~ ZHPDiag v2015.8.20.122 Par Nicolas Coolman (2015/08/20) ~ Démarré par Administrateur (Administrator) (2015/08/22 17:01:45) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Documents and Settings\Administrateur\Bureau\ZHPDiag.txt ~ Rapport: C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag.txt ~ UAC: Deactivate ~ Démarrage du système: Normal (Normal boot) Windows XP, 32-bit Service Pack 3 (Build 2600) ---\\ Navigateurs Internet (2) - 0s MFIE: Mozilla Firefox 41.0 (x86 en-US) v41.0 MSIE: Internet Explorer v6.0.2900.5512 ---\\ Informations sur les produits Windows (2) - 1s Windows Automatic Updates : OK (Auto) Windows Genuine Advantage : KO ---\\ Logiciels de protection (2) - 1s Kaspersky Internet Security v15.0.1.415 Malwarebytes Anti-Malware version 2.1.8.1057 ---\\ Surveillance de Logiciels (1) - 1s Adobe Flash Player 18 NPAPI ---\\ Logiciels de partage P2P (1) - 1s µTorrent v3.0.0 ---\\ Informations sur le système (6) - 0s ~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel ~ Operating System: 32-bit ~ Boot mode: Normal (Normal boot) Total RAM: 2023.62 MB (36% free) ~ System Restore: Activé (Enable) ~ System drive C: has 20 GB free of 50 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: REDOX-F4475267A ~ User Name: Administrateur ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 20 GB free of 50 GB (System) ~ Drive D: has 6 GB free of 102 GB ---\\ Etat du Centre de Sécurité Windows (8) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (22) - 1s [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [1037824] [MD5.93AD0B78C7357A05F50E594EC7C22300] - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) () -- C:\WINDOWS\System32\rundll32.exe [33792] [MD5.4A6E04EA20F48D750D9BFED8600D516B] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [670208] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [512000] [MD5.322D0E36693D6E24A2398BEE62A268CD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [138112] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [96512] [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] [MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] [MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) () -- C:\WINDOWS\System32\drivers\Fips.sys [44672] [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384] [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) () -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) () -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] [MD5.68755F0FF16070178B54674FE5B847B0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456576] [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [162816] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [80384] [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) () -- C:\WINDOWS\System32\drivers\redbook.sys [58752] [MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] ---\\ Processus lancés (36) - 2s [MD5.33D7E76F7DE0A73504742765105F178F] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe [821024] [PID.1920] [MD5.489EC8D956C41684206ACA32A8BBCF49] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe [878880] [PID.1036] [MD5.AB1AF0BA03DCB6A879BC22F472EACEEA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520] [PID.1568] [MD5.EB568B709E7170A9BE67A405644E8CBF] - (.IObit - Smart Defrag v4.) -- C:\Program Files\IObit\Smart Defrag 4\SmartDefrag.exe [4525344] [PID.600] [MD5.301E3FDFCF33640BB8763BA444BC5093] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.692] [MD5.79391331D6F021AF2F1105785C15F648] - (.IObit - Performance Monitor.) -- C:\Program Files\IObit\Advanced SystemCare 8\Monitor.exe [3051296] [PID.1200] [MD5.83C982A395D00BAFF6515FB38424EA76] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880] [PID.1224] [MD5.3CE0123A96A41588627C8E870020FACD] - (.Nalpeiron Ltd. - This service enables products that use the.) -- C:\WINDOWS\system32\NLSSRV32.EXE [69640] [PID.1528] [MD5.96EFEC24346A8EB1157E80523079ADDC] - (...) -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056] [PID.1316] [MD5.ABFF2B3A80AA5348BE5E43EFD6B415D1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe [6554424] [PID.904] [MD5.EE30BA6D111A3FD08979A045E6D7EC63] - (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe [136472] [PID.648] [MD5.1E9E13E27EA35FCAD5CCF70DE7597D20] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [170264] [PID.1104] [MD5.99B0E1E69DE513659005C79E42EB4C54] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [145688] [PID.1260] [MD5.8CB896C573FD15AE8B13180DA53E93D2] - (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752] [PID.2092] [MD5.FE7CE849DB8C3986B2E721C6A3184FAA] - (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe [287800] [PID.2168] [MD5.0F484CEBC0E6724B157E644787B66B68] - (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe [623520] [PID.2176] [MD5.F6158734F1E24C6C510155CF0D363911] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe [295512] [PID.2196] [MD5.C81BE1B951C36E97D3DA90DA745DA5F7] - (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\kbd.exe [61440] [PID.2220] [MD5.90FDA07D2843E2CB479BE882E8AED728] - (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe [1044480] [PID.2228] [MD5.E3217365E90B7ABAA21D369B64EF9B5B] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe [3907152] [PID.2792] [MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.2960] [MD5.B85ABCABDB127F0155D931D76EFFEC40] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [377000] [PID.3376] [MD5.FF1AF4C9DC2D3827B363931BC0ED6024] - (.Broadcom Corporation. - Bluetooth Tray Application.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [576104] [PID.3420] [MD5.B4DAAB34E7A815EE58E2B8B1D329C899] - (.Broadcom Corporation. - Bluetooth Stack COM Server.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe [1440384] [PID.556] [MD5.FDF273A845F1FFCCEADF363AAF47582F] - (.Hewlett-Packard Development Company, L.P. - hpqwmiex Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe [229944] [PID.2884] [MD5.E9C6EF9437ECB30911488F9313AD821A] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\IEMonitor.exe [269848] [PID.3412] [MD5.F9A79C5B27037821112C50A9C8FB367A] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [228408] [PID.500] [MD5.7887DC888A1A7317DC828E59C56F33F6] - (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe [5887264] [PID.1124] [MD5.0DE3C7622EC33126579B1742260F08C2] - (.Copyright (c) 2005 - 2009 Hewlett-Packard Development - HpqToaster Module.) -- C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.2940] [MD5.3D2496BCA132B08D9B23856D65F30513] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe [193128] [PID.3372] [MD5.2B15967270AD018024286CBA9DA1E4E7] - (.IObit - .) -- C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe [188192] [PID.3592] [MD5.07782C388EDDB13CB0A1040F7E1DDCDC] - (.IObit - Real-time Protector.) -- C:\Program Files\IObit\Advanced SystemCare 8\RealTimeProtector.exe [1106720] [PID.444] [MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.2240] [MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.1712] [MD5.7A6832296251E27D0D6CF68B0DD37F29] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [278184] [PID.3228] [MD5.63E20985B61368A6172D93D0245DC9F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Administrateur\Application Data\ZHP\ZHPDiag3.exe [1895424] [PID.4768] ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (10) - 1s P2 - EXT FILE: (...) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\firefox@zenmate.com.xpi P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} P2 - EXT: (.IObit - Advanced SystemCare Surfing Protection.