~ Rapport de ZHPDiag v2014.4.28.48 - Nicolas Coolman (28/04/2014) ~ Lancé par Joël (10/05/2016 07:48:16) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.212.10586.0 (Defaut) MFIE: Mozilla Firefox 35.0 GCIE: Google Chrome v50.0.2661.94 ---\\ Informations sur les produits Windows ~ Langage: Français Windows 10 Home, 64-bit (Build 10586) Windows Server License Manager Script : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 8HVX7 Windows License : OK ~ Windows Remaining Initializations Number : 1001 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Malwarebytes Anti-Malware version 2.2.0.1024 ---\\ Logiciels d'optimisation du système CCleaner v5.13 ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Java 7 Update 80 ---\\ Informations sur le système ~ Processor: AMD64 Family 15 Model 67 Stepping 3, AuthenticAMD ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3007 MB (41% free) System Restore: Désactivé (Disabled) System drive C: has 21 GB (27%) free of 76 GB ---\\ Mode de connexion au système ~ Computer Name: JOËL-PC ~ User Name: Joël ~ All Users Names: Joël, HomeGroupUser$, DefaultAccount, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Joël\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Joël\AppData\Roaming\ ~ %Desktop% : C:\Users\Joël\Desktop\ ~ %Favorites% : C:\Users\Joël\Favorites\ ~ %LocalAppData% : C:\Users\Joël\AppData\Local\ ~ %StartMenu% : C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques A: Floppy drive, Flash card reader, USB Key (Not Inserted) C: Hard drive, Flash drive, Thumb drive (Free 21 Go of 76 Go) D: Hard drive, Flash drive, Thumb drive (Free 122 Go of 153 Go) E: CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ~ Security Center: 40 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.95D730526EF81792CD6848D8D10FAA1C] - (.Microsoft Corporation - Explorateur Windows.) (.13/02/2016 - 13:52:10.) -- C:\Windows\Explorer.exe [4502352] [MD5.CAD491DD9EC00BB841EA407D9C498C4A] - (.Microsoft Corporation - Application de démarrage de Windows.) (.30/10/2015 - 08:17:53.) -- C:\Windows\System32\Wininit.exe [290856] [MD5.AE6A68A065D4C26AF4BEFAA53623B266] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.29/03/2016 - 07:26:14.) -- C:\Windows\System32\wininet.dll [2755584] [MD5.7B24B823404D53DA4748F21AD2BF04C9] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.13/02/2016 - 13:52:08.) -- C:\Windows\System32\Winlogon.exe [584704] [MD5.9EEAA1B69DC3FD620AE576CC8F4147DC] - (.Microsoft Corporation - Bibliothèque de licences.) (.30/10/2015 - 08:17:52.) -- C:\Windows\System32\sppcomapi.dll [430592] [MD5.70148EFA9A562E7185B75BBE7D376BF7] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.13/02/2016 - 13:52:13.) -- C:\Windows\system32\Drivers\AFD.sys [578912] [MD5.492B99D2E3D5D7BFD5F0AE1BE7BD37DD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.30/10/2015 - 08:17:23.) -- C:\Windows\system32\Drivers\atapi.sys [28512] [MD5.7F9C7226D743B232907ED2537B8A574F] - (.Microsoft Corporation - CD-ROM File System Driver.) (.30/10/2015 - 08:18:09.) -- C:\Windows\system32\Drivers\Cdfs.sys [92672] [MD5.82D97776BF982AA143BDC7DFB5054EA8] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.30/10/2015 - 08:17:22.) -- C:\Windows\system32\Drivers\Cdrom.sys [173568] [MD5.935823F79CBEDB91637B63D37E3A5A36] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.29/03/2016 - 08:03:23.) -- C:\Windows\system32\Drivers\DfsC.sys [148480] [MD5.84BC034B6BB763733C1949B7B9BAF976] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.30/10/2015 - 08:17:18.) -- C:\Windows\system32\Drivers\HDAudBus.sys [79872] [MD5.53FDD9E69189E546DE4740F8C4D8AB2F] - (.Microsoft Corporation - Pilote de port i8042.) (.30/10/2015 - 08:17:23.) -- C:\Windows\system32\Drivers\i8042prt.sys [114688] [MD5.9E5E8F2A1996F23B7E9687846AA81B01] - (.Microsoft Corporation - IP Network Address Translator.) (.30/10/2015 - 08:17:43.) -- C:\Windows\system32\Drivers\IpNat.sys [143360] [MD5.0B3B0C1D86050355676640488FA897D3] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.23/02/2016 - 10:40:28.) -- C:\Windows\system32\Drivers\MRxSmb.sys [430944] [MD5.F51C02D992A8D6BC5EC4D990F227D4C7] - (.Microsoft Corporation - MBT Transport driver.) (.30/10/2015 - 08:18:08.) -- C:\Windows\system32\Drivers\netBT.sys [279552] [MD5.19BD8A88AAC580592668B070AC0727D9] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.29/03/2016 - 11:18:46.) -- C:\Windows\system32\Drivers\ntfs.sys [2152280] [MD5.7D0FC96264C0F8F2C1321E33E8EB646C] - (.Microsoft Corporation - Pilote de port parallèle.) (.30/10/2015 - 08:17:23.) -- C:\Windows\system32\Drivers\Parport.sys [96768] [MD5.E3C82823B22463BC38AA4F8ADA852624] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.23/02/2016 - 10:01:19.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [104960] [MD5.1DC2CC74B51E4DC4CD5A20C1021E4010] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.13/02/2016 - 14:00:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [173056] [MD5.91D3F2A6253EF83EFBD7903028F58C4D] - (.Microsoft Corporation - TDI Translation Driver.) (.13/02/2016 - 13:52:13.) -- C:\Windows\system32\Drivers\tdx.sys [118624] [MD5.E1F91A727A04C9F8199D04FF3BBBF63C] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.30/10/2015 - 08:17:22.) -- C:\Windows\system32\Drivers\volsnap.sys [414560] ~ Generic Processes: Scanned in 00mn 02s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/8453 ~ Mes Favoris (My Favorites) : 1/25 ~ Mes Documents (My Documents) : 2/17157 ~ Mon Bureau (My Desktop) : 1/207 ~ Menu demarrer (Programs) : 1/60 ~ Hidden Files: Scanned in 00mn 39s ---\\ Processus lancés [MD5.EE73B56ED71EB6383F25FA5468923BB2] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144] [PID.7548] [MD5.C3EF139378171D8BB852BEB6E759B7F1] - (...) -- C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe [144384] [PID.4060] [MD5.F9387D080BF8566354CDB0445AB8F87B] - (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\OneDrive.exe [554176] [PID.1560] [MD5.C5B5552E5C1A0079C1F7313E7CC7707E] - (.Google - Google Calendar Sync.) -- C:\Program Files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [542264] [PID.5872] [MD5.E9A61CA7929F5945CF7FCC240A8EA997] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\Joël\AppData\Roaming\Dropbox\bin\Dropbox.exe [23248560] [PID.5700] [MD5.B667FA2111F989360E54BBF2C4D35740] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [7391632] [PID.7792] [MD5.17B0ED32D0FD1DAF7839DFD06E80F956] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [881304] [PID.4644] [MD5.1780A53FCE5975B94604775CD9460F22] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7865344] [PID.5924] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Joël\AppData\Local\Google\Chrome\User Data\Default\Preferences ---\\ Liste des dossiers d'extension Google Chrome ~ Google Lines Browser: 0 Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.80.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.80.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.80.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Joël\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Joël\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll P2 - FPN: [HKCU] [navionics.com/NavConnect] - (.Navionics - Navionics Chart Installer Plugin.) -- C:\Program Files (x86)\Chart Installer\npNavConnect.dll ~ Firefox Browser: 5 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.10586.17 (th2_release.151121-2308)) -- C:\Windows\SysWOW64\ieframe.dll ~ IE Browser: 16 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 0 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline ~ BHO: 6 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline ~ Toolbar: Scanned in 00mn 00s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Joël\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O4 - HKCU\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Joël\AppData\Local\Dropbox\Update\DropboxUpdate.exe O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\OneDrive.exe O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe O4 - HKUS\S-1-5-21-3569294176-837943234-1378869580-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Joël\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc O4 - HKUS\S-1-5-21-3569294176-837943234-1378869580-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd O4 - HKUS\S-1-5-21-3569294176-837943234-1378869580-1000\..\Run: [Dropbox Update] . (.Dropbox, Inc. - Dropbox Update.) -- C:\Users\Joël\AppData\Local\Dropbox\Update\DropboxUpdate.exe O4 - HKUS\S-1-5-21-3569294176-837943234-1378869580-1000\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\OneDrive.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll ~ Winsock: 6 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{a6bf3ca1-7aae-43e3-a0e6-6bec3a632a9a}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{a6bf3ca1-7aae-43e3-a0e6-6bec3a632a9a}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll O18 - Filter: text/xml [64Bits] - {807553E5-5146-11D5-A672-00B0D022E945} . (...) -- ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SupTab\SEARCH~2.dll (.not file.) =>PUP.SupTab ~ AppInit DLL: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 340.5.) - C:\Windows\system32\nvvsvc.exe O23 - Service: PDF Architect Helper Service (PDF Architect Helper Service) . (.pdfforge GmbH - PDF Architect Helper Service.) - C:\Program Files (x86)\PDF Architect\HelperService.exe O23 - Service: PDF Architect Service (PDF Architect Service) . (.pdfforge GmbH - PDF Architect Conversion Service.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TeamViewer 10 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 10.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ~ Services: 11 Scanned in 00mn 11s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.4EAF6F8F0B3BE33A0E3877EB7FFD48D4] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656] [MD5.1282F8C897DBF180BCF3F6F6968DE2C3] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1517200] [MD5.8025F05E5A51FD499584AFD7A688423C] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6602152] [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core] (.Dropbox, Inc..) -- C:\Users\Joël\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512] [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA] (.Dropbox, Inc..) -- C:\Users\Joël\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core] (.Google Inc..) -- C:\Users\Joël\AppData\Local\Google\Update\GoogleUpdate.exe [144200] [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA] (.Google Inc..) -- C:\Users\Joël\AppData\Local\Google\Update\GoogleUpdate.exe [144200] [MD5.00000000000000000000000000000000] [APT] [Launch 16498] (...) -- C:\Program Files (x86)\PC Sync\Voxsync.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [Launch 29216] (...) -- C:\Program Files (x86)\PC Sync\Voxsync.exe (.not file.) [0] [MD5.2E696C90B2D1DD842F59E38FD212D225] [APT] [SafeZone scheduled Autoupdate 1459239818] (.Avast Software.) -- C:\Program Files\AVAST Software\SZBrowser\launcher.exe [735736] [MD5.00000000000000000000000000000000] [APT] [{1E28DA69-ECCC-491D-A369-B4FB9C491BAC}] (...) -- C:\Users\Joël\AppData\Roaming\sweet-page\UninstallManager.exe (.not file.) [0] =>PUP.SweetPage [MD5.CDCB5EECB592D10234333E3523F86F93] [APT] [{3A3D8645-B03D-49D7-8D67-A091DAF00DCA}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\Setup.exe [603672] [MD5.EB25F39D1A5922FBE23206DDDC260ED3] [APT] [{6B23428B-6C0A-42F5-AF25-9F5F525F3656}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\Setup\Setup.exe [620056] [MD5.00000000000000000000000000000000] [APT] [{A2545AA1-DEE3-4665-9DD7-AF6D6FFB5D97}] (...) -- E:\setup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{A7854530-DD97-4B78-B230-92B30DFD68E3}] (...) -- C:\Program Files (x86)\Labtec\WebCam\WebCam10.exe (.not file.) [0] [MD5.EB25F39D1A5922FBE23206DDDC260ED3] [APT] [{AFCE02F3-6D7D-4BFE-8FE4-62AB4587397F}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\Setup\Setup.exe [620056] [MD5.CDCB5EECB592D10234333E3523F86F93] [APT] [{B0C90360-9C8D-445B-9282-84BBDF9077C6}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\Setup.exe [603672] [MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [{B53632ED-F05D-40B7-85E4-36F8A2B73AC8}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\WebCam\x64\WebCam.msi" [41056256] [MD5.00000000000000000000000000000000] [APT] [{CAAC0F14-7A77-4E37-AAD8-8B6DAC1DA9A4}] (...) -- E:\setup.exe (.not file.) [0] [MD5.D41D8CD98F00B204E9800998ECF8427E] [APT] [{DB874321-403F-4C14-AB0E-941BD773FE0D}] (...) -- C:\Program Files (x86)\Labtec\WebCamWebInstall\WebCam\x64\WebCam.msi" [41056256] O39 - APT: DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core.job [1140] O39 - APT: DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core [1140] O39 - APT: DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA - (.Dropbox, Inc..) -- C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA.job [1192] O39 - APT: DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA - (.Dropbox, Inc..) -- C:\Windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA [1192] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070] O39 - APT: GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core.job [1022] O39 - APT: GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000Core [1022] O39 - APT: GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA.job [1074] O39 - APT: GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3569294176-837943234-1378869580-1000UA [1074] ~ Scheduled Task: 31 Scanned in 00mn 08s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll ~ Active Setup: 9 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (aswKbd) . (.AVAST Software - avast! Keyboard Filter Driver.) - C:\Windows\system32\drivers\aswKbd.sys O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\filecrypt.sys (FileCrypt) . (.Microsoft Corporation - Windows sandboxing and encryption filter.) - C:\Windows\System32\drivers\filecrypt.sys O41 - Driver: C:\Windows\System32\drivers\gpuenergydrv.sys (GpuEnergyDrv) . (.Microsoft Corporation - GPU Energy Kernel Driver.) - C:\Windows\System32\drivers\gpuenergydrv.sys O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: C:\Windows\system32\drivers\netbios.sys (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\drivers\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\drivers\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\drivers\vwififlt.sys ~ Drivers: 44 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824166751} O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: Canon LBP2900 - (...) [HKLM][64Bits] -- Canon LBP2900 O42 - Logiciel: Chart Installer - (.Navionics.) [HKLM][64Bits] -- Chart Installer 1.0.0.069 O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU][64Bits] -- Dropbox O42 - Logiciel: FaxManager - (...) [HKLM][64Bits] -- FaxManager O42 - Logiciel: Glary Registry Repair 3.2.0.828 - (.GlarySoft.com.) [HKLM][64Bits] -- Glary Registry Repair_is1 O42 - Logiciel: Google Calendar Sync - (...) [HKLM][64Bits] -- Google Calendar Sync O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {D7269C20-B3CE-4CD0-8E88-3D307D3BD41A} O42 - Logiciel: Google Photos Backup - (.Google, Inc..) [HKCU][64Bits] -- Google Photos Backup O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Java 7 Update 80 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417080FF} O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.13291. - (.Microsoft Corporation.) [HKLM][64Bits] -- {25E80DAA-FD87-DCE5-202C-CC02F6673002} O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM][64Bits] -- Money2005b O42 - Logiciel: Mozilla Firefox 35.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 35.0 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel O42 - Logiciel: NVIDIA GeForce Experience 1.8.2.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience O42 - Logiciel: NVIDIA Logiciel système PhysX 9.13.1220 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {80407BA7-7763-4395-AB98-5233F1B34E65} O42 - Logiciel: NVIDIA Pilote 3D Vision 340.52 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.30.