~ Rapport de ZHPDiag v2014.5.22.71 - Nicolas Coolman  (22/05/2014)
~ Lancé par scorebut (22/05/2014 17:58:02)
~ Adresse du Site Web http://nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : 
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17107 (Defaut)
GCIE: Google Chrome v34.0.1847.137

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1 Pro, 32-bit  (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 33R9V
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Bitdefender Internet Security v17.27.0.1146
Malwarebytes Anti-Malware version 2.0.1.1004
Windows Defender W8

---\\ Logiciels d'optimisation du système
CCleaner v4.13

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Java 7 Update 55

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3071 MB (67% free)
System Restore: Activé (Enable)
System drive C: has 89 GB (59%) free of 150 GB

---\\ Mode de connexion au système
~ Computer Name: TOUR-VE
~ User Name: scorebut
~ All Users Names: scorebut, HomeGroupUser$, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\scorebut\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\scorebut\AppData\Roaming\
~ %Desktop% : C:\Users\scorebut\Desktop\
~ %Favorites% : C:\Users\scorebut\Favorites\
~ %LocalAppData% : C:\Users\scorebut\AppData\Local\
~ %StartMenu% : C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
A: Floppy drive, Flash card reader, USB Key (Not Inserted)
C: Hard drive, Flash drive, Thumb drive (Free 89 Go of 150 Go)
D: Hard drive, Flash drive, Thumb drive (Free 38 Go of 105 Go)
E: Hard drive, Flash drive, Thumb drive (Free 4 Go of 10 Go)
F: Hard drive, Flash drive, Thumb drive (Free 3 Go of 30 Go)
G: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
H: CD-ROM drive (Not Inserted)
I: CD-ROM drive (Not Inserted)
J: Hard drive, Flash drive, Thumb drive (Free 77 Go of 466 Go)
K: Floppy drive, Flash card reader, USB Key (Free 29 Go of 30 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 42 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.119E091B5386379BC5AA598BE9440C75] - (.Microsoft Corporation - Explorateur Windows.) (.10/05/2014 - 04:09:12.) -- C:\Windows\Explorer.exe [2088160]
[MD5.02BC073156B3097E94D63C4D609020DD] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 03:49:55.) -- C:\Windows\System32\Wininit.exe [112640]
[MD5.F89C2BDB6E385ED6CA2AC0085BB6643A] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/03/2014 - 08:59:52.) -- C:\Windows\System32\wininet.dll [1789440]
[MD5.70C57DC69D4A7D92D2CAC90C3AD16E6F] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.18/03/2014 - 08:59:51.) -- C:\Windows\System32\Winlogon.exe [459264]
[MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/03/2014 - 08:59:51.) -- C:\Windows\System32\sppcomapi.dll [438272]
[MD5.216D830A67387CF922FEDC0DABA9BDFF] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.03/04/2014 - 03:24:03.) -- C:\Windows\system32\Drivers\AFD.sys [461312]
[MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 06:33:25.) -- C:\Windows\system32\Drivers\atapi.sys [23392]
[MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 05:11:55.) -- C:\Windows\system32\Drivers\Cdfs.sys [73728]
[MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 02:59:12.) -- C:\Windows\system32\Drivers\Cdrom.sys [124928]
[MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.10/05/2014 - 04:09:12.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.3D06FB84CFFB1D959ACE7690A27A89E1] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 08:22:40.) -- C:\Windows\system32\Drivers\HDAudBus.sys [69632]
[MD5.5043E69532392A43549E5D41E22638AA] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 05:10:59.) -- C:\Windows\system32\Drivers\i8042prt.sys [82944]
[MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) (.18/03/2014 - 08:59:54.) -- C:\Windows\system32\Drivers\IpNat.sys [126976]
[MD5.5213858EAB957E8153D45B13FCF30082] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.03/04/2014 - 03:24:01.) -- C:\Windows\system32\Drivers\MRxSmb.sys [333312]
[MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 05:08:26.) -- C:\Windows\system32\Drivers\netBT.sys [218624]
[MD5.BAFDB3519A9D1A6A0665A70696BA98D5] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.10/05/2014 - 04:09:12.) -- C:\Windows\system32\Drivers\ntfs.sys [1679704]
[MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 05:11:49.) -- C:\Windows\system32\Drivers\Parport.sys [81408]
[MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 05:07:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [81920]
[MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.18/03/2014 - 08:38:09.) -- C:\Windows\system32\Drivers\rdpdr.sys [143872]
[MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 07:13:54.) -- C:\Windows\system32\Drivers\tdx.sys [87040]
[MD5.F4138DC230FC3DFE9E31201561D0491B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 11:37:49.) -- C:\Windows\system32\Drivers\volsnap.sys [264536]
~ Generic Processes:  Scanned in 00mn 03s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/4
~ Mes musiques (My Musics) : 1/7
~ Mes Videos (My Videos) : 2/5
~ Mes Favoris (My Favorites) : 1/4
~ Mes Documents (My Documents) : 1/5
~ Mon Bureau (My Desktop) : 1/602
~ Menu demarrer (Programs) : 1/42
~ Hidden Files:  Scanned in 00mn 05s



