cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.12.27.179 - Nicolas Coolman (27/12/2014)
~ Lancé par Andry (11/06/2015 10:55:26)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17031
MFIE: Mozilla Firefox 38.0.5 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : X2C43
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Windows Defender W8 (Deactivate)

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer
qBittorrent 3.2.0 v3.2.0 =>P2P.BitTorrent

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 16267 MB (84% free)
System Restore: Activé (Enable)
System drive C: has 368 GB (81%) free of 453 GB

---\\ Mode de connexion au système
~ Computer Name: ANDRY-ROG
~ User Name: Andry
~ All Users Names: HomeGroupUser$, Andry, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Andry\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Andry\AppData\Roaming\
~ %Desktop% : C:\Users\Andry\Desktop\
~ %Favorites% : C:\Users\Andry\Favorites\
~ %LocalAppData% : C:\Users\Andry\AppData\Local\
~ %StartMenu% : C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 368 Go of 453 Go)
D: Hard drive, Flash drive, Thumb drive (Free 822 Go of 926 Go)
E: Hard drive, Flash drive, Thumb drive (Free 451 Go of 937 Go)
F: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 47 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.4CE0C733CDCF1D2F78532BBD9CE3441D] - (.Microsoft Corporation - Explorateur Windows.) (.18/03/2014 - 11:10:05.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/03/2014 - 11:09:56.) -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.18/03/2014 - 11:09:53.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/03/2014 - 11:09:55.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.414686EF104910BA41DF66E83BDCD495] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.18/03/2014 - 11:09:39.) -- C:\Windows\system32\Drivers\DfsC.sys [134656]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 12:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.18/03/2014 - 11:09:57.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.16FFC07D36FD83ACA189A641385168B3] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.18/03/2014 - 11:09:39.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.9AEB38B451A7B84ACB7CD3D664F87BF0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.18/03/2014 - 11:09:38.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.18/03/2014 - 10:41:24.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.18/03/2014 - 11:09:37.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/506
~ Mes musiques (My Musics) : 1/7
~ Mes Favoris (My Favorites) : 1/3
~ Mes Documents (My Documents) : 2/636
~ Mon Bureau (My Desktop) : 1/1069
~ Menu demarrer (Programs) : 1/42
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.72AD0972544FEB42A72CC83921D24F6E] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19647568] [PID.1808]
[MD5.88A8ED207B136DA14F46B48B7B15C47C] - (.ASUS - ACMON.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55880] [PID.1816]
[MD5.EB8E54615ADAC6F69E4F198A2F466BFC] - (.ASUSTeK Computer Inc. - ASUS Color Engine.) -- C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [181360] [PID.1824]
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2088]
[MD5.A416FBE18A8FF5C942B5E4A65A66EAE0] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704] [PID.344]
[MD5.E1D499C501DC2E1F8B451F1A43BFABED] - (.Microsoft Corporation - Installateur Windows®.) -- C:\WINDOWS\SysWOW64\msiexec.exe [55808] [PID.5016]
[MD5.49B0BBFFE88464A1342755FBB0E0D71F] - (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.exe [308704] [PID.5048]
[MD5.E11DCE6DA74CFC6B3DCC1A2E09944256] - (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNABFSWK.exe [1318056] [PID.4788]
[MD5.CE17C3D8F14C476820D5C2AF00B94347] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [177976] [PID.4676]
[MD5.923FE895B22B22A9CA03C72F3D15CE20] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [376944] [PID.5716]
[MD5.0E586E295791352F8F9FE36565D8DEC3] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3681872] [PID.56376]
[MD5.FAA729BC3B4EC2900D14E1F0F4D30ED0] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe [268248] [PID.16792]
[MD5.E47AC731D42B2452D4C0BF096DF3DD6E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8145408] [PID.35652]
~ Processes Running: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [Andry - bqbouuob.default] www.google.fr
M2 - MFEP: prefs.js [Andry - bqbouuob.default\mozilla_cc@internetdownloadmanager.com] [] IDM CC v7.3.100 (..)
M2 - MFEP: Extension [Andry - bqbouuob.default] {0d68400f-30b4-459a-94ed-bd57e329ed5d}.xpi
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Lync.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.11.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.45.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.45.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.45.2 for Mozilla browsers.) -- C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files\Microsoft Office\Office15\NPSPWRAP.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.0] - (.VideoLAN - VLC media player Web Plugin 2.1.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Application Manager is installed.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
~ Firefox Browser: 12 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 15 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
O1 - Hosts: 8.
~ Nombre lignes détournées 1/37 (Hosts file redirected)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Adobe Acrobat Create PDF Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft SkyDrive Pro Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.dll =>.Microsoft Corporation
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
~ BHO: 14 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - [HKLM]{47833539-D0C5-4125-9FA8-0819E2EAAC93} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [IntelTBRunOnce] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\WINDOWS\system32\nvspcap64.dll
O4 - HKLM\..\Run: [mylbx] . (.FSPro Labs - My Lockbox.) -- C:\Program Files\My Lockbox\mylbx.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [CNAP2 Launcher] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.exe =>.Canon Inc
O4 - HKCU\..\Run: [HKCU] . (...) -- C:\Program Files (x86)\WinMCD\WinMCD.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKCU\..\Run: [CNAP2 Launcher] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.exe =>.Canon Inc
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [PWRISOVM.EXE] . (.PowerISO Computing, Inc. - PowerISO Virtual Drive Manager.) -- C:\Program Files (x86)\PowerISO\PWRISOVM.exe
O4 - HKLM\..\Wow6432Node\Run: [HKLM] . (...) -- C:\Program Files (x86)\WinMCD\WinMCD.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\policies\Explorer\Run: [1840571103] . (...) -- C:\ProgramData\msnxvzb.exe
O4 - HKUS\S-1-5-21-3226959817-756694082-3665934650-1001\..\Run: [HKCU] . (...) -- C:\Program Files (x86)\WinMCD\WinMCD.exe
O4 - HKUS\S-1-5-21-3226959817-756694082-3665934650-1001\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-21-3226959817-756694082-3665934650-1001\..\Run: [CNAP2 Launcher] . (.CANON INC. - Canon Advanced Printing Technology Printer.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.exe =>.Canon Inc
~ Application: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: HP Smart Print [64Bits] - {22CC3EBD-C286-43aa-B8E6-06B115F74162} . (...) -- C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrint.ico
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{4C48E401-3049-4ADE-B08A-AC843B132213}: NameServer = 41.204.103.205 41.204.104.45
O17 - HKLM\System\CCS\Services\Tcpip\..\{4E1F1D6A-02FA-452B-B205-CDC9D2C0BE68}: DhcpNameServer = 192.168.10.1 192.168.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{4C48E401-3049-4ADE-B08A-AC843B132213}: NameServer = 41.204.103.205 41.204.104.45
O17 - HKLM\System\CS1\Services\Tcpip\..\{4E1F1D6A-02FA-452B-B205-CDC9D2C0BE68}: DhcpNameServer = 192.168.10.1 192.168.10.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.10.1 192.168.10.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ASLDR Service (ASLDRService) . (...) - C:\Program Files (x86)\ATK Hotkey\AsLdrSrv.exe (.not file.)
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (...) - C:\Program Files (x86)\ATKGFNEX\GFNEXSrv.exe (.not file.)
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Pas de propriétaire - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) - C:\WINDOWS\system32\nvvsvc.exe
~ Services: 4 Scanned in 00mn 01s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.ABB241C563C9E817B95DFA59974268C7] [APT] [AdobeAAMUpdater-1.0-Andry-ROG-Andry] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768]
[MD5.06619B024E3BFA5654217DD2FBFA6DEF] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\ASUS\P4G\BatteryLife.exe [1038648]
[MD5.88A8ED207B136DA14F46B48B7B15C47C] [APT] [ASUS Splendid ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [55880]
[MD5.EB8E54615ADAC6F69E4F198A2F466BFC] [APT] [ASUS Splendid ColorU] (.ASUSTeK Computer Inc..) -- C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [181360]
[MD5.72AD0972544FEB42A72CC83921D24F6E] [APT] [ASUS USB Charger Plus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [19647568]
[MD5.08B018EF53C79AF2DAC005B494B9AF53] [APT] [ATK Package 36D18D69AFC3] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppexec.exe [109880]
[MD5.24D7F4FA51EB0614A70B9B03AA1F7E16] [APT] [AutoPico Daily Restart] (.@ByELDI.) -- C:\Program Files\KMSpico\AutoPico.exe [966288] =>PUP.KMSpico
[MD5.A550F9773B1703D49B34206A9D33C911] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.A550F9773B1703D49B34206A9D33C911] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.57A2664E14863B90056E0DE510D05AA8] [APT] [HPCustParticipation HP Deskjet 1510 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPCustPartic.exe [5745672]
[MD5.E3389F59C46E37D6DB57A4540591723C] [APT] [RtHDVBg] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1392496]
[MD5.920BF343D1DF9BDAE7D8956E31B9DF9E] [APT] [RTKCPL] (.Realtek Semiconductor.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13874392]
[MD5.C20F5CD1265B5EFC757F41DFB9E347BB] [APT] [Nero Info] (.Nero AG.) -- C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [3227472]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1092]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1092]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1096]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1096]
