44 - LFC:[MD5.4586DE27ED33B129CDEE1AD22E4DB172] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Microsoft-Windows-Système-Ressources des év.) -- C:\Windows\System32\microsoft-windows-system-events.dll [246272]
O44 - LFC:[MD5.F242D97F626E85028B49BB0ABE2D6ADD] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Moniteur de performance de la ligne de comm.) -- C:\Windows\System32\typeperf.exe [41472]
O44 - LFC:[MD5.C1A8175D03884045F1D266D3D8B902DC] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Outil de rapport de suivi d’événements.) -- C:\Windows\System32\tracerpt.exe [369152]
O44 - LFC:[MD5.4A1B27C7F905390DC6C428D6170D54DD] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Utilitaire de configuration des performance.) -- C:\Windows\System32\diskperf.exe [17920]
O44 - LFC:[MD5.360B18A3C1D4829270E1C362B136B139] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Utilitaire de réenregistrement de Performan.) -- C:\Windows\System32\relog.exe [38400]
O44 - LFC:[MD5.A9B142160CB1CBD4A6077D616D899E20] - 15/05/2015 - 13:00:14 ---A- . (.Microsoft Corporation - Utilitaire d’enregistrement des Performance.) -- C:\Windows\System32\logman.exe [87552]
O44 - LFC:[MD5.8FE572BEECB909FD4244B84A40DE3181] - 15/05/2015 - 13:00:15 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll [1468920]
O44 - LFC:[MD5.28FDFA4450FCD56566F7140B9CE37C29] - 15/05/2015 - 13:00:15 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [5782848]
O44 - LFC:[MD5.332625D3A96613A7CBC66B04F307F2FA] - 15/05/2015 - 13:00:18 ---A- . (.Microsoft Corporation - Moteur de l’Éditeur de configuration de séc.) -- C:\Windows\System32\scesrv.dll [393728]
O44 - LFC:[MD5.0FDCB0931B57280D59942556A6706372] - 15/05/2015 - 13:00:47 ---A- . (.Microsoft Corporation - Programme d’installation de la base de donn.) -- C:\Windows\System32\sdbinst.exe [21504]
O44 - LFC:[MD5.D68E4BB319669FE997AB5C3BB89E8602] - 15/05/2015 - 13:00:47 ---A- . (.Microsoft Corporation - Shim Engine DLL.) -- C:\Windows\System32\shimeng.dll [5632]
O44 - LFC:[MD5.E19419D65D429FFF37B2FBA2C29F9E5C] - 15/05/2015 - 13:00:48 ---A- . (.Microsoft Corporation - Fichier DLL du client de compatibilité des.) -- C:\Windows\System32\apphelp.dll [642560]
O44 - LFC:[MD5.574C081E0026E2186F2B685B9507A64A] - 15/05/2015 - 13:00:56 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [330752]
O44 - LFC:[MD5.11386929817578527304A361458A51C7] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Application Experience Program Cache.) -- C:\Windows\System32\aepic.dll [159744]
O44 - LFC:[MD5.C43E8BAF978ECB235495149B334B7F8E] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [896000]
O44 - LFC:[MD5.21242721337EA3C981E81BBF0AFB5DFF] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Compatibility Appraiser.) -- C:\Windows\System32\appraiser.dll [859648]
O44 - LFC:[MD5.B292BAF7774709F16EBD10DFE8ACF611] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Compatibility Upgrade Migration Host.) -- C:\Windows\System32\acmigration.dll [26112]
O44 - LFC:[MD5.6106AEC20A5199FA0F3EE25345FA29AC] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [576000]
O44 - LFC:[MD5.AA63E841E7A0F1BC16BB6410BBC59D43] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Inventory Agent.) -- C:\Windows\System32\invagent.dll [630272]
O44 - LFC:[MD5.C2F84BE01DAFC9274DE2E96A4312B2EB] - 15/05/2015 - 13:00:57 ---A- . (.Microsoft Corporation - Program Compatibility Data Updater.) -- C:\Windows\System32\aepdu.dll [202752]
O44 - LFC:[MD5.697177C5242095DBDB3A3B52DD27C400] - 15/05/2015 - 13:01:40 ---A- . (.Microsoft Corporation - Windows Image Helper.) -- C:\Windows\System32\dbghelp.dll [1207296]
O44 - LFC:[MD5.3C2B9089839D283DD6F91CF5F0748D1D] - 15/05/2015 - 13:01:41 ---A- . (.Microsoft Corporation - Windows Symbolic Debugger Engine.) -- C:\Windows\System32\dbgeng.dll [2985984]
O44 - LFC:[MD5.53670AE50F15C82990FCF599B02C6B36] - 15/05/2015 - 13:04:30 ---A- . (.Microsoft Corporation - DLL des événements d’audit de la sécurité.) -- C:\Windows\System32\msaudite.dll [154112]
O44 - LFC:[MD5.FFE2F54DA7DE767C943F18823913EC07] - 15/05/2015 - 13:04:30 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll [736768]
O44 - LFC:[MD5.138D222C59F93DCCDA0E6300A42CA41A] - 15/05/2015 - 13:04:31 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1117696]
O44 - LFC:[MD5.90F728E4217F6FAEEFC20168C5F3B219] - 15/05/2015 - 13:04:31 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [478776]
O44 - LFC:[MD5.5E31F868190E2E5250237B45743BD6AB] - 15/05/2015 - 13:04:31 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [148288]
O44 - LFC:[MD5.C77083F7140147350DD753FEF77840C3] - 15/05/2015 - 13:46:16 ---A- . (.Microsoft Corporation - Code Integrity Module (Test).) -- C:\Windows\System32\ci.dll [485544]
O44 - LFC:[MD5.7B2643AE85322EA168B0E760B73258FF] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [424544]
O44 - LFC:[MD5.4B07B24705A9225EB565650569BDA26B] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [344536]
O44 - LFC:[MD5.1EB1C1E43C1901865C5AE34A9771C069] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - DLL du rapport d’erreurs Windows.) -- C:\Windows\System32\wer.dll [448792]
O44 - LFC:[MD5.1F9C1925A85C6CC592C2FF612A610412] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - DLL du rapport d’incident dans le mode util.) -- C:\Windows\System32\Faultrep.dll [372408]
O44 - LFC:[MD5.A01B0939BA968C55A0FF4D9887FD8B17] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [194048]
O44 - LFC:[MD5.BB24FF761356F73A766AA045D0EBA6C3] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [213336]
O44 - LFC:[MD5.113BD0A72F01015F1D9C787527499119] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [108944]
O44 - LFC:[MD5.D9F17FC61102D89A67A2AA3DD21231F5] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Rapport d’erreurs Windows.) -- C:\Windows\System32\WerFaultSecure.exe [33584]
O44 - LFC:[MD5.1275462A4337DBC5518859316BEF262C] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Rapports de problèmes Windows.) -- C:\Windows\System32\WerFault.exe [413136]
O44 - LFC:[MD5.CA6D6C5491ADD0AD73CB4FA452D30C85] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [694272]
O44 - LFC:[MD5.B5867FF96CD0F7712CB4985EAC9F9147] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [370424]