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver O42 - Logiciel: NVIDIA Pilote du contrôleur 3D Vision 340.50 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB O42 - Logiciel: NVIDIA Pilote graphique 340.52 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo O42 - Logiciel: NVIDIA Virtual Audio 1.2.20 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver O42 - Logiciel: NavDesk - (.Navman Technologies NZ Ltd.) [HKLM][64Bits] -- {69EEF1DC-DE38-46DB-AA2A-5D1D8D81E850} O42 - Logiciel: PDF Architect - (.pdfforge GmbH.) [HKLM][64Bits] -- {064A929A-4DE8-40CF-A901-BD40C14E4D25} O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D} O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3 O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: RedMon - Redirection Port Monitor - (...) [HKLM][64Bits] -- Redirection Port Monitor O42 - Logiciel: SafeZone Stable 1.48.2066.101 - (.Avast Software.) [HKLM][64Bits] -- SafeZone 1.48.2066.101 O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701} O42 - Logiciel: Skype™ 7.16 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {FC965A47-4839-40CA-B618-18F486F042C6} O42 - Logiciel: TeamViewer 10 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer O42 - Logiciel: Tixeo Communication Client - (.Tixeo.) [HKCU][64Bits] -- {9B9B063D-5A9B-4710-BCD6-373C32478F14}_is1 O42 - Logiciel: Update for Codec Pack - (.Update for Codec Pack.) [HKCU][64Bits] -- Digital Sites O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F} O42 - Logiciel: VintaSoftTwain ActiveX Control 5.2 - (.VintaSoft Ltd..) [HKLM][64Bits] -- VintaSoftTwain ActiveX Control 5.2 O42 - Logiciel: XML Notepad 2007 - (.Microsoft Corporation.) [HKLM][64Bits] -- {FC7BACF0-1FFA-4605-B3B4-A66AB382752D} O42 - Logiciel: Xvid Video Codec - (.Xvid Team.) [HKLM][64Bits] -- Xvid Video Codec 1.3.2 ~ Logic: 53 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\ABBYY] [HKCU\Software\AVAST Software] [HKCU\Software\Adobe] [HKCU\Software\Apowersoft] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Inc.] [HKCU\Software\Bitdefender] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Canon] [HKCU\Software\Carambis] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\DSP-worx] [HKCU\Software\DivX] [HKCU\Software\DropboxUpdate] [HKCU\Software\EBP] [HKCU\Software\GNU] [HKCU\Software\GPL Ghostscript] [HKCU\Software\GlarySoft] [HKCU\Software\Google] [HKCU\Software\ICS-informatique] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\LAV] [HKCU\Software\Labtec] [HKCU\Software\Logitech] [HKCU\Software\Micromega Software System] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Navman] [HKCU\Software\Netscape] [HKCU\Software\ODBC] [HKCU\Software\OVH] [HKCU\Software\PC SOFT] [HKCU\Software\PDF Architect] [HKCU\Software\PDFCreator.net] [HKCU\Software\PDFCreator] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\RegisteredApplications] [HKCU\Software\Skype] [HKCU\Software\Soda PDF 5] [HKCU\Software\TeamViewer] [HKCU\Software\TeleCharger] [HKCU\Software\Tixeo Soft] [HKCU\Software\Toggle] [HKCU\Software\Trolltech] [HKCU\Software\Trusteer] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Wondershare] [HKCU\Software\Wow6432Node] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\ej-technologies] [HKCU\Software\globalUpdate] [HKCU\Software\reimageexpress] =>Rogue.ReimageRepair [HKLM\Software\AGEIA Technologies] [HKLM\Software\ATI Technologies] [HKLM\Software\AVAST Software] [HKLM\Software\CANON] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DTS] [HKLM\Software\DivX] [HKLM\Software\Dolby] [HKLM\Software\EBP] [HKLM\Software\HaaliMkx] [HKLM\Software\HitmanPro] [HKLM\Software\Humyo] [HKLM\Software\IM Providers] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\Khronos] [HKLM\Software\Knowles] [HKLM\Software\Logitech] [HKLM\Software\Macromedia] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\ODBC] [HKLM\Software\OEM] [HKLM\Software\PDFCreator.net] [HKLM\Software\Partner] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\SonicFocus] [HKLM\Software\Sonic] [HKLM\Software\WOW6432Node] [HKLM\Software\Waves Audio] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\AVAST Software] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\AdwCleaner] [HKLM\Software\Wow6432Node\America Online] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\Brother] [HKLM\Software\Wow6432Node\Canneverbe Limited] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\DivXNetworks] [HKLM\Software\Wow6432Node\FaxManager] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\Khronos] [HKLM\Software\Wow6432Node\Licenses] [HKLM\Software\Wow6432Node\Logitech] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\McAfee.com] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\NVIDIA Corporation] [HKLM\Software\Wow6432Node\Navionics] [HKLM\Software\Wow6432Node\Navman] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\PDF Architect] [HKLM\Software\Wow6432Node\Pervasive Software] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\Trusteer] [HKLM\Software\Wow6432Node\TwonkyMedia] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\Wondershare] [HKLM\Software\Wow6432Node\Wow6432Node] [HKLM\Software\Wow6432Node\Xvid Team] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node\wEcoFax] [HKLM\Software\ZSMC] ~ Key Software: 242 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 22/01/2015 - 21:08:56 - [] ----D C:\Program Files (x86)\Accelerer PC =>Rogue.PCSpeedUp O43 - CFD: 16/07/2015 - 12:11:13 - [] ----D C:\Program Files (x86)\Adobe O43 - CFD: 09/12/2015 - 21:46:04 - [] ----D C:\Program Files (x86)\Apowersoft O43 - CFD: 02/05/2014 - 14:03:39 - [] ----D C:\Program Files (x86)\Canon O43 - CFD: 28/01/2015 - 16:31:41 - [] ----D C:\Program Files (x86)\Chart Installer O43 - CFD: 07/05/2016 - 14:46:17 - [] ----D C:\Program Files (x86)\Common Files O43 - CFD: 09/12/2014 - 20:02:31 - [] ----D C:\Program Files (x86)\CyberMUT O43 - CFD: 02/05/2014 - 14:05:57 - [] ----D C:\Program Files (x86)\DivX O43 - CFD: 08/04/2014 - 12:19:28 - [] ----D C:\Program Files (x86)\DLLSuite O43 - CFD: 27/10/2014 - 17:30:23 - [] ----D C:\Program Files (x86)\FaxManager O43 - CFD: 19/12/2013 - 19:37:01 - [] ----D C:\Program Files (x86)\Glary Registry Repair O43 - CFD: 24/01/2015 - 21:58:08 - [] ----D C:\Program Files (x86)\Google O43 - CFD: 10/12/2014 - 08:36:19 - [] ----D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 09/05/2016 - 18:20:13 - [] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 21/05/2015 - 18:41:20 - [] ----D C:\Program Files (x86)\Labtec O43 - CFD: 05/05/2016 - 13:57:26 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 18/11/2014 - 12:23:51 - [] ----D C:\Program Files (x86)\Microsoft Money 2005 O43 - CFD: 19/04/2014 - 11:30:17 - [] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 31/03/2014 - 07:40:20 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 22/01/2015 - 21:08:56 - [] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 07/05/2016 - 14:46:18 - [] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 24/01/2015 - 21:49:33 - [] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 24/01/2015 - 21:49:32 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 07/05/2016 - 15:18:16 - [] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 19/04/2014 - 11:20:53 - [] ----D C:\Program Files (x86)\MSECache O43 - CFD: 03/05/2016 - 21:51:45 - [] ----D C:\Program Files (x86)\MSI O43 - CFD: 17/11/2014 - 07:51:14 - [] ----D C:\Program Files (x86)\Navman O43 - CFD: 05/05/2016 - 13:57:26 - [] ----D C:\Program Files (x86)\NVIDIA Corporation O43 - CFD: 04/04/2014 - 08:23:39 - [] ----D C:\Program Files (x86)\PDF Architect O43 - CFD: 30/11/2015 - 19:28:14 - [0] ----D C:\Program Files (x86)\Probit Software O43 - CFD: 20/12/2013 - 12:48:14 - [] ----D C:\Program Files (x86)\Realtek O43 - CFD: 07/05/2016 - 15:18:16 - [] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 08/05/2016 - 21:41:16 - [] R---D C:\Program Files (x86)\Skype O43 - CFD: 02/09/2015 - 18:35:35 - [] ----D C:\Program Files (x86)\TeamViewer O43 - CFD: 20/12/2013 - 12:50:57 - [0] ----D C:\Program Files (x86)\Temp O43 - CFD: 14/07/2009 - 06:57:06 - [0] ----D C:\Program Files (x86)\Uninstall Information O43 - CFD: 23/03/2014 - 21:16:00 - [] ----D C:\Program Files (x86)\VintaSoft O43 - CFD: 13/02/2016 - 14:49:21 - [] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 07/05/2016 - 14:46:19 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation O43 - CFD: 13/02/2016 - 14:49:21 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation O43 - CFD: 09/05/2016 - 18:20:15 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 30/10/2015 - 09:24:24 - [] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 13/02/2016 - 14:49:21 - [] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 09/05/2016 - 18:20:15 - [] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 07/05/2016 - 14:46:19 - [] -SH-D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 30/10/2015 - 09:24:24 - [] -S--D C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 09/12/2015 - 22:53:31 - [] ----D C:\Program Files (x86)\XML Notepad 2007 O43 - CFD: 02/05/2014 - 12:02:41 - [] ----D C:\Program Files (x86)\Xvid O43 - CFD: 01/05/2014 - 09:47:22 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman O43 - CFD: 16/07/2015 - 12:11:14 - [] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 05/12/2015 - 10:56:00 - [] ----D C:\Program Files (x86)\Common Files\AV O43 - CFD: 02/05/2014 - 12:43:54 - [] ----D C:\Program Files (x86)\Common Files\Canon_Inc_IC O43 - CFD: 31/03/2014 - 07:40:35 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 02/05/2014 - 14:05:51 - [] ----D C:\Program Files (x86)\Common Files\DivX Shared O43 - CFD: 09/12/2014 - 20:02:33 - [] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 21/05/2015 - 18:41:30 - [] ----D C:\Program Files (x86)\Common Files\LogiShrd O43 - CFD: 07/05/2016 - 14:46:17 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 17/06/2014 - 16:24:18 - [] ----D C:\Program Files (x86)\Common Files\PC SOFT O43 - CFD: 01/05/2014 - 11:12:10 - [] ----D C:\Program Files (x86)\Common Files\Pervasive Software Shared O43 - CFD: 30/10/2015 - 09:24:28 - [] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 12/12/2015 - 13:34:57 - [] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 21/07/2014 - 10:33:20 - [] ----D C:\Program Files (x86)\Common Files\Soda PDF 5 O43 - CFD: 07/05/2016 - 14:46:17 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 13/02/2014 - 14:43:46 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 07/05/2016 - 14:46:17 - [] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 21/07/2014 - 12:05:29 - [] ----D C:\Program Files (x86)\Common Files\Wondershare O43 - CFD: 21/07/2014 - 10:38:32 - [] ----D C:\ProgramData\ABBYY O43 - CFD: 16/07/2015 - 12:10:41 - [] ----D C:\ProgramData\Adobe O43 - CFD: 06/01/2014 - 13:53:01 - [] ----D C:\ProgramData\Apple O43 - CFD: 08/05/2016 - 15:06:37 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 24/03/2016 - 13:49:15 - [] ----D C:\ProgramData\AVAST Software O43 - CFD: 23/05/2014 - 09:58:22 - [] ----D C:\ProgramData\Brother O43 - CFD: 19/12/2013 - 19:11:05 - [] -SH-D C:\ProgramData\Bureau O43 - CFD: 19/12/2013 - 19:38:12 - [] ----D C:\ProgramData\Canneverbe Limited O43 - CFD: 02/05/2014 - 12:42:59 - [] ----D C:\ProgramData\Canon_Inc_IC O43 - CFD: 07/04/2014 - 17:54:33 - [] ----D C:\ProgramData\CDB O43 - CFD: 30/10/2015 - 09:24:24 - [0] ----D C:\ProgramData\Comms O43 - CFD: 02/05/2014 - 14:05:57 - [] ----D C:\ProgramData\DivX O43 - CFD: 08/05/2016 - 15:06:37 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 16/06/2015 - 09:27:47 - [] ----D C:\ProgramData\Dropbox O43 - CFD: 03/04/2014 - 11:22:40 - [] ----D C:\ProgramData\EBP O43 - CFD: 19/12/2013 - 19:11:05 - [] -SH-D C:\ProgramData\Favoris O43 - CFD: 17/06/2014 - 16:37:39 - [] ----D C:\ProgramData\GESTAN O43 - CFD: 24/01/2015 - 20:11:20 - [] ----D C:\ProgramData\HitmanPro O43 - CFD: 24/11/2014 - 10:32:47 - [0] ----D C:\ProgramData\Informer Technologies, Inc O43 - CFD: 13/12/2014 - 20:23:12 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 04/04/2016 - 14:41:47 - [] ----D C:\ProgramData\McAfee O43 - CFD: 19/12/2013 - 19:11:05 - [] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 08/05/2016 - 21:48:52 - [] -S--D C:\ProgramData\Microsoft O43 - CFD: 13/02/2016 - 15:18:56 - [] ----D C:\ProgramData\Microsoft OneDrive O43 - CFD: 19/12/2013 - 19:11:05 - [] -SH-D C:\ProgramData\Modèles O43 - CFD: 03/01/2014 - 13:22:08 - [] ----D C:\ProgramData\Mozilla O43 - CFD: 13/02/2014 - 14:44:52 - [] ----D C:\ProgramData\Norton O43 - CFD: 20/12/2013 - 12:56:46 - [] ----D C:\ProgramData\NortonInstaller O43 - CFD: 09/05/2016 - 19:15:24 - [] ----D C:\ProgramData\NVIDIA O43 - CFD: 03/03/2014 - 20:27:02 - [] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 17/06/2014 - 10:51:35 - [0] ----D C:\ProgramData\Oracle O43 - CFD: 13/02/2016 - 15:01:39 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 22/01/2015 - 21:09:03 - [] ----D C:\ProgramData\Reimage Express =>Rogue.ReimageRepair O43 - CFD: 12/12/2015 - 13:35:11 - [] ----D C:\ProgramData\Skype O43 - CFD: 30/10/2015 - 09:24:24 - [0] ----D C:\ProgramData\SoftwareDistribution =>Adware.Boxore O43 - CFD: 28/03/2014 - 19:56:39 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 20/12/2013 - 13:07:06 - [] ----D C:\ProgramData\Trend Micro O43 - CFD: 30/07/2014 - 17:09:18 - [] ----D C:\ProgramData\Trusteer O43 - CFD: 13/02/2016 - 15:15:18 - [] ----D C:\ProgramData\USOPrivate O43 - CFD: 13/02/2016 - 15:15:18 - [] ----D C:\ProgramData\USOShared O43 - CFD: 04/12/2014 - 07:40:20 - [] ----D C:\ProgramData\Wondershare O43 - CFD: 20/01/2015 - 13:35:50 - [] ----D C:\ProgramData\{1C7BF4B8-4CF9-253E-FD7F-55BC2DFD8632} O43 - CFD: 21/07/2014 - 10:38:32 - [0] ----D C:\Users\Joël\AppData\Roaming\ABBYY FineReader Engine 9.0 O43 - CFD: 02/07/2014 - 06:14:05 - [] ----D C:\Users\Joël\AppData\Roaming\Adobe O43 - CFD: 09/12/2015 - 21:46:19 - [] ----D C:\Users\Joël\AppData\Roaming\Apowersoft O43 - CFD: 13/02/2014 - 19:10:47 - [] ----D C:\Users\Joël\AppData\Roaming\AVAST Software O43 - CFD: 19/12/2013 - 19:38:07 - [] ----D C:\Users\Joël\AppData\Roaming\Canneverbe Limited O43 - CFD: 02/05/2014 - 12:43:07 - [] ----D C:\Users\Joël\AppData\Roaming\canon O43 - CFD: 02/05/2014 - 12:51:45 - [] ----D C:\Users\Joël\AppData\Roaming\CANON INC O43 - CFD: 02/05/2014 - 12:45:12 - [] ----D C:\Users\Joël\AppData\Roaming\Canon_Inc_IC O43 - CFD: 28/03/2014 - 19:15:26 - [] ----D C:\Users\Joël\AppData\Roaming\Carambis O43 - CFD: 02/05/2014 - 12:01:32 - [] ----D C:\Users\Joël\AppData\Roaming\CDXReader O43 - CFD: 02/05/2014 - 12:04:00 - [] ----D C:\Users\Joël\AppData\Roaming\DivX O43 - CFD: 20/01/2015 - 14:09:41 - [0] ----D C:\Users\Joël\AppData\Roaming\dlg O43 - CFD: 15/04/2016 - 12:56:51 - [] ----D C:\Users\Joël\AppData\Roaming\Dropbox O43 - CFD: 03/04/2014 - 10:18:58 - [] ----D C:\Users\Joël\AppData\Roaming\EBP O43 - CFD: 17/06/2014 - 16:15:51 - [] ----D C:\Users\Joël\AppData\Roaming\GESTAN O43 - CFD: 19/12/2013 - 20:33:36 - [] ----D C:\Users\Joël\AppData\Roaming\GlarySoft O43 - CFD: 09/05/2016 - 17:02:23 - [] ----D C:\Users\Joël\AppData\Roaming\Identities O43 - CFD: 17/11/2014 - 10:19:03 - [] ----D C:\Users\Joël\AppData\Roaming\InstallShield O43 - CFD: 01/05/2014 - 09:59:13 - [] ----D C:\Users\Joël\AppData\Roaming\Lavasoft O43 - CFD: 02/05/2014 - 12:01:34 - [] ----D C:\Users\Joël\AppData\Roaming\LavFilters O43 - CFD: 09/05/2016 - 17:11:21 - [] ----D C:\Users\Joël\AppData\Roaming\Macromedia O43 - CFD: 14/07/2009 - 17:35:05 - [0] ----D C:\Users\Joël\AppData\Roaming\Media Center Programs O43 - CFD: 08/05/2016 - 21:56:05 - [] -S--D C:\Users\Joël\AppData\Roaming\Microsoft O43 - CFD: 20/01/2015 - 14:10:36 - [] ----D C:\Users\Joël\AppData\Roaming\Mipony O43 - CFD: 