Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 17-07-07.01 - Alexis 23/07/2017 18:22:31.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4076.2421 [GMT 2:00]
Lancé depuis: C:\Users\Alexis\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {71A27EC9-3DA6-45FC-60A7-004F623C6189}
SP: Microsoft Security Essentials *Disabled/Updated* {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((((((( Fichiers créés du 2017-06-23 au 2017-07-23 ))))))))))))))))))))))))))))))))))))
2017-07-23 16:32:48 . 2017-07-23 16:32:48 -------- d-----w- C:\Users\Default\AppData\Local\temp
2017-07-22 17:08:43 . 2017-07-22 17:14:26 -------- d-----w- C:\FRST
2017-07-22 16:02:43 . 2017-07-21 14:25:54 13476768 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C78FCBCE-6ADB-4AC9-9B16-60D4498D01B2}\mpengine.dll
2017-07-21 18:35:36 . 2017-07-21 18:35:36 -------- d-----w- C:\Program Files (x86)\Common Files\Skype
2017-07-21 18:35:35 . 2017-07-21 18:35:36 -------- d-----r- C:\Program Files (x86)\Skype
2017-07-21 17:54:40 . 2017-07-21 17:54:41 -------- d-----w- C:\Program Files\Microsoft Silverlight
2017-07-21 17:54:40 . 2017-07-21 17:54:41 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2017-07-21 15:18:28 . 2017-07-21 14:25:54 13476768 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2017-07-21 14:47:34 . 2017-07-21 15:01:59 -------- d-----w- C:\AdwCleaner
2017-07-21 14:26:35 . 2017-07-21 14:26:32 1078240 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7FAC4499-7E04-4331-A024-20ABC8D0BEE9}\gapaengine.dll
2017-07-21 14:25:53 . 2017-05-30 20:45:51 565416 ------w- C:\Windows\system32\MpSigStub.exe
2017-07-21 14:18:43 . 2017-07-21 14:18:44 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2017-07-21 14:18:35 . 2017-07-21 14:18:54 -------- d-----w- C:\Program Files\Microsoft Security Client
2017-07-20 23:07:48 . 2015-07-11 13:15:03 429568 ----a-w- C:\Windows\system32\wksprt.exe
2017-07-20 23:07:47 . 2015-07-16 19:11:26 7077376 ----a-w- C:\Windows\system32\mstscax.dll
2017-07-20 23:07:46 . 2015-07-16 19:12:28 6131200 ----a-w- C:\Windows\SysWow64\mstscax.dll
2017-07-20 23:07:45 . 2015-07-16 19:12:29 856064 ----a-w- C:\Windows\SysWow64\rdvidcrl.dll
2017-07-20 23:07:45 . 2015-07-16 19:12:29 53248 ----a-w- C:\Windows\SysWow64\tsgqec.dll
2017-07-20 23:07:45 . 2015-07-16 19:11:27 62976 ----a-w- C:\Windows\system32\tsgqec.dll
2017-07-20 23:07:45 . 2015-07-16 19:11:26 1057792 ----a-w- C:\Windows\system32\rdvidcrl.dll
2017-07-20 22:40:45 . 2016-03-23 22:40:09 16384 ----a-w- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-07-20 22:40:45 . 2016-03-23 22:40:07 3181568 ----a-w- C:\Windows\system32\rdpcorets.dll
2017-07-20 22:40:44 . 2017-03-07 14:05:55 243200 ----a-w- C:\Windows\system32\rdpudd.dll
2017-07-20 22:40:06 . 2014-12-11 17:47:17 87040 ----a-w- C:\Windows\system32\TSWbPrxy.exe
2017-07-20 21:42:33 . 2017-07-20 21:42:33 -------- d-s---w- C:\Windows\system32\CompatTel
2017-07-20 21:42:33 . 2017-07-20 21:42:33 -------- d-----w- C:\Windows\system32\appraiser
2017-07-20 21:41:03 . 2013-10-02 04:51:18 3584 ----a-w- C:\Windows\system32\drivers\fr-FR\tsusbflt.sys.mui
2017-07-20 21:41:03 . 2013-10-02 01:10:56 44544 ----a-w- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-07-20 21:41:01 . 2013-10-02 02:22:20 56832 ----a-w- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-07-20 21:41:01 . 2013-10-02 02:11:13 13824 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-07-20 21:41:01 . 2013-10-02 02:08:53 12800 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-07-20 21:41:01 . 2013-10-02 01:48:59 56832 ----a-w- C:\Windows\system32\MsRdpWebAccess.dll
2017-07-20 21:41:01 . 2013-10-02 01:48:08 18944 ----a-w- C:\Windows\system32\wksprtPS.dll
2017-07-20 21:41:01 . 2013-10-02 00:14:58 50176 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll
2017-07-20 21:41:01 . 2013-10-02 00:14:20 17920 ----a-w- C:\Windows\SysWow64\wksprtPS.dll
2017-07-20 21:41:01 . 2013-10-01 22:34:12 1068544 ----a-w- C:\Windows\SysWow64\mstsc.exe
2017-07-20 21:41:00 . 2013-10-01 23:31:09 1147392 ----a-w- C:\Windows\system32\mstsc.exe