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\iobitascsurfingprotection@iobit.com P2 - EXT: (.Automation Development - Nightly Tester Tools.) -- C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\kxbp6ydx.default\extensions\{8620c15f-30dc-4dba-a131-7c5d20cf4a29} P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_18_0_0_232.dll P2 - FPN: [HKLM] [@kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com P2 - FPN: [HKLM] [@kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com P2 - FPN: [HKLM] [@kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB] - (.kaspersky.com.) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com P2 - FPN: [HKLM] [@real.com/nprpplugin;version=16.0.3.51] - (.RealPlayer.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll P2 - FPN: [HKLM] [@realnetworks.com/npdlplugin;version=1] - (.RealDownloader.) -- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (9) - 0s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer,Proxy Management (4) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (31) ---\\ Browser Helper Object de navigateur (BHO) (3) - 1s O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\IDMIECC.dll O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealPlayer Download and Record Plugin.) -- C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: QUICKfind BHO Object - {C08DF07A-3E49-4E25-9AB0-D3882835F153} . (.IDM - QUICKfind BHO Object.) -- C:\Program Files\IDM\QUICKfind\PlugIns\IEHelp.dll ---\\ Applications lancées au démarrage du système (31) - 1s O4 - HKLM\..\Run: [SoundMAX] . (.Analog Devices, Inc. - Audio Control Panel.) -- C:\Program Files\Analog Devices\SoundMAX\SMax4.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [hpWirelessAssistant] . (.Hewlett-Packard Development Company, L.P. - HPWAMain Module.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [IMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\ime\imjp8_1\imjpmig.exe O4 - HKLM\..\Run: [MSPY2002] . (...) -- C:\WINDOWS\system32\IME\PINTLGNT\IMSCINST.EXE O4 - HKLM\..\Run: [PHIME2002ASync] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE O4 - HKLM\..\Run: [PHIME2002A] . (.Microsoft Corporation - 微軟新注音輸入法 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE O4 - HKLM\..\Run: [QlbCtrl.exe] . (.Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe O4 - HKLM\..\Run: [USB Security] . (.Zbshareware Lab - USB Disk Security.) -- C:\Program Files\USB Disk Security\USBGuard.exe O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe O4 - HKLM\..\Run: [KBD] . (.Hewlett-Packard Company - KBD EXE.) -- C:\HP\KBD\kbd.exe O4 - HKLM\..\Run: [SoundMAXPnP] . (.Analog Devices, Inc. - SMax4PNP.) -- C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files\IObit\IObit Malware Fighter\IMF.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe O4 - HKCU\..\Run: [IDM trial reset] . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\IDM Fake Fixed\Reset (Fixed).exe O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\IDMan.exe O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files\IObit\Advanced SystemCare 8\ASCTray.exe O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox\Update\DropboxUpdate.exe O4 - HKUS\S-1-5-21-1659004503-706699826-725345543-500\..\Run: [IDM trial reset] . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\IDM Fake Fixed\Reset (Fixed).exe ---\\ Raccourcis Global Startup (5) - 4s O4 - GS\Quicklaunch [Administrateur]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder O4 - GS\Quicklaunch [ASPNET]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder O4 - GS\Quicklaunch [HelpAssistant]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder O4 - GS\Quicklaunch [Invité]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder O4 - GS\Quicklaunch [SUPPORT_388945a0]: DriverFinder.lnk . (.DriverFinder™ is a top-rated PC driver tool that scan - DriverFinder.) C:\Program Files\DriverFinder\DriverFinder.exe =>PUP.Optional.DriverFinder ---\\ Modification Domaine/Adresses DNS (3) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ---\\ Liste des services NT non Microsoft et non désactivés (8) - 1s O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe O23 - Service: Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe O23 - Service: Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd. - This service enables products that use the.) - C:\WINDOWS\system32\NLSSRV32.EXE O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe ---\\ Tâches planifiées en automatique (15) - 3s [MD5.2A356FA2650E30E139F0476979548BF6] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\realupgrade.exe [187984] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\ASC8_PerformanceMonitor.job [298] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\AutoKMS.job [234] =>HackTool.AutoKMS O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\AutoKMSDaily.job [218] =>HackTool.AutoKMS O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Driver Booster Scan.job [288] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Driver Booster Update.job [290] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-500Core.job [1250] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1659004503-706699826-725345543-500UA.job [1302] O39 - APT: RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500 - (.RealNetworks, Inc..) -- C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-706699826-725345543-500.job [296] =>.RealNetworks, Inc. O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-706699826-725345543-500.job [304] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\SmartDefrag4_Startup.job [298] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\SmartDefrag4_Update.job [296] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Wise Care 365.job [404] O39 - APT: Orphean - (...) -- C:\WINDOWS\Tasks\Wise Turbo Checker.job [384] ---\\ Logiciels installés (51) - 8s O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM] -- Advanced SystemCare 8_is1 O42 - Logiciel: Carte réseau local sans fil 802.11 Broadcom - (.Broadcom Corporation.) [HKLM] -- Broadcom 802.11b Network Adapter O42 - Logiciel: Driver Booster 2.4 - (.IObit.) [HKLM] -- Driver Booster_is1 O42 - Logiciel: DriverFinder - (.DeskToolsSoft.) [HKLM] -- DriverFinder =>PUP.Optional.DriverFinder O42 - Logiciel: FolderHighlight 2.4 - (.eRiverSoft.) [HKLM] -- FolderHighlight_is1 O42 - Logiciel: FormatFactory 3.6.0.0 - (.Format Factory.) [HKLM] -- FormatFactory O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- InstallShield_{929408E6-D265-4174-805F-81D1D914E2A4} O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E} O42 - Logiciel: IObit Malware Fighter 3 - (.IObit.) [HKLM] -- IObit Malware Fighter_is1 O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM] -- IObit Surfing Protection_is1 O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM] -- IObitUninstall O42 - Logiciel: Java Web Start - (...) [HKLM] -- Java Web Start O42 - Logiciel: Enhanced Multimedia Keyboard Solution - (...) [HKLM] -- KBD O42 - Logiciel: Longman Active Study Dictionary 4th edition - (...) [HKLM] -- Longman Active Study Dictionary 4th edition O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Marvell Miniport Driver - (.Marvell.) [HKLM] -- Marvell Miniport Driver O42 - Logiciel: Mozilla Firefox 41.0 (x86 en-US) - (.Mozilla.) [HKLM] -- Mozilla Firefox 41.0 (x86 en-US) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService O42 - Logiciel: Oxford Advanced Learner's Dictionary - 8th Edition - (...) [HKLM] -- NSIS_oald8 O42 - Logiciel: Le Petit Robert 2014 - (.Le Robert.) [HKLM] -- PR1CD2014 O42 - Logiciel: QUICKfind server v1.1 - (.IDM.) [HKLM] -- QUICKfind O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 16.0 O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM] -- Smart Defrag 4_is1 O42 - Logiciel: Supercopier 4.0.1.13 - (.Supercopier.) [HKLM] -- Supercopier O42 - Logiciel: UltraISO Premium V9.36 - (...) [HKLM] -- UltraISO_is1 O42 - Logiciel: UMPlayer 0.98 [P4] - (.Ori Rejwan.) [HKLM] -- UMPlayer O42 - Logiciel: USB Disk Security - (.Zbshareware Lab.) [HKLM] -- USB Disk Security_is1 O42 - Logiciel: µTorrent - (...) [HKLM] -- uTorrent