09/05/2016 - 16:54:13 - [] ----D C:\Users\Joël\AppData\Roaming\MoneyManagerEx O43 - CFD: 24/01/2015 - 21:49:39 - [] ----D C:\Users\Joël\AppData\Roaming\Mozilla O43 - CFD: 20/12/2013 - 14:18:46 - [] ----D C:\Users\Joël\AppData\Roaming\MSI O43 - CFD: 20/12/2013 - 14:56:54 - [] ----D C:\Users\Joël\AppData\Roaming\OpenOffice O43 - CFD: 19/04/2014 - 15:10:42 - [] ----D C:\Users\Joël\AppData\Roaming\PDF Architect O43 - CFD: 21/07/2014 - 10:35:25 - [] ----D C:\Users\Joël\AppData\Roaming\PDF Software O43 - CFD: 17/06/2014 - 10:38:50 - [] ----D C:\Users\Joël\AppData\Roaming\QuickScan O43 - CFD: 14/12/2015 - 22:24:54 - [] ----D C:\Users\Joël\AppData\Roaming\Skype O43 - CFD: 05/05/2016 - 13:24:21 - [] ----D C:\Users\Joël\AppData\Roaming\TeamViewer O43 - CFD: 03/01/2014 - 13:22:33 - [] ----D C:\Users\Joël\AppData\Roaming\Thunderbird =>.Mozilla Corporation O43 - CFD: 29/03/2014 - 10:55:15 - [] ----D C:\Users\Joël\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 05/03/2016 - 18:15:40 - [] ----D C:\Users\Joël\AppData\Roaming\W3DClient O43 - CFD: 09/01/2015 - 13:02:41 - [] ----D C:\Users\Joël\AppData\Roaming\Wondershare O43 - CFD: 10/05/2016 - 07:49:20 - [] ----D C:\Users\Joël\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 29/03/2014 - 10:55:16 - [] ----D C:\Users\Joël\AppData\Local\899b68db-bcc3-4e13-42b9-f536cf25058e O43 - CFD: 21/07/2014 - 10:38:32 - [] ----D C:\Users\Joël\AppData\Local\ABBYY O43 - CFD: 21/07/2014 - 10:38:32 - [0] ----D C:\Users\Joël\AppData\Local\ABBYY FineReader Engine 9.0 O43 - CFD: 08/05/2016 - 21:46:15 - [0] ----D C:\Users\Joël\AppData\Local\ActiveSync O43 - CFD: 04/04/2016 - 14:42:02 - [] ----D C:\Users\Joël\AppData\Local\Adobe O43 - CFD: 06/01/2014 - 14:07:48 - [] ----D C:\Users\Joël\AppData\Local\Apple O43 - CFD: 07/05/2016 - 14:43:48 - [] -SH-D C:\Users\Joël\AppData\Local\Application Data O43 - CFD: 19/12/2013 - 19:14:34 - [] ----D C:\Users\Joël\AppData\Local\Apps O43 - CFD: 17/07/2015 - 08:39:54 - [] ----D C:\Users\Joël\AppData\Local\CEF O43 - CFD: 08/05/2016 - 22:07:57 - [] ----D C:\Users\Joël\AppData\Local\Comms O43 - CFD: 05/07/2016 - 13:02:55 - [] ----D C:\Users\Joël\AppData\Local\CrashDumps O43 - CFD: 15/04/2016 - 11:38:12 - [0] ----D C:\Users\Joël\AppData\Local\Diagnostics O43 - CFD: 16/06/2015 - 09:27:47 - [] ----D C:\Users\Joël\AppData\Local\Dropbox O43 - CFD: 03/04/2014 - 08:56:45 - [] ----D C:\Users\Joël\AppData\Local\EBP O43 - CFD: 12/08/2015 - 14:27:06 - [0] ----D C:\Users\Joël\AppData\Local\ElevatedDiagnostics O43 - CFD: 12/12/2014 - 13:17:10 - [] -SH-D C:\Users\Joël\AppData\Local\EmieBrowserModeList O43 - CFD: 12/12/2014 - 13:17:10 - [] -SH-D C:\Users\Joël\AppData\Local\EmieSiteList O43 - CFD: 12/12/2014 - 13:17:10 - [] -SH-D C:\Users\Joël\AppData\Local\EmieUserList O43 - CFD: 14/09/2015 - 10:47:15 - [] ----D C:\Users\Joël\AppData\Local\Google O43 - CFD: 07/05/2016 - 14:43:48 - [] -SH-D C:\Users\Joël\AppData\Local\Historique O43 - CFD: 08/05/2016 - 21:52:01 - [] ----D C:\Users\Joël\AppData\Local\Microsoft O43 - CFD: 09/05/2016 - 17:06:13 - [] ----D C:\Users\Joël\AppData\Local\MicrosoftEdge O43 - CFD: 24/01/2015 - 21:50:45 - [] ----D C:\Users\Joël\AppData\Local\Mozilla O43 - CFD: 17/11/2014 - 08:16:48 - [] ----D C:\Users\Joël\AppData\Local\Navman_Technology_New_Zea O43 - CFD: 03/03/2014 - 20:27:18 - [] ----D C:\Users\Joël\AppData\Local\NVIDIA O43 - CFD: 03/03/2014 - 20:26:55 - [] ----D C:\Users\Joël\AppData\Local\NVIDIA Corporation O43 - CFD: 09/05/2016 - 19:54:59 - [] ----D C:\Users\Joël\AppData\Local\Packages O43 - CFD: 17/03/2015 - 12:41:35 - [0] ----D C:\Users\Joël\AppData\Local\PDFCreator O43 - CFD: 24/04/2014 - 09:13:25 - [] ----D C:\Users\Joël\AppData\Local\Programs O43 - CFD: 08/05/2016 - 21:47:15 - [] ----D C:\Users\Joël\AppData\Local\Publishers O43 - CFD: 12/12/2015 - 13:34:56 - [0] ----D C:\Users\Joël\AppData\Local\Skype O43 - CFD: 28/03/2014 - 17:12:05 - [] ----D C:\Users\Joël\AppData\Local\Software O43 - CFD: 03/04/2014 - 11:23:42 - [0] ----D C:\Users\Joël\AppData\Local\Stimulsoft O43 - CFD: 10/05/2016 - 07:48:32 - [] ----D C:\Users\Joël\AppData\Local\Temp O43 - CFD: 07/05/2016 - 14:43:48 - [] -SH-D C:\Users\Joël\AppData\Local\Temporary Internet Files O43 - CFD: 15/04/2014 - 16:03:22 - [] ----D C:\Users\Joël\AppData\Local\Thunderbird =>.Mozilla Corporation O43 - CFD: 08/05/2016 - 21:43:42 - [] ----D C:\Users\Joël\AppData\Local\TileDataLayer O43 - CFD: 05/03/2016 - 18:16:21 - [] ----D C:\Users\Joël\AppData\Local\Tixeo O43 - CFD: 05/03/2016 - 14:25:45 - [] ----D C:\Users\Joël\AppData\Local\Tixeo Soft O43 - CFD: 30/07/2014 - 17:11:20 - [] ----D C:\Users\Joël\AppData\Local\Trusteer O43 - CFD: 05/01/2015 - 13:18:24 - [] ----D C:\Users\Joël\AppData\Local\VirtualStore O43 - CFD: 17/06/2014 - 16:15:37 - [] ----D C:\Users\Joël\AppData\Local\WDSetup O43 - CFD: 21/07/2014 - 12:05:30 - [] ----D C:\Users\Joël\AppData\Local\Wondershare O43 - CFD: 30/10/2015 - 09:24:29 - [] R---D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 08/05/2016 - 21:43:54 - [] R---D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 09/05/2016 - 19:19:07 - [] R---D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 07/05/2016 - 14:44:47 - [] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 07/05/2016 - 14:50:04 - [] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Photos Backup O43 - CFD: 30/10/2015 - 09:24:29 - [] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 20/01/2015 - 13:34:54 - [0] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MiPony O43 - CFD: 09/05/2016 - 19:19:07 - [] R---D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 30/10/2015 - 09:24:29 - [] R---D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 07/05/2016 - 14:44:47 - [] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VintaSoft O43 - CFD: 30/10/2015 - 09:24:49 - [] RS--D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell O43 - CFD: 07/05/2016 - 14:50:04 - [] ----D C:\Users\Joël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XML Notepad 2007 ~ Program Folder: 201 Scanned in 00mn 01s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.786E8BCDFF674068F3C950615FC2E71C] - 07/05/2016 - 06:56:47 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [37144] O44 - LFC:[MD5.A371A06EC8F4830C263D3F5CA5A11B65] - 07/05/2016 - 06:56:47 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1070904] O44 - LFC:[MD5.8D26DAE92B9995B082AE5B6BC2FB70DB] - 07/05/2016 - 06:57:30 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [52184] O44 - LFC:[MD5.3575F9226251DE48E065ED5C384A21EF] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [166432] O44 - LFC:[MD5.33D0DD0471FDF449C81338863FC63978] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [107792] O44 - LFC:[MD5.1694434F5B9AB16772C7A8E2EF9134CA] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\Drivers\aswHwid.sys [37656] O44 - LFC:[MD5.D873455DFA27680585AE238503917DF5] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\Drivers\aswRvrt.sys [74544] O44 - LFC:[MD5.BA4CDCD8C0395E91C38CD2C5CE3E7FA2] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\Drivers\aswVmm.sys [287528] O44 - LFC:[MD5.DF190688D993A3DB227BFB0BB40BD7D4] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [103064] O44 - LFC:[MD5.6B7F6CE19A16240EE9DE2C528897ED9C] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [465792] O44 - LFC:[MD5.7E8152C231FF349CEEEB12146D90E952] - 07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! start-up scanner.) -- C:\Windows\System32\aswBoot.exe [398152] O44 - LFC:[MD5.9D11988E8401CC23ADD815C756AD404C] - 07/05/2016 - 11:48:34 ---A- . (...) -- C:\Windows\System32\lvcoinst.log [1977] O44 - LFC:[MD5.E403297FFF395C780587DB2040815699] - 07/05/2016 - 11:51:21 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [26784] O44 - LFC:[MD5.E403297FFF395C780587DB2040815699] - 07/05/2016 - 11:51:21 --HA- . (...) -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [26784] O44 - LFC:[MD5.93B885ADFE0DA089CDF634904FD59F71] - 07/05/2016 - 12:07:48 -SHA- . (...) -- C:\BOOTNXT [1] O44 - LFC:[MD5.7CC99B636430949893AE6E0A33135220] - 07/05/2016 - 12:07:56 RSHA- . (...) -- C:\BOOTSECT.BAK [8192] O44 - LFC:[MD5.E51441104803D31400009692B9E8EFCB] - 07/05/2016 - 13:34:43 ---A- . (...) -- C:\Windows\System32\NetSetupMig.log [21477] O44 - LFC:[MD5.D6917361B63B7F20E75EFF681AFD4B79] - 07/05/2016 - 13:41:19 ---A- . (...) -- C:\Windows\iis.log [22279] O44 - LFC:[MD5.3817584F6967EAA1DF179192B9A870EA] - 07/05/2016 - 13:49:14 ---A- . (...) -- C:\Windows\DtcInstall.log [5161] O44 - LFC:[MD5.48E7F01CD9246CAF86702F5CB9100C9F] - 07/05/2016 - 14:16:17 ---A- . (.Microsoft Corporation - Moteur de réinitialisation Microsoft Window.) -- C:\Windows\System32\reseteng.dll [1087488] O44 - LFC:[MD5.20B48DC4AF4492B31A756528444BDA8C] - 07/05/2016 - 14:16:17 ---A- . (.Microsoft Corporation - Réinitialisation du système pour Windows.) -- C:\Windows\System32\systemreset.exe [304752] O44 - LFC:[MD5.E2296A6174894682DF8F0FF29FDDCC82] - 07/05/2016 - 14:16:47 ---A- . (.Microsoft Corporation - PresentationNative_v0300.dll.) -- C:\Windows\System32\PresentationNative_v0300.dll [1166520] O44 - LFC:[MD5.C5FEF4B4A7FB961ECDB0AB07DBCF379E] - 07/05/2016 - 14:16:47 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [124624] O44 - LFC:[MD5.E91942A0D00C6AA014B2EA33EE0ED0A3] - 07/05/2016 - 14:16:47 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe [35480] O44 - LFC:[MD5.9FE0D7AF57C2595FE86406AF027AA15E] - 07/05/2016 - 14:17:25 ---A- . (.Microsoft Corporation - Message Queuing Backup/Restore Utility.) -- C:\Windows\System32\mqbkup.exe [52736] O44 - LFC:[MD5.30130E99810283026C5FA2F57A4BB488] - 07/05/2016 - 14:17:25 ---A- . (.Microsoft Corporation - Message Queuing Service.) -- C:\Windows\System32\mqsvc.exe [26624] O44 - LFC:[MD5.D86BD322A7ACDBE6C98F0B1DE816DE2A] - 07/05/2016 - 14:17:32 ---A- . (.Microsoft Corporation - Message Queuing Manager.) -- C:\Windows\System32\mqqm.dll [1417728] O44 - LFC:[MD5.E0640DE5407EEE4C6E16D839243B71F9] - 07/05/2016 - 14:17:34 ---A- . (...) -- C:\Windows\System32\msmqtrc.mof [9096] O44 - LFC:[MD5.D52E8C7402324306688977BBD2E2E0B7] - 07/05/2016 - 14:17:34 ---A- . (.Microsoft Corporation - Message Queuing ActiveX Interface.) -- C:\Windows\System32\mqoa.dll [317440] O44 - LFC:[MD5.E8CC15FC3B56F07449868E3FA9EA6376] - 07/05/2016 - 14:17:40 ---A- . (.Microsoft Corporation - Message Queuing Certificate Dialogs.) -- C:\Windows\System32\mqcertui.dll [18944] O44 - LFC:[MD5.74D5A37090CC8C58DAB2868C081977A7] - 07/05/2016 - 14:17:40 ---A- . (.Microsoft Corporation - Message Queuing Snapin.) -- C:\Windows\System32\mqsnap.dll [813056] O44 - LFC:[MD5.77EC26F9878FBFC5398E04BBAB392735] - 07/05/2016 - 14:17:43 ---A- . (.Microsoft Corporation - Message Queuing 1.0 Type Library.) -- C:\Windows\System32\mqoa10.tlb [37376] O44 - LFC:[MD5.BCC06771EC2E0BCBE9FCC33CDD5FEA81] - 07/05/2016 - 14:17:43 ---A- . (.Microsoft Corporation - Message Queuing 2.0 Type Library.) -- C:\Windows\System32\mqoa20.tlb [55808] O44 - LFC:[MD5.29559365FE494DDEB6781809A10C6688] - 07/05/2016 - 14:17:43 ---A- . (.Microsoft Corporation - Message Queuing 3.0 ActiveX Interface.) -- C:\Windows\System32\mqoa30.tlb [91136] O44 - LFC:[MD5.3A3897590483B0449545C98AC2764B12] - 07/05/2016 - 14:17:43 ---A- . (.Microsoft Corporation - Message Queuing Type Library.) -- C:\Windows\System32\mqoa.tlb [96768] O44 - LFC:[MD5.283FCD4B5523604F35D3ADC295904339] - 07/05/2016 - 14:17:48 ---A- . (.Microsoft Corporation - DLL de ressource Message Queuing.) -- C:\Windows\System32\mqutil.dll [564224] O44 - LFC:[MD5.F3A247D5D8033E8A68437C91BA0C3859] - 07/05/2016 - 14:17:50 ---A- . (.Microsoft Corporation - Microsoft Distributed Transaction Coordinat.) -- C:\Windows\System32\mqlogmgr.dll [130048] O44 - LFC:[MD5.C2AA88CC70CB485E2E93D2C2191D1051] - 07/05/2016 - 14:17:54 ---A- . (.Microsoft Corporation - Message Queuing Runtime.) -- C:\Windows\System32\mqrt.dll [229888] O44 - LFC:[MD5.2B9A1FF2450BAF7A795941BE471F16EF] - 07/05/2016 - 14:17:56 ---A- . (.Microsoft Corporation - Message Queuing Device Driver.) -- C:\Windows\System32\Drivers\mqac.sys [175616] O44 - LFC:[MD5.BC7188B8B09FE3F7DCFD8CD21C36D076] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - Application Host Admin Proxy.) -- C:\Windows\System32\ahadmin.dll [53248] O44 - LFC:[MD5.DC890D2BB22549F5839BE8A91F0683BF] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - IIS Admin Com API Proxy dll.) -- C:\Windows\System32\admwprox.dll [56320] O44 - LFC:[MD5.8DA92939766072FA0841081BB8C22203] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - IIS Restart API Proxy dll.) -- C:\Windows\System32\iisrstap.dll [13312] O44 - LFC:[MD5.3F76B2CA2FADC9FD68E8BEB1BAEDD74C] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - IIS RunTime Library.) -- C:\Windows\System32\iisRtl.dll [202240] O44 - LFC:[MD5.F4466C527F5D4CDD2FED84F8FEFB7197] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - IIS control command line utility.) -- C:\Windows\System32\iisreset.exe [19456] O44 - LFC:[MD5.8FF897A0C29107886AD46C3911BA7A19] - 07/05/2016 - 14:18:00 ---A- . (.Microsoft Corporation - WAMREG Proxy Stub.) -- C:\Windows\System32\wamregps.dll [15360] O44 - LFC:[MD5.10B2D2D402319E647C90A2E1908C8DBB] - 07/05/2016 - 14:29:33 ---A- . (...) -- C:\Windows\System32\license.rtf [50653] O44 - LFC:[MD5.3700577A2100F020DFD996272B4F5EF3] - 08/05/2016 - 14:03:25 ---A- . (...) -- C:\Windows\System32\emptyregdb.dat [23108] O44 - LFC:[MD5.D69C2053A378BE44FF2EA06BDD5217E3] - 08/05/2016 - 14:04:16 ---A- . (...) -- C:\Windows\comsetup.log [6475] O44 - LFC:[MD5.16E7B5F2CDDCEA3B15F0B798680863CF] - 08/05/2016 - 14:04:45 ---A- . (...) -- C:\Windows\diagerr.xml [10449] O44 - LFC:[MD5.692CA5EBC9E0CEF0A8D0BE4DF7400CEE] - 08/05/2016 - 14:04:45 ---A- . (...) -- C:\Windows\diagwrn.xml [9528] O44 - LFC:[MD5.F4F0157255B9BBE13D2FCE635521DAF1] - 08/05/2016 - 14:04:45 ---A- . (...) -- C:\Windows\setupact.log [18498] O44 - LFC:[MD5.F44AA79DF45B1CAE6E6C64372D846AA5] - 08/05/2016 - 20:50:58 ---A- . (.Microsoft Corporation - Microsoft English Natural Language Server D.) -- C:\Windows\System32\NlsData0009.dll [6359040] O44 - LFC:[MD5.E52612EA0C1C1ACD3ABFD09534F6AAE6] - 08/05/2016 - 20:50:59 ---A- . (.Microsoft Corporation - Microsoft English Natural Language Data and.) -- C:\Windows\System32\prm0009.dll [5739520] O44 - LFC:[MD5.8F1CD3FABC7F24FE329FE39A3EB58C58] - 08/05/2016 - 20:50:59 ---A- . (.Microsoft Corporation - Microsoft English Natural Language Server D.) -- C:\Windows\System32\NlsLexicons0009.dll [2629632] O44 - LFC:[MD5.414F8E025C6ECA30057EF2256359E2A8] - 08/05/2016 - 20:52:22 ---A- . (.CANON INC. - Canon Advanced Printing Technology Engine M.) -- C:\Windows\System32\CNAB4EMD.DLL [221696] O44 - LFC:[MD5.BE0802EF055CA34F3D9212477D039342] - 08/05/2016 - 20:52:22 ---A- . (.CANON INC. - Canon Advanced Printing Technology Language.) -- C:\Windows\System32\CNAB4LMD.DLL [58880] O44 - LFC:[MD5.3FF6CF1CC6DDBED5736EBC65E691D50C] - 08/05/2016 - 20:52:22 ---A- . (.CANON INC. - Canon Advanced Printing Technology Port Man.) -- C:\Windows\System32\CNAB4PTD.DLL [62464] O44 - LFC:[MD5.7B8CFD0EB3ADBF6717AA99B9DC07926F] - 08/05/2016 - 20:52:22 ---A- . (.CANON INC. - Canon Advanced Printing Technology RPC Serv.) -- C:\Windows\System32\CNAB4RPD.EXE [63936] O44 - LFC:[MD5.CFD4AEBF07A4798FF64E96EA692F72F1] - 08/05/2016 - 20:52:22 ---A- . (.CANON INC. - Canon Advanced Printing Technology Status M.) -- C:\Windows\System32\CNAB4SMD.DLL [126464] O44 - LFC:[MD5.78488AF2AB2111D67B3C4044707A519B] - 08/05/2016 - 22:01:45 ---A- . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [192216] O44 - LFC:[MD5.F67CE9AB5AA40125E4B4E063C78B602C] - 09/05/2016 - 15:35:55 ---A- . (...) -- C:\Windows\PFRO.log [298342] O44 - LFC:[MD5.AB416599057FFDC84E28BBB6DA69EADC] - 09/05/2016 - 16:08:33 ---A- . (...) -- C:\Windows\System32\MTF.dll [235008] O44 - LFC:[MD5.14D75B31BA6A28F4A46D7432B48C26B3] - 09/05/2016 - 16:08:33 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [45568] O44 - LFC:[MD5.04EDE78320552097AC7EB3CE69A4A0BD] - 09/05/2016 - 16:08:36 ---A- . (.Microsoft Corporation - Font Subsetting DLL.) -- C:\Windows\System32\fontsub.dll [118272] O44 - LFC:[MD5.E95C204F9042223B355C4D04CE675D50] - 09/05/2016 - 16:08:36 ---A- . (.Microsoft Corporation - Windows Runtime AppCapture DLL.) -- C:\Windows\System32\AppCapture.dll [86528] O44 - LFC:[MD5.DA0807D87A62D076C29C4E30F1E84F46] - 09/05/2016 - 16:08:36 ---A- . (.Microsoft Corporation - XINPUT filter driver for HID.) -- C:\Windows\System32\Drivers\xinputhid.sys [26112] O44 - LFC:[MD5.A4CA6FE3F02C6299EED8B7296DC902D6] - 09/05/2016 - 16:08:37 ---A- . (.Microsoft Corporation - Active Accessibility Event Hooks Library.) -- C:\Windows\System32\oleacchooks.dll [12800] O44 - LFC:[MD5.77981E6F98F4A8743D3AEB1A8AF4DE09] - 09/05/2016 - 16:08:37 ---A- . (.Microsoft Corporation - InputLocaleManager.DYNLINK.) -- C:\Windows\System32\InputLocaleManager.dll [108544] O44 - LFC:[MD5.E81A803BE3E7D49DE669FB8C30B18BA4] - 09/05/2016 - 16:08:38 ---A- . (.Microsoft Corporation - Broadcast DVR server.) -- C:\Windows\System32\bcastdvr.exe [414720] O44 - LFC:[MD5.5118193C56A2F8D07554395B78A6FDCC] - 09/05/2016 - 16:08:38 ---A- . (.Microsoft Corporation - Windows BitLocker Drive Encryption Base API.) -- C:\Windows\System32\fveapibase.dll [223232] O44 - LFC:[MD5.F4F6D943E788447DAE29DA217B6743E6] - 09/05/2016 - 16:08:39 ---A- . (.Microsoft Corporation - Microsoft Distributed Transaction Coordinat.) -- C:\Windows\System32\mtxoci.dll [147456] O44 - LFC:[MD5.CA24B0764C9DFE243D15A8708580673B] - 09/05/2016 - 16:08:39 ---A- . (.Microsoft Corporation - Outils de préparation de lecteur Windows Bi.) -- C:\Windows\System32\BdeHdCfgLib.dll [107520] O44 - LFC:[MD5.81D0BDE09DA9D13C4A5A47A8ADCE0993] - 09/05/2016 - 16:08:40 ---A- . (.Microsoft Corporation - Maps Background Transfer Service.) -- C:\Windows\System32\MapsBtSvc.dll [120320] O44 - LFC:[MD5.6B5963BC0C0074448A502FD19209D1BB] - 09/05/2016 - 16:08:40 ---A- . (.Microsoft Corporation - MapsCSP.) -- C:\Windows\System32\MapsCSP.dll [89088] O44 - LFC:[MD5.C3BB5D3E3DD24AC0BFA9223F2877F136] - 09/05/2016 - 16:08:44 ---A- . (.Microsoft Corporation - Host Process for Network Driver Configurati.) -- C:\Windows\System32\NetCfgNotifyObjectHost.exe [76800] O44 - LFC:[MD5.91F08041D932816D0D9607F68578A87E] - 09/05/2016 - 16:08:45 ---A- . (.Microsoft Corporation - Suivi d'événements pour Windows pour MDM En.) -- C:\Windows\System32\dmenterprisediagnostics.dll [34816] O44 - LFC:[MD5.727E03710FB2320AC0C114A9BF40AB40] - 09/05/2016 - 16:08:45 ---A- . (.Microsoft Corporation - mos.) -- C:\Windows\System32\mos.dll [7979008] O44 - LFC:[MD5.F6B9E6CB351D86A0C318B37E14B97656] - 09/05/2016 - 16:08:46 ---A- . (.Microsoft Corporation - FwPolicyIoMgr DLL.) -- C:\Windows\System32\fwpolicyiomgr.dll [196608] O44 - LFC:[MD5.1A0945D67F0499600E7B43A69210EC5B] - 09/05/2016 - 16:08:46 ---A- . (.Microsoft Corporation - Time Broker Client Library.) -- C:\Windows\System32\TimeBrokerClient.dll [41984] O44 - LFC:[MD5.DAFECF80513C6E6892BBEBB48D555A31] - 09/05/2016 - 16:08:47 ---A- . (.Microsoft Corporation - DLL des API SRP.) -- C:\Windows\System32\srpapi.dll [115712] O44 - LFC:[MD5.0731E8F4D8D3B8D3FD98A46A8ABFE0A0] - 09/05/2016 - 16:08:47 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport.) -- C:\Windows\System32\Drivers\portcls.sys [333824] O44 - LFC:[MD5.5300F190147040AECDA4F8D669B7D673] - 09/05/2016 - 16:08:47 ---A- . (.Microsoft Corporation - Tâche MapsUpdateTask.) -- C:\Windows\System32\mapsupdatetask.dll [28672] O44 - LFC:[MD5.0FEE16BB03B1A97A70121165E7414903] - 09/05/2016 - 16:08:47 ---A- . (.Microsoft Corporation - profext.) -- C:\Windows\System32\profext.dll [67584] O44 - LFC:[MD5.9BC40C5A140B5F380042E391CC95993F] - 09/05/2016 - 16:08:48 ---A- . (.Microsoft Corporation - Gestionnaire des cartes téléchargées.) -- C:\Windows\System32\moshost.dll [66560] O44 - LFC:[MD5.E3C82823B22463BC38AA4F8ADA852624] - 09/05/2016 - 16:08:48 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [104960] O44 - LFC:[MD5.63939B50C5C103FA71A419BCEA5B1CF0] - 09/05/2016 - 16:08:48 ---A- . (.Microsoft Corporation - Token Broker Cookie Helper.) -- C:\Windows\System32\TokenBrokerCookies.exe [26112] O44 - LFC:[MD5.E083BE4900FCBB6BC42943438DCF2CAD] - 09/05/2016 - 16:08:49 ---A- . (.Microsoft Corporation - Device Encryption Setting Handlers.) -- C:\Windows\System32\SystemSettings.DeviceEncryptionHandlers.dll [176128] O44 - LFC:[MD5.0D9E0BDCCCE10F07A7B66A61B27C1F71] - 09/05/2016 - 16:08:49 ---A- . (.Microsoft Corporation - Windows Font Provider Library.) -- C:\Windows\System32\FontProvider.dll [116224] O44 - LFC:[MD5.C10E0567A0C9541F839EC5B4758795DA] - 09/05/2016 - 16:08:49 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll [48128] O44 - LFC:[MD5.D9A795240A84C9E3DA78BC1B9E239FCF] - 09/05/2016 - 16:08:50 ---A- . (.Microsoft Corporation - SAM Library DLL.) -- C:\Windows\System32\samlib.dll [95744] O44 - LFC:[MD5.84ADBF35DAF6404148AE85973BE26D59] - 09/05/2016 - 16:08:57 ---A- . (.Microsoft Corporation - Private WPS provisioning API DLL for Wi-Fi.) -- C:\Windows\System32\wfdprov.dll [48640] O44 - LFC:[MD5.3F4461644840A3C5572DDC726C36BDF7] - 09/05/2016 - 16:08:57 ---A- . (.Microsoft Corporation - Sensors Native API (V2 stack).) -- C:\Windows\System32\SensorsNativeApi.V2.dll [92160] O44 - LFC:[MD5.9822B613AEB1CF24E05EFEE748160637] - 09/05/2016 - 16:08:58 ---A- . (.Microsoft Corporation - Moniteur infrarouge.) -- C:\Windows\System32\irmon.dll [25088] O44 - LFC:[MD5.249A563C48DFD9E42A37587653E003BB] - 09/05/2016 - 16:08:58 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83968] O44 - LFC:[MD5.B6877446C93D3110E56C90CF13CBEC89] - 09/05/2016 - 16:08:58 ---A- . (.Microsoft Corporation - Type Utilities for data access.) -- C:\Windows\System32\UserDataTypeHelperUtil.dll [45568] O44 - LFC:[MD5.70BA4CAAC5D621DCE88082DA0B1FF014] - 09/05/2016 - 16:08:59 ---A- . (.Microsoft Corporation - Extras XML parser used to extract extension.) -- C:\Windows\System32\ExtrasXmlParser.dll [23552] O44 - LFC:[MD5.091D5AE5E663A66EE73B539AF7C32EC5] - 09/05/2016 - 16:09:00 ---A- . (.Microsoft Corporation - Windows BitLocker Drive Encryption OneDrive.) -- C:\Windows\System32\fveskybackup.dll [69632] O44 - LFC:[MD5.DD877B48C28AB34197AD88902971B81D] - 09/05/2016 - 16:09:01 ---A- . (.Microsoft Corporation - Language-related helper functions for user.) -- C:\Windows\System32\UserDataLanguageUtil.dll [45056] O44 - LFC:[MD5.37F5E2385CB4D10AB42186974B9C241A] - 09/05/2016 - 16:09:01 ---A- . (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\BFE.DLL [794112] O44 - LFC:[MD5.A15D9F32A84660FA62F9D27577B0F105] - 09/05/2016 - 16:09:01 ---A- . (.Microsoft Corporation - Panneau de configuration du chiffrement de.) -- C:\Windows\System32\fvecpl.dll [324608] O44 - LFC:[MD5.594FDF2DB7568C73C282B282845E30CF] - 09/05/2016 - 16:09:01 ---A- . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll [36352] O44 - LFC:[MD5.020AD2DA67F206DC160053F88454A0D4] - 09/05/2016 - 16:09:01 ---A- . (.Microsoft Corporation - Time-related helper functions for user data.) -- C:\Windows\System32\UserDataTimeUtil.dll [111616] O44 - LFC:[MD5.3F8466CC13D1F614C8FAC24B1C030D59] - 09/05/2016 - 16:09:02 ---A- . (.Microsoft Corporation - DLL de scanneurs périphériques Windows Runt.) -- C:\Windows\System32\Windows.Devices.Scanners.dll [214528] O44 - LFC:[MD5.8FFFDB163436D790369E39700B8A7DC1] - 09/05/2016 - 16:09:02 ---A- . (.Microsoft Corporation - LicenseManagerShellExt.) -- C:\Windows\System32\LicenseManagerShellext.exe [27648] O44 - LFC:[MD5.F0BBBF8807D5725102A9EB06AEB9C1C5] - 09/05/2016 - 16:09:03 ---A- . (.Microsoft Corporation - Browser Service Client DLL.) -- C:\Windows\System32\browcli.dll [58368] O44 - LFC:[MD5.E1D8055043DF089DB8ADB67C21DF2CC4] - 09/05/2016 - 16:09:03 ---A- . (.Microsoft Corporation - Change Tracking.) -- C:\Windows\System32\POSyncServices.dll [70656] O44 - LFC:[MD5.A617BE5E429A035A1CA8217C1B16F0BB] - 09/05/2016 - 16:09:03 ---A- . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134656] O44 - LFC:[MD5.AA97AC06BFA15DA23C7C9C145A226C2D] - 09/05/2016 - 16:09:03 ---A- . (.Microsoft Corporation - Windows Firewall GPO Helper dll.) -- C:\Windows\System32\wfapigp.dll [25600] O44 - LFC:[MD5.712AE16ED8FC7F2363F7EA1D8F6D546A] - 09/05/2016 - 16:09:04 ---A- . (.Microsoft Corporation - Assistant Chiffrement de lecteur BitLocker.) -- C:\Windows\System32\fvewiz.dll [821248] O44 - LFC:[MD5.9AE80C03EA83537F17B286ECBBA13D43] - 09/05/2016 - 16:09:04 ---A- . (.Microsoft Corporation - Firewall Base DLL.) -- C:\Windows\System32\fwbase.dll [184320] O44 - LFC:[MD5.D22A2DEC01300ECEB41D22AB60B1E4B3] - 09/05/2016 - 16:09:04 ---A- . (.Microsoft Corporation - On Demand Connctiond Route Helper.) -- C:\Windows\System32\OnDemandConnRouteHelper.dll [66048] O44 - LFC:[MD5.82E25186617BA6C15010F0D47C705705] - 09/05/2016 - 16:09:04 ---A- . (.Microsoft Corporation - Windows NT BASE API Server DLL.) -- C:\Windows\System32\basesrv.dll [65536] O44 - LFC:[MD5.F72F137EEFF89D0B5A2FB8867B4ACEED] - 09/05/2016 - 16:09:05 ---A- . (.Microsoft Corporation - API en mode utilisateur FWP/IPsec.) -- C:\Windows\System32\FWPUCLNT.DLL [402432] O44 - LFC:[MD5.7119946D6A8D221C65514267D9F4D520] - 09/05/2016 - 16:09:05 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [4774912] O44 - LFC:[MD5.EBD07BD20B5E0E92A398566EF8720F79] - 09/05/2016 - 16:09:06 ---A- . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31232] O44 - LFC:[MD5.A8006F30859CF55782E41E0E22CF60EF] - 09/05/2016 - 16:09:06 ---A- . (.Microsoft Corporation - DLL d’exécution de l’infrastructure de test.) -- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll [330240] O44 - LFC:[MD5.56C238ACFE4CB020D3E38508249039EA] - 09/05/2016 - 16:09:06 ---A- . (.Microsoft Corporation - Programme de mise à jour automatique du fus.) -- C:\Windows\System32\tzautoupdate.dll [87040] O44 - LFC:[MD5.E9B10E704AD5B1BA5E531809C89A085B] - 09/05/2016 - 16:09:06 ---A- . (.Microsoft Corporation - Windows Push Notification InProc.) -- C:\Windows\System32\wpninprc.dll [93184] O44 - LFC:[MD5.6A5290128257BC733107E7819648CA76] - 09/05/2016 - 16:09:07 ---A- . (.Microsoft Corporation - API du Pare-feu Windows.) -- C:\Windows\System32\FirewallAPI.dll [526336] O44 - LFC:[MD5.023338E1DA5B6E5C2EFC7E5ADA7929C5] - 09/05/2016 - 16:09:08 ---A- . (.Microsoft Corporation - Service Configuration Native API.) -- C:\Windows\System32\scapi.dll [685568] O44 - LFC:[MD5.FBC8C56814642A7CA88ACBCA8DD1121F] - 09/05/2016 - 16:09:08 ---A- . (.Microsoft Corporation - Service NT de partage des données Service D.) -- C:\Windows\System32\dssvc.dll [145408] O44 - LFC:[MD5.38C87ECB57CB973AA5DA633B91778670] - 09/05/2016 - 16:09:09 ---A- . (.Microsoft Corporation - DLL de l’API des services Web pour périphér.) -- C:\Windows\System32\WSDApi.dll [676352] O44 - LFC:[MD5.F5B8CC586CE9D6187F412B5DFE932468] - 09/05/2016 - 16:09:09 ---A- . (.Microsoft Corporation - wuautoappupdate.) -- C:\Windows\System32\wuautoappupdate.dll [33280] O44 - LFC:[MD5.DEFF4C7B937F60923980D4BB7D1724B8] - 09/05/2016 - 16:09:10 ---A- . (.Microsoft Corporation - LExsmime.) -- C:\Windows\System32\ExSMime.dll [274944] O44 - LFC:[MD5.2E165E1CF278FC2B4959B825642A595B] - 09/05/2016 - 16:09:10 ---A- . (.Microsoft Corporation - Windows MB Media Manager DLL.) -- C:\Windows\System32\MBMediaManager.dll [558080] O44 - LFC:[MD5.81B78E1782DB1BA758FDA7B993C9FEB5] - 09/05/2016 - 16:09:11 ---A- . (.Microsoft Corporation - BrowserBroker.) -- C:\Windows\System32\browserbroker.dll [91136] O44 - LFC:[MD5.94612B9F7FC2B1A5C6D337C649B346F1] - 09/05/2016 - 16:09:11 ---A- . (.Microsoft Corporation - Notifications Object Factory.) -- C:\Windows\System32\NotificationObjFactory.dll [278528] O44 - LFC:[MD5.B8293D5BCBCE179870AAB09CCF21B120] - 09/05/2016 - 16:09:11 ---A- . (.Microsoft Corporation - TDL Store Event Handlers.) -- C:\Windows\System32\VEStoreEventHandlers.dll [151040] O44 - LFC:[MD5.722A68A4CC2BC8BC3C0B776B0711A3C9] - 09/05/2016 - 16:09:11 ---A- . (.Microsoft Corporation - Visual Element Event dispatcher.) -- C:\Windows\System32\VEEventDispatcher.dll [285696] O44 - LFC:[MD5.0ED8556CB47EC7689D0046791F3427AE] - 09/05/2016 - 16:09:11 ---A- . (.Microsoft Corporation - Windows WLAN AutoConfig Service PAL DLL.) -- C:\Windows\System32\wlansvcpal.dll [26112] O44 - LFC:[MD5.AFAF7063071A1124985A63382B2BC34C] - 09/05/2016 - 16:09:12 ---A- . (.Microsoft Corporation - Appx Subject Interface Package.) -- C:\Windows\System32\AppxSip.dll [161792] O44 - LFC:[MD5.EEA1E99FBC7D91A1A271012F2B4567BB] - 09/05/2016 - 16:09:12 ---A- . (.Microsoft Corporation - Client dll for Pim Index Maintenance.) -- C:\Windows\System32\PimIndexMaintenanceClient.dll [60416] O44 - LFC:[MD5.A2902A998C3A8A049D26235A75DBE300] - 09/05/2016 - 16:09:12 ---A- . (.Microsoft Corporation - Exchange ActiveSync Windows Runtime DLL.) -- C:\Windows\System32\easwrt.dll [174592] O44 - LFC:[MD5.F40C5151476B066A4061E67DFA641657] - 09/05/2016 - 16:09:12 ---A- . (.Microsoft Corporation - dmcsps.) -- C:\Windows\System32\dmcsps.dll [128512] O44 - LFC:[MD5.E5E09ABD5171EB8622821059D8757F43] - 09/05/2016 - 16:09:20 ---A- . (.Microsoft Corporation - Hôte de l'infrastructure du fournisseur d'i.) -- C:\Windows\System32\credprovhost.dll [239616] O44 - LFC:[MD5.A78E76034D230AFE6B74B57BAF8C8BF2] - 09/05/2016 - 16:09:20 ---A- . (.Microsoft Corporation - Wi-Fi ConfigSP Library.) -- C:\Windows\System32\WiFiConfigSP.dll [27648] O44 - LFC:[MD5.95A03F67830FDCB950E70261128D540D] - 09/05/2016 - 16:09:21 ---A- . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [957952] O44 - LFC:[MD5.5839A317C25F70979433E0905DFABB1B] - 09/05/2016 - 16:09:21 ---A- . (.Microsoft Corporation - Service de résolution du cache DNS.) -- C:\Windows\System32\dnsrslvr.dll [284672] O44 - LFC:[MD5.03416DA86664FF2141A5820868B0B9B1] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - AppX Sysprep Provider.) -- C:\Windows\System32\AppxSysprep.dll [88576] O44 - LFC:[MD5.4BE54893EC2A3B26140DF44E7B6D4E99] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - DAF WSD Provider.) -- C:\Windows\System32\DAFWSD.dll [230400] O44 - LFC:[MD5.E432FCF8572682126C3362AA856DC4AE] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - DLL for PhoneCallHistoryRT.) -- C:\Windows\System32\PhoneCallHistoryApis.dll [221184] O44 - LFC:[MD5.77B2F9C522467B1FC8770028D09534DB] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\asycfilt.dll [91648] O44 - LFC:[MD5.A249C98D869623F1AF0DB4BCFFF6D2A8] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - Platform Utilities for data access.) -- C:\Windows\System32\UserDataPlatformHelperUtil.dll [68096] O44 - LFC:[MD5.12D83590FEF1C8C28DBF3323C61E831A] - 09/05/2016 - 16:09:22 ---A- . (.Microsoft Corporation - WSD Challenge Component.) -- C:\Windows\System32\wsdchngr.dll [31232] O44 - LFC:[MD5.7185B16516478DF0061C2561C1B072CE] - 09/05/2016 - 16:09:23 ---A- . (.Microsoft Corporation - Consolidateur SQM Windows.) -- C:\Windows\System32\wsqmcons.exe [228352] O44 - LFC:[MD5.B7E1CAA9429E4C3E7E01CB35B97E1536] - 09/05/2016 - 16:09:23 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [534368] O44 - LFC:[MD5.3385A5D97C974EA03D6E17E97830F340] - 09/05/2016 - 16:09:24 ---A- . (.Microsoft Corporation - IE ActiveX Interface Marshaling Library.) -- C:\Windows\System32\ieproxy.dll [686592] O44 - LFC:[MD5.6758ABE6A73AE709A6C74F121C666CC1] - 09/05/2016 - 16:09:25 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll [841216] O44 - LFC:[MD5.DA4F2FBA02ADB65797953219ABEF0C44] - 09/05/2016 - 16:09:25 ---A- . (.Microsoft Corporation - Sensors Native API.) -- C:\Windows\System32\SensorsNativeApi.dll [58400] O44 - LFC:[MD5.8949F77132A4F8F3BA17C6727099F002] - 09/05/2016 - 16:09:26 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [127840] O44 - LFC:[MD5.8359F776CA899E761852F2293B724EAE] - 09/05/2016 - 16:09:26 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [185184] O44 - LFC:[MD5.AEBD5FCFBFF0294A2D87048D4F5417CB] - 09/05/2016 - 16:09:27 ---A- . (.Microsoft Corporation - Exchange