Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 16-09-28.01 - lfs ultra finalis 06/10/2016 10:44:02.1.2 - x86
Microsoft Windows 7 Édition Starter 6.1.7600.0.1252.33.1036.18.1013.257 [GMT 2:00]
Lancé depuis: c:\users\lfs ultra finalis\Desktop\ComboFix.exe
AV: Ad-Aware Antivirus *Disabled/Updated* {B0CC18C6-E527-6EE6-874C-9D19920E5619}
FW: Ad-Aware Firewall *Disabled* {88F799E3-AF48-6FBE-AC13-342C6CDD1162}
FW: COMODO Firewall *Disabled* {E8F7F446-E1BD-DFE6-38D1-54E0ADE01D89}
SP: Ad-Aware Antivirus *Disabled/Updated* {0BADF922-C31D-6168-BDFC-A66BE9891CA4}
SP: Comodo Defense+ *Enabled/Updated* {6BAD9487-8DE8-D130-293E-C6A728B4104F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2016-09-06 au 2016-10-06 ))))))))))))))))))))))))))))))))))))
.
.
2016-10-06 09:08 . 2016-10-06 09:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-10-06 07:19 . 2016-10-06 08:01 3412 ----a-w- c:\windows\system32\drivers\fvstore.dat
2016-10-06 07:04 . 2016-10-06 08:01 -------- d-----w- C:\Pre_Scan
2016-10-06 06:22 . 2016-10-06 06:22 25386 ----a-w- C:\Look_my_hardware.tmp
2016-10-06 06:07 . 2016-10-06 06:23 -------- d-----w- C:\QuickDiag
2016-10-06 05:05 . 2016-10-06 05:05 -------- d-----w- c:\program files\Macrorit
2016-10-06 04:18 . 2016-10-06 04:23 170200 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-10-06 04:17 . 2016-03-10 12:09 53120 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-10-06 04:17 . 2016-03-10 12:09 123264 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-10-06 04:17 . 2016-03-10 12:08 24448 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-10-06 04:17 . 2016-10-06 04:17 -------- d-----w- c:\programdata\Malwarebytes
2016-10-06 04:15 . 2016-10-06 04:15 -------- d-----w- c:\program files\Astroburn Lite
2016-10-06 04:15 . 2016-10-06 04:15 -------- d-----w- c:\programdata\Astroburn Lite
2016-10-06 04:11 . 2016-10-06 04:11 -------- d-----w- C:\VTRoot
2016-10-05 14:13 . 2016-10-05 14:13 -------- d-----w- c:\windows\system32\DAX2
2016-10-05 14:10 . 2016-10-05 14:11 -------- d-----w- c:\windows\system32\RTCOM
2016-10-05 13:50 . 2015-12-14 21:33 4486133 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2016-10-05 13:49 . 2015-12-14 21:33 2899224 ----a-w- c:\windows\system32\FMAPO.dll
2016-10-05 13:48 . 2015-12-14 21:33 96608 ----a-w- c:\windows\system32\audioLibVc.dll
2016-10-05 13:48 . 2015-12-14 21:33 105656 ----a-w- c:\windows\system32\AERTARen.dll
2016-10-05 13:48 . 2015-12-14 21:33 532896 ----a-w- c:\windows\system32\AERTACap.dll
2016-10-05 13:48 . 2015-12-14 21:33 197448 ----a-w- c:\windows\system32\AcpiServiceVnA.dll
2016-10-04 10:15 . 2016-10-04 10:15 -------- d-----w- c:\programdata\NCH Software
2016-10-04 09:52 . 2016-10-04 09:52 19610304 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2016-10-04 08:56 . 2016-10-04 09:55 796352 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2016-10-04 08:56 . 2016-10-04 09:55 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2016-10-04 08:11 . 2016-10-04 08:11 -------- d-----w- c:\programdata\MAGIX
2016-10-04 07:58 . 2016-10-04 08:11 -------- d-----w- c:\programdata\simplitec
2016-10-04 07:58 . 2016-06-03 15:16 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll
2016-10-04 07:58 . 2016-10-04 07:58 -------- d-----w- c:\program files\simplitec
2016-10-04 02:18 . 2016-10-04 02:18 -------- d-----w- c:\programdata\Reason
2016-10-04 01:19 . 2016-10-04 01:19 -------- d-----w- c:\windows\CheckSur
2016-10-04 01:06 . 2016-10-04 01:06 -------- d-----w- c:\windows\system32\SPReview
2016-10-03 01:02 . 2016-10-03 01:02 -------- d-----w- c:\windows\system32\EventProviders
2016-10-02 11:51 . 2016-10-02 11:51 -------- d-----w- c:\programdata\HitmanPro
2016-10-02 04:53 . 2016-10-02 04:53 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2016-10-02 04:53 . 2016-10-02 04:53 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2016-10-02 04:53 . 2016-10-02 04:53 297808 ----a-w- c:\windows\system32\mscoree.dll
2016-10-02 04:53 . 2016-10-02 04:53 49472 ----a-w- c:\windows\system32\netfxperf.dll
2016-10-02 04:53 . 2016-10-02 04:53 1130824 ----a-w- c:\windows\system32\dfshim.dll
2016-10-01 07:45 . 2016-10-01 07:46 -------- d-----w- c:\program files\Common Files\COMODO
2016-10-01 03:31 . 2016-08-10 22:13 142344 ----a-w- c:\windows\system32\drivers\KeyCrypt32.sys
2016-10-01 03:31 . 2016-10-05 08:53 -------- d-----w- c:\program files\KeyCryptSDK
2016-10-01 03:31 . 2016-10-05 15:42 -------- d-----w- c:\program files\Zemana AntiLogger
2016-09-30 05:03 . 2016-09-30 05:06 -------- d-----w- C:\Aomei
2016-09-30 04:49 . 2016-09-30 04:49 -------- d-----w- c:\programdata\AomeiBR
2016-09-30 04:05 . 2016-09-30 04:07 -------- d-----w- c:\program files\COMODO
2016-09-30 04:02 . 2016-09-30 04:05 -------- d-----w- c:\programdata\Comodo
2016-09-30 04:02 . 2016-09-30 04:02 -------- d-----w- c:\programdata\Shared Space
2016-09-30 03:55 . 2016-10-05 09:21 -------- d-----w- c:\programdata\Glarysoft
2016-09-30 03:29 . 2016-09-30 03:29 -------- d-----w- C:\Local Disk D_9302016529
2016-09-30 03:19 . 2016-08-26 15:46 2928320 ----a-w- c:\windows\system32\BootMan.exe
2016-09-30 03:19 . 2016-07-11 08:01 88160 ----a-w- c:\windows\system32\setupempdrv03.exe
2016-09-30 03:19 . 2016-07-11 08:01 10208 ----a-w- c:\windows\system32\EuGdiDrv.sys
2016-09-30 03:19 . 2016-01-14 08:05 21496 ----a-w- c:\windows\system32\epmntdrv.sys
2016-09-30 03:19 . 2014-11-18 12:46 21088 ----a-w- c:\windows\system32\EuEpmGdi.dll
2016-09-30 02:59 . 2016-09-09 13:14 30480 ----a-w- c:\windows\system32\CLMirrorDriver.dll
2016-09-30 02:59 . 2016-09-09 13:14 21264 ----a-w- c:\windows\system32\drivers\CLMirrorDriver.sys
2016-09-30 02:59 . 2016-09-30 02:59 -------- d-----w- c:\program files\Common Files\NewBlue
2016-09-30 02:59 . 2016-09-30 02:59 -------- d-----w- c:\program files\NewBlue
2016-09-30 02:52 . 2016-09-30 03:00 -------- d-----w- c:\program files\NSIS Uninstall Information
2016-09-30 02:52 . 2016-09-30 02:52 -------- d-----w- c:\users\Public\Cyberlink
2016-09-30 02:50 . 2016-09-30 02:55 -------- d-----w- c:\program files\CyberLink
2016-09-30 02:50 . 2016-09-30 02:55 -------- d-----w- c:\programdata\install_backup
2016-09-30 02:49 . 2016-10-04 07:57 -------- d-----w- c:\programdata\Package Cache
2016-09-30 02:47 . 2016-09-30 03:08 -------- d-----w- c:\programdata\SUPPORTDIR
2016-09-30 02:47 . 2016-09-30 02:59 -------- d-----w- c:\programdata\install_clap
2016-09-30 02:47 . 2016-09-30 02:53 -------- d-----w- c:\programdata\CLSK
2016-09-30 01:05 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2016-09-30 01:03 . 2010-12-18 05:29 541184 ----a-w- c:\windows\system32\kerberos.dll
2016-09-30 01:03 . 2014-09-15 00:42 2377216 ----a-w- c:\windows\system32\win32k.sys
2016-09-30 01:03 . 2016-06-25 15:43 301056 ----a-w- c:\windows\system32\EOSNotify.exe
2016-09-30 01:03 . 2015-03-19 02:57 3908024 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-09-30 01:03 . 2015-03-19 02:57 3963320 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-09-30 01:03 . 2013-03-19 04:54 38912 ----a-w- c:\windows\system32\csrsrv.dll
2016-09-30 01:03 . 2013-03-19 02:50 69632 ----a-w- c:\windows\system32\smss.exe
2016-09-29 14:09 . 2016-10-01 03:46 -------- d-----w- c:\programdata\Wondershare
2016-09-29 12:47 . 2016-09-29 12:47 -------- d-----w- c:\programdata\Wondershare Video Editor
2016-09-29 12:25 . 2016-10-06 05:35 -------- d-----w- C:\UsbFix
2016-09-29 12:25 . 2016-09-29 12:25 -------- d-----w- c:\program files\Folder Marker
2016-09-29 12:18 . 2016-09-29 12:18 -------- d-----w- c:\windows\Migration
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\FileMarker.NET
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\IM-Magic