O44 - LFC:[MD5.BFFD9961B29DAB8084278DB2314D6027] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - WER Diagnostic Controller.) -- C:\Windows\System32\werdiagcontroller.dll [33280]
O44 - LFC:[MD5.7C36A441C73F079781ABA8F3DAEDFB37] - 15/05/2015 - 13:46:17 ---A- . (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [136296]
O44 - LFC:[MD5.A8B72561E67739D416C4BB3A62EC7331] - 15/05/2015 - 18:17:43 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [102608]
O44 - LFC:[MD5.6FFB351C9C9BB88E91785F4CD7396D31] - 15/05/2015 - 20:58:35 ---A- . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\Drivers\HWiNFO32.SYS [23840]
O44 - LFC:[MD5.BC6B38664519A8C6FC7BC92342A3B04E] - 15/05/2015 - 21:18:34 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Dr.) -- C:\Windows\System32\Drivers\Rt630x86.sys [741080]
O44 - LFC:[MD5.C39C216B3E68AB28174D7362B4B70D65] - 15/05/2015 - 21:18:34 ---A- . (.Realtek Semiconductor Corporation - About Page.) -- C:\Windows\System32\RtNicProp32.dll [76872]
O44 - LFC:[MD5.CC17B6324F069983A543AED256F7F5B5] - 15/05/2015 - 21:40:37 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (32-bit).) -- C:\Windows\System32\AERTACap.dll [519368]
O44 - LFC:[MD5.4C22D3E1F05E0866665E0BA023D747C3] - 15/05/2015 - 21:40:38 ---A- . (...) -- C:\Windows\System32\audioLibVc.dll [87864]
O44 - LFC:[MD5.CDFE3F42FFCFEF5F417AD42C27ED992A] - 15/05/2015 - 21:40:39 ---A- . (.Conexant Systems Inc. - Conexant APO.) -- C:\Windows\System32\CX32APO.dll [1476800]
O44 - LFC:[MD5.E79163920E5452D61AC9C839553548CE] - 15/05/2015 - 21:40:40 ---A- . (.Dolby Laboratories - Dolby Digital Plus API x86.) -- C:\Windows\System32\DDPA32.dll [221528]
O44 - LFC:[MD5.2C65EE7F65429CA252E7DE3444825E26] - 15/05/2015 - 21:40:40 ---A- . (.Dolby Laboratories - Dolby Digital Plus COM DLL x86.) -- C:\Windows\System32\DDPD32A.dll [1490264]
O44 - LFC:[MD5.2F7E93104528655436175CF02D12B677] - 15/05/2015 - 21:40:41 ---A- . (.Dolby Laboratories - Dolby DS1PC Control Panel x86.) -- C:\Windows\System32\DDPP32A.dll [7044952]
O44 - LFC:[MD5.6BF9EE54236104920B761C7B2B03694D] - 15/05/2015 - 21:40:41 ---A- . (.Dolby Laboratories - Dolby Digital Plus APO x86.) -- C:\Windows\System32\DDPO32A.dll [274264]
O44 - LFC:[MD5.1C6C75F90BB42826CD1413494154FD5A] - 15/05/2015 - 21:40:45 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO.dll [2806808]
O44 - LFC:[MD5.F2EBB448935A1E2C955B01895E7A5A8F] - 15/05/2015 - 21:40:49 ---A- . (.ICEpower a/s - ICEpower ICEsound audio effects.) -- C:\Windows\System32\ICEsoundAPO.dll [296560]
O44 - LFC:[MD5.A116AA84BBCE78A398A86EF3D9F5A53F] - 15/05/2015 - 21:40:51 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO50.dll [1175888]
O44 - LFC:[MD5.21AB67B802C7542F94551DF440B25AA2] - 15/05/2015 - 21:40:51 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO60.dll [1151232]
O44 - LFC:[MD5.99DE7F0838685CE9F4C39E58FEE6F48B] - 15/05/2015 - 21:40:52 ---A- . (.Waves Audio Ltd. - MaxxAudio APO Shell.) -- C:\Windows\System32\MaxxAudioAPOShell.dll [790272]
O44 - LFC:[MD5.DBD0BFA768451298629A9DA13033DB02] - 15/05/2015 - 21:40:52 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO70.dll [2370480]
O44 - LFC:[MD5.8EA2664F61CD4F8E9660092CEC7271A5] - 15/05/2015 - 21:40:54 ---A- . (.Waves Audio Ltd. - MaxxVoice APO.) -- C:\Windows\System32\MaxxVoiceAPO20.dll [818000]
O44 - LFC:[MD5.DADED743B7BA684C82679EF3876AF4C8] - 15/05/2015 - 21:40:54 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioRealtek.dll [13789440]
O44 - LFC:[MD5.BD7444CD1C4C4912656A7F0EA2C43036] - 15/05/2015 - 21:40:55 ---A- . (.Waves Audio Ltd. - MaxxVoice APO.) -- C:\Windows\System32\MaxxVoiceAPO30.dll [11884288]
O44 - LFC:[MD5.8C6039F95F04FB50C9DB8C888BADCA83] - 15/05/2015 - 21:40:56 ---A- . (.Waves Audio Ltd. - MaxxVoice APO.) -- C:\Windows\System32\MaxxVoiceAPO40.dll [11785136]
O44 - LFC:[MD5.9B5944C94F01E70007823B91AD98E643] - 15/05/2015 - 21:40:58 ---A- . (.Nahimic Inc - Nahimic APO lfx dll.) -- C:\Windows\System32\NAHIMICAPOlfx.dll [4713224]
O44 - LFC:[MD5.8EFA36770AF57FA9AA65841053577C44] - 15/05/2015 - 21:40:59 ---A- . (.Nahimic Inc - Nahimic APO Settings Communication Dll.) -- C:\Windows\System32\NahimicAPONSControl.dll [945456]
O44 - LFC:[MD5.F343217AF0E785F6ACF510054B9851EE] - 15/05/2015 - 21:41:00 ---A- . (.Nahimic Inc - Nahimic APO lfx dll.) -- C:\Windows\System32\NAHIMICV2apo.dll [4993984]
O44 - LFC:[MD5.1784CED4D2C0E07A9CC2A095EEF8CEBF] - 15/05/2015 - 21:41:02 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes.dat [72113152]
O44 - LFC:[MD5.BF5E0D0788EFE22870DB0920E2952B2A] - 15/05/2015 - 21:41:04 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RltkAPO.dll [2531544]
O44 - LFC:[MD5.A54940F72EA866484984D2EA8FF4CC7D] - 15/05/2015 - 21:41:05 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [2014958]
O44 - LFC:[MD5.403265C3B6273D4DEC65E7B3BEF3B631] - 15/05/2015 - 21:41:11 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApoApi.dll [2381680]
O44 - LFC:[MD5.43E95C54732714D40DD228BDD24154DA] - 15/05/2015 - 21:41:11 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoInstII.dll [1702616]
O44 - LFC:[MD5.48323AA61C358607574C7A8F305FE743] - 15/05/2015 - 21:41:12 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtkPgExt.dll [2623192]
O44 - LFC:[MD5.3D4799C3109D0913C6B3764FC0148CB9] - 15/05/2015 - 21:41:12 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [3498712]
O44 - LFC:[MD5.7D7FBC9504575D97885A858EA93684F5] - 15/05/2015 - 21:41:13 ---A- . (...) -- C:\Windows\System32\Drivers\rtvienna.dat [5804772]
O44 - LFC:[MD5.C2C093A853C59696F3E6455E6699464A] - 15/05/2015 - 21:41:13 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSndMgr.cpl [2637528]
O44 - LFC:[MD5.0A475144D8CF89543115666595E5D289] - 15/05/2015 - 21:41:13 ---A- . (.Sound Research, Corp. - SEAPO.DLL.) -- C:\Windows\System32\SEAPO32.dll [372368]
O44 - LFC:[MD5.9186B047F1DEF8947F806D273C4905F3] - 15/05/2015 - 21:41:13 ---A- . (.Sound Research, Corp. - SECOMN.DLL.) -- C:\Windows\System32\SECOMN32.dll [544400]
O44 - LFC:[MD5.961EC03ECF545148F626D53B924B3A6F] - 15/05/2015 - 21:41:13 ---A- . (.Sound Research, Corp. - SEHDRA.DLL.) -- C:\Windows\System32\SEHDRA32.dll [695440]
O44 - LFC:[MD5.034BD761D1B942710FDC0F015CB91980] - 15/05/2015 - 21:41:14 ---A- . (.DTS, Inc. - DTS Studio Sound.) -- C:\Windows\System32\sl3apo32.dll [865960]