2017-07-20 21:35:14 . 2012-08-23 14:10:20 19456 ----a-w- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-07-20 21:35:13 . 2012-08-23 11:12:17 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll
2017-07-20 21:35:12 . 2012-08-23 10:51:14 228864 ----a-w- C:\Windows\system32\rdpendp_winip.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:33 325632 ----a-w- C:\Windows\system32\invagent.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:32 217088 ----a-w- C:\Windows\system32\aepic.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:32 127488 ----a-w- C:\Windows\system32\acmigration.dll
2017-07-20 20:44:02 . 2017-03-23 02:06:37 1691136 ----a-w- C:\Windows\system32\aitstatic.exe
2017-07-20 20:44:01 . 2017-05-03 15:29:35 1206272 ----a-w- C:\Windows\system32\aeinv.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 620544 ----a-w- C:\Windows\system32\generaltel.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 535552 ----a-w- C:\Windows\system32\devinv.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 311296 ----a-w- C:\Windows\system32\centel.dll
2017-07-20 20:42:46 . 2016-05-12 15:18:31 90624 ----a-w- C:\Windows\SysWow64\olepro32.dll
2017-07-20 20:42:32 . 2015-08-05 17:56:05 22528 ----a-w- C:\Windows\system32\icaapi.dll
2017-07-20 20:42:32 . 2015-08-05 17:06:37 39936 ----a-w- C:\Windows\system32\drivers\tssecsrv.sys
2017-07-20 20:39:40 . 2011-03-11 06:33:29 2565632 ----a-w- C:\Windows\system32\esent.dll
2017-07-20 20:39:40 . 2011-03-11 06:30:28 96768 ----a-w- C:\Windows\system32\fsutil.exe
2017-07-20 20:39:40 . 2011-03-11 05:33:09 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2017-07-20 20:39:39 . 2011-03-11 06:41:34 166272 ----a-w- C:\Windows\system32\drivers\nvstor.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:34 148352 ----a-w- C:\Windows\system32\drivers\nvraid.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:26 410496 ----a-w- C:\Windows\system32\drivers\iaStorV.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:12 27008 ----a-w- C:\Windows\system32\drivers\amdxata.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:12 107904 ----a-w- C:\Windows\system32\drivers\amdsata.sys
2017-07-20 20:39:39 . 2011-03-11 05:31:07 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2017-07-20 20:39:25 . 2013-11-26 08:16:50 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2017-07-20 20:39:25 . 2013-11-22 22:48:21 3928064 ----a-w- C:\Windows\system32\d2d1.dll
2017-07-20 20:37:00 . 2016-08-16 20:40:26 343552 ----a-w- C:\Windows\system32\drivers\usbhub.sys
2017-07-20 20:37:00 . 2016-08-16 20:40:12 56320 ----a-w- C:\Windows\system32\drivers\usbehci.sys
2017-07-20 20:37:00 . 2016-08-16 20:40:11 327168 ----a-w- C:\Windows\system32\drivers\usbport.sys
2017-07-20 20:36:59 . 2016-08-16 21:53:03 11776 ----a-w- C:\Windows\system32\drivers\fr-FR\usbhub.sys.mui
2017-07-20 20:36:59 . 2016-08-16 21:52:03 3072 ----a-w- C:\Windows\system32\drivers\fr-FR\usbehci.sys.mui
2017-07-20 20:36:59 . 2016-08-16 21:50:37 25088 ----a-w- C:\Windows\system32\drivers\fr-FR\usbport.sys.mui
2017-07-20 20:36:59 . 2016-08-16 20:40:16 99840 ----a-w- C:\Windows\system32\drivers\usbccgp.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:10 25600 ----a-w- C:\Windows\system32\drivers\usbohci.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:09 30720 ----a-w- C:\Windows\system32\drivers\usbuhci.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:06 7808 ----a-w- C:\Windows\system32\drivers\usbd.sys
2017-07-20 20:36:57 . 2012-07-06 20:07:42 552960 ----a-w- C:\Windows\system32\drivers\bthport.sys
2017-07-20 20:36:57 . 2011-04-28 03:54:56 80384 ----a-w- C:\Windows\system32\drivers\BTHUSB.SYS
2017-07-20 19:34:52 . 2015-07-30 17:57:30 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2017-07-20 19:34:51 . 2015-07-30 18:06:57 2565120 ----a-w- C:\Windows\system32\d3d10warp.dll
2017-07-20 19:34:44 . 2016-04-14 13:49:13 603648 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2017-07-20 19:34:44 . 2016-04-14 13:21:17 647680 ----a-w- C:\Windows\system32\d3d10level9.dll
2017-07-20 19:34:42 . 2015-12-08 21:54:04 2285056 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2017-07-20 19:34:42 . 2015-12-08 19:07:46 2777088 ----a-w- C:\Windows\system32\msmpeg2vdec.dll