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\Unlocker
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\SFR
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\HitmanPro.Alert
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\Common Files\Wondershare
2016-09-29 12:14 . 2016-09-29 12:25 -------- d-----w- c:\program files\NCH Software
2016-09-29 12:13 . 2016-10-05 15:42 -------- d-----w- c:\program files\Glarysoft
2016-09-29 12:13 . 2016-09-29 12:19 -------- d-----w- c:\program files\Reason
2016-09-29 12:11 . 2016-09-29 12:11 -------- d-----w- c:\program files\Auslogics
2016-09-29 10:17 . 2016-09-29 10:17 -------- d-----w- c:\program files\IObit
2016-09-29 07:26 . 2016-09-30 02:48 -------- d-----w- c:\programdata\CyberLink
2016-09-29 07:20 . 2016-09-29 12:25 -------- d-----w- c:\program files\Wondershare
2016-09-29 06:26 . 2016-09-29 06:26 -------- d-----w- c:\program files\Rebit
2016-09-29 06:24 . 2016-09-29 10:25 -------- d-----w- c:\programdata\Rebit
2016-09-29 06:19 . 2016-09-29 10:24 -------- d-----w- c:\program files\Rebit 5
2016-09-29 06:16 . 2016-09-29 06:20 -------- d-----w- c:\programdata\Rebit 5
2016-09-29 06:13 . 2016-09-29 06:13 26168 ----a-w- c:\windows\system32\drivers\dtproscsibus.sys
2016-09-29 06:12 . 2016-09-29 06:13 -------- d-----w- c:\program files\DAEMON Tools Pro
2016-09-29 06:11 . 2016-09-29 06:12 -------- d-----w- c:\programdata\DAEMON Tools Pro
2016-09-29 06:03 . 2016-07-28 07:38 14936 ----a-w- c:\windows\system32\amwrtdrv.sys
2016-09-29 06:03 . 2016-07-28 07:38 26968 ----a-w- c:\windows\system32\ambakdrv.sys
2016-09-29 06:03 . 2016-07-28 07:38 11224 ----a-w- c:\windows\system32\amreg.sys
2016-09-29 06:03 . 2016-09-30 05:12 -------- d-----w- c:\program files\AOMEI OneKey Recovery 1.6
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\fr-FR
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\XPSViewer
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\040C
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\drivers\fr-FR
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\fr
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\drivers\UMDF\fr-FR
2016-09-29 06:01 . 2016-09-29 06:01 -------- d-----w- c:\windows\system32\wbem\fr-FR
2016-09-29 06:01 . 2014-12-14 22:58 51752 ----a-w- c:\windows\system32\drivers\eubakup.sys
2016-09-29 06:01 . 2014-12-14 22:58 189992 ----a-w- c:\windows\system32\drivers\EuFdDisk.sys
2016-09-29 06:01 . 2014-12-14 22:58 15912 ----a-w- c:\windows\system32\drivers\eudskacs.sys
2016-09-29 06:01 . 2014-12-14 22:58 41512 ----a-w- c:\windows\system32\drivers\EUBKMON.sys
2016-09-29 06:00 . 2014-12-14 23:03 19496 ----a-w- c:\windows\system32\fbnative.exe
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\fr-FR\LXKPTPRC.DLL.mui
2016-09-29 05:52 . 2016-09-29 05:52 -------- d-----w- c:\windows\NAPP_Dism_Log
2016-09-29 05:13 . 2016-09-30 03:19 -------- d-----w- c:\program files\EaseUS
2016-09-29 04:16 . 2016-09-29 04:16 -------- d-----w- c:\programdata\BitDefender
2016-09-29 04:03 . 2016-02-16 14:52 86896 ----a-w- c:\windows\system32\bdpredir.dll
2016-09-29 04:03 . 2016-02-16 14:52 842368 ----a-w- c:\windows\system32\bdsmtpp.dll
2016-09-29 04:03 . 2016-02-16 14:52 161544 ----a-w- c:\windows\system32\httproxy.dll
2016-09-29 04:03 . 2016-02-16 14:52 136824 ----a-w- c:\windows\system32\bdpop3p.dll
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-09-30 04:49 . 2009-07-14 00:06 226816 ----a-w- c:\windows\system32\drivers\UMDF\WpdFs.dll
2016-09-30 04:28 . 2014-12-25 17:18 35064 ----a-w- c:\windows\system32\drivers\CFRMD.sys
2016-09-29 06:00 . 2016-09-29 06:00 2560 ----a-w- c:\windows\system32\drivers\fr-FR\usbrpm.sys.mui
2016-09-29 06:00 . 2016-09-29 06:00 18432 ----a-w- c:\windows\system32\drivers\fr-FR\fvevol.sys.mui
2016-09-29 06:00 . 2016-09-29 06:00 2560 ----a-w- c:\windows\system32\drivers\UMDF\fr-FR\WpdMtpDr.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\qwavedrv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 16896 ----a-w- c:\windows\system32\drivers\fr-FR\nwifi.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 9728 ----a-w- c:\windows\system32\drivers\fr-FR\battc.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8704 ----a-w- c:\windows\system32\drivers\fr-FR\pci.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8192 ----a-w- c:\windows\system32\drivers\fr-FR\bthport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6656 ----a-w- c:\windows\system32\drivers\fr-FR\IPMIDrv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6144 ----a-w- c:\windows\system32\drivers\fr-FR\sermouse.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5632 ----a-w- c:\windows\system32\drivers\fr-FR\e100b325.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5632 ----a-w- c:\windows\system32\drivers\fr-FR\bcm4sbxp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\mouclass.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\kbdclass.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\wacompen.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\vhdmp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\vdrvroot.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\tpm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\isapnp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\hdaudbus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\parport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\atikmdag.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\ataport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 33280 ----a-w- c:\windows\system32\drivers\fr-FR\yk62x86.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\umbus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\parvdm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\mssmbios.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\mouhid.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\getn62.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 29184 ----a-w- c:\windows\system32\drivers\fr-FR\volsnap.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\vwifibus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\VIAAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\ULIAGPKX.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\UAGP35.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\SISAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\NV_AGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\MTConfig.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\kbdhid.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\GAGP30KX.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\disk.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\BTHUSB.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\AMDAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\AGP440.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 25088 ----a-w- c:\windows\system32\drivers\fr-FR\usbport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 23552 ----a-w- c:\windows\system32\drivers\fr-FR\e1y6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 23552 ----a-w- c:\windows\system32\drivers\fr-FR\e1e6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\viac7.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\processr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\intelppm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\amdppm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\amdk8.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\wd.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\cdrom.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\bthenum.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\amdide.