~ Scheduled Task: 16 Scanned in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUSTek Computer Inc. - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Drivers: 36 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {9B6239BF-4E85-4590-8D72-51E30DB1A9AA}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}
O42 - Logiciel: ASUS_ROG_THEME - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- ASUS_ROG_THEME
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Adobe After Effects CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {2B22C750-5C3B-4738-B621-BA786AC7A494}
O42 - Logiciel: Adobe Audition CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F3388E10-EFA9-4A80-B28E-2E647F8D00C4}
O42 - Logiciel: Adobe Captivate 8 (64 Bit) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {92397ACD-D9F9-11E3-B8F3-CE58971B0EB2}
O42 - Logiciel: Adobe Captivate Quiz Results Analyzer - (.Adobe Systems, Incorporated.) [HKLM][64Bits] -- QuizResultsAnalyzer8
O42 - Logiciel: Adobe Captivate Quiz Results Analyzer - (.Adobe Systems, Incorporated.) [HKLM][64Bits] -- {FE707D7D-0F92-781F-CCBD-B8FFED9EEE7F}
O42 - Logiciel: Adobe Illustrator CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {2B4B4082-8043-4646-8334-B0A29E641211}
O42 - Logiciel: Adobe Lightroom - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}
O42 - Logiciel: Adobe Media Encoder CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {663DEEEF-EF34-4DCB-8687-73A7AA146E02}
O42 - Logiciel: Adobe Photoshop CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {D7A4F897-B20A-42D0-862D-CB5F6DB7391D}
O42 - Logiciel: Adobe Premiere Pro CC 2014 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {07BE616F-9E42-4C90-AF4F-0F32A5B088E7}
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Canon LBP6020 - (...) [HKLM][64Bits] -- Canon LBP6020
O42 - Logiciel: ETDWare PS/2-X64 11.5.12.1_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Genesys USB Mass Storage Device - (.Genesys Logic.) [HKLM][64Bits] -- {959B7F35-2819-40C5-A0CD-3C53B5FCC935}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Deskjet 1510 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {00645C10-53C9-46DC-B7D0-6F7B006972E9}
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: Imagenomic Noiseware 5.0.2 Plug-in (build 5020) - (...) [HKLM][64Bits] -- ImagenomicNoisewarePlugin
O42 - Logiciel: Imagenomic Portraiture 2.3.3 Plug-in (build 2330) - (...) [HKLM][64Bits] -- ImagenomicPortraiturePlugin
O42 - Logiciel: Imagenomic Realgrain 2.0 Plug-in (build 2001) - (...) [HKLM][64Bits] -- ImagenomicRealgrainPlugin
O42 - Logiciel: Internet Download Manager - (.Tonec Inc..) [HKLM][64Bits] -- Internet Download Manager
O42 - Logiciel: Java 8 Update 45 (64-bit) - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86418045F0}
O42 - Logiciel: KMSpico - (...) [HKLM][64Bits] -- {8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1 =>PUP.KMSpico
O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 1510 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {54C00C25-16ED-4035-BAEC-1C5F9B83B113} =>.Hewlett-Packard Co
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM][64Bits] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Maxx Audio Installer (x64) - (.Waves Audio Ltd..) [HKLM][64Bits] -- {307032B2-6AF2-46D7-B933-62438DEB2B9A}
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE}
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE}
O42 - Logiciel: Mobile Partner - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Mobile Partner
O42 - Logiciel: Moniteur de la technologie Intel® Turbo Boost 2.6 - (.Intel.) [HKLM][64Bits] -- {6C9365EB-1F9E-4893-9196-3EC77C88D0C5}
O42 - Logiciel: Mozilla Firefox 38.0.5 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 38.0.5 (x86 fr)
O42 - Logiciel: My Lockbox 2.8.7 - (...) [HKLM][64Bits] -- My Lockbox_is1
O42 - Logiciel: NVIDIA GeForce Experience 2.4.5.28 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote graphique 353.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Nero 2014 - (.Nero AG.) [HKLM][64Bits] -- {F384C1E1-3A16-4073-95C3-7271FE0ED4C2}
O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM][64Bits] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D}
O42 - Logiciel: Nero Blu-ray Player - (.Nero AG.) [HKLM][64Bits] -- {A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}
O42 - Logiciel: Nero Blu-ray Player Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {36DA8969-4DCD-48FF-894A-6BD3936050C3}
O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM][64Bits] -- {B166374C-105E-445E-8E5D-A86CA5742645}
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM][64Bits] -- {F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}
O42 - Logiciel: Nero Burning ROM Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {FA78CC15-9F90-443B-BA61-A66595F06432}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM][64Bits] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74}
O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM][64Bits] -- {C03E2FB3-250B-44A1-8B9E-61DFCD544133}
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {29F67D84-3A70-456E-806A-52301B02070B}
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM][64Bits] -- {ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}
O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {4CA46F9F-174C-4766-9EA2-2325DF414B9E}
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM][64Bits] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928}
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM][64Bits] -- {1B6F5E51-575E-4693-BCA2-7543570D076D}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {D5115C78-2D22-4668-A5E2-6C87DED3ED1B}
O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM][64Bits] -- {4DB136AF-389B-4A34-AE34-50123559D08E}
O42 - Logiciel: Nero MediaHome Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {75CA8AAE-5346-4312-A9A8-5CF89955930F}
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM][64Bits] -- {ACE49D50-19CD-44A6-B192-46F985283B26}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM][64Bits] -- {40E51513-D917-4563-84F6-4EF6ADD46E2F}
O42 - Logiciel: Nero Recode Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0CF7D22B-977C-43B2-9219-E03017FBAC6D}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {581DCE84-1948-4891-A4A7-A1222CC137C5}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {F69D4104-5394-4F7C-801C-D96DC92E7F69}
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM][64Bits] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM][64Bits] -- {511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}
O42 - Logiciel: Nero Video Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {5446D3AF-B060-49B6-9535-F300E1532022}
O42 - Logiciel: Nik Collection - (.Google.) [HKLM][64Bits] -- Nik Collection
O42 - Logiciel: Portrait Professional Studio 10.9 - (...) [HKLM][64Bits] -- Portrait Professional Studio 10 PREACTIVATED by .:sHaRe:._is1
O42 - Logiciel: PowerISO - (.PowerISO Computing, Inc..) [HKLM][64Bits] -- PowerISO
O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Revo Uninstaller Pro 3.0.8 - (.VS Revo Group, Ltd..) [HKLM][64Bits] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1
O42 - Logiciel: TeraCopy 2.3 - (.Code Sector.) [HKLM][64Bits] -- TeraCopy_is1
O42 - Logiciel: VLC media player 2.1.0 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: WinRAR 5.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
O42 - Logiciel: qBittorrent 3.2.0 - (.The qBittorrent project.) [HKLM][64Bits] -- qBittorrent =>P2P.BitTorrent
O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 1510 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {4FC8905C-0B85-4A31-B30B-F3CD3917F7D6} =>.Hewlett-Packard Co
~ Logic: 48 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\10084]
[HKCU\Software\1056]
[HKCU\Software\1184]
[HKCU\Software\2260]
[HKCU\Software\2336]
[HKCU\Software\2352]
[HKCU\Software\2452]
[HKCU\Software\2524]
[HKCU\Software\2956]
[HKCU\Software\3216]
[HKCU\Software\3388]
[HKCU\Software\3456]
[HKCU\Software\3468]
[HKCU\Software\3628]
[HKCU\Software\3848]
[HKCU\Software\4044]
[HKCU\Software\4320]
[HKCU\Software\4336]
[HKCU\Software\4380]
[HKCU\Software\4592]
[HKCU\Software\4624]
[HKCU\Software\4644]
[HKCU\Software\4764]
[HKCU\Software\4800]
[HKCU\Software\5056]
[HKCU\Software\5144]
[HKCU\Software\5256]
[HKCU\Software\5324]
[HKCU\Software\5416]
[HKCU\Software\5508]
[HKCU\Software\5528]
[HKCU\Software\5532]
[HKCU\Software\5580]
[HKCU\Software\5592]
[HKCU\Software\5736]
[HKCU\Software\5856]
[HKCU\Software\5956]
[HKCU\Software\6060]
[HKCU\Software\6136]
[HKCU\Software\860]
[HKCU\Software\9772]
[HKCU\Software\ASProtect]
[HKCU\Software\Adobe Lightroom]
[HKCU\Software\Adobe]
[HKCU\Software\Akarj]
[HKCU\Software\Anthropics]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Code Sector]
[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKCU\Software\DownloadManager]
[HKCU\Software\Elantech]
[HKCU\Software\FSPro Labs]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\ICSW1.9]
[HKCU\Software\IM Providers]
[HKCU\Software\Imagenomic]
[HKCU\Software\Intel]
[HKCU\Software\MathMagic Equation Editor]
[HKCU\Software\Mine]
[HKCU\Software\Mirage]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Policies]
[HKCU\Software\PowerISO]
[HKCU\Software\ProductSetup]
[HKCU\Software\Realtek]
[HKCU\Software\Redfield]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SKlUx3t2k]
[HKCU\Software\SYNCJM]
[HKCU\Software\Trolltech]
[HKCU\Software\VS Revo Group]
[HKCU\Software\Visan]
[HKCU\Software\Waves Audio]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodesk]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Code Sector]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\GEAR Software]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Imagenomic]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\PowerISO]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\VideoLAN]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Anthropics]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Genesys Logic]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\Huawei technologies]
