~ Rapport de ZHPDiag v2014.11.13.163 - Nicolas Coolman (13/11/2014) ~ Lancé par RonanNegro (16/11/2014 09:23:14) ~ Adresse du Site Web http://nicolascoolman.fr ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Nouvelle version disponible ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.17416 GCIE: Google Chrome v38.0.2125.122 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows 8.1, 64-bit (Build 9600) Windows Server License Manager Script : OK ~ Windows(R) Operating System, OEM_DM channel Windows ID Activation : OK ~ Windows Partial Key : HT67T Windows License : OK ~ Windows Remaining Initializations Number : 1000 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Windows Defender W8 (Deactivate) ---\\ Logiciels d'optimisation du système CCleaner v4.19 ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Reader X MUI ---\\ Informations sur le système ~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 6029 MB (77% free) System Restore: Activé (Enable) System drive C: has 222 GB (79%) free of 279 GB ---\\ Mode de connexion au système ~ Computer Name: RONAN ~ User Name: RonanNegro ~ All Users Names: UpdatusUser, RonanNegro, HomeGroupUser$, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\RonanNegro\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\RonanNegro\AppData\Roaming\ ~ %Desktop% : C:\Users\RonanNegro\Desktop\ ~ %Favorites% : C:\Users\RonanNegro\Favorites\ ~ %LocalAppData% : C:\Users\RonanNegro\AppData\Local\ ~ %StartMenu% : C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 222 Go of 279 Go) D: Hard drive, Flash drive, Thumb drive (Free 307 Go of 398 Go) E: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ~ Security Center: 43 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.CB0A4CACEB3CB41983FDE2945C99F3D2] - (.Microsoft Corporation - Explorateur Windows.) (.24/09/2014 - 19:01:11.) -- C:\Windows\Explorer.exe [2374816] [MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384] [MD5.BF1FC65A307B31939ADF7F976FDE033C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/11/2014 - 04:46:39.) -- C:\Windows\System32\wininet.dll [2365440] [MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.24/09/2014 - 16:34:56.) -- C:\Windows\System32\Winlogon.exe [562176] [MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.24/09/2014 - 16:34:58.) -- C:\Windows\System32\sppcomapi.dll [447488] [MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.24/09/2014 - 17:48:38.) -- C:\Windows\system32\Drivers\AFD.sys [563200] [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464] [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576] [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352] [MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.24/09/2014 - 17:03:07.) -- C:\Windows\system32\Drivers\DfsC.sys [134144] [MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24/09/2014 - 16:44:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800] [MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520] [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.24/09/2014 - 16:35:02.) -- C:\Windows\system32\Drivers\IpNat.sys [142848] [MD5.0696F66E4D423793951A60562F794D14] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.24/09/2014 - 17:30:31.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402432] [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624] [MD5.038C77D577900EE39410662478BB0D50] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/09/2014 - 16:44:43.) -- C:\Windows\system32\Drivers\ntfs.sys [2009920] [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208] [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832] [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.24/09/2014 - 16:03:44.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584] [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520] [MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.24/09/2014 - 16:44:42.) -- C:\Windows\system32\Drivers\volsnap.sys [310080] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/150 ~ Mes musiques (My Musics) : 6/1301 ~ Mes Videos (My Videos) : 1/2 ~ Mes Favoris (My Favorites) : 1/7 ~ Mes Documents (My Documents) : 1/982 ~ Mon Bureau (My Desktop) : 1/13 ~ Menu demarrer (Programs) : 1/30 ~ Hidden Files: Scanned in 00mn 01s ---\\ Processus lancés [MD5.97432AB9F1B3B3E63E778C1E69E71E91] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032] [PID.3620] [MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe [495616] [PID.5788] [MD5.966FE904599B9A0F80EA498851180829] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344] [PID.2816] [MD5.6504113C2218667814D4F54847BA046A] - (.Pas de propriétaire - Aut2Exe.) -- C:\Users\RonanNegro\Downloads\adwcleaner_4.101.exe [2140160] [PID.2612] [MD5.A0DA0ED7F15F4E3259C8FF3ADAE1B495] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8126464] [PID.192] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\RonanNegro\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Liste des dossiers d'extension Google Chrome ~ Google Lines Browser: 0 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17351 (winblue_r3.140925-1500)) -- C:\Windows\SysWOW64\ieframe.dll ~ IE Browser: 17 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hôte est sain (The hosts file is clean) (21) ~ Hosts File: Scanned in 00mn 00s ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll ~ BHO: 3 Scanned in 00mn 00s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe O4 - HKCU\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O4 - HKCU\..\Run: [MK LOL] . (...) -- C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKUS\S-1-5-21-473636261-2642067817-3709923779-1002\..\Run: [RocketDock] . (...) -- C:\Program Files (x86)\RocketDock\RocketDock.exe O4 - HKUS\S-1-5-21-473636261-2642067817-3709923779-1002\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O4 - HKUS\S-1-5-21-473636261-2642067817-3709923779-1002\..\Run: [MK LOL] . (...) -- C:\Program Files (x86)\MKJogo\MK IM\Bin\MKIM.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll ~ Winsock: 6 Scanned in 00mn 00s ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] http.ma-config.com O15 - Trusted Zone: [HKCU\...\Domains] http.touslesdrivers.com ~ IE Zone Confiance: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{D44EC118-8CF9-4482-BCD5-6F866D986777}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{D44EC118-8CF9-4482-BCD5-6F866D986777}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 331.) - C:\Windows\system32\nvinitx.dll ~ AppInit DLL: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.97432AB9F1B3B3E63E778C1E69E71E91] [APT] [ASUS USB Charger Plus] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [1124032] [MD5.00000000000000000000000000000000] [APT] [AsusVibeSchedule] (...) -- C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe (.not file.) [0] [MD5.D87E0BF2E8BB7E5C49E79F32F8FEAFC4] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4826904] [MD5.00000000000000000000000000000000] [APT] [GlaryInitialize 5] (...) -- C:\Program Files (x86)\Glary Utilities 5\Initialize.exe (.not file.) [0] [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.F172AD4E906D97ED8F071896FC6789DC] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912] [MD5.00000000000000000000000000000000] [APT] [GU5SkipUAC] (...) -- C:\Program Files (x86)\Glary Utilities 5\Integrator.exe (.not file.) [0] O39 - APT: GlaryInitialize 5 - (...) -- C:\Windows\Tasks\GlaryInitialize 5.job [354] O39 - APT: GlaryInitialize 5 - (...) -- C:\Windows\System32\Tasks\GlaryInitialize 5 [354] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1084] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1084] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1088] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1088] ~ Scheduled Task: 11 Scanned in 00mn 02s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Active Setup: 9 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (GUBootStartup) . (.Glarysoft Ltd - The driver for the Startup Manager tool.) - C:\WINDOWS\system32\drivers\GUBootStartup.