zhpdiag.txt

Document joint : DKkiOG4mf3N_zhpdiag.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.11.9.160 - Nicolas Coolman (09/11/2014)
~ Lancé par SworD (10/11/2014 08:27:28)
~ Adresse du Site Web http://nicolascoolman.fr
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user

---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9841.0

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Technical Preview, 64-bit (Build 9841)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, RETAIL channel
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.3.1025

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer
qBittorrent 3.1.11 v3.1.11 =>P2P.BitTorrent

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8077 MB (37% free)
System Restore: Activé (Enable)
System drive C: has 7 GB (8%) free of 83 GB

---\\ Mode de connexion au système
~ Computer Name: WIN-8SGIJ7N99GU
~ User Name: SworD
~ All Users Names: SworD, HomeGroupUser$, Guest, DefaultAccount_ploc, Administrator,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\SworD\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\SworD\AppData\Roaming\
~ %Desktop% : C:\Users\SworD\Desktop\
~ %Favorites% : C:\Users\SworD\Favorites\
~ %LocalAppData% : C:\Users\SworD\AppData\Local\
~ %StartMenu% : C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 7 Go of 83 Go)
E: Hard drive, Flash drive, Thumb drive (Free 130 Go of 215 Go)
F: CD-ROM drive (Not Inserted)

---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.A33C2408C6C6D17E11AF1957C0B11804] - (.Microsoft Corporation - Windows Explorer.) (.13/09/2014 - 08:21:02.) -- C:\Windows\Explorer.exe [3265424]
[MD5.C9D5D5E2282F19CCC862AACC0F4959E0] - (.Microsoft Corporation - Windows Start-Up Application.) (.13/09/2014 - 08:20:48.) -- C:\Windows\System32\Wininit.exe [219152]
[MD5.C846ABC836ACBDD1612770116F514BB5] - (.Microsoft Corporation - Internet Extensions for Win32.) (.13/09/2014 - 08:20:52.) -- C:\Windows\System32\wininet.dll [2407936]
[MD5.F277E776F187208AD7804AD6B6DE6475] - (.Microsoft Corporation - Windows Logon Application.) (.13/09/2014 - 08:20:47.) -- C:\Windows\System32\Winlogon.exe [559104]
[MD5.C8E385F33EF775A410863BE40726BD4B] - (.Microsoft Corporation - Software Licensing Library.) (.13/09/2014 - 08:20:49.) -- C:\Windows\System32\sppcomapi.dll [431616]
[MD5.9D63F69E01661ACAB1A645005AFC4F14] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.13/09/2014 - 07:34:04.) -- C:\Windows\system32\Drivers\AFD.sys [547840]
[MD5.4037C163CD88AF6E7368414F84E314F4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/09/2014 - 08:20:00.) -- C:\Windows\system32\Drivers\atapi.sys [27088]
[MD5.75F7875497C090C73F36AE5DD6A9ED65] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/09/2014 - 08:20:58.) -- C:\Windows\system32\Drivers\Cdfs.sys [89600]
[MD5.BAFA679497B193C3AD9C2B96E60018B4] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/09/2014 - 08:20:00.) -- C:\Windows\system32\Drivers\Cdrom.sys [165376]
[MD5.12BCB9AFB35727B1B651975FB6B74C14] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.13/09/2014 - 08:20:41.) -- C:\Windows\system32\Drivers\DfsC.sys [136192]
[MD5.10A1E3EFF2BB79B4957C424085212929] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/09/2014 - 08:20:02.) -- C:\Windows\system32\Drivers\HDAudBus.sys [77312]
[MD5.193F96F5EC1CEDDDA13272276883A09B] - (.Microsoft Corporation - i8042 Port Driver.) (.13/09/2014 - 08:20:01.) -- C:\Windows\system32\Drivers\i8042prt.sys [96256]
[MD5.13A3ABB7586490CC828A604DB3598905] - (.Microsoft Corporation - IP Network Address Translator.) (.13/09/2014 - 08:20:36.) -- C:\Windows\system32\Drivers\IpNat.sys [140800]
[MD5.DA4211E73A675C8B9534DE8BB8506942] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.13/09/2014 - 08:20:42.) -- C:\Windows\system32\Drivers\MRxSmb.sys [408576]
[MD5.61EAB75862A71D8C28F02E6CDA1CB7E0] - (.Microsoft Corporation - MBT Transport driver.) (.13/09/2014 - 08:20:55.) -- C:\Windows\system32\Drivers\netBT.sys [275456]
[MD5.DE361F69D181F85C3B1E10C851810C3A] - (.Microsoft Corporation - NT File System Driver.) (.13/09/2014 - 07:34:03.) -- C:\Windows\system32\Drivers\ntfs.sys [2040784]
[MD5.7077E64715FCE0A6849BE5273ADB05BD] - (.Microsoft Corporation - Parallel Port Driver.) (.13/09/2014 - 08:20:00.) -- C:\Windows\system32\Drivers\Parport.sys [93184]
[MD5.4888A658C900987B78967AD9E00FC6C2] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/09/2014 - 08:20:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [110592]
[MD5.C560F0C7E259343D665E0F797F772A12] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/09/2014 - 09:22:44.) -- C:\Windows\system32\Drivers\rdpdr.sys [197120]
[MD5.3B07DF0C579E553D57E70343827D3B64] - (.Microsoft Corporation - TDI Translation Driver.) (.13/09/2014 - 07:34:04.) -- C:\Windows\system32\Drivers\tdx.sys [106496]
[MD5.08D1367011DDB77B20FF11A22EB2FC31] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.13/09/2014 - 08:20:00.) -- C:\Windows\system32\Drivers\volsnap.sys [387536]
~ Generic Processes: Scanned in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 1/10
~ Mes Documents (My Documents) : 1/10118
~ Mon Bureau (My Desktop) : 2/24
~ Menu demarrer (Programs) : 1/40
~ Hidden Files: Scanned in 00mn 07s

---\\ Processus lancés
[MD5.F89773DFA9B8C95A3AC2AF1E7D99E483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.2632]
[MD5.DC1C247923B6164206499B652CD548CE] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2462536] [PID.5832]
[MD5.8133BFFA2051A2D1312F602FDE199F0C] - (.Pas de propriétaire - Omnimo Toggler.) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\Omnimo.exe [777427] [PID.6500]
[MD5.03F7027B0AFB0155956B6C6282C9C4AD] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016] [PID.6572]
[MD5.A18EB4A3002700E5B50CBE0519251830] - (...) -- C:\Program Files (x86)\qBittorrent\qbittorrent.exe [15651328] [PID.5920] =>P2P.BitTorrent
[MD5.0855F59DD1171C18B30A3C8338D85E18] - (.Maxthon International ltd. - Maxthon Cloud Browser.) -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [256824] [PID.8036]
[MD5.9906374B2EAF9E9658DC6ACC3B3C6C3F] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [164864] [PID.7788]
[MD5.63B2855881BBA306B1D17DE14F98A146] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [817328] [PID.2436]
[MD5.7BA073364FA7774A4ECDF62E60EA1C33] - (...) -- C:\Users\SworD\AppData\Local\Temp\RogueKiller.exe [14670424] [PID.10648]
[MD5.49FA9FC92645E4F41A20251115EC19C9] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8123392] [PID.11104]
[MD5.5CE4F1E7D1BF789919DC7F2E7603C638] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1420]
[MD5.9554E93F44E5316EA97D4297B977AD76] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [104416] [PID.1864]
[MD5.6D8A2EE4244630B290A837E79C0F37A1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.1400]
[MD5.E55893C3A3E328810583555652EEB4DC] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912] [PID.2768]
[MD5.09D4503CBB6ADB3A54E7C7A75090B728] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Malwarebytes Anti-Malware\mbamservice.exe [968504] [PID.3044]
~ Processes Running: Scanned in 00mn 01s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9841.0 (fbl_release.140912-1613)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 15 Scanned in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s

---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ BHO: 2 Scanned in 00mn 00s

---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll
O4 - HKCU\..\Run: [ProcessManager] . (.Bill2 Software - Bill2's Process Manager executable.) -- C:\Program Files (x86)\Bill2's Process Manager\ProcessManager.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKUS\S-1-5-21-3457983603-2417467309-2350266725-1000\..\Run: [ProcessManager] . (.Bill2 Software - Bill2's Process Manager executable.) -- C:\Program Files (x86)\Bill2's Process Manager\ProcessManager.exe
~ Application: Scanned in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA13046D-D605-41EE-AEA1-8AA90C77D919}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA13046D-D605-41EE-AEA1-8AA90C77D919}: DhcpDomain = bouyguesbox.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA13046D-D605-41EE-AEA1-8AA90C77D919}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA13046D-D605-41EE-AEA1-8AA90C77D919}: DhcpDomain = bouyguesbox.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
~ Domain: Scanned in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 344.) - C:\Windows\system32\nvinitx.dll
~ AppInit DLL: Scanned in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall (avast! Firewall) . (.AVAST Software - avast! firewall service.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.6.) - C:\Windows\system32\nvvsvc.exe
~ Services: 8 Scanned in 00mn 15s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s

