cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.8.20.122 Par Nicolas Coolman (2015/08/20)
~ Démarré par Administrateur (Administrator) (2015/08/22 17:01:45)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\Administrateur\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 41.0 (x86 en-US) v41.0
MSIE: Internet Explorer v6.0.2900.5512

---\\ Informations sur les produits Windows (2) - 1s
Windows Automatic Updates : OK (Auto)
Windows Genuine Advantage : KO

---\\ Logiciels de protection (2) - 1s
Kaspersky Internet Security v15.0.1.415
Malwarebytes Anti-Malware version 2.1.8.1057

---\\ Surveillance de Logiciels (1) - 1s
Adobe Flash Player 18 NPAPI

---\\ Logiciels de partage P2P (1) - 1s
µTorrent v3.0.0

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2023.62 MB (36% free)
~ System Restore: Activé (Enable)
~ System drive C: has 20 GB free of 50 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: REDOX-F4475267A
~ User Name: Administrateur
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 20 GB free of 50 GB (System)
~ Drive D: has 6 GB free of 102 GB

---\\ Etat du Centre de Sécurité Windows (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (22) - 1s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) () -- C:\WINDOWS\System32\rundll32.exe [33792]
[MD5.4A6E04EA20F48D750D9BFED8600D516B] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [670208]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [512000]
[MD5.322D0E36693D6E24A2398BEE62A268CD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138112]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) () -- C:\WINDOWS\System32\drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [75264]
[MD5.68755F0FF16070178B54674FE5B847B0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456576]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53376]

---\\ Processus lancés (36) - 2s
[MD5.33D7E76F7DE0A73504742765105F178F] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024] [PID.1920]
[MD5.489EC8D956C41684206ACA32A8BBCF49] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [878880] [PID.1036]
[MD5.AB1AF0BA03DCB6A879BC22F472EACEEA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520] [PID.1568]
[MD5.EB568B709E7170A9BE67A405644E8CBF] - (.IObit - Smart Defrag v4.) -- C:\Program Files\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] [PID.600]
[MD5.301E3FDFCF33640BB8763BA444BC5093] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.692]
[MD5.79391331D6F021AF2F1105785C15F648] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] [PID.1200]
[MD5.83C982A395D00BAFF6515FB38424EA76] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880] [PID.1224]
[MD5.3CE0123A96A41588627C8E870020FACD] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\WINDOWS\system32\NLSSRV32.EXE [69640] [PID.1528]
[MD5.96EFEC24346A8EB1157E80523079ADDC] - (...) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056] [PID.1316]
[MD5.ABFF2B3A80AA5348BE5E43EFD6B415D1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe [6554424] [PID.904]
[MD5.EE30BA6D111A3FD08979A045E6D7EC63] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [136472] [PID.648]
[MD5.1E9E13E27EA35FCAD5CCF70DE7597D20] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [170264] [PID.1104]
[MD5.99B0E1E69DE513659005C79E42EB4C54] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [145688] [PID.1260]
[MD5.8CB896C573FD15AE8B13180DA53E93D2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752] [PID.2092]
[MD5.FE7CE849DB8C3986B2E721C6A3184FAA] - (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [287800] [PID.2168]
[MD5.0F484CEBC0E6724B157E644787B66B68] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [623520] [PID.2176]
[MD5.F6158734F1E24C6C510155CF0D363911] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512] [PID.2196]
[MD5.C81BE1B951C36E97D3DA90DA745DA5F7] - (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\kbd.exe [61440] [PID.2220]
[MD5.90FDA07D2843E2CB479BE882E8AED728] - (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe [1044480] [PID.2228]
[MD5.E3217365E90B7ABAA21D369B64EF9B5B] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe [3907152] [PID.2792]
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.2960]
[MD5.B85ABCABDB127F0155D931D76EFFEC40] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [377000] [PID.3376]
[MD5.FF1AF4C9DC2D3827B363931BC0ED6024] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [576104] [PID.3420]
[MD5.B4DAAB34E7A815EE58E2B8B1D329C899] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe [1440384] [PID.556]
[MD5.FDF273A845F1FFCCEADF363AAF47582F] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [229944] [PID.2884]
[MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\IEMonitor.exe [269848] [PID.3412]
[MD5.F9A79C5B27037821112C50A9C8FB367A] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [228408] [PID.500]
[MD5.7887DC888A1A7317DC828E59C56F33F6] - (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [5887264] [PID.1124]
[MD5.0DE3C7622EC33126579B1742260F08C2] - (.Copyright (c) 2005 - 2009 Hewlett-Packard Development - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.2940]
[MD5.3D2496BCA132B08D9B23856D65F30513] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe [193128] [PID.3372]
[MD5.2B15967270AD018024286CBA9DA1E4E7] - (.IObit - .) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe [188192] [PID.3592]
[MD5.07782C388EDDB13CB0A1040F7E1DDCDC] - (.IObit - Real-time Protector.) -- C:\Program Files\IObit\Advanced SystemCare 8\RealTimeProtector.exe [1106720] [PID.444]
[MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.2240]
[MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.1712]
[MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.3228]
[MD5.63E20985B61368A6172D93D0245DC9F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe [1895424] [PID.4768]

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 1s
P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\firefox@zenmate.com.xpi
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\iobitascsurfingprotection@iobit.com
P2 - EXT: (.Automation Development - Nightly Tester Tools.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\{8620c15f-30dc-4dba-a131-7c5d20cf4a29}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll
P2 - FPN: [HKLM] [@kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
P2 - FPN: [HKLM] [@kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
P2 - FPN: [HKLM] [@real.com/nprpplugin;version=16.0.3.51] - (.RealPlayer.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll
P2 - FPN: [HKLM] [@realnetworks.com/npdlplugin;version=1] - (.RealDownloader.) -- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (9) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (31)

---\\ Browser Helper Object de navigateur (BHO) (3) - 1s
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\IDMIECC.dll
O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealPlayer Download and Record Plugin.) -- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll
O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} . (.IDM - QUICKfind BHO Object.) -- C:\Program Files\IDM\QUICKfind\PlugIns\IEHelp.dll