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys ~ Drivers: 36 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: ASUS USB Charger Plus - (.ASUS.) [HKLM][64Bits] -- {A859E3E5-C62F-4BFA-AF1D-2B95E03166AF} O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE} O42 - Logiciel: Adobe Reader X MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-AA0000000001} O42 - Logiciel: Audacity 2.0.6 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1 O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Intel(R) ME UninstallLegacy - (.Intel Corporation.) [HKLM][64Bits] -- {F43C7651-A7CB-49EF-8AF4-40630849FF29} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {1CEAC85D-2590-4760-800F-8DE5E91F3700} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {243B5B47-6A9C-4D51-8CA4-8D9C0308D02F} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {BB193400-CE40-4598-8391-FE63EC46BFF4} O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573} O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B} O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0} O42 - Logiciel: LAME v3.99.3 (for Windows) - (...) [HKLM][64Bits] -- LAME_is1 O42 - Logiciel: MK LOL - (...) [HKCU][64Bits] -- MK LOL O42 - Logiciel: Mises à jour NVIDIA 1.15.2 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {7B5AA67E-FEA0-40BB-BAB5-CA56645A589C} O42 - Logiciel: NVIDIA PhysX System Software 9.13.0725 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA Pilote graphique 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: Qualcomm Atheros Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33} O42 - Logiciel: Qualcomm Atheros Driver Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7} O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: RocketDock 1.3.5 - (.Punk Software.) [HKLM][64Bits] -- RocketDock_is1 O42 - Logiciel: Skype™ 6.22 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D} O42 - Logiciel: WinRAR 5.01 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver ~ Logic: 37 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\5 Bits Games] [HKCU\Software\ASUS] [HKCU\Software\AppDataLow] [HKCU\Software\Audacity] [HKCU\Software\Blizzard Entertainment] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Glarysoft] [HKCU\Software\Google] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Lake] [HKCU\Software\Logitech] [HKCU\Software\Macromedia] [HKCU\Software\Mine] [HKCU\Software\MozillaPlugins] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\RocketDock] [HKCU\Software\Skype] [HKCU\Software\Trolltech] [HKCU\Software\Unity] [HKCU\Software\Valve] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKLM\Software\AGEIA Technologies] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\Agere] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DTS] [HKLM\Software\Dolby] [HKLM\Software\ECAREME] [HKLM\Software\IM Providers] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Knowles] [HKLM\Software\LSI] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\Nuance] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SonicFocus] [HKLM\Software\Synaptics] [HKLM\Software\Volatile] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\ASIO] [HKLM\Software\Wow6432Node\ASUS] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\AsLdr] [HKLM\Software\Wow6432Node\Atheros] [HKLM\Software\Wow6432Node\Blizzard Entertainment] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\GlarySoft] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\Lame For Audacity] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\McAfee] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\Nuance] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Qualcomm Atheros] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Riot Games] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\SuppHelpDir] [HKLM\Software\Wow6432Node\Ubisoft] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\WildTangent] [HKLM\Software\Wow6432Node\Wow6432Node] [HKLM\Software\Wow6432Node] ~ Key Software: 171 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 15/11/2014 - 20:39:59 - [] ----D C:\Program Files (x86)\Adobe O43 - CFD: 15/11/2014 - 20:25:22 - [0] ----D C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 15/11/2014 - 21:20:16 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc O43 - CFD: 15/11/2014 - 20:40:14 - [] ----D C:\Program Files (x86)\ASUS O43 - CFD: 15/11/2014 - 21:20:41 - [] ----D C:\Program Files (x86)\Audacity O43 - CFD: 15/11/2014 - 21:20:15 - [] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 15/11/2014 - 20:40:30 - [] ----D C:\Program Files (x86)\Common Files O43 - CFD: 15/11/2014 - 20:40:45 - [] ----D C:\Program Files (x86)\Google O43 - CFD: 15/11/2014 - 20:40:56 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 15/11/2014 - 20:41:01 - [] ----D C:\Program Files (x86)\Intel O43 - CFD: 15/11/2014 - 20:41:08 - [] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 15/11/2014 - 17:51:32 - [] ----D C:\Program Files (x86)\iTunes O43 - CFD: 15/11/2014 - 00:37:36 - [] ----D C:\Program Files (x86)\Java O43 - CFD: 16/11/2014 - 01:25:58 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 15/11/2014 - 21:20:44 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 15/11/2014 - 20:41:12 - [] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 15/11/2014 - 21:54:27 - [] ----D C:\Program Files (x86)\MKJogo O43 - CFD: 15/11/2014 - 20:41:12 - [] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 15/11/2014 - 20:41:19 - [] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 15/11/2014 - 21:20:44 - [] ----D C:\Program Files (x86)\Qualcomm Atheros O43 - CFD: 15/11/2014 - 20:41:24 - [] ----D C:\Program Files (x86)\Realtek O43 - CFD: 15/11/2014 - 20:41:28 - [] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 15/11/2014 - 21:20:45 - [] ----D C:\Program Files (x86)\RocketDock O43 - CFD: 15/11/2014 - 23:23:25 - [] R---D C:\Program Files (x86)\Skype O43 - CFD: 15/11/2014 - 03:13:27 - [] ----D C:\Program Files (x86)\Sony O43 - CFD: 15/11/2014 - 14:13:05 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 14/11/2014 - 12:24:00 - [0] ----D C:\Program Files (x86)\Uninstall Information O43 - CFD: 15/11/2014 - 20:41:39 - [] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 15/11/2014 - 20:42:12 - [] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 15/11/2014 - 21:22:42 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 15/11/2014 - 20:42:12 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 24/09/2014 - 19:10:22 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 15/11/2014 - 20:42:12 - [] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 15/11/2014 - 20:42:12 - [] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 24/09/2014 - 19:10:22 - [] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 13/11/2014 - 05:08:51 - [] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 22/08/2013 - 16:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 16/11/2014 - 09:22:32 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 15/11/2014 - 20:40:19 - [] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 15/11/2014 - 19:35:03 - [] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 15/11/2014 - 21:20:41 - [] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment O43 - CFD: 15/11/2014 - 20:40:19 - [] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 15/11/2014 - 20:40:20 - [] ----D C:\Program Files (x86)\Common Files\Intel O43 - CFD: 15/11/2014 - 00:35:41 - [] ----D C:\Program Files (x86)\Common Files\Intel Corporation O43 - CFD: 15/11/2014 - 00:37:53 - [] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 15/11/2014 - 21:20:42 - [] ----D C:\Program Files (x86)\Common Files\mcafee O43 - CFD: 15/11/2014 - 20:40:29 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 15/11/2014 - 21:20:42 - [] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 22/08/2013 - 16:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 15/11/2014 - 21:20:42 - [] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 15/11/2014 - 20:40:30 - [] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 15/11/2014 - 19:36:16 - [] ----D C:\ProgramData\Apple O43 - CFD: 15/11/2014 - 17:51:24 - [] ----D C:\ProgramData\Apple Computer O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 26/04/2013 - 00:16:21 - [] ----D C:\ProgramData\ASUS WebStorage O43 - CFD: 26/04/2013 - 00:15:20 - [] ----D C:\ProgramData\ASUSLogos O43 - CFD: 12/11/2014 - 13:40:34 - [] ----D C:\ProgramData\Battle.net O43 - CFD: 12/11/2014 - 13:42:23 - [] ----D C:\ProgramData\Blizzard Entertainment O43 - CFD: 12/11/2014 - 13:04:05 - [] -SH-D C:\ProgramData\Bureau O43 - CFD: 13/11/2014 - 11:44:38 - [] ----D C:\ProgramData\Common Files O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Desktop O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 15/11/2014 - 17:51:24 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 O43 - CFD: 15/11/2014 - 14:51:53 - [0] ----D C:\ProgramData\GlarySoft O43 - CFD: 12/11/2014 - 15:16:42 - [] ----D C:\ProgramData\Intel O43 - CFD: 15/11/2014 - 20:10:28 - [] ----D C:\ProgramData\ma-config.com O43 - CFD: 12/11/2014 - 16:33:54 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 15/11/2014 - 21:22:49 - [] ----D C:\ProgramData\McAfee O43 - CFD: 12/11/2014 - 13:04:05 - [] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 15/11/2014 - 20:43:25 - [] -S--D C:\ProgramData\Microsoft O43 - CFD: 12/11/2014 - 13:17:26 - [] ----D C:\ProgramData\Microsoft OneDrive O43 - CFD: 26/04/2013 - 00:16:41 - [] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 12/11/2014 - 13:04:05 - [] -SH-D C:\ProgramData\Modèles O43 - CFD: 15/11/2014 - 20:43:41 - [] ----D C:\ProgramData\NVIDIA O43 - CFD: 13/11/2014 - 04:55:32 - [] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 15/11/2014 - 00:37:41 - [] ----D