~ Rapport de ZHPDiag v2015.3.19.31 - Nicolas Coolman (19/03/2015) ~ Lancé par Australien (19/03/2015 13:44:50) ~ Facebook : https://www.facebook.com/nicolascoolman1 ~ Adresse du Forum http://forum.nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.10011.0 MFIE: Mozilla Firefox 36.0.1 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows Server License Manager Script : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : HQRJR Windows License : OK ~ Windows Remaining Initializations Number : 1001 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK Windows 10 Pro Technical Preview, 64-bit (Build 10041) ---\\ Logiciels de protection du système ---\\ Logiciels d'optimisation du système ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 17 NPAPI ---\\ Informations sur le système ~ Processor: AMD64 Family 16 Model 2 Stepping 2, AuthenticAMD ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 7038 MB (80% free) System Restore: Activé (Enable) System drive C: has 85 GB (85%) free of 100 GB ---\\ Mode de connexion au système ~ Computer Name: MAISON ~ User Name: Australien ~ All Users Names: UpdatusUser, DefaultAccount, Australien, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Australien\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Australien\AppData\Roaming\ ~ %Desktop% : C:\Users\Australien\Desktop\ ~ %Favorites% : C:\Users\Australien\Favorites\ ~ %LocalAppData% : C:\Users\Australien\AppData\Local\ ~ %StartMenu% : C:\Users\Australien\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 85 Go of 100 Go) D: Hard drive, Flash drive, Thumb drive (Free 771 Go of 832 Go) E: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified ~ Security Center: 40 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.4D95ADB1950BCEB7DE2E4192DB407CD4] - (.Microsoft Corporation - Explorateur Windows.) (.14/03/2015 - 09:53:14.) -- C:\Windows\Explorer.exe [3476000] [MD5.3C209C0CC248AEE7EA6F2963A0660913] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/03/2015 - 09:52:19.) -- C:\Windows\System32\Wininit.exe [226744] [MD5.B054BF340E009234E756EED14695654C] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.14/03/2015 - 09:52:31.) -- C:\Windows\System32\wininet.dll [2675200] [MD5.C8910938F6ED1F60EDAC08031EFCF9F3] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.14/03/2015 - 09:52:13.) -- C:\Windows\System32\Winlogon.exe [560128] [MD5.7FECE57599240C7A34140B1C11A1D8E2] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/03/2015 - 09:52:11.) -- C:\Windows\System32\sppcomapi.dll [429056] [MD5.99BCB8741C0F18F8BC48A2ABEE3C241E] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.14/03/2015 - 09:52:48.) -- C:\Windows\system32\Drivers\AFD.sys [570640] [MD5.4F5C2A53184762B599E3EA08A4D30F48] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/03/2015 - 09:49:20.) -- C:\Windows\system32\Drivers\atapi.sys [23824] [MD5.9402E57389078241050BFC8CE38A3996] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/03/2015 - 09:53:05.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.4335285754022FD02E6E86FCB28C5D11] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/03/2015 - 09:49:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [173056] [MD5.933806A76437C04121B72C4F8285D412] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/03/2015 - 09:51:39.) -- C:\Windows\system32\Drivers\DfsC.sys [140288] [MD5.D3AC574747C46839C9FA55E2CB6AD0C2] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/03/2015 - 09:49:01.) -- C:\Windows\system32\Drivers\HDAudBus.sys [80384] [MD5.255B0611FD19E403D8F35E5E9A1718B6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/03/2015 - 09:49:18.) -- C:\Windows\system32\Drivers\i8042prt.sys [103936] [MD5.63E57ACCEC4F6FE5FB108B76DA89845F] - (.Microsoft Corporation - IP Network Address Translator.) (.14/03/2015 - 09:51:03.) -- C:\Windows\system32\Drivers\IpNat.sys [142848] [MD5.DC3BF70DB0BDD1BE5D6158BAEC2748AE] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.14/03/2015 - 09:51:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [423424] [MD5.144A1210ED28CC092556D071B1803DB2] - (.Microsoft Corporation - MBT Transport driver.) (.14/03/2015 - 09:53:01.) -- C:\Windows\system32\Drivers\netBT.sys [274944] [MD5.26001C0BABEE70D9EC00DB6A02E29189] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.14/03/2015 - 09:52:48.) -- C:\Windows\system32\Drivers\ntfs.sys [2084112] [MD5.5CA0BA72C8BD6F2940910205F4D28898] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/03/2015 - 09:49:20.) -- C:\Windows\system32\Drivers\Parport.sys [96256] [MD5.126F69FCF95AEF4F2312D6D91F612486] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/03/2015 - 09:50:50.