---\\ Applications lancées au démarrage du système (31) - 1s
O4 - HKLM\..\Run: [SoundMAX] . (.Analog Devices, Inc. - Audio Control Panel.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\ime\imjp8_1\imjpmig.exe
O4 - HKLM\..\Run: [MSPY2002] . (...) -- C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE
O4 - HKLM\..\Run: [PHIME2002ASync] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
O4 - HKLM\..\Run: [PHIME2002A] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE
O4 - HKLM\..\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
O4 - HKLM\..\Run: [KBD] . (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\kbd.exe
O4 - HKLM\..\Run: [SoundMAXPnP] . (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe
O4 - HKCU\..\Run: [IDM trial reset] . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\IDM Fake Fixed\Reset (Fixed).exe
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe
O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [IDM trial reset] . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\IDM Fake Fixed\Reset (Fixed).exe

---\\ Raccourcis Global Startup (5) - 4s
O4 - GS\Quicklaunch [Administrateur]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder
O4 - GS\Quicklaunch [ASPNET]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder
O4 - GS\Quicklaunch [HelpAssistant]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder
O4 - GS\Quicklaunch [Invité]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder
O4 - GS\Quicklaunch [SUPPORT_388945a0]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (8) - 1s
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\WINDOWS\system32\NLSSRV32.EXE
O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

---\\ Tâches planifiées en automatique (15) - 3s
[MD5.2A356FA2650E30E139F0476979548BF6] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\realupgrade.exe [187984]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job [298]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\AutoKMS.job [234] =>HackTool.AutoKMS
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\AutoKMSDaily.job [218] =>HackTool.AutoKMS
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Driver Booster Scan.job [288]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Driver Booster Update.job [290]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-500Core.job [1250]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-500UA.job [1302]
O39 - APT: RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500 - (.RealNetworks, Inc..) -- C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500.job [296] =>.RealNetworks, Inc.
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-706699826-725345543-500.job [304]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\SmartDefrag4_Startup.job [298]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\SmartDefrag4_Update.job [296]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Wise Care 365.job [404]
O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Wise Turbo Checker.job [384]

---\\ Logiciels installés (51) - 8s
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1
O42 - Logiciel: Carte réseau local sans fil 802.11 Broadcom - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11b Network Adapter
O42 - Logiciel: Driver Booster 2.4 - (.IObit.) [HKLM] -- Driver Booster_is1
O42 - Logiciel: DriverFinder - (.DeskToolsSoft.) [HKLM] -- DriverFinder =>PUP.Optional.DriverFinder
O42 - Logiciel: FolderHighlight 2.4 - (.eRiverSoft.) [HKLM] -- FolderHighlight_is1
O42 - Logiciel: FormatFactory 3.6.0.0 - (.Format Factory.) [HKLM] -- FormatFactory
O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- InstallShield_{929408E6-D265-4174-805F-81D1D914E2A4}
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}
O42 - Logiciel: IObit Malware Fighter 3 - (.IObit.) [HKLM] -- IObit Malware Fighter_is1
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall
O42 - Logiciel: Java Web Start - (...) [HKLM] -- Java Web Start
O42 - Logiciel: Enhanced Multimedia Keyboard Solution - (...) [HKLM] -- KBD
O42 - Logiciel: Longman Active Study Dictionary 4th edition - (...) [HKLM] -- Longman Active Study Dictionary 4th edition
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver
O42 - Logiciel: Mozilla Firefox 41.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 41.0 (x86 en-US)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Oxford Advanced Learner's Dictionary - 8th Edition - (...) [HKLM] -- NSIS_oald8
O42 - Logiciel: Le Petit Robert 2014 - (.Le Robert.) [HKLM] -- PR1CD2014
O42 - Logiciel: QUICKfind server v1.1 - (.IDM.) [HKLM] -- QUICKfind
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 16.0
O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM] -- Smart Defrag 4_is1
O42 - Logiciel: Supercopier 4.0.1.13 - (.Supercopier.) [HKLM] -- Supercopier
O42 - Logiciel: UltraISO Premium V9.36 - (...) [HKLM] -- UltraISO_is1
O42 - Logiciel: UMPlayer 0.98 [P4] - (.Ori Rejwan.) [HKLM] -- UMPlayer
O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1
O42 - Logiciel: µTorrent - (...) [HKLM] -- uTorrent
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Wise PC Engineer 6.3.8 - (.ZhiQing Soft, Inc..) [HKLM] -- Wise PC Engineer_is1
O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355}
O42 - Logiciel: Sudoku - (.Micro Application.) [HKLM] -- {48ED9A7B-93CE-4832-AECA-27143737ACFD}
O42 - Logiciel: Revo Uninstaller Pro 3.1.4 - (.VS Revo Group, Ltd..) [HKLM] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1
O42 - Logiciel: Nitro Pro 9 - (.Nitro.) [HKLM] -- {6AD12230-3AB3-4E19-8CB2-8EBFD0EA58F1}
O42 - Logiciel: Réussir son Code de la Route 2013 - (.Micro Application.) [HKLM] -- {8000A55E-6BB3-4206-AEED-CFD25F36FBC8}
O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology - (.HP.) [HKLM] -- {84814E6B-2581-46EC-926A-823BD1C670F6}
O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- {8ED07EBD-22AD-415A-B71E-C1AD86862C2E}
O42 - Logiciel: HP ESU for Microsoft Windows XP - (.Hewlett-Packard Company.) [HKLM] -- {99B45308-9AAB-4C15-97BD-306F2CDA56A5}
O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {9ADABDDE-9644-461B-9E73-83FA3EFCAB50}
O42 - Logiciel: Jeux du Dictionnaire - (.Micro Application.) [HKLM] -- {AB254D00-D5D7-493B-922C-9E673848EFB5}
O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (...) [HKLM] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}
O42 - Logiciel: LG Connection Manager - (.LGE.) [HKLM] -- {BBF60130-FB99-4909-B0F3-A511F25E13A9}
O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM] -- {C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}
O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.1_02 - (...) [HKLM] -- {EFCE5837-FC21-11D6-9D24-00010240CE95}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM] -- {F1D7AC58-554A-4A58-B784-B61558B1449A}
O42 - Logiciel: المورد القريب - (...) [HKLM] -- المورد القريب
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox

---\\ HKCU & HKLM Software Keys (99) - 8s
HKLM\SOFTWARE\Agere
HKLM\SOFTWARE\Analog Devices
HKLM\SOFTWARE\Andrea Electronics
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\Avanquest
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\BcmSetup
HKLM\SOFTWARE\Broadcom
HKLM\SOFTWARE\C07ft5Y
HKLM\SOFTWARE\Caphyon
HKLM\SOFTWARE\CDDB
HKLM\SOFTWARE\Dell
HKLM\SOFTWARE\Dell Computer Corporation
HKLM\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder
HKLM\SOFTWARE\EasyBoot Systems
HKLM\SOFTWARE\Gemplus
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\Hewlett-Packard Company
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\HPQ
HKLM\SOFTWARE\IDM
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\InstallShield
HKLM\SOFTWARE\INTEL
HKLM\SOFTWARE\Internet Download Manager
HKLM\SOFTWARE\IObit
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\KasperskyLab
HKLM\SOFTWARE\LAventure
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Marvell
HKLM\SOFTWARE\MaxPower
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\Nitro
HKLM\SOFTWARE\NSIS_oald8
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Program Groups
HKLM\SOFTWARE\RealNetworks
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Schlumberger
HKLM\SOFTWARE\SiteSee
HKLM\SOFTWARE\TEXTware A/S
HKLM\SOFTWARE\UMPlayer
HKLM\SOFTWARE\Widcomm
HKLM\SOFTWARE\Windows 3.1 Migration Status
HKLM\SOFTWARE\WinRAR
HKLM\SOFTWARE\WiseCleaner
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\Xing Technology Corp.
HKCU\SOFTWARE\Ada99
HKCU\SOFTWARE\Analog Devices
HKCU\SOFTWARE\Andrew Zhezherun
HKCU\SOFTWARE\Avanquest
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\Clubic
HKCU\SOFTWARE\DownloadManager
HKCU\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder
HKCU\SOFTWARE\Dropbox
HKCU\SOFTWARE\DropboxUpdate
HKCU\SOFTWARE\drpsu
HKCU\SOFTWARE\EasyBoot Systems
HKCU\SOFTWARE\eRiverSoft
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\KasperskyLab
HKCU\SOFTWARE\LAventure
HKCU\SOFTWARE\LG Connection Manager
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Magix
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\Mirage
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\NATATA eBook
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nitro
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\quareeb.exe
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Ultracopier
HKCU\SOFTWARE\VS Revo Group
HKCU\SOFTWARE\Widcomm
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\WinRAR SFX
HKCU\SOFTWARE\Wow6432Node
HKCU\SOFTWARE\ZebHelpProcess Helper