C:\ProgramData\Oracle O43 - CFD: 13/11/2014 - 05:08:56 - [] ----D C:\ProgramData\PRICache O43 - CFD: 12/11/2014 - 15:09:52 - [] ----D C:\ProgramData\Qualcomm Atheros O43 - CFD: 24/09/2014 - 16:03:54 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 12/11/2014 - 13:34:20 - [] ----D C:\ProgramData\Riot Games O43 - CFD: 12/11/2014 - 13:52:42 - [] ----D C:\ProgramData\Skype O43 - CFD: 15/11/2014 - 03:13:27 - [] ----D C:\ProgramData\Sony O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Start Menu O43 - CFD: 12/11/2014 - 23:13:29 - [] ----D C:\ProgramData\Steam O43 - CFD: 15/11/2014 - 00:37:54 - [] ----D C:\ProgramData\Sun O43 - CFD: 15/11/2014 - 20:43:42 - [] ----D C:\ProgramData\Temp O43 - CFD: 22/08/2013 - 15:45:52 - [] -SH-D C:\ProgramData\Templates O43 - CFD: 15/11/2014 - 19:36:25 - [] ----D C:\ProgramData\TuneUp Software O43 - CFD: 13/11/2014 - 02:37:56 - [] ----D C:\ProgramData\Ubisoft O43 - CFD: 03/12/2013 - 22:23:21 - [] ----D C:\ProgramData\USBChargerPlus O43 - CFD: 12/11/2014 - 13:33:18 - [] ----D C:\ProgramData\WildTangent O43 - CFD: 13/11/2014 - 11:57:51 - [0] -SH-D C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C} O43 - CFD: 12/11/2014 - 13:12:01 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Adobe O43 - CFD: 14/11/2014 - 15:00:54 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Apple Computer O43 - CFD: 12/11/2014 - 13:14:46 - [] ----D C:\Users\RonanNegro\AppData\Roaming\ASUS WebStorage O43 - CFD: 15/11/2014 - 21:21:09 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Audacity O43 - CFD: 15/11/2014 - 21:21:09 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Battle.net O43 - CFD: 13/11/2014 - 05:28:07 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Identities O43 - CFD: 15/11/2014 - 00:34:50 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Intel Corporation O43 - CFD: 12/11/2014 - 18:37:08 - [] ----D C:\Users\RonanNegro\AppData\Roaming\LolClient O43 - CFD: 15/11/2014 - 20:46:00 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Macromedia O43 - CFD: 15/11/2014 - 20:46:01 - [] -S--D C:\Users\RonanNegro\AppData\Roaming\Microsoft O43 - CFD: 15/11/2014 - 03:15:31 - [0] ----D C:\Users\RonanNegro\AppData\Roaming\Publish Providers O43 - CFD: 16/11/2014 - 01:20:15 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Skype O43 - CFD: 15/11/2014 - 13:25:23 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Sony O43 - CFD: 16/11/2014 - 09:21:36 - [] ----D C:\Users\RonanNegro\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 15/11/2014 - 21:21:09 - [] ----D C:\Users\RonanNegro\AppData\Roaming\vlc O43 - CFD: 12/11/2014 - 15:03:07 - [] ----D C:\Users\RonanNegro\AppData\Roaming\WinRAR O43 - CFD: 16/11/2014 - 09:23:23 - [] ----D C:\Users\RonanNegro\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 14/11/2014 - 14:56:57 - [] ----D C:\Users\RonanNegro\AppData\Local\Apple O43 - CFD: 14/11/2014 - 14:58:35 - [] ----D C:\Users\RonanNegro\AppData\Local\Apple Computer O43 - CFD: 13/11/2014 - 05:05:14 - [] -SH-D C:\Users\RonanNegro\AppData\Local\Application Data O43 - CFD: 15/11/2014 - 20:44:49 - [] ----D C:\Users\RonanNegro\AppData\Local\Apps O43 - CFD: 13/11/2014 - 00:36:43 - [] ----D C:\Users\RonanNegro\AppData\Local\ASUS O43 - CFD: 12/11/2014 - 13:42:39 - [] ----D C:\Users\RonanNegro\AppData\Local\Battle.net O43 - CFD: 12/11/2014 - 13:42:34 - [] ----D C:\Users\RonanNegro\AppData\Local\Blizzard Entertainment O43 - CFD: 12/11/2014 - 15:00:18 - [] ----D C:\Users\RonanNegro\AppData\Local\Diagnostics O43 - CFD: 15/11/2014 - 14:15:08 - [] -SH-D C:\Users\RonanNegro\AppData\Local\EmieBrowserModeList O43 - CFD: 15/11/2014 - 14:15:08 - [] -SH-D C:\Users\RonanNegro\AppData\Local\EmieSiteList O43 - CFD: 15/11/2014 - 14:15:08 - [] -SH-D C:\Users\RonanNegro\AppData\Local\EmieUserList O43 - CFD: 15/11/2014 - 20:44:50 - [] ----D C:\Users\RonanNegro\AppData\Local\Google O43 - CFD: 13/11/2014 - 05:05:14 - [] -SH-D C:\Users\RonanNegro\AppData\Local\Historique O43 - CFD: 15/11/2014 - 20:45:08 - [] ----D C:\Users\RonanNegro\AppData\Local\Microsoft O43 - CFD: 15/11/2014 - 00:58:15 - [] ----D C:\Users\RonanNegro\AppData\Local\NVIDIA O43 - CFD: 15/11/2014 - 22:00:12 - [] ----D C:\Users\RonanNegro\AppData\Local\Packages O43 - CFD: 13/11/2014 - 05:30:24 - [0] ----D C:\Users\RonanNegro\AppData\Local\PackageStaging O43 - CFD: 13/11/2014 - 13:04:18 - [] ----D C:\Users\RonanNegro\AppData\Local\Programs O43 - CFD: 15/11/2014 - 20:45:55 - [] ----D C:\Users\RonanNegro\AppData\Local\Skype O43 - CFD: 15/11/2014 - 03:15:28 - [] ----D C:\Users\RonanNegro\AppData\Local\Sony O43 - CFD: 16/11/2014 - 09:22:34 - [] ----D C:\Users\RonanNegro\AppData\Local\Temp O43 - CFD: 13/11/2014 - 05:05:14 - [] -SH-D C:\Users\RonanNegro\AppData\Local\Temporary Internet Files O43 - CFD: 12/11/2014 - 13:08:31 - [0] ----D C:\Users\RonanNegro\AppData\Local\VirtualStore O43 - CFD: 12/11/2014 - 13:43:54 - [0] ----D C:\Users\RonanNegro\AppData\Local\Windows Live O43 - CFD: 15/11/2014 - 21:22:42 - [] R---D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 15/11/2014 - 21:21:09 - [] R---D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 13/11/2014 - 05:28:20 - [] R---D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 22/08/2013 - 16:36:32 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 15/11/2014 - 21:54:37 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MKJogo O43 - CFD: 13/11/2014 - 05:28:20 - [] R---D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 15/11/2014 - 21:22:42 - [] R---D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 15/11/2014 - 21:22:42 - [] ----D C:\Users\RonanNegro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Program Folder: 141 Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/11/2014 - 11:21:51 ---A- . (...) -- C:\autoexec.bat [0] O44 - LFC:[MD5.0636745A40DEA06283D45885C228AF01] - 12/11/2014 - 14:25:07 ---A- . (.Glarysoft Ltd - The driver for the Startup Manager tool.) -- C:\Windows\System32\Drivers\GUBootStartup.sys [20160] O44 - LFC:[MD5.B1F2A6E64804B4380481978CD671B2A4] - 12/11/2014 - 14:31:09 ---A- . (.Microsoft Corporation - Microsoft UxTheme Library.) -- C:\Windows\System32\uxtheme.dll.backup [907776] O44 - LFC:[MD5.9A777EDE50D61A30265C4448A67F80E9] - 12/11/2014 - 14:31:09 ---A- . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll.backup [2884096] O44 - LFC:[MD5.0456DB582CA453213A151B04E512E322] - 12/11/2014 - 14:31:09 ---A- . (.Microsoft Corporation - Windows User Experience Session Initializat.) -- C:\Windows\System32\uxinit.dll.backup [53760] O44 - LFC:[MD5.A5A0BBC875A1E50E29ED02E21A8FA13E] - 12/11/2014 - 15:15:20 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\Drivers\RtsBaStor.sys [313048] O44 - LFC:[MD5.9E4206B7274B0A85527394643281C10D] - 12/11/2014 - 15:15:21 ---A- . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\Drivers\RtsPer.sys [465624] O44 - LFC:[MD5.6A940599A059C6C9D6E54D7A3EF356B8] - 12/11/2014 - 15:15:21 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\Drivers\RtsP2Stor.sys [291544] O44 - LFC:[MD5.D23399622ED6692BF6AA1D30322345FC] - 12/11/2014 - 15:15:21 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vi.) -- C:\Windows\System32\Drivers\RtsPStor.sys [359128] O44 - LFC:[MD5.14182642967B8751F3717E94FC90DF48] - 12/11/2014 - 15:15:21 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\Drivers\RtsUStor.sys [271064] O44 - LFC:[MD5.B0B2C5F4D0A41FAAE7F2DD51C889CC13] - 12/11/2014 - 15:15:21 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\Windows\System32\Drivers\RtsUVStor.sys [331992] O44 - LFC:[MD5.8BD61173E395A7A4BBDE9836004C108B] - 12/11/2014 - 15:19:07 ---A- . (.Atheros - IHVS DLL.) -- C:\Windows\System32\athihvs.dll [440320] O44 - LFC:[MD5.4B3221C0B1BEFB744B0F9DFBA8046CC8] - 12/11/2014 - 15:19:07 ---A- . (.Atheros - IHVUI DLL.) -- C:\Windows\System32\athihvui.dll [60416] O44 - LFC:[MD5.F56C88F8DCED16DD9968FA509D68C409] - 12/11/2014 - 15:19:08 ---A- . (...) -- C:\Windows\System32\athw8x.cat [92517] O44 - LFC:[MD5.99E64C4356BE5534B980A2BE6404B15A] - 12/11/2014 - 15:19:08 ---A- . (...) -- C:\Windows\System32\athw8x.inf [400172] O44 - LFC:[MD5.9BAEB85E90A19BF3487018AB61073D6F] - 12/11/2014 - 15:19:08 ---A- . (...) -- C:\Windows\System32\athwbx.cat [92997] O44 - LFC:[MD5.C73B1CE3619781094DBDD25F1142DD89] - 12/11/2014 - 15:19:08 ---A- . (...) -- C:\Windows\System32\athwbx.inf [409714] O44 - LFC:[MD5.D01E4EF6A74C9A5EDFF4653ED9732482] - 12/11/2014 - 15:19:08 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\Drivers\athw8x.sys [3973120] O44 - LFC:[MD5.D01E4EF6A74C9A5EDFF4653ED9732482] - 12/11/2014 - 15:19:08 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\athw8x.sys [3973120] O44 - LFC:[MD5.4CB0360D8FA13AE0913CFB715F78D0C9] - 12/11/2014 - 15:19:08 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN de.) -- C:\Windows\System32\athwbx.sys [3901952] O44 - LFC:[MD5.BAC4C6E060303F461212DEEAD56C2B62] - 12/11/2014 - 19:54:56 ---A- . (.Microsoft - Système d’évaluation