---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
[MD5.05EED91BEAACD7F068DF369395603C3E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [857888]
[MD5.0855F59DD1171C18B30A3C8338D85E18] [APT] [Maxthon Update] (.Maxthon International ltd..) -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [256824]
[MD5.00000000000000000000000000000000] [APT] [{E090ED69-BF98-447B-9FB0-E53388391F93}] (...) -- C:\Users\SworD\AppData\Local\Temp\Temp1_avenger.zip\avenger.exe (.not file.) [0]
~ Scheduled Task: 4 Scanned in 00mn 05s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension.) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s

---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - QoS Packet Scheduler.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 42 Scanned in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: Avast Internet Security - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Bill2's Process Manager (Désinstallation uniquement) - (.Bill2 Software.) [HKLM][64Bits] -- Bill2's Process Manager
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.3.1025 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Maxthon Cloud Browser - (.Maxthon International Limited.) [HKLM][64Bits] -- Maxthon3
O42 - Logiciel: NVIDIA GeForce Experience 2.1.3 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Graphics Driver 344.60 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97}
O42 - Logiciel: NVIDIA PhysX System Software 9.14.0702 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: Rainmeter - (...) [HKLM][64Bits] -- Rainmeter
O42 - Logiciel: Unlocker 1.9.2 - (.Cedrick Collomb.) [HKLM][64Bits] -- Unlocker
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: qBittorrent 3.1.11 - (.The qBittorrent project.) [HKLM][64Bits] -- qBittorrent =>P2P.BitTorrent
~ Logic: 35 Scanned in 00mn 00s