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 19968 ----a-w- c:\windows\system32\drivers\fr-FR\E1G60I32.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12800 ----a-w- c:\windows\system32\drivers\fr-FR\k57nd60x.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12800 ----a-w- c:\windows\system32\drivers\fr-FR\b57nd60x.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12288 ----a-w- c:\windows\system32\drivers\fr-FR\e1q6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\usbhub.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\serial.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\ohci1394.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\i8042prt.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\e1k6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\BrSerIb.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\1394ohci.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11264 ----a-w- c:\windows\system32\drivers\fr-FR\ltmdmnt.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 10752 ----a-w- c:\windows\system32\drivers\fr-FR\acpi.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 7168 ----a-w- c:\windows\system32\drivers\UMDF\fr-FR\WUDFUsbccidDriver.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 7168 ----a-w- c:\windows\system32\drivers\fr-FR\msdsm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4608 ----a-w- c:\windows\system32\drivers\fr-FR\pcmcia.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4608 ----a-w- c:\windows\system32\drivers\fr-FR\bthpan.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\pscr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 38400 ----a-w- c:\windows\system32\drivers\fr-FR\mpio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\hidbth.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\pnpmem.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\portcls.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\HdAudio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\rndismpx.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\rndismp6.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\Dot4usb.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\serscan.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\BrParwdm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\BrSerId.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 29696 ----a-w- c:\windows\system32\drivers\fr-FR\bfe.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\modem.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\ipnat.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\volmgrx.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 18432 ----a-w- c:\windows\system32\drivers\fr-FR\afd.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8704 ----a-w- c:\windows\system32\drivers\fr-FR\tunnel.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 7680 ----a-w- c:\windows\system32\drivers\fr-FR\luafv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 72704 ----a-w- c:\windows\system32\drivers\fr-FR\ntfs.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\rdbss.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\srv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\partmgr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\ndisuio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\mountmgr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6144 ----a-w- c:\windows\system32\drivers\fr-FR\ndiscap.sys.mui
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncedOverlay]
@="{52103F52-9856-43F7-B5C4-A026FD84288C}"
[HKEY_CLASSES_ROOT\CLSID\{52103F52-9856-43F7-B5C4-A026FD84288C}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncFailedOverlay]
@="{A6D755FC-42D6-46BF-8A5D-1F810C3FCEA6}"
[HKEY_CLASSES_ROOT\CLSID\{A6D755FC-42D6-46BF-8A5D-1F810C3FCEA6}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncingOverlay]
@="{0F45C9C8-E236-4CEC-A858-BFEB47D8CD3C}"
[HKEY_CLASSES_ROOT\CLSID\{0F45C9C8-E236-4CEC-A858-BFEB47D8CD3C}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2015-12-14 14688512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LavasoftAdAwareService11]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
backup=c:\windows\pss\Acer VCM.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
backup=c:\windows\pss\Start GeekBuddy.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^lfs ultra finalis^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EaseUS EverySync.lnk]
path=c:\users\lfs ultra finalis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EaseUS EverySync.lnk
backup=c:\windows\pss\EaseUS EverySync.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer ePower Management]
2010-06-11 12:28 715296 ----a-w- c:\program files\Acer\Acer ePower Management\ePowerTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdAwareTray]
2016-07-18 18:25 8063200 ----a-w- c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-28 00:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ALU]
2016-06-06 17:55 2419104 ----a-w- c:\program files\Acer\Acer Updater\ALU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AndroidManager]
2010-01-08 09:47 508280 ----a-w- c:\program files\Acer\Android Manager\AML.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO Internet Security]
2016-09-14 21:56 1491128 ----a-w- c:\program files\COMODO\COMODO Internet Security\CisTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
2016-03-29 09:31 3305152 ----a-w- c:\program files\DAEMON Tools Pro\DTAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS Cleanup]
2016-08-25 23:20 1242816 ----a-w- c:\program files\EaseUS\EaseUS Partition Master 11.8\bin\CleanUpUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
2016-08-25 23:21 2090176 ----a-w- c:\program files\EaseUS\EaseUS Partition Master 11.8\bin\EpmNews.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
2010-03-11 05:11 407920 ----a-w- c:\program files\EgisTec IPS\PmmUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
2010-03-11 05:11 201584 ----a-w- c:\program files\EgisTec IPS\EgisUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
2010-04-13 07:32 548744 ----a-w- c:\program files\Elantech\ETDCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2010-06-16 14:33 173592 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
2010-06-08 17:49 284696 ----a-w- c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2010-06-16 14:33 141848 ----a-w- c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iPatchData]
2010-07-21 01:53 492096 ----a-w- c:\program files\Acer\Updater\iUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iSyncData]
2010-01-08 09:53 407416 ----a-w- c:\program files\Acer\Android Manager\iSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
2010-08-10 09:06 975952 ----a-w- c:\program files\Launch Manager\LManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
2010-05-27 02:41 349552 ----a-w- c:\program files\EgisTec MyWinLocker\x86\mwlDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2010-06-16 14:33 150552 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI]
2016-09-28 20:33 206208 ----a-w- c:\windows\PLFSetI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rebit 5 Dashboard]
2013-08-12 13:46 2921960 ----a-w- c:\program files\Rebit 5\DashUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rebit Pro Dashboard]
2015-02-23 08:44 2874968 ----a-w- c:\program files\Rebit\Rebit Pro\DashUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuiteTray]
2010-05-27 02:59 337264 ----a-w- c:\program files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
2016-08-31 14:41 2485896 ----a-w- c:\program files\Common Files\COMODO\GeekBuddyRSP.exe
.