de l’âge russe.) -- C:\Windows\System32\rars.rs [14848] O44 - LFC:[MD5.D92FB5770CBDE049A4732B76A77F6864] - 12/11/2014 - 22:14:34 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [103374192] O44 - LFC:[MD5.381B00B8CAE07A3C910DE042DDA627A8] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfc007.dat [155360] O44 - LFC:[MD5.5D0E93B7095923D9874FF55DEB134EE6] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfc010.dat [152608] O44 - LFC:[MD5.1CF980F366710404FAE777CBBCA2AFDD] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfc013.dat [158586] O44 - LFC:[MD5.73103A9E587E8AE144B167120D779131] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfh007.dat [741800] O44 - LFC:[MD5.78C3C4CA72F16E8DB778A753A5702E52] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfh010.dat [780976] O44 - LFC:[MD5.AE0AF84B380ED9343A6D88F7FA143DAC] - 13/11/2014 - 00:29:00 ---A- . (...) -- C:\Windows\System32\perfh013.dat [785550] O44 - LFC:[MD5.B165DF72E13E6AF74D47013504319921] - 13/11/2014 - 02:36:47 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_24.dll [3544272] O44 - LFC:[MD5.4C56E7C5B2A61353E534C7D15D05856D] - 13/11/2014 - 02:36:48 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_25.dll [3823312] O44 - LFC:[MD5.44F5C5E27D6825E4E62420BC29B8B533] - 13/11/2014 - 02:36:48 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_26.dll [3767504] O44 - LFC:[MD5.914C3237E4D145A18DCD1D0D4C8659E1] - 13/11/2014 - 02:36:48 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_27.dll [3807440] O44 - LFC:[MD5.88BAC8306D4EC79A82B1FFA17DC8CF4A] - 13/11/2014 - 02:36:49 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_28.dll [3815120] O44 - LFC:[MD5.68B35CBDB4A8CC424718BBCC894FEEEA] - 13/11/2014 - 02:36:50 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_29.dll [3830992] O44 - LFC:[MD5.F77D5AB654881E683CFF6650916C424E] - 13/11/2014 - 02:36:51 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_0.dll [16592] O44 - LFC:[MD5.CE5753F9A27837259EB52F3F47F39593] - 13/11/2014 - 02:36:51 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_0.dll [355536] O44 - LFC:[MD5.E09A9CF383ACF4A28038561E62277377] - 13/11/2014 - 02:36:54 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_30.dll [3927248] O44 - LFC:[MD5.6F9D3289D8B166E478AFFF9EFA92C42C] - 13/11/2014 - 02:36:55 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_1.dll [83664] O44 - LFC:[MD5.0CC809422AB40974DFF8078392E4D507] - 13/11/2014 - 02:36:55 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_1.dll [352464] O44 - LFC:[MD5.DC5A914C34EB12056531777D4DD0F44E] - 13/11/2014 - 02:36:55 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_2.dll [354072] O44 - LFC:[MD5.06F15D3CB1AE0EAFA50F595B3FF8D9F5] - 13/11/2014 - 02:36:56 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_2.dll [83736] O44 - LFC:[MD5.0396D2A98B0CCD4419B572EBF618E81E] - 13/11/2014 - 02:36:56 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_3.dll [363288] O44 - LFC:[MD5.8251826F04BA0822D08AD9B92C65A3D5] - 13/11/2014 - 02:36:58 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10.dll [469264] O44 - LFC:[MD5.FAAA0BB9CD2905B25334132E5BA093EB] - 13/11/2014 - 02:36:58 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_31.dll [3977496] O44 - LFC:[MD5.489E5B8BB1BD1028FF1C798EAAEC65E4] - 13/11/2014 - 02:36:58 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\x3daudio1_1.dll [17688] O44 - LFC:[MD5.58BB51253427A834A8807B9245CC5965] - 13/11/2014 - 02:36:58 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_4.dll [364824] O44 - LFC:[MD5.398FF46FF7354FED2F0F1AECDB546866] - 13/11/2014 - 02:36:58 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_5.dll [390424] O44 - LFC:[MD5.3172C3CAC8EA7CA1B5D5AF6699C037D6] - 13/11/2014 - 02:36:59 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_33.dll [4494184] O44 - LFC:[MD5.4837A54574A6105D404A8560984B93DD] - 13/11/2014 - 02:36:59 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_6.dll [393576] O44 - LFC:[MD5.BFB3091B167550EC6E6454813D3DB244] - 13/11/2014 - 02:37:00 ---A- . (.Microsoft Corporation - Microsoft Common Controller API.) -- C:\Windows\System32\xinput1_3.dll [107368] O44 - LFC:[MD5.3EBF620536A13CA343E52ECA4F0DE7F8] - 13/11/2014 - 02:37:00 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_33.dll [1400176] O44 - LFC:[MD5.839C3921005BB41D441E3752C74F2292] - 13/11/2014 - 02:37:00 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_33.dll [506728] O44 - LFC:[MD5.AE5D5439525B4A4CBF206058D493685D] - 13/11/2014 - 02:37:00 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_34.dll [4496232] O44 - LFC:[MD5.8C970509E0AE10061E3ED6D51E34FEB9] - 13/11/2014 - 02:37:00 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_7.dll [403304] O44 - LFC:[MD5.9D9407F52B8E24E99358D9944B0D5FA3] - 13/11/2014 - 02:37:01 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_34.dll [1401200] O44 - LFC:[MD5.1ED4E7A82BD5C7DEED082F00E63BB7A0] - 13/11/2014 - 02:37:01 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_34.dll [506728] O44 - LFC:[MD5.BC78D5328541410510DDE06B9FA92024] - 13/11/2014 - 02:37:01 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_2.dll [21000] O44 - LFC:[MD5.FA485E76F94B7457767E372F47757733] - 13/11/2014 - 02:37:01 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_8.dll [409960] O44 - LFC:[MD5.B21427EDF0449E92000FF497DAAF89C9] - 13/11/2014 - 02:37:03 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_35.dll [1985904] O44 - LFC:[MD5.84116AA94672D623B95217648AE5B5B9] - 13/11/2014 - 02:37:03 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_35.dll [508264] O44 - LFC:[MD5.1B3AF16A27D390096925576202A64037] - 13/11/2014 - 02:37:03 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_35.dll [5073256] O44 - LFC:[MD5.BBB6C6833C30E323B41860D6DF61972D] - 13/11/2014 - 02:37:03 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\d3dx9_36.dll [5081608] O44 - LFC:[MD5.A69C32C2BD01522A088D254342826866] - 13/11/2014 - 02:37:03 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_9.dll [411496] O44 - LFC:[MD5.7299DF5CF81135934740211D9A946737] - 13/11/2014 - 02:37:04 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_36.dll [2006552] O44 - LFC:[MD5.570FDAE7041775DE0C67747BB7081939] - 13/11/2014 - 02:37:04 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_36.dll [508264] O44 - LFC:[MD5.8A10974DC6E1E42BDC635C2C2AFBD2CC] - 13/11/2014 - 02:37:05 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_37.dll [4910088] O44 - LFC:[MD5.E8932AF24786765859558CB79E385AC2] - 13/11/2014 - 02:37:05 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine2_10.dll [411656] O44 - LFC:[MD5.31026CEA5AFA2798292179102C06FE40] - 13/11/2014 - 02:37:06 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_37.dll [1860120] O44 - LFC:[MD5.A8C5688BBA00C1630550F26260AB5CAE] - 13/11/2014 - 02:37:06 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_37.dll [529424] O44 - LFC:[MD5.C4C2ED69B18EE1C60026877FCC470FA7] - 13/11/2014 - 02:37:06 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_3.dll [28168] O44 - LFC:[MD5.A8B5370B7B61D3777D840DA1C64A1C2D] - 13/11/2014 - 02:37:07 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_0.dll [177672] O44 - LFC:[MD5.29AF48F6C894328A58DEFDC560A70CF3] - 13/11/2014 - 02:37:08 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_0.dll [489480] O44 - LFC:[MD5.E5EC2AB7156A752F9614CDA4BE66EFE8] - 13/11/2014 - 02:37:09 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_38.dll [4991496] O44 - LFC:[MD5.A7E59BB6FAC119FABB83F18BD72AA1D7] - 13/11/2014 - 02:37:10 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_38.dll [1941528] O44 - LFC:[MD5.72CB653CECF4EA670E7F5A8D74358423] - 13/11/2014 - 02:37:10 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_38.dll [540688] O44 - LFC:[MD5.DE6004D16DBACD781ED4596C4FEA7D14] - 13/11/2014 - 02:37:10 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_4.dll [28168] O44 - LFC:[MD5.A2A098BF5A8C255A0090818AD8E87B0F] - 13/11/2014 - 02:37:10 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_1.dll [177672] O44 - LFC:[MD5.0E92D8C0ECA74B6D0A55ABAD53226113] - 13/11/2014 - 02:37:11 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_0.dll [68104] O44 - LFC:[MD5.E9C0F926D7C9082A805F4FEF81DEEB30] - 13/11/2014 - 02:37:11 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_1.dll [511496] O44 - LFC:[MD5.7505C133FC704B40CFDDFD38777BAAC3] - 13/11/2014 - 02:37:12 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\D3DX9_39.dll [4992520] O44 - LFC:[MD5.7741A0A6CED6C441B97D625B730D6075] - 13/11/2014 - 02:37:13 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\D3DCompiler_39.dll [1942552] O44 - LFC:[MD5.EAA692FDC990ED0407DF957316DA33C2] - 13/11/2014 - 02:37:13 ---A- . (.Microsoft Corporation - Microsoft Direct3D.) -- C:\Windows\System32\d3dx10_39.dll [540688] O44 - LFC:[MD5.CC8399A9E51B2AF1C2C20A26D85EB60E] - 13/11/2014 - 02:37:16 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_2.dll [177672] O44 - LFC:[MD5.CFF1C1F7B9F855DDEE431D7B5DCACDF8] - 13/11/2014 - 02:37:18 ---A- . (.Microsoft Corporation - X3DAudio.) -- C:\Windows\System32\X3DAudio1_5.dll [25936] O44 - LFC:[MD5.0F2DB378FBE2D124E4D3631B329688AE] - 13/11/2014 - 02:37:18 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_1.dll [72200] O44 - LFC:[MD5.E335DF094836EE7030F1B9CE7429E884] - 13/11/2014 - 02:37:18 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_2.dll [513544] O44 - LFC:[MD5.84B41FD03CAFC5048346B3B2AB92D199] - 13/11/2014 - 02:37:19 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_3.dll [175440] O44 - LFC:[MD5.2F8F9B707FED2405A787380230CC6FA9] - 13/11/2014 - 02:37:22 ---A- . (.Microsoft Corporation - XAPOFX.) -- C:\Windows\System32\XAPOFX1_2.dll [74576] O44 - LFC:[MD5.758139A39AECC1B512576275A27C1177] - 13/11/2014 - 02:37:22 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_3.dll [518480] O44 - LFC:[MD5.862586AD4B1355F7DCDE111EE0AAF350] - 13/11/2014 - 02:37:23 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_40.dll [519000] O44 - LFC:[MD5.29A79F0B607FAF5722D7BAF2485F632A] - 13/11/2014 - 02:37:23 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_40.dll [5631312] O44 - LFC:[MD5.37309B833480DC69FDE7DB68F9B8BC20] - 13/11/2014 - 02:37:23 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_40.dll [2605920] O44 - LFC:[MD5.EEE871CC4F5563FF8B3C8385B32B0C5F] - 13/11/2014 - 02:37:24 ---A- . (.Microsoft Corporation - 3D Audio Library.) -- C:\Windows\System32\X3DAudio1_6.dll [24920] O44 - LFC:[MD5.1BA01062450BD1F052C54C01C12248F6] - 13/11/2014 - 02:37:24 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_4.dll [174936] O44 - LFC:[MD5.37B348A79C4C9B8AB925B18FFD241E96] - 13/11/2014 - 02:37:25 ---A- . (.Microsoft Corporation - Audio Effect Library.) -- C:\Windows\System32\XAPOFX1_3.dll [73544] O44 - LFC:[MD5.B94F08069EFE2F8151DEF350E526E063] - 13/11/2014 - 02:37:25 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_4.dll [521560] O44 - LFC:[MD5.ECDDB13BC805B9F3EF3A855E6FD85C69] - 13/11/2014 - 02:37:26 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_41.dll [5425496] O44 - LFC:[MD5.E730967811E3702499446FFC8A432607] - 13/11/2014 - 02:37:27 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_41.dll [520544] O44 - LFC:[MD5.A59A5BADE4AF200C720D99EAE6E04E0E] - 13/11/2014 - 02:37:27 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_41.dll [2430312] O44 - LFC:[MD5.F13B90F5090EBA9041558BC6AAED79B8] - 13/11/2014 - 02:37:28 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dcsx_42.dll [5554512] O44 - LFC:[MD5.522749761B6CC69F8630F4B472DCA623] - 13/11/2014 - 02:37:28 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx11_42.dll [285024] O44 - LFC:[MD5.1AF7AE1FDE027A30B9097280819A0A86] - 13/11/2014 - 02:37:28 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_42.dll [2475352] O44 - LFC:[MD5.E92D2E4AFA43CD39A8C1C2C2DB59667E] - 13/11/2014 - 02:37:33 ---A- . (.Microsoft Corporation - Direct3D HLSL Compiler.) -- C:\Windows\System32\D3DCompiler_42.dll [2582888] O44 - LFC:[MD5.51D65BE2F794B944CADAF287B34EF603] - 13/11/2014 - 02:37:33 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_5.dll [176968] O44 - LFC:[MD5.B4FF2A39685C1A6D43F0E56EB350AF3A] - 13/11/2014 - 02:37:34 ---A- . (.Microsoft Corporation - 3D Audio Library.) -- C:\Windows\System32\X3DAudio1_7.dll [24920] O44 - LFC:[MD5.A9724EB3D6CC032D0C4ECAFF4AD8C17F] - 13/11/2014 - 02:37:34 ---A- . (.Microsoft Corporation - Audio Effect Library.) -- C:\Windows\System32\XAPOFX1_4.dll [78680] O44 - LFC:[MD5.936DCC640B2991905D909395E03B64F9] - 13/11/2014 - 02:37:34 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_6.dll [176984] O44 - LFC:[MD5.C291AEFD47A587FF5F509E2F96613F7D] - 13/11/2014 - 02:37:34 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_5.dll [517960] O44 - LFC:[MD5.05E88C8D8E652DFF03B469331F474CCE] - 13/11/2014 - 02:37:34 ---A- . (.Microsoft Corporation - XAudio2 Game Audio API.) -- C:\Windows\System32\XAudio2_6.dll [530776] O44 - LFC:[MD5.AD7FA9485059F4DC53C98B49CAB13F0B] - 13/11/2014 - 02:37:35 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_43.dll [511328] O44 - LFC:[MD5.7160FC226391C0B50C85571FA1A546E5] - 13/11/2014 - 02:37:35 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_43.dll [2401112] O44 - LFC:[MD5.5F1DA86286A2DFB01C4FED55C2DD1D61] - 13/11/2014 - 02:37:38 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dcsx_43.dll [1907552] O44 - LFC:[MD5.BDEC09A032DB44D9CDB3A0D97224D64E] - 13/11/2014 - 02:37:39 ---A- . (.Microsoft Corporation - XACT Engine API.) -- C:\Windows\System32\xactengine3_7.dll [176984] O44 - LFC:[MD5.B31C4917EC5EADE24A90DDAF37EA00E0] - 13/11/2014 - 04:42:50 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4182016] O44 - LFC:[MD5.BCC10D47920E83EAC8F2E7E2D414692E] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [894976] O44 - LFC:[MD5.DCD090318EC800CF6275C6835900B0C6] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3557376] O44 - LFC:[MD5.2585412FC573F298FCBFD6759F8C4C0F] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [1714176] O44 - LFC:[MD5.4D94560FD4982BB52C1FE64AE38E1A9F] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [35840] O44 - LFC:[MD5.E67B019D23320AA0C5F1E6DE5D30546A] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [407552] O44 - LFC:[MD5.5D67074419BBFDCA587C2E2A93743E8A] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288] O44 - LFC:[MD5.2E66E7D4F1E39F7048A231AA60FD2532] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [95744] O44 - LFC:[MD5.4A112AD7D9C7289FE9945D05E97019D0] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update Wu exports.) -- C:\Windows\System32\wuaext.dll [17408] O44 - LFC:[MD5.70AC0FA699C9420CB282CCF72993C2E1] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [51712] O44 - LFC:[MD5.CCE7F88AD038494253B485EC1B144EB3] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [60416] O44 - LFC:[MD5.EA2DF5520D3623F353F43809A2F88086] - 13/11/2014 - 04:43:03 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [55776] O44 - LFC:[MD5.25EE65F2FA154EDED0E87354311FB1E2] - 13/11/2014 - 04:43:17 ---A- . (.Microsoft Corporation - Accès distant PPP EAP-TLS.) -- C:\Windows\System32\rastls.dll [590336] O44 - LFC:[MD5.A92EF73B02686B7E6F070B486512DB88] - 13/11/2014 - 04:44:26 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [389176] O44 - LFC:[MD5.CFD6DBED27511D7A5FBE33AFA7E6B669] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Bulk File Operations Host Process.) -- C:\Windows\System32\BulkOperationHost.exe [76800] O44 - LFC:[MD5.1D303CE5BCBD5B80BBA08321F28A3F86] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [21197152] O44 - LFC:[MD5.C88B63FE96DB4BCED65DD442BC8E77F5] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll [1053184] O44 - LFC:[MD5.5416C603B6C85CF0698E8A2A1D28BAA2] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - DLL d’objets PrintUI.) -- C:\Windows\System32\puiobj.dll [448512] O44 - LFC:[MD5.CA729FCE295895515A09BD6FF7903DC8] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - DLL source et récepteur MPEG4 Media Foundat.) -- C:\Windows\System32\mfmp4srcsnk.dll [836176] O44 - LFC:[MD5.7F23E38C5B6448F91439E4066645191E] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428864] O44 - LFC:[MD5.50E96089F9BE352621997143A56C8E76] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll [822272] O44 - LFC:[MD5.A208498C5CD750A1743C1AC8162A810F] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll [941568] O44 - LFC:[MD5.9C55CE9707B3CA29A6505BCDCC546390] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Microsoft Fax API Support DLL.) -- C:\Windows\System32\FXSAPI.dll [275968] O44 - LFC:[MD5.6C118AEDD15FDBEAECC0E85C64B5B86B] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Microsoft Fax Server Extended COM Client In.) -- C:\Windows\System32\FXSCOMEX.dll [615424] O44 - LFC:[MD5.34B5290B8770A2FC578E3FEAD3FD7462] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Microsoft Windows MRM.) -- C:\Windows\System32\MrmCoreR.dll [921600] O44 - LFC:[MD5.BCE66E78D388875B87286CA091E7075F] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [7484224] O44 - LFC:[MD5.8758F5DEBD2B950B2D56ED11F9E0B38F] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - NTFS Utility DLL.) -- C:\Windows\System32\untfs.dll [545792] O44 - LFC:[MD5.E3FCE2A6B3533D99A3B498504DF9CC47] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [474432] O44 - LFC:[MD5.CCB3A2BB60FE5073F2DEA63FE83CF8FE] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2497344] O44 - LFC:[MD5.66732C13628BDB1AB0D6FD46027327C2] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [148800] O44 - LFC:[MD5.9CE162EB9057CF079736F4DD00FC0D6C] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Service WSMan.) -- C:\Windows\System32\WsmSvc.dll [2480128] O44 - LFC:[MD5.1907823D5ACFD75D1D8C0D4318299726] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers.dll [2714112] O44 - LFC:[MD5.C4306ADC38939CAC60EA38AAD9F170C0] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [13424128] O44 - LFC:[MD5.8CBF1E2761816CFD9D32F8B32531D0FB] - 13/11/2014 - 04:44:26 ---A- . (.Microsoft Corporation - Windows Services Instrumentation Module.) -- C:\Windows\System32\winbici.dll [118272] O44 - LFC:[MD5.F0A53129AE95A895EC8C4DC36E1797A2] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Composant Microsoft Office 2000.) -- C:\Windows\System32\hlink.dll [108544] O44 - LFC:[MD5.2E475D2FCE0125FA0C486DB9D59E739B] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\System32\html.iec [417280] O44 - LFC:[MD5.70576D76A11DD5AE54E719297A315F90] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064] O44 - LFC:[MD5.3721721151DB49457B0FD35E0C04594C] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [199680] O44 - LFC:[MD5.BF1FC65A307B31939ADF7F976FDE033C] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2365440] O44 - LFC:[MD5.559E084EEBE44864493B2903433F19B3] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1550336] O44 - LFC:[MD5.6096209CB47D61499C3608B9C25B073C] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - IE PNG plugin image decoder.) -- C:\Windows\System32\pngfilt.dll [64512] O44 - LFC:[MD5.F54E1190251EB245183BF16D6C315613] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [237568] O44 - LFC:[MD5.F79E5258AF040A8AD83C7C1273A071C3] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [54784] O44 - LFC:[MD5.C9AB2198141844D3DF96B4552CE9D5AB] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [77824] O44 - LFC:[MD5.46B5DD7C4B1851F59E48302185E076DF] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [1032704] O44 - LFC:[MD5.258C3082AD82C1AAD335DA3FE2D3EB25] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [580096] O44 - LFC:[MD5.A348DEFC16B6FBC88B7D61C3B861BCB1] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Moteur d'installation.) -- C:\Windows\System32\inseng.dll [107520] O44 - LFC:[MD5.587DEBB59F5F14C9610966FB14A33607] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [633856] O44 - LFC:[MD5.62E2FCF45F349DE6CAFB3AA7E1D81DA4] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2124288] O44 - LFC:[MD5.22CBDB8810CBED0B4F5E4BE69D7E2AE8] - 13/11/2014 - 04:46:39 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2884096] O44 - LFC:[MD5.CDC8A85EB301A8CBE55A81A1D55AF5E5] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - ADVPACK.) -- C:\Windows\System32\IEAdvpack.dll [132096] O44 - LFC:[MD5.62D54F4673A6208C8CC147758122B3C3] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2865152] O44 - LFC:[MD5.4B9C652BD0FD95A9E6123913C35519D6] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Auto-extracteur de fichier CAB Win32.) -- C:\Windows\System32\wextract.exe [143872] O44 - LFC:[MD5.853BB696932E4C48EE7034BFF1209A5A] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll [262144] O44 - LFC:[MD5.D66D11191B48007179B0A77DC0717267] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de licences Microsoft®.) -- C:\Windows\System32\licmgr10.dll [33280] O44 - LFC:[MD5.A3871DED5ED88F59C0D1396761708F81] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\System32\mshta.exe [13824] O44 - LFC:[MD5.A7F53772ECAE2F44B455D14F71179940] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640] O44 - LFC:[MD5.E40D3696BE4852956669C285038B37A6] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [114688] O44 - LFC:[MD5.8AE1AC97407CD82D8389390C21430579] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - IE Sysprep Provider.) -- C:\Windows\System32\iesysprep.dll [111616] O44 - LFC:[MD5.161BC2E883A8D8759A4DCF2A85AF9128] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - IE plugin image decoder support DLL.) -- C:\Windows\System32\imgutil.dll [51200] O44 - LFC:[MD5.E99E2E88BFE584184AE92B1F8995CE93] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66560] O44 - LFC:[MD5.0D03DAD6BB183156C70F863D0F2FA55A] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [812544] O44 - LFC:[MD5.079FEE6FC11A74E4309B6A10931C1CB2] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [6040064] O44 - LFC:[MD5.200CEA827BDC503F00C0AED0EA227D49] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [800768] O44 - LFC:[MD5.66585D645C4E23A0FD5124BD714AE020] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [12800] O44 - LFC:[MD5.BC3B7CCE855F9A8E7BC96F7062229A02] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [799232] O44 - LFC:[MD5.DE58DE2C6C8439B7174D6D3568AA4A80] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [814080] O44 - LFC:[MD5.2CEACC509889A095828F27115257408D] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160] O44 - LFC:[MD5.BED4D30B7FF094E368333CE2D1CE3195] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [14390272] O44 - LFC:[MD5.DD8FD33C108F14681A410067AB21DDF3] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Object Control Viewer.) -- C:\Windows\System32\occache.dll [152064] O44 - LFC:[MD5.AF28C90094C4C50F083599C10D2DC072] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\System32\iepeers.dll [145408] O44 - LFC:[MD5.1C3C54FA2D620DF3093F356A56EC5957] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [144384] O44 - LFC:[MD5.9CD8D475F462F82E6FD8BFCA7186ACD4] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [372736] O44 - LFC:[MD5.85E97591864F3125C5B08FB44E0E8078] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\System32\msfeedsbs.dll [60416] O44 - LFC:[MD5.00FB2FB8C27C834CF575BC415B80F995] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\System32\tdc.ocx [87552] O44 - LFC:[MD5.6A7F8D139610E5F3F158182778EF9275] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [34304] O44 - LFC:[MD5.FD7C8FAC461BED1FEEB808E477D884D4] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [716800] O44 - LFC:[MD5.6432F143CDC9D73BD2BF832CAB2EDC01] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [25110016] O44 - LFC:[MD5.CA2F3153EF3BCB0BD3A8984C933DF604] - 13/11/2014 - 04:46:40 ---A- . (.Microsoft Corporation - Wizard.) -- C:\Windows\System32\iexpress.exe [167424] O44 - LFC:[MD5.488CEA4F1B4D2446FFB7A94E3CB385FE] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - Client Microsoft® Active Directory Certific.) -- C:\Windows\System32\certcli.dll [445440] O44 - LFC:[MD5.1D25CC0A9C480C5D56A5A6CF2B5DEB99] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [3547648] O44 - LFC:[MD5.A8484FB640E044858BA19FB4F13DD4CE] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - DLL des événements d’audit de la sécurité.) -- C:\Windows\System32\msaudite.dll [154112] O44 - LFC:[MD5.91E59FCB3B32DD84E5DCDA2EA1583807] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll [736768] O44 - LFC:[MD5.949E590B76018E4523FC71CE510ED9ED] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1441792] O44 - LFC:[MD5.4E1207CE16E615B0B7A70DC889F4500E] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [563976] O44 - LFC:[MD5.6D2EE96150E35B9EA49F2B481DE0369A] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [177472] O44 - LFC:[MD5.9F08A6608F98B5407E7DDBCF306573EF] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27456] O44 - LFC:[MD5.3D2D2EA099D98FE6B94C7D8C7992C08C] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - Microsoft RemoteFX VM Transport.) -- C:\Windows\System32\rfxvmt.dll [40448] O44 - LFC:[MD5.D7B23B3154508256C9F434EF9B65B91D] - 13/11/2014 - 04:47:08 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [131584] O44 - LFC:[MD5.F0A117D19873FCDF801F082F33BFBB6C] - 13/11/2014 - 04:47:24 ---A- . (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\user32.dll [1519488] O44 - LFC:[MD5.668417ED63F9FBE7DD8D7A54B04279DA] - 13/11/2014 - 04:47:24 ---A- . (.Microsoft Corporation - File Risk Estimation.) -- C:\Windows\System32\winshfhc.dll [14336] O44 - LFC:[MD5.4AD874CDC812EC156265E451B6B09DAB] - 13/11/2014 - 04:47:24 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [114496] O44 - LFC:[MD5.0359607177E5E9F6041136CC0A5CB0B6] - 13/11/2014 - 04:47:24 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [35320] O44 - LFC:[MD5.DE8D12B4C3F55FA2C5E9774314F6C58A] - 13/11/2014 - 04:47:24 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [258368] O44 - LFC:[MD5.6DE50D5592C6EE18C87B0C2EEEDC1621] - 13/11/2014 - 04:47:43 ---A- . (.Microsoft Corporation - DPAPI Server.) -- C:\Windows\System32\dpapisrv.dll [185856] O44 - LFC:[MD5.F0CE4A653EEBA09509EAF93AE2226FA9] - 13/11/2014 - 04:47:43 ---A- . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll [426496] O44 - LFC:[MD5.622928F5A8045F8122F10561D6C35ED0] - 13/11/2014 - 04:47:43 ---A- . (.Microsoft Corporation - Microsoft SChannel Provider.) -- C:\Windows\System32\ncryptsslp.dll [104336] O44 - LFC:[MD5.ADBC91A68B4770D77774031BB683494E] - 13/11/2014 - 04:47:49 ---A- . (.Microsoft Corporation - USB 2.0 Kernel Debugger.) -- C:\Windows\System32\kdusb.dll [54592] O44 - LFC:[MD5.A770340FC02B999EF0DE6C2A6BC8437C] - 13/11/2014 - 04:47:53 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [39744] O44 - LFC:[MD5.7B7C482CF48E6EE33664340D1A78E6FE] - 13/11/2014 - 04:47:53 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [238912] O44 - LFC:[MD5.24A8DFC07E4BAF29AEA26E383D4CC886] - 13/11/2014 - 04:47:53 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [86336] O44 - LFC:[MD5.B02118A776C368F7EE1A8CC81378D265] - 13/11/2014 - 04:47:53 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [153920] O44 - LFC:[MD5.D1A2E993DB1867C79177CCC9DB6337D0] - 13/11/2014 - 04:47:58 ---A- . (.Microsoft Corporation - Interface utilisateur de consentement pour.) -- C:\Windows\System32\consent.exe [116032] O44 - LFC:[MD5.D5B41A0C38408814A3E9BAC8C82B2E5B] - 13/11/2014 - 04:47:58 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll [2773504] O44 - LFC:[MD5.034ED41F13D9C1845C1E081F05B640DB] - 13/11/2014 - 04:47:58 ---A- . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] O44 - LFC:[MD5.EF745B98D81B8C462DB99FC8B5C4322A] - 13/11/2014 - 04:47:58 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3320320] O44 - LFC:[MD5.D0C15BC83B3D0AF4F9B1D70216D91794] - 13/11/2014 - 04:47:58 ---A- . (.Microsoft Corporation - Windows® installer.) -- C:\Windows\System32\msihnd.dll [428032] O44 - LFC:[MD5.84549E8C8BF76B293A7E625A98D4BCF9] - 13/11/2014 - 04:48:25 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d’objets2.) -- C:\Windows\System32\packager.dll [81408] O44 - LFC:[MD5.9F87516BF76C40B41D831F7D729A6044] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [482872] O44 - LFC:[MD5.8085F95BB18A171E7221D2831BC08BC2] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [394120] O44 - LFC:[MD5.7F70B1044272982AAEA7C16E83424770] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [226304] O44 - LFC:[MD5.DFDFDE2EA4B5CD0606BA6E56ECEE502D] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [272248] O44 - LFC:[MD5.BB93DAAAE9006598935192B9CB65E475] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [108432] O44 - LFC:[MD5.C0484CA5C7F87E38909746B63C7FC868] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [911360] O44 - LFC:[MD5.9C88C9397B44B76E5C9A44B8E2CE53A1] - 13/11/2014 - 04:48:30 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [500016] O44 - LFC:[MD5.93645AEBE163230A2ED5050C14AE6603] - 13/11/2014 - 04:48:33 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [2149376] O44 - LFC:[MD5.9A108C0A3092110F4651B3AFB9CC7B3D] - 13/11/2014 - 04:48:36 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\oleaut32.dll [789184] O44 - LFC:[MD5.5CD98806151EE8633505CEF3A5AEF4E1] - 13/11/2014 - 04:56:02 ---A- . (...) -- C:\Windows\System32\nvcoproc.bin [3426956] O44 - LFC:[MD5.D348FF384C1540104DF510559C236738] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [6669600] O44 - LFC:[MD5.FF1DD7D1A5FB7A1D9A00F88203FCECCD] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [63776] O44 - LFC:[MD5.9358512875EF78AC11D27EF00A5E59A1] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) -- C:\Windows\System32\nvsvc64.dll [3489568] O44 - LFC:[MD5.6511C8C20922796753F1C41F3F6A3A88] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) -- C:\Windows\System32\nvsvcr.dll [2559776] O44 - LFC:[MD5.415695F5A54E91E869EEBFEA261361A6] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) -- C:\Windows\System32\nvvsvc.exe [922912] O44 - LFC:[MD5.B9ACFCB1A564E07258E961A14A35763E] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\System32\nv3dappshextr.dll [67072] O44 - LFC:[MD5.D941AC33FF6C91357CC0DB49821F203F] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [219424] O44 - LFC:[MD5.E8ED3E3F7C9CD244CD704A5E036AC412] - 13/11/2014 - 04:56:02 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\nv3dappshext.dll [1064224] O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 13/11/2014 - 04:56:53 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [64000] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/11/2014 - 04:56:59 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf [0] O44 - LFC:[MD5.8BAAEB485A25179E4A1E0A74924A501D] - 13/11/2014 - 04:57:28 ---A- . (...) -- C:\Windows\System32\Drivers\RTWAVES30.dat [81908] O44 - LFC:[MD5.C91E48AD165EF45BE761DD47FB121D0E] - 13/11/2014 - 05:12:54 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [337928] O44 - LFC:[MD5.114D7BA3A1880A29F993F78ABD271028] - 13/11/2014 - 05:21:34 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1734474] O44 - LFC:[MD5.CBB868F5AC593737F5CD11B0A7202D2E] - 13/11/2014 - 05:21:34 ---A- . (...) -- C:\Windows\System32\perfc009.dat [127812] O44 - LFC:[MD5.308BB583A972A78157F12269CA6936A1] - 13/11/2014 - 05:21:34 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [151632] O44 - LFC:[MD5.3519E05BE1255376599F2BB42AC77027] - 13/11/2014 - 05:21:34 ---A- . (...) -- C:\Windows\System32\perfh009.dat [687180] O44 - LFC:[MD5.AAFDA0C5BB64B5A7DC7445510A501661] - 13/11/2014 - 05:21:34 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [775930] O44 - LFC:[MD5.5C735E2B290D561301060A1D3E91B069] - 13/11/2014 - 05:21:53 ---A- . (...) -- C:\Windows\System32\emptyregdb.dat [23108] O44 - LFC:[MD5.02F6222BB4739BEE9AC27EC5DE273F89] - 13/11/2014 - 05:22:12 ---A- . (...) -- C:\Windows\diagerr.xml [38103] O44 - LFC:[MD5.02F6222BB4739BEE9AC27EC5DE273F89] - 13/11/2014 - 05:22:13 ---A- . (...) -- C:\Windows\diagwrn.xml [38103] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/11/2014 - 18:13:06 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.8582DAACD112699A5FC20BD2002F7AE9] - 15/11/2014 - 20:27:42 ---A- . (...) -- C:\Windows\PFRO.log [7884] O44 - LFC:[MD5.5505B716B2F31EB9E0E5F68F5D8571A6] - 15/11/2014 - 21:54:55 ---A- . (...) -- C:\Windows\JQHApp.dat [58] O44 - LFC:[MD5.2A0C8D6B4DDD1F47C67CD21B7FA13143] - 16/11/2014 - 01:21:44 ---A- . (...) -- C:\Windows\setupact.log [665] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/11/2014 - 01:21:44 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf [0] O44 - LFC:[MD5.8A84981D17452553E323135F4A99BC71] - 16/11/2014 - 09:17:15 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.1FD43A4DA466D96E75D680A570408AC7] - 16/11/2014 - 09:20:25 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1199188] ~ Files: 260 Scanned in 00mn 13s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 17 Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 ~ MWPS: 19 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 ~ MWPE Keys: 3 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896] O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176] O58 - SDL:18/09/2012 - 13:51:54 ---A- . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\Windows\System32\Drivers\AiCharger.sys [17152] O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200] O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424] O58 - SDL:22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952] O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016] O58 - SDL:09/10/2013 - 09:52:16 ---A- . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\Drivers\AsHIDSwitch64.sys [20280] O58 - SDL:23/09/2013 - 13:30:02 ---A- . (.ASUS Corporation - Asus TP Filter Driver(X64).) -- C:\Windows\System32\Drivers\AsusTP.sys [70416] O58 - SDL:13/03/2014 - 21:59:02 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athw8x.sys [3973120] O58 - SDL:13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O58 - SDL:22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024] O58 - SDL:12/11/2014 - 14:25:07 ---A- . (.Glarysoft Ltd - The driver for the Startup Manager tool.) -- C:\Windows\System32\Drivers\GUBootStartup.sys [20160] O58 - SDL:02/07/2012 - 16:16:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352] O58 - SDL:30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568] O58 - SDL:25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320] O58 - SDL:14/09/2012 - 06:15:10 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [647736] O58 - SDL:10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000] O58 - SDL:01/10/2013 - 13:02:30 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4177920] O58 - SDL:26/04/2013 - 03:23:22 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [342528] O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\intelaud.sys [39320] O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\iwdbus.sys [26008] O58 - SDL:02/08/2012 - 04:22:48 ---A- . (.Pas de propriétaire - Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\kbfiltr.sys [14992] O58 - SDL:22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536] O58 - SDL:22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672] O58 - SDL:22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840] O58 - SDL:22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840] O58 - SDL:10/12/2013 - 08:13:12 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 331.65.