Publicité
Publicité
Format du document : text/plain
Prévisualisation
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s
---\\ Search Drivers Rootkit (SDR) (O57)
O57 - SDR:Search Drivers Rootkit - (GMER) --
~ Keys: Scanned in 00mn 01s
---\\ System Drivers List (SDL) (O58)
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:22-08-2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:13-08-2013 - 0:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
~ Drivers: 47 Scanned in 00mn 03s
---\\ Last modified or created user files (O61)
O61 - LFC: 13-06-2015 - 16:40:41 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Local\Microsoft\Windows\INetCache\IE\NC4N6LTH\Opera_30.0.1835.59_Setup[1].exe [28315648]
O61 - LFC: 13-06-2015 - 16:40:42 ---A- . (...) -- C:\Users\k\AppData\Local\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin [269992]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_1_0.bin [16384]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_15f74c7777689be5_3_0.bin [16384]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_15f74c7777689be5_3_1.bin [1048576]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Local\Temp\Opera Installer\opera_installer_20150613015232.exe [29753344]
O61 - LFC: 13-06-2015 - 16:40:47 ---A- . (.Cinema PlusV16.03.) -- C:\Users\k\AppData\Roaming\BYAIAMUF.exe [2035200] =>PUP.CrossRider
O61 - LFC: 13-06-2015 - 16:40:50 ---A- . (.Cinema PlusV16.03.) -- C:\Users\k\AppData\Roaming\GNOK.exe [1380352] =>PUP.CrossRider
O61 - LFC: 13-06-2015 - 16:40:53 ---A- . (.OpenCandy.) -- C:\Users\k\AppData\Roaming\OpenCandy\846A7C09E1464B028799EAF508622691\dh.exe [199152] =>Adware.OpenCandy
O61 - LFC: 13-06-2015 - 16:40:53 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Roaming\OpenCandy\846A7C09E1464B028799EAF508622691\Opera_NI_stable.exe [687160] =>Adware.OpenCandy
O61 - LFC: 14-06-2015 - 16:40:41 ---A- . (...) -- C:\Users\k\AppData\Local\Microsoft\Windows\INetCache\IE\NC4N6LTH\urlblockindex[1].bin [16]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_0_1.bin [1048576]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_2_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_3_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_4_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (.ESET.) -- C:\Users\k\AppData\Local\Temp\InstHelper.exe [372936]
O61 - LFC: 14-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\AppData\Roaming\NVIDIA\GLCache\7b96517d18830af0e44b54f2f3077c6e\2b9cee6d57894948\ed1942ec14d4813d.bin [16821]
O61 - LFC: 15-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Desktop\A.C.MrHero\XFORCE\xf-adobecc2014.exe [87552]
O61 - LFC: 18-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\LG 01.bin [14076840]
O61 - LFC: 19-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BL 01.bin [14974942]
O61 - LFC: 19-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BL 02.bin [14921397]
O61 - LFC: 20-06-2015 - 16:40:40 ---A- . (...) -- C:\Users\k\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 20-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BEDIT.bin [5812044]
O61 - LFC: 20-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\EDIT.bin [5812044]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\SYSTEM.bin [136577]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (...) -- C:\Users\k\Downloads\4.0.rar.exe [234496]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (.Nicolas Coolman.) -- C:\Users\k\Downloads\ZHPDiag2 (1).exe [6883618] =>.Nicolas Coolman
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (.Nicolas Coolman.) -- C:\Users\k\Downloads\ZHPDiag2.exe [6883618] =>.Nicolas Coolman
~ 568 Fichiers temporaires (Temporary files)
~ Files: 28 Scanned in 00mn 20s
---\\ Alternate Data Stream File (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\Windows\System32\amtlib.dll:Zone.Identifier
~ ADS: Scanned in 00mn 07s
---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
Read more at http://www.cjoint.com/c/EFup2KrwFZ4#bjujwBcrDW26YgXl.99
---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s
---\\ Search Drivers Rootkit (SDR) (O57)
O57 - SDR:Search Drivers Rootkit - (GMER) --