R1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam32.sys [x]
R1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard32.sys [x]
R2 0307721475110614mcinstcleanup;McAfee Application Installer Cleanup (0307721475110614);c:\windows\TEMP\030772~1.EXE [x]
R2 MBAMScheduler;MBAMScheduler;mbamscheduler.exe [x]
R2 MBAMService;MBAMService;g:\data - backup data\portableappztrash.blogspot.fr\MalwarebytesPortable\App\Malwarebytes\mbamservice.exe [2016-03-10 1136608]
R2 ZAMSvc;ZAM Controller Service;c:\program files\Zemana AntiLogger\ZAM.exe [x]
R3 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2016-01-05 1254920]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2016-01-05 638976]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [2016-09-14 1670840]
R3 cpuz139;cpuz139;c:\users\LFSULT~1\AppData\Local\Temp\cpuz139\cpuz139_x32.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2016-01-14 21496]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2016-07-11 10208]
R3 gzflt;gzflt;c:\program files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.129.0\gzflt.sys [2016-04-28 175008]
R3 keycrypt;keycrypt;c:\windows\system32\DRIVERS\KeyCrypt32.sys [2016-08-10 142344]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2016-10-06 170200]
R3 MDA_NTDRV;MDA_NTDRV;c:\windows\system32\MDA_NTDRV.sys [2016-05-20 44032]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [2015-04-29 20256]
R4 CLPSLauncher;COMODO LPS Launcher;c:\program files\Common Files\COMODO\launcher_service.exe [2016-08-31 76944]
R4 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R4 EaseUS Agent;EaseUS Agent Service;c:\program files\EaseUS\System GoBack Free\bin\Agent.exe [2015-06-22 37416]
R4 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-06-11 735776]
R4 ESLoadService;ESLoadService;c:\program files\EaseUS\EaseUS EverySync\bin\ESLoadService.exe [2015-10-19 43048]
R4 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\Common Files\COMODO\GeekBuddyRSP.exe [2016-08-31 2485896]
R4 GREGService;GREGService;c:\program files\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R4 LavasoftAdAwareService11;Ad-Aware Service 11;c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareService.exe [2016-07-18 664040]
R4 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2016-06-08 257440]
R4 MWLService;MyWinLocker Service;c:\program files\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
R4 Rebit-5-Svc;Rebit 5 Svc;c:\program files\Rebit 5\Rebit-5-Svc.exe [2013-08-12 2332136]
R4 Rebit-Pro-Svc;Rebit Pro Backup Service;c:\program files\Rebit\Rebit Pro\Rebit-Pro-Svc.exe [2015-02-23 4349528]
R4 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2010-01-29 260640]
R4 rscp;Reason Core Security Bundle Protection;c:\program files\Reason\Security\Protection\rscp\bin\rscp_svc.exe [2016-10-04 254232]
R4 rsEngineSvc;Reason Core Security Engine Service;c:\program files\Reason\Security\rsEngineSvc.exe [2016-09-29 82680]
R4 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2016-06-08 257440]
S0 ambakdrv;ambakdrv;c:\windows\system32\ambakdrv.sys [2016-07-28 26968]
S0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2014-12-14 51752]
S0 EUBKMON;EUBKMON;c:\windows\system32\drivers\EUBKMON.sys [2014-12-14 41512]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\windows\system32\DRIVERS\BdfNdisf6.sys [2016-02-16 86360]
S1 bdfwfpf;bdfwfpf;c:\program files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.1.0\Drivers\bdfwfpf.sys [2016-02-16 93648]
S1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys [2016-09-30 35064]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2016-08-31 27488]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2016-08-31 648728]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2016-08-31 52824]
S1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2014-12-14 15912]
S1 EUFDDISK;EUFDDISK;c:\windows\system32\drivers\EuFdDisk.sys [2014-12-14 189992]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 18992]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 16432]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60976]
S2 amwrtdrv;amwrtdrv;c:\windows\system32\amwrtdrv.sys [2016-07-28 14936]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-06-08 13336]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [2016-01-05 261400]
S3 CLMirrorDriver;CLMirrorDriver;c:\windows\system32\DRIVERS\CLMirrorDriver.sys [2016-09-09 21264]
S3 Disc Soft Pro Bus Service;Disc Soft Pro Bus Service;c:\program files\DAEMON Tools Pro\DiscSoftBusService.exe [2016-03-29 1062080]
S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtproscsibus.sys [2016-09-29 26168]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-04-13 109960]
S3 EUCR;EUCR;c:\windows\system32\DRIVERS\EUCR6SK.SYS [2010-06-17 82768]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2016-03-10 24448]
S3 NETw5s32;Pilote de carte de la série Intel(R) Wireless WiFi Link 5000 pour Windows 7 32 bits ;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-05-31 6766080]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - MBAMPROTECTOR
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Contenu du dossier 'Tâches planifiées'
.
2016-10-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-04 09:59]
.
2016-10-06 c:\windows\Tasks\simplitec Power Suite (Tray).job
- c:\program files\simplitec\simplisafe\ServiceProvider.exe [2016-10-04 14:07]
.
2016-10-04 c:\windows\Tasks\simplitec Power Suite.job
- c:\program files\simplitec\simplisafe\PowerSuite.exe [2016-10-04 14:07]
.
.
------- Examen supplémentaire -------
.
uStart Page = https://fr.yahoo.com/?fr=fp-comodo&type=7292_33220005005_4.28.398567.195_u_hp
mStart Page = hxxp://acer.msn.com
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_23_0_0_162_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_23_0_0_162_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\COMODO\CIS\Installer\Sym_Cam\CIS]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Configurations]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Data]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Options]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'Explorer.exe'(3032)
c:\program files\EgisTec MyWinLocker\x86\psdprotect.dll
c:\program files\EgisTec MyWinLocker\x86\sysenv.dll
c:\windows\System32\QAgent.dll
c:\windows\system32\FXSAPI.dll
.
Heure de fin: 2016-10-06 11:17:20
ComboFix-quarantined-files.txt 2016-10-06 09:17
.
Avant-CF: 174 884 884 480 octets libres
Après-CF: 176 463 667 200 octets libres
.
- - End Of File - - A679E7E1581E9547B3970ECF1E161BF6
46E6DDF8246D30D00F336DBBDA029680
Microsoft Windows 7 Édition Starter 6.1.7600.0.1252.33.1036.18.1013.257 [GMT 2:00]
Lancé depuis: c:\users\lfs ultra finalis\Desktop\ComboFix.exe
AV: Ad-Aware Antivirus *Disabled/Updated* {B0CC18C6-E527-6EE6-874C-9D19920E5619}
FW: Ad-Aware Firewall *Disabled* {88F799E3-AF48-6FBE-AC13-342C6CDD1162}
FW: COMODO Firewall *Disabled* {E8F7F446-E1BD-DFE6-38D1-54E0ADE01D89}
SP: Ad-Aware Antivirus *Disabled/Updated* {0BADF922-C31D-6168-BDFC-A66BE9891CA4}
SP: Comodo Defense+ *Enabled/Updated* {6BAD9487-8DE8-D130-293E-C6A728B4104F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2016-09-06 au 2016-10-06 ))))))))))))))))))))))))))))))))))))
.