2017-07-20 19:32:35 . 2016-04-09 04:20:04 1230848 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2017-07-20 19:32:35 . 2016-04-09 03:52:25 1424896 ----a-w- C:\Windows\system32\WindowsCodecs.dll
2017-07-20 19:32:25 . 2015-02-04 03:16:35 465920 ----a-w- C:\Windows\system32\WMPhoto.dll
2017-07-20 19:32:25 . 2015-02-04 02:54:09 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2017-07-20 19:14:42 . 2017-07-20 19:14:42 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2017-07-20 19:14:40 . 2017-07-20 19:14:40 -------- d-----w- C:\Windows\system32\wbem\en-US
2017-07-20 19:13:17 . 2017-07-20 19:13:17 -------- d-----w- C:\Windows\SysWow64\Wat
2017-07-20 19:13:17 . 2017-07-20 19:13:17 -------- d-----w- C:\Windows\system32\Wat
2017-07-20 17:37:22 . 2015-07-30 13:13:38 103120 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-07-20 17:37:22 . 2015-07-30 13:13:11 124624 ----a-w- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-07-20 17:31:33 . 2013-10-14 16:00:00 28368 ----a-w- C:\Windows\system32\IEUDINIT.EXE
2017-07-20 16:43:57 . 2017-07-20 16:43:57 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-07-20 14:55:24 . 2012-07-26 05:04:31 2560 ----a-w- C:\Windows\system32\drivers\fr-FR\wdf01000.sys.mui
2017-07-20 12:56:21 . 2012-07-26 02:26:45 87040 ----a-w- C:\Windows\system32\drivers\WUDFPf.sys
2017-07-20 12:56:21 . 2012-07-26 02:26:06 198656 ----a-w- C:\Windows\system32\drivers\WUDFRd.sys
2017-07-20 12:56:20 . 2012-07-26 03:08:53 229888 ----a-w- C:\Windows\system32\WUDFHost.exe
2017-07-20 12:56:20 . 2012-07-26 03:08:14 84992 ----a-w- C:\Windows\system32\WUDFSvc.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 744448 ----a-w- C:\Windows\system32\WUDFx.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 45056 ----a-w- C:\Windows\system32\WUDFCoinstaller.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 194048 ----a-w- C:\Windows\system32\WUDFPlatform.dll
2017-07-20 12:36:05 . 2012-03-01 06:46:16 23408 ----a-w- C:\Windows\system32\drivers\fs_rec.sys
2017-07-20 12:36:05 . 2012-03-01 06:28:47 5120 ----a-w- C:\Windows\system32\wmi.dll
2017-07-20 12:36:05 . 2012-03-01 05:29:16 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2017-07-20 12:22:08 . 2014-03-09 21:48:52 171160 ----a-w- C:\Windows\system32\infocardapi.dll
2017-07-20 12:22:08 . 2014-03-09 21:48:51 1389208 ----a-w- C:\Windows\system32\icardagt.exe
2017-07-20 12:22:08 . 2014-03-09 21:47:43 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll
2017-07-20 12:22:08 . 2014-03-09 21:47:42 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe
2017-07-20 12:22:07 . 2014-06-30 22:24:50 8856 ----a-w- C:\Windows\system32\icardres.dll
2017-07-20 12:22:07 . 2014-06-30 22:14:53 8856 ----a-w- C:\Windows\SysWow64\icardres.dll
2017-07-20 12:21:51 . 2014-06-06 06:16:07 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2017-07-20 12:21:51 . 2014-06-06 06:12:57 35480 ----a-w- C:\Windows\system32\TsWpfWrp.exe
2017-07-20 12:18:13 . 2015-01-09 03:14:27 91136 ----a-w- C:\Windows\system32\wdi.dll
2017-07-20 12:18:13 . 2015-01-09 03:14:19 950272 ----a-w- C:\Windows\system32\perftrack.dll
2017-07-20 12:18:13 . 2015-01-09 03:14:19 29696 ----a-w- C:\Windows\system32\powertracker.dll
2017-07-20 12:18:13 . 2015-01-09 02:48:18 76800 ----a-w- C:\Windows\SysWow64\wdi.dll
2017-07-20 12:16:59 . 2017-06-30 02:26:20 9728 ----a-w- C:\Windows\SysWow64\msshooks.dll
2017-07-20 12:15:30 . 2015-07-23 00:02:51 879104 ----a-w- C:\Windows\system32\tdh.dll
2017-07-20 12:15:29 . 2015-07-22 17:53:31 635392 ----a-w- C:\Windows\SysWow64\tdh.dll
2017-07-20 12:13:48 . 2013-12-04 02:16:51 658432 ----a-w- C:\Windows\system32\RMActivate_isv.exe
2017-07-20 12:12:47 . 2015-08-05 17:56:14 1110016 ----a-w- C:\Windows\system32\schedsvc.dll
2017-07-20 12:11:58 . 2014-02-04 02:35:56 190912 ----a-w- C:\Windows\system32\drivers\storport.sys
2017-07-20 12:11:58 . 2014-02-04 02:35:49 274880 ----a-w- C:\Windows\system32\drivers\msiscsi.sys
2017-07-20 12:11:58 . 2014-02-04 02:35:35 27584 ----a-w- C:\Windows\system32\drivers\Diskdump.sys