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Maxthon3]
[HKCU\Software\Mine]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Policies]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\g3n-h@ckm@n]
[HKCU\Software\sysinternals]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\g3n-h@ckm@n]
[HKLM\Software\Wow6432Node\sysinternals]
[HKLM\Software\Wow6432Node]
~ Key Software: 101 Scanned in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 06/11/2014 - 06:34:23 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 07/11/2014 - 04:58:34 - [] ----D C:\Program Files (x86)\Bill2's Process Manager
O43 - CFD: 05/11/2014 - 23:40:51 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 05/11/2014 - 22:32:33 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 13/09/2014 - 09:23:00 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 06/11/2014 - 06:35:18 - [] ----D C:\Program Files (x86)\Maxthon
O43 - CFD: 13/09/2014 - 08:26:30 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 07/11/2014 - 04:52:38 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 06/11/2014 - 06:34:53 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 05/11/2014 - 23:03:17 - [] ----D C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent
O43 - CFD: 06/11/2014 - 03:58:28 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 06/11/2014 - 06:21:18 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 13/09/2014 - 08:26:32 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 13/09/2014 - 08:26:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 13/09/2014 - 08:26:32 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 13/09/2014 - 08:26:30 - [] -S--D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 13/09/2014 - 08:26:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 10/11/2014 - 08:26:08 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 05/11/2014 - 23:40:51 - [] ----D C:\Program Files (x86)\Common Files\Bitdefender
O43 - CFD: 05/11/2014 - 22:32:08 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 13/09/2014 - 08:26:32 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 13/09/2014 - 09:20:44 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/09/2014 - 08:45:27 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 06/11/2014 - 02:05:38 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 13/09/2014 - 08:26:30 - [0] ----D C:\ProgramData\Comms
O43 - CFD: 13/09/2014 - 08:45:27 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 13/09/2014 - 08:45:27 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 13/09/2014 - 08:45:51 - [] ----D C:\ProgramData\Feedback
O43 - CFD: 06/11/2014 - 01:46:39 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 05/11/2014 - 22:33:22 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 06/11/2014 - 06:34:03 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 06/11/2014 - 06:35:32 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 13/09/2014 - 09:22:59 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 10/11/2014 - 06:35:48 - [] ----D C:\ProgramData\RogueKiller
O43 - CFD: 13/09/2014 - 08:45:27 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 13/09/2014 - 08:45:27 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 05/11/2014 - 22:30:38 - [] ----D C:\Users\SworD\AppData\Roaming\Adobe
O43 - CFD: 06/11/2014 - 02:07:26 - [] ----D C:\Users\SworD\AppData\Roaming\AVAST Software
O43 - CFD: 05/11/2014 - 22:38:21 - [] ----D C:\Users\SworD\AppData\Roaming\Macromedia
O43 - CFD: 06/11/2014 - 06:35:27 - [] ----D C:\Users\SworD\AppData\Roaming\Maxthon3
O43 - CFD: 06/11/2014 - 13:30:48 - [] -S--D C:\Users\SworD\AppData\Roaming\Microsoft
O43 - CFD: 05/11/2014 - 23:03:57 - [] ----D C:\Users\SworD\AppData\Roaming\qBittorrent =>P2P.BitTorrent
O43 - CFD: 05/11/2014 - 23:16:33 - [0] ----D C:\Users\SworD\AppData\Roaming\QuickScan
O43 - CFD: 06/11/2014 - 05:38:42 - [] ----D C:\Users\SworD\AppData\Roaming\Rainmeter
O43 - CFD: 07/11/2014 - 03:30:10 - [] ----D C:\Users\SworD\AppData\Roaming\vlc
O43 - CFD: 10/11/2014 - 08:28:05 - [] ----D C:\Users\SworD\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 05/11/2014 - 22:30:14 - [] -SH-D C:\Users\SworD\AppData\Local\Application Data
O43 - CFD: 10/11/2014 - 02:49:08 - [] ----D C:\Users\SworD\AppData\Local\Bill2's Process Manager
O43 - CFD: 07/11/2014 - 05:01:54 - [] ----D C:\Users\SworD\AppData\Local\Bill2_Software
O43 - CFD: 06/11/2014 - 00:41:13 - [] ----D C:\Users\SworD\AppData\Local\Diagnostics
O43 - CFD: 05/11/2014 - 22:37:29 - [] -SH-D C:\Users\SworD\AppData\Local\EmieSiteList
O43 - CFD: 05/11/2014 - 22:37:29 - [] -SH-D C:\Users\SworD\AppData\Local\EmieUserList
O43 - CFD: 05/11/2014 - 22:30:14 - [] -SH-D C:\Users\SworD\AppData\Local\History
O43 - CFD: 06/11/2014 - 06:34:51 - [] ----D C:\Users\SworD\AppData\Local\Microsoft
O43 - CFD: 06/11/2014 - 06:35:50 - [] ----D C:\Users\SworD\AppData\Local\NVIDIA
O43 - CFD: 06/11/2014 - 06:35:24 - [] ----D C:\Users\SworD\AppData\Local\NVIDIA Corporation
O43 - CFD: 08/11/2014 - 07:36:32 - [] ----D C:\Users\SworD\AppData\Local\Packages
O43 - CFD: 05/11/2014 - 23:12:54 - [0] ----D C:\Users\SworD\AppData\Local\PackageStaging
O43 - CFD: 06/11/2014 - 01:46:24 - [] ----D C:\Users\SworD\AppData\Local\Programs
O43 - CFD: 05/11/2014 - 23:03:45 - [] ----D C:\Users\SworD\AppData\Local\qBittorrent =>P2P.BitTorrent
O43 - CFD: 10/11/2014 - 08:27:45 - [] ----D C:\Users\SworD\AppData\Local\Temp
O43 - CFD: 05/11/2014 - 22:30:14 - [] -SH-D C:\Users\SworD\AppData\Local\Temporary Internet Files
O43 - CFD: 05/11/2014 - 22:30:37 - [0] ----D C:\Users\SworD\AppData\Local\VirtualStore
O43 - CFD: 13/09/2014 - 08:26:32 - [] R---D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 13/09/2014 - 08:26:32 - [] R---D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 05/11/2014 - 22:30:45 - [] R---D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/11/2014 - 04:58:34 - [] ----D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bill2's Process Manager
O43 - CFD: 13/09/2014 - 08:26:32 - [] ----D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 06/11/2014 - 05:09:38 - [] ----D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Omnimo UI
O43 - CFD: 06/11/2014 - 05:15:35 - [] R---D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 13/09/2014 - 08:26:32 - [] R---D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 06/11/2014 - 05:23:08 - [] ----D C:\Users\SworD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
~ Program Folder: 77 Scanned in 00mn 00s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.69AD6A2D0C4B5569D907EE473D48E802] - 05/11/2014 - 22:23:37 ---A- . (...) -- C:\Windows\DtcInstall.log [1720]
O44 - LFC:[MD5.E78EE38E7D2D6F87C640A5EA6BACF85B] - 05/11/2014 - 22:23:47 ---A- . (...) -- C:\Windows\System32\license.rtf [66529]
O44 - LFC:[MD5.60E6C68CB0B797EDD0386A68526935A4] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\CustomModeApp.exe.config [935]
O44 - LFC:[MD5.60E6C68CB0B797EDD0386A68526935A4] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\DPTopologyApp.exe.config [935]
O44 - LFC:[MD5.121619AD32134152616088673078F931] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\GfxUIEx.exe.config [1806]
O44 - LFC:[MD5.E7E191FAF788F644747A7C2F2EC35656] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\GfxUIHotKeyMenu.exe.config [264]
O44 - LFC:[MD5.60D24E3C8867149037D4770748180B2B] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.ar-SA.resources [199481]
O44 - LFC:[MD5.E501D520C9CFB883E72D9D705AE7E870] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.cs-CZ.resources [170996]
O44 - LFC:[MD5.AF02DDCD4DCDEA483326A1428A0D8F10] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.da-DK.resources [164698]
O44 - LFC:[MD5.18B7D721D5C39C249CBD5582D8D83511] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.de-DE.resources [176638]
O44 - LFC:[MD5.9EF55B2EA732C8232E15D1675A969DD5] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.el-GR.resources [251862]
O44 - LFC:[MD5.6B9330648EF7A8BBD4C76542675B23D7] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.en-US.resources [159947]
O44 - LFC:[MD5.D2A0CCFFB48489C22BEB4CC7038CA4D1] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.es-ES.resources [176940]
O44 - LFC:[MD5.1D74BEE35A46A70477B5E9C8BD4C963C] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.fi-FI.resources [172041]
O44 - LFC:[MD5.12F0ABB1DA0C6F05FD2F630815901302] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.fr-FR.resources [176666]
O44 - LFC:[MD5.31875415348A3E8D66817B5B0D7973EF] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.he-IL.resources [191088]
O44 - LFC:[MD5.A0CA2669A44D5F416B9CBA833E17DD6F] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.hr-HR.resources [170175]
O44 - LFC:[MD5.456413707681F923DA199C27ADD25C99] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.hu-HU.resources [174244]
O44 - LFC:[MD5.1077A2CC1447E037AED6FA80720FE258] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.it-IT.resources [179230]
O44 - LFC:[MD5.541AF0ABB8CF7E8D6215320A49116B57] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.ja-JP.resources [197044]
O44 - LFC:[MD5.768E869B789977601170468825519212] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.ko-KR.resources [179353]
O44 - LFC:[MD5.FF3B6E6DD6165A682A78B746E91232D1] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.nb-NO.resources [165374]
O44 - LFC:[MD5.62E2E3F280495D2C44495062A928B9D6] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.nl-NL.resources [173495]