.
2016-10-06 09:08 . 2016-10-06 09:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-10-06 07:19 . 2016-10-06 08:01 3412 ----a-w- c:\windows\system32\drivers\fvstore.dat
2016-10-06 07:04 . 2016-10-06 08:01 -------- d-----w- C:\Pre_Scan
2016-10-06 06:22 . 2016-10-06 06:22 25386 ----a-w- C:\Look_my_hardware.tmp
2016-10-06 06:07 . 2016-10-06 06:23 -------- d-----w- C:\QuickDiag
2016-10-06 05:05 . 2016-10-06 05:05 -------- d-----w- c:\program files\Macrorit
2016-10-06 04:18 . 2016-10-06 04:23 170200 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-10-06 04:17 . 2016-03-10 12:09 53120 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-10-06 04:17 . 2016-03-10 12:09 123264 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-10-06 04:17 . 2016-03-10 12:08 24448 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-10-06 04:17 . 2016-10-06 04:17 -------- d-----w- c:\programdata\Malwarebytes
2016-10-06 04:15 . 2016-10-06 04:15 -------- d-----w- c:\program files\Astroburn Lite
2016-10-06 04:15 . 2016-10-06 04:15 -------- d-----w- c:\programdata\Astroburn Lite
2016-10-06 04:11 . 2016-10-06 04:11 -------- d-----w- C:\VTRoot
2016-10-05 14:13 . 2016-10-05 14:13 -------- d-----w- c:\windows\system32\DAX2
2016-10-05 14:10 . 2016-10-05 14:11 -------- d-----w- c:\windows\system32\RTCOM
2016-10-05 13:50 . 2015-12-14 21:33 4486133 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT
2016-10-05 13:49 . 2015-12-14 21:33 2899224 ----a-w- c:\windows\system32\FMAPO.dll
2016-10-05 13:48 . 2015-12-14 21:33 96608 ----a-w- c:\windows\system32\audioLibVc.dll
2016-10-05 13:48 . 2015-12-14 21:33 105656 ----a-w- c:\windows\system32\AERTARen.dll
2016-10-05 13:48 . 2015-12-14 21:33 532896 ----a-w- c:\windows\system32\AERTACap.dll
2016-10-05 13:48 . 2015-12-14 21:33 197448 ----a-w- c:\windows\system32\AcpiServiceVnA.dll
2016-10-04 10:15 . 2016-10-04 10:15 -------- d-----w- c:\programdata\NCH Software
2016-10-04 09:52 . 2016-10-04 09:52 19610304 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2016-10-04 08:56 . 2016-10-04 09:55 796352 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2016-10-04 08:56 . 2016-10-04 09:55 142528 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2016-10-04 08:11 . 2016-10-04 08:11 -------- d-----w- c:\programdata\MAGIX
2016-10-04 07:58 . 2016-10-04 08:11 -------- d-----w- c:\programdata\simplitec
2016-10-04 07:58 . 2016-06-03 15:16 120200 ----a-w- c:\windows\system32\DLLDEV32i.dll
2016-10-04 07:58 . 2016-10-04 07:58 -------- d-----w- c:\program files\simplitec
2016-10-04 02:18 . 2016-10-04 02:18 -------- d-----w- c:\programdata\Reason
2016-10-04 01:19 . 2016-10-04 01:19 -------- d-----w- c:\windows\CheckSur
2016-10-04 01:06 . 2016-10-04 01:06 -------- d-----w- c:\windows\system32\SPReview
2016-10-03 01:02 . 2016-10-03 01:02 -------- d-----w- c:\windows\system32\EventProviders
2016-10-02 11:51 . 2016-10-02 11:51 -------- d-----w- c:\programdata\HitmanPro
2016-10-02 04:53 . 2016-10-02 04:53 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2016-10-02 04:53 . 2016-10-02 04:53 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2016-10-02 04:53 . 2016-10-02 04:53 297808 ----a-w- c:\windows\system32\mscoree.dll
2016-10-02 04:53 . 2016-10-02 04:53 49472 ----a-w- c:\windows\system32\netfxperf.dll
2016-10-02 04:53 . 2016-10-02 04:53 1130824 ----a-w- c:\windows\system32\dfshim.dll
2016-10-01 07:45 . 2016-10-01 07:46 -------- d-----w- c:\program files\Common Files\COMODO
2016-10-01 03:31 . 2016-08-10 22:13 142344 ----a-w- c:\windows\system32\drivers\KeyCrypt32.sys
2016-10-01 03:31 . 2016-10-05 08:53 -------- d-----w- c:\program files\KeyCryptSDK
2016-10-01 03:31 . 2016-10-05 15:42 -------- d-----w- c:\program files\Zemana AntiLogger
2016-09-30 05:03 . 2016-09-30 05:06 -------- d-----w- C:\Aomei
2016-09-30 04:49 . 2016-09-30 04:49 -------- d-----w- c:\programdata\AomeiBR
2016-09-30 04:05 . 2016-09-30 04:07 -------- d-----w- c:\program files\COMODO
2016-09-30 04:02 . 2016-09-30 04:05 -------- d-----w- c:\programdata\Comodo
2016-09-30 04:02 . 2016-09-30 04:02 -------- d-----w- c:\programdata\Shared Space
2016-09-30 03:55 . 2016-10-05 09:21 -------- d-----w- c:\programdata\Glarysoft
2016-09-30 03:29 . 2016-09-30 03:29 -------- d-----w- C:\Local Disk D_9302016529
2016-09-30 03:19 . 2016-08-26 15:46 2928320 ----a-w- c:\windows\system32\BootMan.exe
2016-09-30 03:19 . 2016-07-11 08:01 88160 ----a-w- c:\windows\system32\setupempdrv03.exe
2016-09-30 03:19 . 2016-07-11 08:01 10208 ----a-w- c:\windows\system32\EuGdiDrv.sys
2016-09-30 03:19 . 2016-01-14 08:05 21496 ----a-w- c:\windows\system32\epmntdrv.sys
2016-09-30 03:19 . 2014-11-18 12:46 21088 ----a-w- c:\windows\system32\EuEpmGdi.dll
2016-09-30 02:59 . 2016-09-09 13:14 30480 ----a-w- c:\windows\system32\CLMirrorDriver.dll
2016-09-30 02:59 . 2016-09-09 13:14 21264 ----a-w- c:\windows\system32\drivers\CLMirrorDriver.sys
2016-09-30 02:59 . 2016-09-30 02:59 -------- d-----w- c:\program files\Common Files\NewBlue
2016-09-30 02:59 . 2016-09-30 02:59 -------- d-----w- c:\program files\NewBlue
2016-09-30 02:52 . 2016-09-30 03:00 -------- d-----w- c:\program files\NSIS Uninstall Information
2016-09-30 02:52 . 2016-09-30 02:52 -------- d-----w- c:\users\Public\Cyberlink
2016-09-30 02:50 . 2016-09-30 02:55 -------- d-----w- c:\program files\CyberLink
2016-09-30 02:50 . 2016-09-30 02:55 -------- d-----w- c:\programdata\install_backup
2016-09-30 02:49 . 2016-10-04 07:57 -------- d-----w- c:\programdata\Package Cache
2016-09-30 02:47 . 2016-09-30 03:08 -------- d-----w- c:\programdata\SUPPORTDIR
2016-09-30 02:47 . 2016-09-30 02:59 -------- d-----w- c:\programdata\install_clap
2016-09-30 02:47 . 2016-09-30 02:53 -------- d-----w- c:\programdata\CLSK
2016-09-30 01:05 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2016-09-30 01:03 . 2010-12-18 05:29 541184 ----a-w- c:\windows\system32\kerberos.dll
2016-09-30 01:03 . 2014-09-15 00:42 2377216 ----a-w- c:\windows\system32\win32k.sys
2016-09-30 01:03 . 2016-06-25 15:43 301056 ----a-w- c:\windows\system32\EOSNotify.exe
2016-09-30 01:03 . 2015-03-19 02:57 3908024 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-09-30 01:03 . 2015-03-19 02:57 3963320 ----a-w- c:\windows\system32\ntkrnlpa.exe
2016-09-30 01:03 . 2013-03-19 04:54 38912 ----a-w- c:\windows\system32\csrsrv.dll
2016-09-30 01:03 . 2013-03-19 02:50 69632 ----a-w- c:\windows\system32\smss.exe
2016-09-29 14:09 . 2016-10-01 03:46 -------- d-----w- c:\programdata\Wondershare
2016-09-29 12:47 . 2016-09-29 12:47 -------- d-----w- c:\programdata\Wondershare Video Editor
2016-09-29 12:25 . 2016-10-06 05:35 -------- d-----w- C:\UsbFix
2016-09-29 12:25 . 2016-09-29 12:25 -------- d-----w- c:\program files\Folder Marker
2016-09-29 12:18 . 2016-09-29 12:18 -------- d-----w- c:\windows\Migration
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\FileMarker.NET
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\IM-Magic
2016-09-29 12:16 . 2016-09-29 12:16 -------- d-----w- c:\program files\Unlocker
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\SFR
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\HitmanPro.Alert
2016-09-29 12:15 . 2016-09-29 12:15 -------- d-----w- c:\program files\Common Files\Wondershare
2016-09-29 12:14 . 2016-09-29 12:25 -------- d-----w- c:\program files\NCH Software
2016-09-29 12:13 . 2016-10-05 15:42 -------- d-----w- c:\program files\Glarysoft
2016-09-29 12:13 . 2016-09-29 12:19 -------- d-----w- c:\program files\Reason
2016-09-29 12:11 . 2016-09-29 12:11 -------- d-----w- c:\program files\Auslogics
2016-09-29 10:17 . 2016-09-29 10:17 -------- d-----w- c:\program files\IObit
2016-09-29 07:26 . 2016-09-30 02:48 -------- d-----w- c:\programdata\CyberLink