2017-07-20 12:11:58 . 2014-02-04 02:28:36 2048 ----a-w- C:\Windows\system32\iologmsg.dll
2017-07-20 12:11:58 . 2014-02-04 02:00:39 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
2017-07-20 03:25:38 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll
2017-07-20 03:25:38 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2017-07-19 16:47:46 . 2010-06-24 02:33:56 24800 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2017-06-27 22:38:18 . 2017-01-25 17:17:08 1615448 ----a-w- C:\Windows\system32\nvhdagenco6420103.dll
2017-05-16 15:30:56 . 2017-07-20 12:17:10 309760 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2017-05-16 15:12:23 . 2017-07-20 12:17:14 2179072 ----a-w- C:\Windows\apppatch\AcGenral.dll
2017-05-16 15:12:23 . 2017-07-20 12:16:59 2560 ----a-w- C:\Windows\apppatch\AcRes.dll
2017-05-12 18:03:03 . 2017-07-20 12:17:02 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SetupARService;SetupARService;C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe;C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [x]
R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe;C:\Program Files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\system32\IEEtwCollector.exe;C:\Windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys;C:\Windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Inspection du réseau Microsoft;C:\Program Files\Microsoft Security Client\NisSrv.exe;C:\Program Files\Microsoft Security Client\NisSrv.exe [x]
R3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
R3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
R3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe;C:\Program Files (x86)\Origin\OriginClientService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys;C:\Windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Samsung UPD Service;Samsung UPD Service;C:\Windows\System32\SUPDSvc.exe;C:\Windows\SYSNATIVE\SUPDSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys;C:\Windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\system32\Wat\WatAdminSvc.exe;C:\Windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 iaStorA;iaStorA;C:\Windows\system32\DRIVERS\iaStorA.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;C:\Windows\system32\DRIVERS\iaStorF.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\Windows\system32\Drivers\SABI.sys;C:\Windows\SYSNATIVE\Drivers\SABI.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe;C:\Windows\SYSNATIVE\svchost.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
S2 NvTelemetryContainer;NVIDIA Telemetry Container;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\system32\DRIVERS\clwvd.sys;C:\Windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys;C:\Windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\system32\drivers\nvvad64v.sys;C:\Windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 nvvhci;NVVHCI Enumerator Service;C:\Windows\system32\DRIVERS\nvvhci.sys;C:\Windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys;C:\Windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
--------- X64 Entries -----------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-11-21 06:33:04 36352]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe" [2016-11-14 18:57:26 1353680]
------- Examen supplémentaire -------
uLocal Page = C:\Windows\system32\blank.htm
uStart Page = hxxp://samsung.msn.com
mLocal Page = C:\Windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - C:\Users\Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\e8699om3.default\
- - - - ORPHELINS SUPPRIMES - - - -
Toolbar-Locked - (no file)
Wow6432Node-HKU-Default-RunOnce-SPReview - C:\Windows\System32\SPReview\SPReview.exe
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - C:\Program Files (x86)\Elantech\ETDCtrl.exe
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4076.2421 [GMT 2:00]
Lancé depuis: C:\Users\Alexis\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {71A27EC9-3DA6-45FC-60A7-004F623C6189}
SP: Microsoft Security Essentials *Disabled/Updated* {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
((((((((((((((((((((((((((((( Fichiers créés du 2017-06-23 au 2017-07-23 ))))))))))))))))))))))))))))))))))))