O44 - LFC:[MD5.4DB1C5B6E27258B90197038F999E9200] - 15/05/2015 - 21:41:15 ---A- . (.SRS Labs, Inc. - SRS Labs.) -- C:\Windows\System32\slcnt32.dll [1022120]
O44 - LFC:[MD5.F5153A491D95C7DACE6BC6BFC8DCA1FC] - 15/05/2015 - 21:41:16 ---A- . (.DTS, Inc. - DTS Studio Sound.) -- C:\Windows\System32\sltech32.dll [611496]
O44 - LFC:[MD5.8F8B0AD16B154448D81A88FF736B53BD] - 15/05/2015 - 21:41:16 ---A- . (.Synopsys, Inc. - SRAPO.DLL.) -- C:\Windows\System32\SRAPO.dll [388752]
O44 - LFC:[MD5.48435D12B45AB1F954CB579D1EA15D52] - 15/05/2015 - 21:41:16 ---A- . (.Synopsys, Inc. - SRCOM.DLL.) -- C:\Windows\System32\SRCOM.dll [329360]
O44 - LFC:[MD5.B798330BE64AA2A82F293CF9B1A3E251] - 15/05/2015 - 21:41:16 ---A- . (.TODO: - TODO: .) -- C:\Windows\System32\slprp32.dll [223912]
O44 - LFC:[MD5.316C6609984802B43C34209FE5256BCC] - 15/05/2015 - 21:41:17 ---A- . (.Synopsys, Inc. - SRRPTR.DLL.) -- C:\Windows\System32\SRRPTR.dll [1055888]
O44 - LFC:[MD5.7E8B3D16C3317C264089F67E53EE0003] - 15/05/2015 - 21:41:17 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement APO.) -- C:\Windows\System32\tadefxapo2.dll [844192]
O44 - LFC:[MD5.FD6EEA9E5084065A7783CE4E6FB5524E] - 15/05/2015 - 21:41:18 ---A- . (.TOSHIBA Corporation - TOSHIBA Speaker Audio Enhancement Maximizer.) -- C:\Windows\System32\tossaemaxapo32.dll [220088]
O44 - LFC:[MD5.0E3DC1FB9710427224ABB72956B75F98] - 15/05/2015 - 21:49:56 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [480768]
O44 - LFC:[MD5.BC831661963763AC4D504C5CABB1FDD9] - 15/05/2015 - 22:28:15 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_24.dll [2222800]
O44 - LFC:[MD5.5B48FE9D6686F0D54B26A005ACE24D1D] - 15/05/2015 - 22:28:26 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_25.dll [2337488]
O44 - LFC:[MD5.523AB607EEF81CC4D909E7FEBD8A788E] - 15/05/2015 - 22:28:30 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_26.dll [2297552]
O44 - LFC:[MD5.852EDC778A7A50077694F84D8E601234] - 15/05/2015 - 22:28:34 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_27.dll [2319568]
O44 - LFC:[MD5.BE19B603DFBAA829EE5B7749B3BA97DB] - 15/05/2015 - 22:28:39 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_28.dll [2323664]
O44 - LFC:[MD5.99F4FC172A5ACE36CF00AA7038D23F2C] - 15/05/2015 - 22:28:41 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_29.dll [2332368]
O44 - LFC:[MD5.4E961525CC7FF0E5D7DA19E170B7C14C] - 15/05/2015 - 22:28:42 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_0.dll [14032]
O44 - LFC:[MD5.2112FE0C46662D429347A7D7B49E3ECE] - 15/05/2015 - 22:28:43 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_0.dll [230096]
O44 - LFC:[MD5.E415862612E65F10D7D888443ECD7594] - 15/05/2015 - 22:28:47 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_30.dll [2388176]
O44 - LFC:[MD5.7C9952111F4C743B9F0D8B68B6ED93C9] - 15/05/2015 - 22:29:32 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_1.dll [229584]
O44 - LFC:[MD5.F1726346E583442541FE73429F8E9C10] - 15/05/2015 - 22:29:33 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_1.dll [62672]
O44 - LFC:[MD5.5C4D3843B491C047B7A619901FBD2EC1] - 15/05/2015 - 22:29:38 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_2.dll [230168]
O44 - LFC:[MD5.33B62BE226934E1B01F5043870C70427] - 15/05/2015 - 22:29:39 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_2.dll [62744]
O44 - LFC:[MD5.69D841744B2BAE38FBB2D40A230A549C] - 15/05/2015 - 22:29:39 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_3.dll [236824]
O44 - LFC:[MD5.797E24743937D67D69F28F2CF5052EE8] - 15/05/2015 - 22:29:41 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_31.dll [2414360]
O44 - LFC:[MD5.6550E1A0A7BE611592C31222FCB981FB] - 15/05/2015 - 22:29:42 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_4.dll [237848]
O44 - LFC:[MD5.26AF232140C88B42D92A88F2198EDF6A] - 15/05/2015 - 22:29:46 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_32.dll [3426072]
O44 - LFC:[MD5.6F34F7405807DCBF0B9BF6811C94C6D9] - 15/05/2015 - 22:29:47 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10.dll [440080]
O44 - LFC:[MD5.86C93789E9006F1AC47ED9DD47D4C8A1] - 15/05/2015 - 22:29:48 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_5.dll [251672]
O44 - LFC:[MD5.39000E033D39D19CCCE21AEAFCCE2476] - 15/05/2015 - 22:29:49 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_6.dll [255848]
O44 - LFC:[MD5.CDB1CD22BAFF21F48606B3C1A18B000B] - 15/05/2015 - 22:29:52 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_33.dll [3495784]
O44 - LFC:[MD5.FAE7E1D578C42A7C3D9D61A99D178BD5] - 15/05/2015 - 22:29:53 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_33.dll [1123696]
O44 - LFC:[MD5.37A8171ACCF46A9C196054066C28827F] - 15/05/2015 - 22:29:53 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_33.dll [443752]
O44 - LFC:[MD5.121B131EAA369D8F58DACC5C39A77D80] - 15/05/2015 - 22:29:54 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_1.dll [15128]
O44 - LFC:[MD5.7FEBB8CE2233CBAE738B16D42ED29674] - 15/05/2015 - 22:29:54 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_7.dll [261480]
O44 - LFC:[MD5.77F595DEE5FFACEA72B135B1FCE1312E] - 15/05/2015 - 22:29:56 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_3.dll [81768]
O44 - LFC:[MD5.1CA939918ED1B930059B3A882DE6F648] - 15/05/2015 - 22:29:57 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_34.dll [3497832]
O44 - LFC:[MD5.75F206C195BBACA6EF28565B1C0CD75C] - 15/05/2015 - 22:29:59 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_34.dll [1124720]
O44 - LFC:[MD5.5AA9987F2E62B56D7661B6901901F927] - 15/05/2015 - 22:30:00 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_34.dll [443752]
O44 - LFC:[MD5.499210C45AFEAADEE8CF4DCF7D5E570B] - 15/05/2015 - 22:30:01 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_8.dll [266088]
O44 - LFC:[MD5.3EF18B78D17C962F2B71AC1CB7757684] - 15/05/2015 - 22:30:11 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_35.dll [3727720]
O44 - LFC:[MD5.5B441670A4F5F8BCCE76741902B8AF56] - 15/05/2015 - 22:30:13 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_35.dll [1358192]
O44 - LFC:[MD5.F3764552E45880DC49B82F38699AA87C] - 15/05/2015 - 22:30:13 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_35.dll [444776]
O44 - LFC:[MD5.46EE68F04A75A1CCF40235EA6F1CBA05] - 15/05/2015 - 22:30:14 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_9.dll [267112]