2016-09-29 07:20 . 2016-09-29 12:25 -------- d-----w- c:\program files\Wondershare
2016-09-29 06:26 . 2016-09-29 06:26 -------- d-----w- c:\program files\Rebit
2016-09-29 06:24 . 2016-09-29 10:25 -------- d-----w- c:\programdata\Rebit
2016-09-29 06:19 . 2016-09-29 10:24 -------- d-----w- c:\program files\Rebit 5
2016-09-29 06:16 . 2016-09-29 06:20 -------- d-----w- c:\programdata\Rebit 5
2016-09-29 06:13 . 2016-09-29 06:13 26168 ----a-w- c:\windows\system32\drivers\dtproscsibus.sys
2016-09-29 06:12 . 2016-09-29 06:13 -------- d-----w- c:\program files\DAEMON Tools Pro
2016-09-29 06:11 . 2016-09-29 06:12 -------- d-----w- c:\programdata\DAEMON Tools Pro
2016-09-29 06:03 . 2016-07-28 07:38 14936 ----a-w- c:\windows\system32\amwrtdrv.sys
2016-09-29 06:03 . 2016-07-28 07:38 26968 ----a-w- c:\windows\system32\ambakdrv.sys
2016-09-29 06:03 . 2016-07-28 07:38 11224 ----a-w- c:\windows\system32\amreg.sys
2016-09-29 06:03 . 2016-09-30 05:12 -------- d-----w- c:\program files\AOMEI OneKey Recovery 1.6
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\fr-FR
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\XPSViewer
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\040C
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\drivers\fr-FR
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\fr
2016-09-29 06:02 . 2016-09-29 06:02 -------- d-----w- c:\windows\system32\drivers\UMDF\fr-FR
2016-09-29 06:01 . 2016-09-29 06:01 -------- d-----w- c:\windows\system32\wbem\fr-FR
2016-09-29 06:01 . 2014-12-14 22:58 51752 ----a-w- c:\windows\system32\drivers\eubakup.sys
2016-09-29 06:01 . 2014-12-14 22:58 189992 ----a-w- c:\windows\system32\drivers\EuFdDisk.sys
2016-09-29 06:01 . 2014-12-14 22:58 15912 ----a-w- c:\windows\system32\drivers\eudskacs.sys
2016-09-29 06:01 . 2014-12-14 22:58 41512 ----a-w- c:\windows\system32\drivers\EUBKMON.sys
2016-09-29 06:00 . 2014-12-14 23:03 19496 ----a-w- c:\windows\system32\fbnative.exe
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\fr-FR\LXKPTPRC.DLL.mui
2016-09-29 05:52 . 2016-09-29 05:52 -------- d-----w- c:\windows\NAPP_Dism_Log
2016-09-29 05:13 . 2016-09-30 03:19 -------- d-----w- c:\program files\EaseUS
2016-09-29 04:16 . 2016-09-29 04:16 -------- d-----w- c:\programdata\BitDefender
2016-09-29 04:03 . 2016-02-16 14:52 86896 ----a-w- c:\windows\system32\bdpredir.dll
2016-09-29 04:03 . 2016-02-16 14:52 842368 ----a-w- c:\windows\system32\bdsmtpp.dll
2016-09-29 04:03 . 2016-02-16 14:52 161544 ----a-w- c:\windows\system32\httproxy.dll
2016-09-29 04:03 . 2016-02-16 14:52 136824 ----a-w- c:\windows\system32\bdpop3p.dll
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-09-30 04:49 . 2009-07-14 00:06 226816 ----a-w- c:\windows\system32\drivers\UMDF\WpdFs.dll
2016-09-30 04:28 . 2014-12-25 17:18 35064 ----a-w- c:\windows\system32\drivers\CFRMD.sys
2016-09-29 06:00 . 2016-09-29 06:00 2560 ----a-w- c:\windows\system32\drivers\fr-FR\usbrpm.sys.mui
2016-09-29 06:00 . 2016-09-29 06:00 18432 ----a-w- c:\windows\system32\drivers\fr-FR\fvevol.sys.mui
2016-09-29 06:00 . 2016-09-29 06:00 2560 ----a-w- c:\windows\system32\drivers\UMDF\fr-FR\WpdMtpDr.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\qwavedrv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 16896 ----a-w- c:\windows\system32\drivers\fr-FR\nwifi.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 9728 ----a-w- c:\windows\system32\drivers\fr-FR\battc.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8704 ----a-w- c:\windows\system32\drivers\fr-FR\pci.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8192 ----a-w- c:\windows\system32\drivers\fr-FR\bthport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6656 ----a-w- c:\windows\system32\drivers\fr-FR\IPMIDrv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6144 ----a-w- c:\windows\system32\drivers\fr-FR\sermouse.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5632 ----a-w- c:\windows\system32\drivers\fr-FR\e100b325.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5632 ----a-w- c:\windows\system32\drivers\fr-FR\bcm4sbxp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\mouclass.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\kbdclass.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\wacompen.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\vhdmp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\vdrvroot.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\tpm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\isapnp.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\hdaudbus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\parport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\atikmdag.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\ataport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 33280 ----a-w- c:\windows\system32\drivers\fr-FR\yk62x86.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\umbus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\parvdm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\mssmbios.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\mouhid.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\getn62.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 29184 ----a-w- c:\windows\system32\drivers\fr-FR\volsnap.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\vwifibus.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\VIAAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\ULIAGPKX.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\UAGP35.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\SISAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\NV_AGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\MTConfig.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\kbdhid.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\GAGP30KX.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\disk.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\BTHUSB.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\AMDAGP.SYS.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\AGP440.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 25088 ----a-w- c:\windows\system32\drivers\fr-FR\usbport.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 23552 ----a-w- c:\windows\system32\drivers\fr-FR\e1y6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 23552 ----a-w- c:\windows\system32\drivers\fr-FR\e1e6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\viac7.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\processr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\intelppm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\amdppm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 20992 ----a-w- c:\windows\system32\drivers\fr-FR\amdk8.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\wd.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\cdrom.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\bthenum.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2048 ----a-w- c:\windows\system32\drivers\fr-FR\amdide.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 19968 ----a-w- c:\windows\system32\drivers\fr-FR\E1G60I32.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12800 ----a-w- c:\windows\system32\drivers\fr-FR\k57nd60x.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12800 ----a-w- c:\windows\system32\drivers\fr-FR\b57nd60x.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 12288 ----a-w- c:\windows\system32\drivers\fr-FR\e1q6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\usbhub.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\serial.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\ohci1394.