---\\ Contenu des dossiers Programmes (198) - 9s
O43 - CFD: 2015/05/05 11:05:04 - [] DC -- C:\Program Files\Analog Devices
O43 - CFD: 2014/11/07 14:44:19 - [] DC -- C:\Program Files\Broadcom
O43 - CFD: 2014/11/07 14:06:03 - [0] DC -- C:\Program Files\ComPlus Applications
O43 - CFD: 2014/11/08 11:45:59 - [] DC -- C:\Program Files\DIFX
O43 - CFD: 2015/05/05 11:02:47 - [0] DC -- C:\Program Files\Driver-Soft =>Legitimate.DriverSoft
O43 - CFD: 2014/11/10 13:12:21 - [] DC -- C:\Program Files\DriverFinder =>PUP.Optional.DriverFinder
O43 - CFD: 2015/05/18 09:52:32 - [] DC -- C:\Program Files\Dropbox
O43 - CFD: 2015/05/10 15:16:51 - [] DC -- C:\Program Files\Fichiers communs
O43 - CFD: 2014/11/10 22:36:45 - [] DC -- C:\Program Files\FolderHighlight
O43 - CFD: 2015/03/03 17:24:14 - [] DC -- C:\Program Files\FreeTime
O43 - CFD: 2014/11/10 12:59:59 - [] DC -- C:\Program Files\Hewlett-Packard
O43 - CFD: 2014/11/11 13:45:42 - [] DC -- C:\Program Files\IDM
O43 - CFD: 2015/01/28 22:09:13 - [] HDC -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2015/04/23 08:42:19 - [] DC -- C:\Program Files\Intel
O43 - CFD: 2015/08/16 00:25:11 - [] DC -- C:\Program Files\Internet Download Manager
O43 - CFD: 2014/11/13 08:22:27 - [] DC -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/08/21 17:16:53 - [] DC -- C:\Program Files\IObit
O43 - CFD: 2014/11/11 13:08:03 - [] DC -- C:\Program Files\Java
O43 - CFD: 2014/11/11 13:08:16 - [] DC -- C:\Program Files\Java Web Start
O43 - CFD: 2015/04/27 10:37:49 - [] D -- C:\Program Files\Kaspersky Lab
O43 - CFD: 2015/05/05 11:00:42 - [] DC -- C:\Program Files\Le Robert
O43 - CFD: 2015/05/29 15:55:02 - [] DC -- C:\Program Files\LG Connection Manager
O43 - CFD: 2014/11/07 21:18:17 - [] DC -- C:\Program Files\LG Electronics
O43 - CFD: 2014/11/11 13:04:26 - [] DC -- C:\Program Files\Longman
O43 - CFD: 2015/05/05 11:01:24 - [] DC -- C:\Program Files\LSI SoftModem
O43 - CFD: 2014/11/10 10:38:42 - [] DC -- C:\Program Files\Mail.Ru
O43 - CFD: 2015/08/14 21:52:31 - [] DC -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2014/11/07 14:52:06 - [] DC -- C:\Program Files\Marvell
O43 - CFD: 2014/11/08 12:01:16 - [] DC -- C:\Program Files\Messenger
O43 - CFD: 2015/01/28 22:09:13 - [] DC -- C:\Program Files\Micro Application
O43 - CFD: 2014/11/08 00:19:20 - [] DC -- C:\Program Files\Microsoft Analysis Services
O43 - CFD: 2014/11/07 14:09:03 - [] DC -- C:\Program Files\microsoft frontpage
O43 - CFD: 2014/11/08 00:21:53 - [] DC -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/11/08 00:21:52 - [] DC -- C:\Program Files\Microsoft Sync Framework
O43 - CFD: 2014/11/10 15:01:48 - [] DC -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/11/08 12:01:00 - [] DC -- C:\Program Files\Movie Maker
O43 - CFD: 2015/08/20 20:39:02 - [] DC -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/08/20 20:39:02 - [] DC -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2014/11/11 14:23:14 - [] DC -- C:\Program Files\mqreeb
O43 - CFD: 2014/11/07 14:05:15 - [] DC -- C:\Program Files\MSN
O43 - CFD: 2014/11/07 14:05:41 - [] DC -- C:\Program Files\MSN Gaming Zone
O43 - CFD: 2014/11/08 11:59:36 - [] DC -- C:\Program Files\NetMeeting
O43 - CFD: 2014/11/10 20:56:05 - [] DC -- C:\Program Files\Nitro
O43 - CFD: 2014/11/07 14:05:48 - [] DC -- C:\Program Files\Online Services
O43 - CFD: 2014/11/08 11:59:31 - [] DC -- C:\Program Files\Outlook Express
O43 - CFD: 2014/11/11 13:42:34 - [] DC -- C:\Program Files\Oxford
O43 - CFD: 2014/11/11 13:09:42 - [] DC -- C:\Program Files\QuickTime
O43 - CFD: 2014/11/11 17:51:17 - [] DC -- C:\Program Files\Real
O43 - CFD: 2014/11/11 16:43:58 - [] DC -- C:\Program Files\RealNetworks
O43 - CFD: 2014/11/07 14:07:31 - [] DC -- C:\Program Files\Services en ligne
O43 - CFD: 2014/11/10 22:07:54 - [] DC -- C:\Program Files\Supercopier
O43 - CFD: 2014/11/11 13:06:32 - [] DC -- C:\Program Files\TEXTware
O43 - CFD: 2015/05/05 11:06:12 - [0] DC -- C:\Program Files\trend micro
O43 - CFD: 2014/11/11 13:01:26 - [] DC -- C:\Program Files\UltraISO
O43 - CFD: 2015/05/05 10:58:11 - [] DC -- C:\Program Files\UMPlayer
O43 - CFD: 2014/11/07 14:15:54 - [0] HDC -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/11/10 22:32:24 - [] DC -- C:\Program Files\USB Disk Security
O43 - CFD: 2014/11/10 21:51:10 - [] DC -- C:\Program Files\uTorrent
O43 - CFD: 2014/11/08 18:14:23 - [] DC -- C:\Program Files\VideoLAN
O43 - CFD: 2015/07/30 20:58:25 - [] DC -- C:\Program Files\VS Revo Group
O43 - CFD: 2014/11/16 13:20:14 - [] DC -- C:\Program Files\WIDCOMM
O43 - CFD: 2015/01/29 21:11:55 - [] DC -- C:\Program Files\Windows Media Player
O43 - CFD: 2014/11/08 11:59:31 - [] DC -- C:\Program Files\Windows NT
O43 - CFD: 2014/11/07 14:07:34 - [0] HDC -- C:\Program Files\WindowsUpdate
O43 - CFD: 2014/11/10 13:03:35 - [] DC -- C:\Program Files\WinRAR
O43 - CFD: 2014/11/08 18:03:27 - [] DC -- C:\Program Files\Wise
O43 - CFD: 2015/08/14 22:40:34 - [] DC -- C:\Program Files\Wise PC Engineer
O43 - CFD: 2014/11/07 14:09:03 - [] DC -- C:\Program Files\xerox
O43 - CFD: 2014/12/07 21:02:08 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2015/08/21 17:04:44 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Advanced SystemCare 8
O43 - CFD: 2014/11/10 12:49:27 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Broadcom Wireless
O43 - CFD: 2015/08/21 17:16:20 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Driver Booster 2
O43 - CFD: 2014/11/10 13:12:21 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverFinder =>PUP.Optional.DriverFinder
O43 - CFD: 2015/05/14 22:45:07 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2015/08/03 21:42:32 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 2015/08/21 17:11:18 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IObit Malware Fighter