O44 - LFC:[MD5.013DD76C2DD4683B33B88302DBC4857B] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.pl-PL.resources [173813]
O44 - LFC:[MD5.B26D1ECE4D0CBE759DC81F8AEE1343ED] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-BR.resources [172750]
O44 - LFC:[MD5.A56E400631F05ED486B66E349B62733A] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-PT.resources [171310]
O44 - LFC:[MD5.E285AF008EFFFDA2B0147C24241F27D9] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.ro-RO.resources [175259]
O44 - LFC:[MD5.EC316D99E6724C2D621B63AAA1B450AA] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.ru-RU.resources [233588]
O44 - LFC:[MD5.1308691F107258B43D6CFB3741B3945A] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.sk-SK.resources [171709]
O44 - LFC:[MD5.4E42D5CADCCF090BF77CFD41F45AA61F] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.sl-SI.resources [166672]
O44 - LFC:[MD5.7D9353E5D17BA4CAE0B032D164812D01] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.sv-SE.resources [171547]
O44 - LFC:[MD5.D7596CCDF460FCB6FDE94CC548199746] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.th-TH.resources [265385]
O44 - LFC:[MD5.29605CCE222F19495F0BCC46F959EFEB] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.tr-TR.resources [173953]
O44 - LFC:[MD5.87C52BF4AC224FD4C838CCE02E8D54D5] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-CN.resources [151473]
O44 - LFC:[MD5.9388B15851EC3B5A44AACC374773D13E] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-TW.resources [153249]
O44 - LFC:[MD5.105CFE016CCB20175BEACEC146F175AB] - 05/11/2014 - 22:31:53 ---A- . (...) -- C:\Windows\System32\IccLibDll_x64.dll [94208]
O44 - LFC:[MD5.BEBFFD7B1A3DE13CC3EEA8E281DD00BD] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - 64 bit driver installer.) -- C:\Windows\System32\difx64.exe [153048]
O44 - LFC:[MD5.4408FDF252F0C5B2EEA0C0CADDE477EB] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - CustomModeApp.) -- C:\Windows\System32\CustomModeApp.exe [396248]
O44 - LFC:[MD5.5F5A8AF4A4D04B3C247B22F6BC0A2B5F] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - DPTopologyApp.) -- C:\Windows\System32\DPTopologyApp.exe [530392]
O44 - LFC:[MD5.A142CF3DE7888E9BDCE1A1B732461B6F] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - GfxUIHotKeyMenu.) -- C:\Windows\System32\GfxUIHotKeyMenu.exe [754648]
O44 - LFC:[MD5.FD4F54E6AA7FA744A03EDDC28FCD70AB] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - Intel(R) Graphics.) -- C:\Windows\System32\GfxUIEx.exe [7587800]
O44 - LFC:[MD5.DEE3B9C1E2780A880DFCBEAAC474DFF0] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - Pas de description.) -- C:\Windows\System32\gfxSrvc.dll [194048]
O44 - LFC:[MD5.3A171360C8AFACD089A86C9541558E11] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - hccutils Module.) -- C:\Windows\System32\hccutils.dll [223744]
O44 - LFC:[MD5.4B9D449ED9880477DEFBA85D512E05F9] - 05/11/2014 - 22:31:53 ---A- . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [771032]
O44 - LFC:[MD5.BF2DE6538AA3F9A6E285D1FE81C387CC] - 05/11/2014 - 22:31:53 ---A- . (.Pas de propriétaire - GfxRes.) -- C:\Windows\System32\GfxRes.dll [2384896]
O44 - LFC:[MD5.7D2201BEBAF5C50194C78E6CE319FE7C] - 05/11/2014 - 22:31:54 ---A- . (...) -- C:\Windows\System32\igdail64.dll [160256]
O44 - LFC:[MD5.C47C5C851F818787AE4608EE18EA362E] - 05/11/2014 - 22:31:54 ---A- . (...) -- C:\Windows\System32\igdde64.dll [220672]
O44 - LFC:[MD5.63CFE8812C457B6746CEC9D13F123614] - 05/11/2014 - 22:31:54 ---A- . (...) -- C:\Windows\System32\igdmd64.dll [365568]
O44 - LFC:[MD5.16D939A13CFB82DEE0B9DB12E45C7B4E] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4177920]
O44 - LFC:[MD5.E1EB307563AD7E64A41395534E5CC95F] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - OpenCL User Mode Driver for Intel(R) Graphi.) -- C:\Windows\System32\igdbcl64.dll [329216]
O44 - LFC:[MD5.D8D73043E39C6869521F95B496DC386B] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - OpenCL User Mode Driver for Intel(R) Graphi.) -- C:\Windows\System32\igdfcl64.dll [25982976]
O44 - LFC:[MD5.92CCF7FDD6F12C79E17DD6BA90EFB49C] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - OpenCL User Mode Driver for Intel(R) Graphi.) -- C:\Windows\System32\igdrcl64.dll [3292672]
O44 - LFC:[MD5.2B73E1F47EE39833C7BEFFE8867A4C82] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - OpenGL(R) Driver for Intel(R) Graphics Acce.) -- C:\Windows\System32\ig7icd64.dll [7840256]
O44 - LFC:[MD5.0B3A4F47AF2D1379AC8881C1F7FF1705] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - User Mode Driver for Intel(R) Graphics Tech.) -- C:\Windows\System32\igd10iumd64.dll [13760512]
O44 - LFC:[MD5.5A919AD17FDCC22F3984BD338D4BEFAA] - 05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - User Mode Driver for Intel(R) Graphics Tech.) -- C:\Windows\System32\igdumdim64.dll [12100096]
O44 - LFC:[MD5.A37986E86B00DF762A20BD02CB5D7397] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\IGFXDEVLib.dll [12288]
O44 - LFC:[MD5.6C0F36ABFE80433B352FA7748ED887BF] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxa64.cpa [2813952]
O44 - LFC:[MD5.2FCCF7939D4D3F392AB3C0F5F40039DD] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxa64.vp [1125]
O44 - LFC:[MD5.B226B85123619EF1394339C1B5EB5A8D] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxc64.vp [43494]
O44 - LFC:[MD5.55C71EDC47B57E5115B40095EEC9E205] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxc64_dev.vp [43816]
O44 - LFC:[MD5.94ED4F871997E5DFC610DC1649C38911] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxg64.vp [43256]
O44 - LFC:[MD5.04590E9E52E13EF34B2AA02C7EA2431B] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxg64_dev.vp [43298]
O44 - LFC:[MD5.3B6EF4F03F2DE75A3B7DDF627A3EC146] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxo64.vp [44025]
O44 - LFC:[MD5.715DBDBED4599E798F94EDF6003F75B6] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxo64_dev.vp [42079]
O44 - LFC:[MD5.C62ADCAB0059CC4DDBBCC8FC00B19DF4] - 05/11/2014 - 22:31:55 ---A- . (...) -- C:\Windows\System32\iglhxs64.vp [2944]
O44 - LFC:[MD5.97CF5D06C4788D414312C2D0B292A239] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Audio Source Filter..) -- C:\Windows\System32\IntelWiDiAudioFilter64.dll [631456]
O44 - LFC:[MD5.D25355116B2C99A93424D0123775D5F7] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Intel AAC.) -- C:\Windows\System32\IntelWiDiAAC64.dll [4009632]
O44 - LFC:[MD5.D20490A241F9B74712882B4284DC3D69] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Intel(R) Graphics Media Accelerator Driver.) -- C:\Windows\System32\igfxCoIn_v3308.dll [180224]
O44 - LFC:[MD5.3A314B5FC33737163CE6C8B8EC913DDC] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Intel(R) OpenCL(TM) Runtime.) -- C:\Windows\System32\IntelOpenCL64.dll [304640]
O44 - LFC:[MD5.77C4BA38F5ACFA2D139F28D56874B32D] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Intel(R) TS Mux / Network Renderer.) -- C:\Windows\System32\IntelWiDiMux64.dll [598688]
O44 - LFC:[MD5.85E67C88D90CE0FF69C547B6A3DE9ABC] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - IntelWiDiDDEAgent.dll COM object..) -- C:\Windows\System32\IntelWiDiDDEAgent64.dll [176288]
O44 - LFC:[MD5.47A061CA692364B1BCB9C8F13C644210] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - IntelWiDiMCUMD.dll.) -- C:\Windows\System32\IntelWiDiMCUMD64.dll [121504]
O44 - LFC:[MD5.C83A678407ECFC8A4025AD153B974EC2] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - IntelWiDiWinNextAgent.dll COM object..) -- C:\Windows\System32\IntelWiDiWinNextAgent64.dll [650400]
O44 - LFC:[MD5.4A269A5778EC8938A4F0D2A9F890DFC2] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Intel® WiDi.) -- C:\Windows\System32\IntelWiDiVAD64.exe [2474712]
O44 - LFC:[MD5.1EA902E73AA05901355A7D2A7097E8E9] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Logging Server.) -- C:\Windows\System32\IntelWiDiLogServer64.dll [93344]
O44 - LFC:[MD5.C61CB2848E34AAEAF15619EF9B8336A1] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - MDF(CM) JIT Dynamic Link Library.) -- C:\Windows\System32\igfxcmjit64.dll [2064896]
O44 - LFC:[MD5.FFE478227D6D7C5D4AA20B2C4CF9590B] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - MDF(CM) Runtime DX11 Dynamic Link Library.) -- C:\Windows\System32\igfx11cmrt64.dll [148992]
O44 - LFC:[MD5.E5E955DEB961DB3BEF2759A14237FC89] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - MDF(CM) Runtime Dynamic Link Library.) -- C:\Windows\System32\igfxcmrt64.dll [158720]
O44 - LFC:[MD5.9E352BE8D314935A0678DE3817717C42] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - MetroIntelGenericUIFramework.) -- C:\Windows\System32\MetroIntelGenericUIFramework.dll [4067328]
O44 - LFC:[MD5.2AA92517A4FF240672723EF68EB50C2A] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Platform Detection Library.) -- C:\Windows\System32\IntelWiDiUtils64.dll [207008]
O44 - LFC:[MD5.33B3819F918A850966B90289799CFDD4] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Secure Video Source Filter..) -- C:\Windows\System32\IntelWiDiSecureSourceFilter64.dll [1423008]
O44 - LFC:[MD5.A974E564CA7A158B8D8607E003DA5003] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Silence Audio Filter..) -- C:\Windows\System32\IntelWiDiSilenceFilter64.dll [344224]
O44 - LFC:[MD5.46D9C9734A4F745EF7206E32F8F63B0B] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - Unified Shader Compiler for Intel(R) Graphi.) -- C:\Windows\System32\igdusc64.dll [4432896]
O44 - LFC:[MD5.B1A17BD25E67603474C0E1EE0AA6A683] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxTMM Module.) -- C:\Windows\System32\igfxTMM.dll [345600]