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\i8042prt.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\e1k6032.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\BrSerIb.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\1394ohci.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11264 ----a-w- c:\windows\system32\drivers\fr-FR\ltmdmnt.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 10752 ----a-w- c:\windows\system32\drivers\fr-FR\acpi.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 7168 ----a-w- c:\windows\system32\drivers\UMDF\fr-FR\WUDFUsbccidDriver.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 7168 ----a-w- c:\windows\system32\drivers\fr-FR\msdsm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4608 ----a-w- c:\windows\system32\drivers\fr-FR\pcmcia.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4608 ----a-w- c:\windows\system32\drivers\fr-FR\bthpan.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 4096 ----a-w- c:\windows\system32\drivers\fr-FR\pscr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 38400 ----a-w- c:\windows\system32\drivers\fr-FR\mpio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\hidbth.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\pnpmem.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\portcls.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\HdAudio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\rndismpx.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\rndismp6.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\Dot4usb.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\serscan.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\BrParwdm.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 11776 ----a-w- c:\windows\system32\drivers\fr-FR\BrSerId.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 29696 ----a-w- c:\windows\system32\drivers\fr-FR\bfe.dll.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\modem.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3584 ----a-w- c:\windows\system32\drivers\fr-FR\ipnat.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\volmgrx.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 18432 ----a-w- c:\windows\system32\drivers\fr-FR\afd.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 8704 ----a-w- c:\windows\system32\drivers\fr-FR\tunnel.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 7680 ----a-w- c:\windows\system32\drivers\fr-FR\luafv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 72704 ----a-w- c:\windows\system32\drivers\fr-FR\ntfs.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 5120 ----a-w- c:\windows\system32\drivers\fr-FR\rdbss.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\srv.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\partmgr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 3072 ----a-w- c:\windows\system32\drivers\fr-FR\ndisuio.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 2560 ----a-w- c:\windows\system32\drivers\fr-FR\mountmgr.sys.mui
2016-09-29 05:59 . 2016-09-29 05:59 6144 ----a-w- c:\windows\system32\drivers\fr-FR\ndiscap.sys.mui
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncedOverlay]
@="{52103F52-9856-43F7-B5C4-A026FD84288C}"
[HKEY_CLASSES_ROOT\CLSID\{52103F52-9856-43F7-B5C4-A026FD84288C}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncFailedOverlay]
@="{A6D755FC-42D6-46BF-8A5D-1F810C3FCEA6}"
[HKEY_CLASSES_ROOT\CLSID\{A6D755FC-42D6-46BF-8A5D-1F810C3FCEA6}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ EaseUSEverySyncingOverlay]
@="{0F45C9C8-E236-4CEC-A858-BFEB47D8CD3C}"
[HKEY_CLASSES_ROOT\CLSID\{0F45C9C8-E236-4CEC-A858-BFEB47D8CD3C}]
2015-10-19 13:45 1883688 ----a-w- c:\program files\EaseUS\EaseUS EverySync\bin\EverySyncExplorerOverlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2010-05-27 02:40 120176 ----a-w- c:\program files\EgisTec MyWinLocker\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2015-12-14 14688512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LavasoftAdAwareService11]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
backup=c:\windows\pss\Acer VCM.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Start GeekBuddy.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Start GeekBuddy.lnk
backup=c:\windows\pss\Start GeekBuddy.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^lfs ultra finalis^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EaseUS EverySync.lnk]
path=c:\users\lfs ultra finalis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EaseUS EverySync.lnk
backup=c:\windows\pss\EaseUS EverySync.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acer ePower Management]
2010-06-11 12:28 715296 ----a-w- c:\program files\Acer\Acer ePower Management\ePowerTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdAwareTray]
2016-07-18 18:25 8063200 ----a-w- c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-02-28 00:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ALU]
2016-06-06 17:55 2419104 ----a-w- c:\program files\Acer\Acer Updater\ALU.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AndroidManager]
2010-01-08 09:47 508280 ----a-w- c:\program files\Acer\Android Manager\AML.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO Internet Security]
2016-09-14 21:56 1491128 ----a-w- c:\program files\COMODO\COMODO Internet Security\CisTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
2016-03-29 09:31 3305152 ----a-w- c:\program files\DAEMON Tools Pro\DTAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS Cleanup]
2016-08-25 23:20 1242816 ----a-w- c:\program files\EaseUS\EaseUS Partition Master 11.8\bin\CleanUpUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
2016-08-25 23:21 2090176 ----a-w- c:\program files\EaseUS\EaseUS Partition Master 11.8\bin\EpmNews.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisTecPMMUpdate]
2010-03-11 05:11 407920 ----a-w- c:\program files\EgisTec IPS\PmmUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EgisUpdate]
2010-03-11 05:11 201584 ----a-w- c:\program files\EgisTec IPS\EgisUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare]
2010-04-13 07:32 548744 ----a-w- c:\program files\Elantech\ETDCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2010-06-16 14:33 173592 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
2010-06-08 17:49 284696 ----a-w- c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2010-06-16 14:33 141848 ----a-w- c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iPatchData]
2010-07-21 01:53 492096 ----a-w- c:\program files\Acer\Updater\iUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iSyncData]
2010-01-08 09:53 407416 ----a-w- c:\program files\Acer\Android Manager\iSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager]
2010-08-10 09:06 975952 ----a-w- c:\program files\Launch Manager\LManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mwlDaemon]
2010-05-27 02:41 349552 ----a-w- c:\program files\EgisTec MyWinLocker\x86\mwlDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2010-06-16 14:33 150552 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI]
2016-09-28 20:33 206208 ----a-w- c:\windows\PLFSetI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rebit 5 Dashboard]
2013-08-12 13:46 2921960 ----a-w- c:\program files\Rebit 5\DashUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rebit Pro Dashboard]
2015-02-23 08:44 2874968 ----a-w- c:\program files\Rebit\Rebit Pro\DashUI.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SuiteTray]
2010-05-27 02:59 337264 ----a-w- c:\program files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\tvncontrol]
2016-08-31 14:41 2485896 ----a-w- c:\program files\Common Files\COMODO\GeekBuddyRSP.exe
.