O43 - CFD: 2015/08/21 17:05:21 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IObit Uninstaller
O43 - CFD: 2014/11/07 14:06:14 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux
O43 - CFD: 2014/11/10 20:46:07 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Kaspersky Internet Security
O43 - CFD: 2015/01/18 21:57:48 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Le Petit Robert 2014
O43 - CFD: 2014/11/08 12:11:02 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\LG Connection Manager
O43 - CFD: 2014/11/11 13:06:36 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Longman
O43 - CFD: 2015/08/14 21:52:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes Anti-Malware
O43 - CFD: 2015/01/28 22:39:24 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Micro Application
O43 - CFD: 2014/11/10 15:02:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office
O43 - CFD: 2014/12/16 11:51:37 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2014/11/11 13:45:45 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Oxford
O43 - CFD: 2014/11/11 13:09:24 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime
O43 - CFD: 2014/11/11 17:51:40 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\RealNetworks
O43 - CFD: 2015/07/30 20:58:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Revo Uninstaller Pro
O43 - CFD: 2014/11/10 15:02:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SharePoint
O43 - CFD: 2015/08/21 17:17:00 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Smart Defrag 4
O43 - CFD: 2015/05/05 11:06:16 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SoundMAX
O43 - CFD: 2014/11/11 13:06:36 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\TEXTware
O43 - CFD: 2014/11/11 13:01:27 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\UltraISO
O43 - CFD: 2015/05/05 10:58:10 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\UMPlayer
O43 - CFD: 2014/11/10 22:32:25 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\USB Disk Security
O43 - CFD: 2014/11/10 13:03:38 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 2014/11/10 21:39:48 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Wise PC Engineer
O43 - CFD: 2014/11/11 13:09:00 - [] DC -- C:\Documents and Settings\All Users\Application Data\Apple Computer
O43 - CFD: 2015/01/28 22:09:13 - [] DC -- C:\Documents and Settings\All Users\Application Data\Avanquest
O43 - CFD: 2015/01/28 23:03:22 - [] DC -- C:\Documents and Settings\All Users\Application Data\Avanquest Software
O43 - CFD: 2015/03/03 17:36:56 - [] DC -- C:\Documents and Settings\All Users\Application Data\Baidu
O43 - CFD: 2015/08/01 20:01:14 - [] DC -- C:\Documents and Settings\All Users\Application Data\Dropbox
O43 - CFD: 2014/11/10 10:38:16 - [0] DC -- C:\Documents and Settings\All Users\Application Data\Guard.Mail.Ru
O43 - CFD: 2014/11/10 22:14:01 - [0] DC -- C:\Documents and Settings\All Users\Application Data\IDM
O43 - CFD: 2014/12/16 12:11:03 - [] DC -- C:\Documents and Settings\All Users\Application Data\InstallShield
O43 - CFD: 2015/08/21 17:16:36 - [] DC -- C:\Documents and Settings\All Users\Application Data\IObit
O43 - CFD: 2015/08/22 16:58:26 - [] DC -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
O43 - CFD: 2015/05/05 10:57:37 - [] DC -- C:\Documents and Settings\All Users\Application Data\Le Robert
O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\All Users\Application Data\MAGIX
O43 - CFD: 2015/08/13 22:11:24 - [] DC -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
O43 - CFD: 2014/11/08 20:54:00 - [] DC -- C:\Documents and Settings\All Users\Application Data\McAfee
O43 - CFD: 2014/11/10 10:40:01 - [] SDC -- C:\Documents and Settings\All Users\Application Data\Microsoft
O43 - CFD: 2014/12/23 14:40:08 - [] DC -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
O43 - CFD: 2014/12/23 15:05:51 - [] DC -- C:\Documents and Settings\All Users\Application Data\Microsoft Toolkit =>HackTool.AutoKMS
O43 - CFD: 2014/11/07 14:33:33 - [] DC -- C:\Documents and Settings\All Users\Application Data\Mozilla
O43 - CFD: 2014/11/10 20:56:04 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro
O43 - CFD: 2014/11/08 11:35:54 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro(2)
O43 - CFD: 2014/11/10 10:39:05 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro(3)
O43 - CFD: 2015/08/16 21:01:50 - [] DC -- C:\Documents and Settings\All Users\Application Data\ProductData
O43 - CFD: 2014/11/11 17:51:08 - [] DC -- C:\Documents and Settings\All Users\Application Data\Real
O43 - CFD: 2014/11/11 16:43:55 - [] DC -- C:\Documents and Settings\All Users\Application Data\RealNetworks
O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\All Users\Application Data\simplitec
O43 - CFD: 2014/11/10 14:24:46 - [] DC -- C:\Documents and Settings\All Users\Application Data\VS Revo Group
O43 - CFD: 2014/11/10 22:32:37 - [0] DC -- C:\Documents and Settings\All Users\Application Data\Zbshareware Lab
O43 - CFD: 2015/05/10 15:43:57 - [] DC -- C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 2014/11/10 15:01:56 - [] DC -- C:\Program Files\Fichiers communs\DESIGNER
O43 - CFD: 2014/11/11 13:01:26 - [] DC -- C:\Program Files\Fichiers communs\EZB Systems
O43 - CFD: 2014/12/16 12:05:17 - [] DC -- C:\Program Files\Fichiers communs\InstallShield
O43 - CFD: 2015/05/10 15:16:51 - [] DC -- C:\Program Files\Fichiers communs\IObit
O43 - CFD: 2015/08/21 17:20:43 - [] DC -- C:\Program Files\Fichiers communs\Microsoft Shared
O43 - CFD: 2014/11/07 14:06:56 - [] DC -- C:\Program Files\Fichiers communs\MSSoap
O43 - CFD: 2014/11/10 20:56:05 - [] DC -- C:\Program Files\Fichiers communs\Nitro
O43 - CFD: 2014/11/08 11:35:54 - [] DC -- C:\Program Files\Fichiers communs\Nitro(2)
O43 - CFD: 2014/11/10 10:39:05 - [] DC -- C:\Program Files\Fichiers communs\Nitro(3)
O43 - CFD: 2014/11/07 13:56:13 - [] DC -- C:\Program Files\Fichiers communs\ODBC