---\\ Processus lancés
[MD5.2197DED64442B4B342971598208A7D1A] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\WINDOWS\system32\taskhostex.exe   [66624] [PID.4676]
[MD5.189CD832964EC8EDD3075F13D16F4552] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe   [1821128] [PID.4376]
[MD5.0087B7A1FE4B2F9CC632AF11D52CB371] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe   [1797064] [PID.3772]
[MD5.1766A2E004154830D4327861AF1BD3AB] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe   [1845064] [PID.2128]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [254336] [PID.1740]
[MD5.A0DEB2EF7DDE22BCD6EA5252AEE9FF0B] - (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe   [2007392] [PID.4440]
[MD5.B38B860BF3D89F17EB6FF6183DB97DC7] - (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe   [482392] [PID.4436]
[MD5.597CF4BEDFDC81B8903982664CAC6ED0] - (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe   [614232] [PID.3464]
[MD5.8DF7F2A9B72B7CA4294BB9E59FEAEFCD] - (.Microsoft Corporation - Hôte Microsoft WWA.) -- C:\Windows\System32\WWAHost.exe   [514560] [PID.5496]
[MD5.8998A4837A47F16F27000C0A61EFC90D] - (.Microsoft Corporation - Runtime Broker.) -- C:\Windows\System32\RuntimeBroker.exe   [29920] [PID.3504]
[MD5.9827006052EDEBA43D3BA0B34523AD62] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [7876608] [PID.5260]
~ Processes Running:  Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] GoogleÂ Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] GoogleÂ Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT v.2.5.14, (Désactivé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [ccahoghmggldkcdjiebjkidpfongdfbl] Bitdefender Wallet v.17.28.1 (Désactivé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.6.34, (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] GoogleÂ Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [GoogleÂ Drive]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [WOT]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [GoogleÂ Wallet]
G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 28 Scanned in 00mn 02s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.55.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.55.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.55.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll  =>.VideoLAN
~ Firefox Browser: 8 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.VideoLAN - VLC media player Web Plugin 2.1.3.) (No version) -- (.not file.)  =>.VideoLAN
~ IE Browser: 11 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 34