ActiveSync Invoker.) -- C:\Windows\System32\easinvoker.exe [74424] O44 - LFC:[MD5.0C8955B4BB1E9D588B4B62D0BD2E5E78] - 09/05/2016 - 16:09:28 ---A- . (.Microsoft Corporation - Active Accessibility Core Component.) -- C:\Windows\System32\oleacc.dll [411648] O44 - LFC:[MD5.2BC2E99623119521EEF7910A11D0FDE0] - 09/05/2016 - 16:09:28 ---A- . (.Microsoft Corporation - WDI Driver Framework Driver.) -- C:\Windows\System32\Drivers\WdiWiFi.sys [694784] O44 - LFC:[MD5.E34A89A196F45473D61CCDAB193293D1] - 09/05/2016 - 16:09:29 ---A- . (.Microsoft Corporation - BitLocker Device Encryption Tool.) -- C:\Windows\System32\BitLockerDeviceEncryption.exe [119808] O44 - LFC:[MD5.4C3A93515CA70A7017CBA3A6A95CF080] - 09/05/2016 - 16:09:30 ---A- . (.Microsoft Corporation - DLL for AppointmentActivation.) -- C:\Windows\System32\AppointmentActivation.dll [121856] O44 - LFC:[MD5.C6856D20BE1DB90407C9154B0EC319B9] - 09/05/2016 - 16:09:30 ---A- . (.Microsoft Corporation - Provisioning package API DLL for STL encaps.) -- C:\Windows\System32\provpackageapidll.dll [77824] O44 - LFC:[MD5.95D2BD6AC94FB337AF69F8AFE056BEBE] - 09/05/2016 - 16:09:30 ---A- . (.Microsoft Corporation - Windows Problem Reporting.) -- C:\Windows\System32\wermgr.exe [147808] O44 - LFC:[MD5.6CA51117CDDB89DB6AE9F196B01C3491] - 09/05/2016 - 16:09:31 ---A- . (.Microsoft Corporation - DLL de l’API côté client de configuration a.) -- C:\Windows\System32\wlanapi.dll [389992] O44 - LFC:[MD5.F66EEB5365413D4B968C5B51D25F88B8] - 09/05/2016 - 16:09:31 ---A- . (.Microsoft Corporation - Microsoft AuthHost.) -- C:\Windows\System32\AuthHost.exe [141560] O44 - LFC:[MD5.AA4CD20708B7E0412A5316D7E2875103] - 09/05/2016 - 16:09:31 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [530432] O44 - LFC:[MD5.CFF415024C353DA284731CB72FE3F8FF] - 09/05/2016 - 16:09:31 ---A- . (.Microsoft Corporation - iuilp.) -- C:\Windows\System32\iuilp.dll [770640] O44 - LFC:[MD5.B24408471C1BCB17FC44F5B47EA8DEA3] - 09/05/2016 - 16:09:32 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [277856] O44 - LFC:[MD5.04F7878E7017105AB782353231561749] - 09/05/2016 - 16:09:34 ---A- . (.Microsoft Corporation - Service en charge de l'indexation des conta.) -- C:\Windows\System32\PimIndexMaintenance.dll [252928] O44 - LFC:[MD5.09918925526BC0B5B823CF1A2473D909] - 09/05/2016 - 16:09:34 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM DLL.) -- C:\Windows\System32\wlanmsm.dll [412672] O44 - LFC:[MD5.998015F786B2B9EE029FB556393CF848] - 09/05/2016 - 16:09:34 ---A- . (.Microsoft Corporation - Workstation Service Client DLL.) -- C:\Windows\System32\wkscli.dll [78040] O44 - LFC:[MD5.EDDB0D726DBECDFC1DBCC6DB464E5A13] - 09/05/2016 - 16:09:37 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [146272] O44 - LFC:[MD5.B3B3BF36976D72C06C2D3524AC040643] - 09/05/2016 - 16:09:41 ---A- . (.Microsoft Corporation - Net Win32 API DLL.) -- C:\Windows\System32\netapi32.dll [81144] O44 - LFC:[MD5.DF0321E30FD7D00BC8178FC58550B8C0] - 09/05/2016 - 16:09:41 ---A- . (.Microsoft Corporation - Network Configuration API.) -- C:\Windows\System32\NetSetupApi.dll [115040] O44 - LFC:[MD5.7BD715D15060E0B6E4AF222CA7120BD1] - 09/05/2016 - 16:09:42 ---A- . (.Microsoft Corporation - EnterpriseDesktopAppManagementCSP.) -- C:\Windows\System32\EnterpriseDesktopAppMgmtCSP.dll [69632] O44 - LFC:[MD5.2804ACDD73835F051CE71DA4DB25337D] - 09/05/2016 - 16:09:42 ---A- . (.Microsoft Corporation - Server Service Client DLL.) -- C:\Windows\System32\srvcli.dll [110584] O44 - LFC:[MD5.DD57E9F1482E1A9BD2514F6D017DF58A] - 09/05/2016 - 16:09:44 ---A- . (.Microsoft Corporation - DLL for UserDataAccountsRT.) -- C:\Windows\System32\UserDataAccountApis.dll [258560] O44 - LFC:[MD5.D842C2B65E77C13273B626317A5BC5C4] - 09/05/2016 - 16:09:44 ---A- . (.Microsoft Corporation - SyncController for managing sync of mail, c.) -- C:\Windows\System32\SyncController.dll [555520] O44 - LFC:[MD5.907B65AD953EA159B573A0BCC82F6DB0] - 09/05/2016 - 16:09:47 ---A- . (.Microsoft Corporation - CEMAPI.) -- C:\Windows\System32\cemapi.dll [243712] O44 - LFC:[MD5.A6969BAD3166EDA1C79988DD782A87CF] - 09/05/2016 - 16:09:47 ---A- . (.Microsoft Corporation - DLL Windows.Networking.) -- C:\Windows\System32\Windows.Networking.dll [888320] O44 - LFC:[MD5.11C782F631D915895E56FC1CD8214E51] - 09/05/2016 - 16:09:47 ---A- . (.Microsoft Corporation - omadmapi.) -- C:\Windows\System32\omadmapi.dll [100232] O44 - LFC:[MD5.21045DC8C67DA8600529FED2A6F90D6A] - 09/05/2016 - 16:09:48 ---A- . (.Microsoft Corporation - DLL Serveur SAM.) -- C:\Windows\System32\samsrv.dll [848896] O44 - LFC:[MD5.CFF6A3799F83060D3FF538564E4264CA] - 09/05/2016 - 16:09:48 ---A- . (.Microsoft Corporation - Paramètres.) -- C:\Windows\System32\SystemSettingsAdminFlows.exe [374008] O44 - LFC:[MD5.5D88798FC34BB61C74256CDD66BDD205] - 09/05/2016 - 16:09:49 ---A- . (.Microsoft Corporation - Gestion d'optimisation de livraison.) -- C:\Windows\System32\domgmt.dll [318976] O44 - LFC:[MD5.AF13258A6E8FD57CE0B9C6BEDCDF80CB] - 09/05/2016 - 16:09:49 ---A- . (.Microsoft Corporation - Windows Runtime media device server DLL.) -- C:\Windows\System32\Windows.Media.Devices.dll [144896] O44 - LFC:[MD5.2F0FA6F60BC9A971BFBF31D1D2C8AF08] - 09/05/2016 - 16:09:50 ---A- . (.Microsoft Corporation - Bluetooth Device Association Framework Prov.) -- C:\Windows\System32\dafBth.dll [167936] O44 - LFC:[MD5.935823F79CBEDB91637B63D37E3A5A36] - 09/05/2016 - 16:09:50 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [148480] O44 - LFC:[MD5.FDBDA93BA9CD3B78060705B41BFCF92D] - 09/05/2016 - 16:09:50 ---A- . (.Microsoft Corporation - Interface utilisateur du chiffrement de lec.) -- C:\Windows\System32\fveui.dll [288256] O44 - LFC:[MD5.258BCD1FE978849EDB02D131FD1F7893] - 09/05/2016 - 16:09:50 ---A- . (.Microsoft Corporation - Security Configuration Applicator.) -- C:\Windows\System32\SecConfig.efi [989536] O44 - LFC:[MD5.5CB565C1A0A30D76D7B099EEF9654297] - 09/05/2016 - 16:09:50 ---A- . (.Microsoft Corporation - Sync data model to access accounts.) -- C:\Windows\System32\accountaccessor.dll [256000] O44 - LFC:[MD5.F432ACF44EABBE3EB98F613E1573DA6F] - 09/05/2016 - 16:09:51 ---A- . (.Microsoft Corporation - Policy Manager DLL.) -- C:\Windows\System32\policymanager.dll [334736] O44 - LFC:[MD5.62E7594513F4982B72FB6671A7B9DF0F] - 09/05/2016 - 16:09:51 ---A- . (.Microsoft Corporation - Token Broker WinRT API.) -- C:\Windows\System32\Windows.Security.Authentication.Web.Core.dll [708608] O44 - LFC:[MD5.1A490555FD330CA2764D89191177C867] - 09/05/2016 - 16:09:52 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [285696] O44 - LFC:[MD5.9FDAC1F65E074C1CF12C3E80BD5195E4] - 09/05/2016 - 16:09:52 ---A- . (.Microsoft Corporation - MDM Registration DLL.) -- C:\Windows\System32\mdmregistration.dll [176640] O44 - LFC:[MD5.B8CBDF64077D764D26E6E0255270B7BF] - 09/05/2016 - 16:09:52 ---A- . (.Microsoft Corporation - Package State Roaming.) -- C:\Windows\System32\PackageStateRoaming.dll [224256] O44 - LFC:[MD5.24146738C422814EEB2A98FF1FC5C6E1] - 09/05/2016 - 16:09:52 ---A- . (.Microsoft Corporation - Service Broker pour les connexions réseau.) -- C:\Windows\System32\ncbservice.dll [338432] O44 - LFC:[MD5.47323DE2A684895004CE63EC66FB4AB4] - 09/05/2016 - 16:09:54 ---A- . (.Microsoft Corporation - Panneau de configuration Partage de fichier.) -- C:\Windows\System32\sharemediacpl.dll [401408] O44 - LFC:[MD5.68B34C3558BEE0F6B822FA603E9AE441] - 09/05/2016 - 16:09:55 ---A- . (.Microsoft Corporation - SQM Client.) -- C:\Windows\System32\sqmapi.dll [258280] O44 - LFC:[MD5.1D00BBEEE33FA7F64A8CBFF471968CB0] - 09/05/2016 - 16:09:56 ---A- . (.Microsoft Corporation - Supports the parsing of VCard and ICal form.) -- C:\Windows\System32\VCardParser.dll [195072] O44 - LFC:[MD5.E582DA849A58524E645545FB68B6625D] - 09/05/2016 - 16:09:57 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specificatio.) -- C:\Windows\System32\Drivers\ndis.sys [1152864] O44 - LFC:[MD5.542C143FA639E4F488005E889C8A9CFD] - 09/05/2016 - 16:09:58 ---A- . (.Microsoft Corporation - MosStorage.) -- C:\Windows\System32\MosStorage.dll [74752] O44 - LFC:[MD5.B232CE503C6666873E7B9E4BA769C524] - 09/05/2016 - 16:09:58 ---A- . (.Microsoft Corporation - policymanagerprecheck.) -- C:\Windows\System32\policymanagerprecheck.dll [92160] O44 - LFC:[MD5.497EB340D13433E8FE53625103E0C2D0] - 09/05/2016 - 16:09:59 ---A- . (.Microsoft Corporation - API WinRT d’authentification Web.) -- C:\Windows\System32\AuthBroker.dll [146432] O44 - LFC:[MD5.D3406F98BD98633780820C5EDBA9A5B4] - 09/05/2016 - 16:09:59 ---A- . (.Microsoft Corporation - AboveLockAppHost.) -- C:\Windows\System32\AboveLockAppHost.dll [166400] O44 - LFC:[MD5.64D4F5DE44B64B8284BADE5819B5195A] - 09/05/2016 - 16:10:00 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [394080] O44 - LFC:[MD5.B58CE40AC84F1B068A2004400E68245B] - 09/05/2016 - 16:10:00 ---A- . (.Microsoft Corporation - MDM App Installer.) -- C:\Windows\System32\MDMAppInstaller.exe [87040] O44 - LFC:[MD5.7E0078F1EFEB6F8F47CF85C1D73C7EBC] - 09/05/2016 - 16:10:00 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [328192] O44 - LFC:[MD5.AA5E227F977D03198227E09804394A24] - 09/05/2016 - 16:10:00 ---A- . (.Microsoft Corporation - Visual Element DataLayer Helpers.) -- C:\Windows\System32\VEDataLayerHelpers.dll [127488] =>PUP.SearchDonkey O44 - LFC:[MD5.C8B840675B83DC8A257B075BFE5F9357] - 09/05/2016 - 16:10:01 ---A- . (.Microsoft Corporation - Credential Guard.) -- C:\Windows\System32\LsaIso.exe [261376] O44 - LFC:[MD5.9E9D58F5E1702955B2F4D62996F80E8E] - 09/05/2016 - 16:10:01 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [378208] O44 - LFC:[MD5.7890990143812A452858058BBD52149F] - 09/05/2016 - 16:10:02 ---A- . (.Microsoft Corporation - Cache de miniatures Microsoft.) -- C:\Windows\System32\thumbcache.dll [297472] O44 - LFC:[MD5.0D7BB44BFFFA4E153F4EA1E05522D2C3] - 09/05/2016 - 16:10:02 ---A- . (.Microsoft Corporation - Launch Windows App.) -- C:\Windows\System32\LaunchWinApp.exe [37376] O44 - LFC:[MD5.A4411C522D41707D5BCA817A5BB9E30B] - 09/05/2016 - 16:10:03 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [114688] O44 - LFC:[MD5.703430E9FFF072334B247B5E88428331] - 09/05/2016 - 16:10:04 ---A- . (.Microsoft Corporation - Bibliothèque cliente d’archivage sécurisé d.) -- C:\Windows\System32\vaultcli.dll [288768] O44 - LFC:[MD5.E0932D924DA7C363F40E5B90DC9D2669] - 09/05/2016 - 16:10:05 ---A- . (.Microsoft Corporation - FLV Property Handler DLL.) -- C:\Windows\System32\flvprophandler.dll [129536] O44 - LFC:[MD5.492FB85E61768950CDD27C87AED6E8FA] - 09/05/2016 - 16:10:05 ---A- . (.Microsoft Corporation - Service d’infrastructure des tâches en arri.) -- C:\Windows\System32\bisrv.dll [587776] O44 - LFC:[MD5.5066575F39AEECAA7A9E03C0FA007A90] - 09/05/2016 - 16:10:05 ---A- . (.Microsoft Corporation - WinRT Windows Inking DLL.) -- C:\Windows\System32\Windows.UI.Input.Inking.dll [881664] O44 - LFC:[MD5.B82C04128A96A05139F9F58ED07D0DB2] - 09/05/2016 - 16:10:06 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3351040] O44 - LFC:[MD5.61C99C1A4BB5EE14563ED321A859ACB6] - 09/05/2016 - 16:10:07 ---A- . (.Microsoft Corporation - DLL for ChatRT.) -- C:\Windows\System32\ChatApis.dll [726528] O44 - LFC:[MD5.9A3E17CDB177913C2A111C80F3D0DBB4] - 09/05/2016 - 16:10:07 ---A- . (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [686976] O44 - LFC:[MD5.6A0745D04DFB6E37A6D0FEE339A0B742] - 09/05/2016 - 16:10:07 ---A- . (.Microsoft Corporation - Resource Manager PSM Service Extension.) -- C:\Windows\System32\PsmServiceExtHost.dll [556032] O44 - LFC:[MD5.BE8C62B0B7BBA8F1152A6A7FCF248404] - 09/05/2016 - 16:10:07 ---A- . (.Microsoft Corporation - Tâche du client de configuration.) -- C:\Windows\System32\configurationclient.dll [915456] O44 - LFC:[MD5.28B8E1C6CBCF9FFE2FABFF3160C26ADF] - 09/05/2016 - 16:10:07 ---A- . (.Microsoft Corporation - USB Function Driver Class Extension.) -- C:\Windows\System32\Drivers\ufx01000.sys [258912] O44 - LFC:[MD5.2BCCAEB08EAF8C5D6BD024B3F020D0EA] - 09/05/2016 - 16:10:08 ---A- . (.Microsoft Corporation - DLL for EmailRT.) -- C:\Windows\System32\EmailApis.dll [790528] O44 - LFC:[MD5.553F19DC6F3F73545CB17FCD7A8AE37B] - 09/05/2016 - 16:10:08 ---A- . (.Microsoft Corporation - Service de protection Microsoft.) -- C:\Windows\System32\MPSSVC.dll [870912] O44 - LFC:[MD5.51449675B00C62F970B497A2FBF1BC46] - 09/05/2016 - 16:10:09 ---A- . (.Microsoft Corporation - DLL du client Web.) -- C:\Windows\System32\Windows.Web.dll [787456] O44 - LFC:[MD5.087FF4F0D29833949962F8EE60DA345E] - 09/05/2016 - 16:10:09 ---A- . (.Microsoft Corporation - InstallAgent.) -- C:\Windows\System32\InstallAgent.exe [199168] O44 - LFC:[MD5.0B3B0C1D86050355676640488FA897D3] - 09/05/2016 - 16:10:09 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [430944] O44 - LFC:[MD5.4C5D035670EB045123DCF87EE2FDB33B] - 09/05/2016 - 16:10:17 ---A- . (.Microsoft Corporation - Legacy Phone Enrollment API BackCompat Shim.) -- C:\Windows\System32\enrollmentapi.dll [162816] O44 - LFC:[MD5.7C20F3EC0BA5ACB8ED40CDEF41B0AC56] - 09/05/2016 - 16:10:17 ---A- . (.Microsoft Corporation - Task Scheduler COM API.) -- C:\Windows\System32\taskschd.dll [779384] O44 - LFC:[MD5.C1C169EFA8E5E30A0A521C0409CAC153] - 09/05/2016 - 16:10:18 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.exe [874968] O44 - LFC:[MD5.A74CEC306AB99D74559F7075EDB60A9B] - 09/05/2016 - 16:10:18 ---A- . (.Microsoft Corporation - Fichier DLL de l’interface utilisateur des.) -- C:\Windows\System32\werui.dll [451584] O44 - LFC:[MD5.215C9C65601378F56BEECDECBD1EF4AE] - 09/05/2016 - 16:10:19 ---A- . (.Microsoft Corporation - AppX All User Store DLL.) -- C:\Windows\System32\AppxAllUserStore.dll [216416] O44 - LFC:[MD5.E15D10FA246ADC4DC59B93C13F417AA3] - 09/05/2016 - 16:10:20 ---A- . (.Microsoft Corporation - Cred Prov Data Model.) -- C:\Windows\System32\CredProvDataModel.dll [440320] O44 - LFC:[MD5.CD8C4364BC6040C0226638EF37E13CBB] - 09/05/2016 - 16:10:20 ---A- . (.Microsoft Corporation - DLL du client pour l'accès aux informations.) -- C:\Windows\System32\CallHistoryClient.dll [161280] O44 - LFC:[MD5.AC71C0A77ED618382D5422C6AB1747E4] - 09/05/2016 - 16:10:20 ---A- . (.Microsoft Corporation - Device Management Update Migrator DLL.) -- C:\Windows\System32\mdmmigrator.dll [169472] O44 - LFC:[MD5.2362BCA98EAF8CE0487664467F720861] - 09/05/2016 - 16:10:21 ---A- . (.Microsoft Corporation - Process State Manager (PSM) Service.) -- C:\Windows\System32\psmsrv.dll [178176] O44 - LFC:[MD5.E2B2525EF375D716E0DE6FE8F3ADCEDB] - 09/05/2016 - 16:10:22 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [365568] O44 - LFC:[MD5.8EC4F381818F8A073DEC52C6D1ED9C76] - 09/05/2016 - 16:10:22 ---A- . (.Microsoft Corporation - API for MDM Enrollment.) -- C:\Windows\System32\DeviceEnroller.exe [86016] O44 - LFC:[MD5.B0236F0FB7402381A50F2EBF031C49CF] - 09/05/2016 - 16:10:23 ---A- . (.Microsoft Corporation - Application de démarrage Reprise à partir d.) -- C:\Windows\System32\winresume.efi [1030416] O44 - LFC:[MD5.C78D43083400B8FAE408FEB1E99F9DA8] - 09/05/2016 - 16:10:23 ---A- . (.Microsoft Corporation - Application du contrôleur de médias numériq.) -- C:\Windows\System32\WMPDMC.exe [1847808] O44 - LFC:[MD5.A34D9229F8D3A7164247213C9A283DB0] - 09/05/2016 - 16:10:24 ---A- . (.Microsoft Corporation - DLL d’affichage Wi-Fi.) -- C:\Windows\System32\WiFiDisplay.dll [189952] O44 - LFC:[MD5.92291BFE95AD37CF486BD3E4B31F746B] - 09/05/2016 - 16:10:24 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.exe [1141504] O44 - LFC:[MD5.083A727D784009F9CCFB120C7841B7AF] - 09/05/2016 - 16:10:24 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2403680] O44 - LFC:[MD5.8024D7BDD26E9C1280B8B6D605488179] - 09/05/2016 - 16:10:25 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [848896] O44 - LFC:[MD5.F374C27099807E99A156953F8416D34A] - 09/05/2016 - 16:10:25 ---A- . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [361472] O44 - LFC:[MD5.DB2911201B4AAC79AF712C5551F0C41D] - 09/05/2016 - 16:10:25 ---A- . (.Microsoft Corporation - Windows Networking Connectivity Runtime DLL.) -- C:\Windows\System32\Windows.Networking.Connectivity.dll [688640] O44 - LFC:[MD5.F7391A45172C10D8B79A239CDD8BA88B] - 09/05/2016 - 16:10:30 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll [209408] O44 - LFC:[MD5.F279536122B83FD0D8E158AA753E1B7C] - 09/05/2016 - 16:10:30 ---A- . (.Microsoft Corporation - Game Input Protocol Driver.) -- C:\Windows\System32\Drivers\xboxgip.sys [238592] O44 - LFC:[MD5.469441BAE3FF8A16826FC62C51EF5E18] - 09/05/2016 - 16:10:30 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [563552] O44 - LFC:[MD5.42C6780C909074A1879F8BBA34920FE6] - 09/05/2016 - 16:10:31 ---A- . (.Microsoft Corporation - Shared Start Model InProc Server.) -- C:\Windows\System32\SharedStartModel.dll [988160] O44 - LFC:[MD5.6E76BB89EED6C2BD7B1E7B5F9A1C41F0] - 09/05/2016 - 16:10:32 ---A- . (.Microsoft Corporation - Media Foundation FLAC Decoder.) -- C:\Windows\System32\MSFlacDecoder.dll [320000] O44 - LFC:[MD5.EF953237B34D1468B81A6AB260A3C524] - 09/05/2016 - 16:10:32 ---A- . (.Microsoft Corporation - OS Loader.) -- C:\Windows\System32\winload.efi [1317640] O44 - LFC:[MD5.B174232356859EBB0CF8FA950119DA1E] - 09/05/2016 - 16:10:33 ---A- . (.Microsoft Corporation - Device Census.) -- C:\Windows\System32\DeviceCensus.exe [159232] O44 - LFC:[MD5.AB3F697651DDAE1C424C9B2412EFBB59] - 09/05/2016 - 16:10:34 ---A- . (.Microsoft Corporation - DLL Windows.Devices.Bluetooth.) -- C:\Windows\System32\Windows.Devices.Bluetooth.dll [1239552] O44 - LFC:[MD5.82A4EFF3567A00EAAA5929C64C42F22D] - 09/05/2016 - 16:10:35 ---A- . (.Microsoft Corporation - Downloaded Maps Manager Core.) -- C:\Windows\System32\moshostcore.dll [269824] O44 - LFC:[MD5.28343B7C30E6AF073B02288EB579D984] - 09/05/2016 - 16:10:35 ---A- . (.Microsoft Corporation - Media Foundation Video Processor.) -- C:\Windows\System32\msvproc.dll [476728] O44 - LFC:[MD5.335995302980B83CA6B1974A84AC6009] - 09/05/2016 - 16:10:49 ---A- . (.Microsoft Corporation - Windows Shell Broker.) -- C:\Windows\System32\Windows.Internal.Shell.Broker.dll [730344] O44 - LFC:[MD5.87F0EA669FB37C03207A8870C3B91174] - 09/05/2016 - 16:10:51 ---A- . (.Microsoft Corporation - DLL Windows.Web.Http.) -- C:\Windows\System32\Windows.Web.Http.dll [1410560] O44 - LFC:[MD5.3CE8EBC0B1A74A7AC639C5FAFC549CCA] - 09/05/2016 - 16:10:52 ---A- . (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppXDeploymentClient.dll [436736] O44 - LFC:[MD5.C1FD242DB2679B7E8F9D54955131A603] - 09/05/2016 - 16:10:52 ---A- . (.Microsoft Corporation - Jupiter Map Control.) -- C:\Windows\System32\JpMapControl.dll [1056256] O44 - LFC:[MD5.48E90F12346EE70764CEE435826ABD31] - 09/05/2016 - 16:10:52 ---A- . (.Microsoft Corporation - Media Foundation MKV Media Source and Sink.) -- C:\Windows\System32\mfmkvsrcsnk.dll [493568] O44 - LFC:[MD5.7ECAE31725C1DC35CC448FA8D0EA09D9] - 09/05/2016 - 16:10:52 ---A- . (.Microsoft Corporation - RDXTaskFactory.) -- C:\Windows\System32\RDXTaskFactory.dll [324608] O44 - LFC:[MD5.D20C52607024BD08A88CF1CA6B339C9B] - 09/05/2016 - 16:10:53 ---A- . (.Microsoft Corporation - Pilote de spouleur Windows.) -- C:\Windows\System32\winspool.drv [517632] O44 - LFC:[MD5.6072C7DB85FD3FE8D308EE44865C04DE] - 09/05/2016 - 16:10:53 ---A- . (.Microsoft Corporation - Wi-Fi Sync Handler.) -- C:\Windows\System32\wifiprofilessettinghandler.dll [305664] O44 - LFC:[MD5.8790833B243AB6DD22A1F86FFB26B689] - 09/05/2016 - 16:10:54 ---A- . (.Microsoft Corporation - Fonctions de vérification de l’orthographe.) -- C:\Windows\System32\MsSpellCheckingFacility.dll [1052160] O44 - LFC:[MD5.C3F15E167CB84E2E6027AF17D49D5904] - 09/05/2016 - 16:10:55 ---A- . (.Microsoft Corporation - Effectuer une conversion de type (transtypa.) -- C:\Windows\System32\MDEServer.exe [372224] O44 - LFC:[MD5.3C994D13A234D0E33D592CDF55F09B01] - 09/05/2016 - 16:10:55 ---A- . (.Microsoft Corporation - MessagingDataModel2.) -- C:\Windows\System32\MessagingDataModel2.dll [628736] O44 - LFC:[MD5.167176E3A8B095C2E807D27CBE6AB0D3] - 09/05/2016 - 16:10:56 ---A- . (.Microsoft Corporation - MSXML 3.0.) -- C:\Windows\System32\msxml3.dll [1902592] O44 - LFC:[MD5.1E1631970DDFD63EDD4483D33E18EC89] - 09/05/2016 - 16:10:57 ---A- . (.Microsoft Corporation - LockAppHost.) -- C:\Windows\System32\LockAppHost.exe [300104] O44 - LFC:[MD5.C5DEEC4F7ED591D1E322899ADC4EE45F] - 09/05/2016 - 16:10:57 ---A- . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [207360] O44 - LFC:[MD5.281C61D772D6F267FEABDF71E38C621C] - 09/05/2016 - 16:10:57 ---A- . (.Microsoft Corporation - Token Broker.) -- C:\Windows\System32\TokenBroker.dll [821760] O44 - LFC:[MD5.7E81E3E0D7F83BFE3C3975020B6C7F12] - 09/05/2016 - 16:10:58 ---A- . (.Microsoft Corporation - Service Broker pour les événements horaires.) -- C:\Windows\System32\TimeBrokerServer.dll [163840] O44 - LFC:[MD5.9CB84B6398F10BCF0CE357F2C7B6056D] - 09/05/2016 - 16:10:59 ---A- . (.Microsoft Corporation - Device Broker And Policy COM Server.) -- C:\Windows\System32\deviceaccess.dll [286720] O44 - LFC:[MD5.7ED9629564A44BF0ECAEDEDE7B1BC1FF] - 09/05/2016 - 16:10:59 ---A- . (.Microsoft Corporation - NMAA.) -- C:\Windows\System32\NMAA.dll [988160] O44 - LFC:[MD5.1F3D69B0AE210874DDC300C3EF1C9CCD] - 09/05/2016 - 16:11:00 ---A- . (.Microsoft Corporation - Accounts RT utilities for mail, contacts, c.) -- C:\Windows\System32\AccountsRt.dll [438784] O44 - LFC:[MD5.85EE46E85C3E76809BC454A50564ECD6] - 09/05/2016 - 16:11:00 ---A- . (.Microsoft Corporation - Enroll Engine DLL.) -- C:\Windows\System32\dmenrollengine.dll [418304] O44 - LFC:[MD5.63C3F74DC398A1C1A77E39DFB9C312CA] - 09/05/2016 - 16:11:00 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [1089888] O44 - LFC:[MD5.333F190DFAE2E1EE500234B78ADDA297] - 09/05/2016 - 16:11:01 ---A- . (.Microsoft Corporation - DLL du rapport d’erreurs Windows.) -- C:\Windows\System32\wer.dll [640472] O44 - LFC:[MD5.728146F5877FD08DE65B21817ABB19A8] - 09/05/2016 - 16:11:01 ---A- . (.Microsoft Corporation - Windows BitLocker Drive Encryption API.) -- C:\Windows\System32\fveapi.dll [765952] O44 - LFC:[MD5.FF07BE14ED82E218C3EEE7C986118A2E] - 09/05/2016 - 16:11:02 ---A- . (.Microsoft Corporation - DLL du moniteur de port d’impression dynami.) -- C:\Windows\System32\usbmon.dll [307712] O44 - LFC:[MD5.717FDDACE38C314CA5A517E12162CC6D] - 09/05/2016 - 16:11:02 ---A- . (.Microsoft Corporation - QuickActionsDataModel.) -- C:\Windows\System32\QuickActionsDataModel.dll [216576] O44 - LFC:[MD5.28CFFDB411375B2BBB0EBF295ABAEF29] - 09/05/2016 - 16:11:02 ---A- . (.Microsoft Corporation - Windows Update Agent plugin for Windows.) -- C:\Windows\System32\wuuhext.dll [382464] O44 - LFC:[MD5.53AC4B2658807691D2A485EE0F8A50E9] - 09/05/2016 - 16:11:02 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM Security Mo.) -- C:\Windows\System32\wlansec.dll [463360] O44 - LFC:[MD5.D1241DFC397FA8CCFB4BB4B63AAD31AC] - 09/05/2016 - 16:11:03 ---A- . (.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\System32\spoolsv.exe [755712] O44 - LFC:[MD5.BEF109D45139E2646C116DD9B6E53E3C] - 09/05/2016 - 16:11:03 ---A- . (.Microsoft Corporation - DLL des services Net Logon.) -- C:\Windows\System32\netlogon.dll [847360] O44 - LFC:[MD5.69B6B69C95E1FBDC796F5B2019A8B24D] - 09/05/2016 - 16:11:03 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [791744] O44 - LFC:[MD5.3F4C879B631C77878B42F89990518F72] - 09/05/2016 - 16:11:03 ---A- . (.Microsoft Corporation - MapConfiguration.) -- C:\Windows\System32\MapConfiguration.dll [460288] O44 - LFC:[MD5.E5421101B84007FBC3D11501A6887F42] - 09/05/2016 - 16:11:03 ---A- . (.Microsoft Corporation - Network Configuration API.) -- C:\Windows\System32\NetSetupShim.dll [471552] O44 - LFC:[MD5.B7C13F4BE0263F3A8303404A96F4246D] - 09/05/2016 - 16:11:04 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [358752] O44 - LFC:[MD5.5CBB046266CD7CD1593354C93BCDBE91] - 09/05/2016 - 16:11:04 ---A- . (.Microsoft Corporation - Modern Execution Server.) -- C:\Windows\System32\modernexecserver.dll [870400] O44 - LFC:[MD5.45D26646E3AD737E5DE3DB91CCCE7DBA] - 09/05/2016 - 16:11:04 ---A- . (.Microsoft Corporation - Service de capteur.) -- C:\Windows\System32\SensorService.dll [339968] O44 - LFC:[MD5.1AE232355968BBCA3787B5B35DCA0FD0] - 09/05/2016 - 16:11:04 ---A- . (.Microsoft Corporation - StoreAgent.) -- C:\Windows\System32\StoreAgent.dll [550912] O44 - LFC:[MD5.6D31FB3E4263749BD994B3895322D799] - 09/05/2016 - 16:11:05 ---A- . (.Microsoft Corporation - Bibliothèque de création de packages d’appl.) -- C:\Windows\System32\AppxPackaging.dll [982016] O44 - LFC:[MD5.751F5B6AF16546162E06211AF1FC2979] - 09/05/2016 - 16:11:07 ---A- . (.Microsoft Corporation - Media Foundation Direct Show wrapper DLL.) -- C:\Windows\System32\mfds.dll [794888] O44 - LFC:[MD5.9065EB3B7E982A5370790BF729EDBBA7] - 09/05/2016 - 16:11:07 ---A- . (.Microsoft Corporation - Network Configuration Engine.) -- C:\Windows\System32\NetSetupEngine.dll [696664] O44 - LFC:[MD5.62300878366762EABAC7834543964A6E] - 09/05/2016 - 16:11:07 ---A- . (.Microsoft Corporation - Serveur de modèles de données de vignette.) -- C:\Windows\System32\tileobjserver.dll [498688] O44 - LFC:[MD5.F7526C133AC265F283012E9CD751F873] - 09/05/2016 - 16:11:07 ---A- . (.Microsoft Corporation - Service de licences de client.) -- C:\Windows\System32\ClipSVC.dll [625000] O44 - LFC:[MD5.46E51F35566F8B73540D56EAA0A97E46] - 09/05/2016 - 16:11:08 ---A- . (.Microsoft Corporation - Windows.UI.Core.TextInput dll.) -- C:\Windows\System32\Windows.UI.Core.TextInput.dll [175616] O44 - LFC:[MD5.9BE5ECE2F17B3BEDE6FDE1175BD23266] - 09/05/2016 - 16:11:09 ---A- . (.Microsoft Corporation - DLL du serveur Windows Runtime MediaControl.) -- C:\Windows\System32\Windows.Media.MediaControl.dll [376536] O44 - LFC:[MD5.60C04811AC0BB0BFC5E00D293B8F4464] - 09/05/2016 - 16:11:09 ---A- . (.Microsoft Corporation - Usermode Font Driver Host.) -- C:\Windows\System32\fontdrvhost.exe [630632] O44 - LFC:[MD5.0271B5C23A375E008C34024088D0F396] - 09/05/2016 - 16:11:09 ---A- . (.Microsoft Corporation - Windows Speech Runtime DLL.) -- C:\Windows\System32\Windows.Media.Speech.dll [1575936] O44 - LFC:[MD5.4098813724BDAC23A74DD6E75CA360CC] - 09/05/2016 - 16:11:10 ---A- . (.Microsoft Corporation - Windows.Internal.Bluetooth DLL.) -- C:\Windows\System32\Windows.Internal.Bluetooth.dll [450560] O44 - LFC:[MD5.BC767AD01E4DAFD08C21D5D07CC290C9] - 09/05/2016 - 16:11:11 ---A- . (.Microsoft Corporation - Miracast Media Foundation Source DLL.) -- C:\Windows\System32\MCRecvSrc.dll [567808] O44 - LFC:[MD5.453740989239803FE363FF8B40EA2E08] - 09/05/2016 - 16:11:12 ---A- . (.Microsoft Corporation - DLL du service de configuration automatique.) -- C:\Windows\System32\wlansvc.dll [2295808] O44 - LFC:[MD5.518A992A6700A86A47F79388F91737C0] - 09/05/2016 - 16:11:12 ---A- . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1090048] O44 - LFC:[MD5.610D0502400BDAFD4BB8EA10713234C7] - 09/05/2016 - 16:11:15 ---A- . (.Microsoft Corporation - Routeur SMS haut débit mobile.) -- C:\Windows\System32\SMSRouter.dll [74240] O44 - LFC:[MD5.B37F21B4C25BF10605A196791F93E324] - 09/05/2016 - 16:11:15 ---A- . (.Microsoft Corporation - Service de gestion des informations d’ident.) -- C:\Windows\System32\vaultsvc.dll [360448] O44 - LFC:[MD5.9C4C3EB6A2371A2038E2BB3A9D54CDE0] - 09/05/2016 - 16:11:39 ---A- . (.Microsoft Corporation - DLL MFCaptureEngine.) -- C:\Windows\System32\MFCaptureEngine.dll [498448] O44 - LFC:[MD5.3932940E0DB7A31B00A415F6B3D3E242] - 09/05/2016 - 16:11:39 ---A- . (.Microsoft Corporation - DLL pour CalendarRT.) -- C:\Windows\System32\AppointmentApis.dll [700416] O44 - LFC:[MD5.E9A0D466F6D8EC349DB526146618BCB6] - 09/05/2016 - 16:11:51 ---A- . (.Microsoft Corporation - DLL du service de gestion des connexions Wi.) -- C:\Windows\System32\wcmsvc.dll [606720] O44 - LFC:[MD5.D12D3DD397A35EF06CDF41C1A9E3EE45] - 09/05/2016 - 16:12:06 ---A- . (.Microsoft Corporation - Setting Synchronization.) -- C:\Windows\System32\SettingSync.dll [613376] O44 - LFC:[MD5.1BF000CFA56FD272B4ECAC167CDF6A8F] - 09/05/2016 - 16:12:57 ---A- . (.Microsoft Corporation - Credential Prompt User Experience.) -- C:\Windows\System32\Windows.UI.Cred.dll [1211904] O44 - LFC:[MD5.BAEFEFB04D7F9A554C029FBA52A02BB8] - 09/05/2016 - 16:13:00 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\System32\dxgi.dll [652392] O44 - LFC:[MD5.32F3BA2C4849ED727508C021F999E147] - 09/05/2016 - 16:13:06 ---A- . (.Microsoft Corporation - Windows Media Runtime DLL.) -- C:\Windows\System32\Windows.Media.dll [3428864] O44 - LFC:[MD5.C59CF7385D070450643D61C8ADEFFE3C] - 09/05/2016 - 16:13:10 ---A- . (.Microsoft Corporation - Speech Client Communication To Backend Spee.) -- C:\Windows\System32\RemoteNaturalLanguage.dll [958976] O44 - LFC:[MD5.186BAF9C9F422E6B784E4C990585E2E3] - 09/05/2016 - 16:13:11 ---A- . (.Microsoft Corporation - Windows Runtime UI Foundation DLL.) -- C:\Windows\System32\Windows.UI.dll [673792] O44 - LFC:[MD5.92840BF0817C457BB011220BA21BAE9B] - 09/05/2016 - 16:13:22 ---A- . (.Microsoft Corporation - AppX Deployment Extensions DLL.) -- C:\Windows\System32\AppXDeploymentExtensions.dll [1832448] O44 - LFC:[MD5.EA30B6E587862DF15E35525C60CCAFA9] - 09/05/2016 - 16:13:23 ---A- . (.Microsoft Corporation - Gestionnaire de fenêtrage Microsoft.) -- C:\Windows\System32\uDWM.dll [838144] O44 - LFC:[MD5.CB902A15DD21B363FECA5DCCF34F5C57] - 09/05/2016 - 16:13:24 ---A- . (.Microsoft Corporation - Magasin unifié.) -- C:\Windows\System32\Unistore.dll [1224704] O44 - LFC:[MD5.BFE2669F7B0EB1EBAF587490E9E591AA] - 09/05/2016 - 16:13:24 ---A- . (.Microsoft Corporation - Phone-specific Component Provider for Windo.) -- C:\Windows\System32\PhoneProviders.dll [630272] O44 - LFC:[MD5.0C015924C6DA5368E6B102CC597AC640] - 09/05/2016 - 16:13:24 ---A- . (.Microsoft Corporation - Shell UI.) -- C:\Windows\System32\Windows.UI.Shell.dll [1390080] O44 - LFC:[MD5.21098276051C6BEBBA7C8EB79AAF4E22] - 09/05/2016 - 16:13:25 ---A- . (.Microsoft Corporation - DLL for ContactsRT.) -- C:\Windows\System32\ContactApis.dll [938496] O44 - LFC:[MD5.96BAB1499995B85B91C312BA5114CA03] - 09/05/2016 - 16:13:25 ---A- . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll [1322248] O44 - LFC:[MD5.D169A4C1EDA2F63545628420014F2FE3] - 09/05/2016 - 16:13:27 ---A- . (.Microsoft Corporation - Hôte Microsoft WWA.) -- C:\Windows\System32\WWAHost.exe [808800] O44 - LFC:[MD5.04BB77409644685810DBD63D86F5720E] - 09/05/2016 - 16:13:28 ---A- . (.Microsoft Corporation - Microsoft Passport Key Enumeration Manager.) -- C:\Windows\System32\ngckeyenum.dll [99328] O44 - LFC:[MD5.C64B693DF26EB7BFF25F9BAD8B54D571] - 09/05/2016 - 16:13:28 ---A- . (.Microsoft Corporation - Service Microsoft Passport.) -- C:\Windows\System32\ngcsvc.dll [649216] O44 - LFC:[MD5.F99D8BF6ACA4728C9E285BD161C22BCB] - 09/05/2016 - 16:13:31 ---A- . (.Microsoft Corporation - Map Control Core.) -- C:\Windows\System32\MapControlCore.dll [938496] O44 - LFC:[MD5.49FDB6B2E192AD639F09EF90C32A0395] - 09/05/2016 - 16:13:31 ---A- . (.Microsoft Corporation - Maps Store Dll.) -- C:\Windows\System32\MapsStore.dll [852480] O44 - LFC:[MD5.8AF0CBE3FC6129C42D7A2A73B681F226] - 09/05/2016 - 16:13:32 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll [1118208] O44 - LFC:[MD5.D79FFE2219AE3BA3B871BA2D39B16519] - 09/05/2016 - 16:13:33 ---A- . (.Microsoft Corporation - Media Foundation ASF Source and Sink DLL.) -- C:\Windows\System32\mfasfsrcsnk.dll [1152328] O44 - LFC:[MD5.E8A201E7ACF39359D99EEDD3D059E5AC] - 09/05/2016 - 16:13:33 ---A- . (.Microsoft Corporation - Programme principal d’automation de l’inter.) -- C:\Windows\System32\UIAutomationCore.dll [1395712] O44 - LFC:[MD5.1C8474EF741ABA77E53BE94DE8E89D26] - 09/05/2016 - 16:13:33 ---A- . (.Microsoft Corporation - Setting Synchronization Core.) -- C:\Windows\System32\SettingSyncCore.dll [990720] O44 - LFC:[MD5.6870232D80480DA4FF1FBE3373FCA06E] - 09/05/2016 - 16:13:40 ---A- . (.Microsoft Corporation - Screen Reader Helper DLL.) -- C:\Windows\System32\SRH.dll [965632] O44 - LFC:[MD5.0088614FE67298E6996AD19B05AE90C7] - 09/05/2016 - 16:13:51 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\KernelBase.dll [1997328] O44 - LFC:[MD5.C9BFE1D6420BFADB249162039C321F63] - 09/05/2016 - 16:14:01 ---A- . (.Microsoft Corporation - Windows Runtime Window Media Audio server D.) -- C:\Windows\System32\Windows.Media.Audio.dll [1131520] O44 - LFC:[MD5.15D174719872A30F2FDD6B5B1B8BA5D9] - 09/05/2016 - 16:14:57 ---A- . (.Microsoft Corporation - Suivi des diagnostics Microsoft Windows.) -- C:\Windows\System32\diagtrack.dll [1613664] O44 - LFC:[MD5.5DFAF8BE5A3CABAABF6795BC09EB7876] - 09/05/2016 - 16:17:48 ---A- . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [948736] O44 - LFC:[MD5.D8F3E820C39808C00A687AED554D23C0] - 09/05/2016 - 16:17:50 ---A- . (.Microsoft Corporation - DLL d’exécution du Windows Store.) -- C:\Windows\System32\Windows.ApplicationModel.Store.dll [859136] O44 - LFC:[MD5.BE7D6EA3650F1C25076335A9C1F3D59B] - 09/05/2016 - 16:17:51 ---A- . (.Microsoft Corporation - Optimisation de livraison.) -- C:\Windows\System32\dosvc.dll [1098240] O44 - LFC:[MD5.EFA3EFE172FDA2EE7C3F64F17277181C] - 09/05/2016 - 16:17:54 ---A- . (.Microsoft Corporation - Bing Map Control.) -- C:\Windows\System32\BingMaps.dll [7199232] O44 - LFC:[MD5.DB0C2721BE0E21EAA0C4C70B07F481DE] - 09/05/2016 - 16:18:27 ---A- . (.Microsoft Corporation - Moteur de stockage extensible (ESE) pour Mi.) -- C:\Windows\System32\esent.dll [3078144] O44 - LFC:[MD5.DAB53783AD08864E873A6B7B874D1783] - 09/05/2016 - 16:18:30 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [3671888] O44 - LFC:[MD5.7F7591CCC146EC7D9EB77C1277D605F4] - 09/05/2016 - 16:18:32 ---A- . (.Microsoft Corporation - Service de configuration automatique WWAN.) -- C:\Windows\System32\wwansvc.dll [1213440] O44 - LFC:[MD5.350CFCC870E30BEE151F3DFB83BD0178] - 09/05/2016 - 16:18:39 ---A- . (.Microsoft Corporation - Media Foundation Source and Sink DLL.) -- C:\Windows\System32\mfsrcsnk.dll [1017032] O44 - LFC:[MD5.3EEB5260D4321F7F124955E1D228FDF2] - 09/05/2016 - 16:18:44 ---A- . (.Microsoft Corporation - DisplayManager.) -- C:\Windows\System32\DisplayManager.dll [274944] O44 - LFC:[MD5.5B5F518D6487FDCC9C40A74D3C72B8EE] - 09/05/2016 - 16:18:44 ---A- . (.Microsoft Corporation - Windows Accounts Control.) -- C:\Windows\System32\Windows.AccountsControl.dll [828928] O44 - LFC:[MD5.218CEC10714AF029BF4D8BCE600AD1DA] - 09/05/2016 - 16:18:47 ---A- . (.Microsoft Corporation - Media Foundation MPEG2 Source and Sink DLL.) -- C:\Windows\System32\mfmpeg2srcsnk.dll [819648] O44 - LFC:[MD5.290D24F50396B379338790B8E8D1C503] - 09/05/2016 - 16:18:48 ---A- . (.Microsoft Corporation - Screen Reader Helper DLL.) -- C:\Windows\System32\SRHInproc.dll [1714688] O44 - LFC:[MD5.2F844EBBB6BAA883BDDC472C44B738AE] - 09/05/2016 - 16:18:49 ---A- . (.Microsoft Corporation - Pilote du noyau Base Win32k.) -- C:\Windows\System32\win32kbase.sys [1388544] O44 - LFC:[MD5.B471A4DA6F8DFF957B6F109FA182C366] - 09/05/2016 - 16:19:04 ---A- . (.Microsoft Corporation - System Settings Admin Flow XAML UI Implemen.) -- C:\Windows\System32\SystemSettingsThresholdAdminFlowUI.dll [3575296] O44 - LFC:[MD5.19BD8A88AAC580592668B070AC0727D9] - 09/05/2016 - 16:19:07 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [2152280] O44 - LFC:[MD5.669F733F85FEBE6F7438C66CBF7FD3FD] - 09/05/2016 - 16:19:08 ---A- . (.Microsoft Corporation - DLL source et récepteur MPEG4 Media Foundat.) -- C:\Windows\System32\mfmp4srcsnk.dll [1062480] O44 - LFC:[MD5.EA195B8BC11C1CDB313CFD456EFFA0E9] - 09/05/2016 - 16:19:08 ---A- . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [997376] O44 - LFC:[MD5.7118498F6E48758A2EF5A7D1982E2B62] - 09/05/2016 - 16:19:09 ---A- . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1139712] O44 - LFC:[MD5.6855984AA46D2452A7C518787E1F2643] - 09/05/2016 - 16:19:19 ---A- . (.Microsoft Corporation - The engine that syncs ActiveSync accounts.) -- C:\Windows\System32\ActiveSyncProvider.dll [1996288] O44 - LFC:[MD5.93E597D2B5C653E94680E8B8E1C59B36] - 09/05/2016 - 16:19:21 ---A- . (.Microsoft Corporation - API for MDM Enrollment DLL.) -- C:\Windows\System32\enterprisecsps.dll [641536] O44 - LFC:[MD5.0F3C165B71F8140F50A1DB5DE3E6D695] - 09/05/2016 - 16:19:21 ---A- . (.Microsoft Corporation - DLL du serveur de déploiement d’AppX.) -- C:\Windows\System32\AppXDeploymentServer.dll [2158592] O44 - LFC:[MD5.E5C3042B68D4EA89B3C52E150E553DA0] - 09/05/2016 - 16:19:21 ---A- . (.Microsoft Corporation - Services de stockage.) -- C:\Windows\System32\StorSvc.dll [617984] O44 - LFC:[MD5.D311CFBFBE239ADCBDB0CF2EEB736F8E] - 09/05/2016 - 16:19:22 ---A- . (.Microsoft Corporation - Logon User Experience.) -- C:\Windows\System32\Windows.UI.Logon.dll [2635776] O44 - LFC:[MD5.2771EBB565F5C121E66060B173991D4D] - 09/05/2016 - 16:19:42 ---A- . (.Microsoft Corporation - Point de terminaison des API tierces permet.) -- C:\Windows\System32\UserDataService.dll [1490432] O44 - LFC:[MD5.F07301C282AA222C33F8C28B4F545275] - 09/05/2016 - 16:20:21 ---A- . (.Microsoft Corporation - Service Routeur SMS Windows.) -- C:\Windows\System32\SmsRouterSvc.dll [591872] O44 - LFC:[MD5.D0CCDC8D0D00DA363F9D87C2E9A803EF] - 09/05/2016 - 16:21:07 ---A- . (.Microsoft Corporation - LicenseManager.) -- C:\Windows\System32\LicenseManager.dll [1297752] O44 - LFC:[MD5.F0D97E9816795E1AAA17396ABD2660C4] - 09/05/2016 - 16:21:12 ---A- . (.Microsoft Corporation - ExplorerFrame.) -- C:\Windows\System32\ExplorerFrame.dll [4827136] O44 - LFC:[MD5.3B866F8CB10719A5AF9E410B1B149714] - 09/05/2016 - 16:21:22 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [605440] O44 - LFC:[MD5.33190E86460C4FF7382848187463DC28] - 09/05/2016 - 16:21:23 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms2.sys [576864] O44 - LFC:[MD5.A407435633C74CB1D6911DC05A90D939] - 09/05/2016 - 16:21:25 ---A- . (.Microsoft Corporation - Client d’inscription des services de certif.) -- C:\Windows\System32\CertEnroll.dll [2912256] O44 - LFC:[MD5.50007CDB0F9801A7186F3E81D3377D12] - 09/05/2016 - 16:21:25 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\System32\d3d11.dll [2773096] O44 - LFC:[MD5.BD70B866034C1366D74CCBB5CA97395E] - 09/05/2016 - 16:21:27 ---A- . (.Microsoft Corporation - Media Foundation Core DLL.) -- C:\Windows\System32\mfcore.dll [2544264] O44 - LFC:[MD5.703F15FBAEA94F88FD5E12EFA94A0F7E] - 09/05/2016 - 16:21:28 ---A- . (...) -- C:\Windows\System32\CoreUIComponents.dll [2656952] O44 - LFC:[MD5.EB05F5368F8BBF75157B87FD1F689167] - 09/05/2016 - 16:21:28 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll [2581504] O44 - LFC:[MD5.92F74BF86088520654BD5636A69E37F1] - 09/05/2016 - 16:21:29 ---A- . (.Microsoft Corporation - Media Foundation Simple Video Renderer DLL.) -- C:\Windows\System32\mfsvr.dll [848168] O44 - LFC:[MD5.F8FAB3E1281FB937DB1C8109842A9534] - 09/05/2016 - 16:22:05 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers_nt.dll [3994624] O44 - LFC:[MD5.E7588419770BDDB510741F734D290E27] - 09/05/2016 - 16:22:06 ---A- . (.Microsoft Corporation - Bibliothèque du Gestionnaire de réseaux san.) -- C:\Windows\System32\wifinetworkmanager.dll [1318912] O44 - LFC:[MD5.99D5C132D5085DACBFF909C3AAF832AC] - 09/05/2016 - 16:22:20 ---A- . (.Microsoft Corporation - Microsoft Text InputService Dll.) -- C:\Windows\System32\InputService.dll [2624512] O44 - LFC:[MD5.26EDABD6AF6678D299852CB624EDE85B] - 09/05/2016 - 16:22:21 ---A- . (.Microsoft Corporation - TextInputFramework.DYNLINK.) -- C:\Windows\System32\TextInputFramework.dll [345600] O44 - LFC:[MD5.2989A5B700D1C706ED496CCA75DCFA67] - 09/05/2016 - 16:22:33 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll [7533568] O44 - LFC:[MD5.797497201A406D6CFDB72FE0545F990C] - 09/05/2016 - 16:24:47 ---A- . (.Microsoft Corporation - API WinRT pour PDF.) -- C:\Windows\System32\Windows.Data.Pdf.dll [6972416] O44 - LFC:[MD5.6E04BBE242E2889B37300C4DF5CE1126] - 09/05/2016 - 16:28:17 ---A- . (.Microsoft Corporation - Service du Windows Store.) -- C:\Windows\System32\WSService.dll [3449168] O44 - LFC:[MD5.F3FE9C939D684607118E306B98CEBBBC] - 09/05/2016 - 16:39:42 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [22564328] O44 - LFC:[MD5.92FB4032354D2074DA0DC9E70D8305B1] - 09/05/2016 - 16:39:53 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1388032] O44 - LFC:[MD5.98112F9B965646D338896FD7B13BB32E] - 09/05/2016 - 16:39:55 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [1173344] O44 - LFC:[MD5.7A0E065E46156F9288AE32B1E0399247] - 09/05/2016 - 16:39:57 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [52224] O44 - LFC:[MD5.45FDB4ACF680DF92D6510F77E7FF3E7F] - 09/05/2016 - 16:39:58 ---A- . (.Microsoft Corporation - Agent d'inventaire.) -- C:\Windows\System32\invagent.dll [713568] O44 - LFC:[MD5.F8083C536BEDE61AFB4069D8A8C16DA7] - 09/05/2016 - 16:39:58 ---A- . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [456704] O44 - LFC:[MD5.5548D83C60E37CBB1B451A1108D4142C] - 09/05/2016 - 16:39:59 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [513888] O44 - LFC:[MD5.3E80E2B0C0010154CC504DC51BE21968] - 09/05/2016 - 16:40:07 ---A- . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\System32\wmp.dll [14252544] O44 - LFC:[MD5.468D29ECE0AD7700B790A20FA2765313] - 09/05/2016 - 16:40:11 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [408120] O44 - LFC:[MD5.597AA6F5B21B1B15C87982FAFD1555EE] - 09/05/2016 - 16:40:23 ---A- . (.Microsoft Corporation - API de stockage Microsoft WinRT.) -- C:\Windows\System32\windows.storage.dll [6607080] O44 - LFC:[MD5.2F9B478546FC00827CB269BAD949D98B] - 09/05/2016 - 16:40:26 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll [16985600] O44 - LFC:[MD5.2291CACFF9BE4252C2D39D1A6D27B4E4] - 09/05/2016 - 16:40:43 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [11545600] O44 - LFC:[MD5.42BF7FA295F453618104B5A50BEE105B] - 09/05/2016 - 16:40:45 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [275456] O44 - LFC:[MD5.834D1648124F0F2729462BF79DB0C2CD] - 09/05/2016 - 16:40:45 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [369912] O44 - LFC:[MD5.2A2C0983B6FE62F02E7183335B1F5C20] - 09/05/2016 - 16:40:45 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [1054208] O44 - LFC:[MD5.FEBBA212353E4FA90C6164AA970B772F] - 09/05/2016 - 16:40:45 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [536256] O44 - LFC:[MD5.2DDEA2BEDD3169F483C9BE610ADFE8B1] - 09/05/2016 - 16:40:51 ---A- . (.Microsoft Corp. - Microsoft PlayReady Client Framework Dll.) -- C:\Windows\System32\Windows.Media.Protection.PlayReady.dll [8705672] O44 - LFC:[MD5.DBADA23940BA56E3D96762C961145654] - 09/05/2016 - 16:40:53 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [24602112] O44 - LFC:[MD5.5417FA7098B9A1F5A6EECB198A7B4BFC] - 09/05/2016 - 16:40:55 ---A- . (.Microsoft Corporation - Full/Desktop Win32k Kernel Driver.) -- C:\Windows\System32\win32kfull.sys [3592704] O44 - LFC:[MD5.3D0DE8170ECCEC20CBF205D79C535BA1] - 09/05/2016 - 16:41:04 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [2275328] O44 - LFC:[MD5.A2B2198B126C8BB489585994A453B064] - 09/05/2016 - 16:41:09 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [7474016] O44 - LFC:[MD5.A6A8B92FBADFA793794C0EEFA77941C3] - 09/05/2016 - 16:41:16 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13382656] O44 - LFC:[MD5.446882966C68D7EF2783E6B327421493] - 09/05/2016 - 16:41:20 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\Chakradiag.dll [764928] O44 - LFC:[MD5.775B118277B9A81BF9B23AA386A9196D] - 09/05/2016 - 16:41:21 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\Chakra.dll [7836160] O44 - LFC:[MD5.B21B08D436D2B9E7D280FCF9BCBB5DDE] - 09/05/2016 - 16:41:23 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\edgehtml.dll [22378496] O44 - LFC:[MD5.2985697A74DE409D53C6ACD2CD30FDAA] - 09/05/2016 - 16:41:32 ---A- . (.Microsoft Corporation - DLL Couche NT.) -- C:\Windows\System32\ntdll.dll [1818696] O44 - LFC:[MD5.0F85790D9E32FA0B8798AECBBEF6F5F4] - 09/05/2016 - 16:41:33 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1731584] O44 - LFC:[MD5.CD885F960066DDD538CD1BBD509A0EC0] - 09/05/2016 - 16:41:35 ---A- . (.Microsoft Corporation - Fournit l'IU héritée de WinInet.) -- C:\Windows\System32\wininetlui.dll [69632] O44 - LFC:[MD5.40D666AEFB8775F25AA403EDB5D2414E] - 09/05/2016 - 16:41:46 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [4894208] O44 - LFC:[MD5.5276C6CCA158FD73D20642C6A7A507E7] - 09/05/2016 - 16:41:48 ---A- . (.Microsoft Corporation - Bibliothèque principale du Gestionnaire de.) -- C:\Windows\System32\dwmcore.dll [1946112] O44 - LFC:[MD5.4025493B778984A65B1A310864C4F08C] - 09/05/2016 - 16:41:50 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [970752] O44 - LFC:[MD5.F45665E77D11F3C1552EDBEAD1559DC8] - 09/05/2016 - 16:41:51 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1997152] O44 - LFC:[MD5.AE6A68A065D4C26AF4BEFAA53623B266] - 09/05/2016 - 16:41:53 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2755584] O44 - LFC:[MD5.4A88DFC2DF4429E43748CCDEAF90A76F] - 09/05/2016 - 16:47:51 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [135176864] O44 - LFC:[MD5.EFE552CE62E7E5F564C22A436166B85B] - 09/05/2016 - 18:15:18 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [338624] O44 - LFC:[MD5.70869AF6B70F25CE98B6C6544C5C6FC8] - 09/05/2016 - 18:22:33 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [2139664] O44 - LFC:[MD5.CA797B46D81A48CA19204F3D9660D97E] - 09/05/2016 - 18:22:33 ---A- . (...) -- C:\Windows\System32\perfc009.dat [173122] O44 - LFC:[MD5.CFDE85C9BA2F581AF4AD281E47599052] - 09/05/2016 - 18:22:33 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [199244] O44 - LFC:[MD5.1199557F4D975DB3B67355664963D526] - 09/05/2016 - 18:22:33 ---A- . (...) -- C:\Windows\System32\perfh009.dat [830754] O44 - LFC:[MD5.FE4906C45294411453BDEFD27736B5AD] - 09/05/2016 - 18:22:33 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [935170] O44 - LFC:[MD5.7462452AF776FF4A5CE6B3CA63887598] - 10/05/2016 - 06:45:43 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.038356387332650843BCB352BB89A101] - 10/05/2016 - 06:47:15 ---A- . (...) -- C:\Windows\WindowsUpdate.log [275] ~ Files: 416 Scanned in 01mn 27s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll ~ LSA: 8 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iai2c.sys . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\Drivers\iai2c.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Ahcache.sys . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\Ahcache.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\SpbCx.sys . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\uefi.sys . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Pilote du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 24 Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.XVID"="xvidvfw.dll" . (...) -- C:\Windows\System32\xvidvfw.dll O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"xvidvfw.dll"="Xvid MPEG-4 Video Codec" . (...) -- C:\Windows\System32\xvidvfw.dll ~ TDSD: 4 Scanned in 00mn 00s ---\\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\DivXUpdate [Key] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe O53 - SMSR:HKLM\...\startupreg\FileTransferForMobileGo [Key] . (...) -- C:\Program Files\Wondershare\MobileGo pour Android\FileTransfer.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Live Update 5 [Key] . (...) -- C:\Program Files (x86)\MSI\Live Update 5\BootStartLiveupdate.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\LogitechQuickCamRibbon [Key] . (...) -- C:\Program Files (x86)\Labtec\WebCam\WebCam10.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\LogitechVideoRepair [Key] . (...) -- C:\Program Files (x86)\Logitech\Video\ISStart.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\NvBackend [Key] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe O53 - SMSR:HKLM\...\startupreg\RTHDVCPL [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O53 - SMSR:HKLM\...