O43 - CFD: 2014/11/07 14:06:59 - [] DC -- C:\Program Files\Fichiers communs\Services
O43 - CFD: 2014/11/07 13:56:10 - [] DC -- C:\Program Files\Fichiers communs\SpeechEngines
O43 - CFD: 2014/11/10 14:59:22 - [] DC -- C:\Program Files\Fichiers communs\System
O43 - CFD: 2014/11/11 17:51:11 - [] DC -- C:\Program Files\Fichiers communs\xing shared
O43 - CFD: 2014/11/10 21:33:24 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Adobe
O43 - CFD: 2015/05/10 15:17:04 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Apple Computer
O43 - CFD: 2015/08/22 16:54:57 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\DMCache
O43 - CFD: 2014/11/10 20:54:03 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Downloaded Installations
O43 - CFD: 2014/11/10 13:13:35 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\DriverFinder =>PUP.Optional.DriverFinder
O43 - CFD: 2015/08/08 23:43:29 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Dropbox
O43 - CFD: 2014/11/14 11:00:20 - [0] DC -- C:\Documents and Settings\Administrateur\Application Data\Help
O43 - CFD: 2014/11/10 22:27:01 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\hpqLog
O43 - CFD: 2014/11/10 11:20:49 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Identities
O43 - CFD: 2015/08/21 22:41:22 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\IDM
O43 - CFD: 2014/11/10 12:51:22 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\InstallShield
O43 - CFD: 2015/08/21 17:16:44 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\IObit
O43 - CFD: 2015/08/02 23:30:14 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\LG Connection Manager
O43 - CFD: 2014/11/11 13:08:43 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Longman
O43 - CFD: 2014/11/10 21:33:25 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Macromedia
O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\MAGIX
O43 - CFD: 2015/04/09 12:30:36 - [] SDC -- C:\Documents and Settings\Administrateur\Application Data\Microsoft
O43 - CFD: 2014/11/11 13:08:45 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Mozilla
O43 - CFD: 2015/05/18 07:37:38 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Nitro
O43 - CFD: 2015/08/22 14:16:55 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Nitro PDF
O43 - CFD: 2014/11/11 13:46:49 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\oald8
O43 - CFD: 2015/05/16 08:29:00 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\ProductData
O43 - CFD: 2014/11/11 16:45:34 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Real
O43 - CFD: 2014/11/11 16:44:27 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\RealNetworks
O43 - CFD: 2014/11/11 13:46:18 - [] RHDC -- C:\Documents and Settings\Administrateur\Application Data\SecuROM
O43 - CFD: 2015/05/10 15:27:23 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\uTorrent
O43 - CFD: 2014/11/10 13:59:39 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\WinRAR
O43 - CFD: 2014/11/10 22:32:37 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Zbshareware Lab
O43 - CFD: 2015/08/22 17:01:58 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\ZHP
O43 - CFD: 2015/07/31 22:57:31 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe
O43 - CFD: 2015/08/10 02:34:54 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple Computer
O43 - CFD: 2015/04/23 08:39:49 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ApplicationHistory
O43 - CFD: 2014/11/12 10:52:56 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Deployment
O43 - CFD: 2015/08/01 20:01:15 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox
O43 - CFD: 2014/11/14 11:00:20 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Help
O43 - CFD: 2015/01/18 22:05:30 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Le_Petit_Robert
O43 - CFD: 2015/01/28 23:00:51 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Micro Application
O43 - CFD: 2015/04/09 12:26:28 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft
O43 - CFD: 2014/11/10 14:58:03 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft Help
O43 - CFD: 2014/11/10 11:40:09 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla
O43 - CFD: 2015/05/05 10:58:09 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\MPlayer
O43 - CFD: 2014/11/11 13:46:46 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\oald8
O43 - CFD: 2015/05/05 11:00:06 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\PCHealth
O43 - CFD: 2014/11/10 21:47:54 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uTorrent
O43 - CFD: 2014/11/10 14:24:52 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\VS Revo Group
O43 - CFD: 2014/11/10 11:20:51 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Accessoires
O43 - CFD: 2015/08/08 01:22:03 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Dropbox
O43 - CFD: 2015/08/08 23:47:05 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage
O43 - CFD: 2015/03/03 17:24:56 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\FormatFactory
O43 - CFD: 2015/08/03 21:42:32 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Internet Download Manager
O43 - CFD: 2014/11/11 13:08:20 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Java Web Start
O43 - CFD: 2014/11/13 09:56:13 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Micro Application
O43 - CFD: 2015/01/02 00:47:14 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Outils d'administration
O43 - CFD: 2014/11/11 13:45:45 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Oxford
O43 - CFD: 2014/11/10 22:07:54 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Supercopier
O43 - CFD: 2014/11/10 13:03:38 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\WinRAR
O43 - CFD: 2014/11/11 14:23:14 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\المورد القريب