O44 - LFC:[MD5.44BFEC5C9C82A2EE9871D88FD3B9A0E2] - 15/05/2015 - 22:30:18 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_36.dll [3734536]
O44 - LFC:[MD5.FB4299688A0D3A37687C015AC2B9922D] - 15/05/2015 - 22:30:19 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_36.dll [1374232]
O44 - LFC:[MD5.D9158E78A368B08D9133043EB3058C12] - 15/05/2015 - 22:30:20 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_36.dll [444776]
O44 - LFC:[MD5.F6A9FC2AD2F9111372B5AB3BBA3707EC] - 15/05/2015 - 22:30:22 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_2.dll [17928]
O44 - LFC:[MD5.73E055AF78A64F9B2779D44407CA2AB6] - 15/05/2015 - 22:30:22 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_10.dll [267272]
O44 - LFC:[MD5.AC3C517FB0FBBE45FE44007BCD3625A7] - 15/05/2015 - 22:30:23 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_37.dll [3786760]
O44 - LFC:[MD5.4A43E9A2B17E4CAFA9CB5FEC0B5B686B] - 15/05/2015 - 22:30:28 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_37.dll [462864]
O44 - LFC:[MD5.EA752DBCE35045D3C830DC16578CC8AB] - 15/05/2015 - 22:30:29 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_37.dll [1420824]
O44 - LFC:[MD5.C593FD0A96EE4B6390B653C4C641313F] - 15/05/2015 - 22:30:31 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_3.dll [25608]
O44 - LFC:[MD5.8A83673F0AB001870583FDE2B004FA59] - 15/05/2015 - 22:30:32 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_0.dll [238088]
O44 - LFC:[MD5.418CDC57E55EE79C3F86C13A19B3D5E3] - 15/05/2015 - 22:30:33 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_0.dll [479752]
O44 - LFC:[MD5.8F3EB548AC4ED90252394F60C77E3196] - 15/05/2015 - 22:30:37 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_38.dll [3850760]
O44 - LFC:[MD5.A2650B27472C21CDD817EEEDE65648E1] - 15/05/2015 - 22:30:38 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_38.dll [467984]
O44 - LFC:[MD5.103CBFC5591008AD33046E20E8E1EEBE] - 15/05/2015 - 22:30:39 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_38.dll [1491992]
O44 - LFC:[MD5.E3832514BD21236067B7227F6165EF95] - 15/05/2015 - 22:30:39 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_4.dll [25608]
O44 - LFC:[MD5.2E0E25252E1D41752876E9FE12ADE175] - 15/05/2015 - 22:30:39 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_1.dll [238088]
O44 - LFC:[MD5.DD165760F1B95200A3DA2D9DFDB84234] - 15/05/2015 - 22:30:41 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_0.dll [65032]
O44 - LFC:[MD5.E34FF0115B1EE3B4E03D22AE9840EE03] - 15/05/2015 - 22:30:41 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_1.dll [507400]
O44 - LFC:[MD5.8CB3DEFB8887C4F0846DB1FC1304D6D2] - 15/05/2015 - 22:30:42 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_39.dll [3851784]
O44 - LFC:[MD5.C4F1972497FE2CEB7D900938C97FCF91] - 15/05/2015 - 22:30:44 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_39.dll [1493528]
O44 - LFC:[MD5.E6C2F1D8B667DDC04CB55B9F0159EF97] - 15/05/2015 - 22:30:44 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_39.dll [467984]
O44 - LFC:[MD5.F3C6BE26949CAADB11DBF0086082FAC9] - 15/05/2015 - 22:30:45 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_2.dll [238088]
O44 - LFC:[MD5.D95EAABF5D277EF91D9CA70151209E56] - 15/05/2015 - 22:30:46 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_1.dll [68616]
O44 - LFC:[MD5.50F4A0D5E6A0BAFEFA78F353533B8E06] - 15/05/2015 - 22:30:46 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_2.dll [509448]
O44 - LFC:[MD5.350FEFE18B86BD4D9AB2A96D00215A49] - 15/05/2015 - 22:30:47 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_5.dll [23376]
O44 - LFC:[MD5.8BA296419AF3417D1E9806B83166E472] - 15/05/2015 - 22:30:48 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_3.dll [235856]
O44 - LFC:[MD5.295E47A75F278580F9441041EAAEA3D2] - 15/05/2015 - 22:30:49 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_2.dll [70992]
O44 - LFC:[MD5.47ED15DC87AE334C13C4DACD1BE2CCED] - 15/05/2015 - 22:30:49 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_3.dll [514384]
O44 - LFC:[MD5.EEA5E428CE63804F9B12D21C97B5968F] - 15/05/2015 - 22:30:53 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_40.dll [4379984]
O44 - LFC:[MD5.91B4AAD4412BB223B466F3DFB43E86DA] - 15/05/2015 - 22:30:55 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_40.dll [452440]
O44 - LFC:[MD5.3384134EEB8F223178C2EB8323003EC0] - 15/05/2015 - 22:30:55 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_40.dll [2036576]
O44 - LFC:[MD5.E763798CAD2A90B6AB61854F50CD47DD] - 15/05/2015 - 22:30:56 ---A- . (.Microsoft Corporation - 3D Audio Library.) -- C:\Windows\System32\X3DAudio1_6.dll [22360]
O44 - LFC:[MD5.686F8D1B4926D48227A06ACD4D41CD1E] - 15/05/2015 - 22:30:56 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_4.dll [235352]
O44 - LFC:[MD5.E684C5FA18ADF9EA14737757413BF727] - 15/05/2015 - 22:30:57 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_4.dll [517448]
O44 - LFC:[MD5.3FA06CF5079B84155D18B05C08F7131B] - 15/05/2015 - 22:30:58 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_41.dll [4178264]
O44 - LFC:[MD5.C6A44FC3CF2F5801561804272217B14D] - 15/05/2015 - 22:31:01 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_42.dll [1892184]
O44 - LFC:[MD5.501AC862517C5445742BEE8A2B88414E] - 15/05/2015 - 22:31:02 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_42.dll [453456]
O44 - LFC:[MD5.D09AC80A4B5312239852836C84DF3392] - 15/05/2015 - 22:31:03 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx11_42.dll [235344]
O44 - LFC:[MD5.B337306DFB508A1BCEF1974BFBB8D924] - 15/05/2015 - 22:31:06 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dcsx_42.dll [5501792]
O44 - LFC:[MD5.B33B21DB610116262D906305CE65C354] - 15/05/2015 - 22:31:06 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_42.dll [1974616]
O44 - LFC:[MD5.DB3C93E87452B8DAB4F58ED1FD2B1998] - 15/05/2015 - 22:31:07 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_5.dll [238936]
O44 - LFC:[MD5.30686ECE80545E06D78D156EB9F7D463] - 15/05/2015 - 22:31:08 ---A- . (.Microsoft Corporation - Audio Effect Library.) -- C:\Windows\System32\XAPOFX1_3.dll [69464]
O44 - LFC:[MD5.8B01FB723F3B30AB3DEBDDBF97CFE577] - 15/05/2015 - 22:31:08 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_5.dll [515416]
