~ Rapport de ZHPDiag v2014.3.23.27 - Nicolas Coolman (23/03/2014) ~ Lancé par Lucile (21/08/2015 19:30:36) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Activate by user ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.17937 GCIE: Google Chrome v44.0.2403.155 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows 8.1, 64-bit (Build 9600) Windows Server License Manager Script : OK ~ ion : Windows(R) Operating System, OEM_DM channel Windows ID Activation : OK ~ Windows Partial Key : CRYQ6 Windows License : OK ~ Windows Remaining Initializations Number : 999 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 2.1.8.1057 Spybot - Search & Destroy v1.6.2 Windows Defender W8 ---\\ Logiciels d'optimisation du système CCleaner v5.08 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 18 NPAPI ---\\ Informations sur le système ~ Processor: AMD64 Family 20 Model 2 Stepping 0, AuthenticAMD ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3682 MB (55% free) System Restore: Activé (Enable) System drive C: has 357 GB (80%) free of 443 GB ---\\ Mode de connexion au système ~ Computer Name: LUCEMINI ~ User Name: Lucile ~ All Users Names: Lucile, HomeGroupUser$, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Lucile\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Lucile\AppData\Roaming\ ~ %Desktop% : C:\Users\Lucile\Desktop\ ~ %Favorites% : C:\Users\Lucile\Favorites\ ~ %LocalAppData% : C:\Users\Lucile\AppData\Local\ ~ %StartMenu% : C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 357 Go of 443 Go) D: Hard drive, Flash drive, Thumb drive (Free 3 Go of 22 Go) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 41 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) (.28/01/2015 - 00:47:12.) -- C:\Windows\Explorer.exe [2501368] [MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) (.29/10/2014 - 02:25:54.) -- C:\Windows\System32\Wininit.exe [145920] [MD5.C555B5C8142844DED9E3BD94E6313000] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.16/07/2015 - 20:12:42.) -- C:\Windows\System32\wininet.dll [2427904] [MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.29/10/2014 - 02:22:52.) -- C:\Windows\System32\Winlogon.exe [572416] [MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488] [MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200] [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464] [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576] [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352] [MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144] [MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24/07/2014 - 12:45:39.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800] [MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) (.04/11/2014 - 07:54:54.) -- C:\Windows\system32\Drivers\i8042prt.sys [108544] [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848] [MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.27/06/2015 - 04:12:25.) -- C:\Windows\system32\Drivers\MRxSmb.sys [401408] [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624] [MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.15/10/2014 - 09:32:37.) -- C:\Windows\system32\Drivers\ntfs.sys [2025792] [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208] [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832] [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.14/11/2013 - 08:16:40.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584] [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520] [MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.19/06/2014 - 03:13:36.) -- C:\Windows\system32\Drivers\volsnap.sys [310080] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/1082 ~ Mes musiques (My Musics) : 4/6789 ~ Mes Videos (My Videos) : 2/9 ~ Mes Favoris (My Favorites) : 1/80 ~ Mes Documents (My Documents) : 1/2542 ~ Mon Bureau (My Desktop) : 1/8 ~ Menu demarrer (Programs) : 1/21 ~ Hidden Files: Scanned in 00mn 36s ---\\ Processus lancés [MD5.ABFF2B3A80AA5348BE5E43EFD6B415D1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [6554424] [PID.3456] [MD5.724CB7A116F7E1A67009D751BCF86586] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [PID.3020] [MD5.6198A9BC15ED77F318D5DDD1918CF1D1] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024] [PID.5760] [MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.4072] [MD5.B7995C675014EEBE77A0BEB7AFCCFC08] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432] [PID.2860] [MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.4228] [MD5.D6FE9E0F705794A86F87A01B222290EF] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [6109776] [PID.3040] [MD5.36EE7968EC2A4532483D0B9CE900AD06] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8212992] [PID.2308] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Liste des dossiers d'extension Google Chrome ~ Google Lines Browser: 0 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M0 - MFSP: prefs.js [Lucile - s97g8uuv.default] http://www.univ-bpclermont.fr P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40728.0.) -- c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Share.) -- C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.dll P2 - FPN: [HKCU] [hp.com/HPDetect] - (.HP - HPDetect.) -- C:\Users\Lucile\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll ~ Firefox Browser: 5 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.univ-bpclermont.fr R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll ~ IE Browser: 16 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.dll =>.Microsoft Corporation ~ BHO: 6 Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Avast Free Antivirus.lnk . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe O4 - GS\Desktop [Public]: Canon MP Navigator EX 3.0.lnk . (.CANON INC. - Canon MP Navigator EX.) -- C:\Program Files (x86)\Canon\MP Navigator EX 3.0\mpnex30.exe O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>Piriform Ltd O4 - GS\Desktop [Public]: Connected Music powered by Universal Music Group.lnk . (...) -- C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe O4 - GS\Desktop [Public]: DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft Ltd. - Free Studio.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe O4 - GS\Desktop [Public]: Free YouTube to MP3 Converter.lnk . (.DVDVideoSoft Ltd. - FreeYouTubeToMP3Converter.) -- C:\Program Files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\Desktop [Public]: HP Games.lnk . (.WildTangent - WildTangent Games App.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe O4 - GS\Desktop [Public]: HP Photo Creations.lnk . (.Visan / RocketLife - PhotoProduct.exe.) -- C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe O4 - GS\Desktop [Public]: HP Quick Start.lnk . (.Hewlett-Packard - HP Quick Start.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Start\HPQuickstart.exe =>PUP.QuickStart O4 - GS\Desktop [Public]: HP Support Assistant.lnk . (.Hewlett-Packard Company - HP Support Assistant.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe =>.Hewlett-Packard Co O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe O4 - GS\Desktop [Public]: Photos Snapfish.lnk . (...) -- C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\WINDOWS\Installer\{6A0549A9-1B96-498C-ACBC-3943001FEB19}\SkypeIcon.exe O4 - GS\Desktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player 2.0.8.) -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN O4 - GS\Desktop [Public]: wifi d'Orange.lnk . (...) -- C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\OrangeWifi.exe O4 - GS\Program [Public]: Browser Choice.lnk . (...) -- C:\WINDOWS\BrowserChoice\html\default.html O4 - GS\Program [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) -- C:\WINDOWS\Camera\Camera.exe O4 - GS\Program [Public]: Connected Music powered by Meridian.lnk . (.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe O4 - GS\Program [Public]: Connected Music powered by Universal Music Group.lnk . (...) -- C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline O4 - GS\Program [Public]: FileManager.lnk . (.Microsoft Corporation - OneDrive.) -- C:\WINDOWS\FileManager\FileManager.exe O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation O4 - GS\Program [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) -- C:\WINDOWS\FileManager\PhotosApp.exe O4 - GS\Program [Public]: SheetMusicPlusDigitalPrint.lnk . (...) -- C:\Program Files (x86)\SheetMusicPlusDigitalPrint2\SheetMusicPlusDigitalPrint\SheetMusicPlusDigitalPrint.exe O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.) O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation O4 - GS\QuickLaunch [Lucile]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch [Lucile]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar [Lucile]: File Explorer.lnk - Clé orpheline O4 - GS\TaskBar [Lucile]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar [Lucile]: HP Utility Center.lnk . (.Hewlett-Packard Development Company, L.P. - HP Utility Center.) -- C:\HP\Data\HPUC\HPPU.exe O4 - GS\TaskBar [Lucile]: HPConnectedRemoteMgmtUI.lnk . (.Hewlett-Packard - HPConnectedRemoteMgmtUI.) -- C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteMgmtUI.exe O4 - GS\TaskBar [Lucile]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar [Lucile]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O4 - GS\Program [Lucile]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories [Lucile]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation O4 - GS\SendTo [Lucile]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - GS\Desktop [Lucile]: Spybot - Search & Destroy.lnk . (.Safer Networking Limited - Spybot - Search & Destroy.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe O4 - GS\Desktop [Lucile]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman O4 - GS\Desktop [Lucile]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman ~ Global Startup: 56 Scanned in 00mn 04s ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\RunOnce: [NCPluginUpdater] . (.Hewlett-Packard - NCPluginUpdater.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe O4 - HKCU\..\Run: [Power2GoExpress8] Clé orpheline O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe O4 - HKLM\..\Wow6432Node\Run: [BtTray] . (.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe O4 - HKLM\..\Wow6432Node\Run: [Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}] . (.Pas de propriétaire - Orange Wifi Application.) -- C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\OrangeWifi.exe O4 - HKLM\..\Wow6432Node\Run: [Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}] . (.Pas de propriétaire - Orange Updater.) -- C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\UpdteApp.exe O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe O4 - HKUS\S-1-5-21-1717545198-2844099798-3272349975-1002\..\Run: [Power2GoExpress8] Clé orpheline ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Se&nd to OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll =>.Microsoft Corporation O9 - Extra button: Skype for Business Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\Office15\lync.exe O9 - Extra button: OneNote Lin&ked Notes [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll =>.Microsoft Corporation O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll ~ Winsock: 8 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{785779DA-F725-4C29-8177-D7A84EEE7556}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{C6AA46B1-8341-4B49-A67D-087BC0195E53}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{785779DA-F725-4C29-8177-D7A84EEE7556}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{C6AA46B1-8341-4B49-A67D-087BC0195E53}: DhcpNameServer = 192.168.1.1 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: BlueSoleilCS (BlueSoleilCS) . (.IVT Corporation - Bluetooth Application.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co O23 - Service: HP Connected Remote Service (HPConnectedRemote) . (.Hewlett-Packard - HPConnectedRemoteService.) - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe O23 - Service: oem24.inf (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company - SolutionsFrameworkService.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe ~ Services: 16 Scanned in 00mn 27s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1090] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1094] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForLucile.job [354] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Synaptics TouchPad Enhancements.job [264] [MD5.368290D0A612D62DA6F3D798B1BB8FE7] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] [MD5.76F586CEF7018BD376CBBD74AEAC93F5] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1373872] [MD5.3D01BD151A423F6B7D89970E42E31E46] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6453528] =>Piriform Ltd [MD5.724CB7A116F7E1A67009D751BCF86586] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [MD5.CF7927AE082B578E38B82AE6D95B5F90] [APT] [CLVDLauncher] (.CyberLink Corp..) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [338544] [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] [MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107848] [MD5.AF51D4FE088A3EFA5303B36FFFD0581B] [APT] [HPCeeScheduleForLucile] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704] [MD5.28405F60CCF4023CD253B0EB3640C078] [APT] [HPCustParticipation HP Photosmart 5520 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPCustPartic.exe [4119656] [MD5.00000000000000000000000000000000] [APT] [MirageAgent] (...) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (.not file.) [0] [MD5.198A2C0C33188D71ECB5C97E77981CB4] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1586392] ~ Scheduled Task: 19 Scanned in 00mn 15s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\System32\ie4uinit.exe O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Active Setup: 10 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: (CLVirtualDrive) . (.CyberLink - It is a virtual device driver which could c.) - C:\Windows\system32\DRIVERS\CLVirtualDrive.