2017-07-23 16:32:48 . 2017-07-23 16:32:48 -------- d-----w- C:\Users\Default\AppData\Local\temp
2017-07-22 17:08:43 . 2017-07-22 17:14:26 -------- d-----w- C:\FRST
2017-07-22 16:02:43 . 2017-07-21 14:25:54 13476768 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C78FCBCE-6ADB-4AC9-9B16-60D4498D01B2}\mpengine.dll
2017-07-21 18:35:36 . 2017-07-21 18:35:36 -------- d-----w- C:\Program Files (x86)\Common Files\Skype
2017-07-21 18:35:35 . 2017-07-21 18:35:36 -------- d-----r- C:\Program Files (x86)\Skype
2017-07-21 17:54:40 . 2017-07-21 17:54:41 -------- d-----w- C:\Program Files\Microsoft Silverlight
2017-07-21 17:54:40 . 2017-07-21 17:54:41 -------- d-----w- C:\Program Files (x86)\Microsoft Silverlight
2017-07-21 15:18:28 . 2017-07-21 14:25:54 13476768 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2017-07-21 14:47:34 . 2017-07-21 15:01:59 -------- d-----w- C:\AdwCleaner
2017-07-21 14:26:35 . 2017-07-21 14:26:32 1078240 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7FAC4499-7E04-4331-A024-20ABC8D0BEE9}\gapaengine.dll
2017-07-21 14:25:53 . 2017-05-30 20:45:51 565416 ------w- C:\Windows\system32\MpSigStub.exe
2017-07-21 14:18:43 . 2017-07-21 14:18:44 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2017-07-21 14:18:35 . 2017-07-21 14:18:54 -------- d-----w- C:\Program Files\Microsoft Security Client
2017-07-20 23:07:48 . 2015-07-11 13:15:03 429568 ----a-w- C:\Windows\system32\wksprt.exe
2017-07-20 23:07:47 . 2015-07-16 19:11:26 7077376 ----a-w- C:\Windows\system32\mstscax.dll
2017-07-20 23:07:46 . 2015-07-16 19:12:28 6131200 ----a-w- C:\Windows\SysWow64\mstscax.dll
2017-07-20 23:07:45 . 2015-07-16 19:12:29 856064 ----a-w- C:\Windows\SysWow64\rdvidcrl.dll
2017-07-20 23:07:45 . 2015-07-16 19:12:29 53248 ----a-w- C:\Windows\SysWow64\tsgqec.dll
2017-07-20 23:07:45 . 2015-07-16 19:11:27 62976 ----a-w- C:\Windows\system32\tsgqec.dll
2017-07-20 23:07:45 . 2015-07-16 19:11:26 1057792 ----a-w- C:\Windows\system32\rdvidcrl.dll
2017-07-20 22:40:45 . 2016-03-23 22:40:09 16384 ----a-w- C:\Windows\system32\RdpGroupPolicyExtension.dll
2017-07-20 22:40:45 . 2016-03-23 22:40:07 3181568 ----a-w- C:\Windows\system32\rdpcorets.dll
2017-07-20 22:40:44 . 2017-03-07 14:05:55 243200 ----a-w- C:\Windows\system32\rdpudd.dll
2017-07-20 22:40:06 . 2014-12-11 17:47:17 87040 ----a-w- C:\Windows\system32\TSWbPrxy.exe
2017-07-20 21:42:33 . 2017-07-20 21:42:33 -------- d-s---w- C:\Windows\system32\CompatTel
2017-07-20 21:42:33 . 2017-07-20 21:42:33 -------- d-----w- C:\Windows\system32\appraiser
2017-07-20 21:41:03 . 2013-10-02 04:51:18 3584 ----a-w- C:\Windows\system32\drivers\fr-FR\tsusbflt.sys.mui
2017-07-20 21:41:03 . 2013-10-02 01:10:56 44544 ----a-w- C:\Windows\system32\TsUsbGDCoInstaller.dll
2017-07-20 21:41:01 . 2013-10-02 02:22:20 56832 ----a-w- C:\Windows\system32\drivers\TsUsbFlt.sys
2017-07-20 21:41:01 . 2013-10-02 02:11:13 13824 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2017-07-20 21:41:01 . 2013-10-02 02:08:53 12800 ----a-w- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2017-07-20 21:41:01 . 2013-10-02 01:48:59 56832 ----a-w- C:\Windows\system32\MsRdpWebAccess.dll
2017-07-20 21:41:01 . 2013-10-02 01:48:08 18944 ----a-w- C:\Windows\system32\wksprtPS.dll
2017-07-20 21:41:01 . 2013-10-02 00:14:58 50176 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll
2017-07-20 21:41:01 . 2013-10-02 00:14:20 17920 ----a-w- C:\Windows\SysWow64\wksprtPS.dll
2017-07-20 21:41:01 . 2013-10-01 22:34:12 1068544 ----a-w- C:\Windows\SysWow64\mstsc.exe
2017-07-20 21:41:00 . 2013-10-01 23:31:09 1147392 ----a-w- C:\Windows\system32\mstsc.exe
2017-07-20 21:35:14 . 2012-08-23 14:10:20 19456 ----a-w- C:\Windows\system32\drivers\rdpvideominiport.sys
2017-07-20 21:35:13 . 2012-08-23 11:12:17 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll
2017-07-20 21:35:12 . 2012-08-23 10:51:14 228864 ----a-w- C:\Windows\system32\rdpendp_winip.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:33 325632 ----a-w- C:\Windows\system32\invagent.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:32 217088 ----a-w- C:\Windows\system32\aepic.dll