[HKLM\Software\Wow6432Node\Imagenomic]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\MAXSOFT-OCRON]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MathMagic]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PowerPivot]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 324 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 11/06/2015 - 09:39:29 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 08/06/2015 - 18:29:56 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 11/06/2015 - 09:34:25 - [] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 09/06/2015 - 08:19:57 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 11/06/2015 - 07:24:49 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 08/06/2015 - 20:41:01 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 09/06/2015 - 16:52:59 - [] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 09/06/2015 - 16:52:35 - [] ----D C:\Program Files (x86)\HP
O43 - CFD: 09/06/2015 - 16:52:57 - [] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 09/06/2015 - 05:21:52 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 09/06/2015 - 05:11:59 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 09/06/2015 - 08:26:18 - [] ----D C:\Program Files (x86)\Internet Download Manager
O43 - CFD: 18/03/2014 - 12:29:07 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/06/2015 - 08:20:03 - [] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 09/06/2015 - 18:08:54 - [] ----D C:\Program Files (x86)\MathMagic for Captivate
O43 - CFD: 08/06/2015 - 20:36:13 - [] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 08/06/2015 - 20:36:12 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 08/06/2015 - 20:36:54 - [] ----D C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 08/06/2015 - 20:36:54 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 09/06/2015 - 17:50:45 - [] ----D C:\Program Files (x86)\Mobile Partner
O43 - CFD: 09/06/2015 - 05:54:24 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 09/06/2015 - 05:03:36 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 08/06/2015 - 19:33:21 - [] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 08/06/2015 - 18:14:13 - [] ----D C:\Program Files (x86)\My Company Name
O43 - CFD: 09/06/2015 - 05:30:23 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 09/06/2015 - 05:48:40 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 11/06/2015 - 09:39:19 - [] ----D C:\Program Files (x86)\Portrait Professional Studio 10
O43 - CFD: 08/06/2015 - 19:34:30 - [] ----D C:\Program Files (x86)\PowerISO
O43 - CFD: 09/06/2015 - 05:58:08 - [] ----D C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent
O43 - CFD: 09/06/2015 - 05:22:02 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 08/06/2015 - 18:30:48 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 08/06/2015 - 19:37:30 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 09/06/2015 - 05:03:36 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/06/2015 - 05:12:31 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 18/03/2014 - 12:28:58 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 18/03/2014 - 11:26:19 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 18/03/2014 - 12:28:58 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2014 - 12:28:58 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/03/2014 - 11:26:19 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/03/2014 - 12:28:58 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 22/08/2013 - 17:36:30 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 04/09/2002 - 09:02:05 - [] RSH-D C:\Program Files (x86)\WinMCD
O43 - CFD: 11/06/2015 - 10:54:39 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 09/06/2015 - 18:09:11 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 09/06/2015 - 18:08:48 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 09/06/2015 - 08:19:59 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 09/06/2015 - 05:10:55 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 08/06/2015 - 16:59:57 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 08/06/2015 - 20:36:49 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 09/06/2015 - 05:30:41 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 08/06/2015 - 18:14:17 - [] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 08/06/2015 - 18:14:17 - [] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 18/03/2014 - 11:26:19 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 09/06/2015 - 18:08:48 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 08/06/2015 - 18:19:18 - [0] ----D C:\ProgramData\ALM
O43 - CFD: 09/06/2015 - 08:19:50 - [] ----D C:\ProgramData\Apple
O43 - CFD: 09/06/2015 - 08:20:02 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 09/06/2015 - 05:47:46 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 08/06/2015 - 17:02:36 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 08/06/2015 - 19:36:44 - [] ----D C:\ProgramData\Conexant
O43 - CFD: 09/06/2015 - 17:50:48 - [] ----D C:\ProgramData\DatacardService
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 09/06/2015 - 08:20:06 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 08/06/2015 - 20:41:43 - [] ----D C:\ProgramData\Google
O43 - CFD: 09/06/2015 - 16:52:01 - [] ----D C:\ProgramData\HP
O43 - CFD: 09/06/2015 - 16:52:57 - [] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 08/06/2015 - 17:05:22 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 08/06/2015 - 17:02:36 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 09/06/2015 - 16:55:48 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 10/06/2015 - 18:05:25 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 09/06/2015 - 17:50:45 - [] ----D C:\ProgramData\Mobile Partner
O43 - CFD: 08/06/2015 - 17:02:36 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 09/06/2015 - 05:29:42 - [] ----D C:\ProgramData\Nero
O43 - CFD: 09/06/2015 - 05:48:38 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 09/06/2015 - 05:49:59 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 10/06/2015 - 05:01:50 - [] ----D C:\ProgramData\Oracle
O43 - CFD: 09/06/2015 - 05:16:49 - [] ----D C:\ProgramData\P4G
O43 - CFD: 08/06/2015 - 17:28:10 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 09/06/2015 - 05:21:41 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 09/06/2015 - 18:11:05 - [] ----D C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 08/06/2015 - 20:36:52 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 09/06/2015 - 22:15:01 - [] ----D C:\ProgramData\Sun
O43 - CFD: 22/08/2013 - 16:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 09/06/2015 - 05:25:44 - [] ----D C:\ProgramData\USBChargerPlus
O43 - CFD: 09/06/2015 - 16:52:57 - [] ----D C:\ProgramData\Visan
O43 - CFD: 09/06/2015 - 09:54:08 - [] ----D C:\ProgramData\VS Revo Group
O43 - CFD: 22/08/2013 - 17:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 18/03/2014 - 11:41:34 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 18/03/2014 - 12:29:04 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 11/06/2015 - 09:34:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 09/06/2015 - 16:52:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 11/06/2015 - 08:53:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Imagenomic
O43 - CFD: 08/06/2015 - 19:30:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 09/06/2015 - 08:25:23 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 09/06/2015 - 08:20:07 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
O43 - CFD: 10/06/2015 - 07:49:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 08/06/2015 - 17:06:49 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUP.KMSpico
O43 - CFD: 22/08/2013 - 17:36:33 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 08/06/2015 - 20:37:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
O43 - CFD: 09/06/2015 - 17:50:41 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Partner
O43 - CFD: 09/06/2015 - 05:29:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 08/06/2015 - 19:31:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
O43 - CFD: 11/06/2015 - 09:39:19 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Portrait Professional Studio 10
O43 - CFD: 08/06/2015 - 19:34:30 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
O43 - CFD: 09/06/2015 - 16:58:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programme de désinstallation de l'imprimante Canon
O43 - CFD: 09/06/2015 - 05:58:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent =>P2P.BitTorrent
O43 - CFD: 08/06/2015 - 18:30:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 09/06/2015 - 05:12:28 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
O43 - CFD: 09/06/2015 - 09:54:08 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
O43 - CFD: 22/08/2013 - 17:36:33 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
O43 - CFD: 18/03/2014 - 12:29:04 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 18/03/2014 - 11:41:33 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 08/06/2015 - 19:35:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeraCopy
O43 - CFD: 09/06/2015 - 10:10:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 08/06/2015 - 19:33:34 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 11/06/2015 - 10:54:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 11/06/2015 - 08:31:29 - [] ----D C:\Users\Andry\AppData\Roaming\Adobe
O43 - CFD: 11/06/2015 - 09:39:31 - [] ----D C:\Users\Andry\AppData\Roaming\Anthropics
O43 - CFD: 09/06/2015 - 08:20:21 - [] ----D C:\Users\Andry\AppData\Roaming\Apple Computer
O43 - CFD: 10/06/2015 - 18:04:00 - [] ----D C:\Users\Andry\AppData\Roaming\DMCache
O43 - CFD: 09/06/2015 - 16:52:35 - [0] ----D C:\Users\Andry\AppData\Roaming\HpUpdate
O43 - CFD: 09/06/2015 - 08:45:50 - [] ----D C:\Users\Andry\AppData\Roaming\IDM
O43 - CFD: 11/06/2015 - 08:54:12 - [] ----D C:\Users\Andry\AppData\Roaming\Imagenomic
O43 - CFD: 08/06/2015 - 19:30:47 - [] ----D C:\Users\Andry\AppData\Roaming\InstallShield
O43 - CFD: 08/06/2015 - 17:26:23 - [] ----D C:\Users\Andry\AppData\Roaming\Macromedia
O43 - CFD: 11/06/2015 - 08:48:40 - [] -S--D C:\Users\Andry\AppData\Roaming\Microsoft
O43 - CFD: 09/06/2015 - 05:54:33 - [] ----D C:\Users\Andry\AppData\Roaming\Mozilla
O43 - CFD: 09/06/2015 - 05:30:52 - [] ----D C:\Users\Andry\AppData\Roaming\Nero
O43 - CFD: 08/06/2015 - 18:02:22 - [] ----D C:\Users\Andry\AppData\Roaming\NVIDIA
O43 - CFD: 11/06/2015 - 10:46:34 - [] ----D C:\Users\Andry\AppData\Roaming\qBittorrent =>P2P.BitTorrent
O43 - CFD: 09/06/2015 - 05:22:28 - [] ----D C:\Users\Andry\AppData\Roaming\TeraCopy
O43 - CFD: 10/06/2015 - 18:05:06 - [] ----D C:\Users\Andry\AppData\Roaming\vlc
O43 - CFD: 13/11/2001 - 04:08:05 - [] RSH-D C:\Users\Andry\AppData\Roaming\WinMCD
O43 - CFD: 08/06/2015 - 19:35:37 - [] ----D C:\Users\Andry\AppData\Roaming\WinRAR