O44 - LFC:[MD5.CFF4C979AA720C73EC93918D9730B9E9] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [391128]
O44 - LFC:[MD5.FCE82E0B65468062971CDE4EB2D6208A] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxcpl Module.) -- C:\Windows\System32\igfxcpl.cpl [279040]
O44 - LFC:[MD5.D0489E6B97F70D197D7B8DCE4E5AD38E] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll [623104]
O44 - LFC:[MD5.06708008BC8F352A4964DCFE26E6266F] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxdo Module.) -- C:\Windows\System32\igfxdo.dll [243712]
O44 - LFC:[MD5.9C7393A45657BD48E4485C68823CF08C] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxext Module.) -- C:\Windows\System32\igfxexps.dll [29184]
O44 - LFC:[MD5.4409F988E4D23BB7ACE8CF5E71234125] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxext Module.) -- C:\Windows\System32\igfxext.exe [393688]
O44 - LFC:[MD5.BE7AB7BD134541A5B72CFC8DB4561273] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxpph Module.) -- C:\Windows\System32\igfxpph.dll [548864]
O44 - LFC:[MD5.8FAEB4C80CCC09A68EF0FB3A050421ED] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrara.lrc [521728]
O44 - LFC:[MD5.0598C0C1F3A93697771ED0E4F8BF08B8] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrchs.lrc [513024]
O44 - LFC:[MD5.6AEEDFDD6EE5B1D966C0A53EA3543DB1] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrcht.lrc [513536]
O44 - LFC:[MD5.0F83C1634646E5DDF3764F217BEA16D9] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrcsy.lrc [525312]
O44 - LFC:[MD5.7B0805183D34015B09D629E627454311] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrdan.lrc [523776]
O44 - LFC:[MD5.8DD6D8575FE2BF6E98718B55984CF72A] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrdeu.lrc [526336]
O44 - LFC:[MD5.AF5C7C2B20378E8DC6E5C94498C1E9BC] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrell.lrc [527360]
O44 - LFC:[MD5.FA3B5109A8342D47D042C6A20390D63E] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrenu.lrc [371200]
O44 - LFC:[MD5.6F048A12D690A0E868170C3746AA28AD] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxresn.lrc [526848]
O44 - LFC:[MD5.6DCD34CE4435137AA60D07445B3AADE2] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrfin.lrc [524800]
O44 - LFC:[MD5.4B4268972BF703D7515C0B6A3A2690BB] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrfra.lrc [526848]
O44 - LFC:[MD5.1F23282A5289A4D849134BB8B8F5D068] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrheb.lrc [522240]
O44 - LFC:[MD5.F6B852C06E9FF9B6ADDA12AB32122FFA] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrhrv.lrc [525312]
O44 - LFC:[MD5.76F8001897C715B7D0841673F80027D6] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrhun.lrc [525312]
O44 - LFC:[MD5.DD1DE55E46E741A444FBD807B7D40712] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrita.lrc [525824]
O44 - LFC:[MD5.D68ECC6E6DFA0F594AC52058FE85D1FC] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrjpn.lrc [517120]
O44 - LFC:[MD5.5D25506A82D8A59FCF91FE17AF4233C6] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrkor.lrc [516096]
O44 - LFC:[MD5.22E746D725F7D8C36145CF6FB18080B8] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrnld.lrc [526336]
O44 - LFC:[MD5.2FD9D7EB985F0D0544597717D8B1CCA8] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrnor.lrc [523776]
O44 - LFC:[MD5.19049932782D2DCD9BDDBF9E4243DFA6] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrplk.lrc [526848]
O44 - LFC:[MD5.7EB6978C3E5EF217442CCF35680A3BA5] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrptb.lrc [524288]
O44 - LFC:[MD5.A18B2105295AD9E34808F20A982884A2] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrptg.lrc [525312]
O44 - LFC:[MD5.1A7C21BCB4FACA266CE1FA3BEE19C50F] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrrom.lrc [525824]
O44 - LFC:[MD5.7943043A49A5CA4AE011A062DE1939D5] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrrus.lrc [526336]
O44 - LFC:[MD5.6B26C9C22B0F48F8A118C709D0F8AC6C] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrsky.lrc [525824]
O44 - LFC:[MD5.7393BC7CAB31008FBF075AC6D39C9695] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrslv.lrc [524800]
O44 - LFC:[MD5.20F4BEDD143FFC38B7F516B21A3F81AD] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrsve.lrc [524800]
O44 - LFC:[MD5.77907400BF9185527FD98A1B1DF09DA5] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrtha.lrc [523776]
O44 - LFC:[MD5.C21ACE69960F28604F1AB5A84EA6217A] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxres Module.) -- C:\Windows\System32\igfxrtrk.lrc [524288]
O44 - LFC:[MD5.7140322E4A87D67EF8B6CDEB97AFD5CB] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxress Module.) -- C:\Windows\System32\igfxress.dll [9081856]
O44 - LFC:[MD5.CC1AB3BCC18E0A2824B1CAF32734BE32] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.dll [66560]
O44 - LFC:[MD5.9077DFDD0C7BBC8194F5271F4BFCA017] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\System32\igfxsrvc.exe [844760]
O44 - LFC:[MD5.DBBABF5E5D0849E0806B22D71794FEA4] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - iglhcp32 Dynamic Link Library.) -- C:\Windows\System32\iglhcp64.dll [214528]
O44 - LFC:[MD5.D598B3D70E20CB7559A7789BC0E10311] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - iglhsip32 Dynamic Link Library.) -- C:\Windows\System32\iglhsip64.dll [1127424]
O44 - LFC:[MD5.2498449B5CA65A640125164EE0019B14] - 05/11/2014 - 22:31:55 ---A- . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [769496]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/11/2014 - 22:31:55 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\Intel_OpenCL_ICD64.dll [64000]
O44 - LFC:[MD5.E446AA183E6344CF84A98730098D3D46] - 05/11/2014 - 22:31:55 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.DLL [64000]
O44 - LFC:[MD5.894D982CEAB8CD45A56AE2C9988E86C0] - 05/11/2014 - 23:08:58 ---A- . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\Drivers\AsHIDSwitch64.sys [20280]
O44 - LFC:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 05/11/2014 - 23:12:25 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784]
O44 - LFC:[MD5.3166E2388D12BD4050F757644D608F34] - 05/11/2014 - 23:45:46 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6434052.dll [1890080]
O44 - LFC:[MD5.6670FCA907690044166597B2A4AFAD3D] - 05/11/2014 - 23:45:46 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6434052.dll [1539928]
O44 - LFC:[MD5.7CD8E696863B6C526772F85761E24A5F] - 06/11/2014 - 00:08:38 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\29735266.sys [241248]
O44 - LFC:[MD5.4344E81D0E2BB57DD5155B02A1E00401] - 06/11/2014 - 00:08:44 ---A- . (...) -- C:\TDSSKiller.3.0.0.41_06.11.2014_00.08.29_log.txt [1852]
O44 - LFC:[MD5.7CD8E696863B6C526772F85761E24A5F] - 06/11/2014 - 00:22:43 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\89616612.sys [241248]
O44 - LFC:[MD5.3ABB1691C37766059BF960BF569EC026] - 06/11/2014 - 00:22:47 ---A- . (...) -- C:\TDSSKiller.3.0.0.41_06.11.2014_00.22.38_log.txt [1852]
O44 - LFC:[MD5.4E8FDCB9061E1036235630DC4B53B3D6] - 06/11/2014 - 00:44:00 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.443287876B639E465921420B906C32A5] - 06/11/2014 - 01:22:18 R--A- . (...) -- C:\Pre_Scan_06_11_2014_01_22_18.txt [17140]
O44 - LFC:[MD5.95AB761FD4B5363731D7E4E2143959F8] - 06/11/2014 - 01:35:55 R--A- . (...) -- C:\Pre_Scan_06_11_2014_01_35_55.txt [12192]
O44 - LFC:[MD5.7CD8E696863B6C526772F85761E24A5F] - 06/11/2014 - 01:44:33 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\39209365.sys [241248]
O44 - LFC:[MD5.C1C2A4F7F345DCC98F29D9DAB38C4F04] - 06/11/2014 - 01:44:34 ---A- . (...) -- C:\TDSSKiller.3.0.0.41_06.11.2014_01.44.29_log.txt [1852]
O44 - LFC:[MD5.5C3669B71657F22E67A1D4BD49D2CBE7] - 06/11/2014 - 01:46:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O44 - LFC:[MD5.D3311B31C470E7681B14D9B014CBF9ED] - 06/11/2014 - 01:46:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400]
O44 - LFC:[MD5.D1F2D4DF0A5D3B700794E26356A55B44] - 06/11/2014 - 01:46:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [64216]
O44 - LFC:[MD5.CB00A6ADEBF09A782BF0159A594EB8BF] - 06/11/2014 - 04:41:34 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43152]
O44 - LFC:[MD5.6669541A3566F5B2F64A87ACC9B8821F] - 06/11/2014 - 04:41:35 ----- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O44 - LFC:[MD5.001CFE1AE7A6377D70F654305ED10458] - 06/11/2014 - 04:41:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208]
O44 - LFC:[MD5.F8EE2816C555200C5A61ED6FAC729612] - 06/11/2014 - 04:41:35 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [364512]
O44 - LFC:[MD5.7250DFE069F4CB68F736A12F51AC083E] - 06/11/2014 - 04:41:36 ----- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O44 - LFC:[MD5.6FC940A01C53BC874F531349E991F2BC] - 06/11/2014 - 04:41:36 ----- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O44 - LFC:[MD5.60FED5EA7F14315C319E7FFB3679CC24] - 06/11/2014 - 04:41:36 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O44 - LFC:[MD5.5EA98C99B780EE215401658BE5E217CA] - 06/11/2014 - 04:41:36 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632]
O44 - LFC:[MD5.CDE120D6279DD61B341CB871C48E5374] - 06/11/2014 - 04:41:51 ----- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswmonflt.sys [83280]
O44 - LFC:[MD5.56098BE0C735ED563C466CD835937993] - 06/11/2014 - 04:41:51 ----- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys [1050432]
O44 - LFC:[MD5.C7D05663B0AD033FCD96866DD39A5D40] - 06/11/2014 - 05:04:30 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [826972]