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [109568] [MD5.5DC1B65DD47140F50DCDF30D0547C27C] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.14/03/2015 - 18:17:48.) -- C:\Windows\system32\Drivers\rdpdr.sys [172032] [MD5.2B3FA518109D493FFC586225139910EB] - (.Microsoft Corporation - TDI Translation Driver.) (.14/03/2015 - 09:52:49.) -- C:\Windows\system32\Drivers\tdx.sys [111888] [MD5.FDD254471A111C9C7D7B47F0BC155CE9] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/03/2015 - 09:49:22.) -- C:\Windows\system32\Drivers\volsnap.sys [373520] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes Videos (My Videos) : 1/2 ~ Mes Favoris (My Favorites) : 1/6 ~ Mes Documents (My Documents) : 1/2 ~ Mon Bureau (My Desktop) : 1/3 ~ Menu demarrer (Programs) : 1/64 ~ Hidden Files: Scanned in 00mn 00s ---\\ Processus lancés [MD5.6577E0208F612DAF5DE5AD4081BE7696] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8187904] [PID.316] ~ Processes Running: Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M2 - MFEP: Extension [Australien - oz0mv169.default] {2b10c1c8-a11f-4bad-fe9c-1c11e82cac42}.xpi ~ Firefox Browser: 2 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hôte est sain (The hosts file is clean) (21) ~ Hosts File: Scanned in 00mn 00s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [WindowsDefender] C:\Program Files (x86)\Windows Defender\MSASCui.exe (.not file.) O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Australien\AppData\Local\Microsoft\OneDrive\OneDrive.exe O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe O4 - HKUS\S-1-5-21-2136200041-4095354220-1174559961-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Australien\AppData\Local\Microsoft\OneDrive\OneDrive.exe ~ Application: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{383E4D41-5D3C-4D98-A0C2-9FD17B68B7AD}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS1\Services\Tcpip\..\{383E4D41-5D3C-4D98-A0C2-9FD17B68B7AD}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002] ~ Scheduled Task: 4 Legitimates Filtered in 00mn 05s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 14/03/2015 - 09:58:49 - [0] ----D C:\ProgramData\Comms O43 - CFD: 19/03/2015 - 11:17:27 - [] ----D C:\ProgramData\USOPrivate O43 - CFD: 14/03/2015 - 18:18:10 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC ~ Program Folder: 70 Legitimates Filtered in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.25349D0B334E528667980948ED107D89] - 14/03/2015 - 09:49:18 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O44 - LFC:[MD5.AF4B9568C5E52FD6BF9D8675315AD0B4] - 14/03/2015 - 09:49:20 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [57104] O44 - LFC:[MD5.13FA5461BD9AA1CACEA35E6A9F0646E4] - 14/03/2015 - 09:49:20 ---A- . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\Drivers\ibbus.sys [420624] O44 - LFC:[MD5.3E17173A40C1100CF6CDDF1DED0C514F] - 14/03/2015 - 09:49:20 ---A- . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\Drivers\winmad.sys [22800] O44 - LFC:[MD5.47815D1D0899DA1A183C512617B96A89] - 14/03/2015 - 09:49:20 ---A- . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\Drivers\winverbs.sys [55568] O44 - LFC:[MD5.E1141956A9D93C7DFD29446201089FD1] - 14/03/2015 - 09:49:20 ---A- . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\Drivers\mlx4_bus.sys [701200] O44 - LFC:[MD5.D050CFF6059FD64CBDAA843F88A4B464] - 14/03/2015 - 09:49:20 ---A- . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\Drivers\ndfltr.sys [71952] O44 - LFC:[MD5.FE2A710625B6D19A4BD26B44ABF05C71] - 14/03/2015 - 09:49:21 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas3i.sys [54544] O44 - LFC:[MD5.E370E3AA539392E8F1FE6FD02E9A27F8] - 14/03/2015 - 09:49:21 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\Windows\System32\Drivers\stexstor.sys [26896] O44 - LFC:[MD5.9B0024D8695D5D95E0C6F6547F7D5E32] - 14/03/2015 - 09:50:19 ---A- . (...) -- C:\Windows\System32\Drivers\Udecx.sys [43008] O44 - LFC:[MD5.31222548BBB007C2ABF6F30A902CC1AD] - 14/03/2015 - 09:50:22 ---A- . (...) -- C:\Windows\System32\facecredentialprovider.dll [247296] O44 - LFC:[MD5.1277315EB07F7FA0DF2DE21AD1C79540] - 14/03/2015 - 09:50:28 ---A- . (...) -- C:\Windows\System32\diagtrack_wininternal.dll [348672] O44 - LFC:[MD5.CD48AD912839B9FB6CCA5D4AA9B37500] - 14/03/2015 - 09:50:40 ---A- . (...) -- C:\Windows\System32\NetTrace.PLA.Diagnostics.xml [21812] O44 - LFC:[MD5.62A897C01EC4D380B2875BA0A68FAEB5] - 14/03/2015 - 09:50:40 ---A- . (...) -- C:\Windows\System32\gatherNetworkInfo.vbs [75650] O44 - LFC:[MD5.3A77C18665A4C8428768CE186A5BC1EF] - 14/03/2015 - 09:50:41 ---A- . (...) -- C:\Windows\System32\rasctrnm.h [1820] O44 - LFC:[MD5.9ED84D86676B79DFC7A9DD1B537E1883] - 14/03/2015 - 09:50:43 ---A- . (...) -- C:\Windows\System32\WF.msc [115091] O44 - LFC:[MD5.86166DAA04A6C154826508304CC6D4AC] - 14/03/2015 - 09:50:47 ---A- . (...) -- C:\Windows\System32\NdfEventView.xml [565] O44 - LFC:[MD5.4AF1C2454011904E4F7DD50169207E7C] - 14/03/2015 - 09:50:47 ---A- . (.Pas de propriétaire - Gestionnaire de contexte pour réseau person.) -- C:\Windows\System32\BthpanContextHandler.dll [93696] O44 - LFC:[MD5.23AF90D2355D8C83AA4567EF1763B467] - 14/03/2015 - 09:50:48 ---A- . (...) -- C:\Windows\mib.bin [43131] O44 - LFC:[MD5.93E7FA131B9AF0AF62D112AB19D31264] - 14/03/2015 - 09:50:54 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [387268] O44 - LFC:[MD5.684DDBD6ED4066B10660A3A06655B59A] - 14/03/2015 - 09:50:58 ---A- . (...) -- C:\Windows\System32\xwizard.dtd [4014] O44 - LFC:[MD5.007893E8374C766471239EB291BA8C17] - 14/03/2015 - 09:51:06 ---A- . (...) -- C:\Windows\System32\psmodulediscoveryprovider.mof [4148] O44 - LFC:[MD5.E0ADDCE97EE521C9AC4F53EE17A05BD5] - 14/03/2015 - 09:51:07 ---A- . (...) -- C:\Windows\System32\WmiMgmt.msc [144673] O44 - LFC:[MD5.F04C119C159670C9271623454BEC3254] - 14/03/2015 - 09:51:07 ---A- . (...) -- C:\Windows\System32\compmgmt.msc [113256] O44 - LFC:[MD5.DCCA682FEA47192106EC4F2001EAE182] - 14/03/2015 - 09:51:13 ---A- . (...) -- C:\Windows\System32\certlm.msc [63081] O44 - LFC:[MD5.4C7390A1FF613FBBF59141CA0BE8AE89] - 14/03/2015 - 09:51:13 ---A- . (...) -- C:\Windows\System32\certmgr.msc [63070] O44 - LFC:[MD5.33C138E3A498083EF8792EAC3FD707BA] - 14/03/2015 - 09:51:13 ---A- . (...) -- C:\Windows\System32\winrm.cmd [35] O44 - LFC:[MD5.9D7684F978EBD77E6A3EA7EF1330B946] - 14/03/2015 - 09:51:13 ---A- . (...) -- C:\Windows\System32\winrm.vbs [204105] O44 - LFC:[MD5.930423065AB3F5DB52D5726C7FC66385] - 14/03/2015 - 09:51:13 ---A- . (...) -- C:\Windows\System32\wsmanconfig_schema.xml [4675] O44 - LFC:[MD5.D6CBFA113B69C491DE370E85EBAC80E9] - 14/03/2015 - 09:51:14 ---A- . (...) -- C:\Windows\System32\WsmPty.xsl [1559] O44 - LFC:[MD5.B2EDF82825D979928AE07CBE9C7A2160] - 14/03/2015 - 09:51:14 ---A- . (...) -- C:\Windows\System32\WsmTxt.xsl [2426] O44 - LFC:[MD5.A8308D2F3DDE0745E8B678BF69A2ECD0] - 14/03/2015 - 09:51:14 ---A- . (...) -- C:\Windows\System32\settings.dat [8192] O44 - LFC:[MD5.0A97F021A1657C503C645F1FB40A619B] - 14/03/2015 - 09:51:16 ---A- . (...) -- C:\Windows\System32\AppxProvisioning.xml [914] O44 - LFC:[MD5.93E76CF7B04EC33A1E9E0FD7546D3603] - 14/03/2015 - 09:51:16 ---A- . (...) -- C:\Windows\System32\EventViewer_EventDetails.xsl [17935] O44 - LFC:[MD5.C5B3E109B3B88B0CC420304EA7BF6B70] - 14/03/2015 - 09:51:16 ---A- . (...) -- C:\Windows\System32\azman.msc [41587] O44 - LFC:[MD5.9BDCCC1A87CCA27ADEACE8144F385165] - 14/03/2015 - 09:51:16 ---A- . (...) -- C:\Windows\System32\eventvwr.msc [145127] O44 - LFC:[MD5.AB2A58839814D2EA5EE621B5DBF944FF] - 14/03/2015 - 09:51:16 ---A- . (...) -- C:\Windows\System32\taskschd.msc [145059] O44 - LFC:[MD5.97AED7FC6C2B38F34CA1A3C10D2F5A60] - 14/03/2015 - 09:51:21 ---A- . (...) -- C:\Windows\System32\fsmgmt.msc [144909] O44 - LFC:[MD5.2D8D95469EC26AAA986AAD1CE424E631] - 14/03/2015 - 09:51:21 ---A- . (...) -- C:\Windows\System32\services.msc [92746] O44 - LFC:[MD5.7DD7A13D2CD16D64F3F3E0F57F5F14CD] - 14/03/2015 - 09:51:23 ---A- . (...) -- C:\Windows\System32\DiskSnapshot.conf [111609] O44 - LFC:[MD5.22D9945B4AAE36DD59620A918F2E65F4] - 14/03/2015 - 09:51:24 ---A- . (...) -- C:\Windows\System32\boot.sdi [3170304] O44 - LFC:[MD5.3972B8D1A036CD4389655E3414C9570F] - 14/03/2015 - 09:51:24 ---A- . (...) -- C:\Windows\System32\diskmgmt.msc [47679] O44 - LFC:[MD5.AE7A0ECEFBE2758816D9D1E2DFBAA842] - 14/03/2015 - 09:51:28 ---A- . (...) -- C:\Windows\System32\srms.dat [54890] O44 - LFC:[MD5.0D143112394173967A3647096F74E743] - 14/03/2015 - 09:51:29 ---A- . (...) -- C:\Windows\System32\C_037.NLS [66082] O44 - LFC:[MD5.90F5232D99D17AA1BBA3CE2228CF1B2A] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_500.NLS [66082] O44 - LFC:[MD5.77F127766D758EB2C6451E221A0C7F7D] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_708.NLS [66082] O44 - LFC:[MD5.C050215D8D21DF5658E94187973FB89C] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_720.NLS [66594] O44 - LFC:[MD5.BAC7072B365F9648CA318154BA7E03EC] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_737.NLS [66594] O44 - LFC:[MD5.0E61D6CD6391CE9BF007BAF0DC905320] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_775.NLS [66594] O44 - LFC:[MD5.CAAF621DC0936CCAC5106EA62F350E80] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_850.NLS [66594] O44 - LFC:[MD5.21E928C8E6ED8EEAB0D1AAEE82ACDD76] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_852.NLS [66594] O44 - LFC:[MD5.3E969213F35127D83DAB48FF1283E8E4] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_855.NLS [66594] O44 - LFC:[MD5.A8764750B22B528D85A691A52CB21856] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_857.NLS [66594] O44 - LFC:[MD5.42518F84AA761C84B4F5F366C6E424F1] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_858.NLS [66594] O44 - LFC:[MD5.B124A84735113A699F0413F1D6875975] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_860.NLS [66594] O44 - LFC:[MD5.DDE3D4D8C117B5A67F7898DA547F0E4E] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_861.NLS [66594] O44 - LFC:[MD5.A99203A3397A9DB352C5D8DFBDA230A8] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_862.NLS [66594] O44 - LFC:[MD5.0220888BDD435156DE91C5D390FE0166] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_863.NLS [66594] O44 - LFC:[MD5.C58563DF50115E935BC811FFBCE1FC89] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_864.NLS [66594] O44 - LFC:[MD5.4091021638E2591CFAED8E1CF9D54E1F] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_865.NLS [66594] O44 - LFC:[MD5.5CD475CA7B87844DE1E0483B536F9AAE] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_866.NLS [66594] O44 - LFC:[MD5.780C444EB16B65E6DE96F794A732DA12] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_869.NLS [66594] O44 - LFC:[MD5.48841546AC3B8698C93991E99851F0CF] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_870.NLS [66082] O44 - LFC:[MD5.7A0EE54F89FFE0F038660BA580FB4440] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_874.NLS [66594] O44 - LFC:[MD5.8BE0D77A873730B4EB1DAB7C6622CD46] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_875.NLS [66082] O44 - LFC:[MD5.DFFAFA40198800BA2933977F67B956C2] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_932.NLS [162850] O44 - LFC:[MD5.17028718996FCBCEEE59F38F2D944281] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_936.NLS [196642] O44 - LFC:[MD5.D2558C26CDBF05740348451DB6A5B955] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_949.NLS [196642] O44 - LFC:[MD5.8557D3EDA30586685DAD701ABA69D0DD] - 14/03/2015 - 09:51:31 ---A- . (...) -- C:\Windows\System32\C_950.NLS [196642] O44 - LFC:[MD5.CCEAEFAA4DF2F399E9A179D942FEB23C] - 14/03/2015 - 09:51:32 ---A- . (...) -- C:\Windows\System32\chs_singlechar_pinyin.dat [167640] O44 - LFC:[MD5.6EDD021A8B6457DDE09DE7B7FA4E8C8B] - 