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys ~ Drivers: 42 Scanned in 00mn 01s ---\\ Logiciels installés (O42) O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441} O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {039B859F-360B-58D8-F86F-C277BA6ED7D8} O42 - Logiciel: AMD Quick Stream - (.AppEx Networks.) [HKLM][64Bits] -- {E9EED4AE-682B-4501-9574-D09A21717599}_is1 O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {31B9D218-FED2-4C6C-B19F-7294FFC130B0} O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-49e6e15a-678c-43bf-b6fe-59f437a81c9a O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-5441099d-18ed-4227-a3f6-9c7127d25f16 O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} O42 - Logiciel: Build-a-lot 4 - Power Source - (.WildTangent.) [HKLM][64Bits] -- WTA-48c2983b-e91f-4d43-ab57-d9e6e702c13f O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>Piriform Ltd O42 - Logiciel: Canon MP Navigator EX 3.0 - (...) [HKLM][64Bits] -- MP Navigator EX 3.0 O42 - Logiciel: Canon MP550 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {0DCCD5F4-29E7-4AA0-8C1D-F8E1503B91F4} O42 - Logiciel: Connected Music powered by Universal Music Group version 1.0 - (.Snowite.) [HKLM][64Bits] -- {46037DC7-F927-46DF-935F-D6F122BDD34B}_is1 O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-1b9b4423-364c-4da6-b5d3-3031e6b1bf29 O42 - Logiciel: Crazy Chicken Soccer - (.WildTangent.) [HKLM][64Bits] -- WTA-ba12f379-f260-4103-ac2a-532a78df574f O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A} O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {4862344A-A39C-4897-ACD4-A1BED5163C5A} O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B} O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B} O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32} O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32} O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Energy Star - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7} O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-ed4b7b5d-13aa-4a1f-bcdc-ef69cf2b44f0 O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-7b364119-fced-4ba3-b814-c07353d28981 O42 - Logiciel: Free YouTube to MP3 Converter version 3.12.42.716 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1 O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {FE8DFDD0-A543-4A83-B7A9-C411138194D5} O42 - Logiciel: Gardenscapes: Mansion Makeover - (.WildTangent.) [HKLM][64Bits] -- WTA-ef912787-2ad4-4544-9ef7-f41d999a92f5 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-30925797-69d0-4ea4-b0a4-c483b15b3c11 O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4} O42 - Logiciel: HP Connected Music (Meridian - installer) - (.Meridian Audio Ltd.) [HKLM][64Bits] -- StartHPConnectedMusic O42 - Logiciel: HP Connected Remote - (.Hewlett-Packard.) [HKLM][64Bits] -- {F243A34B-AB7F-4065-B770-B85B767C247C} O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F} O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {25CB4A6B-3854-4AAF-9EC3-0B8E9C2FEF33} O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90} O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations O42 - Logiciel: HP Photosmart 5520 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {CB08AF0F-D14B-4570-83CD-2567CE63CC5F} =>.Hewlett-Packard Co O42 - Logiciel: HP Postscript Converter - (.Hewlett-Packard.) [HKLM][64Bits] -- {6E14E6D6-3175-4E1A-B934-CAB5A86367CD} O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E5823036-6F09-4D0A-B05C-E2BAA129288A} O42 - Logiciel: HP Quick Start - (.Hewlett-Packard.) [HKLM][64Bits] -- {B9494F9E-5EA9-4C70-9F38-659F5E6C0BF3} =>PUP.QuickStart O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {528AB81B-D65A-4AB0-A2B6-82B51A087D01} O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {C2E428EB-116E-41C0-9E84-B22DE9CCA42F} O42 - Logiciel: HP Support Solutions Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {96D12EC9-720B-45FB-904C-36D6307A1C76} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} O42 - Logiciel: HP Utility Center - (.Hewlett-Packard.) [HKLM][64Bits] -- {0C57987A-A03A-4B95-A309-D23F78F406CA} O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {30B2D1D8-0A07-4B71-9553-0710C5D31E35} O42 - Logiciel: HPDetect - (.HP.) [HKLM][64Bits] -- {CCCDD476-98F9-4B06-91DB-23F27CEC3BE1} O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D} O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001} O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-6ec9da58-948b-4dfe-8523-d34d8a338b53 O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-d047a19a-e173-4fa9-8be5-0f102e32dc2d O42 - Logiciel: Logiciel de base du périphérique HP Photosmart 5520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {97104D7C-FAC1-40A2-A34D-7950424FAEDE} =>.Hewlett-Packard Co O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA} O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {F842F8B0-6942-4930-821F-543E976B2C66} O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-0174aa98-dd4c-47a9-a4f9-7eed56cef7a9 O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-423142e7-2583-4ae1-ad83-4ad5cf41a198 O42 - Logiciel: Office 15 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-0000-1000-0000000FF1CE} O42 - Logiciel: Office 15 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-007E-0000-1000-0000000FF1CE} O42 - Logiciel: Office 15 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-008C-040C-1000-0000000FF1CE} O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-afdc8033-407a-44d2-9118-977902a40f0d O42 - Logiciel: Ralink Bluetooth Stack64 - (.Mediatek.) [HKLM][64Bits] -- {6A44FD56-763D-B0F9-7911-94E38DE852FB} O42 - Logiciel: Ralink RT3290 802.11bgn Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF} O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-cf29f395-cf3e-47e9-b4e8-431461040cac O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} O42 - Logiciel: Royal Envoy 2 Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-46ccf8ca-949c-4073-a1c7-24ab6596a583 O42 - Logiciel: Sheet Music Plus Digital Print - (.Sheet Music Plus, LLC.) [HKLM][64Bits] -- {4962F4E2-C1FA-1051-1504-28B8FE63946E} O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-e5225125-f605-4dda-9cce-178e592e63d4 O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-693af418-5f58-4e26-b56c-ec86a3866805 O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp O42 - Logiciel: Youda Jewel Shop - (.WildTangent.) [HKLM][64Bits] -- WTA-fff05c58-ed8e-4a23-8e60-76cc5df96d8e O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-22ff1806-78b2-458d-b6d5-82fe5ad503f2 O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} O42 - Logiciel: wifi d'Orange - (.Orange.) [HKLM][64Bits] -- {EC45CDF6-2664-4222-9A75-5FB6AD1B8E35} O42 - Logiciel: Étude pour l'amélioration du produit HP Photosmart 5520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {DC2D49CF-2452-4191-A18C-41F1C02A7228} =>.Hewlett-Packard Co ~ Logic: 72 Scanned in 00mn 01s ---\\ HKCU & HKLM Software Keys [HKCU\Software\ATI] [HKCU\Software\AVAST Software] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\DVDVideoSoft] [HKCU\Software\AppDataLow] [HKCU\Software\Canon] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\CyberLink] [HKCU\Software\DVDVideoSoft] [HKCU\Software\Google] [HKCU\Software\HP Photo Creations] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\HewlettPackard] [HKCU\Software\HipSoft] [HKCU\Software\IM Providers] [HKCU\Software\Lake] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\PDF Architect] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\RegisteredApplications] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Skype] [HKCU\Software\Symantec] [HKCU\Software\Synaptics] [HKCU\Software\Trolltech] [HKCU\Software\Visan] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\AppEx Accelerator] [HKLM\Software\AppEx Networks] [HKLM\Software\Apple Inc.] [HKLM\Software\Canon] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\DVDVideoSoft] [HKLM\Software\HPQ] [HKLM\Software\HP] [HKLM\Software\Hewlett-Packard] [HKLM\Software\IDT] [HKLM\Software\IM Providers] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\Khronos] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\Synaptics] [HKLM\Software\Wow6432Node\ATI Technologies] [HKLM\Software\Wow6432Node\ATI] [HKLM\Software\Wow6432Node\AVAST Software] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AppDataLow] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\BSPACode] [HKLM\Software\Wow6432Node\Canon] [HKLM\Software\Wow6432Node\Caphyon] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\CyberLink] [HKLM\Software\Wow6432Node\DVDVideoSoft] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\IDT] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\IVT Corporation] [HKLM\Software\Wow6432Node\Insyde] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\Lake] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\PDFCreator] [HKLM\Software\Wow6432Node\Piriform] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Ralink Corporation] [HKLM\Software\Wow6432Node\Ralink] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\RocketLife] [HKLM\Software\Wow6432Node\Safer Networking Limited] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\Symantec] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Visan] [HKLM\Software\Wow6432Node\WildTangent] [HKLM\Software\Wow6432Node\Wow6432Node] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node] ~ Key Software: 288 Scanned in 00mn 01s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 12/09/2014 - 20:10:07 - [0,323] ----D C:\Program Files (x86)\Adobe O43 - CFD: 19/01/2013 - 15:14:38 - [2,145] ----D C:\Program Files (x86)\AMD APP O43 - CFD: 19/01/2013 - 15:14:28 - [59,040] ----D C:\Program Files (x86)\ATI Technologies O43 - CFD: 19/01/2013 - 15:21:49 - [0,602] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 29/09/2013 - 19:59:25 - [72,324] ----D C:\Program Files (x86)\Canon O43 - CFD: 19/08/2015 - 22:09:46 - [248,068] ----D C:\Program Files (x86)\Common Files O43 - CFD: 19/10/2012 - 21:37:20 - [2,557] ----D C:\Program Files (x86)\Connected Music powered by Universal Music Group O43 - CFD: 31/12/2013 - 18:50:02 - [-1426,704] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 28/07/2014 - 21:44:53 - [11,544] ----D C:\Program Files (x86)\DVDVideoSoft O43 - CFD: 27/02/2015 - 21:14:48 - [549,335] ----D C:\Program Files (x86)\Google O43 - CFD: 25/03/2014 - 19:26:58 - [405,291] ----D C:\Program Files (x86)\Hewlett-Packard O43 - CFD: 27/07/2013 - 17:25:24 - [14,220] ----D C:\Program Files (x86)\HP O43 - CFD: 19/10/2012 - 21:55:59 - [-1254,862] ----D C:\Program Files (x86)\HP Games O43 - CFD: 27/07/2013 - 17:25:47 - [0,429] ----D C:\Program Files (x86)\HP Photo Creations O43 - CFD: 19/10/2012 - 21:37:08 - [0,720] ----D C:\Program Files (x86)\HPConnectedMusic O43 - CFD: 19/01/2013 - 15:49:38 - [178,445] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 20/08/2015 - 22:47:11 - [6,557] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 28/06/2015 - 21:58:16 - [52,864] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 20/08/2015 - 22:49:08 - [40,892] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 19/10/2012 - 21:32:21 - [5,306] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 19/10/2012 - 21:33:17 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 31/12/2013 - 19:57:41 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 31/12/2013 - 19:23:03 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 27/07/2013 - 16:48:04 - [1,563] R---D C:\Program Files (x86)\Online Services O43 - CFD: 18/04/2014 - 21:24:53 - [21,838] ----D C:\Program Files (x86)\Orange O43 - CFD: 14/10/2014 - 19:45:25 - [22,906] ----D C:\Program Files (x86)\PDFCreator O43 - CFD: 21/08/2013 - 23:44:10 - [17,611] ----D C:\Program Files (x86)\Ralink Corporation O43 - CFD: 19/01/2013 - 15:20:15 - [17,209] ----D C:\Program Files (x86)\Realtek O43 - CFD: 31/12/2013 - 19:23:03 - [36,665] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 25/01/2015 - 21:50:07 - [1,032] ----D C:\Program Files (x86)\SheetMusicPlusDigitalPrint2 O43 - CFD: 19/08/2015 - 22:09:46 - [67,337] R---D C:\Program Files (x86)\Skype O43 - CFD: 20/08/2015 - 23:03:01 - [53,136] ----D C:\Program Files (x86)\Spybot - Search & Destroy O43 - CFD: 19/01/2013 - 16:04:29 - [2,444] ----D C:\Program Files (x86)\SymSilent O43 - CFD: 07/08/2013 - 22:24:32 - [102,176] ----D C:\Program Files (x86)\VideoLAN O43 - CFD: 19/10/2012 - 21:54:35 - [66,181] ----D C:\Program Files (x86)\WildGames O43 - CFD: 09/02/2014 - 12:25:57 - [17,579] ----D C:\Program Files (x86)\WildTangent Games O43 - CFD: 20/08/2015 - 22:47:08 - [1,405] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 19/10/2012 - 21:33:14 - [86,758] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 12/03/2015 - 23:35:58 - [5,739] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 12/03/2015 - 23:35:57 - [3,172] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 12/03/2015 - 23:35:57 - [0,220] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 22/08/2013 - 17:36:30 - [7,239] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 12/03/2015 - 23:35:56 - [5,247] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 12/03/2015 - 23:35:57 - [0,220] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 31/12/2013 - 19:57:44 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 22/08/2013 - 17:36:30 - [0] ----D C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 21/08/2015 - 19:28:10 - [17,144] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 19/08/2015 - 22:03:54 - [46,517] ----D C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 21/08/2013 - 21:24:43 - [0,091] ----D C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 28/07/2014 - 21:44:26 - [141,706] ----D C:\Program Files (x86)\Common Files\DVDVideoSoft O43 - CFD: 31/12/2013 - 19:36:57 - [1,840] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 31/12/2013 - 19:57:39 - [44,908] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 19/10/2012 - 21:25:26 - [1,416] ----D C:\Program Files (x86)\Common Files\Nikon O43 - CFD: 29/09/2013 - 19:56:55 - [0] ----D C:\Program Files (x86)\Common Files\PDF Architect O43 - CFD: 22/08/2013 - 17:36:33 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 19/08/2015 - 22:09:46 - [2,289] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 12/03/2015 - 23:35:55 - [9,298] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 19/10/2012 - 21:31:45 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 12/09/2014 - 20:10:17 - [0] ----D C:\ProgramData\Adobe O43 - CFD: 19/01/2013 - 15:13:58 - [0] ----D C:\ProgramData\AMD O43 - CFD: 19/01/2013 - 15:21:47 - [2,558] ----D C:\ProgramData\Apple O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Application Data O43 - CFD: 19/01/2013 - 16:16:38 - [0] ----D C:\ProgramData\ATI O43 - CFD: 19/08/2015 - 21:46:21 - [9,734] ----D C:\ProgramData\AVAST Software O43 - CFD: 09/02/2014 - 12:26:26 - [0,001] ----D C:\ProgramData\BlueStacks O43 - CFD: 27/07/2013 - 15:33:14 - [0] -SH-D C:\ProgramData\Bureau O43 - CFD: 29/09/2013 - 19:52:59 - [20,349] --H-D C:\ProgramData\CanonBJ O43 - CFD: 06/09/2014 - 18:52:34 - [0,002] --H-D C:\ProgramData\CanonIJScan O43 - CFD: 26/09/2013 - 22:17:34 - [0,166] ----D C:\ProgramData\CyberLink O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Desktop O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Documents O43 - CFD: 24/03/2014 - 22:40:06 - [55,003] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 18/12/2013 - 18:47:51 - [0,242] ----D C:\ProgramData\HipSoft O43 - CFD: 27/07/2013 - 17:24:55 - [13,371] ----D C:\ProgramData\HP O43 - CFD: 30/11/2013 - 13:36:10 - [61,719] ----D C:\ProgramData\HP Photo Creations O43 - CFD: 19/01/2013 - 15:43:19 - [0,314] ----D C:\ProgramData\install_clap O43 - CFD: 06/04/2014 - 15:41:01 - [52,014] ----D C:\ProgramData\Malwarebytes O43 - CFD: 27/07/2013 - 15:33:14 - [0] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 22/04/2015 - 00:18:58 - [1071,142] -S--D C:\ProgramData\Microsoft O43 - CFD: 19/10/2012 - 21:31:57 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation O43 - CFD: 27/07/2013 - 15:33:14 - [0] -SH-D C:\ProgramData\Modèles O43 - CFD: 28/07/2014 - 21:51:49 - [0,036] ----D C:\ProgramData\Mozilla O43 - CFD: 27/07/2013 - 17:00:52 - [0,017] ----D C:\ProgramData\Norton O43 - CFD: 19/01/2013 - 16:02:28 - [18,055] ----D C:\ProgramData\NortonInstaller O43 - CFD: 09/02/2014 - 11:47:48 - [0,663] ----D C:\ProgramData\Orange O43 - CFD: 13/03/2014 - 15:34:46 - [0] ----D C:\ProgramData\PlayFirst O43 - CFD: 31/12/2013 - 19:57:53 - [0,039] ----D C:\ProgramData\PRICache O43 - CFD: 21/08/2013 - 23:44:16 - [5,047] ----D C:\ProgramData\Ralink Bluetooth Stack O43 - CFD: 19/01/2013 - 15:22:04 - [7,075] ----D C:\ProgramData\Ralink Driver O43 - CFD: 21/07/2015 - 09:32:02 - [0,004] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 19/08/2015 - 21:38:01 - [0,681] ----D C:\ProgramData\RogueKiller O43 - CFD: 19/08/2015 - 22:09:26 - [69,465] ----D C:\ProgramData\Skype O43 - CFD: 20/08/2015 - 23:25:17 - [0,058] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Start Menu O43 - CFD: 19/01/2013 - 15:29:05 - [0,179] ----D C:\ProgramData\Synaptics O43 - CFD: 19/01/2013 - 15:49:40 - [3,467] ----D C:\ProgramData\Temp O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Templates O43 - CFD: 13/02/2015 - 19:01:55 - [0,001] ----D C:\ProgramData\TP-LINK O43 - CFD: 28/07/2013 - 12:51:31 - [0,148] ----D C:\ProgramData\Visan O43 - CFD: 04/10/2013 - 21:55:55 - [-910,404] ----D C:\ProgramData\WildTangent O43 - CFD: 19/10/2012 - 21:39:20 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} O43 - CFD: 12/09/2014 - 20:10:12 - [3,526] ----D C:\Users\Lucile\AppData\Roaming\Adobe O43 - CFD: 27/07/2013 - 16:49:54 - [0] ----D C:\Users\Lucile\AppData\Roaming\ATI O43 - CFD: 19/08/2015 - 21:50:44 - [6,280] ----D C:\Users\Lucile\AppData\Roaming\AVAST Software O43 - CFD: 15/11/2013 - 07:52:19 - [0,061] ----D C:\Users\Lucile\AppData\Roaming\Awem O43 - CFD: 06/09/2014 - 18:52:34 - [0,017] ----D C:\Users\Lucile\AppData\Roaming\Canon O43 - CFD: 25/01/2015 - 21:51:13 - [0] ----D C:\Users\Lucile\AppData\Roaming\com.sheetmusicplus.DigitalAirPrint2 O43 - CFD: 26/08/2013 - 22:55:32 - [1,049] ----D C:\Users\Lucile\AppData\Roaming\CyberLink O43 - CFD: 23/11/2014 - 21:48:04 - [0,001] ----D C:\Users\Lucile\AppData\Roaming\dvdcss O43 - CFD: 28/07/2014 - 21:45:10 - [1,587] ----D C:\Users\Lucile\AppData\Roaming\DVDVideoSoft O43 - CFD: 11/10/2014 - 18:38:42 - [0] ----D C:\Users\Lucile\AppData\Roaming\funkitron O43 - CFD: 18/12/2013 - 19:00:56 - [0,002] ----D C:\Users\Lucile\AppData\Roaming\Gaijin Ent O43 - CFD: 28/07/2013 - 13:07:23 - [2,310] ----D C:\Users\Lucile\AppData\Roaming\Hewlett-Packard O43 - CFD: 09/02/2014 - 11:52:42 - [3,738] ----D C:\Users\Lucile\AppData\Roaming\HewlettPackard O43 - CFD: 27/08/2013 - 17:51:29 - [0,188] ----D C:\Users\Lucile\AppData\Roaming\hpqlog O43 - CFD: 19/01/2015 - 19:42:57 - [0,028] ----D C:\Users\Lucile\AppData\Roaming\HpUpdate O43 - CFD: 31/12/2013 - 20:29:15 - [0] ----D C:\Users\Lucile\AppData\Roaming\Identities O43 - CFD: 13/01/2014 - 01:09:35 - [0,003] ----D C:\Users\Lucile\AppData\Roaming\IDT O43 - CFD: 07/11/2013 - 05:28:33 - [0,147] ----D C:\Users\Lucile\AppData\Roaming\Jewel Match 3 O43 - CFD: 27/07/2013 - 17:04:58 - [0,055] ----D C:\Users\Lucile\AppData\Roaming\Macromedia O43 - CFD: 04/10/2013 - 21:21:48 - [0,026] ----D C:\Users\Lucile\AppData\Roaming\Malwarebytes O43 - CFD: 12/01/2015 - 17:25:04 - [15,361] -S--D C:\Users\Lucile\AppData\Roaming\Microsoft O43 - CFD: 28/07/2014 - 21:52:41 - [24,213] ----D C:\Users\Lucile\AppData\Roaming\Mozilla O43 - CFD: 14/08/2013 - 21:27:47 - [0,002] ----D C:\Users\Lucile\AppData\Roaming\PDF Architect O43 - CFD: 13/03/2014 - 15:34:46 - [0,010] ----D C:\Users\Lucile\AppData\Roaming\PlayFirst O43 - CFD: 19/08/2015 - 22:20:43 - [30,299] ----D C:\Users\Lucile\AppData\Roaming\Skype O43 - CFD: 27/07/2013 - 16:45:37 - [0] ----D C:\Users\Lucile\AppData\Roaming\Synaptics O43 - CFD: 28/07/2013 - 12:51:30 - [0] ----D C:\Users\Lucile\AppData\Roaming\Visan O43 - CFD: 16/02/2015 - 23:08:58 - [0,078] ----D C:\Users\Lucile\AppData\Roaming\vlc O43 - CFD: 27/07/2013 - 17:17:57 - [0] ----D C:\Users\Lucile\AppData\Roaming\WebApp O43 - CFD: 03/09/2013 - 21:25:54 - [3,903] ----D C:\Users\Lucile\AppData\Roaming\WildTangent O43 - CFD: 21/08/2015 - 19:32:20 - [0,016] ----D C:\Users\Lucile\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 12/09/2014 - 20:09:35 - [0,001] ----D C:\Users\Lucile\AppData\Local\Adobe O43 - CFD: 27/07/2013 - 16:51:46 - [0] ----D C:\Users\Lucile\AppData\Local\AMD O43 - CFD: 31/12/2013 - 19:47:09 - [0] -SH-D C:\Users\Lucile\AppData\Local\Application Data O43 - CFD: 27/02/2015 - 21:12:03 - [1,768] ----D C:\Users\Lucile\AppData\Local\Apps O43 - CFD: 31/12/2013 - 20:30:04 - [6,920] ----D C:\Users\Lucile\AppData\Local\assembly O43 - CFD: 27/07/2013 - 16:49:54 - [0,058] ----D C:\Users\Lucile\AppData\Local\ATI O43 - CFD: 26/08/2013 - 22:55:07 - [0,002] ----D C:\Users\Lucile\AppData\Local\bluesoleil O43 - CFD: 19/08/2015 - 21:33:06 - [20,476] ----D C:\Users\Lucile\AppData\Local\CrashDumps O43 - CFD: 05/08/2013 - 17:30:28 - [0,007] ----D C:\Users\Lucile\AppData\Local\Cyberlink O43 - CFD: 27/02/2015 - 21:12:35 - [0] ----D C:\Users\Lucile\AppData\Local\Deployment O43 - CFD: 22/07/2015 - 19:50:44 - [0,383] ----D C:\Users\Lucile\AppData\Local\Diagnostics O43 - CFD: 17/01/2015 - 17:13:39 - [0] -SH-D C:\Users\Lucile\AppData\Local\EmieBrowserModeList O43 - CFD: 18/04/2014 - 21:25:46 - [0] -SH-D C:\Users\Lucile\AppData\Local\EmieSiteList O43 - CFD: 18/04/2014 - 21:25:47 - [0] -SH-D C:\Users\Lucile\AppData\Local\EmieUserList O43 - CFD: 18/11/2013 - 21:25:42 - [0] ----D C:\Users\Lucile\AppData\Local\Facebook O43 - CFD: 27/02/2015 - 21:15:30 - [585,848] ----D C:\Users\Lucile\AppData\Local\Google O43 - CFD: 04/06/2015 - 21:27:48 - [0] ----D C:\Users\Lucile\AppData\Local\GWX O43 - CFD: 12/09/2013 - 12:49:24 - [0,082] ----D C:\Users\Lucile\AppData\Local\Hewlett-Packard O43 - CFD: 31/12/2013 - 19:47:09 - [0] -SH-D C:\Users\Lucile\AppData\Local\Historique O43 - CFD: 02/03/2014 - 15:49:49 - [0,073] ----D C:\Users\Lucile\AppData\Local\HP O43 - CFD: 19/08/2013 - 23:04:41 - [0] ----D C:\Users\Lucile\AppData\Local\HP Quick Start =>PUP.QuickStart O43 - CFD: 12/09/2014 - 20:07:27 - [0] ----D C:\Users\Lucile\AppData\Local\Macromedia O43 - CFD: 28/02/2015 - 13:05:37 - [388,310] ----D C:\Users\Lucile\AppData\Local\Microsoft O43 - CFD: 09/11/2014 - 14:32:54 - [0,267] ----D C:\Users\Lucile\AppData\Local\Microsoft Help O43 - CFD: 28/07/2014 - 21:52:49 - [14,125] ----D C:\Users\Lucile\AppData\Local\Mozilla O43 - CFD: 09/02/2014 - 11:47:56 - [14,934] ----D C:\Users\Lucile\AppData\Local\Orange O43 - CFD: 04/07/2015 - 15:58:31 - [77,475] ----D C:\Users\Lucile\AppData\Local\Packages O43 - CFD: 27/07/2013 - 16:46:20 - [0,039] ----D C:\Users\Lucile\AppData\Local\Power2Go8 O43 - CFD: 14/08/2013 - 21:01:03 - [0] ----D C:\Users\Lucile\AppData\Local\Programs O43 - CFD: 18/04/2014 - 21:23:24 - [9,347] ----D C:\Users\Lucile\AppData\Local\SelfExtractible O43 - CFD: 23/06/2015 - 20:12:01 - [5,279] ----D C:\Users\Lucile\AppData\Local\Skype O43 - CFD: 21/08/2015 - 19:28:13 - [0,125] ----D C:\Users\Lucile\AppData\Local\Temp O43 - CFD: 31/12/2013 - 19:47:09 - [0] -SH-D C:\Users\Lucile\AppData\Local\Temporary Internet Files O43 - CFD: 06/03/2015 - 23:15:18 - [0] ----D C:\Users\Lucile\AppData\Local\VirtualStore O43 - CFD: 03/03/2014 - 16:33:18 - [0,012] ----D C:\Users\Lucile\AppData\Local\Windows Live O43 - CFD: 22/08/2013 - 17:36:32 - [0,004] R---D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - 17:36:32 - [0,001] R---D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 18/07/2015 - 20:05:27 - [0] R---D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 22/08/2013 - 17:36:32 - [0] ----D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 18/07/2015 - 20:05:27 - [0] R---D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 31/12/2013 - 19:48:49 - [0,006] R---D C:\Users\Lucile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools ~ Program Folder: 173 Scanned in 01mn 30s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.AE0E60AE84B2E5CD261E6BD96F074841] - 18/08/2015 - 11:17:38 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [44032] O44 - LFC:[MD5.A1DB29E2E47A99E1992B6049ED838C9F] - 18/08/2015 - 11:17:38 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [358912] O44 - LFC:[MD5.1E93CBB75D167CDF85501A8C790097A8] - 18/08/2015 - 11:17:39 ---A- . (.Microsoft Corporation - Service de cache de police Windows.) -- C:\Windows\System32\FntCache.dll [1381888] O44 - LFC:[MD5.6789160F360BF5BAF50CFEBC4043FA8E] - 18/08/2015 - 11:17:39 ---A- . (.Microsoft Corporation - Services de typographie Microsoft DirectX.) -- C:\Windows\System32\DWrite.dll [1994752] O44 - LFC:[MD5.4F9BFE0A0E3D979DE1C2C717E7FF34E0] - 18/08/2015 - 11:17:40 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4177408] O44 - LFC:[MD5.FC2EA5BD5307D2CFA5AAA38E0C0DDCE9] - 18/08/2015 - 11:18:45 ---A- . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\System32\notepad.exe [221184] O44 - LFC:[MD5.FC2EA5BD5307D2CFA5AAA38E0C0DDCE9] - 18/08/2015 - 11:18:45 ---A- . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\notepad.exe [221184] O44 - LFC:[MD5.1FD24A3B2B1BBEEC69EE009F3B110286] - 18/08/2015 - 11:19:16 ---A- . (.Microsoft Corporation - Remote Desktop Services Client for Microsof.) -- C:\Windows\System32\rdvidcrl.dll [1101824] O44 - LFC:[MD5.570CCDEB1D230BEFDE7A0556FB02C674] - 18/08/2015 - 11:19:18 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll [7032320] O44 - LFC:[MD5.753F99CF6554FD9CBCDC79E7CB94E63A] - 18/08/2015 - 11:19:24 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [2345472] O44 - LFC:[MD5.3D6FE1BAB1FCBEECCA6F64E4C0F11640] - 18/08/2015 - 11:19:24 ---A- . (.Microsoft Corporation - MSXML 6.0.) -- C:\Windows\System32\msxml6.dll [2529880] O44 - LFC:[MD5.F776672C327EA4B8409B337422B87350] - 18/08/2015 - 11:19:27 ---A- . (.Microsoft Corporation - Processus d'exécution client-serveur.) -- C:\Windows\System32\csrsrv.dll [59392] O44 - LFC:[MD5.05B08C20B8428ECE088CB5635696A48D] - 18/08/2015 - 11:19:27 ---A- . (.Microsoft Corporation - Windows NT BASE API Server DLL.) -- C:\Windows\System32\basesrv.dll [59392] O44 - LFC:[MD5.3CDAF271CFC64DB18F1B6D8BF495EB58] - 18/08/2015 - 11:22:13 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll [1735000] O44 - LFC:[MD5.9A788037D768809DFD677F4BA08A224A] - 18/08/2015 - 11:22:13 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [101720] O44 - LFC:[MD5.7E85DB0463AD2403AE84AD162B162279] - 18/08/2015 - 11:22:13 ---A- . (.Microsoft Corporation - Hôte de service Superfetch.) -- C:\Windows\System32\sysmain.dll [1217024] O44 - LFC:[MD5.C8219AC86CFE28102878B69F414F2079] - 18/08/2015 - 11:22:14 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [7458648] O44 - LFC:[MD5.F077AA3AF6BF55445801661ADBC63D06] - 18/08/2015 - 11:22:18 ---A- . (.Microsoft Corporation - Web DAV Client DLL.) -- C:\Windows\System32\davclnt.dll [104448] O44 - LFC:[MD5.40F83492DB9ABBA59773A45FB487C8B2] - 18/08/2015 - 11:22:19 ---A- . (.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) -- C:\Windows\System32\WebClnt.dll [228864] O44 - LFC:[MD5.6FD5F29679239BF336D9AC045EFDE74F] - 18/08/2015 - 11:32:51 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [35840] O44 - LFC:[MD5.5B5196CFE7A703D9F9309859EA70462C] - 18/08/2015 - 11:32:52 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [891904] O44 - LFC:[MD5.F3C92D851BB901EDB5C7A977EFD578A8] - 18/08/2015 - 11:32:52 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [409088] O44 - LFC:[MD5.DB3B4BE9021D0ADB3B34D00AB94D0895] - 18/08/2015 - 11:32:52 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288] O44 - LFC:[MD5.C82107E0CC8E12DE7CFBB4A9BFFD62BA] - 18/08/2015 - 11:32:52 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [95744] O44 - LFC:[MD5.6CDF693DB2B20604E7314F8323F52F00] - 18/08/2015 - 11:32:52 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [136904] O44 - LFC:[MD5.7CFB5C243562FEDEE84B2BBF12BEE33E] - 18/08/2015 - 11:32:54 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [2228736] O44 - LFC:[MD5.BB6F53F80AA1789815963C16E303A973] - 18/08/2015 - 11:32:57 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3704320] O44 - LFC:[MD5.0A11C834B8CA37AE07DF5E8727846BEC] - 18/08/2015 - 11:33:56 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2880000] O44 - LFC:[MD5.158C1D034080B9DC0A9A2CD9E8DB0199] - 18/08/2015 - 11:33:56 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1545728] O44 - LFC:[MD5.77A4FEE4031F90DBB5C16F6A8FC855BC] - 18/08/2015 - 11:33:57 ---A- . (.Microsoft Corporation - Convertisseur Microsoft HTML.) -- C:\Windows\System32\html.iec [417792] O44 - LFC:[MD5.43AF91A40E44205272335E33B7BBA4C3] - 18/08/2015 - 11:33:57 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2125824] O44 - LFC:[MD5.C555B5C8142844DED9E3BD94E6313000] - 18/08/2015 - 11:34:07 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2427904] O44 - LFC:[MD5.C580215DE134617942FF1740A1235CE4] - 18/08/2015 - 11:34:14 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768] O44 - LFC:[MD5.E892688BB1C8B0B485C27436F2B963CF] - 18/08/2015 - 11:34:14 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [615936] O44 - LFC:[MD5.D25352D34FDE9AF82F6362CA86A317C3] - 18/08/2015 - 11:34:15 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\System32\iepeers.dll [145408] O44 - LFC:[MD5.3E4568FFE110FE81CA1A75BF1149153B] - 18/08/2015 - 11:34:19 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280] O44 - LFC:[MD5.E6CF1778145272A83E58C4AB66358AF3] - 18/08/2015 - 11:34:21 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [25192448] O44 - LFC:[MD5.8EB07ED289C0F53E3838DC812E5A9CCC] - 18/08/2015 - 11:34:27 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll [262144] O44 - LFC:[MD5.4E37600CED71FFCE7EEBB129A90B3431] - 18/08/2015 - 11:34:28 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2885632] O44 - LFC:[MD5.995797E4DE4215715CA2040BB81F4594] - 18/08/2015 - 11:34:37 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [14451200] O44 - LFC:[MD5.C6960223A6BAB3CF83DB09565D191844] - 18/08/2015 - 11:34:39 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [5923328] O44 - LFC:[MD5.591A23DF78E3DDE47FF769C82CAC5AC7] - 18/08/2015 - 11:34:39 ---A- . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [1032704] O44 - LFC:[MD5.9C7B3D3A9A945AED5CC97C6535C9D857] - 18/08/2015 - 11:34:40 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [816640] O44 - LFC:[MD5.39E11AA344781CD5773BE9E2472C84E4] - 18/08/2015 - 11:34:40 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192] O44 - LFC:[MD5.25991A1635AF725E9DC840A6A36824EC] - 19/08/2015 - 19:44:58 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428888] O44 - LFC:[MD5.746DDF7D59AB8D721C88D48434597E8D] - 19/08/2015 - 19:44:58 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2476376] O44 - LFC:[MD5.EBB3AD82E6CE2B4B978E7CBF00E6089D] - 19/08/2015 - 19:45:35 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll [18823680] O44 - LFC:[MD5.BA8572BDA108A0C54187AE9C13306FB0] - 19/08/2015 - 19:58:24 ---A- . (.Microsoft Corporation - Compatibility Upgrade Migration Host.) -- C:\Windows\System32\acmigration.dll [69120] O44 - LFC:[MD5.90F1A2A33C7EC9885994746B83201D6F] - 19/08/2015 - 19:58:24 ---A- . (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\Windows\System32\CompatTelRunner.exe [25776] O44 - LFC:[MD5.E57267B8ED09F569FA603E8868845B0E] - 19/08/2015 - 19:58:25 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [1148416] O44 - LFC:[MD5.1E9B6977F7928FF9FB9DC64A21F000AD] - 19/08/2015 - 19:58:25 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [437248] O44 - LFC:[MD5.F6506621BF6CEE122A7CE155296299A8] - 19/08/2015 - 19:58:25 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [743424] O44 - LFC:[MD5.9D74FEC6CE8EF72CF5FF83447F45B2ED] - 19/08/2015 - 19:58:25 ---A- . (.Microsoft Corporation - Inventory Agent.) -- C:\Windows\System32\invagent.dll [774144] O44 - LFC:[MD5.89DF19162B8ADE69856978CE4A979173] - 19/08/2015 - 19:58:26 ---A- . (.Microsoft Corporation - Compatibility Appraiser.) -- C:\Windows\System32\appraiser.dll [1116160] O44 - LFC:[MD5.97DC5967F65503213FD1F1B3E4A6F983] - 19/08/2015 - 19:58:31 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specificatio.) -- C:\Windows\System32\Drivers\ndis.sys [1113944] O44 - LFC:[MD5.52DA047D3968A40CD9E353B1D256FACD] - 19/08/2015 - 19:58:32 ---A- . (.Microsoft Corporation - Objets de configuration du réseau.) -- C:\Windows\System32\netcfgx.dll [487256] O44 - LFC:[MD5.CE67080F00E0AF32755096CEA6430ABA] - 19/08/2015 - 19:58:58 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [114520] O44 - LFC:[MD5.81285DDC994F03379DB46419300B2DCB] - 19/08/2015 - 19:58:58 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [44560] O44 - LFC:[MD5.26B8FED3F3B85F5F0C4BD03FD00B9941] - 19/08/2015 - 19:58:59 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [270168] O44 - LFC:[MD5.3DCE7705F6770C90A616B149C261E8EE] - 19/08/2015 - 20:06:42 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [411133] O44 - LFC:[MD5.B7A08CA9AEE12D9B4DC883CC0F26937F] - 19/08/2015 - 20:38:26 ---A- . (...) -- C:\DelFix.txt [326] O44 - LFC:[MD5.531121E7ED50084B493A69F8F8A7A927] - 19/08/2015 - 20:43:16 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624] O44 - LFC:[MD5.5B6A864A2CE292992040CEBAFC8F746A] - 19/08/2015 - 20:48:33 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1048856] O44 - LFC:[MD5.B58952E67FC2FA0E689F4F0F4E3091E6] - 19/08/2015 - 20:48:45 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43112] O44 - LFC:[MD5.76D585093398DB973470BB83FCF0CE52] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [90968] O44 - LFC:[MD5.525F5989C095F5757414E1F4B39175B2] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\Drivers\aswHwid.sys [28656] O44 - LFC:[MD5.21C13E3C9B801C8AE172FABBD235221E] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\Drivers\aswRvrt.sys [65224] O44 - LFC:[MD5.719FF5568B5E71832541636E2A7DFE27] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93528] O44 - LFC:[MD5.C43A0929DE32035499D6BB39A7F44439] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [447944] O44 - LFC:[MD5.A4DDD3B3A0B3EB00EC64D90CDF5405DD] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [378880] O44 - LFC:[MD5.763C27EA21875F54615A0174EEC78FC4] - 19/08/2015 - 20:48:52 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [150672] O44 - LFC:[MD5.C85B35201A253B99199C0A9F5B98FC18] - 19/08/2015 - 20:48:52 ---A- . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\Drivers\aswVmm.sys [274808] O44 - LFC:[MD5.9821E1092D9CF5DCE7F1AA6806766DA2] - 20/08/2015 - 20:20:20 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [132483416] O44 - LFC:[MD5.AFA127EEA1E9FAE862A55A1D0B7E822C] - 20/08/2015 - 20:42:10 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124624] O44 - LFC:[MD5.21F5D23BC944190D16F6643376BFE185] - 20/08/2015 - 21:49:09 ---A- . (...) -- C:\Windows\PFRO.log [11170] O44 - LFC:[MD5.FFB956E168B06876B0BFBE3172F7527E] - 20/08/2015 - 21:51:04 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [493512] O44 - LFC:[MD5.A3B913F74070164CC0A06284A34BF4AB] - 20/08/2015 - 22:26:43 ---A- . (...) -- C:\Windows\setupact.log [11979] O44 - LFC:[MD5.E634AA56DFC4C2E3D93CF212FD2E6BD7] - 21/08/2015 - 18:24:58 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.237ACAB2DA713EC482AD5F70044C8CCE] - 21/08/2015 - 18:25:01 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [339314] O44 - LFC:[MD5.6F2F0DDA115C079826B6CB00DDA41DF4] - 21/08/2015 - 18:25:01 ---A- . (...) -- C:\Windows\System32\perfc009.dat [37632] O44 - LFC:[MD5.2CAD177378860D4D21D27192B1607CBC] - 21/08/2015 - 18:25:01 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [4838] O44 - LFC:[MD5.CCC114966C65598774A8704EC829309F] - 21/08/2015 - 18:25:01 ---A- . (...) -- C:\Windows\System32\perfh009.dat [301204] O44 - LFC:[MD5.97C31FB52182401431003A55E468EAFC] - 21/08/2015 - 18:25:01 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [15420] O44 - LFC:[MD5.8F22037D3F5A6BB676525D825A1388B9] - 21/08/2015 - 18:25:38 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [113880] O44 - LFC:[MD5.C3B8BE9B6BD1A8C9D637633ABBE99126] - 21/08/2015 - 18:25:53 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1072877] ~ Files: 85 Scanned in 00mn 36s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 02/11/2125 - 08:46:49 ----D - C:\Windows\Prefetch\ReadyBoot ~ Prefetcher: 1 Scanned in 00mn 01s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 17 Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1 ~ MWPS: 18 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 ~ MWPE Keys: 3 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.E1832BD9FD7E0FC2DC9FA5935DE3E8C1] - 22/08/2013 - 12:38:15 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [231424] O58 - SDL:[MD5.AD508A1A46EC21B740AB31C28EFDFDB1] - 22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896] O58 - SDL:[MD5.899B7E724BF19F17978B6A37B864A277] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys [43840] O58 - SDL:[MD5.E796AE43DDD1844281DB4D57294D17C0] - 07/10/2014 - 07:44:53 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [533824] O58 - SDL:[MD5.AC8279D229398BCF05C3154ADCA86813] - 22/08/2013 - 13:49:54 ---A- . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\Drivers\acpiex.sys [79712] O58 - SDL:[MD5.A8970D9BF23CD309E0403978A1B58F3F] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\Drivers\acpipagr.sys [10240] O58 - SDL:[MD5.111A89C99C5B4F1A7BCE5F643DD86F65] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [12288] O58 - SDL:[MD5.5758387D68A20AE7D3245011B07E36E7] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\Drivers\acpitime.sys [10752] O58 - SDL:[MD5.7C1FDF1B48298CBA7CE4BDD4978951AD] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176] O58 - SDL:[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - 30/05/2014 - 04:03:03 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [563200] O58 - SDL:[MD5.E8FFD8BE3C50E7A71C5FBB87BDD1128E] - 29/10/2014 - 03:45:25 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [96768] O58 - SDL:[MD5.7DFAEBA9AD62D20102B576D5CAC45EC8] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [62304] O58 - SDL:[MD5.FE14D249D39368CA62D8DA6BC94AC694] - 20/03/2015 - 02:56:10 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [80384] O58 - SDL:[MD5.7589DE749DB6F71A68489DCE04158729] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [95744] O58 - SDL:[MD5.B46D2D89AFF8A9490FA8C98C7A5616E3] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [98816] O58 - SDL:[MD5.D2BF2F94A47D332814910FD47C6BBCD2] - 22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200] O58 - SDL:[MD5.A8E04943C7BBA7219AA50400272C3C6E] - 22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424] O58 - SDL:[MD5.CEA5F4F27CFC08E3A44D576811B35F50] - 22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952] O58 - SDL:[MD5.E907C9355E822799B0A7D06110CE683A] - 03/09/2012 - 06:16:36 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amd_sata.sys [79528] O58 - SDL:[MD5.15FD758D7E1B9887262D7101509AE892] - 03/09/2012 - 06:16:38 ---A- . (.Advanced Micro Devices - Stor Filter Driver.) -- C:\Windows\System32\Drivers\amd_xata.sys [26280] O58 - SDL:[MD5.44695679881DEB85CAD7C249B151066E] - 23/06/2012 - 06:23:38 ---A- . (.AppEx Networks Corporation - AppEx Accelerator LWF/WFP Driver L.E..) -- C:\Windows\System32\Drivers\appexDrv.sys [199008] O58 - SDL:[MD5.415DD71628795197F7AFC176CBADC74E] - 29/10/2014 - 03:46:07 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [82944] O58 - SDL:[MD5.65045784366F7EC5FB4E71BCF923187B] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016] O58 - SDL:[MD5.525F5989C095F5757414E1F4B39175B2] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\Drivers\aswHwid.sys [28656] O58 - SDL:[MD5.76D585093398DB973470BB83FCF0CE52] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [90968] O58 - SDL:[MD5.719FF5568B5E71832541636E2A7DFE27] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93528] O58 - SDL:[MD5.21C13E3C9B801C8AE172FABBD235221E] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\Drivers\aswRvrt.sys [65224] O58 - SDL:[MD5.5B6A864A2CE292992040CEBAFC8F746A] - 19/08/2015 - 20:48:33 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1048856] O58 - SDL:[MD5.C43A0929DE32035499D6BB39A7F44439] - 19/08/2015 - 20:48:51 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [447944] O58 - SDL:[MD5.763C27EA21875F54615A0174EEC78FC4] - 19/08/2015 - 20:48:52 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [150672] O58 - SDL:[MD5.C85B35201A253B99199C0A9F5B98FC18] - 19/08/2015 - 20:48:52 ---A- . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\Drivers\aswVmm.sys [274808] O58 - SDL:[MD5.3DB7721F06BC2FEDB25029EA23AB27DA] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [26624] O58 - SDL:[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [26464] O58 - SDL:[MD5.38E1F4E0148A24C65D215F14D57B0711] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [199520] O58 - SDL:[MD5.36322190763845975E0D001E90687BF2] - 05/01/2010 - 03:23:20 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athurx.sys [1847296] O58 - SDL:[MD5.B9F4A0CE241B2449D188BF6869D69694] - 13/02/2015 - 18:44:25 ---A- . (.Qualcomm Atheros Communications, Inc. - Qualcomm Atheros USB Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athuwbx.sys [2702336] O58 - SDL:[MD5.87DAD8D354E312DB16636DC71EB39E5E] - 22/08/2012 - 09:56:38 ---A- . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtihdW86.sys [91648] O58 - SDL:[MD5.FBB35875FEFE53D4280259842069ED72] - 13/12/2013 - 10:23:36 ---A- . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys [13207552] O58 - SDL:[MD5.A32BCAD9377E3B75D034CAFBA463A0AE] - 13/12/2013 - 10:23:36 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys [626176] O58 - SDL:[MD5.8CC7F7E4AFCBA605921B137ED7992C68] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys [50688] O58 - SDL:[MD5.38A82F4EE8C416A6744B6D30381ED768] - 22/02/2014 - 13:14:02 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [33280] O58 - SDL:[MD5.99387C515F80270F097F6DD9B5315649] - 22/08/2013 - 13:49:53 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [35168] O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624] O58 - SDL:[MD5.EC19013E4CF87609534165DF897274D6] - 22/08/2013 - 12:40:24 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [7680] O58 - SDL:[MD5.D23AFE4382877E685B87921112C7D8E7] - 19/12/2012 - 20:57:44 ---A- . (.IVT Corporation - Bluelet Audio Adapter Driver.) -- C:\Windows\System32\Drivers\blueletaudio.sys [33968] O58 - SDL:[MD5.6B4FFFDDC618FCF64473CAA86E305697] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [102912] O58 - SDL:[MD5.F3C060444777A59FC63D920719E43CCD] - 29/10/2014 - 03:45:24 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [115712] O58 - SDL:[MD5.1C89EF529DB7DCA98E801EFDCC8437DE] - 23/11/2013 - 08:13:50 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Manager.) -- C:\Windows\System32\Drivers\BtaMPM.sys [19456] O58 - SDL:[MD5.34AAF6FD68B8403E76F0D08A8C1C1DA3] - 15/06/2012 - 10:22:02 ---A- . (.IVT Corporation - Bluetooth Audio Bus Driver.) -- C:\Windows\System32\Drivers\BtAudioBus.sys [23136] O58 - SDL:[MD5.A8F23D453A424FF4DE04989C4727ECC7] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Bluetooth.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys [36992] O58 - SDL:[MD5.1104A31260CCF4318C884E0AE6C513BF] - 29/10/2014 - 03:46:12 ---A- . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys [53248] O58 - SDL:[MD5.272A62B660A48AEF366F8A1836CED19F] - 09/03/2015 - 03:02:51 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control HID Enumerator.) -- C:\Windows\System32\Drivers\bthhfenum.sys [57856] O58 - SDL:[MD5.71FE2A48E4C93DDB9798C024880B6C07] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys [30720] O58 - SDL:[MD5.D30C67473A2E229662D21F27EAA9AAA5] - 04/12/2013 - 19:41:54 ---A- . (.Microsoft Corporation - Bluetooth LE Bus Enumerator.) -- C:\Windows\System32\Drivers\BthLEEnum.sys [226304] O58 - SDL:[MD5.07E33226AD218A2A162662A05CAFB52F] - 22/08/2013 - 12:36:44 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [63488] O58 - SDL:[MD5.25BB93167DEF270188072603F92A1EF5] - 24/07/2014 - 12:41:43 ---A- . (.Microsoft Corporation - Bluetooth Personal Area Networking.) -- C:\Windows\System32\Drivers\bthpan.sys [118272] O58 - SDL:[MD5.0CC00ADC1B84C93FB46E1A0974E956E1] - 11/05/2015 - 19:17:35 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [1201664] O58 - SDL:[MD5.08EA90955AED2D959EE67DF6EDF0E2B6] - 29/10/2014 - 03:46:16 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [81920] O58 - SDL:[MD5.9C09D5F1257F1748A4EAB0E8584FAF61] - 19/07/2012 - 16:47:40 ---A- . (.Ralink Corporation - Bluetooth L2CAP_SCO Interface Profile Driver.) -- C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904] O58 - SDL:[MD5.A4A73F631FE2AA2826FBE4A399B04DEF] - 22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296] O58 - SDL:[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [88576] O58 - SDL:[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [164352] O58 - SDL:[MD5.BE9936EDD3267FAAFF94A7835867F00B] - 22/08/2013 - 12:38:25 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [44032] O58 - SDL:[MD5.2787A73C848128C950385CB3A63A6B91] - 15/10/2014 - 09:32:36 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [337728] O58 - SDL:[MD5.8EB7E70C2D348FE2476A2E3F2D585E3D] - 04/03/2015 - 11:25:11 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [377152] O58 - SDL:[MD5.075CCE75090786F124573A788C8656E6] - 25/06/2012 - 09:24:50 ---A- . (.CyberLink - It is a virtual device driver which could create multiple virtu.) -- C:\Windows\System32\Drivers\CLVirtualDrive.sys [92536] O58 - SDL:[MD5.EF6EF85DADC3184A10D8F2F7159973CB] - 22/08/2013 - 12:39:43 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [25472] O58 - SDL:[MD5.5E5AB950693F2C6D6ACBEE3A74697ED7] - 30/03/2015 - 06:47:00 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [561928] O58 - SDL:[MD5.03AAED827C36F35D70900558B8274905] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [36352] O58 - SDL:[MD5.A1FF7DFBFBE164CF92603C651D304DD2] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\Drivers\condrv.sys [43008] O58 - SDL:[MD5.FA47B0AA255B7CF4519E995C6404AE22] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [68960] O58 - SDL:[MD5.315BA4BC19316D72B2E037534E048B93] - 22/08/2013 - 13:50:19 ---A- . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\Drivers\dam.sys [57696] O58 - SDL:[MD5.A03F362C5557E238CBFA914689C77248] - 06/03/2014 - 10:22:50 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [134144] O58 - SDL:[MD5.4D40C9B33F738797CF50E77CB7C53E85] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [100192] O58 - SDL:[MD5.224C2CB37497472C345CB2A02DF11363] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [36192] O58 - SDL:[MD5.407B4FC1AEE5C19AC2ED7118CBB271E9] - 22/08/2013 - 12:40:38 ---A- . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\Drivers\Dmpusbstor.sys [13312] O58 - SDL:[MD5.EB70A894708D1BC176AFD690FF06085F] - 22/08/2013 - 12:37:14 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys [29696] O58 - SDL:[MD5.F00B189ECA74DDF408AD934ADDC72477] - 29/10/2014 - 03:47:38 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [89088] O58 - SDL:[MD5.00C594D5A1DBD22AD8B2902B9F6EFF94] - 29/10/2014 - 04:58:59 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [14528] O58 - SDL:[MD5.05F5C162881BE293956C60456EDB0092] - 22/08/2013 - 13:39:46 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [33632] O58 - SDL:[MD5.61A1C2641321A6B89A2B41C5D481EF48] - 22/02/2014 - 17:15:19 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [71888] O58 - SDL:[MD5.95E295FD19F80B3AD33629B5AEFEC9C7] - 13/03/2015 - 05:03:30 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [154432] O58 - SDL:[MD5.E1BB0B6F00F470B451AB45EA13EBA0B3] - 29/10/2014 - 04:57:39 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1552704] O58 - SDL:[MD5.982B9495F70FEEA269C48F18E960EFDE] - 29/10/2014 - 04:57:39 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [389952] O58 - SDL:[MD5.43531A5993380CC5113242C29D265FD9] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667 devices.) -- C:\Windows\System32\Drivers\EhStorClass.sys [82784] O58 - SDL:[MD5.6F8E738A9505A388B1157FDDE7B3101B] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Microsoft driver for storage devices supporting IEEE 1667 and T.) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys [114016] O58 - SDL:[MD5.DFFFAE1442BA4076E18EED5E406FA0D3] - 22/08/2013 - 12:38:45 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [10240] O58 - SDL:[MD5.114BCFDF367FF37C3F1B0A96AF542E4D] - 22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024] O58 - SDL:[MD5.7729D294A555C7AEB281ED8E4D0E01E4] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [200704] O58 - SDL:[MD5.7C4E0D5900B2A1D11EDD626D6DDB937B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [217952] O58 - SDL:[MD5.5D8402613E778B3BD45E687A8372710B] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [30720] O58 - SDL:[MD5.BCFD8B149B3ADF92D0DB1E909CAF0265] - 22/02/2014 - 17:00:23 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [79192] O58 - SDL:[MD5.A1A66C4FDAFD6B0289523232AFB7D8AF] - 22/08/2013 - 12:39:41 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [34816] O58 - SDL:[MD5.BE743083CF7063C486A4398E3AEFE59A] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [25088] O58 - SDL:[MD5.C1FB505A73FA2E9019D32444AB33B75A] - 26/08/2014 - 04:30:21 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [354112] O58 - SDL:[MD5.A7C31B168F371E8E6796219F23E354DB] - 15/10/2014 - 09:32:36 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [61248] O58 - SDL:[MD5.09F460AFEDCA03F3BF6E07D1CCC9AC42] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [30048] O58 - SDL:[MD5.F152D55E497E12256290C43B31C7D0CE] - 08/04/2014 - 03:01:25 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [589656] O58 - SDL:[MD5.25991A1635AF725E9DC840A6A36824EC] - 11/06/2015 - 21:12:56 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428888] O58 - SDL:[MD5.9591D0B9351ED489EAFD9D1CE52A8015] - 22/08/2013 - 09:46:33 ---A- . (.Microsoft Corporation - Processor Driver.) -- C:\Windows\System32\Drivers\fxppm.sys [27136] O58 - SDL:[MD5.FC3EF65EE20D39F8749C2218DBA681CA] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [65888] O58 - SDL:[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 24/07/2014 - 12:45:39 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [76800] O58 - SDL:[MD5.10A70BC1871CD955D85CD88372724906] - 22/08/2013 - 12:39:01 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [26624] O58 - SDL:[MD5.42F88B57CAE42FC10059C887B3FCFCEA] - 30/01/2015 - 04:01:51 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [97792] O58 - SDL:[MD5.ABB7341766902F5AAB45E15F34D19E15] - 06/03/2014 - 10:24:41 ---A- . (.Microsoft Corporation - Bibliothèque Hid Class.) -- C:\Windows\System32\Drivers\hidclass.sys [111616] O58 - SDL:[MD5.C241A8BAFBBFC90176EA0F5240EACC17] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys [41472] O58 - SDL:[MD5.9BDDEE26255421017E161CCB9D5EDA95] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [45568] O58 - SDL:[MD5.7FFB24B4A54B1ACD46CF6899D879CC9F] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32512] O58 - SDL:[MD5.8DB8EAB9D0C6A5DF0BDCADEA239220B4] - 06/03/2014 - 10:24:15 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [33280] O58 - SDL:[MD5.D104FF402FC3DDB686E6DEF00334DB26] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\Drivers\hpdskflt.sys [31040] O58 - SDL:[MD5.A6AACEA4C785789BDA5912AD1FEDA80D] - 22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352] O58 - SDL:[MD5.E87A6D3B8FECD5B93BC0CFBB48C27970] - 24/02/2015 - 09:32:52 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [991552] O58 - SDL:[MD5.90656C0B3864804B090434EFC582404F] - 22/08/2013 - 13:39:47 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [24416] O58 - SDL:[MD5.6D6F9E3BF0484967E52F7E846BFF1CA1] - 22/08/2013 - 12:37:49 ---A- . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\Drivers\hyperkbd.sys [13824] O58 - SDL:[MD5.907C870F8C31F8DDD6F090857B46AB25] - 22/08/2013 - 12:39:20 ---A- . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Driver.) -- C:\Windows\System32\Drivers\HyperVideo.sys [22016] O58 - SDL:[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 04/11/2014 - 07:54:54 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [108544] O58 - SDL:[MD5.5D90E32E36CE5D4C535D17CE08AEAF05] - 30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568] O58 - SDL:[MD5.DD05E7E80F52ADE9AEB292819920F32C] - 25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320] O58 - SDL:[MD5.C02FC4C6C411C85F209EBD0EBBF8CAE9] - 28/09/2012 - 19:37:04 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [650808] O58 - SDL:[MD5.08BFE413B0B4AA8DFA4B5684CE06D3DC] - 10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248] O58 - SDL:[MD5.A2200C3033FA4EF249FC096A7A7D02A2] - 22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000] O58 - SDL:[MD5.4E448FCFFD00E8D657CD9E48D3E47157] - 22/08/2013 - 13:43:44 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [18272] O58 - SDL:[MD5.A770340FC02B999EF0DE6C2A6BC8437C] - 13/10/2014 - 03:43:17 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [39744] O58 - SDL:[MD5.47E74A8E53C7C24DCE38311E1451C1D9] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [98816] O58 - SDL:[MD5.9DB76D7F9E4E53EFE5DD8C53DE837514] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [84992] O58 - SDL:[MD5.9C096BF5E10CA8BFA56F32522A89FAF1] - 24/07/2014 - 12:46:02 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [79872] O58 - SDL:[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - 13:02:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [142848] O58 - SDL:[MD5.D826F4874A372FAE2F42478E0975EA02] - 22/08/2013 - 12:37:35 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [118784] O58 - SDL:[MD5.AE44C526AB5F8A487D941CEB57B10C97] - 22/08/2013 - 12:38:30 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [17920] O58 - SDL:[MD5.8AFEEA3955AA43616A60F133B1D25F21] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [21856] O58 - SDL:[MD5.DB5A6C03EEBBE522921FC4BF80BD6824] - 05/12/2012 - 19:29:36 ---A- . (.Ralink Corporation - Bluetooth Filter Driver.) -- C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [49632] O58 - SDL:[MD5.5917AFE4A3F695A54B99C1849C8207FE] - 04/11/2014 - 20:25:09 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [59712] O58 - SDL:[MD5.8CD840A062F6BDF41DDE3ACB96164B72] - 04/11/2014 - 07:54:47 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [32256] O58 - SDL:[MD5.813871C7D402A05F2E3A7075F9584A05] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\Drivers\kdnic.sys [19456] O58 - SDL:[MD5.1DD05F4857C2188744B9E864658949DD] - 04/07/2014 - 13:59:02 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [295424] O58 - SDL:[MD5.4E829B18D5BAEC29893792A3C671A847] - 29/10/2014 - 04:52:15 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [100672] O58 - SDL:[MD5.46711F40D0F9E63F786ED23F9BD5215E] - 28/06/2015 - 06:07:11 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [178008] O58 - SDL:[MD5.11AFB527AA370B1DAFD5C36F35F6D45F] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys [21248] O58 - SDL:[MD5.C09010B3680860131631F53E8FE7BAD8] - 22/08/2013 - 12:36:18 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [59392] O58 - SDL:[MD5.C755AE4635457AA2A11F79C0DF857ABC] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408] O58 - SDL:[MD5.ADAC09CBE7A2040B7F68B5E5C9A75141] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536] O58 - SDL:[MD5.04D1274BB9BBCCF12BD12374002AA191] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760] O58 - SDL:[MD5.327469EEF3833D0C584B7E88A76AEC0C] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784] O58 - SDL:[MD5.DDEE191AB32DFC22C6465002ECDF5EE4] - 22/02/2014 - 13:14:25 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [124416] O58 - SDL:[MD5.A8D28D5B3E2A528D1EF0E338E44F2820] - 18/06/2015 - 07:41:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O58 - SDL:[MD5.E681CE4AE5C09651D53CB4387CA3560E] - 18/06/2015 - 07:41:44 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [109272] O58 - SDL:[MD5.8F22037D3F5A6BB676525D825A1388B9] - 21/08/2015 - 18:25:38 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [113880] O58 - SDL:[MD5.C895E3FAE8628EAA4ADE0F52862CA575] - 22/08/2013 - 12:39:38 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [22016] O58 - SDL:[MD5.EB5C03A070F30D64A6DF80E53B22F53F] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672] O58 - SDL:[MD5.F6F13533196DE7A582D422B0241E4363] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840] O58 - SDL:[MD5.8B38C44F69259987C95135C9627E2378] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [40960] O58 - SDL:[MD5.601589000CC90F0DF8DA2CC254A3CCC9] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30208] O58 - SDL:[MD5.08374E4E5B8914DE6067CBA99F61E930] - 04/11/2014 - 20:25:09 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [51008] O58 - SDL:[MD5.5FCBAB60598AE119E02B4C27DE6B99EA] - 04/11/2014 - 07:54:47 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [30208] O58 - SDL:[MD5.9A788037D768809DFD677F4BA08A224A] - 16/07/2015 - 01:29:12 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [101720] O58 - SDL:[MD5.6FC047578785B0435F4E2660946D1ADC] - 29/10/2014 - 03:45:31 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [74240] O58 - SDL:[MD5.DB32958F0E704EFBF7F15161A569E39F] - 19/12/2014 - 07:26:49 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140800] O58 - SDL:[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - 27/06/2015 - 04:12:25 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [401408] O58 - SDL:[MD5.BCBD64220AD85C26823453FF1DC3EFBD] - 27/06/2015 - 04:12:07 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [284672] O58 - SDL:[MD5.57C2473D501331211D6885FD59F3E44B] - 27/06/2015 - 04:13:13 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [202240] O58 - SDL:[MD5.D13329FBF8345B28AB30F44CC247DC08] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [30208] O58 - SDL:[MD5.8DF1254093B5C354CE725EB6B9B0DE19] - 15/08/2014 - 01:36:55 ---A- . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\Drivers\msgpioclx.sys [146752] O58 - SDL:[MD5.C6B474E46F9E543B875981ED3FFE6ADD] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys [41824] O58 - SDL:[MD5.65C92EB9D08DB5C69F28C7FFD4E84E31] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [8192] O58 - SDL:[MD5.52299F086AC2DAFD100DD5DC4A8614BA] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pilote direct pour interface HID-UMDF.) -- C:\Windows\System32\Drivers\mshidumdf.sys [9728] O58 - SDL:[MD5.36D92AF3343C3A3E57FEF11C449AEA4C] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [17248] O58 - SDL:[MD5.D90AB68D0FAC9F357F663670FDBB511E] - 06/04/2014 - 17:34:08 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [275800] O58 - SDL:[MD5.A9BBBD2BAE6142253B9195E949AC2E8D] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [10624] O58 - SDL:[MD5.51B3AC0560848CD6D65AC2033E293113] - 29/10/2014 - 03:45:39 ---A- . (.Microsoft Corporation - Pilote de protocole LLDP (Link Layer Discovery Protocol) Micros.) -- C:\Windows\System32\Drivers\mslldp.sys [66560] O58 - SDL:[MD5.7B2128EB875DCBC006E6A913211006D6] - 22/08/2013 - 12:39:30 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [7040] O58 - SDL:[MD5.1E88171579B218115C7A772F8DE04BD8] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [6784] O58 - SDL:[MD5.BBE2A455053E63BECBF42C2F9B21FAE0] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [366432] O58 - SDL:[MD5.8D6B7D515C5CBCDB75B928A0B73C3C5E] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [37728] O58 - SDL:[MD5.115019AE01E0EB9C048530D2928AB4A2] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [7936] O58 - SDL:[MD5.96D604A35070360F0DD4A7A8AF410B5E] - 22/08/2013 - 12:37:36 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [13312] O58 - SDL:[MD5.619CA29326B82372621DB2C0964D8365] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [78688] O58 - SDL:[MD5.B8C35C94DCB2DFEAF03BB42131F2F77F] - 22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840] O58 - SDL:[MD5.85CFE7AB85B43B6B7AC7961AA3983A9F] - 18/06/2015 - 07:42:02 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [64216] O58 - SDL:[MD5.97DC5967F65503213FD1F1B3E4A6F983] - 14/07/2015 - 22:59:47 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specification).) -- C:\Windows\System32\Drivers\ndis.sys [1113944] O58 - SDL:[MD5.8CECC8DA55F3274181FD1EA28AD76664] - 29/10/2014 - 03:46:52 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [43008] O58 - SDL:[MD5.269882812E9A68FFF1AFE1283D428322] - 29/10/2014 - 03:45:54 ---A- . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\Drivers\NdisImPlatform.sys [126464] O58 - SDL:[MD5.82821F4EEC776B4CF11695A38F3ABA46] - 29/10/2014 - 03:47:33 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [24576] O58 - SDL:[MD5.B832B35055BA2B7B4181861FF94D8E59] - 22/08/2013 - 12:37:34 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [60416] O58 - SDL:[MD5.1F58E48EF75F34C35D8E93A0DC535CFE] - 22/08/2013 - 12:36:25 ---A- . (.Microsoft Corporation - Énumérateur de cartes réseau virtuelles Microsoft.) -- C:\Windows\System32\Drivers\NdisVirtualBus.sys [16384] O58 - SDL:[MD5.DEC29080202D4F9F17F55E18BCFCC41A] - 22/08/2013 - 12:35:56 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [220672] O58 - SDL:[MD5.DDD7F92A83F74D1476B71FBA9530A8DC] - 29/10/2014 - 03:46:54 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [72192] O58 - SDL:[MD5.3083926D1CC5B56EA0786527B557DD1B] - 29/10/2014 - 03:45:16 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Driver.) -- C:\Windows\System32\Drivers\Ndu.sys [103424] O58 - SDL:[MD5.42FF4975D032CAE558AE4BB8448F6E5A] - 29/10/2014 - 03:47:23 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [48128] O58 - SDL:[MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - 12:37:02 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [282624] O58 - SDL:[MD5.E3FCE2A6B3533D99A3B498504DF9CC47] - 10/09/2014 - 07:25:19 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [474432] O58 - SDL:[MD5.76E90502D9001077DA92F81126D06C9B] - 02/12/2013 - 17:32:18 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\Drivers\netr28x.sys [2483376] O58 - SDL:[MD5.D4DCE03870314D3354F3501F9DDD4123] - 29/10/2014 - 03:46:09 ---A- . (.Microsoft Corporation - Virtual NDIS6.3 Miniport.) -- C:\Windows\System32\Drivers\netvsc63.sys [87040] O58 - SDL:[MD5.8F44A2F57C9F1A19AC9C6288C10FB351] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [58880] O58 - SDL:[MD5.CBDB4F0871C88DF930FC0E8588CA67FC] - 22/08/2013 - 12:38:22 ---A- . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\Drivers\npsvctrig.sys [23040] O58 - SDL:[MD5.0E046FF5823B95326D10CF1B4AF23541] - 29/10/2014 - 03:46:03 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [39424] O58 - SDL:[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - 15/10/2014 - 09:32:37 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [2025792] O58 - SDL:[MD5.EF1B290FC9F0E47CC0B537292BEE5904] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [5632] O58 - SDL:[MD5.BC6B5942AFF25EBAF62DE43C3807EDF8] - 22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368] O58 - SDL:[MD5.1F43ABFFAC3D6CA356851D517392966E] - 22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288] O58 - SDL:[MD5.6934A936A7369DFE37B7DBA93F5E5E49] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [124768] O58 - SDL:[MD5.008F7CED69FD5B30CBDE1E03C6F36A27] - 29/10/2014 - 03:45:41 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [445440] O58 - SDL:[MD5.FC0141B4A5AD6D637D883C1A89FC45C5] - 29/10/2014 - 03:45:31 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [151040] O58 - SDL:[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [94208] O58 - SDL:[MD5.BAFF6122CFC9F95CA175AD8C348179A4] - 15/10/2014 - 09:32:36 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [88896] O58 - SDL:[MD5.91ED124E261EA8FAA1C0FFDF2A71B0C4] - 24/07/2014 - 16:28:35 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [280384] O58 - SDL:[MD5.346E38FCC6859A727DD28AFAD1F0AFF4] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14688] O58 - SDL:[MD5.5D4D6146346B82EB3CA4EE0C5573193C] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [48992] O58 - SDL:[MD5.4D3BDCC1C7B40C9D7B6AD990E6DEC397] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [114528] O58 - SDL:[MD5.BF28771D1436C88BE1D297D3098B0F7D] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [50016] O58 - SDL:[MD5.24A8DFC07E4BAF29AEA26E383D4CC886] - 13/10/2014 - 03:43:17 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [86336] O58 - SDL:[MD5.0ECEE590F2E2EF969FB74A6FC583A1E6] - 22/02/2014 - 13:09:37 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [663040] O58 - SDL:[MD5.C76097CA941FA7CAFEDB1E557969025C] - 29/10/2014 - 03:46:37 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [272384] O58 - SDL:[MD5.ECD373F9571C745894367CC2635EA44F] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [92160] O58 - SDL:[MD5.83868EB2924E6BC21A54337C65D614D1] - 29/10/2014 - 03:47:40 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [47104] O58 - SDL:[MD5.B337B1F1E82A83E20A1743E008E25C0F] - 29/10/2014 - 03:48:01 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [17408] O58 - SDL:[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [120832] O58 - SDL:[MD5.5247F308C4103CDC4FE12AE1D235800A] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [84992] O58 - SDL:[MD5.E075CC071022BD4E9BE7C024717C0E0A] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [107520] O58 - SDL:[MD5.41F631007A158FEBB67F0E2AD1601BBA] - 29/10/2014 - 03:45:50 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [93696] O58 - SDL:[MD5.A1A5E79C0D1352AFDC08328A623DA051] - 17/12/2013 - 08:21:26 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [408576] O58 - SDL:[MD5.6B21EBF892CD8CACB71669B35AB5DE32] - 22/08/2013 - 12:38:52 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [22528] O58 - SDL:[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 14/11/2013 - 08:16:40 ---A- . (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) -- C:\Windows\System32\Drivers\rdpdr.sys [195584] O58 - SDL:[MD5.BC8A79C625568DDB7DCA49D0C2741A64] - 29/10/2014 - 04:56:04 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27456] O58 - SDL:[MD5.A26AEC49F318FEE141DDDB2C5F99B3E6] - 22/02/2014 - 17:00:25 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [249688] O58 - SDL:[MD5.615DFD97DEA56CE1C3A52185A3038FF8] - 15/10/2014 - 09:32:36 ---A- . (.Microsoft Corporation - Pilote du système de fichiers ReFS NT.) -- C:\Windows\System32\Drivers\refs.sys [921920] O58 - SDL:[MD5.DC66AE45816614D2999DCD3834DCCC4E] - 30/01/2015 - 04:00:56 ---A- . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys [167424] O58 - SDL:[MD5.D7A41959BB3A8510F1BAC36F5CEC1874] - 29/10/2014 - 03:45:58 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [144384] O58 - SDL:[MD5.4A24C61ED665DB4D13B93FACA06350CA] - 22/08/2013 - 12:38:44 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [32256] O58 - SDL:[MD5.9746BA79DE0CA5EB5104406A9ED62D01] - 29/10/2014 - 03:48:13 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11776] O58 - SDL:[MD5.2D05A5508F4685412F2B89E8C2189ABC] - 22/08/2013 - 12:36:34 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [80384] O58 - SDL:[MD5.19764658C1468C2C0CEF133D28414A6B] - 18/06/2013 - 15:46:17 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x64.sys [591360] O58 - SDL:[MD5.3B7A94926B52D171C5B515EDECC2118E] - 02/12/2013 - 09:42:14 ---A- . (.Ralink Technology, Corp. - Ralink Bluetooth Adapter.) -- C:\Windows\System32\Drivers\rtbth.sys [1204424] O58 - SDL:[MD5.0E32A8922DCFD28EA00AAEC07CB3F331] - 14/06/2012 - 03:24:00 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsUStor.sys [252048] O58 - SDL:[MD5.C624A1B32211C3166EDB3F4AB02A30B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [107872] O58 - SDL:[MD5.13BEA6C882D4D877A5A85CA149C86BC1] - 29/10/2014 - 03:46:57 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [40960] O58 - SDL:[MD5.1C4EB3ACEA98CAD8FC7CF50F629FF0C6] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [170848] O58 - SDL:[MD5.C54B6B2170BF628FD42F799A66956D75] - 13/03/2015 - 05:03:31 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [239424] O58 - SDL:[MD5.0B1E929D11A8E358106955603FAC65E8] - 22/02/2014 - 16:49:49 ---A- . (.Microsoft Corporation - Pilote de classe de stockage SD.) -- C:\Windows\System32\Drivers\sdstor.sys [79192] O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040] O58 - SDL:[MD5.DB2FF24CE0BDD15FE75870AFE312BA89] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\Drivers\SerCx.sys [69472] O58 - SDL:[MD5.0044B31F93946D5D41982314381FE431] - 31/12/2013 - 18:29:04 ---A- . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\Drivers\SerCx2.sys [146776] O58 - SDL:[MD5.3CD600C089C1251BEEB4CD4CD5164F9E] - 22/08/2013 - 12:40:17 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [23040] O58 - SDL:[MD5.D864381BC9C725FAB01D94C060660166] - 22/08/2013 - 12:40:08 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456] O58 - SDL:[MD5.148195AE95D9BC7375A08846439FDAC1] - 04/11/2014 - 07:55:15 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [26112] O58 - SDL:[MD5.472B7A5AC181C050888DB454663DD764] - 22/08/2013 - 12:40:00 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [17408] O58 - SDL:[MD5.2F518D13DD6F3053837FE606F1A2EA1F] - 22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896] O58 - SDL:[MD5.1AC9A200A9C49C4508F04AAFFCA34A3F] - 22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760] O58 - SDL:[MD5.AF5CC3F9B88F140D78FC967ABF0F4EC7] - 25/08/2012 - 02:38:26 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [41272] O58 - SDL:[MD5.19555D03CB179BED8B8AAA239A36BDA4] - 25/08/2012 - 02:38:28 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [43832] O58 - SDL:[MD5.8C0773703184485D57975B6C1ED48730] - 22/08/2013 - 12:40:16 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [19968] O58 - SDL:[MD5.D24B1945ED1F9C96DA786DBBF1E983CE] - 29/10/2014 - 04:59:47 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [415040] O58 - SDL:[MD5.F337BE11071818FC3F5DC2940B6BDE34] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys [72032] O58 - SDL:[MD5.6416E79A58A8FCC33A447A4DDDD3BF04] - 24/07/2014 - 12:43:29 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [412160] O58 - SDL:[MD5.00D8AC8E3053290BDE6EA2FB6810D2FC] - 08/10/2014 - 08:33:33 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [678400] O58 - SDL:[MD5.D047CD668E6277FD80F0C613946F034C] - 27/06/2014 - 07:22:23 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [246272] O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072] O58 - SDL:[MD5.0ED2E318ABB68C1A35A8B8038BDB4C90] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [107872] O58 - SDL:[MD5.6B06E2D11E604BE2B1A406C4CB3B90DE] - 14/11/2013 - 08:37:14 ---A- . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Driver.) -- C:\Windows\System32\Drivers\stornvme.sys [57176] O58 - SDL:[MD5.13EFD41E351F31E087283CF66C29A25E] - 25/09/2014 - 04:42:57 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [373568] O58 - SDL:[MD5.548759755BC73DAD663250239D7E0B9F] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [45888] O58 - SDL:[MD5.FF184501F8F556147BBBDE571315C137] - 22/08/2013 - 12:39:26 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [67584] O58 - SDL:[MD5.32BE0B7CCA47A5BE30E7E43DC54B54F3] - 20/08/2012 - 06:45:20 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [542208] O58 - SDL:[MD5.65454187E0F8B6C0DCECB0287D06EC43] - 29/10/2014 - 04:59:47 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [14144] O58 - SDL:[MD5.0F34FE968C91D02CE30D76C257F2BDA0] - 19/08/2013 - 21:43:22 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [495856] O58 - SDL:[MD5.B13A57CE2F17B8C789E895E15F115DB0] - 22/08/2013 - 12:39:50 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [29696] O58 - SDL:[MD5.A57A897E3F87B8E9F30A627C42779A76] - 29/10/2014 - 05:13:01 ---A- . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\Drivers\tbs.sys [21824] O58 - SDL:[MD5.746DDF7D59AB8D721C88D48434597E8D] - 11/06/2015 - 21:12:57 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2476376] O58 - SDL:[MD5.41CF802064F72E55F50CA0A221FD36D4] - 06/03/2014 - 10:19:59 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [49152] O58 - SDL:[MD5.3C7361E0A5A6966DB957B94ECF924A9E] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [30208] O58 - SDL:[MD5.FFF28F9F6823EB1756C60F1649560BBF] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [107520] O58 - SDL:[MD5.232D185D2337F141311D0CF1983E1431] - 14/11/2013 - 08:16:36 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys [37216] O58 - SDL:[MD5.E8D2721972B8A2C3A4F6DE5C43D163E5] - 22/08/2013 - 13:39:14 ---A- . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\Drivers\tm.sys [121184] O58 - SDL:[MD5.82F909359600D3603FE852DB7F135626] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [159584] O58 - SDL:[MD5.531121E7ED50084B493A69F8F8A7A927] - 19/08/2015 - 20:43:16 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624] O58 - SDL:[MD5.BF8F54CA37E9C9D6582C31C5761F8C93] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [56320] O58 - SDL:[MD5.20185BEB7512EDE4EFECDFA148AC9F99] - 29/10/2014 - 03:46:43 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [29696] O58 - SDL:[MD5.C8E0E78B5D284C2FF59BDFFDAF997242] - 22/08/2013 - 12:35:45 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [154112] O58 - SDL:[MD5.F6EEAD052943B5A3104C1405BB856C54] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [64864] O58 - SDL:[MD5.FE6067B1FD4E63650C667B33D080565B] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\Drivers\uaspstor.sys [74080] O58 - SDL:[MD5.807F8CF3E973305FC435C61CBBEE2A49] - 07/10/2014 - 07:54:45 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [189248] O58 - SDL:[MD5.C61EAF8E1E4B2F62BA4FDF457440B2C6] - 13/03/2015 - 03:02:11 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [316416] O58 - SDL:[MD5.9578691F297E1B1F519970FE6D47CB21] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys [26976] O58 - SDL:[MD5.5EAB5117DDB24FC4D39E6FFFCF1837B9] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [65888] O58 - SDL:[MD5.DA34C39A18E60E7C3FA0630566408034] - 22/08/2013 - 12:38:59 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [46080] O58 - SDL:[MD5.AE8294875E5446E359B1E8035D40C05E] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [11776] O58 - SDL:[MD5.312BB35275EB15145F4B6D1FFCE56C50] - 25/04/2015 - 03:25:32 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [20992] O58 - SDL:[MD5.5D45329A96B1A417DC7F59FDEABC0DDE] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32512] O58 - SDL:[MD5.FF78D053A05E5A394F4E3C1816CC65A8] - 24/07/2014 - 16:28:38 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [143680] O58 - SDL:[MD5.0139248F6B95CF0D837B5B46A2722D40] - 29/10/2014 - 03:47:05 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [98304] O58 - SDL:[MD5.D79920BE4E6683D3AB50F71457A4F6C6] - 31/05/2014 - 11:07:07 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [27480] O58 - SDL:[MD5.48BA326A3DBA5B5BEB5F2777F4618696] - 31/05/2014 - 11:07:08 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [89944] O58 - SDL:[MD5.4875DC63E548812C75D4FDEF84970C89] - 19/06/2012 - 15:07:50 ---A- . (.Advanced Micro Devices - AMD USB Filter Driver.) -- C:\Windows\System32\Drivers\usbfilter.sys [57000] O58 - SDL:[MD5.FEF0BC107812B36849741C3211BA6B60] - 24/07/2014 - 16:28:38 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB par défaut.) -- C:\Windows\System32\Drivers\usbhub.sys [419648] O58 - SDL:[MD5.95B0179BDA907252025DEEA183699FB3] - 17/03/2015 - 18:26:06 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [467776] O58 - SDL:[MD5.3019097FB6C985EF24C058090FF3BDBD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [30208] O58 - SDL:[MD5.FE0ADF5028EB8C1339B66B3AEDE3FEF9] - 31/05/2014 - 11:07:07 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [440664] O58 - SDL:[MD5.4D655E3B684BE9B0F7FFD8A2935C348C] - 22/08/2013 - 12:36:33 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [26112] O58 - SDL:[MD5.3431FBFAC156EB7FEF9B936EC2A77AF6] - 22/08/2013 - 12:39:39 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [30720] O58 - SDL:[MD5.0F030491BA4A27BD46F8B8ACEEE83F1A] - 29/10/2014 - 03:47:58 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [44544] O58 - SDL:[MD5.66732C13628BDB1AB0D6FD46027327C2] - 31/08/2014 - 01:17:06 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [148800] O58 - SDL:[MD5.064260B3A5868AC894A4943543BC7AB7] - 31/05/2014 - 07:30:09 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [37376] O58 - SDL:[MD5.5C8F604F6DC74177CDD8372D7B1ADFF0] - 21/06/2014 - 08:33:40 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [212736] O58 - SDL:[MD5.44603DA5A87FB491EF59C889EBBB4DDB] - 16/04/2015 - 07:17:07 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [325464] O58 - SDL:[MD5.FEB26E3B8345A7E8D62F945C4AE86562] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\Drivers\vdrvroot.sys [37728] O58 - SDL:[MD5.A026EDEAA5EECAE0B08E2748B616D4BD] - 14/11/2013 - 08:31:05 ---A- . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\Drivers\VerifierExt.sys [175960] O58 - SDL:[MD5.C06E8481E068F170A258441639AC5792] - 15/10/2014 - 09:32:36 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [551232] O58 - SDL:[MD5.06D38968028E9AB19DE9B618C7B6D199] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808] O58 - SDL:[MD5.608BD5400EFD2307A5F8DDDC87775734] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [49152] O58 - SDL:[MD5.A53E798C06D729CCF8459968B4372F6E] - 29/10/2014 - 04:56:50 ---A- . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\Drivers\vmbkmcl.sys [89368] O58 - SDL:[MD5.511AD3FF957A0127E6BD336FF6F89C38] - 29/10/2014 - 04:56:50 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child Driver.) -- C:\Windows\System32\Drivers\vmbus.sys [97048] O58 - SDL:[MD5.DA40BEA0A863CE768C940CA9723BF81F] - 22/08/2013 - 12:37:50 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [21760] O58 - SDL:[MD5.0BF5CAD281E25F1418E5B8875DC5ADD1] - 22/08/2013 - 12:38:23 ---A- . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\Drivers\vmgencounter.sys [11264] O58 - SDL:[MD5.1A063730F221B2746FF00457AE17E4F0] - 22/08/2013 - 12:38:37 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [7168] O58 - SDL:[MD5.8B9486B64E5FC17FB9CC04CA10B77A34] - 29/10/2014 - 04:56:50 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [49944] O58 - SDL:[MD5.55D7D963DE85162F1C49721E502F9744] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [73568] O58 - SDL:[MD5.CCB9E901F7254BF96D28EB1B0E5329B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [377696] O58 - SDL:[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - 19/06/2014 - 03:13:36 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [310080] O58 - SDL:[MD5.EF31713EE4C7CCFE4049F7E7F15645A2] - 07/10/2014 - 07:44:39 ---A- . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\Windows\System32\Drivers\vpci.sys [69952] O58 - SDL:[MD5.4539F45F9F4C9757A86A56C949421E07] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800] O58 - SDL:[MD5.0849B7260F26FE05EA56DED0672E2F4B] - 22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504] O58 - SDL:[MD5.BE970C369E43B509C1EDA2B8FA7CECB0] - 22/08/2013 - 12:39:00 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [24576] O58 - SDL:[MD5.35BF5C5F5E3C9902C98978C7640574DA] - 30/04/2014 - 07:43:46 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [71680] O58 - SDL:[MD5.65ED7B9CFEA893DF7748D5FF692690DE] - 30/04/2014 - 07:41:59 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [38912] O58 - SDL:[MD5.0910AB9ED404C1434E2D0376C2AD5D8B] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [26752] O58 - SDL:[MD5.6505C9E72910F91D4C317EECF22D1DE6] - 29/10/2014 - 03:45:23 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [80896] O58 - SDL:[MD5.9CC0003FB8ED3763B977B43F1012FF63] - 22/02/2014 - 13:14:40 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [54272] O58 - SDL:[MD5.81285DDC994F03379DB46419300B2DCB] - 07/07/2015 - 10:40:12 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [44560] O58 - SDL:[MD5.CB6C63FF8342B467E2EF76E98D5B934D] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [839488] O58 - SDL:[MD5.26B8FED3F3B85F5F0C4BD03FD00B9941] - 07/07/2015 - 10:40:05 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\WdFilter.sys [270168] O58 - SDL:[MD5.42C23552FC0BF2BAB9053BE6E4DC3D13] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [60224] O58 - SDL:[MD5.CE67080F00E0AF32755096CEA6430ABA] - 07/07/2015 - 10:40:05 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [114520] O58 - SDL:[MD5.2E0AF5B354ED1BB10314353B6A625B68] - 22/08/2013 - 13:39:04 ---A- . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\Windows\System32\Drivers\werkernel.sys [38240] O58 - SDL:[MD5.BAB713B409258DB7B5D9F9693F802B0E] - 29/10/2014 - 04:59:12 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys [136512] O58 - SDL:[MD5.5F66B7BB330AA80067FC66149A692620] - 29/10/2014 - 05:09:06 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [33600] O58 - SDL:[MD5.10A78656BF6126245631705E45F9B9CF] - 29/10/2014 - 04:56:50 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [61208] O58 - SDL:[MD5.AC263C2F66405589528995AA41040599] - 22/08/2013 - 12:37:55 ---A- . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\Windows\System32\Drivers\winusb.sys [78848] O58 - SDL:[MD5.4F2A80D65AE6F845776E2F06AE6782ED] - 31/08/2012 - 09:40:24 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [20800] O58 - SDL:[MD5.2834D9D3B4F554A39C72F00EA3F0E128] - 22/08/2013 - 12:40:04 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [16384] O58 - SDL:[MD5.1FE5DDC32243469E6FA4440C02775A34] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [18272] O58 - SDL:[MD5.7FC5667DF73D4B04AA457CC3A4180E09] - 13/03/2014 - 13:35:24 ---A- . (.Microsoft Corporation - Windows Overlay Filter.) -- C:\Windows\System32\Drivers\wof.sys [157016] O58 - SDL:[MD5.A2468CC3509394A33C4C32F99563D845] - 29/10/2014 - 04:57:42 ---A- . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\Drivers\wpcfltr.sys [54784] O58 - SDL:[MD5.9F2904B55F6CECCD1A8D986B5CE2609A] - 22/08/2013 - 13:36:12 ---A- . (.Microsoft Corporation - Windows Portable Device Upper Class Filter Driver.) -- C:\Windows\System32\Drivers\WpdUpFltr.sys [26976] O58 - SDL:[MD5.38CAE0D33091C6F3B542F230E70ED44B] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\Drivers\WppRecorder.sys [23392] O58 - SDL:[MD5.AE072B0339D0A18E455DC21666CAD572] - 22/08/2013 - 12:40:03 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [21504] O58 - SDL:[MD5.481286719402E4BAEFEA0604AB1B5113] - 29/10/2014 - 03:46:27 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [113664] O58 - SDL:[MD5.D7B4859227B02BCC1055B279A63C937F] - 29/10/2014 - 03:46:13 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [226304] O58 - SDL:[MD5.4F9BFE0A0E3D979DE1C2C717E7FF34E0] - 24/07/2015 - 19:57:46 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4177408] O58 - SDL:[MD5.ABF0C4FD83C2568E4630E1FC0D12D7F8] - 29/10/2014 - 02:02:28 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [31232] O58 - SDL:[MD5.602786CC58F906BD550C6A63AA4CD50D] - 29/10/2014 - 02:21:33 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\System32\Windows.System.Display.dll [28160] O58 - SDL:[MD5.0ED5E928E44513C4E646E5B1BA5AC19A] - 29/10/2014 - 01:54:03 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll [212992] O58 - SDL:[MD5.E16E4F3918FFB9131507D932D10858B4] - 29/10/2014 - 02:21:16 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\System32\Windows.System.Profile.SystemManufacturers.dll [27136] O58 - SDL:[MD5.B721B68908AD35DEEBC6780001CCAAF6] - 29/10/2014 - 02:21:42 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\System32\Windows.System.RemoteDesktop.dll [22528] O58 - SDL:[MD5.D23AFE4382877E685B87921112C7D8E7] - 19/12/2012 - 20:57:44 ---A- . (.IVT Corporation - Bluelet Audio Adapter Driver.) -- C:\Windows\SysWOW64\drivers\blueletaudio.sys [33968] O58 - SDL:[MD5.552A6C66B950A3E99AA4C0782DF61D24] - 29/10/2014 - 01:49:03 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll [25600] O58 - SDL:[MD5.FE541E9D6B9BCD28B35CC567773EE020] - 29/10/2014 - 02:00:47 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\SysWOW64\Windows.System.Display.dll [23040] O58 - SDL:[MD5.4BDD9926B092E3306EAE638205C05A3E] - 29/10/2014 - 01:43:48 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll [181248] O58 - SDL:[MD5.809E50F92808897944B44D12BB77E359] - 29/10/2014 - 02:00:35 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll [22528] O58 - SDL:[MD5.8AAD7AB1B8B19E3061D749B8C0248895] - 29/10/2014 - 02:00:51 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll [17920] ~ Drivers: 18 Scanned in 00mn 10s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 18/08/2015 - 19:34:54 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\.usage [24] O61 - LFC: 18/08/2015 - 19:34:54 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\Paths\LOG [338] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\1157fee2e2dc1968_0 [3050] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\605fa3dd70e55639_0 [143992] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\9836de1e2f5616b0_0 [125103] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\ae4fdedcdeee5455_0 [41697] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\bdb5e44f85985437_0 [46495] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\fb547a433252d798_0 [57046] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\index [24] O61 - LFC: 18/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Cache\index [524656] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\index.txt [48] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT [16] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOCK [0] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\MANIFEST-000001 [41] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [20480] O61 - LFC: 18/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [16384] O61 - LFC: 18/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\CdmAdapterVersion [13] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\CrashDumps\SystemSettings.exe.2920.dmp [3595046] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOCK [0] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [140] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000001 [41] O61 - LFC: 19/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [324] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG.old [2870] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\GCM Store\LOG.old [1271] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3 [4202496] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Last Session [1355510] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [108679] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\LOG.old [408] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [63488] O61 - LFC: 19/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\7b5c47ef1a9ec87e_0 [144167] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\8940a44536bcd9a1_0 [6777] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\ba943986ef27a6a0_0 [14609] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\fdf2cfeb8ad0eeac_0 [2699] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Cache\data_0 [45056] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Cache\data_1 [270336] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Cache\data_2 [1056768] O61 - LFC: 19/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Cache\data_3 [4202496] O61 - LFC: 19/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\a3dd9fc31e1559b54ee02bf9072dcf4b7aeaca16\74d0b5cec68aa206c3a0c1a18fd40b3bb32dc2f8\index-dir\the-real-index [284] O61 - LFC: 19/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG.old [338] O61 - LFC: 19/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [324] O61 - LFC: 19/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Top Sites [98304] O61 - LFC: 19/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384] O61 - LFC: 19/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\SwReporter\4.28.1\manifest.fingerprint [66] O61 - LFC: 19/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Skype\Apps\login.js [3] O61 - LFC: 19/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Skype\Apps\login.md5 [34] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\Cookies [6144] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\Cookies-journal [4640] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\data_0 [45056] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\data_1 [270336] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\data_2 [1056768] O61 - LFC: 19/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\data_3 [4202496] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000001 [21774] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000002 [29373] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000003 [21308] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000004 [17217] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000005 [21607] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000006 [40799] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000007 [43683] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000008 [50361] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_000009 [37018] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_00000a [34262] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_00000b [21308] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\f_00000c [63540] O61 - LFC: 19/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\index [524656] O61 - LFC: 19/08/2015 - 19:35:08 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\DataRv\offline-storage-ecs.data [2099224] O61 - LFC: 19/08/2015 - 19:35:08 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\DataRv\offline-storage.data [3148824] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared.xml [157164] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_dynco\dc.db [2535424] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_dynco\dc.db-journal [382184] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_dynco\dc.lock [0] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_httpfe\queue.db [40960] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_httpfe\queue.db-journal [8720] O61 - LFC: 19/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Skype\shared_httpfe\queue.lock [0] O61 - LFC: 19/08/2015 - 19:35:15 ---A- . (.AVAST Software.) -- C:\Users\Lucile\Downloads\avast_free_antivirus_setup.exe [158417712] O61 - LFC: 19/08/2015 - 19:35:15 ---A- . (.Piriform Ltd.) -- C:\Users\Lucile\Downloads\ccsetup508.exe [6609608] O61 - LFC: 19/08/2015 - 19:35:24 -SHA- . (...) -- C:\Users\Lucile\Music\my_music\Glee\Thumbs.db [29696] O61 - LFC: 19/08/2015 - 19:35:28 -SHA- . (...) -- C:\Users\Lucile\Music\my_music\Taylor Swift\Fearless\Thumbs.db [24576] O61 - LFC: 20/08/2015 - 19:34:52 ----- . (.Microsoft Corporation.) -- C:\Users\Lucile\AppData\Local\assembly\tmp\80KO6R6N\mcepg.DLL [741376] O61 - LFC: 20/08/2015 - 19:34:52 ---A- . (...) -- C:\Users\Lucile\AppData\Local\AMD\Fuel\ClientProxyLog_1.txt [2] O61 - LFC: 20/08/2015 - 19:34:52 ---A- . (...) -- C:\Users\Lucile\AppData\Local\AMD\Fuel\ClientProxyLog_2.txt [2] O61 - LFC: 20/08/2015 - 19:34:52 ---A- . (...) -- C:\Users\Lucile\AppData\Local\AMD\Fuel\ClientProxyLog_3.txt [2] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [188975] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [38307] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Cookies [717824] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Current Session [269483] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Current Tabs [223066] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies [10240] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension Cookies-journal [8768] O61 - LFC: 20/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [324] O61 - LFC: 20/08/2015 - 19:34:54 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Favicons [184320] O61 - LFC: 20/08/2015 - 19:34:54 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [2870] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\GCM Store\LOG [1271] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0 [45056] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1 [270336] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\History [319488] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [47301] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh\LOG [408] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gomekmidlodglbbmalcneegieacbdmki_0.localstorage [112640] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gomekmidlodglbbmalcneegieacbdmki_0.localstorage-journal [16384] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs [28672] O61 - LFC: 20/08/2015 - 19:34:55 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs-journal [16384] O61 - LFC: 20/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Preferences [196433] O61 - LFC: 20/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [13312] O61 - LFC: 20/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [6704] O61 - LFC: 20/08/2015 - 19:34:56 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences [47108] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG [338] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [324] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [9853] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Visited Links [131072] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Web Data [63488] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [12848] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Local State [39348] O61 - LFC: 20/08/2015 - 19:34:57 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\GWX\TelemetryStore.xml [71] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [9089172] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [2142552] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [7168] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [4640] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [113692] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [3327552] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [13880] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [50340] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing IP Blacklist [512] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing Inclusion Whitelist [2159436] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing UwS List [1335592] O61 - LFC: 20/08/2015 - 19:34:58 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Google\Chrome\User Data\Safe Browsing UwS List Prefix Set [372974] O61 - LFC: 20/08/2015 - 19:34:58 --HA- . (...) -- C:\Users\Lucile\AppData\Local\IconCache.db [194504] O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\Update.dat [39] O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\AD2F1837.GettingStartedwithWindows8_v10z8vjag6ke6\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\AD2F1837.HPConnectedPhotopoweredbySnapfish_v10z8vjag6ke6\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\AD2F1837.HPGames_v10z8vjag6ke6\Settings\settings.dat [262144] O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\AD2F1837.HPPrinterControl_v10z8vjag6ke6\Settings\settings.dat [8192] =>.Hewlett-Packard Co O61 - LFC: 20/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\AD2F1837.HPRegistration_v10z8vjag6ke6\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:02 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\CheckPoint.VPN_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:02 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\FileManager_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:02 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\JuniperNetworks.JunosPulseVpn_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:02 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\eBayInc.eBay_1618n3s9xq8tw\Settings\settings.dat [8192] =>Toolbar.eBay O61 - LFC: 20/08/2015 - 19:35:02 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\f5.vpn.client_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:03 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\SonicWALL.MobileConnect_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:04 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192] O61 - LFC: 20/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Temp\appC6ED.tmp-shm [32768] O61 - LFC: 20/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Temp\appC72C.tmp-shm [32768] O61 - LFC: 20/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\Cache\HTMLayout.xml [2763] O61 - LFC: 20/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\AVAST Software\Avast\remotecache.zip [69084] O61 - LFC: 20/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\MMC\services [93507] O61 - LFC: 20/08/2015 - 19:35:07 -SHA- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\Protect\S-1-5-21-1717545198-2844099798-3272349975-1002\4b21733d-b322-4a51-9376-3befee8c9a6c [468] O61 - LFC: 20/08/2015 - 19:35:07 -SHA- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\Protect\S-1-5-21-1717545198-2844099798-3272349975-1002\bac4960e-3b54-493b-9291-d8b72b97b344 [468] O61 - LFC: 20/08/2015 - 19:35:07 -SHA- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\Protect\S-1-5-21-1717545198-2844099798-3272349975-1002\dfb73498-b897-419b-a583-07c91dc6f63c [468] O61 - LFC: 21/08/2015 - 19:34:52 ---A- . (...) -- C:\Users\Lucile\AppData\Local\AMD\Fuel\ClientProxyLog.txt [2] O61 - LFC: 21/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\ATI\ACE\Manifest.Bin [28165] O61 - LFC: 21/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\ATI\ACE\Manifest.xml [20325] O61 - LFC: 21/08/2015 - 19:34:53 ---A- . (...) -- C:\Users\Lucile\AppData\Local\ATI\ACE\Profiles.xml [12479] O61 - LFC: 21/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\Logs\log_update_0.txt [710549] O61 - LFC: 21/08/2015 - 19:35:01 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\Logs\traces_update_0.txt [21206] O61 - LFC: 21/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Temp\app8D9A.tmp-shm [32768] O61 - LFC: 21/08/2015 - 19:35:05 ---A- . (...) -- C:\Users\Lucile\AppData\Local\Temp\app8DAB.tmp-shm [32768] O61 - LFC: 21/08/2015 - 19:35:06 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Adobe\Flash Player\NativeCache\NativeCache.directory [0] O61 - LFC: 21/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Hewlett-Packard\HP Connected Remote\data\WMC_module.sdf [2015232] O61 - LFC: 21/08/2015 - 19:35:07 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\Hewlett-Packard\HP Connected Remote\data\WMP_module.sdf [98304] O61 - LFC: 21/08/2015 - 19:35:07 -SHA- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\Protect\S-1-5-21-1717545198-2844099798-3272349975-1002\774cf151-5cb5-4a3a-82be-adffe1bc6be0 [468] O61 - LFC: 21/08/2015 - 19:35:07 -SHA- . (...) -- C:\Users\Lucile\AppData\Roaming\Microsoft\Protect\S-1-5-21-1717545198-2844099798-3272349975-1002\e8c9f774-3684-400c-8795-bc95abfd05c9 [468] O61 - LFC: 21/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\ZHP\Log.txt [17144] =>.Nicolas Coolman O61 - LFC: 21/08/2015 - 19:35:09 ---A- . (...) -- C:\Users\Lucile\AppData\Roaming\ZHP\TestsZHPDiag.txt [2853] =>.Nicolas Coolman ~ 4 Fichiers temporaires (Temporary files) ~ Files: 168 Scanned in 00mn 38s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) ~ FASS Keys: 11 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {248EA0E0-2920-4D66-B455-0462D8086A6A} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr O69 - SBI: SearchScopes [HKCU] {D944BB61-2E34-4DBF-A683-47E505C587DC} - (eBay) - http://rover.ebay.com =>Toolbar.eBay ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [214528] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [156160] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [156160] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [329216] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1360896] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1084416] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [926208] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31744] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1265152] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [230400] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [71168] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [227328] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [339968] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [101376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1639424] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [59392] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [166400] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [102912] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [542208] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [73728] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [452608] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [313344] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3704320] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [933376] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] ~ Services: 34 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.60D1875A880A708E5090F3B502D219E2] [SPRF][20/08/2015] (.Farbar - Farbar Recovery Scan Tool.) -- C:\Users\Lucile\Desktop\FRST.exe [1677312] [MD5.3FE85FE8E673CC7C464A0F96774857AC] [SPRF][20/08/2015] (.Farbar - Farbar Service Scanner.) -- C:\Users\Lucile\Desktop\FSS.exe [899072] [MD5.C627BE773B800B042B6AFE3225EDC487] [SPRF][23/03/2014] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\Lucile\Desktop\ZHPDiag2.exe [6862517] ~ Files: 3 Scanned in 00mn 00s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-TCP" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "EventForwarder-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Event Forwarder.) -- C:\Windows\system32\NetEvtFwdr.exe O87 - FAEL: "EventForwarder-RPCSS-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WirelessDisplay-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WirelessDisplay-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-DAFWSD-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-DAFWSD-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe O87 - FAEL: "WFDPRINT-SPOOL-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SPOOL-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WFDPRINT-SCAN-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WFDPRINT-SCAN-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "FPS-SpoolSvc-In-TCP_1" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "WMP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "WMP-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{5CDDB987-7FD5-4D4B-A003-81C8FCFB9FB1}" | In - Private - P17 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe O87 - FAEL: "{A177FE3D-8640-4FA7-B50E-095A22267982}" | In - Private - P6 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe O87 - FAEL: "{B66372F9-5BB5-4A9B-94B0-180C2531B287}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector 10.) -- C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.exe O87 - FAEL: "{A84C03D6-06D6-4B97-BF8E-6499049C47A3}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe O87 - FAEL: "{A763D673-2670-4904-A2C5-F1156147A8FF}" | In - None - P6 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicatorCom.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe =>.Hewlett-Packard Co O87 - FAEL: "{7E502C2D-F02F-4DE2-94AB-C33E833EE7BD}" | In - None - P6 - TRUE | .(.Hewlett-Packard Co. - HPNetworkCommunicator.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe =>.Hewlett-Packard Co O87 - FAEL: "{D6DD0804-CDBB-431D-A5E0-719050DD1D42}" | In - None - P6 - TRUE | .(.Hewlett-Packard Co. - DeviceSetup.exe.) -- C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe =>.Hewlett-Packard Co O87 - FAEL: "{468E01D5-58D1-4981-9896-760BF6D40552}" | In - Public - P17 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe O87 - FAEL: "{D6380AA0-6088-4206-B540-91B4C21A660D}" | In - Public - P6 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe O87 - FAEL: "{929C8630-D519-4C1B-BCBF-653E1CC6BAD9}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{EA8AE963-4CA6-4723-AED3-B36215E00817}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{9E701D69-DE86-4A60-9F6D-5809B0DD2ED5}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{B8077B7F-2F67-42FF-8FF9-1828BC8A5DC2}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe O87 - FAEL: "{9A702031-AC55-4624-BDF5-CCC1D7536EB8}" | In - None - P6 - TRUE | .(.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe O87 - FAEL: "{5E0AE5F1-C948-4682-BC04-04FB11BE71FA}" | Out - None - P6 - TRUE | .(.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe O87 - FAEL: "{92E1D13E-2A13-4DC2-BFE3-AF87A00FEB29}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "{CB33A695-390E-45A7-8988-0FEAC9CBF684}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{F0F17449-CABC-45CC-BD34-C8B1C0929751}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{D0AF81F9-4276-437F-912E-A8E06C35148C}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{588F70E2-053F-499C-90A2-4816F0B459C1}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{A320E9A6-25FA-4606-A918-91185B1B9298}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{48298EDE-370E-482A-9279-ADC468C15409}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{ACBD503B-FFB1-4AA4-94F2-A8BE6CBB9385}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation O87 - FAEL: "{A70CFA6B-A154-46CD-90E2-4B97942BA6A6}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{1D0E3C65-FE41-448F-ADCD-D7C093C39611}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{8059A824-555C-444A-A902-FD418968E1AE}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation O87 - FAEL: "{650B9A48-E65D-41C2-BE00-5329F5F06F08}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{C1BB8698-F0F4-4D4C-8E95-A092F23A0C8C}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B4D70245-2097-4B72-B647-094BFFA967C9}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{5041E0BC-632F-4AD2-A0AD-AD9397B97DF4}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{CBF4DA5F-5E77-4005-AD27-1E907C9B7855}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{B3E66D50-8AC2-43F0-9462-3CF17D6D1795}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation O87 - FAEL: "{CF5C6B64-54C2-4125-98CD-4D2CE78368F8}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe O87 - FAEL: "{17AB7C4C-E3F0-42AD-9F6F-26C2C3E2840D}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe O87 - FAEL: "{39D4BD1D-89B6-4B12-8A7E-BCBC86451966}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe O87 - FAEL: "{6AAAA7DC-D285-432C-9276-C4065A79BDFA}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (.not file.) O87 - FAEL: "{11A3B3C9-FA7D-4154-B6F2-E3DDC37ED7F6}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe O87 - FAEL: "{4AA42256-7054-480A-8A03-2F72547412D6}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe O87 - FAEL: "TCP Query User{06D0CE1C-DBAC-4645-93BA-732B2579C12D}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A. O87 - FAEL: "UDP Query User{FA6E9C6B-1948-4A7F-9852-623ABD1D0AC5}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A. O87 - FAEL: "{F9FF1CA3-D7D6-40C1-A25B-1678AD683B17}" | In - Public - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A. O87 - FAEL: "{4EE01130-A515-4A4C-BA77-8F15164A50CA}" | In - Public - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A. O87 - FAEL: "{89B142F0-BC86-4670-8618-A51A4777EA52}" | In - None - P6 - TRUE | .(.Hewlett-Packard Company - HP Device Detection.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe O87 - FAEL: "{0638A338-29D5-4B21-8BE7-45BD0A524187}" | In - None - P17 - TRUE | .(.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ~ Firewall: 249 Scanned in 00mn 05s ---\\ Enumère les codes produits des logiciels (PUC) (O90) O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe =>.Hewlett-Packard Co O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico O90 - PUC: "2D6F4B0BEA2FA1544969F6F2A698B723" . (.PowerDirector.) -- C:\Windows\Installer\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\ARPPRODUCTICON.exe O90 - PUC: "42C6FBF1Df1C10144AB2C065F4E9E897" . (.Media Suite.) -- C:\Windows\Installer\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe O90 - PUC: "4F5DCCD07E920AA4C8D18F1E05B3194F" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{0DCCD5F4-29E7-4AA0-8C1D-F8E1503B91F4}\ARPPRODUCTICON.exe O90 - PUC: "62821AFD532045A7CAEE5DE8D519612E" . (.AMD Fuel.) -- C:\Windows\Installer\{DFA12826-0235-7A54-ACEE-D58E5D9116E2}\ARPPRODUCTICON.exe O90 - PUC: "6303285E90F6A0D40BC52EAB1A9282A8" . (.HP Quick Launch.) -- C:\windows\Installer\{E5823036-6F09-4D0A-B05C-E2BAA129288A}\_853F67D554F05449430E7E.exe O90 - PUC: "63EF34DC305BD06CAC30037EA3CA81C5" . (.AMD VISION Engine Control Center.) -- C:\Windows\Installer\{CD43FE36-B503-C60D-CA03-30E73AAC185C}\ARPPRODUCTICON.exe O90 - PUC: "65DF44A6D3679F0B9711493ED88E25BF" . (.Ralink Bluetooth Stack64.) -- C:\Windows\Installer\{6A44FD56-763D-B0F9-7911-94E38DE852FB}\ARPPRODUCTICON.exe O90 - PUC: "69A9FA1138D6B3C4D8BC61AEA253E8F3" . (.HP CoolSense.) -- C:\Windows\Installer\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}\_853F67D554F05449430E7E.exe O90 - PUC: "6FDC54CE46622224A957F56BDAB1E853" . (.wifi d'Orange.) -- C:\WINDOWS\Installer\{EC45CDF6-2664-4222-9A75-5FB6AD1B8E35}\Application_icon O90 - PUC: "76D62537AD635F7D2A77765A47689A7B" . (.ccc-utility64.) -- C:\Windows\Installer\{73526D67-36DA-D7F5-A277-67A57486A9B7}\ARPPRODUCTICON.exe O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe O90 - PUC: "8D1D2B0370A017B4593570015C3DE153" . (.HP Wireless Button Driver.) -- C:\Windows\Installer\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}\ARPPRODUCTICON.exe O90 - PUC: "9A9450A669B1C894CACB933400F1BE91" . (.Skype™ 7.8.) -- C:\WINDOWS\Installer\{6A0549A9-1B96-498C-ACBC-3943001FEB19}\SkypeIcon.exe O90 - PUC: "9CE21D69B027BF5409C4636D03A7C167" . (.HP Support Solutions Framework.) -- C:\WINDOWS\Installer\{96D12EC9-720B-45FB-904C-36D6307A1C76}\icon.ico O90 - PUC: "A4432684C93A7984CA4D1AEB5D61C3A5" . (.PhotoDirector.) -- C:\windows\Installer\{4862344A-A39C-4897-ACD4-A1BED5163C5A}\ARPPRODUCTICON.exe O90 - PUC: "A78975C0A30A59B43A902DF3874F60AC" . (.HP Utility Center.) -- C:\Windows\Installer\{0C57987A-A03A-4B95-A309-D23F78F406CA}\ARPPRODUCTICON.exe O90 - PUC: "B18BA825A56D0BA42A6B285BA180D710" . (.HP Recovery Manager.) -- C:\windows\Installer\{528AB81B-D65A-4AB0-A2B6-82B51A087D01}\_853F67D554F05449430E7E.exe O90 - PUC: "B3D133FB551069C3E3C444EC323BB919" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{BF331D3B-0155-3C96-3E4C-44CE23B39B91}\ARPPRODUCTICON.exe O90 - PUC: "B43A342FF7BA56047B078BB567C742C7" . (.HP Connected Remote.) -- C:\windows\Installer\{F243A34B-AB7F-4065-B770-B85B767C247C}\_853F67D554F05449430E7E.exe O90 - PUC: "B6A4BC524583FAA4E93CB0E8C9F2FE33" . (.HP Documentation.) -- C:\Windows\Installer\{25CB4A6B-3854-4AAF-9EC3-0B8E9C2FEF33}\NotebookDocs.exe O90 - PUC: "BC993E9FF640DF546AF7FC93E912824E" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{F9E399CB-046F-45FD-A67F-CF399E2128E4}\controlPanelIcon.exe O90 - PUC: "BE824E2CE6110C14E9482BD29ECC4AF2" . (.HP Registration Service.) -- C:\Windows\Installer\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}\ARPPRODUCTICON.exe O90 - PUC: "C7D401791CAF2A043AD4970524F4EAED" . (.Logiciel de base du périphérique HP Photosmart 5520 series.) -- C:\Windows\Installer\{97104D7C-FAC1-40A2-A34D-7950424FAEDE}\ARP_Icon =>.Hewlett-Packard Co O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe O90 - PUC: "CB3F1C7F750BC787C7A7F1F75F54B186" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{F7C1F3BC-B057-787C-7C7A-1F7FF5451B68}\ARPPRODUCTICON.exe O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe O90 - PUC: "D4ADA0CF5AF82544A8FF0F0AAB9CE77F" . (.Energy Star.) -- C:\Windows\Installer\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}\_853F67D554F05449430E7E.exe O90 - PUC: "D4DD5B0478132B203868F027E561F014" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{40B5DD4D-3187-02B2-8386-0F725E160F41}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "D84D78A2FDF3df1479DC1A3E07FEFF2E" . (.Power2Go.) -- C:\Windows\Installer\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}\ARPPRODUCTICON.exe O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe O90 - PUC: "E9F4949B9AE507C4F98356F9E5C6B03F" . (.HP Quick Start.) -- C:\Windows\Installer\{B9494F9E-5EA9-4C70-9F38-659F5E6C0BF3}\HPQuickLaunchIcon =>PUP.QuickStart O90 - PUC: "F0FA80BCB41D075438DC5276EC36CCF5" . (.HP Photosmart 5520 series Aide.) -- C:\Windows\Installer\{CB08AF0F-D14B-4570-83CD-2567CE63CC5F}\ARP_Icon =>.Hewlett-Packard Co O90 - PUC: "F958B930B0638D858FF62C77ABE67D8D" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{039B859F-360B-58D8-F86F-C277BA6ED7D8}\ARPPRODUCTICON.exe O90 - PUC: "FC03D219E93F13B4DAA921C3B697E42E" . (.HP Update.) -- C:\WINDOWS\Installer\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}\ARPPRODUCTICON.exe O90 - PUC: "FC94D2CD254219141AC8141F0CA22782" . (.Étude pour l'amélioration du produit HP Photosmart 5520 series.) -- C:\Windows\Installer\{DC2D49CF-2452-4191-A18C-41F1C02A7228}\ARP_Icon =>.Hewlett-Packard Co ~ Update Products: 109 Scanned in 00mn 00s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} ~ MNS: 6 Scanned in 00mn 00s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.21E18AEEB3E1202145FB4FFDF41F0AD7] [WIS][09/02/2014] (.HP - Installer for the HPDetect plugin.) -- C:\Windows\Installer\14d016.msi [1099264] [MD5.44B91FB4319ED438EC5107F0A1BE59AE] [WIS][21/08/2013] (.Mediatek - Ralink Bluetooth Stack.) -- C:\Windows\Installer\19f3ab5b.msi [5693952] [MD5.E78DE1F3DF79C941BA4905DA7CCB78B1] [WIS][25/01/2015] (.Sheet Music Plus, LLC - SheetMusicPlusDigitalPrint.) -- C:\Windows\Installer\30a9f041.msi [36864] [MD5.3D4A08AEBFE0992A7A3F092981A224FE] [WIS][19/08/2015] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\783293a6.msi [36552704] ~ WIS: 111 Scanned in 00mn 14s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 19/08/2015 269000 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Auto 10/01/2013 1612800 | (BlueSoleilCS) . (.IVT Corporation.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe SS - | Auto 09/02/2014 227904 | (GamesAppIntegrationService) . (.WildTangent.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe SS - | Auto 27/02/2015 107848 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 27/02/2015 107848 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Auto 09/07/2015 327296 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SR - | Auto 13/12/2013 239616 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe SR - | Auto 12/09/2012 361984 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe SR - | Auto 19/08/2015 146600 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Demand 10/01/2013 138752 | (BsHelpCS) . (.IVT Corporation.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe SR - | Auto 27/09/2012 86528 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co SR - | Auto 12/10/2012 35744 | (HPConnectedRemote) . (.Hewlett-Packard.) - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe SR - | Demand 07/09/2012 1001376 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe SR - | Auto 24/09/2012 31040 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe SR - | Auto 11/12/2014 89864 | (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe SR - | Auto 07/09/2012 35232 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe SR - | Auto 18/06/2015 1871160 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe SR - | Auto 18/06/2015 1133880 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe SR - | Auto 20/08/2012 323072 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Demand 29/10/2014 38792 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 17s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Lucile at 21/08/2015 19:38:09 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Lucile at 21/08/2015 19:38:12 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13031 - (23/03/2014) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 1 Fichiers trouvés (Files found) : 0 [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{B9494F9E-5EA9-4C70-9F38-659F5E6C0BF3}] =>PUP.QuickStart^ C:\Users\Lucile\AppData\Local\HP Quick Start =>PUP.QuickStart^ ~ Additionnel Scan: 305640 Items scanned in 01mn 39s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.webs.com/apps/blog/show/41962558-pup-quickstart =>PUP.QuickStart ~ MSI: 1 link(s) detected in 01mn 40s End of the scan (2029 lines in 09mn 25s)(0)