2017-07-20 20:44:02 . 2017-05-03 13:05:32 127488 ----a-w- C:\Windows\system32\acmigration.dll
2017-07-20 20:44:02 . 2017-03-23 02:06:37 1691136 ----a-w- C:\Windows\system32\aitstatic.exe
2017-07-20 20:44:01 . 2017-05-03 15:29:35 1206272 ----a-w- C:\Windows\system32\aeinv.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 620544 ----a-w- C:\Windows\system32\generaltel.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 535552 ----a-w- C:\Windows\system32\devinv.dll
2017-07-20 20:44:01 . 2017-05-03 13:05:32 311296 ----a-w- C:\Windows\system32\centel.dll
2017-07-20 20:42:46 . 2016-05-12 15:18:31 90624 ----a-w- C:\Windows\SysWow64\olepro32.dll
2017-07-20 20:42:32 . 2015-08-05 17:56:05 22528 ----a-w- C:\Windows\system32\icaapi.dll
2017-07-20 20:42:32 . 2015-08-05 17:06:37 39936 ----a-w- C:\Windows\system32\drivers\tssecsrv.sys
2017-07-20 20:39:40 . 2011-03-11 06:33:29 2565632 ----a-w- C:\Windows\system32\esent.dll
2017-07-20 20:39:40 . 2011-03-11 06:30:28 96768 ----a-w- C:\Windows\system32\fsutil.exe
2017-07-20 20:39:40 . 2011-03-11 05:33:09 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2017-07-20 20:39:39 . 2011-03-11 06:41:34 166272 ----a-w- C:\Windows\system32\drivers\nvstor.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:34 148352 ----a-w- C:\Windows\system32\drivers\nvraid.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:26 410496 ----a-w- C:\Windows\system32\drivers\iaStorV.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:12 27008 ----a-w- C:\Windows\system32\drivers\amdxata.sys
2017-07-20 20:39:39 . 2011-03-11 06:41:12 107904 ----a-w- C:\Windows\system32\drivers\amdsata.sys
2017-07-20 20:39:39 . 2011-03-11 05:31:07 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2017-07-20 20:39:25 . 2013-11-26 08:16:50 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2017-07-20 20:39:25 . 2013-11-22 22:48:21 3928064 ----a-w- C:\Windows\system32\d2d1.dll
2017-07-20 20:37:00 . 2016-08-16 20:40:26 343552 ----a-w- C:\Windows\system32\drivers\usbhub.sys
2017-07-20 20:37:00 . 2016-08-16 20:40:12 56320 ----a-w- C:\Windows\system32\drivers\usbehci.sys
2017-07-20 20:37:00 . 2016-08-16 20:40:11 327168 ----a-w- C:\Windows\system32\drivers\usbport.sys
2017-07-20 20:36:59 . 2016-08-16 21:53:03 11776 ----a-w- C:\Windows\system32\drivers\fr-FR\usbhub.sys.mui
2017-07-20 20:36:59 . 2016-08-16 21:52:03 3072 ----a-w- C:\Windows\system32\drivers\fr-FR\usbehci.sys.mui
2017-07-20 20:36:59 . 2016-08-16 21:50:37 25088 ----a-w- C:\Windows\system32\drivers\fr-FR\usbport.sys.mui
2017-07-20 20:36:59 . 2016-08-16 20:40:16 99840 ----a-w- C:\Windows\system32\drivers\usbccgp.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:10 25600 ----a-w- C:\Windows\system32\drivers\usbohci.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:09 30720 ----a-w- C:\Windows\system32\drivers\usbuhci.sys
2017-07-20 20:36:59 . 2016-08-16 20:40:06 7808 ----a-w- C:\Windows\system32\drivers\usbd.sys
2017-07-20 20:36:57 . 2012-07-06 20:07:42 552960 ----a-w- C:\Windows\system32\drivers\bthport.sys
2017-07-20 20:36:57 . 2011-04-28 03:54:56 80384 ----a-w- C:\Windows\system32\drivers\BTHUSB.SYS
2017-07-20 19:34:52 . 2015-07-30 17:57:30 1987584 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2017-07-20 19:34:51 . 2015-07-30 18:06:57 2565120 ----a-w- C:\Windows\system32\d3d10warp.dll
2017-07-20 19:34:44 . 2016-04-14 13:49:13 603648 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2017-07-20 19:34:44 . 2016-04-14 13:21:17 647680 ----a-w- C:\Windows\system32\d3d10level9.dll
2017-07-20 19:34:42 . 2015-12-08 21:54:04 2285056 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2017-07-20 19:34:42 . 2015-12-08 19:07:46 2777088 ----a-w- C:\Windows\system32\msmpeg2vdec.dll
2017-07-20 19:32:35 . 2016-04-09 04:20:04 1230848 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2017-07-20 19:32:35 . 2016-04-09 03:52:25 1424896 ----a-w- C:\Windows\system32\WindowsCodecs.dll
2017-07-20 19:32:25 . 2015-02-04 03:16:35 465920 ----a-w- C:\Windows\system32\WMPhoto.dll