O43 - CFD: 11/06/2015 - 10:55:33 - [] ----D C:\Users\Andry\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 11/06/2015 - 08:36:48 - [] ----D C:\Users\Andry\AppData\Local\Adobe
O43 - CFD: 08/06/2015 - 18:29:56 - [] ----D C:\Users\Andry\AppData\Local\Apple
O43 - CFD: 09/06/2015 - 08:20:07 - [] ----D C:\Users\Andry\AppData\Local\Apple Computer
O43 - CFD: 08/06/2015 - 17:02:06 - [] -SH-D C:\Users\Andry\AppData\Local\Application Data
O43 - CFD: 09/06/2015 - 05:16:51 - [] ----D C:\Users\Andry\AppData\Local\ASUS
O43 - CFD: 09/06/2015 - 09:13:00 - [] ----D C:\Users\Andry\AppData\Local\ElevatedDiagnostics
O43 - CFD: 08/06/2015 - 17:05:38 - [] -SH-D C:\Users\Andry\AppData\Local\EmieSiteList
O43 - CFD: 08/06/2015 - 17:05:38 - [] -SH-D C:\Users\Andry\AppData\Local\EmieUserList
O43 - CFD: 08/06/2015 - 20:41:43 - [] ----D C:\Users\Andry\AppData\Local\Google
O43 - CFD: 08/06/2015 - 17:02:06 - [] -SH-D C:\Users\Andry\AppData\Local\Historique
O43 - CFD: 09/06/2015 - 16:52:59 - [] ----D C:\Users\Andry\AppData\Local\HP
O43 - CFD: 09/06/2015 - 20:16:04 - [] ----D C:\Users\Andry\AppData\Local\Intel_Corporation
O43 - CFD: 10/06/2015 - 18:04:06 - [] ----D C:\Users\Andry\AppData\Local\Microsoft
O43 - CFD: 08/06/2015 - 20:36:12 - [0] ----D C:\Users\Andry\AppData\Local\Microsoft Help
O43 - CFD: 09/06/2015 - 05:54:33 - [] ----D C:\Users\Andry\AppData\Local\Mozilla
O43 - CFD: 08/06/2015 - 19:31:30 - [] ----D C:\Users\Andry\AppData\Local\NVIDIA
O43 - CFD: 08/06/2015 - 19:31:15 - [] ----D C:\Users\Andry\AppData\Local\NVIDIA Corporation
O43 - CFD: 10/06/2015 - 07:56:39 - [] ----D C:\Users\Andry\AppData\Local\Packages
O43 - CFD: 08/06/2015 - 17:06:39 - [] ----D C:\Users\Andry\AppData\Local\Programs
O43 - CFD: 09/06/2015 - 05:58:15 - [] ----D C:\Users\Andry\AppData\Local\qBittorrent =>P2P.BitTorrent
O43 - CFD: 11/06/2015 - 10:54:30 - [] ----D C:\Users\Andry\AppData\Local\Temp
O43 - CFD: 08/06/2015 - 17:02:06 - [] -SH-D C:\Users\Andry\AppData\Local\Temporary Internet Files
O43 - CFD: 08/06/2015 - 17:03:06 - [0] ----D C:\Users\Andry\AppData\Local\VirtualStore
O43 - CFD: 09/06/2015 - 09:54:09 - [] ----D C:\Users\Andry\AppData\Local\VS Revo Group
O43 - CFD: 18/03/2014 - 12:29:04 - [] R---D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [] R---D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 08/06/2015 - 17:03:06 - [] R---D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 09/06/2015 - 08:25:23 - [] ----D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
O43 - CFD: 22/08/2013 - 17:36:32 - [] ----D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 09/06/2015 - 18:08:54 - [] ----D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MathMagic for Captivate
O43 - CFD: 09/06/2015 - 05:39:32 - [] ----D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Lockbox
O43 - CFD: 09/06/2015 - 05:24:02 - [] R---D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 18/03/2014 - 12:29:04 - [] R---D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 08/06/2015 - 19:33:34 - [] ----D C:\Users\Andry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 175 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.4E5EA006CFFB96E0BAFC767D659AAB9A] - 06/06/2015 - 22:52:54 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabi.) -- C:\Windows\System32\Drivers\L1C63x64.sys [130248]
O44 - LFC:[MD5.E705D2FA8121A3D28BC1F633275CB212] - 06/06/2015 - 22:53:43 ---A- . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\Windows\System32\Drivers\ETD.sys [380680]
O44 - LFC:[MD5.BBE82125AC1E180DA7E3AF98AB4C0DA2] - 06/06/2015 - 22:55:07 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\Drivers\athwbx.sys [3892224]
O44 - LFC:[MD5.6C6F4A5FC5A2343995D1B0F111D5CF06] - 06/06/2015 - 23:01:44 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [17280]
O44 - LFC:[MD5.E0EF6C1399A9B1AAA0B28590411BED04] - 06/06/2015 - 23:02:01 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [99288]
O44 - LFC:[MD5.D10864C1730172780C2D4BE633B9220A] - 06/06/2015 - 23:02:01 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\WdfCoInstaller01011.dll [1795952]
O44 - LFC:[MD5.AA738BC9CA3519B63C391B3B86850568] - 06/06/2015 - 23:07:07 RSH-- . (...) -- C:\autorun.inf [264]
O44 - LFC:[MD5.AC7A6C85A30657C4C370D604F2FC5075] - 06/06/2015 - 23:07:07 RSH-- . (...) -- C:\jskey.exe [103140]
O44 - LFC:[MD5.5222D99C7E3245882E864D2EA7011387] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\Drivers\ew_usbenumfilter.sys [14976]
O44 - LFC:[MD5.86F7951BBCEE4A86E79A97306BD14318] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ew_hwusbdev.sys [117248]
O44 - LFC:[MD5.F6C1661C55EAAD2DD9FBB37D5DF1A011] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\Drivers\ew_jubusenum.sys [90112]
O44 - LFC:[MD5.4205571B46BAF3A43D43A9804810DF9A] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\Drivers\ew_jucdcacm.sys [104960]
O44 - LFC:[MD5.69CEACB169069B17A9383A734FF0BE1D] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\Drivers\ew_juwwanecm.sys [242688]
O44 - LFC:[MD5.F7D991E5EA0433DBAEEE186CAD2BEBC9] - 08/06/2015 - 09:21:02 ---A- . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\Drivers\ew_juextctrl.sys [30720]
O44 - LFC:[MD5.0E9AD2D3784A0996A5131512939C09C0] - 08/06/2015 - 09:21:02 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\wdfcoinstaller01007.dll [1490656]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 08/06/2015 - 15:59:59 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [64000]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/06/2015 - 16:00:02 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf [0]
O44 - LFC:[MD5.FBFDBF26C0D5DF8282393CF0287F2D19] - 08/06/2015 - 16:00:36 ---A- . (...) -- C:\Windows\DtcInstall.log [2664]
O44 - LFC:[MD5.0E359EF178B73AAAE2C6D6AC11B4FE15] - 08/06/2015 - 16:02:11 ---A- . (...) -- C:\Windows\diagerr.xml [11433]
O44 - LFC:[MD5.0E359EF178B73AAAE2C6D6AC11B4FE15] - 08/06/2015 - 16:02:11 ---A- . (...) -- C:\Windows\diagwrn.xml [11433]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/06/2015 - 16:05:10 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf [0]
O44 - LFC:[MD5.3D733144477CADCF77009EF614413630] - 08/06/2015 - 16:06:48 ---A- . (.Vestris Inc. - ResourceLib.) -- C:\Windows\System32\Vestris.ResourceLib.dll [90112]
O44 - LFC:[MD5.6D7FDBF9CEAC51A76750FD38CF801F30] - 08/06/2015 - 16:06:52 ---A- . (...) -- C:\Windows\SECOH-QAD.dll [3584] =>PUP.KMSpico
O44 - LFC:[MD5.38DE5B216C33833AF710E88F7F64FC98] - 08/06/2015 - 16:06:52 ---A- . (...) -- C:\Windows\SECOH-QAD.exe [4608] =>PUP.KMSpico
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/06/2015 - 16:07:02 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf [0]
O44 - LFC:[MD5.4A112AD7D9C7289FE9945D05E97019D0] - 08/06/2015 - 16:32:11 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [17408]
O44 - LFC:[MD5.3BAAE060A97C0F9AD48AFE3330B577E5] - 08/06/2015 - 16:32:12 ---A- . (.Microsoft Corporation - Windows Setup UI.) -- C:\Windows\System32\WinSetupUI.dll [267264]
O44 - LFC:[MD5.DDFFE37C690F8D0AB05309C11AE8A740] - 08/06/2015 - 16:32:12 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [52224]
O44 - LFC:[MD5.A6D023786B16C2C6FEC235A69F60A5B2] - 08/06/2015 - 16:32:12 ---A- . (.Microsoft Corporation - Windows Update client proxy stub for intern.) -- C:\Windows\System32\wu.upgrade.ps.dll [15360]
O44 - LFC:[MD5.1EB1732C67D40598222103776F7AF829] - 08/06/2015 - 16:32:12 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [66048]
O44 - LFC:[MD5.8DE0A3EC9024DC2AF1DE8BDCE4AEA2C6] - 08/06/2015 - 16:32:13 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [2373632]
O44 - LFC:[MD5.49B0AE13918B1456C1EFB284E4DC52D1] - 08/06/2015 - 16:32:13 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [408064]
O44 - LFC:[MD5.4C6D7A1AA4EB4DA0382484ECF38040A7] - 08/06/2015 - 16:32:13 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288]
O44 - LFC:[MD5.A6B426B5502174F2FDC5D2CA174E6B6C] - 08/06/2015 - 16:32:13 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [95744]
O44 - LFC:[MD5.47C04EEA5C1C3D27744E123F3AF25E57] - 08/06/2015 - 16:32:14 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [891392]
O44 - LFC:[MD5.5F3D70B19BCAC985DA90F22CA2FF45E4] - 08/06/2015 - 16:32:14 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3678720]
O44 - LFC:[MD5.35FAB05339F7083611B12ED7143AFA81] - 08/06/2015 - 16:32:14 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [200192]
O44 - LFC:[MD5.BF5F10811E8249075D48153E8766184D] - 08/06/2015 - 16:32:14 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [35840]
O44 - LFC:[MD5.A40A005B63E305A0509A69A604659944] - 08/06/2015 - 16:32:14 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [133256]
O44 - LFC:[MD5.13E531377E9BAA6E37F6471E0E8277AC] - 08/06/2015 - 17:14:17 ----- . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver.) -- C:\Windows\System32\Drivers\cdr4_xp.sys [10864]
O44 - LFC:[MD5.DAEF5180E390E56F354FE6D69D354EBC] - 08/06/2015 - 17:14:17 ----- . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHel.) -- C:\Windows\System32\Drivers\cdralw2k.sys [11376]
O44 - LFC:[MD5.07D57B890DD5693A6AB660CBAE8F91B4] - 08/06/2015 - 17:14:17 ----- . (.Corel Corporation - Px Engine Device Driver for 64-bit (x86-64).) -- C:\Windows\System32\Drivers\PxHlpa64.sys [56336]
O44 - LFC:[MD5.602EB9AC72A7FFAD3FE62E2750EFD61D] - 08/06/2015 - 18:30:19 ---A- . (...) -- C:\Windows\system.ini [255]
O44 - LFC:[MD5.7160FC226391C0B50C85571FA1A546E5] - 08/06/2015 - 18:31:18 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_43.dll [2401112]
O44 - LFC:[MD5.AD7FA9485059F4DC53C98B49CAB13F0B] - 08/06/2015 - 18:31:19 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_43.dll [511328]
O44 - LFC:[MD5.9D6429F410597750B2DC2579B2347303] - 08/06/2015 - 18:31:19 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx11_43.dll [276832]
O44 - LFC:[MD5.07237C66E05DA6778E9F3CB67FA00736] - 08/06/2015 - 18:34:29 ---A- . (.PowerISO Computing, Inc. - PowerISO Virtual Drive.) -- C:\Windows\System32\Drivers\scdemu.sys [91568]
O44 - LFC:[MD5.C4D3BB777B5A3476E85F7B3422836AE1] - 08/06/2015 - 19:05:27 ---A- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll [2825944]
O44 - LFC:[MD5.DAA6AAD525D12F8985695B882301336F] - 08/06/2015 - 19:36:20 ---A- . (...) -- C:\Windows\win.ini [167]
O44 - LFC:[MD5.E35AD6DAECED1213658E0976A16D6266] - 09/06/2015 - 03:59:24 ---A- . (.Microsoft Corporation - PresentationNative_v0300.dll.) -- C:\Windows\System32\PresentationNative_v0300.dll [1166520]
O44 - LFC:[MD5.DF290FC4E1116D92F34D8B6410AE544E] - 09/06/2015 - 03:59:24 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.A0E7332DC41BB85FBE8E266B8CDF5AC4] - 09/06/2015 - 03:59:24 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe [35480]