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 6 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe 
O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe 
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   =>.Oracle Corporation
O4 - HKLM\..\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe   =>.VMware, Inc
O4 - HKLM\..\Run: [CamserviceHD] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files\Hercules\Dualpix HD\XtrCtrlEx.exe 
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe 
O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe 
O4 - HKCU\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe 
O4 - HKCU\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe 
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe 
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe 
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe 
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe 
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe 
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe 
O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe 
O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe 
O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe 
~ Application:  Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.ma-config.com
O15 - Trusted Zone: [HKCU\...\Domains] http.touslesdrivers.com
~ IE Zone Confiance:  Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA6718F3-801B-42B9-97C4-A7408966F8F6}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA6718F3-801B-42B9-97C4-A7408966F8F6}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe  =>.Google Inc
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe  =>.VMware, Inc
O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\WINDOWS\system32\vmnetdhcp.exe
O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\WINDOWS\system32\vmnat.exe
O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe  =>.VMware, Inc
O23 - Service: Bitdefender Virus Shield (VSSERV) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
~ Services: 15 Scanned in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.82EB400763D254D098EA7566D0A11A71] [APT] [Bitdefender Auto Scan] (.Bitdefender.) -- C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe   [22504]
[MD5.03E07421C99D99D2DB8F4E5CCB890B23] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [4524312]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [116648]
[MD5.4EE4ECE74B0E6F9B166B9ADA1F0E1514] [APT] [{FF7A72DA-CE70-4ED4-A051-7D0CC424383D}] (.MediaArea.net.) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.54_Windows_x64.exe   [3496248]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe   [561984]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1072]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [1072]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1076]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [1076]
~ Scheduled Task: 9 Scanned in 00mn 16s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll  =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe  =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\34.0.1847.137\Installer\chrmstp.exe
~ Active Setup: 8 Scanned in 00mn 01s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: oem8.inf (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys
O41 - Driver:  (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
O41 - Driver:  (bdselfpr) . (.BitDefender LLC - BitDefender Self Protection Driver.) - C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (MpKsl0879b09e) . (. - .) - C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5A7AF5B6-7932-4867-9BE6-F74EB3DC676E}\MpKsl0879b09e.sys (.not file.)
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 42 Scanned in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {AAC5D43E-816D-4C2D-8E51-55FFF35BE301}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {18D47FA1-0440-48D3-A7E0-DA09537FF471}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}  =>.Apple Inc
O42 - Logiciel: Bigasoft Total Video Converter 4.2.6.5249 - (.Bigasoft Corporation.) [HKLM] -- {A72CE741-1F32-4D79-BFFB-A714375C678D}_is1
O42 - Logiciel: Bitdefender Internet Security - (.Bitdefender.) [HKLM] -- Bitdefender
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1
O42 - Logiciel: Dualpix HD - (.Hercules.) [HKLM] -- {59579B12-97E6-437E-B988-BA032165D355}
O42 - Logiciel: EasyBCD 2.2 - (.NeoSmart Technologies.) [HKLM] -- EasyBCD
O42 - Logiciel: FormatFactory 3.3.4.0 - (.Format Factory.) [HKLM] -- FormatFactory
O42 - Logiciel: Freemake Video Converter version 4.1.4 - (.Ellora Assets Corporation.) [HKLM] -- Freemake Video Converter_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HD Tune Pro 5.50 - (.EFD Software.) [HKLM] -- HD Tune Pro_is1
O42 - Logiciel: HandBrake 0.9.9.1 - (...) [HKLM] -- HandBrake
O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM] -- IObit Unlocker_is1
O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF}
O42 - Logiciel: MKVToolNix 6.9.1 (32bit) - (.Moritz Bunkus.) [HKLM] -- MKVToolNix
O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {E83B7C94-57F6-4CA2-8C80-CBC2089BC762}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.1.1004 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: MediaInfo 0.7.69 - (.MediaArea.net.) [HKLM] -- MediaInfo