14/03/2015 - 09:51:35 ---A- . (...) -- C:\Windows\System32\WdsUnattendTemplate.xml [614] O44 - LFC:[MD5.A716B23BA6632B7F0DABB5B8AC078F27] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10000.NLS [66082] O44 - LFC:[MD5.157A2706E78D7B581642F6F787EC37E5] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10001.NLS [162850] O44 - LFC:[MD5.05C0B7F8FA403E6DA75671685A58A940] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10002.NLS [195618] O44 - LFC:[MD5.1855E6398A2E937E47809FD8B83647E4] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10003.NLS [177698] O44 - LFC:[MD5.1DBBCC1B712C2674BDF29A05A5DD366E] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10004.NLS [66082] O44 - LFC:[MD5.72233F1A1D788A84D4687A258CC97CBF] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10005.NLS [66082] O44 - LFC:[MD5.0A206B5CACD3CA70D2044DA691304765] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10006.NLS [66082] O44 - LFC:[MD5.AF4A866226BD04ACF06135088D75BB63] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10007.NLS [66082] O44 - LFC:[MD5.6F8A509550FE8C92D07EE0143BF29BA1] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10010.NLS [66082] O44 - LFC:[MD5.314E85390BEBDAE5D1E11DB2D8CBC6E9] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10017.NLS [66082] O44 - LFC:[MD5.F3C139AD492C4F73353057442E6995CE] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10021.NLS [66082] O44 - LFC:[MD5.D2CA471D36A69D17F82D5C1B64FAEE39] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10029.NLS [66082] O44 - LFC:[MD5.29B5AF5B12D955C316821F277C5B4D7D] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10079.NLS [66082] O44 - LFC:[MD5.EFFDFF60A38CF648811BBCDD722ECF5E] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10081.NLS [66082] O44 - LFC:[MD5.9CA501D2A8E6909C5B2E8C9274682BF1] - 14/03/2015 - 09:51:37 ---A- . (...) -- C:\Windows\System32\C_10082.NLS [66082] O44 - LFC:[MD5.23C1E8F026FB81824388E8EC457CF75E] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_10008.NLS [173602] O44 - LFC:[MD5.7D07126E0ED768C04B245A43AF2F94ED] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20261.NLS [139810] O44 - LFC:[MD5.947813F75A56A20EF65DC9E479EBEA4D] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20273.NLS [66082] O44 - LFC:[MD5.947B06BC793BFF9A4808C8CF57B0E273] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20277.NLS [66082] O44 - LFC:[MD5.AF4F8AEC071515D6FC6E8203A0DBF655] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20278.NLS [66082] O44 - LFC:[MD5.2AB1DF9DFBD49E343AF5D5FA7D17024E] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20280.NLS [66082] O44 - LFC:[MD5.E37E1766C1D7C21C5EFAD0F20D923039] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20284.NLS [66082] O44 - LFC:[MD5.BCD8AC4CE06E227A2FBA81862B5F0D42] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20285.NLS [66082] O44 - LFC:[MD5.B2B3B6A63D9A1837673A2B2C44455A20] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20290.NLS [66082] O44 - LFC:[MD5.C3581190325F812CB7F5F928E722F132] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20297.NLS [66082] O44 - LFC:[MD5.61FBE3736279973CBA71EE0CDEAAAA6C] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20871.NLS [66082] O44 - LFC:[MD5.8464E9CAB0DA3F209320D782631DD5A2] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_20880.NLS [66082] O44 - LFC:[MD5.41034D46626ECC2CC635FD884E878D6D] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_21866.NLS [66082] O44 - LFC:[MD5.E45ECA3F540E09C039710EF00219A61B] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28591.NLS [66082] O44 - LFC:[MD5.0F8F998263E4C090C9C9B31D84C41654] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28592.NLS [66082] O44 - LFC:[MD5.082453B28A3F457FFF330DBDDB32FF45] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28593.NLS [66082] O44 - LFC:[MD5.5D038EEABA8EA438F6B5ABD5E91BC851] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28594.NLS [66082] O44 - LFC:[MD5.E22D1B9AC7854C0A654E4C4232074E49] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28595.NLS [66082] O44 - LFC:[MD5.4D4C7CED88E5621F21A4911A44CADACC] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28596.NLS [66082] O44 - LFC:[MD5.B537ACFAB9E70F0EF48DB696A08ADC81] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28597.NLS [66082] O44 - LFC:[MD5.BDD5D78F5DB2204A9247C53861357FAF] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28598.NLS [66082] O44 - LFC:[MD5.C37A21EE1ADFDC13FC707D97073148ED] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\C_28599.NLS [66082] O44 - LFC:[MD5.1337FA3B3B885556F22C8FF2D8CB4628] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\normidna.nls [72286] O44 - LFC:[MD5.9814F3AA6D4992B2C063D01B1D45E526] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\normnfc.nls [50112] O44 - LFC:[MD5.2288FE4F6518F8A836E1FE31E808C401] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\normnfd.nls [43566] O44 - LFC:[MD5.BBD02FA36D24E43EF5FF51266D1B71A4] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\normnfkc.nls [71824] O44 - LFC:[MD5.A492147939DE74E189BB270144CDA7FB] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\normnfkd.nls [65698] O44 - LFC:[MD5.9359341F78E00134B527814B4868ECD5] - 14/03/2015 - 09:51:38 ---A- . (...) -- C:\Windows\System32\tpm.msc [144862] O44 - LFC:[MD5.BA660D994876755C9E90871B919BB5EC] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20269.NLS [66082] O44 - LFC:[MD5.4FEA99284FA34D8E69C8D865D9426D2B] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20420.NLS [66082] O44 - LFC:[MD5.E3AAE11859C598FB936017816567FD96] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20423.NLS [66082] O44 - LFC:[MD5.3A0FA5F25C5FF909766347627B446511] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20424.NLS [66082] O44 - LFC:[MD5.E27DCCEEFABD04FC7D81BE65B233C653] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20833.NLS [66082] O44 - LFC:[MD5.A124CAA7470CCF0354A57AB30808293F] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20838.NLS [66082] O44 - LFC:[MD5.DD7F9900C070890C59417B5271581ED3] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20866.NLS [66082] O44 - LFC:[MD5.E4642396D2098F65C7E88C0AC1EE7379] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20924.NLS [66082] O44 - LFC:[MD5.3FEF4EEFC8827A03B19124575B17205E] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20932.NLS [180770] O44 - LFC:[MD5.32919D0DA9A834E8197203C4858ABCF6] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20936.NLS [173602] O44 - LFC:[MD5.232094E602642181A5A508975665D11B] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_20949.NLS [177698] O44 - LFC:[MD5.85D74656F26B33F21B5129252B1578D0] - 14/03/2015 - 09:51:39 ---A- . (...) -- C:\Windows\System32\C_21025.NLS [66082] O44 - LFC:[MD5.AAB0740BCBDCE107E0BABEE466905EB4] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20000.NLS [180258] O44 - LFC:[MD5.48699E0B2F0B56E132D8200BA23E7176] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20001.NLS [186402] O44 - LFC:[MD5.A5D79E78E4412AC3C79DED42CD95C3EA] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20002.NLS [173602] O44 - LFC:[MD5.971E382CB790C07536F380C172848C92] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20003.NLS [185378] O44 - LFC:[MD5.A47DBDBAEA690F4713185EBB5790BBFF] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20004.NLS [180258] O44 - LFC:[MD5.9C78D8BC06315FE97936167F5063F924] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20005.NLS [187938] O44 - LFC:[MD5.1F55C295A71290992C95CF1F41CDB0E4] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20105.NLS [66082] O44 - LFC:[MD5.00E11B5E8C252190DEC893FD84D3B06D] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20106.NLS [66082] O44 - LFC:[MD5.EB7AD61171B280F1CA90CF3AC0F43717] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20107.NLS [66082] O44 - LFC:[MD5.C8FBDF3805D2F229DE3CA2EF5A248CCC] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20108.NLS [66082] O44 - LFC:[MD5.6CB26848BCDAA361B6EE21264FB362C3] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20127.NLS [66082] O44 - LFC:[MD5.1ADCE2879B486ACB126750EF18B2E658] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_20905.NLS [66082] O44 - LFC:[MD5.07CD5D103AEB4AD2B624EE1ADBFAA456] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_21027.NLS [66082] O44 - LFC:[MD5.DA11C0F72C41A6B3CA24FB83E52D7043] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\C_28605.NLS [66082] O44 - LFC:[MD5.35448F3A71EBBECF8E997FAD3A99327D] - 14/03/2015 - 09:51:44 ---A- . (...) -- C:\Windows\System32\c_28603.nls [66082] O44 - LFC:[MD5.71E7F8B0F28585439E95B3D3B296984B] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1026.NLS [66082] O44 - LFC:[MD5.7CB90B3604A45355218E6A20BD7B7A0B] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1047.NLS [66082] O44 - LFC:[MD5.F0C0509A9A633332B99F009D1DAA7612] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1141.NLS [66082] O44 - LFC:[MD5.69316F1B309BA5AC371EFD09267BD670] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1142.NLS [66082] O44 - LFC:[MD5.3EA8E21340AF59C80CB35A6A53FE52D7] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1143.NLS [66082] O44 - LFC:[MD5.FD2D28063FB4FD12BC6EF18A6D10769E] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1144.NLS [66082] O44 - LFC:[MD5.123B711FF0BF69B4462C279D342380AF] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1145.NLS [66082] O44 - LFC:[MD5.D288777605A2F4E12A9C6E360CE44987] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1146.NLS [66082] O44 - LFC:[MD5.7623492F4FCB5E317578F897A7476E16] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1147.NLS [66082] O44 - LFC:[MD5.32CA3320D8C8F37770764BDFF1C2FE15] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1148.NLS [66082] O44 - LFC:[MD5.484A1C398A16DD464E8468046526985C] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1149.NLS [66082] O44 - LFC:[MD5.0E91B896B81CF0B7DF62C824224B891A] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1251.NLS [66082] O44 - LFC:[MD5.E1858EDF032363E84922CDB91E75797A] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1253.NLS [66082] O44 - LFC:[MD5.808CCC573F51DC7AB3D5151A2D2AF1BF] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1254.NLS [66082] O44 - LFC:[MD5.C386BDB1A653A4390313AE192EFF2732] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1255.NLS [66082] O44 - LFC:[MD5.6F42B3E7ED97C9EAC38615B907F08721] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1256.NLS [66082] O44 - LFC:[MD5.AF381A5B093736A3A28EFDC1BB4F5FCB] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1257.NLS [66082] O44 - LFC:[MD5.43B0D0C38C885CCF742740FFC1F00535] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1258.NLS [66082] O44 - LFC:[MD5.A337491EA01F4BE0779A981CB7ACB999] - 14/03/2015 - 09:51:46 ---A- . (...) -- C:\Windows\System32\C_1361.NLS [189986] O44 - LFC:[MD5.27E1CBE7F0DF21CA0892D16FD1961F29] - 14/03/2015 - 09:51:47 ---A- . (...) -- C:\Windows\System32\C_1140.NLS [66082] O44 - LFC:[MD5.2E0B152ED60DE2431DFC0C436363385E] - 14/03/2015 - 09:51:47 ---A- . (...) -- C:\Windows\System32\C_1250.NLS [66082] O44 - LFC:[MD5.D87FB0D2599BAE25F3A6D29589AF0D98] - 14/03/2015 - 09:51:47 ---A- . (...) -- C:\Windows\System32\WimBootCompress.ini [2269] O44 - LFC:[MD5.43E7D0AB6A8564F5BF375FBF0934FAD1] - 14/03/2015 - 09:51:48 ---A- . (...) -- C:\Windows\System32\RestartManager.mof [714] O44 - LFC:[MD5.3F75A221A01F68D6CE67FE99A868BD8F] - 14/03/2015 - 09:51:48 ---A- . (...) -- C:\Windows\System32\RestartManagerUninstall.mof [176] O44 - LFC:[MD5.DDB99F7FE6C9875A2B0696AA06ED0223] - 14/03/2015 - 09:51:48 ---A- . (...) -- C:\Windows\System32\devmgmt.msc [145640] O44 - LFC:[MD5.2901049544FDF863362FABA2363EB647] - 14/03/2015 - 09:51:54 ---A- . (...) -- C:\Windows\System32\onlinesetup.cmd [843] O44 - LFC:[MD5.AC27746CE65F3A7A1329BEBA7A64E08F] - 14/03/2015 - 09:51:56 ---A- . (...) -- C:\Windows\System32\comexp.msc [124118] O44 - LFC:[MD5.42FEE38BBD7CB01DABCBD2FCEF3146A4] - 14/03/2015 - 09:52:09 ---A- . (...) -- C:\Windows\System32\efsext.dll [26112] O44 - LFC:[MD5.3903BCAB32A4A853DFA54962112D4D02] - 14/03/2015 - 09:52:13 ---A- . (...) -- C:\Windows\System32\slmgr.vbs [142904] O44 - LFC:[MD5.5D27362AF3BCAA75A418F5416A35934E] - 14/03/2015 - 09:52:28 ---A- . (...) -- C:\Windows\System32\odbcconf.rsp [263] O44 - LFC:[MD5.7F29903CB8F5590D52DB0C9F97049A25] - 14/03/2015 - 09:52:33 ---A- . (...) -- C:\Windows\System32\Drivers\gm.dls [3440660] O44 - LFC:[MD5.7111BFA692A22E4B3C07F1E6C6FF6F72] - 14/03/2015 - 09:52:33 ---A- . (...) -- C:\Windows\System32\Drivers\gmreadme.txt [646] O44 - LFC:[MD5.93B885ADFE0DA089CDF634904FD59F71] - 14/03/2015 - 09:52:38 -SHA- . (...) -- C:\BOOTNXT [1] O44 - LFC:[MD5.BA5BAA67805F5D884C24A9125A8CC2C1] - 14/03/2015 - 09:52:39 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2143960] O44 - LFC:[MD5.746447AA0FA2ED7A04320B86988E3E33] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\EditBufferTestHook.dll [71680] O44 - LFC:[MD5.808BFA2AFB2C14BDF4C0F7C1E41C1008] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\InputLocaleManager.dll [105984] O44 - LFC:[MD5.706AA425E8B6409E4301AB6D5C449987] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\InputService.dll [2329600] O44 - LFC:[MD5.65BF8C5E2CE8CB185744FBEAC3589774] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\TextInputFramework.dll [267776] O44 - LFC:[MD5.8CD7389A19C1F2B111291CF9A7A84197] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\Windows.World.Sensors.dll [427008] O44 - LFC:[MD5.CB172F49A10D67EE2D70E1C6AEBE1EAC] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\WordBreakers.dll [25600] O44 - LFC:[MD5.8DF81F90CC1611699FC60E366E71F70A] - 14/03/2015 - 09:52:43 ---A- . (...) -- C:\Windows\System32\WpKbdLayout.dll [62976] O44 - LFC:[MD5.0BD539284D746E022BDA27C1F85A525A] - 14/03/2015 - 09:52:44 ---A- . (...) -- C:\Windows\System32\C_437.NLS [66594] O44 - LFC:[MD5.3EC1A12B4841F7CCD65B12D792FC8FDA] - 14/03/2015 - 09:52:44 ---A- . (...) -- C:\Windows\System32\l_intl.nls [9926] O44 - LFC:[MD5.B6B479B04C64AF5EF36C24EBDF278302] - 14/03/2015 - 09:52:44 ---A- . (...) -- C:\Windows\System32\wpr.config.xml [726] O44 - LFC:[MD5.ACB769EC498FB62316EAB45ADB680F22] - 14/03/2015 - 09:52:48 ---A- . (...) -- C:\Windows\System32\C_1252.NLS [66082] O44 - LFC:[MD5.B2241C7E71A7CA5B4CE86FB28FA97373] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-appcmd.searchconnector-ms [543] O44 - LFC:[MD5.2B405BCB2A2BDEC47D35D0A921E5B10B] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-contacts.searchconnector-ms [528] O44 - LFC:[MD5.8A063B4755E352DD772D43D5E8123BBB] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-history.searchconnector-ms [539] O44 - LFC:[MD5.A727FC8376E18F7506A6BB6BC389E602] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-music.searchconnector-ms [525] O44 - LFC:[MD5.80CC9D3D6A70AAA255C0FEDB4C7BB692] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-paths.searchconnector-ms [522] O44 - LFC:[MD5.1420FE34B31CBD3B81011E03ACAD94F2] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-protocol.searchconnector-ms [530] O44 - LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms [11109] O44 - LFC:[MD5.ACB02726235DF588BF8D5A4FF54379DF] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-suggestions.searchconnector-ms [7784] O44 - LFC:[MD5.0E3D116A4DC1D2ABDD0692C6173E09E6] - 14/03/2015 - 09:52:57 ---A- . (...) -- C:\Windows\System32\connectedsearch-zeroinput.searchconnector-ms [7152] O44 - LFC:[MD5.8E80C0381600E5B531296962276CA545] - 14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\Drivers\NetAdapterCx.sys [66560] O44 - LFC:[MD5.400E70BD413765AFF805AB5C846D1E25] - 14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\MTF.dll [220160] O44 - LFC:[MD5.49878D133DB406B016E83DFE31021598] - 14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\MTFServer.dll [324096] O44 - LFC:[MD5.7223867E99CA008751CAE25F57500C89] - 14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\WppRecorderUM.dll [9216] O44 - LFC:[MD5.3279476E39DE235B426D69CFE8DEBF55] - 14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\lusrmgr.msc [144998] O44 - LFC:[MD5.66D58077CC739E4B8166E33AB0BA4639] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\pcl.sep [150] O44 - LFC:[MD5.C09741B9886EF0D15EC3B1443352FB62] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\pscript.sep [51] O44 - LFC:[MD5.81B14F1AD906AC1CF9102796C97A54FE] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\sysprint.sep [3317] O44 - LFC:[MD5.58A67EC6B00A54A69DC364194CA171E0] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\sysprtj.sep [3666] O44 - LFC:[MD5.31B010EF50D54D548B4B8B211F421318] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\tcpbidi.xml [1673] O44 - LFC:[MD5.D602CA245CC6774A0981B607F0675609] - 14/03/2015 - 09:53:07 ---A- . (...) -- C:\Windows\System32\tcpmon.ini [60124] O44 - LFC:[MD5.9C67CA295446A649E28B39B436460E71] - 14/03/2015 - 09:53:14 ---A- . (...) -- C:\Windows\System32\@OpenWithToastLogo.png [160] O44 - LFC:[MD5.7153B1C028A9B5A539D3CED85AE9D091] - 14/03/2015 - 09:53:15 ---A- . (.Pas de propriétaire - Application ContextH.) -- C:\Windows\System32\BWContextHandler.dll [54784] O44 - LFC:[MD5.9971B035154F5C54948B73A86D6C6874] - 14/03/2015 - 09:53:34 ---A- . (...) -- C:\Windows\System32\@TileEmpty1x1Image.png [120] O44 - LFC:[MD5.ED434A3EBE29070A7E0138C42482EB93] - 14/03/2015 - 09:53:36 ---A- . (...) -- C:\Windows\System32\mlang.dat [673088] O44 - LFC:[MD5.C844CA459F3B209329984772269B6E56] - 14/03/2015 - 09:53:45 R-HA- . (...) -- C:\Windows\WindowsShell.Manifest [670] O44 - LFC:[MD5.027F966B4ADDE05A80328AB01A21B2F4] - 14/03/2015 - 09:54:06 ---A- . (...) -- C:\Windows\System32\SensorDataService.exe [289280] O44 - LFC:[MD5.531FE5A2634D87A078017259F21D9736] - 14/03/2015 - 09:54:08 ---A- . (...) -- C:\Windows\System32\lcphrase.tbl [211938] O44 - LFC:[MD5.D3C85593F8C4576FCF9B42AC48CA4368] - 14/03/2015 - 09:54:08 ---A- . (...) -- C:\Windows\System32\lcptr.tbl [24114] O44 - LFC:[MD5.0F9C499BC432A40BAA9C04147C1D9E68] - 14/03/2015 - 09:54:55 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [16353] O44 - LFC:[MD5.E7E4D8D7340DA6934B9EA81CBB21374C] - 14/03/2015 - 09:54:55 ---A- . (...) -- C:\Windows\WMSysPr9.prx [316640] O44 - LFC:[MD5.F1DF7849450DBC5D5C3A464E8A791C8C] - 14/03/2015 - 09:54:56 ---A- . (...) -- C:\Windows\System32\WpcNBModel.bin [1520828] O44 - LFC:[MD5.B59958CD06C9F89C39281FB12F1BB233] - 14/03/2015 - 09:54:56 ---A- . (...) -- C:\Windows\System32\staticurllist.bin [526068] O44 - LFC:[MD5.7A495CA1402C2F9F5D035092AD808669] - 14/03/2015 - 09:55:06 ---A- . (...) -- C:\Windows\System32\manage-bde.wsf [874] O44 - LFC:[MD5.633A63C2A091BEBD35137784F8630378] - 14/03/2015 - 09:55:07 ---A- . (...) -- C:\Windows\System32\KeyboardFilterShim.sdb [2458] O44 - LFC:[MD5.D7936DB0183356DD94873AC36E57061F] - 14/03/2015 - 09:55:11 ---A- . (...) -- C:\Windows\Professional.xml [30628] O44 - LFC:[MD5.FB49B8CE020DF70EE8BC1119D655A3E2] - 14/03/2015 - 09:55:18 ---A- . (...) -- C:\Windows\System32\ResPriImageList [8096] O44 - LFC:[MD5.5C18CD22BE4628865FCB63337A6E5EF6] - 14/03/2015 - 09:55:18 ---A- . (...) -- C:\Windows\System32\ScavengeSpace.xml [10429] O44 - LFC:[MD5.96CD5EFD94D08222B8B6266FF87D1DCA] - 14/03/2015 - 09:55:18 ---A- . (...) -- C:\Windows\System32\diagtrack_win.dll [324096] O44 - LFC:[MD5.8CA32E9D986FA76F60EFBCFCD9D80A58] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\ShiftJIS.uce [16740] O44 - LFC:[MD5.30F5568679A54042F99CA9EC1102EBCD] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\SubRange.uce [93702] O44 - LFC:[MD5.405E1EF8E3C88E9BCD2853382BB12430] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\bopomofo.uce [22984] O44 - LFC:[MD5.4FDED87068052EEB9B72A97FDBC141DB] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\gb2312.uce [24006] O44 - LFC:[MD5.038F6AD6CEE43585D814CDBC7CDFD3EC] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\ideograf.uce [60458] O44 - LFC:[MD5.7C0C25F4BA1084C4ABBEEA2C74194C5F] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\kanji_1.uce [6948] O44 - LFC:[MD5.529BBD63519BBD654EF328454019693F] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\kanji_2.uce [8484] O44 - LFC:[MD5.7A7A04370A6030B9B0E8178DAD4A6E41] - 14/03/2015 - 09:55:22 ---A- . (...) -- C:\Windows\System32\korean.uce [12876] O44 - LFC:[MD5.60CE51972E0A06217C52202F7208EB9A] - 14/03/2015 - 09:55:23 ---A- . (...) -- C:\Windows\System32\TelemetrySampleManifest.xml [442] O44 - LFC:[MD5.E0974EE3F592223A950B3B0C04797212] - 14/03/2015 - 09:55:39 ---A- . (...) -- C:\Windows\System32\WindowsCodecsRaw.txt [1649] O44 - LFC:[MD5.9D6B8FC71167D22849424084F0F3D9E9] - 14/03/2015 - 09:55:39 ---A- . (...) -- C:\Windows\System32\xpsrchvw.xml [76060] O44 - LFC:[MD5.B53767BC6A8B8AB8796D631B2ED979F4] - 14/03/2015 - 09:55:44 ---A- . (.Windows (R) Win 7 DDK provider - DSC.) -- C:\Windows\System32\DscCoreConfProv.dll [199680] O44 - LFC:[MD5.286A9EDB379DC3423A528B0864A0F111] - 14/03/2015 - 09:57:05 ---A- . (...) -- C:\Windows\system.ini [219] O44 - LFC:[MD5.23CF8138F49416231807E6DE371FB9E6] - 14/03/2015 - 09:57:05 ---A- . (...) -- C:\Windows\win.ini [92] O44 - LFC:[MD5.D638E3AD81E149A75EEF59E9C743E27C] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\AutoWorkplace.exe.config [389] O44 - LFC:[MD5.664AA698FC0106A2B075A641E8DC6302] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\DefaultQuestions.json [858] O44 - LFC:[MD5.DE78E0C57BC478D47CC2F470B68E1A45] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\NOISE.DAT [741] O44 - LFC:[MD5.1653FFDC7B8C31C19393E5F568D5164C] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\OEMDefaultAssociations.xml [11375] O44 - LFC:[MD5.ECD81B99477AB4A93D7838EB40B870D0] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\icrav03.rat [8798] O44 - LFC:[MD5.6D21D0A95286DCD09E354B612F592EB7] - 14/03/2015 - 09:57:06 ---A- . (...) -- C:\Windows\System32\ticrf.rat [1988] O44 - LFC:[MD5.8C6F56F4CDDE6A1FD01F4FCF2773298E] - 14/03/2015 - 09:57:07 ---A- . (...) -- C:\Windows\System32\dssec.dat [215943] O44 - LFC:[MD5.A14D3F0015E1DA0D69EC1CA563E1B548] - 14/03/2015 - 10:16:32 ---A- . (...) -- C:\Windows\lsasetup.log [1340] O44 - LFC:[MD5.D5A228D0EEAEA0F425F778EB901E1FC1] - 14/03/2015 - 10:18:04 ---A- . (...) -- C:\Windows\System32\WIN-L4JKJ22C9BP_Administrator_ploc_HistoryPrediction.bin [16148] O44 - LFC:[MD5.4856202475EFE0D66FA11EE1DCF6D0D3] - 14/03/2015 - 18:17:47 ---A- . (...) -- C:\Windows\System32\printmanagement.msc [146389] O44 - LFC:[MD5.2BC2546831B054680C6F59888F295E44] - 14/03/2015 - 18:17:51 ---A- . (...) -- C:\Windows\System32\secpol.msc [120458] O44 - LFC:[MD5.6C054DA115C2CA2C523ABD159ED7814B] - 14/03/2015 - 18:18:02 ---A- . (...) -- C:\Windows\System32\gpedit.msc [147439] O44 - LFC:[MD5.49525986566A050AA233A428AA50D83F] - 14/03/2015 - 18:18:02 ---A- . (...) -- C:\Windows\System32\rsop.msc [43566] O44 - LFC:[MD5.7761D63F5C8BA636482F13676A131386] - 19/03/2015 - 11:12:58 ---A- . (...) -- C:\Windows\DtcInstall.log [2133] O44 - LFC:[MD5.F246792578B62B0B4A65C3C24004BE47] - 19/03/2015 - 11:18:05 ---A- . (...) -- C:\Windows\System32\WIN-EMQ1FKM7R90_defaultuser0_HistoryPrediction.bin [16148] O44 - LFC:[MD5.FE6A7360370FAD1557DAEA9A7CF2B351] - 19/03/2015 - 11:21:28 ---A- . (...) -- C:\Windows\System32\Drivers\RTAIODAT.DAT [1736833] O44 - LFC:[MD5.F246792578B62B0B4A65C3C24004BE47] - 19/03/2015 - 11:28:40 ---A- . (...) -- C:\Windows\System32\WIN-EMQ1FKM7R90_Australien_HistoryPrediction.bin [16148] O44 - LFC:[MD5.017BE0BD6DDB8CB860FA68694783C447] - 19/03/2015 - 11:42:41 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [17616] O44 - LFC:[MD5.977519C952298093B1F02C76708C6491] - 19/03/2015 - 12:09:35 ---A- . (.painter - explorerframe proxy.) -- C:\Windows\System32\painter_x64.dll [7168] O44 - LFC:[MD5.482FD46995C3C2B6B16EB7A9CFA57CF0] - 19/03/2015 - 12:50:05 ---A- . (...) -- C:\Windows\System32\MAISON_Australien_HistoryPrediction.bin [16148] O44 - LFC:[MD5.68373E619C7C969F16E0B8403A9BBC77] - 19/03/2015 - 13:32:31 ---A- . (...) -- C:\Windows\WindowsUpdate_AU_deprecated.log [16944] ~ Files: 3923 Legitimates Filtered in 00mn 10s ---\\ Déni du service (Local Security Authority) (O48) ~ LSA: 3 Legitimates Filtered in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 18 Legitimates Filtered in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 ~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:14/03/2015 - 09:49:18 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\Drivers\ibbus.sys [420624] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [57104] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\Drivers\mlx4_bus.sys [701200] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\Drivers\ndfltr.sys [71952] O58 - SDL:14/03/2015 - 09:53:01 ---A- . (...) -- C:\Windows\System32\Drivers\NetAdapterCx.sys [66560] O58 - SDL:14/03/2015 - 09:49:21 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas3i.sys [54544] O58 - SDL:14/03/2015 - 09:49:21 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [26896] O58 - SDL:14/03/2015 - 09:50:19 ---A- . (...) -- C:\Windows\System32\Drivers\Udecx.sys [43008] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\Drivers\winmad.sys [22800] O58 - SDL:14/03/2015 - 09:49:20 ---A- . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\Drivers\winverbs.sys [55568] ~ Drivers: 41 Legitimates Filtered in 00mn 00s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 19/03/2015 - 13:45:25 ---A- . (...) -- C:\Users\Australien\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\CollectOneDriveLogs.bat [5843] O61 - LFC: 19/03/2015 - 13:45:25 ---A- . (...) -- C:\Users\Australien\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [426042] ~ 6 Fichiers temporaires (Temporary files) ~ Files: 34 Legitimates Filtered in 00mn 00s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 19/03/2015 268464 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 05/03/2015 148080 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 14/03/2015 289280 | (SensorDataService) . (...) - C:\Windows\System32\SensorDataService.exe SS - | Demand 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SS - | Demand 14/03/2015 35160 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 31/01/2015 878400 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 31/01/2015 1258312 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe SR - | Auto 19/03/2015 293080 | (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe SR - | Demand 22/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Auto 22/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe ~ Services: Scanned in 00mn 18s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Australien at 19/03/2015 13:45:59 ~ OS 64 not supported by MBR tool ~ MBR: 0 Legitimates Filtered in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Australien at 19/03/2015 13:46:01 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13008 - (19/03/2015) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 0 ~ Additionnel Scan: 165095 Items scanned in 00mn 23s ---\\ Informations complémentaires sur les modules ~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5) ~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4) ~ AMI: 2 Legitimates Filtered in 00mn 00s ~ 4337 Legitimates filtered by white list End of the scan (564 lines in 01mn 37s)(0.10)