O44 - LFC:[MD5.2E04011BC90C109679F5F9CC8F7147FD] - 09/06/2015 - 04:10:57 ---A- . (...) -- C:\Windows\System32\IconCfg0.ini [213]
O44 - LFC:[MD5.4309FEDEEC3937DA065E74CBDF29F9FD] - 09/06/2015 - 04:10:57 ---A- . (.Genesys - GeneIcon.) -- C:\Windows\System32\GeneIcon.dll [5623808]
O44 - LFC:[MD5.63913D2C2E26304F1410AC734472BA13] - 09/06/2015 - 04:10:58 ---A- . (.GenesysLogic - GeneStor.) -- C:\Windows\System32\Drivers\GeneStor.sys [100072]
O44 - LFC:[MD5.B9B73E9AF77BC79C46E499A1D3B09D67] - 09/06/2015 - 04:12:16 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (64-bit).) -- C:\Windows\System32\AERTAC64.dll [560328]
O44 - LFC:[MD5.B3E9EA31E37EDCC1D54CE20504549ABE] - 09/06/2015 - 04:12:16 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (64-bit).) -- C:\Windows\System32\AERTAR64.dll [108640]
O44 - LFC:[MD5.8B5A737AD11EF45D9B1AEB4ED6884968] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Bass Enhancement COM DLL.) -- C:\Windows\System32\DTSBassEnhancementDLL64.dll [728680]
O44 - LFC:[MD5.21B38D4D86A87909491F690883AE6D1E] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Boost COM DLL.) -- C:\Windows\System32\DTSBoostDLL64.dll [1486952]
O44 - LFC:[MD5.BC0474E5476E5EA0D0E1AA5AC41E2061] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPO64.dll [242792]
O44 - LFC:[MD5.3B8FB5376F5431C0101747D5138BCB9B] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSGFXAPONS64.dll [241768]
O44 - LFC:[MD5.37B8A8089ECED77F6CEAF74917C5D12B] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS GFX APO.) -- C:\Windows\System32\DTSU2PGFX64.dll [487360]
O44 - LFC:[MD5.FF31A2F57AAAB58DB78FCC961A58B206] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Gain Compensator COM DLL.) -- C:\Windows\System32\DTSGainCompensatorDLL64.dll [428648]
O44 - LFC:[MD5.B3977C8BA77559F4F8752AE8EB724C87] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSLFXAPO64.dll [242792]
O44 - LFC:[MD5.8AE860D92752CFA136979B1FF797FFDC] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSU2PLFX64.dll [501184]
O44 - LFC:[MD5.A9B98F96FBE514ADEABD20B2BD132172] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS LFX APO.) -- C:\Windows\System32\DTSU2PREC64.dll [415680]
O44 - LFC:[MD5.192A03A21636D3775CEE4C049C3BEB2A] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Limiter COM DLL.) -- C:\Windows\System32\DTSLimiterDLL64.dll [432744]
O44 - LFC:[MD5.2EF5442E8E7ED20F7634EEFB09640C8F] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS NEO:PC COM DLL.) -- C:\Windows\System32\DTSNeoPCDLL64.dll [491112]
O44 - LFC:[MD5.F7C357462077156DC211AC2112FC8C53] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Surround Sensation Headphone COM DLL.) -- C:\Windows\System32\DTSS2HeadphoneDLL64.dll [1568360]
O44 - LFC:[MD5.F132C08BD8C58579B400DFAA71F34CFB] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Surround Sensation Speaker COM DLL.) -- C:\Windows\System32\DTSS2SpeakerDLL64.dll [1756264]
O44 - LFC:[MD5.9948969B2C1987B1D64789EFEB284A84] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Symmetry COM DLL.) -- C:\Windows\System32\DTSSymmetryDLL64.dll [712296]
O44 - LFC:[MD5.DE32448E6B40141C80DAABFF6FBE1744] - 09/06/2015 - 04:12:16 ---A- . (.DTS - DTS Voice Clarity COM DLL.) -- C:\Windows\System32\DTSVoiceClarityDLL64.dll [693352]
O44 - LFC:[MD5.C71D1DAFA22B5D3B71853783E5AA09D2] - 09/06/2015 - 04:12:16 ---A- . (.Dolby Laboratories - Dolby DS1PC Control Panel x86.) -- C:\Windows\System32\DDPP64A.dll [7087448]
O44 - LFC:[MD5.CAC823DDBB6E785DB76906BFCCFE55AF] - 09/06/2015 - 04:12:16 ---A- . (.Dolby Laboratories - Dolby Digital Plus API x86.) -- C:\Windows\System32\DDPA64.dll [261464]
O44 - LFC:[MD5.DE67ADEAC731C1ED3BD76527AB530BA5] - 09/06/2015 - 04:12:16 ---A- . (.Dolby Laboratories - Dolby Digital Plus APO x86.) -- C:\Windows\System32\DDPO64A.dll [315736]
O44 - LFC:[MD5.018EFD4A9BF6FDA0F1AA3A6DE5712CD9] - 09/06/2015 - 04:12:16 ---A- . (.Dolby Laboratories - Dolby Digital Plus COM DLL x86.) -- C:\Windows\System32\DDPD64A.dll [1939800]
O44 - LFC:[MD5.4D87D76E686BAEFD24FE5D3F6913E543] - 09/06/2015 - 04:12:16 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\System32\FMAPO64.dll [3182104]
O44 - LFC:[MD5.6F7D1601DA55BBE5C7A79E01E236D7B9] - 09/06/2015 - 04:12:16 ---A- . (.Knowles Acoustics - Knowles HD Audio APO.) -- C:\Windows\System32\KAAPORT64.dll [603984]
O44 - LFC:[MD5.6E14F444A2506049EEC25CB5EDFE0905] - 09/06/2015 - 04:12:16 ---A- . (.Real Sound Lab SIA - CONEQ™ Media Suite APO GUI Library.) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll [113576]
O44 - LFC:[MD5.75616F8DB5C092A8A50AFEC273859DD7] - 09/06/2015 - 04:12:16 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO20.dll [318808]
O44 - LFC:[MD5.06080807E61471A18AD99F3E6FF3C9B5] - 09/06/2015 - 04:12:16 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO30.dll [663296]
O44 - LFC:[MD5.80C4F3C1718C9EB97872E8074F215D35] - 09/06/2015 - 04:12:16 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\System32\MaxxAudioAPO4064.dll [1136728]
O44 - LFC:[MD5.E93ADE8C38CA41442FE60E844DED92AC] - 09/06/2015 - 04:12:16 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\System32\MaxxAudioEQ64.dll [2041432]
O44 - LFC:[MD5.B4B43EEA0AA9F46CB94439AEB506595A] - 09/06/2015 - 04:12:17 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [1946666]
O44 - LFC:[MD5.8882AD10853E45402CABD3BAF48A7EFC] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 ASL Analog x64.) -- C:\Windows\System32\R4EEA64A.dll [124176]
O44 - LFC:[MD5.0B5EF50E26CFD1E7BF01E32E053532B2] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 COM DLL x64.) -- C:\Windows\System32\R4EED64A.dll [434960]
O44 - LFC:[MD5.03625A179B27362D3A90E3331AEBE95E] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 Control Panel x64.) -- C:\Windows\System32\R4EEP64A.dll [7164176]
O44 - LFC:[MD5.01096663377134C41D618AF0E53A953E] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 GFX APO x64.) -- C:\Windows\System32\R4EEG64A.dll [75024]
O44 - LFC:[MD5.D0EB28022A91A5C084E8A7DEBB08D8D2] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories - Dolby PCEE4 LFX APO x64.) -- C:\Windows\System32\R4EEL64A.dll [141584]
O44 - LFC:[MD5.A6286A6C7A1BBFCBA17AA54384A21D1C] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) -- C:\Windows\System32\RTEED64A.dll [204120]
O44 - LFC:[MD5.D0D0D82B7366E691275E433CD34F89B2] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) -- C:\Windows\System32\RTEEP64A.dll [375128]
O44 - LFC:[MD5.6F4CD493196100EEF349D7132CECAFD9] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) -- C:\Windows\System32\RTEEG64A.dll [78680]
O44 - LFC:[MD5.ECAEC5FBBBEF8612AF0A866AFA5F7EF2] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) -- C:\Windows\System32\RTEEL64A.dll [101208]
O44 - LFC:[MD5.E9D4A333DF15D06C68AC4BFB9B6581CB] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) -- C:\Windows\System32\RP3DAA64.dll [310104]
O44 - LFC:[MD5.B6FE01558CC03F3866C9AD0ED19261D8] - 09/06/2015 - 04:12:17 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) -- C:\Windows\System32\RP3DHT64.dll [310104]
O44 - LFC:[MD5.4A1CA878196886743FE0E84F02C2C1DA] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - HDA driver COM file.) -- C:\Windows\System32\RtDataProc64.dll [631000]
O44 - LFC:[MD5.01665AF817140CF21BAF3B0A35B4A8DC] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - RTCOMDLL Module.) -- C:\Windows\System32\RTCOM64.dll [1300184]
O44 - LFC:[MD5.AF70978706F94E1453E68F81C123CA80] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\System32\RtkApi64.dll [3218800]
O44 - LFC:[MD5.CD3F906FFA6CC16B27DADB0B913C83A7] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller Resource.) -- C:\Windows\System32\RCoRes64.dat [72113152]
O44 - LFC:[MD5.B766DE8E73BC2D92BC32EE826E2D9C6E] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RCoInstII64.dll [1709272]
O44 - LFC:[MD5.8814A281406553A2640D6A04702C63BD] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\System32\RtkCoLDR64.dll [14952]
O44 - LFC:[MD5.5644066210DE0CEA1BE04913E1FEE50E] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\System32\RTSnMg64.cpl [2702040]
O44 - LFC:[MD5.D4DDF88B6B7DB5D0287A2A795E12E27C] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\System32\RtPgEx64.dll [2907864]
O44 - LFC:[MD5.C922D0174FFA232A2E208BC9B37DFE5D] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [4437976]
O44 - LFC:[MD5.87A274591FDC6900A3A37ACD7A6D8181] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) LFX/GFX DSP component.) -- C:\Windows\System32\RltkAPO64.dll [2812632]
O44 - LFC:[MD5.0805289E121F3E3C458C970B08314EB2] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - RtkCfg.dll.) -- C:\Windows\System32\RtkCfg64.dll [149608]
O44 - LFC:[MD5.CA1D7D09854D305A64B100DC1400BA21] - 09/06/2015 - 04:12:17 ---A- . (.Realtek Semiconductor Corp. - RtlCPAPI Module.) -- C:\Windows\System32\RtlCPAPI64.dll [331880]
O44 - LFC:[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - 09/06/2015 - 04:12:17 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\System32\SRSHP64.dll [198896]
O44 - LFC:[MD5.A028717B791416182959B325D5B40679] - 09/06/2015 - 04:12:17 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\System32\SRSTSH64.dll [211184]
O44 - LFC:[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - 09/06/2015 - 04:12:17 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\System32\SRSTSX64.dll [518896]
O44 - LFC:[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - 09/06/2015 - 04:12:17 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\System32\SRSWOW64.dll [155888]
O44 - LFC:[MD5.B4D7A07098508A3BCC3C57612F890F98] - 09/06/2015 - 04:12:17 ---A- . (.Sony Corporation - Sony SFSS APO.) -- C:\Windows\System32\SFSS_APO.dll [947760]
O44 - LFC:[MD5.17ABCAD44A75C635583A238ED6333357] - 09/06/2015 - 04:12:17 ---A- . (.Synopsys, Inc. - SFAPO.DLL.) -- C:\Windows\System32\SFAPO64.dll [78688]
O44 - LFC:[MD5.2C25AF115BDDC05D9A84D26227A08E63] - 09/06/2015 - 04:12:17 ---A- . (.Synopsys, Inc. - SFCOM.DLL.) -- C:\Windows\System32\SFCOM64.dll [81248]
O44 - LFC:[MD5.7B3E9344FB43D799C6462227A0E65877] - 09/06/2015 - 04:12:17 ---A- . (.Synopsys, Inc. - SFNHK.DLL.) -- C:\Windows\System32\SFNHK64.dll [221024]
O44 - LFC:[MD5.95F25E2D41AACCB8956F8E3C6740E377] - 09/06/2015 - 04:12:17 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement APO x64.) -- C:\Windows\System32\tadefxapo.dll [148416]
O44 - LFC:[MD5.D6798B461B2BFBFFB0F3C0DCF0A961AE] - 09/06/2015 - 04:12:17 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement APO.) -- C:\Windows\System32\tadefxapo264.dll [856992]