O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: Wise PC Engineer 6.3.8 - (.ZhiQing Soft, Inc..) [HKLM] -- Wise PC Engineer_is1 O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard.) [HKLM] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355} O42 - Logiciel: Sudoku - (.Micro Application.) [HKLM] -- {48ED9A7B-93CE-4832-AECA-27143737ACFD} O42 - Logiciel: Revo Uninstaller Pro 3.1.4 - (.VS Revo Group, Ltd..) [HKLM] -- {67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1 O42 - Logiciel: Nitro Pro 9 - (.Nitro.) [HKLM] -- {6AD12230-3AB3-4E19-8CB2-8EBFD0EA58F1} O42 - Logiciel: Réussir son Code de la Route 2013 - (.Micro Application.) [HKLM] -- {8000A55E-6BB3-4206-AEED-CFD25F36FBC8} O42 - Logiciel: HP Integrated Module with Bluetooth wireless technology - (.HP.) [HKLM] -- {84814E6B-2581-46EC-926A-823BD1C670F6} O42 - Logiciel: Kaspersky Internet Security - (.Kaspersky Lab.) [HKLM] -- {8ED07EBD-22AD-415A-B71E-C1AD86862C2E} O42 - Logiciel: HP ESU for Microsoft Windows XP - (.Hewlett-Packard Company.) [HKLM] -- {99B45308-9AAB-4C15-97BD-306F2CDA56A5} O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM] -- {9ADABDDE-9644-461B-9E73-83FA3EFCAB50} O42 - Logiciel: Jeux du Dictionnaire - (.Micro Application.) [HKLM] -- {AB254D00-D5D7-493B-922C-9E673848EFB5} O42 - Logiciel: Micro Application - 38 Dictionnaires et Recueils de Correspondance - (...) [HKLM] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0} O42 - Logiciel: LG Connection Manager - (.LGE.) [HKLM] -- {BBF60130-FB99-4909-B0F3-A511F25E13A9} O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM] -- {C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE} O42 - Logiciel: Java 2 Runtime Environment, SE v1.4.1_02 - (...) [HKLM] -- {EFCE5837-FC21-11D6-9D24-00010240CE95} O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM] -- {F1D7AC58-554A-4A58-B784-B61558B1449A} O42 - Logiciel: المورد القريب - (...) [HKLM] -- المورد القريب O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox ---\\ HKCU & HKLM Software Keys (99) - 8s HKLM\SOFTWARE\Agere HKLM\SOFTWARE\Analog Devices HKLM\SOFTWARE\Andrea Electronics HKLM\SOFTWARE\Apple Computer, Inc. HKLM\SOFTWARE\Avanquest HKLM\SOFTWARE\AviSynth HKLM\SOFTWARE\BcmSetup HKLM\SOFTWARE\Broadcom HKLM\SOFTWARE\C07ft5Y HKLM\SOFTWARE\Caphyon HKLM\SOFTWARE\CDDB HKLM\SOFTWARE\Dell HKLM\SOFTWARE\Dell Computer Corporation HKLM\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder HKLM\SOFTWARE\EasyBoot Systems HKLM\SOFTWARE\Gemplus HKLM\SOFTWARE\GNU HKLM\SOFTWARE\Google HKLM\SOFTWARE\HaaliMkx HKLM\SOFTWARE\Hewlett-Packard HKLM\SOFTWARE\Hewlett-Packard Company HKLM\SOFTWARE\HP HKLM\SOFTWARE\HPQ HKLM\SOFTWARE\IDM HKLM\SOFTWARE\InstalledOptions HKLM\SOFTWARE\InstallShield HKLM\SOFTWARE\INTEL HKLM\SOFTWARE\Internet Download Manager HKLM\SOFTWARE\IObit HKLM\SOFTWARE\JavaSoft HKLM\SOFTWARE\KasperskyLab HKLM\SOFTWARE\LAventure HKLM\SOFTWARE\Macromedia HKLM\SOFTWARE\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Marvell HKLM\SOFTWARE\MaxPower HKLM\SOFTWARE\Mozilla HKLM\SOFTWARE\mozilla.org HKLM\SOFTWARE\MozillaPlugins HKLM\SOFTWARE\Nitro HKLM\SOFTWARE\NSIS_oald8 HKLM\SOFTWARE\ODBC HKLM\SOFTWARE\Program Groups HKLM\SOFTWARE\RealNetworks HKLM\SOFTWARE\RegisteredApplications HKLM\SOFTWARE\Schlumberger HKLM\SOFTWARE\SiteSee HKLM\SOFTWARE\TEXTware A/S HKLM\SOFTWARE\UMPlayer HKLM\SOFTWARE\Widcomm HKLM\SOFTWARE\Windows 3.1 Migration Status HKLM\SOFTWARE\WinRAR HKLM\SOFTWARE\WiseCleaner HKLM\SOFTWARE\Wow6432Node HKLM\SOFTWARE\Xing Technology Corp. HKCU\SOFTWARE\Ada99 HKCU\SOFTWARE\Analog Devices HKCU\SOFTWARE\Andrew Zhezherun HKCU\SOFTWARE\Avanquest HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\BugSplat HKCU\SOFTWARE\Clubic HKCU\SOFTWARE\DownloadManager HKCU\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder HKCU\SOFTWARE\Dropbox HKCU\SOFTWARE\DropboxUpdate HKCU\SOFTWARE\drpsu HKCU\SOFTWARE\EasyBoot Systems HKCU\SOFTWARE\eRiverSoft HKCU\SOFTWARE\FreeTime HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\GNU HKCU\SOFTWARE\GSpot Appliance Corp HKCU\SOFTWARE\Haali HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\Intel HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\LAventure HKCU\SOFTWARE\LG Connection Manager HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magix HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\Mirage HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\NATATA eBook HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Nitro HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\quareeb.exe HKCU\SOFTWARE\RealNetworks HKCU\SOFTWARE\SecuROM HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Ultracopier HKCU\SOFTWARE\VS Revo Group HKCU\SOFTWARE\Widcomm HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper ---\\ Contenu des dossiers Programmes (198) - 9s O43 - CFD: 2015/05/05 11:05:04 - [] DC -- C:\Program Files\Analog Devices O43 - CFD: 2014/11/07 14:44:19 - [] DC -- C:\Program Files\Broadcom O43 - CFD: 2014/11/07 14:06:03 - [0] DC -- C:\Program Files\ComPlus Applications O43 - CFD: 2014/11/08 11:45:59 - [] DC -- C:\Program Files\DIFX O43 - CFD: 2015/05/05 11:02:47 - [0] DC -- C:\Program Files\Driver-Soft =>Legitimate.DriverSoft O43 - CFD: 2014/11/10 13:12:21 - [] DC -- C:\Program Files\DriverFinder =>PUP.Optional.DriverFinder O43 - CFD: 2015/05/18 09:52:32 - [] DC -- C:\Program Files\Dropbox O43 - CFD: 2015/05/10 15:16:51 - [] DC -- C:\Program Files\Fichiers communs O43 - CFD: 2014/11/10 22:36:45 - [] DC -- C:\Program Files\FolderHighlight O43 - CFD: 2015/03/03 17:24:14 - [] DC -- C:\Program Files\FreeTime O43 - CFD: 2014/11/10 12:59:59 - [] DC -- C:\Program Files\Hewlett-Packard O43 - CFD: 2014/11/11 13:45:42 - [] DC -- C:\Program Files\IDM O43 - CFD: 2015/01/28 22:09:13 - [] HDC -- C:\Program Files\InstallShield Installation Information O43 - CFD: 2015/04/23 08:42:19 - [] DC -- C:\Program Files\Intel O43 - CFD: 2015/08/16 00:25:11 - [] DC -- C:\Program Files\Internet Download Manager O43 - CFD: 2014/11/13 08:22:27 - [] DC -- C:\Program Files\Internet Explorer O43 - CFD: 2015/08/21 17:16:53 - [] DC -- C:\Program Files\IObit O43 - CFD: 2014/11/11 13:08:03 - [] DC -- C:\Program Files\Java O43 - CFD: 2014/11/11 13:08:16 - [] DC -- C:\Program Files\Java Web Start O43 - CFD: 2015/04/27 10:37:49 - [] D -- C:\Program Files\Kaspersky Lab O43 - CFD: 2015/05/05 11:00:42 - [] DC -- C:\Program Files\Le Robert O43 - CFD: 2015/05/29 15:55:02 - [] DC -- C:\Program Files\LG Connection Manager O43 - CFD: 2014/11/07 21:18:17 - [] DC -- C:\Program Files\LG Electronics O43 - CFD: 2014/11/11 13:04:26 - [] DC -- C:\Program Files\Longman O43 - CFD: 2015/05/05 11:01:24 - [] DC -- C:\Program Files\LSI SoftModem O43 - CFD: 2014/11/10 10:38:42 - [] DC -- C:\Program Files\Mail.Ru O43 - CFD: 2015/08/14 21:52:31 - [] DC -- C:\Program Files\Malwarebytes Anti-Malware O43 - CFD: 2014/11/07 14:52:06 - [] DC -- C:\Program Files\Marvell O43 - CFD: 2014/11/08 12:01:16 - [] DC -- C:\Program Files\Messenger O43 - CFD: 2015/01/28 22:09:13 - [] DC -- C:\Program Files\Micro Application O43 - CFD: 2014/11/08 00:19:20 - [] DC -- C:\Program Files\Microsoft Analysis Services O43 - CFD: 2014/11/07 14:09:03 - [] DC -- C:\Program Files\microsoft frontpage O43 - CFD: 2014/11/08 00:21:53 - [] DC -- C:\Program Files\Microsoft Office O43 - CFD: 2014/11/08 00:21:52 - [] DC -- C:\Program Files\Microsoft Sync Framework O43 - CFD: 2014/11/10 15:01:48 - [] DC -- C:\Program Files\Microsoft.NET O43 - CFD: 2014/11/08 12:01:00 - [] DC -- C:\Program Files\Movie Maker O43 - CFD: 2015/08/20 20:39:02 - [] DC -- C:\Program Files\Mozilla Firefox O43 - CFD: 2015/08/20 20:39:02 - [] DC -- C:\Program Files\Mozilla Maintenance Service O43 - CFD: 2014/11/11 14:23:14 - [] DC -- C:\Program Files\mqreeb O43 - CFD: 2014/11/07 14:05:15 - [] DC -- C:\Program Files\MSN O43 - CFD: 2014/11/07 14:05:41 - [] DC -- C:\Program Files\MSN