O44 - LFC:[MD5.C811E70C8804CFFF719038250A43B464] - 15/05/2015 - 22:31:09 ---A- . (.Microsoft Corporation - 3D Audio Library.) -- C:\Windows\System32\X3DAudio1_7.dll [22360]
O44 - LFC:[MD5.F81C4678A55FFEE585AC75825FAF5582] - 15/05/2015 - 22:31:09 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_6.dll [238936]
O44 - LFC:[MD5.E4CE2AF32F501A7F7DDDD908704A0EE6] - 15/05/2015 - 22:31:10 ---A- . (.Microsoft Corporation - Audio Effect Library.) -- C:\Windows\System32\XAPOFX1_4.dll [74072]
O44 - LFC:[MD5.4976243BD70FAE3D1D24E49739AB2710] - 15/05/2015 - 22:31:10 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_6.dll [528216]
O44 - LFC:[MD5.20C835843FCEC4DEDFCD7BFFA3B91641] - 15/05/2015 - 22:31:12 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_43.dll [470880]
O44 - LFC:[MD5.86E39E9161C3D930D93822F1563C280D] - 15/05/2015 - 22:31:12 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_43.dll [1998168]
O44 - LFC:[MD5.8E0BB968FF41D80E5F2C747C04DB79AE] - 15/05/2015 - 22:31:13 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx11_43.dll [248672]
O44 - LFC:[MD5.83EBA442F07AAB8D6375D2EEC945C46C] - 15/05/2015 - 22:31:14 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dcsx_43.dll [1868128]
O44 - LFC:[MD5.1C9B45E87528B8BB8CFA884EA0099A85] - 15/05/2015 - 22:31:16 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_43.dll [2106216]
O44 - LFC:[MD5.4FD7BCB9D8AF6A165E9BA0C2EB702E7C] - 15/05/2015 - 22:31:17 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_7.dll [239960]
O44 - LFC:[MD5.8A4CEBF34370D689E198E6673C1F2C40] - 15/05/2015 - 22:31:18 ---A- . (.Microsoft Corporation - Audio Effect Library.) -- C:\Windows\System32\XAPOFX1_5.dll [74072]
O44 - LFC:[MD5.81DFDDFB401D663BA7E6AD1C80364216] - 15/05/2015 - 22:31:18 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_7.dll [527192]
O44 - LFC:[MD5.88651044108E995F9801E35D2582491C] - 15/05/2015 - 22:44:42 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [176040]
O44 - LFC:[MD5.64E2BB67EA740860510DCC5C2B6FFA2D] - 15/05/2015 - 22:44:44 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [176040]
O44 - LFC:[MD5.2B4493BB1F94580C41DEF972EA9A887E] - 15/05/2015 - 22:44:44 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [272808]
O44 - LFC:[MD5.B587EDF4DFCFD99C014AD589EF12C7EE] - 15/05/2015 - 22:44:50 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\WindowsAccessBridge.dll [96680]
O44 - LFC:[MD5.A8BD8A5F870DD67A086BEBEB453B5748] - 15/05/2015 - 22:56:37 ---A- . (...) -- C:\Windows\PFRO.log [11402]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2015 - 22:56:59 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.CD994E7F1C2D3DF51430A5B5D66D9EDA] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2644472]
O44 - LFC:[MD5.20D613091AF4C772409649C5101BBAB5] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfc001.dat [91496]
O44 - LFC:[MD5.13E11BC44A915AE88FA7A28041ABA5A9] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfc009.dat [162430]
O44 - LFC:[MD5.0B8B9EF8FFA8CEE8336775411006A95F] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [193980]
O44 - LFC:[MD5.FF4B2B415F8AD513D26567DDBB22995D] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfh001.dat [496162]
O44 - LFC:[MD5.163EFBCCC5951E32F4A6BF317675885D] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfh009.dat [799996]
O44 - LFC:[MD5.004F4B6676E0F926911164BBE37DD8FA] - 15/05/2015 - 23:03:54 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [901184]
O44 - LFC:[MD5.01CE484FF6D70A39479BC6D619DE7ED6] - 16/05/2015 - 09:41:22 ---A- . (...) -- C:\Windows\System32\Drivers\EsgScanner.sys [19984]
O44 - LFC:[MD5.F5EE491358299FAF351CFB11A6BB38C8] - 16/05/2015 - 10:31:23 ---A- . (...) -- C:\Windows\setupact.log [464]
O44 - LFC:[MD5.04B309A1A653177994630C2773E659F1] - 16/05/2015 - 10:39:59 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [119512]
O44 - LFC:[MD5.DE556C8002CE194114DD08DF0D1D906C] - 16/05/2015 - 10:49:47 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1212184]
~ Files: 334 Scanned in 01mn 00s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.7633982890A4EA4EDF0F9EC1D95C53CC] - 15/05/2015 - 13:46:05 ---A- - C:\Windows\Prefetch\BETTERINSTALLER.EXE-B72FF5F6.pf =>Adware.MegaSearch
O45 - LFCP:[MD5.BD6E54E13C07C7CA6AF5A8638CBEEC72] - 15/05/2015 - 20:58:53 ---A- - C:\Windows\Prefetch\BINGBARSETUP-PARTNER.EXE-53805D62.pf =>Toolbar.Bing
O45 - LFCP:[MD5.ACBE3A5A09E0F43B3FC8D37A57582720] - 15/05/2015 - 12:49:42 ---A- - C:\Windows\Prefetch\GENIEO_SETUP.EXE-B919AABE.pf =>PUP.Genieo
O45 - LFCP:[MD5.DB91BA6A6E72111AD8DB7226043E6162] - 15/05/2015 - 12:50:13 ---A- - C:\Windows\Prefetch\GENIEO_SETUP.GEN-593D93FC.pf =>PUP.Genieo
O45 - LFCP:[MD5.874900EE65B673CAECB97E3EFA67D6C3] - 15/05/2015 - 12:49:39 ---A- - C:\Windows\Prefetch\INSTALLGENIEO.EXE-3654716D.pf =>PUP.Genieo
O45 - LFCP:[MD5.6F4A9507ECD3AA594574EF93A1DAC665] - 15/05/2015 - 12:49:49 ---A- - C:\Windows\Prefetch\INSTALLGENIEO.EXE-D3294791.pf =>PUP.Genieo
O45 - LFCP:[MD5.8841040D56C347C21ABC9DDAB005A359] - 15/05/2015 - 13:46:29 ---A- - C:\Windows\Prefetch\SMT_OURSURFING.EXE-45B26BBA.pf =>Hijacker.OurSurfing
O45 - LFCP:[MD5.2D1B58BB4577F380DE316397AF6DBF3F] - 16/05/2015 - 09:40:21 ---A- - C:\Windows\Prefetch\SPYHUNTER-INSTALLER.EXE-CB69FD76.pf =>Crapware.SpyHunter
O45 - LFCP:[MD5.43CF538308B4932BFE27D62A1ED3DDE0] - 16/05/2015 - 09:49:06 ---A- - C:\Windows\Prefetch\SPYHUNTER4.EXE-7BD5E907.pf =>Crapware.SpyHunter
O45 - LFCP:[MD5.05BD836E21B802B30F1E22A3457ADF5F] - 15/05/2015 - 13:48:13 ---A- - C:\Windows\Prefetch\WPM_V20.0.0.2227.EXE-693CDBF3.pf =>PUP.WpManager
~ Prefetcher: 10 Scanned in 00mn 03s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
~ LSA: 3 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iaioi2c.sys . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 18 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:21/08/2013 - 23:33:26 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [86368]
O58 - SDL:21/08/2013 - 23:33:25 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [773472]
O58 - SDL:21/08/2013 - 23:33:25 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [72544]
O58 - SDL:21/08/2013 - 23:33:26 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys [215392]
O58 - SDL:21/08/2013 - 23:33:24 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22880]