O44 - LFC:[MD5.587A8CF457604D84266FF858CEB60223] - 09/06/2015 - 04:12:17 ---A- . (.Waves Audio Ltd. - MaxxVolumeSD APO.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll [662784]
O44 - LFC:[MD5.C082B23A77E89D5AA0329777FF34A0DE] - 09/06/2015 - 04:12:18 ---A- . (.TOSHIBA CORPORATION. - Tepeq APO.) -- C:\Windows\System32\tepeqapo64.dll [65944]
O44 - LFC:[MD5.7380AE45CFA24369A7305520897142B8] - 09/06/2015 - 04:12:18 ---A- . (.TOSHIBA Corporation - TOSHIBA Audio Enhancement x64.) -- C:\Windows\System32\tosade.dll [1361336]
O44 - LFC:[MD5.956E2A1D0BF4E1E88F86343F97D0F398] - 09/06/2015 - 04:12:22 ---A- . (...) -- C:\Windows\System32\Drivers\RTWAVES40.dat [317063]
O44 - LFC:[MD5.63070E80CEFC2A3D4110EEFE39FEE190] - 09/06/2015 - 04:12:23 ---A- . (...) -- C:\Windows\System32\Drivers\rtwavesEFX.dat [6786]
O44 - LFC:[MD5.2BCDBF9CED1585AC3EA1028C638F67C4] - 09/06/2015 - 04:12:23 ---A- . (...) -- C:\Windows\System32\Drivers\rtwavesMFX.dat [2626]
O44 - LFC:[MD5.CEF1AF4475D9EC0D11FB534C1E2787D3] - 09/06/2015 - 04:19:09 ---A- . (...) -- C:\Windows\DPINST.LOG [4868]
O44 - LFC:[MD5.A511A028F8A62D17D93545ABDABE63AD] - 09/06/2015 - 04:20:46 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6434752.dll [1895240]
O44 - LFC:[MD5.7E666353814451F0F542A2C3A84B34A8] - 09/06/2015 - 04:20:46 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6434752.dll [1557648]
O44 - LFC:[MD5.CB920861634998012265581496BC66EA] - 09/06/2015 - 04:21:52 ----- . (...) -- C:\Windows\System32\athwbx.cat [92643]
O44 - LFC:[MD5.6BE225708B1491D19035CD4671B6D557] - 09/06/2015 - 04:21:52 ----- . (...) -- C:\Windows\System32\athwbx.inf [398043]
O44 - LFC:[MD5.BBE82125AC1E180DA7E3AF98AB4C0DA2] - 09/06/2015 - 04:21:52 ----- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\athwbx.sys [3892224]
O44 - LFC:[MD5.8197C85348A33BCCFE80DD6E2DB53903] - 09/06/2015 - 04:39:32 ---A- . (.FSPro Labs - FSPro File System Filter.) -- C:\Windows\System32\Drivers\FSPFltd.sys [54848]
O44 - LFC:[MD5.8E98D21EE06192492A5671A6144D092F] - 09/06/2015 - 07:20:06 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O44 - LFC:[MD5.9C3AC71A9934B884FAC567A8807E9C4D] - 09/06/2015 - 08:54:07 ---A- . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\Windows\System32\Drivers\revoflt.sys [31800]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/06/2015 - 16:49:39 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf [0]
O44 - LFC:[MD5.15E399875C850B54FC253A2323AD8021] - 09/06/2015 - 16:50:10 ---A- . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\Drivers\mod7700.sys [1001472]
O44 - LFC:[MD5.F572B7467B5CB4FA8FB6319575902E41] - 09/06/2015 - 16:50:10 ---A- . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\Drivers\ewdcsc.sys [32768]
O44 - LFC:[MD5.24FA6177FE55C4BC045EC87E39F90688] - 09/06/2015 - 16:50:10 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ewusbmdm.sys [225920]
O44 - LFC:[MD5.7F938A48B0584E1F35524602D5C5ACF8] - 09/06/2015 - 16:50:10 ---A- . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\Drivers\ewusbwwan.sys [452608]
O44 - LFC:[MD5.CACBDF30051DFB383E24B3E731D82BDE] - 09/06/2015 - 16:50:10 ---A- . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\Drivers\ew_hwupgrade.sys [22016]
O44 - LFC:[MD5.960642199D1C19E066367958E317779B] - 09/06/2015 - 16:50:10 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\Drivers\ew_jucdcecm.sys [76800]
O44 - LFC:[MD5.0E9AD2D3784A0996A5131512939C09C0] - 09/06/2015 - 16:50:10 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\Drivers\WdfCoInstaller01007.dll [1490656]
O44 - LFC:[MD5.718FECF22BF4BD4FC05B79AA4BEC75D0] - 09/06/2015 - 18:20:00 ---A- . (...) -- C:\Windows\Language_trs.ini [1769]
O44 - LFC:[MD5.E857CA0870A574A232C4814211D50028] - 09/06/2015 - 18:20:00 ---A- . (...) -- C:\Windows\wininit.ini [110]
O44 - LFC:[MD5.F3B25701FE362EC84616A93A45CE9998] - 09/06/2015 - 18:21:19 ---A- . (...) -- C:\Windows\AsCDProc.log [2]
O44 - LFC:[MD5.CD89ED65EE21D7C3A979C6F2198357A2] - 10/06/2015 - 06:49:28 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\WindowsAccessBridge-64.dll [110688]
O44 - LFC:[MD5.E8DB255EB2AB5C063DB8F444CAB2DBD3] - 10/06/2015 - 17:06:10 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [5208672]
O44 - LFC:[MD5.B30EF63BAFE4632CD1AA61E3CB1A8B51] - 10/06/2015 - 18:14:25 ---A- . (...) -- C:\Windows\setupact.log [50061]
O44 - LFC:[MD5.C8CE093C74D26F17EF698A767962A98B] - 11/06/2015 - 08:13:13 ---A- . (...) -- C:\Windows\PFRO.log [9138]
O44 - LFC:[MD5.8F2F2EF14D173B7EDBDE93B7CA77BE37] - 11/06/2015 - 08:36:51 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.5EF6D700896DC0C243303D574315F6B3] - 11/06/2015 - 08:41:10 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1831820]
O44 - LFC:[MD5.48B346B0A6DFF3FDDC05CB50B8C343F1] - 11/06/2015 - 08:41:10 ---A- . (...) -- C:\Windows\System32\perfc009.dat [136436]
O44 - LFC:[MD5.1AEBB17E0EF001E87546A9C1DC7A7BCF] - 11/06/2015 - 08:41:10 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [160394]
O44 - LFC:[MD5.C7DFD2C60DA2A873ED91AB307D141E5D] - 11/06/2015 - 08:41:10 ---A- . (...) -- C:\Windows\System32\perfh009.dat [725380]
O44 - LFC:[MD5.6E050F1C231FFA86C44D7EC4DD41DD02] - 11/06/2015 - 08:41:10 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [815098]
O44 - LFC:[MD5.69E36FBD7F492D82337F94FA0C453537] - 11/06/2015 - 09:52:34 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2045785]
O44 - LFC:[MD5.1DAA514FDC61ABF63AC7EBA3C2D1095C] - 27/05/2015 - 11:48:20 ---A- . (...) -- C:\Windows\System32\nvcoproc.bin [4408727]
O44 - LFC:[MD5.E519A99D99C05B8E595BF6EA5A97D185] - 28/05/2015 - 05:15:28 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [6872904]
O44 - LFC:[MD5.84D65060583B135867E2FCFA913D9DEB] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [62608]
O44 - LFC:[MD5.36ADC305374F12E2D395BCF803FB591F] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) -- C:\Windows\System32\nvsvc64.dll [3491984]
O44 - LFC:[MD5.A1F75503A8DCA37FD38D38BB229812F3] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) -- C:\Windows\System32\nvsvcr.dll [2558608]
O44 - LFC:[MD5.FFEBE2767AB7A1732727143D8885FB16] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\System32\nv3dappshextr.dll [75080]
O44 - LFC:[MD5.28C5C7222F0CF2194F03A3778180D5AC] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [385168]
O44 - LFC:[MD5.50833CA71C8C6B42B98536A52713544D] - 28/05/2015 - 05:15:29 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\nv3dappshext.dll [1059472]
O44 - LFC:[MD5.5141D408272B3681ED6A0E8CCF771EF9] - 28/05/2015 - 05:15:30 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) -- C:\Windows\System32\nvvsvc.exe [937288]
O44 - LFC:[MD5.8AC1617AB2D28FEB6AA7A99CD519E507] - 28/05/2015 - 08:04:11 ---A- . (...) -- C:\Windows\System32\nvcompiler.dll [42719888]
O44 - LFC:[MD5.B887A34F4D7F6BC0446A397DF2088B77] - 28/05/2015 - 08:04:11 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [30966]
O44 - LFC:[MD5.3C45F553479FF1EFC851CA7931ADABF7] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6435306.dll [1898312]
O44 - LFC:[MD5.393EA17561266EFEB42F617C357170C0] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6435306.dll [1557832]
O44 - LFC:[MD5.F57473090465323A774A648B35CAC3E8] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA CUDA 7.5.8 OpenCL 1.1 Driver, Versio.) -- C:\Windows\System32\nvopencl.dll [16185352]
O44 - LFC:[MD5.0A3C9AA1CEAD27AAF5821DF57C092C54] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 353.06.) -- C:\Windows\System32\nvcuda.dll [14495448]
O44 - LFC:[MD5.EAB88B9A62A1C0D7D647B2F6AF109796] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 353.0.) -- C:\Windows\System32\nvcuvid.dll [2932368]
O44 - LFC:[MD5.59A1620113E29C6BCC032E11364269A8] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\System32\nvspcap64.dll [1571696]
O44 - LFC:[MD5.9B34CEAB71176AAB18BE01F846EB4549] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv64.dll [30480528]
O44 - LFC:[MD5.5A8A5D76E5DEB1E49C63663095959FAA] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 353.06.) -- C:\Windows\System32\nvwgf2umx.dll [17486856]
O44 - LFC:[MD5.BDBADB22270DEFD75A411B0EAECCB8BA] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Frame Buffer Capture Library, Versio.) -- C:\Windows\System32\NvFBC64.dll [1050440]
O44 - LFC:[MD5.8295C92F1B3D7A59B292D7B436E031B6] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA GFE - Notification Bridge.) -- C:\Windows\System32\nvspbridge64.dll [1756424]
O44 - LFC:[MD5.81A179BC07909A1D122F38E14E6BDF53] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA In-band Frame Rendering Library, Ver.) -- C:\Windows\System32\NvIFR64.dll [1059984]
O44 - LFC:[MD5.874B8779B6FEFA70C33792ED6ED7F327] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 353.06.) -- C:\Windows\System32\nvapi64.dll [3379680]
O44 - LFC:[MD5.C5AEB14E6F881ECFB6FF6A45E82FA224] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA OpenGL In-band Frame Readback Librar.) -- C:\Windows\System32\NvIFROpenGL.dll [408208]
O44 - LFC:[MD5.AD8BEBFEF735A99502C726A0F8D2AC78] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Video Encoder API, Version 3.0.) -- C:\Windows\System32\nvEncodeAPI64.dll [503408]
O44 - LFC:[MD5.D0EB00C3BDD50E9CABA534CF829593E8] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38032]
O44 - LFC:[MD5.CF2D5A4298905F53D50EB517A3171427] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\nvaudcap64v.dll [52880]
O44 - LFC:[MD5.09AFE3B5E7C857EFCF2A345C8E35574E] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 353.06.) -- C:\Windows\System32\nvd3dumx.dll [15864064]
O44 - LFC:[MD5.017E0B4AEFCB291E7CF1CD4BF120A7A8] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10995528]
O44 - LFC:[MD5.DFE633DD64458E5241118D80D709A07E] - 28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 353.) -- C:\Windows\System32\nvinitx.dll [175880]
~ Files: 184 Scanned in 00mn 03s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.9A11E8A6C6B76C7EE7FB394D9926DBDB] - 11/06/2015 - 08:15:30 ---A- - C:\Windows\Prefetch\QBITTORRENT.EXE-FE4FB689.pf =>P2P.BitTorrent
O45 - LFCP:[MD5.7817FF2799267C3DA7903E6A9C1949F3] - 09/06/2015 - 04:58:04 ---A- - C:\Windows\Prefetch\QBITTORRENT_3.2.0_SETUP.EXE-6ECA8250.pf =>P2P.BitTorrent
O45 - LFCP:[MD5.AE9714077EA61E98D36549EE0E186495] - 11/06/2015 - 08:44:54 ---A- - C:\Windows\Prefetch\SECOH-QAD.EXE-8A261E67.pf =>PUP.KMSpico
~ Prefetcher: 3 Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
~ LSA: 3 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPSK) (O51)
O51 - MPSK:{011e2232-0ebf-11e5-8265-90489a6926e8}\AutoRun\command. (...) -- H:\AutoRun.exe (.not file.)