2017-07-20 19:32:25 . 2015-02-04 02:54:09 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2017-07-20 19:14:42 . 2017-07-20 19:14:42 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2017-07-20 19:14:40 . 2017-07-20 19:14:40 -------- d-----w- C:\Windows\system32\wbem\en-US
2017-07-20 19:13:17 . 2017-07-20 19:13:17 -------- d-----w- C:\Windows\SysWow64\Wat
2017-07-20 19:13:17 . 2017-07-20 19:13:17 -------- d-----w- C:\Windows\system32\Wat
2017-07-20 17:37:22 . 2015-07-30 13:13:38 103120 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-07-20 17:37:22 . 2015-07-30 13:13:11 124624 ----a-w- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-07-20 17:31:33 . 2013-10-14 16:00:00 28368 ----a-w- C:\Windows\system32\IEUDINIT.EXE
2017-07-20 16:43:57 . 2017-07-20 16:43:57 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-07-20 14:55:24 . 2012-07-26 05:04:31 2560 ----a-w- C:\Windows\system32\drivers\fr-FR\wdf01000.sys.mui
2017-07-20 12:56:21 . 2012-07-26 02:26:45 87040 ----a-w- C:\Windows\system32\drivers\WUDFPf.sys
2017-07-20 12:56:21 . 2012-07-26 02:26:06 198656 ----a-w- C:\Windows\system32\drivers\WUDFRd.sys
2017-07-20 12:56:20 . 2012-07-26 03:08:53 229888 ----a-w- C:\Windows\system32\WUDFHost.exe
2017-07-20 12:56:20 . 2012-07-26 03:08:14 84992 ----a-w- C:\Windows\system32\WUDFSvc.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 744448 ----a-w- C:\Windows\system32\WUDFx.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 45056 ----a-w- C:\Windows\system32\WUDFCoinstaller.dll
2017-07-20 12:56:20 . 2012-07-26 03:08:14 194048 ----a-w- C:\Windows\system32\WUDFPlatform.dll
2017-07-20 12:36:05 . 2012-03-01 06:46:16 23408 ----a-w- C:\Windows\system32\drivers\fs_rec.sys
2017-07-20 12:36:05 . 2012-03-01 06:28:47 5120 ----a-w- C:\Windows\system32\wmi.dll
2017-07-20 12:36:05 . 2012-03-01 05:29:16 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2017-07-20 12:22:08 . 2014-03-09 21:48:52 171160 ----a-w- C:\Windows\system32\infocardapi.dll
2017-07-20 12:22:08 . 2014-03-09 21:48:51 1389208 ----a-w- C:\Windows\system32\icardagt.exe
2017-07-20 12:22:08 . 2014-03-09 21:47:43 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll
2017-07-20 12:22:08 . 2014-03-09 21:47:42 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe
2017-07-20 12:22:07 . 2014-06-30 22:24:50 8856 ----a-w- C:\Windows\system32\icardres.dll
2017-07-20 12:22:07 . 2014-06-30 22:14:53 8856 ----a-w- C:\Windows\SysWow64\icardres.dll
2017-07-20 12:21:51 . 2014-06-06 06:16:07 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2017-07-20 12:21:51 . 2014-06-06 06:12:57 35480 ----a-w- C:\Windows\system32\TsWpfWrp.exe
2017-07-20 12:18:13 . 2015-01-09 03:14:27 91136 ----a-w- C:\Windows\system32\wdi.dll
2017-07-20 12:18:13 . 2015-01-09 03:14:19 950272 ----a-w- C:\Windows\system32\perftrack.dll
2017-07-20 12:18:13 . 2015-01-09 03:14:19 29696 ----a-w- C:\Windows\system32\powertracker.dll
2017-07-20 12:18:13 . 2015-01-09 02:48:18 76800 ----a-w- C:\Windows\SysWow64\wdi.dll
2017-07-20 12:16:59 . 2017-06-30 02:26:20 9728 ----a-w- C:\Windows\SysWow64\msshooks.dll
2017-07-20 12:15:30 . 2015-07-23 00:02:51 879104 ----a-w- C:\Windows\system32\tdh.dll
2017-07-20 12:15:29 . 2015-07-22 17:53:31 635392 ----a-w- C:\Windows\SysWow64\tdh.dll
2017-07-20 12:13:48 . 2013-12-04 02:16:51 658432 ----a-w- C:\Windows\system32\RMActivate_isv.exe
2017-07-20 12:12:47 . 2015-08-05 17:56:14 1110016 ----a-w- C:\Windows\system32\schedsvc.dll
2017-07-20 12:11:58 . 2014-02-04 02:35:56 190912 ----a-w- C:\Windows\system32\drivers\storport.sys
2017-07-20 12:11:58 . 2014-02-04 02:35:49 274880 ----a-w- C:\Windows\system32\drivers\msiscsi.sys
2017-07-20 12:11:58 . 2014-02-04 02:35:35 27584 ----a-w- C:\Windows\system32\drivers\Diskdump.sys
2017-07-20 12:11:58 . 2014-02-04 02:28:36 2048 ----a-w- C:\Windows\system32\iologmsg.dll
2017-07-20 12:11:58 . 2014-02-04 02:00:39 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
2017-07-20 03:25:38 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll
2017-07-20 03:25:38 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll
2017-07-19 16:47:46 . 2010-06-24 02:33:56 24800 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2017-06-27 22:38:18 . 2017-01-25 17:17:08 1615448 ----a-w- C:\Windows\system32\nvhdagenco6420103.dll