\startupreg\Super-Charger [Key] . (...) -- C:\Program Files (x86)\MSI\Super-Charger\Super-Charger.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Wondershare Helper Compact.exe [Key] . (.Wondershare - Wondershare Studio.) -- C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ~ SMSR Keys: 9 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1 ~ MWPS: 19 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoRecentDocsHistory"=0 ~ MWPE Keys: 4 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [107360] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [1135456] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [83296] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [26976] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [131936] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! HWID.) -- C:\Windows\System32\Drivers\aswHwid.sys [37656] O58 - SDL:07/05/2016 - 06:56:47 ---A- . (.AVAST Software - avast! Keyboard Filter Driver.) -- C:\Windows\System32\Drivers\aswKbd.sys [37144] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [107792] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [103064] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! Revert.) -- C:\Windows\System32\Drivers\aswRvrt.sys [74544] O58 - SDL:07/05/2016 - 06:56:47 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1070904] O58 - SDL:28/04/2014 - 07:18:19 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys.1400156052225 [1039096] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswSP.sys [465792] O58 - SDL:28/04/2014 - 07:18:19 ---A- . (.AVAST Software - avast! self protection module.) -- C:\Windows\System32\Drivers\aswsp.sys.1400156052225 [423240] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [166432] O58 - SDL:07/05/2016 - 06:57:42 ---A- . (.AVAST Software - avast! VM Monitor.) -- C:\Windows\System32\Drivers\aswVmm.sys [287528] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn.sys [9728] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [9728] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3436896] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352] O58 - SDL:30/10/2015 - 08:17:18 ---A- . (.Intel(R) Corporation - Intel(R) Serial IO I2C Driver.) -- C:\Windows\System32\Drivers\iai2c.sys [81408] O58 - SDL:30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\Windows\System32\Drivers\iaLPSS2i_I2C.sys [165888] O58 - SDL:30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [38128] O58 - SDL:30/10/2015 - 08:17:18 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [113152] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [673120] O58 - SDL:30/10/2015 - 08:17:22 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Mellanox - InfiniBand Fabric Bus Driver.) -- C:\Windows\System32\Drivers\ibbus.sys [424800] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [108888] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2i.sys [104800] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3i.sys [99168] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784] O58 - SDL:05/10/2015 - 09:50:06 ---A- . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816] O58 - SDL:05/10/2015 - 09:50:10 ---A- . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [109272] O58 - SDL:08/05/2016 - 22:01:45 ---A- . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [192216] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [59744] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Mellanox - MLX4 Bus Driver.) -- C:\Windows\System32\Drivers\mlx4_bus.sys [705376] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840] O58 - SDL:05/10/2015 - 09:50:18 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\Windows\System32\Drivers\ndfltr.sys [76128] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\System32\Drivers\nvmf6264.sys [344192] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166240] O58 - SDL:27/12/2013 - 19:42:26 ---A- . (.NVIDIA Corporation - NVIDIA Virtual Audio Driver.) -- C:\Windows\System32\Drivers\nvvad64v.sys [39200] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas2i.sys [58208] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\percsas3i.sys [58720] O58 - SDL:04/10/2011 - 03:18:06 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [3091944] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [166752] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinMad.) -- C:\Windows\System32\Drivers\winmad.sys [26976] O58 - SDL:30/10/2015 - 08:17:23 ---A- . (.Mellanox - Kernel WinVerbs.) -- C:\Windows\System32\Drivers\winverbs.sys [59232] O58 - SDL:30/11/2015 - 18:28:15 ---A- . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\wpyenh.sys [79064] ~ Drivers: 57 Scanned in 00mn 04s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 05/05/2016 - 07:51:22 ---A- . (.NVIDIA Corporation.) -- C:\Users\Joël\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe [779704] O61 - LFC: 05/05/2016 - 07:51:22 ---A- . (.NVIDIA Corporation.) -- C:\Users\Joël\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe [322488] O61 - LFC: 05/05/2016 - 07:51:22 ---A- . (.NVIDIA Corporation.) -- C:\Users\Joël\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll [1377208] O61 - LFC: 07/05/2016 - 07:51:45 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\Downloads\GetWindows10-Web_Default_Attr.exe [7635472] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll [679624] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\CollectOneDriveLogs.bat [5850] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuthLib.dll [26824] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll [959176] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\FileCoAuthLib64.dll [31944] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ETWlog.dll [29384] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe [176840] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSync.LocalizedResources.dll [94400] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSync.Resources.dll [4343496] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSyncApi.dll [291016] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSyncClient.dll [2333896] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSyncConfig.exe [178888] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSyncSessions.dll [1414856] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileSyncShell.dll [1602248] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\LoggingPlatform.dll [161480] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\OneDriveSetup.exe [8892608] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\FileSyncApi64.dll [366280] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\FileSyncShell64.dll [1659080] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\LoggingPlatform64.dll [213192] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\msvcp120.dll [660128] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\msvcr120.dll [963232] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\msvcp120.dll [455328] O61 - LFC: 08/05/2016 - 07:51:16 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\msvcr120.dll [970912] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\OneDriveStandaloneUpdater.exe [493256] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [441386] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\RemoteAccess.dll [661192] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\SqmWrapper.dll [39624] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\SyncEngine.dll [3604168] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\Telemetry.dll [306880] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\WnsClientApi.dll [389832] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\sqmapi.dll [196416] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\OneDrive.exe [554176] O61 - LFC: 08/05/2016 - 07:51:17 ---A- . (.Microsoft Corporation.) -- C:\Users\Joël\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe [8892608] O61 - LFC: 08/05/2016 - 07:51:29 ---A- . (...) -- C:\Users\Joël\AppData\Local\NVIDIA\NvBackend\Packages\00008a80\DAO.20726304.exe [7874704] O61 - LFC: 08/05/2016 - 07:51:32 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_125_0_Data.bin [3299948] O61 - LFC: 08/05/2016 - 07:51:32 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_125_0_Header.bin [12136] O61 - LFC: 09/05/2016 - 07:51:30 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\UrlBlock\urlblock_635984041894918123.bin [102283] O61 - LFC: 09/05/2016 - 07:51:32 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\speech_onecorereg.bin [8192] O61 - LFC: 09/05/2016 - 07:51:32 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin [2162060] O61 - LFC: 09/05/2016 - 07:51:32 ---A- . (...) -- C:\Users\Joël\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin [9640] O61 - LFC: 09/05/2016 - 07:51:44 ---A- . (...) -- C:\Users\Joël\Downloads\CrystalDiskInfo6_8_2\CdiResource\opus\opusdec.exe [178688] O61 - LFC: 09/05/2016 - 07:51:44 ---A- . (.Crystal Dew World.) -- C:\Users\Joël\Downloads\CrystalDiskInfo6_8_2\CdiResource\AlertMail.exe [73424] O61 - LFC: 09/05/2016 - 07:51:44 ---A- . (.Crystal Dew World.) -- C:\Users\Joël\Downloads\CrystalDiskInfo6_8_2\CdiResource\AlertMail4.exe [73936] O61 - LFC: 09/05/2016 - 07:51:45 ---A- . (...) -- C:\Users\Joël\Downloads\Report_CHKDSK.exe [290111] O61 - LFC: 09/05/2016 - 07:51:45 ---A- . (.Crystal Dew World.) -- C:\Users\Joël\Downloads\CrystalDiskInfo6_8_2\DiskInfo.exe [2754480] O61 - LFC: 09/05/2016 - 07:51:45 ---A- . (.Crystal Dew World.) -- C:\Users\Joël\Downloads\CrystalDiskInfo6_8_2\DiskInfoX64.exe [3709872] O61 - LFC: 10/05/2016 - 07:51:17 ---A- . (...) -- C:\Users\Joël\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin [16148] ~ 49 Fichiers temporaires (Temporary files) ~ 13 Fichiers cookies (Cookies files) ~ Files: 51 Scanned in 00mn 35s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ~ FASS Keys: 10 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Avast Software - Avast SafeZone Browser.) -- C:\Program Files\AVAST Software\SZBrowser\Launcher.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [192000] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [283136] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1338368] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [957952] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [958464] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31232] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [94720] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [112640] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [997376] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [225280] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [134656] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [328192] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [372736] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [96256] O83 - Search Svchost Services: DcpSvc (DcpSvc) . (.Microsoft Corporation - dcpsvc Task.) -- C:\Windows\System32\dcpsvc.dll [186880] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2057216] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [168960] O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [207360] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [59392] O83 - Search Svchost Services: RetailDemo (RetailDemo) . (.Microsoft Corporation - RDXService.) -- C:\Windows\System32\RDXService.dll [1090048] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [27136] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [106496] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [696320] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [507904] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [73216] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [456704] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [311808] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2275328] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [1144320] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [608768] O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [57856] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [361472] O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1035776] O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session Orchestrator Core.) -- C:\Windows\System32\usocore.dll [360960] O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1139712] O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [278016] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [205824] O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [912384] O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [948736] ~ Services: 41 Scanned in 00mn 01s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {088e3905-0323-4b02-9826-5d99428e115f} O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {24ad3ad4-a569-4530-98e1-ab02f9417aa8} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {3dfdf296-dbec-4fb4-81d1-6a3438bcf4de} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} O92 - MNS: - {d3162b92-9365-467a-956b-92703aca08af} O92 - MNS: - {f86fa3ab-70d2-4fc7-9c99-fcbf05467f3a} ~ MNS: 11 Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Auto 02/09/2015 144200 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 02/09/2015 144200 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 11/03/2014 136120 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Demand 09/01/2015 114800 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Auto 09/07/2015 327296 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 13/12/2015 82128 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SR - | Auto 07/05/2016 243296 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe SR - | Auto 05/02/2014 1593632 | (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe SR - | Auto 05/02/2014 16941856 | (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe SR - | Auto 02/07/2014 935368 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe SR - | Auto 08/04/2013 1320496 | (PDF Architect Helper Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\HelperService.exe SR - | Auto 08/04/2013 799280 | (PDF Architect Service) . (.pdfforge GmbH.) - C:\Program Files (x86)\PDF Architect\ConversionService.exe SR - | Auto 02/07/2014 411936 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 07/08/2015 5611280 | (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe SR - | Demand 30/10/2015 43944 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 15s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Joël at 10/05/2016 07:53:32 ~ OS 64 not supported by MBR tool ~ MBR: 0 Scanned in 00mn 00s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Joël at 10/05/2016 07:53:34 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\\ Scan Additionnel (O88) Database Version : 13045 - (28/04/2014) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 5 Fichiers trouvés (Files found) : 1 C:\Program Files (x86)\Accelerer PC =>Rogue.PCSpeedUp^ C:\ProgramData\Reimage Express =>Rogue.ReimageRepair^ C:\ProgramData\SoftwareDistribution =>Adware.Boxore^ C:\Users\Joël\AppData\Roaming\uTorrent =>P2P.µTorrent^ C:\Users\Joël\AppData\Local\Software =>Adware.Boxore [HKCU\Software\reimageexpress] =>Rogue.ReimageRepair^ ~ Additionnel Scan: 238838 Items scanned in 00mn 33s ---\\ Récapitulatif des détections trouvées sur votre station http://nicolascoolman.webs.com/apps/blog/show/41133513-pup-suptab =>PUP.SupTab http://nicolascoolman.webs.com/apps/blog/show/40584589-pup-sweetpage =>PUP.SweetPage http://nicolascoolman.webs.com/apps/blog/show/26633218-rogue-reimagerepair =>Rogue.ReimageRepair http://nicolascoolman.webs.com/apps/blog/show/27765487-rogue-pcspeedup =>Rogue.PCSpeedUp http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore http://nicolascoolman.webs.com/apps/blog/show/38839825-pup-searchdonkey =>PUP.SearchDonkey ~ MSI: 6 link(s) detected in 00mn 00s End of the scan (1601 lines in 05mn 56s)(0)