---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 4s
O45 - LFCP:[MD5.EBABD89C4FBDDFC6E043574A121E645C] 2015/08/22 16:56:17 AC -- C:\WINDOWS\Prefetch\AUTOKMS.EXE-01C3577A.pf =>HackTool.AutoKMS

---\\ Liste des pilotes du système (139) - 12s
O58 - SDL:2015/06/02 16:25:37 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\05283884.sys [119512]
O58 - SDL:2015/04/15 14:22:43 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\09323411.sys [119512]
O58 - SDL:2015/02/28 03:46:47 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\17A6433A.sys [114904]
O58 - SDL:2015/03/09 18:28:58 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\1CEB2216.sys [114904]
O58 - SDL:2015/05/07 11:25:16 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\1E14632E.sys [119512]
O58 - SDL:2015/03/26 22:26:23 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\20BA0B94.sys [114904]
O58 - SDL:2015/05/01 08:02:26 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\244D7574.sys [119512]
O58 - SDL:2015/03/26 22:30:26 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\254D0EB1.sys [114904]
O58 - SDL:2015/04/20 21:23:52 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\28427D11.sys [119512]
O58 - SDL:2015/08/13 23:08:38 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\2BF85710.sys [119512]
O58 - SDL:2014/12/12 14:25:47 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\2F4D5DED.sys [114904]
O58 - SDL:2015/08/16 09:09:46 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\342864E6.sys [98520]
O58 - SDL:2015/03/06 22:23:55 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\45AC6F0B.sys [114904]
O58 - SDL:2014/12/19 14:26:04 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\4F270112.sys [114904]
O58 - SDL:2015/01/08 16:25:21 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\5BCD7707.sys [114904]
O58 - SDL:2015/01/10 21:53:17 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\65E90E49.sys [114904]
O58 - SDL:2015/02/02 13:59:27 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\736632B7.sys [114904]
O58 - SDL:2015/05/16 09:48:16 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\742E5822.sys [119512]
O58 - SDL:2014/12/28 11:12:03 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\74F72BC6.sys [114904]
O58 - SDL:2015/03/04 22:24:39 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\76BF5357.sys [114904]
O58 - SDL:2015/05/05 14:14:40 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\7F2731F9.sys [119512]
O58 - SDL:2009/07/08 11:48:22 AC . (.Hewlett-Packard - HP Accelerometer.) -- C:\WINDOWS\System32\drivers\Accelerometer.sys [33848]
O58 - SDL:2008/12/11 11:11:34 AC . (.Analog Devices, Inc. - High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\ADIHdAud.sys [338944]
O58 - SDL:2007/07/13 09:26:12 AC . (.Andrea Electronics Corporation - Audio Noise Filtering Driver (32-bit).) -- C:\WINDOWS\System32\drivers\aeaudio.sys [94976]
O58 - SDL:2010/01/26 11:38:06 AC . (.LSI Corporation - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\AGRSM.sys [1163328]
O58 - SDL:2008/04/13 11:36:40 C . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\System32\drivers\amdagp.sys [43008]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [56623]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [11615]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [12047]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [30671]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [63663]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [26367]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [21343]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [36463]
O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [29455]
O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [34735]
O58 - SDL:2008/04/13 18:55:32 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [327168]
O58 - SDL:2008/04/13 18:55:34 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [701440]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [57856]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [13824]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [14336]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [52224]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [104960]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [28672]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [13824]
O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [73216]
O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [31744]
O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [63488]
O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\WINDOWS\System32\drivers\btaudio.sys [539512]
O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth Bus Enumerator.) -- C:\WINDOWS\System32\drivers\btkrnl.sys [879624]
O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\System32\drivers\btport.sys [37424]
O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\System32\drivers\btwdndis.sys [156392]
O58 - SDL:2015/05/06 09:10:50 AC . (.Broadcom Corporation. - Broadcom Bluetooth IT Manager Filter.) -- C:\WINDOWS\System32\drivers\btwsecfl.sys [92792]
O58 - SDL:2015/05/06 09:10:50 AC . (.Broadcom Corporation. - Driver for Bluetooth USB Devices.) -- C:\WINDOWS\System32\drivers\btwusb.sys [52984]
O58 - SDL:2004/08/05 12:00:00 AC . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528]
O58 - SDL:2013/01/14 21:10:56 A . (.Kaspersky Lab UK Ltd - Cryptographic Module.) -- C:\WINDOWS\System32\drivers\cm_km_w.sys [189136]
O58 - SDL:2009/03/19 10:40:10 AC . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\WINDOWS\System32\drivers\CPQBttn.sys [9216]
O58 - SDL:2004/08/05 12:00:00 AC . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776]
O58 - SDL:2008/04/13 19:05:08 AC . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256]
O58 - SDL:2008/04/13 19:05:14 AC . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496]
O58 - SDL:2004/08/05 12:00:00 AC . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888]
O58 - SDL:2008/04/13 09:36:06 AC . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384]
O58 - SDL:2005/01/07 17:07:16 C . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\System32\drivers\Hdaudio.sys [145920]
O58 - SDL:2009/07/08 11:48:38 AC . (.Hewlett-Packard - HP Disk Filter - SATA/RAID.) -- C:\WINDOWS\System32\drivers\hpdskflt.sys [25656]
O58 - SDL:2007/06/18 16:12:04 AC . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768]
O58 - SDL:2008/04/13 11:23:50 C . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [220032]
O58 - SDL:2008/04/13 11:23:52 C . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [685056]
O58 - SDL:2008/04/13 11:23:54 C . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [1041536]
O58 - SDL:2015/05/01 13:26:04 AC . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\WINDOWS\System32\drivers\HWiNFO32.SYS [23840]
O58 - SDL:2015/06/12 02:00:58 AC . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [128528]
O58 - SDL:2011/04/22 14:32:28 AC . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [2016704]
O58 - SDL:2014/03/31 11:47:08 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [143968]
O58 - SDL:2014/07/02 16:10:30 A . (.Kaspersky Lab ZAO - Virtual Disk fre_wnet_x86.) -- C:\WINDOWS\System32\drivers\kldisk.sys [36928]
O58 - SDL:2014/11/20 15:03:47 AC . (.Kaspersky Lab ZAO - Filter Core [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klflt.sys [116744]
O58 - SDL:2014/08/12 18:32:54 A . (.Kaspersky Lab ZAO - KLHK [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klhk.sys [36024]
O58 - SDL:2015/03/12 18:16:11 AC . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klif.sys [671928]
O58 - SDL:2013/04/19 11:44:54 AC . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\WINDOWS\System32\drivers\klim5.sys [36448]
O58 - SDL:2014/03/28 17:51:02 AC . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wnet_x.) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [23648]
O58 - SDL:2013/08/08 17:11:00 AC . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [24672]
O58 - SDL:2013/04/12 15:34:48 A . (.Kaspersky Lab ZAO - KLPD [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klpd.sys [14432]
O58 - SDL:2014/08/21 15:39:16 AC . (.Kaspersky Lab ZAO - Kaspersky TDI Filter [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kltdf.sys [60552]
O58 - SDL:2014/06/05 19:02:10 AC . (.Kaspersky Lab ZAO - Network filtering component [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kltdi.sys [44992]
O58 - SDL:2014/07/09 16:23:54 AC . (.Kaspersky Lab ZAO - KNEPS Power [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kneps.sys [146240]
O58 - SDL:2009/09/23 02:31:44 AC . (.LG Electronics Inc - LG Wireless USB Multi function Driver.) -- C:\WINDOWS\System32\drivers\lgwusbbus.sys [13696]
O58 - SDL:2009/09/23 02:31:44 AC . (.LG Electronics Inc - LG Wireless USB Modem Driver.) -- C:\WINDOWS\System32\drivers\lgwusbmodem.sys [25216]
O58 - SDL:2009/09/23 02:31:46 AC . (.LG Electronics Inc - LG Wireless USB Serial1 Driver.) -- C:\WINDOWS\System32\drivers\lgwusbser01.sys [21248]
O58 - SDL:2009/09/23 02:31:48 AC . (.LG Electronics Inc - LG Wireless USB Serial2 Driver.) -- C:\WINDOWS\System32\drivers\lgwusbser02.sys [21248]
O58 - SDL:2015/06/18 08:41:36 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:46 AC . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [121560]
O58 - SDL:2015/08/22 16:57:50 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2008/04/13 11:23:58 C . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [11868]
O58 - SDL:2008/04/13 11:23:42 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [126686]
O58 - SDL:2008/04/13 11:23:40 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [1309184]
O58 - SDL:2008/04/13 09:34:28 C . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [452736]
O58 - SDL:2009/01/05 14:41:48 AC . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETw5x32.sys [3634688]
O58 - SDL:2015/05/07 11:10:02 AC . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwNx32.sys [7484656]
O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032]
O58 - SDL:2008/04/13 11:23:42 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [180360]
O58 - SDL:2008/04/13 09:34:32 C . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Dri.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [1897408]
O58 - SDL:2005/12/12 16:27:00 AC . (.Hewlett-Packard Company - PS2 SYS.) -- C:\WINDOWS\System32\drivers\PS2.sys [19072]
O58 - SDL:2004/08/05 12:00:00 AC . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792]
O58 - SDL:2008/04/13 11:23:44 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\recagent.sys [13776]
O58 - SDL:2009/12/30 11:20:56 AC . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\WINDOWS\System32\drivers\revoflt.sys [27064]
O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032]
O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032]
O58 - SDL:2008/04/13 09:34:34 C . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [166912]
O58 - SDL:2008/04/13 09:39:16 AC . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480]
O58 - SDL:2008/03/28 09:14:02 AC . (.Sonic Focus, Inc - Sonic Focus DSP driver for ADI.) -- C:\WINDOWS\System32\drivers\sfaudio.sys [24064]
O58 - SDL:2008/04/13 11:36:40 C . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\System32\drivers\sisagp.sys [40960]
O58 - SDL:2008/04/13 11:23:44 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnt7554.sys [129535]
O58 - SDL:2008/04/13 11:23:46 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slntamr.sys [404990]
O58 - SDL:2008/04/13 11:23:48 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnthal.sys [95424]
O58 - SDL:2008/04/13 11:23:48 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [13240]
O58 - SDL:2014/06/04 15:17:28 AC . (.IObit - SmartDefrag Driver.) -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys [15808]
O58 - SDL:2004/08/05 12:00:00 AC . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376]
O58 - SDL:2014/11/27 13:49:25 AC . (.Gili Soft INC. - USB Stick Encryption Driver.) -- C:\WINDOWS\System32\drivers\usedisk.sys [17408]
O58 - SDL:2004/08/05 12:00:00 AC . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112]
O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [11807]
O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [11295]
O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [11871]
O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [11935]
O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv06nt.sys [22271]
O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv10nt.sys [25471]
O58 - SDL:2015/05/07 11:21:16 AC . (.©Copyright 2002-2009 Marvell®. All rights reserved. - .) -- C:\WINDOWS\System32\drivers\yk51x86.sys [298752]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ansi.sys [9037]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\country.sys [27097]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\himem.sys [4912]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\key01.sys [42809]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\keyboard.sys [42537]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos.sys [27916]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio.sys [34000]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio404.sys [34560]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio411.sys [35648]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio412.sys [35424]
O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio804.sys [34560]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (9) - 8s
O61 - LFC: 2015/08/21 22:40:01 AC . (..) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Programs\detekt.exe [27841093]
O61 - LFC: 2015/08/16 00:01:31 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmupdt.exe [6659400]
O61 - LFC: 2015/08/16 00:05:38 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmcchandler2.dll [332824]
O61 - LFC: 2015/08/16 00:05:39 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmcchandler2_64.dll [460824]
O61 - LFC: 2015/08/16 00:05:40 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmmzcc.dll [34216]
O61 - LFC: 2015/08/16 00:05:40 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmmzcc64.dll [28512]
O61 - LFC: 2015/08/16 00:05:36 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components12\idmmzcc.dll [26648]
O61 - LFC: 2015/08/16 00:05:37 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components12\idmmzcc64.dll [31768]
O61 - LFC: 2015/08/16 00:05:36 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components\idmmzcc.dll [34216]