O44 - LFC:[MD5.1AF619620613869C07F9C147BC37520F] - 06/11/2014 - 06:30:45 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38048]
O44 - LFC:[MD5.AC14EB294FE2FACAF1F0D944075B9B60] - 06/11/2014 - 06:30:45 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\nvaudcap64v.dll [34976]
O44 - LFC:[MD5.8B952D9F7E5E6452ED3727C2F062E403] - 06/11/2014 - 06:34:54 ---A- . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\System32\nvspcap64.dll [2800296]
O44 - LFC:[MD5.BCCEF57B49802983F55B5628654D60F2] - 06/11/2014 - 06:34:54 ---A- . (.NVIDIA Corporation - NVIDIA GFE - Notification Bridge.) -- C:\Windows\System32\nvspbridge64.dll [1715224]
O44 - LFC:[MD5.7160FC226391C0B50C85571FA1A546E5] - 06/11/2014 - 06:34:57 ---A- . (.Microsoft Corporation - Direct3D 9 Extensions.) -- C:\Windows\System32\D3DX9_43.dll [2401112]
O44 - LFC:[MD5.AD7FA9485059F4DC53C98B49CAB13F0B] - 06/11/2014 - 06:34:58 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx10_43.dll [511328]
O44 - LFC:[MD5.9D6429F410597750B2DC2579B2347303] - 06/11/2014 - 06:34:58 ---A- . (.Microsoft Corporation - Direct3D 10.1 Extensions.) -- C:\Windows\System32\d3dx11_43.dll [276832]
O44 - LFC:[MD5.7026AEEFBFFECB037E439976BA18B0D6] - 07/11/2014 - 03:07:39 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O44 - LFC:[MD5.B5FE95B473992B4BD8DC723F063552D1] - 07/11/2014 - 03:07:46 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O44 - LFC:[MD5.62036E531FFBB16A1D41E036EFFAC42F] - 07/11/2014 - 03:17:22 ---A- . (...) -- C:\Windows\PFRO.log [9920]
O44 - LFC:[MD5.DF290FC4E1116D92F34D8B6410AE544E] - 07/11/2014 - 04:47:39 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124112]
O44 - LFC:[MD5.E35AD6DAECED1213658E0976A16D6266] - 07/11/2014 - 04:47:42 ---A- . (.Microsoft Corporation - PresentationNative_v0300.dll.) -- C:\Windows\System32\PresentationNative_v0300.dll [1166520]
O44 - LFC:[MD5.9F826661FA870EEBD71919E4F8FFE61A] - 07/11/2014 - 04:47:42 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe [35480]
O44 - LFC:[MD5.E2413994FED025DEC54FF481088B3A39] - 07/11/2014 - 04:53:11 ---A- . (...) -- C:\Windows\System32\perfc009.dat [137580]
O44 - LFC:[MD5.B905AB9EA865EC6FC292AFE42AAAAD22] - 07/11/2014 - 04:53:11 ---A- . (...) -- C:\Windows\System32\perfh009.dat [728656]
O44 - LFC:[MD5.C67B30E9165DCF2271534B5559F5D4CD] - 07/11/2014 - 18:18:45 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [3265024]
O44 - LFC:[MD5.464934A7BC20259748600AE36CCCEE21] - 07/11/2014 - 18:18:50 ---A- . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2247168]
O44 - LFC:[MD5.3EC859BCF767DEE0243EFC83CE23431C] - 07/11/2014 - 18:18:50 ---A- . (.Microsoft Corporation - Windows Update client proxy stub 2.) -- C:\Windows\System32\wups2.dll [48128]
O44 - LFC:[MD5.BE3A4E4B6B7D5CB91CA171E832D6700D] - 07/11/2014 - 18:18:50 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [58384]
O44 - LFC:[MD5.AD6163DBCC31B590344540C27A8092B7] - 07/11/2014 - 18:21:52 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2755072]
O44 - LFC:[MD5.9C6164A3E300D91FA624AE299BDD304C] - 07/11/2014 - 18:21:53 ---A- . (.Microsoft Corporation - Microsoft® EDGEHTML Typelib.) -- C:\Windows\System32\edgehtml.tlb [2755072]
O44 - LFC:[MD5.36E32B315828C7AE7CD0DBF722A9DE86] - 07/11/2014 - 18:21:54 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\edgehtml.dll [27500032]
O44 - LFC:[MD5.8EB9967F3CD26A1601F5B7F4A27A8C8C] - 07/11/2014 - 18:21:56 ---A- . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll [25403904]
O44 - LFC:[MD5.B46EE40059777208DF1C427B022B370F] - 07/11/2014 - 18:22:02 ---A- . (.Microsoft Corporation - Full/Desktop Multi-User Win32 Driver.) -- C:\Windows\System32\win32k.sys [92160]
O44 - LFC:[MD5.E0B815920C7863368DEB31E2056ECA5D] - 07/11/2014 - 18:22:02 ---A- . (.Microsoft Corporation - Full/Desktop Win32k Kernel Driver.) -- C:\Windows\System32\win32kfull.sys [3464192]
O44 - LFC:[MD5.01A33075C1078545334DD4F2DCC992E8] - 07/11/2014 - 18:22:03 ---A- . (.Microsoft Corporation - Base Win32k Kernel Driver.) -- C:\Windows\System32\win32kbase.sys [696832]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/11/2014 - 00:00:13 ---A- . (...) -- C:\Windows\setupact.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 08/11/2014 - 00:00:13 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.34218B0900EF441DE7C3A6C56D98A545] - 10/11/2014 - 02:46:43 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [342896]
O44 - LFC:[MD5.C584471AB825CF44AC2D7A3CF096F949] - 10/11/2014 - 02:48:44 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.25BA93AABFC977BC4CD0450B2DE07F8F] - 10/11/2014 - 03:07:50 ---A- . (...) -- C:\Windows\WindowsUpdate.log [134478]
O44 - LFC:[MD5.CD3F50E02B0EE773B5BB7EFD5E051079] - 10/11/2014 - 03:07:51 ---A- . (...) -- C:\Windows\windowsupdate.etl [1966080]
O44 - LFC:[MD5.26C43960C99EE861A5D0EDC4DCF3B1C3] - 10/11/2014 - 04:33:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
O44 - LFC:[MD5.A1965DFC0CD91E7CFC42925F8F597274] - 10/11/2014 - 06:35:49 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [34808]
O44 - LFC:[MD5.9500396143650773FCFE24411254D32C] - 27/10/2014 - 01:34:52 ---A- . (...) -- C:\Windows\System32\nvcoproc.bin [4066553]
O44 - LFC:[MD5.7A7EFE6A57EEA38A514ADF25C025BD2E] - 30/10/2014 - 03:10:33 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll [385352]
O44 - LFC:[MD5.2C0F7578E90247491BF02F88E0810581] - 30/10/2014 - 03:10:34 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll [61640]
O44 - LFC:[MD5.4546FE9407C8C3C66D1AA5CB6083A14D] - 30/10/2014 - 03:10:34 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.6.) -- C:\Windows\System32\nvsvcr.dll [2558792]
O44 - LFC:[MD5.FD317B3186017E8CC91DF7695768A700] - 30/10/2014 - 03:10:34 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.6.) -- C:\Windows\System32\nvvsvc.exe [935232]
O44 - LFC:[MD5.17AE0CB886C7396DACFB767FBCAAE971] - 30/10/2014 - 03:10:34 ---A- . (.NVIDIA Corporation - NVIDIA French language resource library.) -- C:\Windows\System32\nv3dappshextr.dll [67072]
O44 - LFC:[MD5.5E7164DEEB2BBE78A1B81AB26909DBB9] - 30/10/2014 - 03:10:34 ---A- . (.NVIDIA Corporation - NVIDIA Shell Extensions.) -- C:\Windows\System32\nv3dappshext.dll [1090704]
O44 - LFC:[MD5.A92FA81877C85F8535A1A9AEFBFAC3C5] - 30/10/2014 - 03:10:36 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll [6880968]
O44 - LFC:[MD5.86FC032D3CE891F19EADD4996D14DC67] - 30/10/2014 - 03:10:36 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.6.) -- C:\Windows\System32\nvsvc64.dll [3533632]
O44 - LFC:[MD5.C8FD8C7DD6B049EA57E8A75D6BAF051C] - 30/10/2014 - 05:53:26 ---A- . (...) -- C:\Windows\System32\nvinfo.pb [27024]
O44 - LFC:[MD5.4F42CD56CD01ED02A2B6D3EE26BA1D3A] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - Display Driver Coinstaller.) -- C:\Windows\System32\nvdispco6434460.dll [1876296]
O44 - LFC:[MD5.4F7250EC49C0AF58FC7FBA736987A57F] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - Generic Coinstaller.) -- C:\Windows\System32\nvdispgenco6434460.dll [1539272]
O44 - LFC:[MD5.94A11006161563CC299F0C60AAF76BB4] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA CUDA 6.5.21 OpenCL 1.1 Driver, Versi.) -- C:\Windows\System32\nvopencl.dll [14029400]
O44 - LFC:[MD5.04647AC67489022D56107426CEFCB76F] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Driver, Version 344.60.) -- C:\Windows\System32\nvcuda.dll [13942368]
O44 - LFC:[MD5.FC47E2C9311749C4576150D74D549700] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA CUDA Video Decode API, Version 344.6.) -- C:\Windows\System32\nvcuvid.dll [4289856]
O44 - LFC:[MD5.8DE3A06CE8C62E1313F67FCA8C98F969] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Compatible OpenGL ICD.) -- C:\Windows\System32\nvoglv64.dll [31890064]
O44 - LFC:[MD5.114D8108F647E75F7D4AADCDB6A406FF] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Compiler, Version 344.60.) -- C:\Windows\System32\nvcompiler.dll [20922696]
O44 - LFC:[MD5.816A6D192215EA420FBE41EFB15C74A5] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA D3D Shim Driver, Version 344.60.) -- C:\Windows\System32\nvumdshimx.dll [987008]
O44 - LFC:[MD5.2171A30632DBC8ED95358176BF404837] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA D3D10 Driver, Version 344.60.) -- C:\Windows\System32\nvwgf2umx.dll [20966504]
O44 - LFC:[MD5.375754D70D5525F82C8788B3B9F3759A] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Front Buffer Capture Library, Versio.) -- C:\Windows\System32\NvFBC64.dll [932168]
O44 - LFC:[MD5.0F1C506CFF6186D32E40611A11D92D2A] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA In-band Frame Rendering Library, Ver.) -- C:\Windows\System32\NvIFR64.dll [961224]
O44 - LFC:[MD5.ADEBD2BE1751F489E2E7560248C4AB1F] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA NVAPI Library, Version 344.60.) -- C:\Windows\System32\nvapi64.dll [3237528]
O44 - LFC:[MD5.D0DC1F7FDE4620C93522ED18CB34A713] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA OpenGL Shim Driver, Version 344.60.) -- C:\Windows\System32\nvoglshim64.dll [352016]
O44 - LFC:[MD5.032CD58AC634D8B43D34D9C2C046C21D] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA WDDM D3D Driver, Version 344.60.) -- C:\Windows\System32\nvd3dumx.dll [19966856]
O44 - LFC:[MD5.5CE6B69D4E1BE1B4D95F86A439A82787] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [13189832]
O44 - LFC:[MD5.056C21FC6B74F298130E5EE864DEBC86] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\Drivers\nvpciflt.sys [31560]
O44 - LFC:[MD5.DFCA658A1C7FC43997EEE5EAD8349CEC] - 30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 344.) -- C:\Windows\System32\nvinitx.dll [174856]
~ Files: 216 Scanned in 00mn 16s