O58 - SDL:21/08/2013 - 23:33:26 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [101728]
O58 - SDL:12/08/2013 - 17:25:32 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [16088]
O58 - SDL:16/05/2015 - 09:41:22 ---A- . (...) -- C:\Windows\System32\Drivers\EsgScanner.sys [19984]
O58 - SDL:21/08/2013 - 23:33:29 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [56672]
O58 - SDL:15/05/2015 - 20:58:35 ---A- . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\Windows\System32\Drivers\HWiNFO32.SYS [23840]
O58 - SDL:23/07/2013 - 15:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaiogpio.sys [22016]
O58 - SDL:23/07/2013 - 15:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys [61936]
O58 - SDL:09/08/2013 - 18:39:44 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x86.) -- C:\Windows\System32\Drivers\iaStorAV.sys [524784]
O58 - SDL:21/08/2013 - 23:33:29 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [333664]
O58 - SDL:27/11/2013 - 18:24:18 ---A- . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\Drivers\idmwfp.sys [108000]
O58 - SDL:23/03/2012 - 10:09:38 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd32.sys [9036288]
O58 - SDL:21/08/2013 - 23:33:29 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [94048]
O58 - SDL:21/08/2013 - 23:33:30 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [79712]
O58 - SDL:21/08/2013 - 23:33:30 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [68960]
O58 - SDL:21/08/2013 - 23:33:29 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [69472]
O58 - SDL:14/04/2015 - 08:37:42 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [23256]
O58 - SDL:14/04/2015 - 08:37:44 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [92888]
O58 - SDL:16/05/2015 - 10:39:59 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [119512]
O58 - SDL:21/08/2013 - 23:33:30 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [51552]
O58 - SDL:21/08/2013 - 23:33:29 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [464736]
O58 - SDL:21/08/2013 - 23:33:32 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [58208]
O58 - SDL:14/04/2015 - 08:37:58 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [51928]
O58 - SDL:21/08/2013 - 23:33:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [120160]
O58 - SDL:21/08/2013 - 23:33:33 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [141664]
O58 - SDL:15/05/2015 - 21:18:34 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x86.sys [741080]
O58 - SDL:15/05/2015 - 21:41:12 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHDA.sys [3498712]
O58 - SDL:22/08/2013 - 02:16:47 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480]
O58 - SDL:21/08/2013 - 23:32:56 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41312]
O58 - SDL:21/08/2013 - 23:32:57 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [79200]
O58 - SDL:04/06/2014 - 14:17:30 ---A- . (.IObit - SmartDefrag Driver.) -- C:\Windows\System32\Drivers\SmartDefragDriver.sys [18624]
O58 - SDL:21/08/2013 - 23:32:57 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x86.) -- C:\Windows\System32\Drivers\stexstor.sys [26976]
O58 - SDL:22/08/2013 - 06:40:22 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\tap0901.sys [35288]
O58 - SDL:21/08/2013 - 23:33:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [18272]
O58 - SDL:21/08/2013 - 23:33:01 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\Drivers\vsmraid.sys [148832]
O58 - SDL:21/08/2013 - 23:33:01 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [276832]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:03/04/1996 - 13:33:26 ---A- . (...) -- C:\Windows\System32\giveio.sys [5248]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:17/05/2014 - 13:39:53 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33968]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34688]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35552]
O58 - SDL:17/05/2014 - 13:39:51 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34688]
O58 - SDL:29/12/2012 - 14:59:38 ---A- . (.Almico Software - SpeedFan x32 Driver.) -- C:\Windows\System32\speedfan.sys [24184]
~ Drivers: 57 Scanned in 00mn 04s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 12/05/2015 - 11:51:23 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\Quarantine.exe [606208]
O61 - LFC: 15/05/2015 - 11:51:04 ----- . (...) -- C:\Users\goudjil\AppData\Local\Apps\2.0\BCTMPG9P.WR7\EEZO5ABL.T6R\skyp..tion_a0909537f8dfb374_0001.0000_7ccc3e52e49daab3\Interop.SKYPE4COMLib.dll [180224]
O61 - LFC: 15/05/2015 - 11:51:04 ---A- . (.Skype Technologies.) -- C:\Users\goudjil\AppData\Local\Apps\2.0\BCTMPG9P.WR7\EEZO5ABL.T6R\skyp...exe_a0909537f8dfb374_0001.0000_none_c3a6626965fdde74\Skype4COM.dll [2135336]
O61 - LFC: 15/05/2015 - 11:51:04 ---A- . (.Skype Technologies.) -- C:\Users\goudjil\AppData\Local\Apps\2.0\BCTMPG9P.WR7\EEZO5ABL.T6R\skyp..tion_a0909537f8dfb374_0001.0000_7ccc3e52e49daab3\Skype4COM.dll [2135336]
O61 - LFC: 15/05/2015 - 11:51:04 ---A- . (.Skype Translate.) -- C:\Users\goudjil\AppData\Local\Apps\2.0\BCTMPG9P.WR7\EEZO5ABL.T6R\skyp..tion_a0909537f8dfb374_0001.0000_7ccc3e52e49daab3\Skype Translate.exe [187904]
O61 - LFC: 15/05/2015 - 11:51:05 ---A- . (.© 2015 Microsoft Corporation.) -- C:\Users\goudjil\AppData\Local\Microsoft\BingSvc\BSvcProcessor.exe [1068696]
O61 - LFC: 15/05/2015 - 11:51:05 ---A- . (.© 2015 Microsoft Corporation.) -- C:\Users\goudjil\AppData\Local\Microsoft\BingSvc\BSvcUpdater.exe [169104]
O61 - LFC: 15/05/2015 - 11:51:09 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.FactsList_8_1_RP-bf695b40.dll [15320]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\HNF.Utilities\638bbf4c911957e86aed737d698dd37b\HNF.Utilities.ni.dll [384000]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\HealthVault\c90b9ca02869ea852209c45609b19766\HealthVault.ni.dll [4291072]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.B2e1870ee#\b97306bb827a286832d3e5a1aa936204\Microsoft.Bing.AppEx.Telemetry.ni.dll [1500672]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Microsoft.PerfTrack\2a1f795aceb026901e8290d2319fe53a\Microsoft.PerfTrack.ni.dll [18944]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\SqliteWrapper\3fb856e3a643766e2c18e51097dea7b7\SqliteWrapper.ni.dll [72704]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (.Microsoft.) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Platform\f6470f107551d4b26887509ad9d2778f\Platform.ni.dll [4801024]