Gaming Zone O43 - CFD: 2014/11/08 11:59:36 - [] DC -- C:\Program Files\NetMeeting O43 - CFD: 2014/11/10 20:56:05 - [] DC -- C:\Program Files\Nitro O43 - CFD: 2014/11/07 14:05:48 - [] DC -- C:\Program Files\Online Services O43 - CFD: 2014/11/08 11:59:31 - [] DC -- C:\Program Files\Outlook Express O43 - CFD: 2014/11/11 13:42:34 - [] DC -- C:\Program Files\Oxford O43 - CFD: 2014/11/11 13:09:42 - [] DC -- C:\Program Files\QuickTime O43 - CFD: 2014/11/11 17:51:17 - [] DC -- C:\Program Files\Real O43 - CFD: 2014/11/11 16:43:58 - [] DC -- C:\Program Files\RealNetworks O43 - CFD: 2014/11/07 14:07:31 - [] DC -- C:\Program Files\Services en ligne O43 - CFD: 2014/11/10 22:07:54 - [] DC -- C:\Program Files\Supercopier O43 - CFD: 2014/11/11 13:06:32 - [] DC -- C:\Program Files\TEXTware O43 - CFD: 2015/05/05 11:06:12 - [0] DC -- C:\Program Files\trend micro O43 - CFD: 2014/11/11 13:01:26 - [] DC -- C:\Program Files\UltraISO O43 - CFD: 2015/05/05 10:58:11 - [] DC -- C:\Program Files\UMPlayer O43 - CFD: 2014/11/07 14:15:54 - [0] HDC -- C:\Program Files\Uninstall Information O43 - CFD: 2014/11/10 22:32:24 - [] DC -- C:\Program Files\USB Disk Security O43 - CFD: 2014/11/10 21:51:10 - [] DC -- C:\Program Files\uTorrent O43 - CFD: 2014/11/08 18:14:23 - [] DC -- C:\Program Files\VideoLAN O43 - CFD: 2015/07/30 20:58:25 - [] DC -- C:\Program Files\VS Revo Group O43 - CFD: 2014/11/16 13:20:14 - [] DC -- C:\Program Files\WIDCOMM O43 - CFD: 2015/01/29 21:11:55 - [] DC -- C:\Program Files\Windows Media Player O43 - CFD: 2014/11/08 11:59:31 - [] DC -- C:\Program Files\Windows NT O43 - CFD: 2014/11/07 14:07:34 - [0] HDC -- C:\Program Files\WindowsUpdate O43 - CFD: 2014/11/10 13:03:35 - [] DC -- C:\Program Files\WinRAR O43 - CFD: 2014/11/08 18:03:27 - [] DC -- C:\Program Files\Wise O43 - CFD: 2015/08/14 22:40:34 - [] DC -- C:\Program Files\Wise PC Engineer O43 - CFD: 2014/11/07 14:09:03 - [] DC -- C:\Program Files\xerox O43 - CFD: 2014/12/07 21:02:08 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Accessoires O43 - CFD: 2015/08/21 17:04:44 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Advanced SystemCare 8 O43 - CFD: 2014/11/10 12:49:27 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Broadcom Wireless O43 - CFD: 2015/08/21 17:16:20 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Driver Booster 2 O43 - CFD: 2014/11/10 13:12:21 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverFinder =>PUP.Optional.DriverFinder O43 - CFD: 2015/05/14 22:45:07 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage O43 - CFD: 2015/08/03 21:42:32 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Internet Download Manager O43 - CFD: 2015/08/21 17:11:18 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IObit Malware Fighter O43 - CFD: 2015/08/21 17:05:21 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IObit Uninstaller O43 - CFD: 2014/11/07 14:06:14 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Jeux O43 - CFD: 2014/11/10 20:46:07 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Kaspersky Internet Security O43 - CFD: 2015/01/18 21:57:48 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Le Petit Robert 2014 O43 - CFD: 2014/11/08 12:11:02 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\LG Connection Manager O43 - CFD: 2014/11/11 13:06:36 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Longman O43 - CFD: 2015/08/14 21:52:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes Anti-Malware O43 - CFD: 2015/01/28 22:39:24 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Micro Application O43 - CFD: 2014/11/10 15:02:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Microsoft Office O43 - CFD: 2014/12/16 11:51:37 - [] RDC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 2014/11/11 13:45:45 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Oxford O43 - CFD: 2014/11/11 13:09:24 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\QuickTime O43 - CFD: 2014/11/11 17:51:40 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\RealNetworks O43 - CFD: 2015/07/30 20:58:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Revo Uninstaller Pro O43 - CFD: 2014/11/10 15:02:30 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SharePoint O43 - CFD: 2015/08/21 17:17:00 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Smart Defrag 4 O43 - CFD: 2015/05/05 11:06:16 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\SoundMAX O43 - CFD: 2014/11/11 13:06:36 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\TEXTware O43 - CFD: 2014/11/11 13:01:27 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\UltraISO O43 - CFD: 2015/05/05 10:58:10 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\UMPlayer O43 - CFD: 2014/11/10 22:32:25 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\USB Disk Security O43 - CFD: 2014/11/10 13:03:38 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR O43 - CFD: 2014/11/10 21:39:48 - [] DC -- C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Wise PC Engineer O43 - CFD: 2014/11/11 13:09:00 - [] DC -- C:\Documents and Settings\All Users\Application Data\Apple Computer O43 - CFD: 2015/01/28 22:09:13 - [] DC -- C:\Documents and Settings\All Users\Application Data\Avanquest O43 - CFD: 2015/01/28 23:03:22 - [] DC -- C:\Documents and Settings\All Users\Application Data\Avanquest Software O43 - CFD: 2015/03/03 17:36:56 - [] DC -- C:\Documents and Settings\All Users\Application Data\Baidu O43 - CFD: 2015/08/01 20:01:14 - [] DC -- C:\Documents and Settings\All Users\Application Data\Dropbox O43 - CFD: 2014/11/10 10:38:16 - [0] DC -- C:\Documents and Settings\All Users\Application Data\Guard.Mail.Ru O43 - CFD: 2014/11/10 22:14:01 - [0] DC -- C:\Documents and Settings\All Users\Application Data\IDM O43 - CFD: 2014/12/16 12:11:03 - [] DC -- C:\Documents and Settings\All Users\Application Data\InstallShield O43 - CFD: 2015/08/21 17:16:36 - [] DC -- C:\Documents and Settings\All Users\Application Data\IObit O43 - CFD: 2015/08/22 16:58:26 - [] DC -- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab O43 - CFD: 2015/05/05 10:57:37 - [] DC -- C:\Documents and Settings\All Users\Application Data\Le Robert O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\All Users\Application Data\MAGIX O43 - CFD: 2015/08/13 22:11:24 - [] DC -- C:\Documents and Settings\All Users\Application Data\Malwarebytes O43 - CFD: 2014/11/08 20:54:00 - [] DC -- C:\Documents and Settings\All Users\Application Data\McAfee O43 - CFD: 2014/11/10 10:40:01 - [] SDC -- C:\Documents and Settings\All Users\Application Data\Microsoft O43 - CFD: 2014/12/23 14:40:08 - [] DC -- C:\Documents and Settings\All Users\Application Data\Microsoft Help O43 - CFD: 2014/12/23 15:05:51 - [] DC -- C:\Documents and Settings\All Users\Application Data\Microsoft Toolkit =>HackTool.AutoKMS O43 - CFD: 2014/11/07 14:33:33 - [] DC -- C:\Documents and Settings\All Users\Application Data\Mozilla O43 - CFD: 2014/11/10 20:56:04 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro O43 - CFD: 2014/11/08 11:35:54 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro(2) O43 - CFD: 2014/11/10 10:39:05 - [] DC -- C:\Documents and Settings\All Users\Application Data\Nitro(3) O43 - CFD: 2015/08/16 21:01:50 - [] DC -- C:\Documents and Settings\All Users\Application Data\ProductData O43 - CFD: 2014/11/11 17:51:08 - [] DC -- C:\Documents and Settings\All Users\Application Data\Real O43 - CFD: 2014/11/11 16:43:55 - [] DC -- C:\Documents and Settings\All Users\Application Data\RealNetworks O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\All Users\Application Data\simplitec O43 - CFD: 2014/11/10 14:24:46 - [] DC -- C:\Documents and Settings\All Users\Application Data\VS Revo Group O43 - CFD: 2014/11/10 22:32:37 - [0] DC -- C:\Documents and Settings\All Users\Application Data\Zbshareware Lab O43 - CFD: 2015/05/10 15:43:57 - [] DC -- C:\Documents and Settings\All Users\Application Data\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} O43 - CFD: 2014/11/10 15:01:56 - [] DC -- C:\Program Files\Fichiers communs\DESIGNER O43 - CFD: 2014/11/11 13:01:26 - [] DC -- C:\Program Files\Fichiers communs\EZB Systems O43 - CFD: 2014/12/16 12:05:17 - [] DC -- C:\Program Files\Fichiers communs\InstallShield O43 - CFD: 2015/05/10 15:16:51 - [] DC -- C:\Program Files\Fichiers communs\IObit O43 - CFD: 2015/08/21 17:20:43 - [] DC -- C:\Program Files\Fichiers communs\Microsoft Shared O43 - CFD: 2014/11/07 14:06:56 - [] DC -- C:\Program Files\Fichiers communs\MSSoap O43 - CFD: 2014/11/10 20:56:05 - [] DC -- C:\Program Files\Fichiers communs\Nitro O43 - CFD: 2014/11/08 11:35:54 - [] DC -- C:\Program Files\Fichiers communs\Nitro(2) O43 - CFD: 2014/11/10 10:39:05 - [] DC -- C:\Program Files\Fichiers communs\Nitro(3) O43 - CFD: 2014/11/07 13:56:13 - [] DC -- C:\Program Files\Fichiers communs\ODBC O43 - CFD: 2014/11/07 14:06:59 - [] DC -- C:\Program Files\Fichiers communs\Services O43 - CFD: 2014/11/07 13:56:10 - [] DC -- C:\Program Files\Fichiers communs\SpeechEngines O43 - CFD: 2014/11/10 14:59:22 - [] DC -- C:\Program Files\Fichiers communs\System O43 - CFD: 2014/11/11 17:51:11 - [] DC -- C:\Program Files\Fichiers communs\xing shared O43 - CFD: 2014/11/10 21:33:24 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Adobe O43 - CFD: 2015/05/10 15:17:04 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Apple Computer O43 - CFD: 2015/08/22 16:54:57 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\DMCache O43 - CFD: 2014/11/10 20:54:03 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Downloaded Installations O43 - CFD: 2014/11/10 13:13:35 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\DriverFinder =>PUP.Optional.DriverFinder O43 - CFD: 2015/08/08 23:43:29 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Dropbox O43 - CFD: 2014/11/14 11:00:20 - [0] DC -- C:\Documents and Settings\Administrateur\Application Data\Help O43 - CFD: 2014/11/10 22:27:01 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\hpqLog O43 - CFD: 2014/11/10 11:20:49 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Identities O43 - CFD: 2015/08/21 22:41:22 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\IDM O43 - CFD: 2014/11/10 12:51:22 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\InstallShield O43 - CFD: 2015/08/21 17:16:44 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\IObit O43 - CFD: 2015/08/02 23:30:14 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\LG Connection Manager O43 - CFD: 2014/11/11 13:08:43 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Longman O43 - CFD: 2014/11/10 21:33:25 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Macromedia O43 - CFD: 2015/03/03 17:32:29 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\MAGIX O43 - CFD: 2015/04/09 12:30:36 - [] SDC -- C:\Documents and Settings\Administrateur\Application Data\Microsoft O43 - CFD: 2014/11/11 13:08:45 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Mozilla O43 - CFD: 2015/05/18 07:37:38 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Nitro O43 - CFD: 2015/08/22 14:16:55 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Nitro PDF O43 - CFD: 2014/11/11 13:46:49 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\oald8 O43 - CFD: 2015/05/16 08:29:00 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\ProductData O43 - CFD: 2014/11/11 16:45:34 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Real O43 - CFD: 2014/11/11 16:44:27 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\RealNetworks O43 - CFD: 2014/11/11 13:46:18 - [] RHDC -- C:\Documents and Settings\Administrateur\Application Data\SecuROM O43 - CFD: 2015/05/10 15:27:23 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\uTorrent O43 - CFD: 2014/11/10 13:59:39 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\WinRAR O43 - CFD: 2014/11/10 22:32:37 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\Zbshareware Lab O43 - CFD: 2015/08/22 17:01:58 - [] DC -- C:\Documents and Settings\Administrateur\Application Data\ZHP O43 - CFD: 2015/07/31 22:57:31 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Adobe O43 - CFD: 2015/08/10 02:34:54 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Apple Computer O43 - CFD: 2015/04/23 08:39:49 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\ApplicationHistory O43 - CFD: 2014/11/12 10:52:56 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Deployment O43 - CFD: 2015/08/01 20:01:15 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Dropbox O43 - CFD: 2014/11/14 11:00:20 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Help O43 - CFD: 2015/01/18 22:05:30 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Le_Petit_Robert O43 - CFD: 2015/01/28 23:00:51 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Micro Application O43 - CFD: 2015/04/09 12:26:28 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft O43 - CFD: 2014/11/10 14:58:03 - [0] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft Help O43 - CFD: 2014/11/10 11:40:09 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla O43 - CFD: 2015/05/05 10:58:09 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\MPlayer O43 - CFD: 2014/11/11 13:46:46 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\oald8 O43 - CFD: 2015/05/05 11:00:06 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\PCHealth O43 - CFD: 2014/11/10 21:47:54 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\uTorrent O43 - CFD: 2014/11/10 14:24:52 - [] DC -- C:\Documents and Settings\Administrateur\Local Settings\Application Data\VS Revo Group O43 - CFD: 2014/11/10 11:20:51 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Accessoires O43 - CFD: 2015/08/08 01:22:03 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Dropbox O43 - CFD: 2015/08/08 23:47:05 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Démarrage O43 - CFD: 2015/03/03 17:24:56 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\FormatFactory O43 - CFD: 2015/08/03 21:42:32 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Internet Download Manager O43 - CFD: 2014/11/11 13:08:20 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Java Web Start O43 - CFD: 2014/11/13 09:56:13 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Micro Application O43 - CFD: 2015/01/02 00:47:14 - [] RDC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Outils d'administration O43 - CFD: 2014/11/11 13:45:45 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Oxford O43 - CFD: 2014/11/10 22:07:54 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Supercopier O43 - CFD: 2014/11/10 13:03:38 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\WinRAR O43 - CFD: 2014/11/11 14:23:14 - [] DC -- C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\المورد القريب ---\\ Derniers fichiers créés dans Windows Prefetcher (1) - 4s O45 - LFCP:[MD5.EBABD89C4FBDDFC6E043574A121E645C] 2015/08/22 16:56:17 AC -- C:\WINDOWS\Prefetch\AUTOKMS.EXE-01C3577A.pf =>HackTool.AutoKMS ---\\ Liste des pilotes du système (139) - 12s O58 - SDL:2015/06/02 16:25:37 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\05283884.sys [119512] O58 - SDL:2015/04/15 14:22:43 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\09323411.sys [119512] O58 - SDL:2015/02/28 03:46:47 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\17A6433A.sys [114904] O58 - SDL:2015/03/09 18:28:58 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\1CEB2216.sys [114904] O58 - SDL:2015/05/07 11:25:16 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\1E14632E.sys [119512] O58 - SDL:2015/03/26 22:26:23 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\20BA0B94.sys [114904] O58 - SDL:2015/05/01 08:02:26 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\244D7574.sys [119512] O58 - SDL:2015/03/26 22:30:26 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\254D0EB1.sys [114904] O58 - SDL:2015/04/20 21:23:52 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\28427D11.sys [119512] O58 - SDL:2015/08/13 23:08:38 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\2BF85710.sys [119512] O58 - SDL:2014/12/12 14:25:47 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\2F4D5DED.sys [114904] O58 - SDL:2015/08/16 09:09:46 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\342864E6.sys [98520] O58 - SDL:2015/03/06 22:23:55 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\45AC6F0B.sys [114904] O58 - SDL:2014/12/19 14:26:04 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\4F270112.sys [114904] O58 - SDL:2015/01/08 16:25:21 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\5BCD7707.sys [114904] O58 - SDL:2015/01/10 21:53:17 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\65E90E49.sys [114904] O58 - SDL:2015/02/02 13:59:27 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\736632B7.sys [114904] O58 - SDL:2015/05/16 09:48:16 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\742E5822.sys [119512] O58 - SDL:2014/12/28 11:12:03 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\74F72BC6.sys [114904] O58 - SDL:2015/03/04 22:24:39 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\76BF5357.sys [114904] O58 - SDL:2015/05/05 14:14:40 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\7F2731F9.sys [119512] O58 - SDL:2009/07/08 11:48:22 AC . (.Hewlett-Packard - HP Accelerometer.) -- C:\WINDOWS\System32\drivers\Accelerometer.sys [33848] O58 - SDL:2008/12/11 11:11:34 AC . (.Analog Devices, Inc. - High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\ADIHdAud.sys [338944] O58 - SDL:2007/07/13 09:26:12 AC . (.Andrea Electronics Corporation - Audio Noise Filtering Driver (32-bit).) -- C:\WINDOWS\System32\drivers\aeaudio.sys [94976] O58 - SDL:2010/01/26 11:38:06 AC . (.LSI Corporation - SoftModem Device Driver.) -- C:\WINDOWS\System32\drivers\AGRSM.sys [1163328] O58 - SDL:2008/04/13 11:36:40 C . (.Advanced Micro Devices, Inc. - AMD Win2000 AGP Filter.) -- C:\WINDOWS\System32\drivers\amdagp.sys [43008] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [56623] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [11615] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [12047] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [30671] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [63663] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [26367] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [21343] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [36463] O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [29455] O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [34735] O58 - SDL:2008/04/13 18:55:32 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [327168] O58 - SDL:2008/04/13 18:55:34 C . (.ATI Technologies Inc. - Pilote de miniport ATI RAGE 128.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [701440] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM BT829 MiniDriver (A).) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [57856] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized MVD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [13824] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Specialized PCD VBI Codec RT2.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [14336] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI Rage Theater Audio WDM Minidriver.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [52224] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Rage Theater MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [104960] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TV Sound MiniDriver.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [28672] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM Teletext Decoder.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [13824] O58 - SDL:2008/04/13 09:34:18 C . (.ATI Technologies Inc. - ATI WDM TVTuner MiniDriver.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [73216] O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM CrossBar MiniDriver.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [31744] O58 - SDL:2008/04/13 09:34:20 C . (.ATI Technologies Inc. - ATI WDM TVAUDIO_CrossBar MiniDriver RT2.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [63488] O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\WINDOWS\System32\drivers\btaudio.sys [539512] O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth Bus Enumerator.) -- C:\WINDOWS\System32\drivers\btkrnl.sys [879624] O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth BTPORT Driver for Windows 2000.) -- C:\WINDOWS\System32\drivers\btport.sys [37424] O58 - SDL:2008/04/03 16:40:44 AC . (.Broadcom Corporation. - Bluetooth LAN Access Server Driver.) -- C:\WINDOWS\System32\drivers\btwdndis.sys [156392] O58 - SDL:2015/05/06 09:10:50 AC . (.Broadcom Corporation. - Broadcom Bluetooth IT Manager Filter.) -- C:\WINDOWS\System32\drivers\btwsecfl.sys [92792] O58 - SDL:2015/05/06 09:10:50 AC . (.Broadcom Corporation. - Driver for Bluetooth USB Devices.) -- C:\WINDOWS\System32\drivers\btwusb.sys [52984] O58 - SDL:2004/08/05 12:00:00 AC . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\System32\drivers\cinemst2.sys [262528] O58 - SDL:2013/01/14 21:10:56 A . (.Kaspersky Lab UK Ltd - Cryptographic Module.) -- C:\WINDOWS\System32\drivers\cm_km_w.sys [189136] O58 - SDL:2009/03/19 10:40:10 AC . (.Hewlett-Packard Development Company, L.P. - HP Tablet PC Key Button HID Driver.) -- C:\WINDOWS\System32\drivers\CPQBttn.sys [9216] O58 - SDL:2004/08/05 12:00:00 AC . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\System32\drivers\cpqdap01.sys [11776] O58 - SDL:2008/04/13 19:05:08 AC . (.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) -- C:\WINDOWS\System32\drivers\dmboot.sys [800256] O58 - SDL:2008/04/13 19:05:14 AC . (.Microsoft Corp., Veritas Software - Pilote E/S du Gestionnaire de disques NT.) -- C:\WINDOWS\System32\drivers\dmio.sys [154496] O58 - SDL:2004/08/05 12:00:00 AC . (.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) -- C:\WINDOWS\System32\drivers\dmload.sys [5888] O58 - SDL:2008/04/13 09:36:06 AC . (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\hdaudbus.sys [144384] O58 - SDL:2005/01/07 17:07:16 C . (.Windows (R) Server 2003 DDK provider - High Definition Audio Function Driver v1.0a.) -- C:\WINDOWS\System32\drivers\Hdaudio.sys [145920] O58 - SDL:2009/07/08 11:48:38 AC . (.Hewlett-Packard - HP Disk Filter - SATA/RAID.) -- C:\WINDOWS\System32\drivers\hpdskflt.sys [25656] O58 - SDL:2007/06/18 16:12:04 AC . (.Hewlett-Packard Development Company, L.P. - HpqKbFiltr Keyboard Filter Driver.) -- C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [16768] O58 - SDL:2008/04/13 11:23:50 C . (.Conexant Systems, Inc. - HSF_HWB2 WDM driver.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [220032] O58 - SDL:2008/04/13 11:23:52 C . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [685056] O58 - SDL:2008/04/13 11:23:54 C . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [1041536] O58 - SDL:2015/05/01 13:26:04 AC . (.REALiX(tm) - HWiNFO x86 Kernel Driver.) -- C:\WINDOWS\System32\drivers\HWiNFO32.SYS [23840] O58 - SDL:2015/06/12 02:00:58 AC . (.Tonec Inc. - Internet Download Manager TDI Driver.) -- C:\WINDOWS\System32\drivers\idmtdi.sys [128528] O58 - SDL:2011/04/22 14:32:28 AC . (.Intel Corporation - Intel Graphics Miniport Driver.) -- C:\WINDOWS\System32\drivers\igxpmp32.sys [2016704] O58 - SDL:2014/03/31 11:47:08 A . (.Kaspersky Lab ZAO - Kaspersky Unified Driver.) -- C:\WINDOWS\System32\drivers\kl1.sys [143968] O58 - SDL:2014/07/02 16:10:30 A . (.Kaspersky Lab ZAO - Virtual Disk fre_wnet_x86.) -- C:\WINDOWS\System32\drivers\kldisk.sys [36928] O58 - SDL:2014/11/20 15:03:47 AC . (.Kaspersky Lab ZAO - Filter Core [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klflt.sys [116744] O58 - SDL:2014/08/12 18:32:54 A . (.Kaspersky Lab ZAO - KLHK [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klhk.sys [36024] O58 - SDL:2015/03/12 18:16:11 AC . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klif.sys [671928] O58 - SDL:2013/04/19 11:44:54 AC . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) -- C:\WINDOWS\System32\drivers\klim5.sys [36448] O58 - SDL:2014/03/28 17:51:02 AC . (.Kaspersky Lab ZAO - KLKBDFLT Keyboard Device Filter [fre_wnet_x.) -- C:\WINDOWS\System32\drivers\klkbdflt.sys [23648] O58 - SDL:2013/08/08 17:11:00 AC . (.Kaspersky Lab ZAO - KLMOUFLT Mouse Device Filter [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klmouflt.sys [24672] O58 - SDL:2013/04/12 15:34:48 A . (.Kaspersky Lab ZAO - KLPD [fre_wnet_x86].) -- C:\WINDOWS\System32\drivers\klpd.sys [14432] O58 - SDL:2014/08/21 15:39:16 AC . (.Kaspersky Lab ZAO - Kaspersky TDI Filter [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kltdf.sys [60552] O58 - SDL:2014/06/05 19:02:10 AC . (.Kaspersky Lab ZAO - Network filtering component [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kltdi.sys [44992] O58 - SDL:2014/07/09 16:23:54 AC . (.Kaspersky Lab ZAO - KNEPS Power [fre_wxp_x86].) -- C:\WINDOWS\System32\drivers\kneps.sys [146240] O58 - SDL:2009/09/23 02:31:44 AC . (.LG Electronics Inc - LG Wireless USB Multi function Driver.) -- C:\WINDOWS\System32\drivers\lgwusbbus.sys [13696] O58 - SDL:2009/09/23 02:31:44 AC . (.LG Electronics Inc - LG Wireless USB Modem Driver.) -- C:\WINDOWS\System32\drivers\lgwusbmodem.sys [25216] O58 - SDL:2009/09/23 02:31:46 AC . (.LG Electronics Inc - LG Wireless USB Serial1 Driver.) -- C:\WINDOWS\System32\drivers\lgwusbser01.sys [21248] O58 - SDL:2009/09/23 02:31:48 AC . (.LG Electronics Inc - LG Wireless USB Serial2 Driver.) -- C:\WINDOWS\System32\drivers\lgwusbser02.sys [21248] O58 - SDL:2015/06/18 08:41:36 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [23256] O58 - SDL:2015/06/18 08:41:46 AC . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\WINDOWS\System32\drivers\mbamchameleon.sys [121560] O58 - SDL:2015/08/22 16:57:50 AC . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [98520] O58 - SDL:2008/04/13 11:23:58 C . (.Conexant - Diagnostic Interface DRIVER.) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [11868] O58 - SDL:2008/04/13 11:23:42 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [126686] O58 - SDL:2008/04/13 11:23:40 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [1309184] O58 - SDL:2008/04/13 09:34:28 C . (.Matrox Graphics Inc. - Matrox Parhelia Miniport Driver.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [452736] O58 - SDL:2009/01/05 14:41:48 AC . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETw5x32.sys [3634688] O58 - SDL:2015/05/07 11:10:02 AC . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\WINDOWS\System32\drivers\NETwNx32.sys [7484656] O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\nikedrv.sys [12032] O58 - SDL:2008/04/13 11:23:42 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [180360] O58 - SDL:2008/04/13 09:34:32 C . (.NVIDIA Corporation - NVIDIA Compatible Windows 2000 Miniport Dri.) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [1897408] O58 - SDL:2005/12/12 16:27:00 AC . (.Hewlett-Packard Company - PS2 SYS.) -- C:\WINDOWS\System32\drivers\PS2.sys [19072] O58 - SDL:2004/08/05 12:00:00 AC . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Lib.) -- C:\WINDOWS\System32\drivers\ptilink.sys [17792] O58 - SDL:2008/04/13 11:23:44 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\recagent.sys [13776] O58 - SDL:2009/12/30 11:20:56 AC . (.VS Revo Group - Revo Uninstaller Minifilter.) -- C:\WINDOWS\System32\drivers\revoflt.sys [27064] O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\System32\drivers\rio8drv.sys [12032] O58 - SDL:2004/08/05 12:00:00 AC . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\System32\drivers\riodrv.sys [12032] O58 - SDL:2008/04/13 09:34:34 C . (.S3 Graphics, Inc. - S3 ProSavage(DDR) & Twister Miniport Driver.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [166912] O58 - SDL:2008/04/13 09:39:16 AC . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [20480] O58 - SDL:2008/03/28 09:14:02 AC . (.Sonic Focus, Inc - Sonic Focus DSP driver for ADI.) -- C:\WINDOWS\System32\drivers\sfaudio.sys [24064] O58 - SDL:2008/04/13 11:36:40 C . (.Silicon Integrated Systems Corporation - SiS NT AGP Filter.) -- C:\WINDOWS\System32\drivers\sisagp.sys [40960] O58 - SDL:2008/04/13 11:23:44 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnt7554.sys [129535] O58 - SDL:2008/04/13 11:23:46 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slntamr.sys [404990] O58 - SDL:2008/04/13 11:23:48 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slnthal.sys [95424] O58 - SDL:2008/04/13 11:23:48 C . (.Smart Link - .) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [13240] O58 - SDL:2014/06/04 15:17:28 AC . (.IObit - SmartDefrag Driver.) -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys [15808] O58 - SDL:2004/08/05 12:00:00 AC . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\System32\drivers\tsbvcap.sys [21376] O58 - SDL:2014/11/27 13:49:25 AC . (.Gili Soft INC. - USB Stick Encryption Driver.) -- C:\WINDOWS\System32\drivers\usedisk.sys [17408] O58 - SDL:2004/08/05 12:00:00 AC . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\System32\drivers\vdmindvd.sys [58112] O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [11807] O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [11295] O58 - SDL:2008/04/13 09:34:28 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [11871] O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [11935] O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv06nt.sys [22271] O58 - SDL:2008/04/13 09:34:30 C . (.Intel(R) Corporation - Digital Display Minidriver for Intel(R) Gra.) -- C:\WINDOWS\System32\drivers\watv10nt.sys [25471] O58 - SDL:2015/05/07 11:21:16 AC . (.©Copyright 2002-2009 Marvell®. All rights reserved. - .) -- C:\WINDOWS\System32\drivers\yk51x86.sys [298752] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ansi.sys [9037] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\country.sys [27097] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\himem.sys [4912] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\key01.sys [42809] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\keyboard.sys [42537] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos.sys [27916] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos404.sys [29146] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos411.sys [29370] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos412.sys [29274] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntdos804.sys [29146] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio.sys [34000] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio404.sys [34560] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio411.sys [35648] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio412.sys [35424] O58 - SDL:2004/08/05 12:00:00 AC . (...) -- C:\WINDOWS\System32\ntio804.sys [34560] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (9) - 8s O61 - LFC: 2015/08/21 22:40:01 AC . (..) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Programs\detekt.exe [27841093] O61 - LFC: 2015/08/16 00:01:31 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmupdt.exe [6659400] O61 - LFC: 2015/08/16 00:05:38 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmcchandler2.dll [332824] O61 - LFC: 2015/08/16 00:05:39 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmcchandler2_64.dll [460824] O61 - LFC: 2015/08/16 00:05:40 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmmzcc.dll [34216] O61 - LFC: 2015/08/16 00:05:40 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components2\idmmzcc64.dll [28512] O61 - LFC: 2015/08/16 00:05:36 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components12\idmmzcc.dll [26648] O61 - LFC: 2015/08/16 00:05:37 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components12\idmmzcc64.dll [31768] O61 - LFC: 2015/08/16 00:05:36 AC . (.Tonec Inc..) -- C:\Documents and Settings\Administrateur\Application Data\IDM\idmmzcc5\components\idmmzcc.dll [34216] ---\\ Associations Shell Spawning (10) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\shell32.dll O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\WINDOWS\system32\wscript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ---\\ Menu de démarrage Internet (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- %programfiles%\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Windows NT User Data Migration Tool.) -- C:\WINDOWS\system32\shmgrate.exe ---\\ Recherche d'infection sur les navigateurs (4) - 7s O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("browser.search.selectedEngine", "sweet-page"); =>PUP.Optional.SweetPage O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart O69 - SBI: prefs.js [Administrateur - kxbp6ydx.default] user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart O69 - SBI: SearchScopes [HKCU] {3D585554-3A2C-4BF8-9587-2D99C7A6EBAD} [DefaultScope] - (Google) - http://www.google.com/ ---\\ Enumère les fichiers Crack & Keygen (4) - 12s O82 - LFC: 2015/08/13 20:44:53 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen Only.rar [270816] =>.Crack,Keygen O82 - LFC: 2015/08/13 20:56:45 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen Only_2.rar [270816] =>.Crack,Keygen O82 - LFC: 2015/06/24 21:13:22 AC . (...) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\Malwarebytes Anti-Malware Premium 2.1.8.1057 Keygen\Keygen\Keygen.exe [83456] =>.Crack,Keygen O82 - LFC: 2014/10/02 05:03:56 AC . (.© 2014. No rights reserved..) -- C:\Documents and Settings\Administrateur\Mes documents\Downloads\Compressed\activ revo pro 3.1.1 by algerois2010\Revo.Uninstaller.Pro.3.1.4.pefelie.net\keygen\RUP_3.1.0_Registrator.exe [19004] =>.Crack,Keygen ---\\ Enumère les services démarrés par Svchost (38) - 1s O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\WINDOWS\system32\appmgmts.dll [176640] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\system32\audiosrv.dll [42496] O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\system32\browser.dll [77824] O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\system32\cryptsvc.dll [62464] O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\system32\dmserver.dll [24576] O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\system32\dhcpcsvc.dll [127488] O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\system32\ersvc.dll [23040] O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - .) -- C:\WINDOWS\system32\es.dll [246272] O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\system32\srvsvc.dll [96768] O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\system32\wkssvc.dll [132096] O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\system32\msgsvc.dll [33792] O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\system32\netman.dll [198144] O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Micro.) -- C:\WINDOWS\system32\mswsock.dll [247808] O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\system32\rasauto.dll [88576] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\system32\rasmans.dll [186368] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\system32\mprdim.dll [53248] O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [18944] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à.) -- C:\WINDOWS\system32\ipnathlp.dll [332800] O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\WINDOWS\system32\tapisrv.dll [249856] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\system32\wzcsvc.dll [483840] O83 - Search Svchost Services: Wmi (Wmi) . (.Microsoft Corporation - API avancées Windows 32.) -- C:\WINDOWS\system32\advapi32.dll [685568] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\wmisvc.dll [145408] O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\system32\xmlprov.dll [129024] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\system32\qmgr.dll [409088] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\system32\shsvcs.dll [135680] O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll [38400] O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\system32\qagentrt.dll [293376] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [61440] ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (16) - 18s SS - Demand [2015/08/13 21:06:22] [ 269000] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe SR - Auto [2015/08/05 09:57:56] [ 821024] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files\IObit\Advanced SystemCare 8\ASCService.exe SS - Demand [2008/03/18 12:27:12] [ 13312] Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems.) - C:\WINDOWS\system32\agrsmsvc.exe SR - Auto [2014/08/30 17:48:46] [ 234520] Kaspersky Anti-Virus Service 15.0.1 (AVP15.0.1) . (.Kaspersky Lab ZAO.) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe SS - Demand [2008/03/31 14:32:40] [ 264800] Bluetooth Service (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe SR - Demand [2009/05/05 09:11:50] [ 228408] Com4QLBEx (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe SR - Demand [2009/04/30 15:58:44] [ 229944] hpqwmiex (hpqwmiex) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe SS - Demand [2005/04/04 00:41:10] [ 69632] InstallDriver Table Manager (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe SR - Auto [2015/05/12 11:27:28] [ 878880] IMF Service (IMFservice) . (.IObit.) - C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe SS - Auto [2015/08/02 22:05:08] [ 2909472] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe SR - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe SS - Demand [2015/08/20 12:38:16] [ 149160] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SS - Demand [2013/10/07 09:42:16] [ 197128] NitroPDFDriverCreatorReadSpool9 (NitroDriverReadSpool9) . (.Nitro PDF Software.) - C:\Program Files\Nitro\Pro 9\NitroPDFDriverService9.exe SR - Auto [2013/10/07 09:42:26] [ 69640] Nalpeiron Licensing Service (nlsX86cc) . (.Nalpeiron Ltd..) - C:\WINDOWS\system32\NLSSRV32.EXE SR - Auto [2013/08/14 15:19:22] [ 39056] RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe ---\\ Scan Additionnel (11) - 0s C:\WINDOWS\Tasks\AutoKMS.job =>HackTool.AutoKMS C:\WINDOWS\Tasks\AutoKMSDaily.job =>HackTool.AutoKMS HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverFinder =>PUP.Optional.DriverFinder HKLM\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder HKCU\SOFTWARE\DriverFinder =>PUP.Optional.DriverFinder C:\Program Files\Driver-Soft =>Legitimate.DriverSoft C:\Program Files\DriverFinder =>PUP.Optional.DriverFinder C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverFinder =>PUP.Optional.DriverFinder C:\Documents and Settings\All Users\Application Data\Microsoft Toolkit =>HackTool.AutoKMS C:\Documents and Settings\Administrateur\Application Data\DriverFinder =>PUP.Optional.DriverFinder C:\WINDOWS\Prefetch\AUTOKMS.EXE-01C3577A.pf =>HackTool.AutoKMS ---\\ Récapitulatif des éléments trouvées sur votre station (5) - 0s http://www.nicolascoolman.fr/blog =>PUP.Optional.DriverFinder http://www.nicolascoolman.fr/trojan-autokms/ =>HackTool.AutoKMS http://www.nicolascoolman.fr/blog =>Legitimate.DriverSoft http://www.nicolascoolman.fr/pup-sweetpage/ =>PUP.Optional.SweetPage http://www.nicolascoolman.fr/pup-quickstart/ =>PUP.Optional.QuickStart ~ End of the scan, 13091 items in 100 seconds (806)(4)()