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12572960] O58 - SDL:10/12/2013 - 08:13:16 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 331.65.) -- C:\Windows\System32\Drivers\nvpciflt.sys [32544] O58 - SDL:22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368] O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288] O58 - SDL:29/11/2013 - 03:32:14 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x64.sys [838872] O58 - SDL:09/07/2013 - 14:26:14 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3485656] O58 - SDL:07/01/2014 - 07:10:00 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsBaStor.sys [313048] O58 - SDL:03/01/2014 - 09:08:00 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsP2Stor.sys [291544] O58 - SDL:03/01/2014 - 09:34:28 ---A- . (.Realsil Semiconductor Corporation - RTS PCIE READER Driver.) -- C:\Windows\System32\Drivers\RtsPer.sys [465624] O58 - SDL:07/01/2014 - 07:24:34 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsPStor.sys [359128] O58 - SDL:03/01/2014 - 06:33:52 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsUStor.sys [271064] O58 - SDL:03/01/2014 - 04:14:10 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsUVStor.sys [331992] O58 - SDL:22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896] O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760] O58 - SDL:22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072] O58 - SDL:24/06/2014 - 16:08:20 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [125952] O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808] O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800] O58 - SDL:22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504] O58 - SDL:13/03/2014 - 21:59:02 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athw8x.sys [3973120] O58 - SDL:05/06/2014 - 20:23:56 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\athwbx.sys [3901952] ~ Drivers: 55 Scanned in 00mn 09s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 09/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Temp\Quarantine.exe [601088] O61 - LFC: 12/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Apps\2.0\DDVXYBVW.3LW\PGR5PD2O.4ZQ\prog...app_4fe91ede9f9bdca3_0001.0003_9125133394ccc181\clickonce_bootstrap.exe [10120] O61 - LFC: 12/11/2014 - 09:23:54 ---A- . (.Google Inc..) -- C:\Users\RonanNegro\AppData\Local\Apps\2.0\DDVXYBVW.3LW\PGR5PD2O.4ZQ\clic...exe_4fe91ede9f9bdca3_0001.0003_none_b1328e123920ace1\GoogleUpdateSetup.exe [880784] O61 - LFC: 12/11/2014 - 09:23:54 ---A- . (.Google Inc..) -- C:\Users\RonanNegro\AppData\Local\Apps\2.0\DDVXYBVW.3LW\PGR5PD2O.4ZQ\prog...app_4fe91ede9f9bdca3_0001.0003_9125133394ccc181\GoogleUpdateSetup.exe [880784] O61 - LFC: 12/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Temp\~nsu.tmp\Au_.exe [173847] O61 - LFC: 13/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Google\Chrome\User Data\EVWhitelist\2\_platform_specific\all\ev_hashes_whitelist.bin [938368] O61 - LFC: 13/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [410914] O61 - LFC: 13/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Microsoft\Windows\appsFolderLayout.bin [737] O61 - LFC: 13/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4100559] O61 - LFC: 14/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin [269992] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Microsoft\Internet Explorer\UrlBlockManager\urlblocklist.bin [0] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\Media Pool Thumbnails\media_thumbnail_cache.bin [152] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-26e6adcf.bin [108882] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-40300984.bin [101696] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-7bc2069c.bin [136393] O61 - LFC: 15/11/2014 - 09:23:54 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-80dd559c.bin [6457] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-aa490cb6.bin [77150] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-dc7ab1ce.bin [33504] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-fbf764ad.bin [249702] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\OCL 404da645-ff30775e.bin [19230] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Sony\Vegas Pro\13.0\svfx_plugin_cache.bin [28584] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\Downloads\MKLOL2.0.0.25.exe [19311304] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\Downloads\adwcleaner_4.101.exe [2140160] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (.Malwarebytes Corporation.) -- C:\Users\RonanNegro\Downloads\mbam-setup-2.0.3.1025.exe [19828376] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (.NVIDIA Corporation.) -- C:\Users\RonanNegro\Downloads\344.65-notebook-win8-win7-64bit-international-whql.exe [308112344] O61 - LFC: 15/11/2014 - 09:23:55 ---A- . (.Nicolas Coolman.) -- C:\Users\RonanNegro\Downloads\ZHPDiag2.exe [6864822] =>.Nicolas Coolman O61 - LFC: 16/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\AppData\Local\Temp\utt76A0.tmp.bat [53] O61 - LFC: 16/11/2014 - 09:23:55 ---A- . (...) -- C:\Users\RonanNegro\Downloads\cracksfinder_0.3.exe [1015296] ~ 141 Fichiers temporaires (Temporary files) ~ 1 Fichiers cookies (Cookies files) ~ Files: 28 Scanned in 00mn 01s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} - (Google) - http://www.google.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [208896] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [155136] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [324096] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1261056] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1063424] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [907776] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [150528] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [107008] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1214976] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [220672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [70656] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134144] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [220160] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [324096] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [81408] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [97792] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [339456] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [491520] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1576960] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [50688] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [201728] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [164352] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [101376] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [534528] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [223744] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [71680] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [433664] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [306688] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3557376] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1017856] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [629760] ~ Services: 34 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.4A93070098539B54FDA391D4D551C880] [SPRF][22/07/2009] (...) -- C:\ProgramData\SetStretch.exe [24576] ~ Files: 1 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} ~ MNS: 6 Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 15/01/2013 107320 | (ASLDRService) . (.ASUSTek Computer Inc..) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe SS - | Disabled 21/11/2011 96896 | (ATKGFNEXSrv) . (.ASUS.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe SS - | Disabled 01/10/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe SS - | Disabled 12/11/2014 107912 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Disabled 12/11/2014 107912 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Disabled 24/04/2012 169752 | (ICCS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe SS - | Disabled 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe SS - | Disabled 24/06/2014 154584 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe SS - | Disabled 24/06/2014 405976 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SS - | Disabled 23/10/2013 922912 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe SS - | Disabled 10/12/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SS - | Disabled 03/04/2014 315008 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe SR - | Demand 22/08/2013 37768 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 08s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by RonanNegro at 16/11/2014 09:25:30 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by RonanNegro at 16/11/2014 09:25:32 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13026 - (13/11/2014) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 1 Fichiers trouvés (Files found) : 0 C:\Users\RonanNegro\AppData\Roaming\uTorrent =>P2P.µTorrent^ ~ Additionnel Scan: 180657 Items scanned in 00mn 14s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ AMI: 3 Scanned in 00mn 00s End of the scan (1209 lines in 02mn 35s)(0)