---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (8) - 0s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- %programfiles%\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe

---\\ Recherche d'infection sur les navigateurs (4) - 7s
O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("browser.search.selectedEngine", "sweet-page"); =>PUP.Optional.SweetPage
O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
O69 - SBI: SearchScopes [HKCU] {3D585554-3A2C-4BF8-9587-2D99C7A6EBAD} [DefaultScope] - (Google) - http://www.google.com/

---\\ Enumère les fichiers Crack & Keygen (4) - 12s
O82 - LFC: 2015/08/13 20:44:53 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen Only.rar [270816] =>.Crack,Keygen
O82 - LFC: 2015/08/13 20:56:45 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen Only_2.rar [270816] =>.Crack,Keygen
O82 - LFC: 2015/06/24 21:13:22 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen\Keygen\Keygen.exe [83456] =>.Crack,Keygen
O82 - LFC: 2014/10/02 05:03:56 AC . (.© 2014. No rights reserved..) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\activ revo pro 3.1.1 by algerois2010\Revo.Uninstaller.Pro.3.1.4.pefelie.net\keygen\RUP_3.1.0_Registrator.exe [19004] =>.Crack,Keygen

---\\ Enumère les services démarrés par Svchost (38) - 1s
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496]
O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [77824]
O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464]
O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576]
O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488]
O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040]
O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [246272]
O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [96768]
O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096]
O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792]
O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144]
O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808]
O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248]
O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560]
O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800]
O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112]
O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176]
O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840]
O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408]
O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896]
O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680]
O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400]
O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440]

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 18s
SS - Demand [2015/08/13 21:06:22] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2015/08/05 09:57:56] [ 821024] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe
SS - Demand [2008/03/18 12:27:12] [ 13312] Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems.) - C:\WINDOWS\system32\agrsmsvc.exe
SR - Auto [2014/08/30 17:48:46] [ 234520] Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
SS - Demand [2008/03/31 14:32:40] [ 264800] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
SR - Demand [2009/05/05 09:11:50] [ 228408] Com4QLBEx (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
SR - Demand [2009/04/30 15:58:44] [ 229944] hpqwmiex (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
SS - Demand [2005/04/04 00:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - Auto [2015/05/12 11:27:28] [ 878880] IMF Service (IMFservice) . (.IObit.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
SS - Auto [2015/08/02 22:05:08] [ 2909472] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
SS - Demand [2015/08/20 12:38:16] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - Demand [2013/10/07 09:42:16] [ 197128] NitroPDFDriverCreatorReadSpool9 (NitroDriverReadSpool9) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9.exe
SR - Auto [2013/10/07 09:42:26] [ 69640] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\WINDOWS\system32\NLSSRV32.EXE
SR - Auto [2013/08/14 15:19:22] [ 39056] RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

---\\ Scan Additionnel (11) - 0s
C:\WINDOWS\Tasks\AutoKMS.job =>HackTool.AutoKMS
C:\WINDOWS\Tasks\AutoKMSDaily.job =>HackTool.AutoKMS
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverFinder =>PUP.Optional.DriverFinder
HKLM\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder
HKCU\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder
C:\Program Files\Driver-Soft =>Legitimate.DriverSoft
C:\Program Files\DriverFinder =>PUP.Optional.DriverFinder
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverFinder =>PUP.Optional.DriverFinder
C:\Documents and Settings\All Users\Application Data\Microsoft Toolkit =>HackTool.AutoKMS
C:\Documents and Settings\Administrateur\Application Data\DriverFinder =>PUP.Optional.DriverFinder
C:\WINDOWS\Prefetch\AUTOKMS.EXE-01C3577A.pf =>HackTool.AutoKMS

---\\ Récapitulatif des éléments trouvées sur votre station (5) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverFinder
http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS
http://www.nicolascoolman.fr/blog =>Legitimate.DriverSoft
http://www.nicolascoolman.fr/pup-sweetpage/ =>PUP.Optional.SweetPage
http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart

~ End of the scan, 13091 items in 100 seconds (806)(4)()

Publicité


Signaler le contenu de ce document

Publicité