O51 - MPSK:{622befe9-0db4-11e5-8266-90489a6926e8}\AutoRun\command. (...) -- G:\AutoRun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=181
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 4 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:17/04/2013 - 14:53:10 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\System32\Drivers\AiCharger.sys [17152]
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:04/11/2013 - 02:32:06 ---A- . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\Drivers\AsHIDSwitch64.sys [20280]
O58 - SDL:06/03/2014 - 21:53:16 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athwbx.sys [3892224]
O58 - SDL:13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:25/02/2014 - 20:53:02 ---A- . (.Qualcomm Atheros - Qualcomm Atheros BtFilter Driver.) -- C:\Windows\System32\Drivers\btfilter.sys [598216]
O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
O58 - SDL:24/04/2012 - 02:01:00 ----- . (.Corel Corporation - CDR4 64-bit CD and DVD Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdr4_xp.sys [10864]
O58 - SDL:24/04/2012 - 02:01:00 ----- . (.Corel Corporation - CDRAL 64-bit Place Holder Driver (see PxHelp).) -- C:\Windows\System32\Drivers\cdralw2k.sys [11376]
O58 - SDL:02/08/2013 - 09:28:38 ---A- . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\Windows\System32\Drivers\ETD.sys [380680]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024]
O58 - SDL:08/10/2010 - 09:59:40 ---A- . (.Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) -- C:\Windows\System32\Drivers\ewdcsc.sys [32768]
O58 - SDL:31/12/2011 - 02:20:58 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ewusbmdm.sys [225920]
O58 - SDL:03/12/2012 - 11:40:54 ---A- . (.Huawei Technologies Co., Ltd. - USB NDIS Miniport Driver.) -- C:\Windows\System32\Drivers\ewusbwwan.sys [452608]
O58 - SDL:26/09/2010 - 11:09:28 ---A- . (.Huawei Technologies Co., Ltd. - ew_hwupgrade Driver.) -- C:\Windows\System32\Drivers\ew_hwupgrade.sys [22016]
O58 - SDL:27/07/2010 - 02:52:16 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ew_hwusbdev.sys [117248]
O58 - SDL:20/08/2012 - 01:55:56 ---A- . (.Huawei Technologies Co., Ltd. - ew_jubusenum Driver.) -- C:\Windows\System32\Drivers\ew_jubusenum.sys [90112]
O58 - SDL:20/08/2012 - 01:55:56 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcacm Driver.) -- C:\Windows\System32\Drivers\ew_jucdcacm.sys [104960]
O58 - SDL:22/12/2012 - 02:41:00 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\Drivers\ew_jucdcecm.sys [76800]
O58 - SDL:20/08/2012 - 01:55:56 ---A- . (.Huawei Technologies Co., Ltd. - ew_juextctrl Driver.) -- C:\Windows\System32\Drivers\ew_juextctrl.sys [30720]
O58 - SDL:22/12/2012 - 02:41:52 ---A- . (.Huawei Technologies Co., Ltd. - ew_jucdcndis Driver.) -- C:\Windows\System32\Drivers\ew_juwwanecm.sys [242688]
O58 - SDL:22/12/2012 - 02:46:10 ---A- . (.Huawei Technologies Co., Ltd. - Filter Driver.) -- C:\Windows\System32\Drivers\ew_usbenumfilter.sys [14976]
O58 - SDL:22/07/2010 - 16:13:28 ---A- . (.FSPro Labs - FSPro File System Filter.) -- C:\Windows\System32\Drivers\FSPFltd.sys [54848]
O58 - SDL:03/10/2012 - 15:14:56 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O58 - SDL:02/08/2013 - 14:07:12 ---A- . (.GenesysLogic - GeneStor.) -- C:\Windows\System32\Drivers\GeneStor.sys [100072]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352]
O58 - SDL:30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000]
O58 - SDL:27/06/2013 - 10:57:42 ---A- . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\Drivers\idmwfp.sys [172920]
O58 - SDL:01/10/2013 - 12:02:30 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4177920]
O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\intelaud.sys [39320]
O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\iwdbus.sys [26008]
O58 - SDL:06/08/2012 - 10:17:18 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [17280]
O58 - SDL:18/07/2013 - 12:55:44 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C63x64.sys [130248]
O58 - SDL:22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536]
O58 - SDL:22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672]
O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840]
O58 - SDL:06/08/2010 - 00:43:20 ---A- . (.DiBcom SA - DiBcom AVSTREAM BDA driver.) -- C:\Windows\System32\Drivers\mod7700.sys [1001472]
O58 - SDL:22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840]
O58 - SDL:28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 353.06.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10995528]
O58 - SDL:22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368]
O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288]
O58 - SDL:28/05/2015 - 08:04:11 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38032]
O58 - SDL:22/06/2012 - 02:01:00 ----- . (.Corel Corporation - Px Engine Device Driver for 64-bit (x86-64) Windows.) -- C:\Windows\System32\Drivers\PxHlpa64.sys [56336]
O58 - SDL:30/12/2009 - 09:21:26 ---A- . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\Windows\System32\Drivers\revoflt.sys [31800]
O58 - SDL:17/03/2015 - 18:02:00 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [4437976]
O58 - SDL:09/11/2009 - 04:28:08 ---A- . (.PowerISO Computing, Inc. - PowerISO Virtual Drive.) -- C:\Windows\System32\Drivers\scdemu.sys [91568]
O58 - SDL:22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896]
O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760]
O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:23/10/2013 - 12:44:48 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [99288]
O58 - SDL:30/05/2012 - 12:10:50 ---A- . (.Intel(R) Corporation - TurboB Device Driver.) -- C:\Windows\System32\Drivers\TurboB.sys [16168]
O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808]
O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800]
O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504]
O58 - SDL:06/03/2014 - 21:53:16 ----- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athwbx.sys [3892224]
~ Drivers: 67 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.BackgroundStyles_8_1_RP-9f980e6d.dll [12248]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Extension_8_1_RTM-ceb424f3.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Medium_Landscape_8_1_RTM-ddcfb8f2.dll [13272]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Medium_Portrait_8_1_RTM-42de12af.dll [12248]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.SerpAdsLayout_8_1_RTM-3dc295a4.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Small_Generic_8_1_RP-07c96673.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Local\Multimedia.ImageDetails.dll [18392]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreItem_8_1_RTM-b18e1027.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Landscape_8_1_RP-e50a2a67.dll [12760]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Portrait_8_1_RP-1f4469d2.dll [12760]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Snap_8_1_RP-936e182b.dll [12760]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\MsnJVData.Video_Styles_8_1_RTM-9da0e9ee.dll [10712]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Landscape_8_1_RP-9d7f86a9.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Portrait_8_1_RP-e2820368.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Snap_8_1_RP-28755c71.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.ImageDetails_RTM-645d8117.dll [18392]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.Home_Horizontal_8_1_RP-bb56e430.dll [10712]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.Home_Vertical_8_1_RP-a4518597.dll [10712]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.ListItem_8_1_RP-cfced051.dll [10712]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.AccentColorStyles_8_1_RP-f16782e7.dll [13272]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.AppButton_8_1_RP-df2cf5e1.dll [12760]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.Branding_8_1_RTM-1aa170b9.dll [15320]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.ButtonStyles_8_1_SpringGDR-ff8d7ba7.dll [25560]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.FactsList_8_1_RP-bf695b40.dll [15320]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.GridViewStyles_8_1_SpringGDR-deacc251.dll [30680]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.HeroStyles_8_1_RTM-45ef23fc.dll [23000]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.ImageStyles_8_1_SpringGDR-1e013bca.dll [12248]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.List_8_1_RTM-dddcb8a3.dll [17880]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.NullableImageWithCustomBackground_8_1_SpringGDR-ed3aa063.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.NullableImage_8_1_SpringGDR-61977366.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.Rating_8_1_RP-5b672b01.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.SerpAnswerBlock_Selectable_8_1_RP-50f23571.dll [14808]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.SerpAnswerBlock_Suppressed_8_1_RP-9749e2bf.dll [14296]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.SerpGridViewStyles_8_1_RTM-585bfba1.dll [23512]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.TextStyles_8_1_SpringGDR-bc62340a.dll [35800]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.Algo_Generic_8_1_RP-473969cf.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_Landscape_8_1_RP-093821dc.dll [13272]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_Portrait_8_1_RP-f96819b8.dll [14296]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_VerticalNarrow_8_1_RP-92e040cb.dll [12248]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.MetadataWithoutSuffix_8_1_RP-9fcd7344.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.Metadata_8_1_RP-e29ff4ad.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.RichAlgo_Landscape_8_1_RP-30e0ff7c.dll [11224]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.RichAlgo_Portrait_8_1_RP-9812756d.dll [11736]
O61 - LFC: 08/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\INetCache\Virtualized\C\ProgramData\NVIDIA Corporation\Drs\nvdrssel.bin [1]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\NVIDIA\GLCache\c37bbe13d252bc690e4b38166e72dc48\3891019ca73a9a2e\143940d7b869002d.bin [207076]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\NVIDIA\GLCache\c37bbe13d252bc690e4b38166e72dc48\3891019ca73a9a2e\637d27b69533bb65.bin [6232]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\NVIDIA\GLCache\c37bbe13d252bc690e4b38166e72dc48\3891019ca73a9a2e\74e31a1e564c28b3.bin [4191]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\NVIDIA\GLCache\c37bbe13d252bc690e4b38166e72dc48\3891019ca73a9a2e\fcd7cf460f457ee6.bin [11844]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Rockstar Games\GTA V\Profiles\DFE3B7FD\pc_settings.bin [904]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.0.8 Final (32-64 Bit) ML - SceneDL (PimpRG)\Installer\RevoUninProSetup.exe [10619688]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.0.8 Final (32-64 Bit) ML - SceneDL (PimpRG)\Medicine\Crack\32-Bit\RevoAppBar.exe [2938432]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.0.8 Final (32-64 Bit) ML - SceneDL (PimpRG)\Medicine\Crack\32-Bit\RevoUninPro.exe [14102584]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.0.8 Final (32-64 Bit) ML - SceneDL (PimpRG)\Medicine\Crack\64-Bit\RevoAppBar.exe [3739208]
O61 - LFC: 08/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.0.8 Final (32-64 Bit) ML - SceneDL (PimpRG)\Medicine\Crack\64-Bit\RevoUninPro.exe [17006136]
O61 - LFC: 09/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [411415]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4421614]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\avgSecurityToolbar\AVGSaveguardInstaller.exe [2940496]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\avgSecurityToolbar\AVGToolbarInstaller.exe [2943568]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\lightscribeSystemSoftware\LSDriveDetect.exe [81920]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\lightscribeSystemSoftware\LS_LAUNCHER.exe [90384]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\msi4.5ForWindowsxpX86\WindowsXP-KB942288-v3-x86.exe [3327000]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DXSETUP.exe [517976]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\dsetup32.dll [1566040]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\lightscribeSystemSoftware\LSDriveDetect.exe [81920]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\lightscribeSystemSoftware\LS_LAUNCHER.exe [90384]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\msi4.5ForWindowsxpX86\WindowsXP-KB942288-v3-x86.exe [3327000]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\cct.dll [96288]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\my_intel.sys [21]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Downloads\Programs\IDM CC.exe [641240]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Adobe Systems, Inc..) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\adobeflash\install_flash_player_11_active_x_32bit.exe [3797152]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Ask Partner Network.) -- C:\Users\Andry\AppData\Local\Temp\JavaIC.dll [287120]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.McAfee, Inc..) -- C:\Users\Andry\AppData\Local\Temp\msscct32.dll [331488]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\vcredist_x86.exe [4995416]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\DSETUP.dll [95576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\vcredist_x86.exe [4995416]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\microsoftVcRedist2012X86\vcredist_x86.exe [6554576]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.NVIDIA Corporation.) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [675256]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.NVIDIA Corporation.) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.NVIDIA Corporation.) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1403832]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\adobeflash\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\avgSecurityToolbar\NeroBar.exe [3988816]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\avgSecurityToolbar\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\lightscribeSystemSoftware\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\microsoftXml4.0Sp3\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\msi4.5ForWindows6.0X64\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\msi4.5ForWindows6.0X86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\msi4.5ForWindowsxpX86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\rebootValidator\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\systemRequirementValidator\NeroOSValidator.exe [2566416]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\ISSetupPrerequisites\systemRequirementValidator\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20130909142648953\setup.exe [737456]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dcsx\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx10\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx11\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3d10.1Extensions9.29.952.3111D3dx9\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\direct3dHlslCompiler9.29.952.3111\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\lightscribeSystemSoftware\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\microsoftVcRedist2010Sp1X86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\microsoftVcRedist2012X86\PRQStarter-1.exe [2067280]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\msi4.5ForWindows6.0X64\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\msi4.5ForWindows6.0X86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\msi4.5ForWindowsxpX86\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\opencandy\InstallHelper.exe [1513984] =>Adware.OpenCandy