---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.DC0DD0AD5C319A2184CF032A07532BBD] - 10/11/2014 - 03:32:54 ---A- - C:\Windows\Prefetch\QBITTORRENT.EXE-8A9223F5.pf =>P2P.BitTorrent
~ Prefetcher: 1 Scanned in 00mn 00s

---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Windows Security Configuration Editor Client Engine.) -- C:\Windows\System32\scecli.dll
~ LSA: 3 Scanned in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\20842881.sys . (...) -- C:\Windows\System32\Drivers\20842881.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\52967588.sys . (...) -- C:\Windows\System32\Drivers\52967588.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\69537384.sys . (...) -- C:\Windows\System32\Drivers\69537384.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\20842881.sys . (...) -- C:\Windows\System32\Drivers\20842881.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\52967588.sys . (...) -- C:\Windows\System32\Drivers\52967588.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\69537384.sys . (...) -- C:\Windows\System32\Drivers\69537384.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Serial Mouse Filter Driver.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 23 Scanned in 00mn 00s

---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s

---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s

---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ MWPS: 19 Scanned in 00mn 00s

---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=0
~ MWPE Keys: 3 Scanned in 00mn 00s

---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:06/11/2014 - 00:08:38 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\29735266.sys [241248]
O58 - SDL:06/11/2014 - 01:44:33 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\39209365.sys [241248]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [109008]
O58 - SDL:06/11/2014 - 00:22:43 ---A- . (.Kaspersky Lab, Yury Parshin - Kaspersky Lab Mini Driver.) -- C:\Windows\System32\Drivers\89616612.sys [241248]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782288]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79824]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259536]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [26064]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114128]
O58 - SDL:05/11/2014 - 23:08:58 ---A- . (.ASUS - HID driver for ASUS Wireless Radio Control.) -- C:\Windows\System32\Drivers\AsHIDSwitch64.sys [20280]
O58 - SDL:06/11/2014 - 04:41:35 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208] =>.ALWIL Software
O58 - SDL:07/11/2014 - 03:07:46 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [28184]
O58 - SDL:06/11/2014 - 04:41:51 ----- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswmonflt.sys [83280]
O58 - SDL:07/11/2014 - 03:07:39 ---A- . (.AVAST Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdisFlt.sys [449936]
O58 - SDL:06/11/2014 - 04:41:35 ----- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93568]
O58 - SDL:06/11/2014 - 04:41:36 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776] =>.ALWIL Software
O58 - SDL:06/11/2014 - 04:41:51 ----- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys [1050432]
O58 - SDL:06/11/2014 - 04:41:36 ----- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [436624]
O58 - SDL:06/11/2014 - 04:41:36 ----- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [116728]
O58 - SDL:06/11/2014 - 04:41:36 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [267632] =>.ALWIL Software
O58 - SDL:13/09/2014 - 08:20:01 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:13/09/2014 - 08:20:02 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531408]
O58 - SDL:13/09/2014 - 08:20:02 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357136]
O58 - SDL:05/11/2014 - 23:12:25 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64464]
O58 - SDL:13/09/2014 - 08:20:02 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:13/09/2014 - 08:20:02 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412112]
O58 - SDL:05/11/2014 - 22:31:54 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4177920]
O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\intelaud.sys [39320]
O58 - SDL:22/08/2013 - 23:51:12 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\iwdbus.sys [26008]
O58 - SDL:13/09/2014 - 08:20:01 ---A- . (.Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controlle.) -- C:\Windows\System32\Drivers\L1C63x64.sys [129224]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109520]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [95184]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81872]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82896]
O58 - SDL:01/10/2014 - 11:11:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]
O58 - SDL:01/10/2014 - 11:11:16 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [93400]
O58 - SDL:10/11/2014 - 04:33:22 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [129752]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [59856]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575952]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63952]
O58 - SDL:01/10/2014 - 11:11:30 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [64216]
O58 - SDL:13/09/2014 - 08:20:55 ---A- . (...) -- C:\Windows\System32\Drivers\NetAdapterCx.sys [47104]
O58 - SDL:30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 344.60.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [13189832]
O58 - SDL:30/10/2014 - 05:53:26 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 344.60.) -- C:\Windows\System32\Drivers\nvpciflt.sys [31560]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150480]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166352]
O58 - SDL:04/09/2014 - 20:14:38 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [38048]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas2i.sys [56784]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas3i.sys [57808]
O58 - SDL:13/09/2014 - 08:20:02 ---A- . (.Realtek Semiconductor Corporation - Realtek PCIE NDIS Driver 30382.) -- C:\Windows\System32\Drivers\rtwlane.sys [3558104]
O58 - SDL:13/09/2014 - 08:26:03 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [45008]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81872]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31184]
O58 - SDL:10/11/2014 - 06:35:49 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [34808]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [166864]
O58 - SDL:13/09/2014 - 08:20:00 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305616]
O58 - SDL:06/11/2014 - 00:26:40 ---A- . (...) -- C:\Windows\SysWOW64\drivers\ewhbkk.sys [61440]
~ Drivers: 61 Scanned in 00mn 06s

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 03/11/2014 - 08:28:36 ---A- . (...) -- C:\Users\SworD\AppData\Local\NVIDIA\NvBackend\UMDShim\nvcoproc.bin [4099264]
O61 - LFC: 05/11/2014 - 08:28:35 ---A- . (...) -- C:\Users\SworD\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin [382857]
O61 - LFC: 05/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Téléchargements\bitdefender internet security 2015 [MrPrince].exe [476996704]
O61 - LFC: 05/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Downloads\01net_bitdefender_isecurity.exe [7033584]
O61 - LFC: 05/11/2014 - 08:28:45 ---A- . (.Akeo Consulting (http://akeo.ie).) -- C:\Users\SworD\Downloads\rufus-1.4.11.exe [639400]
O61 - LFC: 06/11/2014 - 08:28:36 ---A- . (...) -- C:\Users\SworD\AppData\Local\NVIDIA\NvBackend\Packages\0000672b\CoProc update.19024411.exe [426960]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a04272\HTMLayout.dll [3169672]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a04272\Instup.dll [7597696]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a04272\New\aswOfferTool.exe [3441688]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a04272\avBugReport.exe [1660240]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a04272\instup.exe [204904]
O61 - LFC: 06/11/2014 - 08:28:42 ---A- . (.Maxthon International ltd..) -- C:\Users\SworD\AppData\Local\Temp\mx_offline\mx_setup.exe [41274608]
O61 - LFC: 06/11/2014 - 08:28:43 ---A- . (...) -- C:\Users\SworD\AppData\Roaming\Rainmeter\Addons\RainRGB\RainRGB.exe [966269]
O61 - LFC: 06/11/2014 - 08:28:43 ---A- . (...) -- C:\Users\SworD\Desktop\Pre_Scan.exe [2484736]
O61 - LFC: 06/11/2014 - 08:28:43 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Background\Config.exe [787965]
O61 - LFC: 06/11/2014 - 08:28:43 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\ColorChanger.exe [786961]
O61 - LFC: 06/11/2014 - 08:28:43 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Config\config.exe [800207]
O61 - LFC: 06/11/2014 - 08:28:43 --H-- . (...) -- C:\Users\SworD\AppData\Roaming\Rainmeter\Rainmeter.exe [4608]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\MultiManager\MultiManager.exe [722275]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\OmnimoApp.exe [738523]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\PanelCreator\PanelCreator.exe [1051479]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Settings\Omnimo.exe [777427]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Settings\settings.exe [735333]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Settings\sqlite3.dll [620718]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Settings\uninstall.exe [626825]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Common\Size\size.exe [672089]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Graphics\Panels\Network\ipconfig.bat [106]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Graphics\Panels\Snake\SnakeGame.exe [721553]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\@Resources\Graphics\Panels\Zune\ZuneNowPlayinge.exe [61952]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\@Backup\WP7\Panels\Network\ipconfig.bat [106]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Background\Config.exe [787965]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\ColorChanger.exe [786961]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Config\config.exe [800207]
O61 - LFC: 06/11/2014 - 08:28:44 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\MultiManager\MultiManager.exe [722275]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\PanelCreator\PanelCreator.exe [1051479]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\Omnimo.exe [777427]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\settings.exe [735333]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\sqlite3.dll [620718]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Settings\uninstall.exe [626825]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Common\Size\size.exe [672089]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Graphics\Panels\Network\ipconfig.bat [106]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Graphics\Panels\Snake\SnakeGame.exe [721553]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\@Resources\Graphics\Panels\Zune\ZuneNowPlayinge.exe [61952]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\InstalledPanels\miniCMD\miniShell.exe [729287]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Rainmeter\Skins\WP7\Panels\Network\ipconfig.bat [106]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Téléchargements\Avast Endpoint Protection Suite v8.0.1603 + License 28.06.2016\setup_av_eps.exe [171734344]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Documents\Téléchargements\BPM-Setup.exe [1928229]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Downloads\Load_tdsskiller.exe [845916]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (...) -- C:\Users\SworD\Downloads\Unlocker1.9.2 [1].exe [402911]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (.AVAST Software.) -- C:\Users\SworD\Documents\Téléchargements\Avast Internet Security v.2015.10.0.0.2206 Incl License 2017\avast_internet_security_setup.exe [182803088]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (.AVG Technologies.) -- C:\Users\SworD\Documents\Téléchargements\AVG Internet Security 2015 Build 5557 (32Bit) + Serial\avg_isct_x86_all_2015_5557a8402.exe [167687120]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (.Kaspersky Lab ZAO.) -- C:\Users\SworD\Downloads\tdsskiller.exe [4184008]
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (.Nicolas Coolman.) -- C:\Users\SworD\Downloads\ZHPDiag2.exe [6864607] =>.Nicolas Coolman
O61 - LFC: 06/11/2014 - 08:28:45 ---A- . (.diakov.net.) -- C:\Users\SworD\Documents\Téléchargements\DFX Audio Enhancer 11.302\DFXAudioEnhancer-11.302.exe [6208404]
O61 - LFC: 07/11/2014 - 08:28:36 ---A- . (.NVIDIA Corporation.) -- C:\Users\SworD\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [172984]
O61 - LFC: 07/11/2014 - 08:28:36 ---A- . (.NVIDIA Corporation.) -- C:\Users\SworD\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1374648]
O61 - LFC: 07/11/2014 - 08:28:41 ---A- . (.Microsoft Corporation.) -- C:\Users\SworD\AppData\Local\Temp\dotnetfx35setup.exe [2959376]
O61 - LFC: 07/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a07560\HTMLayout.dll [3169672]
O61 - LFC: 07/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a07560\Instup.dll [7597696]
O61 - LFC: 07/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a07560\aswOfferTool.exe [3441688]
O61 - LFC: 07/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a07560\avBugReport.exe [1660240]
O61 - LFC: 07/11/2014 - 08:28:42 ---A- . (.AVAST Software.) -- C:\Users\SworD\AppData\Local\Temp\_av_iup.tm~a07560\instup.exe [204904]
O61 - LFC: 08/11/2014 - 08:28:36 ---A- . (...) -- C:\Users\SworD\AppData\Local\NVIDIA\NvBackend\Packages\0000676c\DAO.19039144.exe [4130848]
O61 - LFC: 10/11/2014 - 08:28:35 ---A- . (...) -- C:\Users\SworD\AppData\Local\Microsoft\Windows\INetCache\IE\UHJO4AX3\urlblockindex[1].bin [16]
O61 - LFC: 10/11/2014 - 08:28:35 ---A- . (...) -- C:\Users\SworD\AppData\Local\Microsoft\Windows\INetCache\IE\XDR5S0FJ\urlblocklist[1].bin [0]
O61 - LFC: 10/11/2014 - 08:28:42 ---A- . (...) -- C:\Users\SworD\AppData\Local\Temp\RogueKiller.exe [14670424]
O61 - LFC: 10/11/2014 - 08:28:43 ---A- . (.Igor Pavlov.) -- C:\Users\SworD\AppData\Roaming\Maxthon3\Temp\MxUp\7z.dll [679296]
O61 - LFC: 10/11/2014 - 08:28:45 ---A- . (.Nicolas Coolman.) -- C:\Users\SworD\Downloads\ZHPDiag2 (1).exe [6863359] =>.Nicolas Coolman
~ 2460 Fichiers temporaires (Temporary files)
~ Files: 68 Scanned in 00mn 10s