~ Keys: Scanned in 00mn 01s
---\\ System Drivers List (SDL) (O58)
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:22-08-2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:13-08-2013 - 0:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:22-08-2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
~ Drivers: 47 Scanned in 00mn 03s
---\\ Last modified or created user files (O61)
O61 - LFC: 13-06-2015 - 16:40:41 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Local\Microsoft\Windows\INetCache\IE\NC4N6LTH\Opera_30.0.1835.59_Setup[1].exe [28315648]
O61 - LFC: 13-06-2015 - 16:40:42 ---A- . (...) -- C:\Users\k\AppData\Local\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin [269992]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_1_0.bin [16384]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_15f74c7777689be5_3_0.bin [16384]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_15f74c7777689be5_3_1.bin [1048576]
O61 - LFC: 13-06-2015 - 16:40:46 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Local\Temp\Opera Installer\opera_installer_20150613015232.exe [29753344]
O61 - LFC: 13-06-2015 - 16:40:47 ---A- . (.Cinema PlusV16.03.) -- C:\Users\k\AppData\Roaming\BYAIAMUF.exe [2035200] =>PUP.CrossRider
O61 - LFC: 13-06-2015 - 16:40:50 ---A- . (.Cinema PlusV16.03.) -- C:\Users\k\AppData\Roaming\GNOK.exe [1380352] =>PUP.CrossRider
O61 - LFC: 13-06-2015 - 16:40:53 ---A- . (.OpenCandy.) -- C:\Users\k\AppData\Roaming\OpenCandy\846A7C09E1464B028799EAF508622691\dh.exe [199152] =>Adware.OpenCandy
O61 - LFC: 13-06-2015 - 16:40:53 ---A- . (.Opera Software.) -- C:\Users\k\AppData\Roaming\OpenCandy\846A7C09E1464B028799EAF508622691\Opera_NI_stable.exe [687160] =>Adware.OpenCandy
O61 - LFC: 14-06-2015 - 16:40:41 ---A- . (...) -- C:\Users\k\AppData\Local\Microsoft\Windows\INetCache\IE\NC4N6LTH\urlblockindex[1].bin [16]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_0_1.bin [1048576]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_2_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_3_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (...) -- C:\Users\k\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\fbc678288eaeb98db91b7c3a27c71116_fce8395c8fd8a9a7_f3279b66e87c6f22_4_0.bin [16384]
O61 - LFC: 14-06-2015 - 16:40:46 ---A- . (.ESET.) -- C:\Users\k\AppData\Local\Temp\InstHelper.exe [372936]
O61 - LFC: 14-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\AppData\Roaming\NVIDIA\GLCache\7b96517d18830af0e44b54f2f3077c6e\2b9cee6d57894948\ed1942ec14d4813d.bin [16821]
O61 - LFC: 15-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Desktop\A.C.MrHero\XFORCE\xf-adobecc2014.exe [87552]
O61 - LFC: 18-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\LG 01.bin [14076840]
O61 - LFC: 19-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BL 01.bin [14974942]
O61 - LFC: 19-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BL 02.bin [14921397]
O61 - LFC: 20-06-2015 - 16:40:40 ---A- . (...) -- C:\Users\k\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 20-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\BEDIT.bin [5812044]
O61 - LFC: 20-06-2015 - 16:40:53 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\EDIT.bin [5812044]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (...) -- C:\Users\k\Documents\KONAMI\Pro Evolution Soccer 2015\save\SYSTEM.bin [136577]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (...) -- C:\Users\k\Downloads\4.0.rar.exe [234496]
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (.Nicolas Coolman.) -- C:\Users\k\Downloads\ZHPDiag2 (1).exe [6883618] =>.Nicolas Coolman
O61 - LFC: 20-06-2015 - 16:40:54 ---A- . (.Nicolas Coolman.) -- C:\Users\k\Downloads\ZHPDiag2.exe [6883618] =>.Nicolas Coolman
~ 568 Fichiers temporaires (Temporary files)
~ Files: 28 Scanned in 00mn 20s
---\\ Alternate Data Stream File (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\Windows\System32\amtlib.dll:Zone.Identifier
~ ADS: Scanned in 00mn 07s
---\\ List all tools cleaner (LATC) (O63)
O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
Read more at http://www.cjoint.com/c/EFup2KrwFZ4#bjujwBcrDW26YgXl.99