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\rebootValidator\PRQStarter-1.exe [2094928]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\systemRequirementValidator\NeroOSValidator.exe [2566416]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\systemRequirementValidator\PRQStarter-1.exe [165648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Nero AG.) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\setup.exe [735208]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.OpenCandy, Inc..) -- C:\Users\Andry\AppData\Local\Temp\NeroInstallFiles\NERO20150504075820885\ISSetupPrerequisites\opencandy\OCSetupHlp.dll [931312] =>Adware.OpenCandy
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2.dll [288280]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components2\idmcchandler2_64.dll [408600]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc.dll [34216]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components2\idmmzcc64.dll [28512]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components9\idmmzcc.dll [24384]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components9\idmmzcc64.dll [28480]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\IDM\idmmzcc5\components\idmmzcc.dll [34216]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components12\idmmzcc.dll [26648]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components12\idmmzcc64.dll [31768]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components2\idmcchandler2.dll [332824]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components2\idmcchandler2_64.dll [460824]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components2\idmmzcc.dll [34216]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components2\idmmzcc64.dll [28512]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Tonec Inc..) -- C:\Users\Andry\AppData\Roaming\Mozilla\Firefox\Profiles\bqbouuob.default\extensions\mozilla_cc@internetdownloadmanager.com\components\idmmzcc.dll [34216]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.VS Revo Group.) -- C:\Users\Andry\Documents\Téléchargements\Revo Uninstaller Pro 3.1.2\RevoUninProSetup.exe [10801480]
O61 - LFC: 09/06/2015 - 10:55:41 ---A- . (.Yahoo Inc..) -- C:\Users\Andry\AppData\Local\Temp\YSearchUtil.dll [323352]
O61 - LFC: 09/06/2015 - 10:55:41 -SH-- . (.Graphic Booster.) -- C:\Users\Andry\Documents\alcss.exe [142848]
O61 - LFC: 10/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Microsoft\Outlook\EasCache\E1F9E8AAE7AE4E3F9938155794EAC5E4.bin [3085123]
O61 - LFC: 10/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\Packages\000077eb\CoProc update.19655412.exe [453720]
O61 - LFC: 10/06/2015 - 10:55:41 ---A- . (.Microsoft Corporation.) -- C:\Users\Andry\AppData\Roaming\Microsoft\Windows\NetTcpPortSharing.exe [8192]
O61 - LFC: 10/06/2015 - 10:55:41 ---A- . (.Oracle Corporation.) -- C:\Users\Andry\Downloads\Programs\jre-8u45-windows-x64.exe [43189344]
O61 - LFC: 10/06/2015 - 10:55:41 ---A- . (.Oracle Corporation.) -- C:\Users\Andry\Downloads\Programs\jxpiinstall.exe [561248]
O61 - LFC: 11/06/2015 - 10:55:40 ---A- . (...) -- C:\Users\Andry\AppData\Local\Adobe\Acrobat\11.0\UserCache.bin [139701]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\NVIDIA\NvBackend\Packages\0000781c\DAO.19656248.exe [5790600]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\windmpoo.exe [0]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\winroed.exe [0]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Local\Temp\winwynf.exe [0]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\AppData\Roaming\sp_data.sys [74]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\X-FORCE\keygen.exe [245248]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Bokeh.2.0.1.494\X-Force\keygen.exe [245248]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Keygen X-Force\keygen.exe [245248]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Keygen X-Force\keygen.exe [275456]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Keygen X-Force\keygen.exe [271360]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Imagenomic Plugin Suite (Photoshop CC compatible) [ChingLiu]\Imagenomic Noiseware 5.0.2 Build 5020\NoisewarePlugin5020.exe [2514184]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Imagenomic Plugin Suite (Photoshop CC compatible) [ChingLiu]\Imagenomic Portraiture 2.3.3 Build 2330\PortraiturePlugin2330.exe [4072720]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (...) -- C:\Users\Andry\Documents\Téléchargements\Imagenomic Plugin Suite (Photoshop CC compatible) [ChingLiu]\Imagenomic RealGrain 2.0 Build 2001\RealgrainPlugin2001.exe [3361864]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\Crack\x32\Alien Skin Blow Up 3.exe [4518912]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\Crack\x32\License Activation Tool.exe [547960]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\Crack\x64\Alien Skin Blow Up 3 x64.exe [5689856]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\Crack\x64\License Activation Tool.exe [684152]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\blow-up-3.0.0.693.exe [36660856]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Bokeh.2.0.1.494\bokeh-2.0.1.494.exe [57739376]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Crack\x32\Alien Skin Exposure 5.exe [6357504]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Crack\x32\License Activation Tool.exe [565368]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Crack\x64\Alien Skin Exposure 5 x64.exe [7586304]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Crack\x64\License Activation Tool.exe [638072]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\exposure-5.0.0.703.exe [103935608]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Crack\x32\Alien Skin Eye Candy 7.exe [10548224]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Crack\x32\License Activation Tool.exe [563832]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Crack\x64\Alien Skin Eye Candy 7 x64.exe [12400640]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Crack\x64\License Activation Tool.exe [636024]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\eye-candy-7.1.0.1192.exe [51857528]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Crack\x32\Alien Skin Snap Art 4.exe [7502336]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Crack\x32\License Activation Tool.exe [565368]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Crack\x64\Alien Skin Snap Art 4 x64.exe [9128960]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Crack\x64\License Activation Tool.exe [638072]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Alien Skin Software, LLC.) -- C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\snap-art-4.0.0.366.exe [46833784]
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Nicolas Coolman.) -- C:\Users\Andry\Downloads\Programs\ZHPDiag2.exe [6867801] =>.Nicolas Coolman
O61 - LFC: 11/06/2015 - 10:55:41 ---A- . (.Topaz Labs.) -- C:\Users\Andry\Documents\Téléchargements\Topaz Photoshop Plugins Bundle July 2014 (32-64 bit) [ChingLiu]\topazcomplete_setup.exe [824077056]
~ 2796 Fichiers temporaires (Temporary files)
~ 1 Fichiers cookies (Cookies files)
~ Files: 200 Scanned in 00mn 00s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\X-FORCE\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Bokeh.2.0.1.494\X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Keygen X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Keygen X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Keygen X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Blow.Up.3.0.0.693\X-FORCE\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Bokeh.2.0.1.494\X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Exposure.5.0.0.703\Keygen X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Eye.Candy.7.1.0.1192\Keygen X-Force\keygen.exe =>.Crack,Keygen
C:\Users\Andry\Documents\Téléchargements\Alien Skin (Photoshop plugins) Bundle Dec.2013 [ChingLiu]\Snap.Art.4.0.0.366\Keygen X-Force\keygen.exe =>.Crack,Keygen
~ Files: Scanned in 00mn 16s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [208896]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [324608]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1311744]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1104384]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [903168]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [109568]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1214976]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [70656]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [220160]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [326656]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [339456]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1576960]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [50688]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [164352]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [101376]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [534528]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [71680]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [433664]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [306688]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3678720]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1017856]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760]
~ Services: 34 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.5E36CF300FB0F2A613CFEFB48E33725D] [SPRF][22/08/2013] (...) -- C:\ProgramData\msnxvzb.exe [91181056]
[MD5.CA4A865B04D84129AC08664560AA7CCD] [SPRF][09/06/2015] (...) -- C:\Users\Andry\AppData\Roaming\my_intel.sys [21]
[MD5.665B1BF4A5E93CA92F74A754DA9043D0] [SPRF][11/06/2015] (...) -- C:\Users\Andry\AppData\Roaming\sp_data.sys [74]
~ Files: 3 Scanned in 00mn 00s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 01/05/2015 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 19/01/2015 77128 | (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SS - | Auto 10/07/1658 0 | (ASLDRService) . (...) - C:\Program Files (x86)\ATK Hotkey\AsLdrSrv.exe
SS - | Auto 10/07/1658 0 | (ATKGFNEXSrv) . (...) - C:\Program Files (x86)\ATKGFNEX\GFNEXSrv.exe
SS - | Demand 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Demand 01/10/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 28/05/2015 1152656 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SS - | Demand 08/06/2015 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/06/2015 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 06/04/2015 643880 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 12/11/2012 727136 | (Mobile Partner. RunOuc) . (...) - C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
SS - | Demand 18/07/2013 762192 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe
SS - | Demand 28/05/2015 1893008 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SS - | Demand 22/10/2014 966288 | (Service KMSELDI) . (.@ByELDI.) - C:\Program Files\KMSpico\Service_KMS.exe =>PUP.KMSpico
SS - | Demand 30/05/2012 149544 | (TurboBoost) . (.Intel(R) Corporation.) - C:\Program Files\Intel\TurboBoost\TurboBoost.exe
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SS - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 02/08/2013 100104 | (ETDService) . (.ELAN Microelectronics Corp..) - C:\Program Files\Elantech\ETDService.exe
SR - | Auto 14/03/2011 346976 | (HWDeviceService64.exe) . (...) - C:\ProgramData\DatacardService\HWDeviceService64.exe
SR - | Auto 28/05/2015 23006864 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 28/05/2015 937288 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
~ Services: Scanned in 00mn 09s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by Andry at 11/06/2015 10:56:12
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Andry at 11/06/2015 10:56:14
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13026 - (27/12/2014)
Clés trouvées (Keys found) : 4
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 5
Fichiers trouvés (Files found) : 1

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1] =>PUP.KMSpico^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\qBittorrent] =>P2P.BitTorrent^
[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKLM\SYSTEM\CurrentControlSet\Services\Service KMSELDI] =>PUP.KMSpico
[HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:HKCU =>Trojan.Agent
C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico =>PUP.KMSpico^
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\qBittorrent =>P2P.BitTorrent^
C:\Users\Andry\AppData\Roaming\qBittorrent =>P2P.BitTorrent^
C:\Users\Andry\AppData\Local\qBittorrent =>P2P.BitTorrent^
C:\Program Files\KMSpico\AutoPico.exe =>PUP.KMSpico^
~ Additionnel Scan: 345379 Items scanned in 00mn 15s



---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPSK) (O51)
~ AMI: 5 Scanned in 00mn 00s



---\\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.fr/pup-kmspico =>PUP.KMSpico
http://nicolascoolman.fr/trojan-fynloski =>Trojan.Fynloski
http://nicolascoolman.fr/adware-opencandy =>Adware.OpenCandy
http://nicolascoolman.fr/trojan-agentadsa =>Trojan.Agent
~ MSI: 4 link(s) detected in 00mn 00s



End of the scan (1604 lines in 01mn 07s)(10)

Publicité


Signaler le contenu de ce document

Publicité