O61 - LFC: 15/05/2015 - 11:51:16 ---A- . (.Newtonsoft.) -- C:\Users\goudjil\AppData\Local\Packages\Microsoft.BingHealthAndFitness_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Newtonsoft.Json\4f876a7f37b2af7dc6c5cd16422fe8f3\Newtonsoft.Json.ni.dll [1843200]
O61 - LFC: 15/05/2015 - 11:51:21 ---A- . (.IObit.) -- C:\Users\goudjil\AppData\Local\Temp\ASC8_BigUpgrade_Downloader\ASC.exe [46065888]
O61 - LFC: 15/05/2015 - 11:51:21 ---A- . (.IObit.) -- C:\Users\goudjil\AppData\Local\Temp\ASC8_ProBigUpgrade\ProBigUpgrade.exe [1384736]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\IpConfig.dll [117248]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\NSISEncrypt.dll [132608]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\System.dll [11264]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\inetc.dll [20992]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (.Genieo Innovation LTD.) -- C:\Users\goudjil\AppData\Local\Temp\InstallGenieo.exe [988408] =>PUP.Genieo
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (.Microsoft Corporation.) -- C:\Users\goudjil\AppData\Local\Temp\is-9O3FT.tmp\_isetup\_shfoldr.dll [23312]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (.© 2015 Microsoft Corporation.) -- C:\Users\goudjil\AppData\Local\Temp\BSvcProcessor.exe [1068696]
O61 - LFC: 15/05/2015 - 11:51:22 ---A- . (.© 2015 Microsoft Corporation.) -- C:\Users\goudjil\AppData\Local\Temp\BSvcUpdater.exe [169104]
O61 - LFC: 15/05/2015 - 11:51:23 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\UserInfo.dll [4096]
O61 - LFC: 15/05/2015 - 11:51:23 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\nseF173.tmp\WmiInspector.dll [95232]
O61 - LFC: 15/05/2015 - 11:51:24 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\setup.exe [467456]
O61 - LFC: 15/05/2015 - 11:51:24 ---A- . (...) -- C:\Users\goudjil\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll [541696]
O61 - LFC: 15/05/2015 - 11:51:24 ---A- . (.Skype Technologies S.A..) -- C:\Users\goudjil\AppData\Local\Temp\SkypeSetup.exe [45342848]
O61 - LFC: 15/05/2015 - 11:51:28 ---A- . (.MONO development team.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\mono\Release3.x.x\Data\lib\Mono.Security.dll [204872]
O61 - LFC: 15/05/2015 - 11:51:28 ---A- . (.MONO development team.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\mono\Release3.x.x\Data\lib\System.Core.dll [233032]
O61 - LFC: 15/05/2015 - 11:51:28 ---A- . (.MONO development team.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\mono\Release3.x.x\Data\lib\System.dll [801864]
O61 - LFC: 15/05/2015 - 11:51:28 ---A- . (.MONO development team.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\mono\Release3.x.x\Data\lib\mscorlib.dll [2056776]
O61 - LFC: 15/05/2015 - 11:51:29 ---A- . (...) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\mono\Release3.x.x\mono-1-vc.dll [2108488]
O61 - LFC: 15/05/2015 - 11:51:29 ---A- . (...) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\player\Release3.x.x\Data\lib\UnityEngine.dll [624200]
O61 - LFC: 15/05/2015 - 11:51:29 ---A- . (.Microsoft.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\player\Release3.x.x\Data\lib\CrossDomainPolicyParser.dll [63560]
O61 - LFC: 15/05/2015 - 11:51:30 ---A- . (...) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\player\Release3.x.x\wrap_oal.dll [2]
O61 - LFC: 15/05/2015 - 11:51:30 ---A- . (.Unity Technologies ApS.) -- C:\Users\goudjil\AppData\LocalLow\Unity\WebPlayer\player\Release3.x.x\webplayer_win.dll [8317000]
O61 - LFC: 15/05/2015 - 11:52:09 ---A- . (.Malwarebytes Corp..) -- C:\Users\goudjil\Downloads\Programs\mbar-1.09.1.1004.exe [16502728]
O61 - LFC: 15/05/2015 - 11:52:09 ---A- . (.Malwarebytes Corporation.) -- C:\Users\goudjil\Downloads\Programs\mbam-setup-2.1.6.1022.exe [21546080]
O61 - LFC: 15/05/2015 - 11:52:12 ---A- . (...) -- C:\Users\goudjil\Downloads\Programs\Retrogamer.exe [443264]
O61 - LFC: 16/05/2015 - 11:51:32 ---A- . (.Enigma Software Group USA, LLC..) -- C:\Users\goudjil\AppData\Roaming\Enigma Software Group\sh_installer.exe [3109248] =>PUP.EnigmaSoftware
O61 - LFC: 16/05/2015 - 11:52:05 ---A- . (...) -- C:\Users\goudjil\Downloads\Programs\adwcleaner_4.204.exe [2209792]
O61 - LFC: 16/05/2015 - 11:52:12 ---A- . (.Enigma Software Group USA, LLC..) -- C:\Users\goudjil\Downloads\Programs\SpyHunter-Installer.exe [3109248] =>PUP.EnigmaSoftware
O61 - LFC: 16/05/2015 - 11:52:12 ---A- . (.Zbshareware Lab.) -- C:\Users\goudjil\Downloads\Programs\USBGuard6.5.0.0.exe [4021272]
O61 - LFC: 16/05/2015 - 11:52:13 ---A- . (.Nicolas Coolman.) -- C:\Users\goudjil\Downloads\Programs\ZHPDiag2.exe [6881580] =>.Nicolas Coolman
~ 185 Fichiers temporaires (Temporary files)
~ Files: 47 Scanned in 01mn 09s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {E733165D-CBCF-4FDA-883E-ADEF965B476C} [DefaultScope] - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [160768]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [128512]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [128512]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [244736]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1167360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [731648]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [795648]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [23040]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [88576]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [116224]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [91136]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [976384]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [174592]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [73728]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [105472]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [187904]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [280576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [59392]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [75776]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1203200]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [357376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [299008]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [165376]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [141312]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [93696]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [457216]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [177664]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [54784]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [380928]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [248320]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3040768]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [801792]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [564736]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [151040]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll [75104]