2017-05-16 15:30:56 . 2017-07-20 12:17:10 309760 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2017-05-16 15:12:23 . 2017-07-20 12:17:14 2179072 ----a-w- C:\Windows\apppatch\AcGenral.dll
2017-05-16 15:12:23 . 2017-07-20 12:16:59 2560 ----a-w- C:\Windows\apppatch\AcRes.dll
2017-05-12 18:03:03 . 2017-07-20 12:17:02 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SetupARService;SetupARService;C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe;C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [x]
R2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe;C:\Program Files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\system32\IEEtwCollector.exe;C:\Windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys;C:\Windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Inspection du réseau Microsoft;C:\Program Files\Microsoft Security Client\NisSrv.exe;C:\Program Files\Microsoft Security Client\NisSrv.exe [x]
R3 NvContainerNetworkService;NVIDIA NetworkService Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
R3 NvStreamKms;NVIDIA KMS;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
R3 Origin Client Service;Origin Client Service;C:\Program Files (x86)\Origin\OriginClientService.exe;C:\Program Files (x86)\Origin\OriginClientService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys;C:\Windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Samsung UPD Service;Samsung UPD Service;C:\Windows\System32\SUPDSvc.exe;C:\Windows\SYSNATIVE\SUPDSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys;C:\Windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\system32\Wat\WatAdminSvc.exe;C:\Windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 Origin Web Helper Service;Origin Web Helper Service;C:\Program Files (x86)\Origin\OriginWebHelperService.exe;C:\Program Files (x86)\Origin\OriginWebHelperService.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 iaStorA;iaStorA;C:\Windows\system32\DRIVERS\iaStorA.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;C:\Windows\system32\DRIVERS\iaStorF.sys;C:\Windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\Windows\system32\Drivers\SABI.sys;C:\Windows\SYSNATIVE\Drivers\SABI.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;C:\Windows\System32\svchost.exe;C:\Windows\SYSNATIVE\svchost.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NvContainerLocalSystem;NVIDIA LocalSystem Container;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe;C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [x]
S2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe;C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [x]
S2 NvTelemetryContainer;NVIDIA Telemetry Container;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe;C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 clwvd;CyberLink WebCam Virtual Driver;C:\Windows\system32\DRIVERS\clwvd.sys;C:\Windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;C:\Windows\system32\DRIVERS\ETD.sys;C:\Windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\system32\drivers\nvvad64v.sys;C:\Windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 nvvhci;NVVHCI Enumerator Service;C:\Windows\system32\DRIVERS\nvvhci.sys;C:\Windows\SYSNATIVE\DRIVERS\nvvhci.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys;C:\Windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
--------- X64 Entries -----------
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-11-21 06:33:04 36352]
"MSC"="C:\Program Files\Microsoft Security Client\msseces.exe" [2016-11-14 18:57:26 1353680]
------- Examen supplémentaire -------
uLocal Page = C:\Windows\system32\blank.htm
uStart Page = hxxp://samsung.msn.com
mLocal Page = C:\Windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
FF - ProfilePath - C:\Users\Alexis\AppData\Roaming\Mozilla\Firefox\Profiles\e8699om3.default\
- - - - ORPHELINS SUPPRIMES - - - -
Toolbar-Locked - (no file)
Wow6432Node-HKU-Default-RunOnce-SPReview - C:\Windows\System32\SPReview\SPReview.exe
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - C:\Program Files (x86)\Elantech\ETDCtrl.exe