R1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam32.sys [x]
R1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard32.sys [x]
R2 0307721475110614mcinstcleanup;McAfee Application Installer Cleanup (0307721475110614);c:\windows\TEMP\030772~1.EXE [x]
R2 MBAMScheduler;MBAMScheduler;mbamscheduler.exe [x]
R2 MBAMService;MBAMService;g:\data - backup data\portableappztrash.blogspot.fr\MalwarebytesPortable\App\Malwarebytes\mbamservice.exe [2016-03-10 1136608]
R2 ZAMSvc;ZAM Controller Service;c:\program files\Zemana AntiLogger\ZAM.exe [x]
R3 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2016-01-05 1254920]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2016-01-05 638976]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [2016-09-14 1670840]
R3 cpuz139;cpuz139;c:\users\LFSULT~1\AppData\Local\Temp\cpuz139\cpuz139_x32.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2016-01-14 21496]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2016-07-11 10208]
R3 gzflt;gzflt;c:\program files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.129.0\gzflt.sys [2016-04-28 175008]
R3 keycrypt;keycrypt;c:\windows\system32\DRIVERS\KeyCrypt32.sys [2016-08-10 142344]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2016-10-06 170200]
R3 MDA_NTDRV;MDA_NTDRV;c:\windows\system32\MDA_NTDRV.sys [2016-05-20 44032]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam.sys [2015-04-29 20256]
R4 CLPSLauncher;COMODO LPS Launcher;c:\program files\Common Files\COMODO\launcher_service.exe [2016-08-31 76944]
R4 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R4 EaseUS Agent;EaseUS Agent Service;c:\program files\EaseUS\System GoBack Free\bin\Agent.exe [2015-06-22 37416]
R4 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-06-11 735776]
R4 ESLoadService;ESLoadService;c:\program files\EaseUS\EaseUS EverySync\bin\ESLoadService.exe [2015-10-19 43048]
R4 GeekBuddyRSP;GeekBuddyRSP Server;c:\program files\Common Files\COMODO\GeekBuddyRSP.exe [2016-08-31 2485896]
R4 GREGService;GREGService;c:\program files\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R4 LavasoftAdAwareService11;Ad-Aware Service 11;c:\program files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareService.exe [2016-07-18 664040]
R4 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2016-06-08 257440]
R4 MWLService;MyWinLocker Service;c:\program files\EgisTec MyWinLocker\x86\MWLService.exe [2010-05-27 305520]
R4 Rebit-5-Svc;Rebit 5 Svc;c:\program files\Rebit 5\Rebit-5-Svc.exe [2013-08-12 2332136]
R4 Rebit-Pro-Svc;Rebit Pro Backup Service;c:\program files\Rebit\Rebit Pro\Rebit-Pro-Svc.exe [2015-02-23 4349528]
R4 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2010-01-29 260640]
R4 rscp;Reason Core Security Bundle Protection;c:\program files\Reason\Security\Protection\rscp\bin\rscp_svc.exe [2016-10-04 254232]
R4 rsEngineSvc;Reason Core Security Engine Service;c:\program files\Reason\Security\rsEngineSvc.exe [2016-09-29 82680]
R4 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2016-06-08 257440]
S0 ambakdrv;ambakdrv;c:\windows\system32\ambakdrv.sys [2016-07-28 26968]
S0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2014-12-14 51752]
S0 EUBKMON;EUBKMON;c:\windows\system32\drivers\EUBKMON.sys [2014-12-14 41512]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\windows\system32\DRIVERS\BdfNdisf6.sys [2016-02-16 86360]
S1 bdfwfpf;bdfwfpf;c:\program files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.1.0\Drivers\bdfwfpf.sys [2016-02-16 93648]
S1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys [2016-09-30 35064]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2016-08-31 27488]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2016-08-31 648728]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2016-08-31 52824]
S1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2014-12-14 15912]
S1 EUFDDISK;EUFDDISK;c:\windows\system32\drivers\EuFdDisk.sys [2014-12-14 189992]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [2009-06-03 18992]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [2009-06-03 16432]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [2009-06-03 60976]
S2 amwrtdrv;amwrtdrv;c:\windows\system32\amwrtdrv.sys [2016-07-28 14936]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-06-08 13336]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [2016-01-05 261400]
S3 CLMirrorDriver;CLMirrorDriver;c:\windows\system32\DRIVERS\CLMirrorDriver.sys [2016-09-09 21264]
S3 Disc Soft Pro Bus Service;Disc Soft Pro Bus Service;c:\program files\DAEMON Tools Pro\DiscSoftBusService.exe [2016-03-29 1062080]
S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtproscsibus.sys [2016-09-29 26168]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-04-13 109960]
S3 EUCR;EUCR;c:\windows\system32\DRIVERS\EUCR6SK.SYS [2010-06-17 82768]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-08-24 68208]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2016-03-10 24448]
S3 NETw5s32;Pilote de carte de la série Intel(R) Wireless WiFi Link 5000 pour Windows 7 32 bits ;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-05-31 6766080]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - MBAMPROTECTOR
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Contenu du dossier 'Tâches planifiées'
.
2016-10-06 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-04 09:59]
.
2016-10-06 c:\windows\Tasks\simplitec Power Suite (Tray).job
- c:\program files\simplitec\simplisafe\ServiceProvider.exe [2016-10-04 14:07]
.
2016-10-04 c:\windows\Tasks\simplitec Power Suite.job
- c:\program files\simplitec\simplisafe\PowerSuite.exe [2016-10-04 14:07]
.
.
------- Examen supplémentaire -------
.
uStart Page = https://fr.yahoo.com/?fr=fp-comodo&type=7292_33220005005_4.28.398567.195_u_hp
mStart Page = hxxp://acer.msn.com
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_23_0_0_162_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_23_0_0_162_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\COMODO\CIS\Installer\Sym_Cam\CIS]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Configurations]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Data]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\CmdAgent\Mode\Options]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Cam]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\Software\COMODO\Firewall Pro]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,59,00,53,00,\
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'Explorer.exe'(3032)
c:\program files\EgisTec MyWinLocker\x86\psdprotect.dll
c:\program files\EgisTec MyWinLocker\x86\sysenv.dll
c:\windows\System32\QAgent.dll
c:\windows\system32\FXSAPI.dll
.
Heure de fin: 2016-10-06 11:17:20
ComboFix-quarantined-files.txt 2016-10-06 09:17
.
Avant-CF: 174 884 884 480 octets libres
Après-CF: 176 463 667 200 octets libres
.
- - End Of File - - A679E7E1581E9547B3970ECF1E161BF6
46E6DDF8246D30D00F336DBBDA029680