~ Services: 36 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.C1D5D3693E1F474B08A74A575AB83DC1] [SPRF][13/11/2008] (...) -- C:\Users\goudjil\Desktop\LUXOR - Quest for the Afterlife.exe [5378048]
[MD5.E037B441D3EABD82F1E1842180919AA3] [SPRF][05/05/2014] (.Microsoft Corporation - Win32 Cabinet Self-Extractor.) -- C:\Users\goudjil\Desktop\Msvbvm50.exe [992864]
[MD5.DB448D20039046010A31C2AFEF16E937] [SPRF][14/09/2009] (.Un4seen Developments - BASS.) -- C:\Program Files\bass.dll [98872]
[MD5.6479A184873F7CA797FF0375D711E9A6] [SPRF][14/09/2009] (.Microsoft Corporation - Windows Image Helper.) -- C:\Program Files\dbghelp.dll [640000]
[MD5.9418EA9E3E04DD6CCF70540B7E6BCCF3] [SPRF][14/09/2009] (.j2k-codec.com - JPEG2000 decoder (www.j2k-codec.com)..) -- C:\Program Files\j2k-codec.dll [94208]
[MD5.E213C865111A23688E48E2C5F3BF5C0A] [SPRF][15/09/2009] (.PopCap Games, Inc. - Zuma's Revenge!.) -- C:\Program Files\ZumasRevenge.exe [3866624]
~ Files: 6 Scanned in 00mn 01s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0345E5F48AD1B2B4BB622BC9E0D7FBBD" . (.IObit Apps Toolbar v9.2.) -- C:\Windows\Installer\{4F5E5430-1DA8-4B2B-BB26-B29C0E7DBFDB}\ARPPRODUCTICON.exe =>PUP.Dealio
O90 - PUC: "D465997AC85B14B4FB5F0A3531EA2285" . (.TrustedShopper.) -- C:\Windows\Installer\{A799564D-B58C-4B41-BFF5-A05313AE2258}\_853F67D554F05449430E7E.exe =>Adware.TrustedShopper
~ Update Products: 2 Scanned in 00mn 00s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s



---\\ Recherche de clés de registre CLSID (O101)
[HKCR\CLSID\{0FD66FDD-FEA9-3FBD-B0BA-44C4F285584A}] (TrustedShopper.TWSSettings) =>Adware.TrustedShopper
[HKCR\CLSID\{24558431-D0F6-3A5F-A36F-35329366EF24}] (TrustedShopper.IEModule+IECustomContextMenuCommands) =>Adware.TrustedShopper
[HKCR\CLSID\{3BE0324D-D62A-3C5A-9068-1E68C771E36E}] (TrustedShopper.IEModule+IECustomCommands) =>Adware.TrustedShopper
[HKCR\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}] (LuckyTab Class) =>PUP.LuckyTab
~ BCK: 7150 Scanned in 00mn 25s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 15/05/2015 268976 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 18/02/2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 03/04/2015 814880 | (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
SR - | Auto 26/03/2015 2585376 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
SR - | Auto 14/04/2015 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - | Auto 14/04/2015 1080120 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
SR - | Auto 16/05/2015 771456 | (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC..) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>PUP.EnigmaSoftware
SR - | Auto 03/02/2015 22200 | (WinDefend) . (.Microsoft Corporation.) - C:\Program Files\Windows Defender\MsMpEng.exe
SR - | Demand 21/08/2013 31552 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 27s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by goudjil at 16/05/2015 11:53:30
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13008 - (13/05/2015)
Clés trouvées (Keys found) : 4
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 9

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}] =>PUP.LuckyTab^
[HKLM\SYSTEM\CurrentControlSet\Services\SpyHunter 4 Service] =>PUP.EnigmaSoftware^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4F5E5430-1DA8-4B2B-BB26-B29C0E7DBFDB}] =>PUP.Dealio^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SpyHunter] =>PUP.EnigmaSoftware^
C:\Program Files\Enigma Software Group =>PUP.EnigmaSoftware^
C:\Users\goudjil\AppData\Roaming\Enigma Software Group =>PUP.EnigmaSoftware^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified =>Hijacker.Application^
C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe =>PUP.EnigmaSoftware^
[HKCU\Software\AppDataLow\Software\Slick Savings] =>PUP.Dealio^
[HKLM\Software\EnigmaSoftwareGroup] =>PUP.EnigmaSoftware^
[HKCR\CLSID\{0FD66FDD-FEA9-3FBD-B0BA-44C4F285584A}] (TrustedShopper.TWSSettings) =>Adware.TrustedShopper^
[HKCR\CLSID\{24558431-D0F6-3A5F-A36F-35329366EF24}] (TrustedShopper.IEModule+IECustomContextMenuCommands) =>Adware.TrustedShopper^
[HKCR\CLSID\{3BE0324D-D62A-3C5A-9068-1E68C771E36E}] (TrustedShopper.IEModule+IECustomCommands) =>Adware.TrustedShopper^
[HKCR\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}] (LuckyTab Class) =>PUP.LuckyTab^
C:\Users\goudjil\Desktop\SpyHunter.lnk =>Crapware.SpyHunter
~ Additionnel Scan: 238564 Items scanned in 00mn 59s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ AMI: 3 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://www.nicolascoolman.fr/blog/ =>Hijacker.Application
http://www.nicolascoolman.fr/blog/ =>PUP.EnigmaSoftware
http://www.nicolascoolman.fr/blog/ =>PUP.LuckyTab
http://www.nicolascoolman.fr/blog/ =>Hacktool.AutoKMS
http://nicolascoolman.fr/pup-costmin =>PUP.CostMin
http://www.nicolascoolman.fr/blog/ =>Hijacker.OurSurfing
http://nicolascoolman.fr/pup-dealio =>PUP.Dealio
http://nicolascoolman.fr/adware-megasearch =>Adware.MegaSearch
http://www.nicolascoolman.fr/blog/ =>PUP.Genieo
http://nicolascoolman.fr/crapware-spyhunter =>Crapware.SpyHunter
http://nicolascoolman.fr/pup-wpmanager =>PUP.WpManager
http://www.nicolascoolman.fr/blog/ =>Adware.TrustedShopper
~ MSI: 12 link(s) detected in 00mn 00s



End of the scan (1433 lines in 06mn 17s)(0.10)

Publicité


Signaler le contenu de ce document

Publicité