---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s

---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Event Viewer Snapin Launcher.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Registry Editor.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Maxthon International ltd. - Maxthon Cloud Browser.) -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
~ FASS Keys: 11 Scanned in 00mn 00s

---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Maxthon International ltd. - Maxthon Cloud Browser.) -- C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
~ Keys: Scanned in 00mn 00s

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s

---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - Windows Device Managent Enrollment Service DLL.) -- C:\Windows\System32\Windows.DeviceManagement.Enrollment.dll [276480]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [173056]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Microsoft Smartcard Certificate Propagation Service.) -- C:\Windows\System32\certprop.dll [173056]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - Server Service DLL.) -- C:\Windows\System32\srvsvc.dll [294400]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Group Policy Client.) -- C:\Windows\System32\gpsvc.dll [1322496]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - IKE extension.) -- C:\Windows\System32\ikeext.dll [1051648]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service that offers IPv6 connectivity over an IPv4 network..) -- C:\Windows\System32\iphlpsvc.dll [921088]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - Secondary Logon Service DLL.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Application Information Service.) -- C:\Windows\System32\appinfo.dll [72704]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - iSCSI Discovery service.) -- C:\Windows\System32\iscsiexe.dll [150016]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Microsoft EAPHost service.) -- C:\Windows\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Task Scheduler Service.) -- C:\Windows\System32\schedsvc.dll [1282560]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [224768]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\Windows\System32\browser.dll [131584]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [278528]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Remote Desktop Configuration service.) -- C:\Windows\System32\sessenv.dll [339456]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Problem Reports and Solutions.) -- C:\Windows\System32\wercplsupport.dll [81920]
O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [135168]
O83 - Search Svchost Services: DiagTrack (DiagTrack) . (.Microsoft Corporation - Microsoft Windows Diagnostics Tracking.) -- C:\Windows\System32\diagtrack.dll [979456]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Microsoft Network Connectivity Assistant Service.) -- C:\Windows\System32\ncasvc.dll [164864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\Windows\System32\rasauto.dll [104448]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\Windows\System32\rasmans.dll [680448]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\Windows\System32\mprdim.dll [495104]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\Windows\System32\sens.dll [71168]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Microsoft NAT Helper Components.) -- C:\Windows\System32\ipnathlp.dll [452096]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Microsoft® Windows(TM) Telephony Server.) -- C:\Windows\System32\tapisrv.dll [311808]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [2247168]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Background Intelligent Transfer Service.) -- C:\Windows\System32\qmgr.dll [942080]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Windows Shell Services Dll.) -- C:\Windows\System32\shsvcs.dll [591360]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Geolocation Service.) -- C:\Windows\System32\lfsvc.dll [12288]
O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RetailDemoService.) -- C:\Windows\System32\RetailDemoService.dll [122368]
O83 - Search Svchost Services: dmwappushsvc (dmwappushsvc) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [11264]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - BDE Service.) -- C:\Windows\System32\bdesvc.dll [351744]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Device Setup Manager.) -- C:\Windows\System32\DeviceSetupManager.dll [202752]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Windows Shell Theme Service Dll.) -- C:\Windows\System32\themeservice.dll [58880]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Microsoft® Account Service.) -- C:\Windows\System32\wlidsvc.dll [1449984]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Software installation Service.) -- C:\Windows\System32\appmgmts.dll [198144]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll [92624]
~ Services: 38 Scanned in 00mn 01s

---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.5431BE8BA09DE9C2F42F23223E3152A6] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415225793.292.bin [188]
[MD5.3252A0B8A25CA1A5C2693A5AFC9A68CF] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415225793.4180.bin [94263]
[MD5.9323185E5BA82D72F9C95E409A737138] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415225793.5540.bin [462]
[MD5.66D1090A4353C181194254BAF145251C] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415226221.2264.bin [189]
[MD5.C75FF8DC328CCD9F1621ED62E090B076] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415226221.4180.bin [96252]
[MD5.57F712D7824CEFAD9A9C2C3AF4818AE2] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415226221.6668.bin [462]
[MD5.62E1020BDA954AC2D4FC9ABE1B5C6314] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227285.5824.bin [65185]
[MD5.47E8C7BBF19763F9E1959D90D61F2E56] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227524.3092.bin [189]
[MD5.96D27840CBA3735EF921B776BDC5506E] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227524.3300.bin [462]
[MD5.D866CF14F82B19F70B7F91B0931AF49D] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227524.476.bin [96417]
[MD5.892C0E22B01C0583DE7A287464793476] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227680.1928.bin [189]
[MD5.CA8700902377FFDF00271D8194129752] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227680.2344.bin [96418]
[MD5.09223DDEC2301712A115054DA2B2AD65] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415227680.3020.bin [462]
[MD5.1966531117B5B74C4EE13EE56F691F68] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228162.2280.bin [96418]
[MD5.B363053CBB1A170BE54335F95C01AEA9] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228162.2396.bin [189]
[MD5.0294242D9DE4A79344C002578FAC45CB] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228162.2532.bin [462]
[MD5.D1D1D77CD29EF21EF5B6E7E7174698CD] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228375.1812.bin [462]
[MD5.667B5D29CBBD7CF30F4942F6698A4EB4] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228375.1984.bin [96418]
[MD5.58B14611FE79207BBEB94152C0A7F446] [SPRF][05/11/2014] (...) -- C:\ProgramData\1415228375.2904.bin [189]
[MD5.7C965DA496FFD08476C4D91618BD027A] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228404.3596.bin [96418]
[MD5.EDB611D2D82E32548B44EF99FFEE2D8D] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228404.4268.bin [462]
[MD5.4646F7F711E7FDF5516BB3F7069F4018] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228404.4272.bin [189]
[MD5.D33EF325F9DF8EB3DBA04A7FFD840285] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228536.3088.bin [189]
[MD5.DA1E627C65A6AB42CD8B647E5D30C812] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228536.4716.bin [96674]
[MD5.4AB3305A993243653096A249FE5FFD9B] [SPRF][06/11/2014] (...) -- C:\ProgramData\1415228536.4776.bin [462]
[MD5.595BC7AD8D93DE830A95534BB5B7555C] [SPRF][06/11/2014] (.Pas de propriétaire - Pre_Scan.) -- C:\Users\SworD\Desktop\Pre_Scan.exe [2484736]
~ Files: 26 Scanned in 00mn 00s

---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 05/11/2014 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 13/09/2014 38392 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 06/11/2014 50344 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 07/11/2014 104416 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Demand 06/11/2014 4012248 | (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - | Auto 04/10/2014 1148744 | (GfExperienceService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
SR - | Auto 01/10/2014 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Malwarebytes Anti-Malware\mbamscheduler.exe
SR - | Auto 01/10/2014 968504 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Malwarebytes Anti-Malware\mbamservice.exe
SR - | Auto 04/10/2014 1795912 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
SR - | Auto 04/10/2014 19439944 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
SR - | Auto 30/10/2014 935232 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
~ Services: Scanned in 00mn 12s

---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by SworD at 10/11/2014 08:29:32
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s

---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by SworD at 10/11/2014 08:29:34
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s

---\\ Scan Additionnel (O88)
Database Version : 13026 - (09/11/2014)
Clés trouvées (Keys found) : 1
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 1

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\qBittorrent] =>P2P.BitTorrent^
C:\Program Files (x86)\qBittorrent =>P2P.BitTorrent^
C:\Users\SworD\AppData\Roaming\qBittorrent =>P2P.BitTorrent^
C:\Users\SworD\AppData\Local\qBittorrent =>P2P.BitTorrent^
C:\Program Files (x86)\qBittorrent\qbittorrent.exe =>P2P.BitTorrent^
~ Additionnel Scan: 159008 Items scanned in 00mn 31s

---\\ Informations complémentaires sur les modules
~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)
~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)
~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)
~ AMI: 3 Scanned in 00mn 00s

End of the scan (1105 lines in 02mn 40s)(0)

Signaler le contenu de ce document