O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: NVIDIA Pilote 3D Vision 335.23 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Pilote graphique 335.23 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++
O42 - Logiciel: PS3 Media Server - (.PS3 Media Server.) [HKLM] -- PS3 Media Server
O42 - Logiciel: PeerBlock 1.2 (r693) - (.PeerBlock, LLC.) [HKLM] -- {015C5B35-B678-451C-9AEE-821E8D69621C}_is1
O42 - Logiciel: Revo Uninstaller 1.95 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Stellar Phoenix Windows Data Recovery - Professional - (.Stellar Information Systems Ltd.) [HKLM] -- Stellar Phoenix Windows Data Recovery - Professional_is1
O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM] -- TeamViewer 9
O42 - Logiciel: Transmission Remote GUI 5.0.1 - (.Yury Sidorov.) [HKLM] -- transgui_is1
O42 - Logiciel: Uninstall Tool - (.CrystalIDEA Software, Inc..) [HKLM] -- Uninstall Tool_is1
O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player  =>.VideoLAN
O42 - Logiciel: VMware Workstation - (.VMware, Inc.) [HKLM] -- VMware_Workstation  =>.VMware, Inc
O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}  =>.VMware, Inc
O42 - Logiciel: WhoCrashed 5.01 - (.Resplendence Software Projects Sp..) [HKLM] -- WhoCrashed_is1
O42 - Logiciel: WinRAR 5.10 bêta 4 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Wondershare Video Converter Ultimate(Build 7.1.2.0) - (.Wondershare Software.) [HKLM] -- Wondershare Video Converter Ultimate_is1
O42 - Logiciel: Xilisoft Convertisseur Vidéo Ultimate - (.Xilisoft.) [HKLM] -- Xilisoft Convertisseur Vidéo Ultimate
O42 - Logiciel: YAMB - (...) [HKLM] -- YAMB
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {2F21564D-DE05-4C6D-B21E-08B9D313FAB3}
O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249}
O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM] -- {D102611A-6466-4101-A51D-51069303AC65}
O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM] -- {197597A7-AD33-4898-9D8E-73066818B464}
O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM] -- {FFD9383C-01D5-4897-A954-43AF599AED30}
~ Logic: 42 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\Akeo Consulting]
[HKCU\Software\AltrixSoft]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Bigasoft]
[HKCU\Software\Bitdefender]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CrystalIdea Software]
[HKCU\Software\Cygwin]
[HKCU\Software\DVD Shrink]
[HKCU\Software\EFD Software]
[HKCU\Software\FinalWire]
[HKCU\Software\FreeTime]
[HKCU\Software\Freemake]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hercules]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes Anti-Rootkit]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Network Optix]
[HKCU\Software\Nilings]
[HKCU\Software\PS3 Media Server]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Quietzone]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Resplendence Sp]
[HKCU\Software\Skype]
[HKCU\Software\Stellar information Systems ltd.]
[HKCU\Software\TeamViewer]
[HKCU\Software\Trolltech]
[HKCU\Software\VMware, Inc.]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\WSVCUPlugin]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wondershare]
[HKCU\Software\Xilisoft]
[HKCU\Software\YAMB]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ej-technologies]
[HKCU\Software\mkvmergeGUI]
[HKCU\Software\redsn0w]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVC3]
[HKLM\Software\AdwCleaner]
[HKLM\Software\AltrixSoft]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\AviSynth]
[HKLM\Software\Bigasoft]
[HKLM\Software\BitDefender]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cygwin]
[HKLM\Software\Freemake]
[HKLM\Software\GEAR Software]
[HKLM\Software\GNU]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Hercules]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes Anti-Rootkit]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\NeoSmart Technologies]
[HKLM\Software\ODBC]
[HKLM\Software\OpenVPN-GUI]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Skype]
[HKLM\Software\Stellar information Systems ltd.]
[HKLM\Software\TeamViewer]
[HKLM\Software\ThinPrint]
[HKLM\Software\VMware, Inc.]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WinRAR]
[HKLM\Software\WondershareSysMenuDATA]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Xilisoft]
[HKLM\Software\cybelsoft]
~ Key Software: 200 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/05/2014 - 12:20:53 - [] ----D C:\Program Files\Apple Software Update  =>.Apple Inc
O43 - CFD: 21/05/2014 - 17:01:09 - [] ----D C:\Program Files\Bigasoft
O43 - CFD: 10/05/2014 - 18:45:53 - [] ----D C:\Program Files\Bitdefender
O43 - CFD: 15/05/2014 - 12:20:36 - [] ----D C:\Program Files\Bonjour
O43 - CFD: 20/05/2014 - 16:38:42 - [] ----D C:\Program Files\CCleaner
O43 - CFD: 21/05/2014 - 14:12:04 - [] ----D C:\Program Files\Common Files
O43 - CFD: 15/05/2014 - 14:04:24 - [] --H-D C:\Program Files\Dr.Fone_Temp
O43 - CFD: 21/05/2014 - 10:43:23 - [] ----D C:\Program Files\DVD Shrink
O43 - CFD: 17/05/2014 - 12:19:09 - [0] ----D C:\Program Files\FDRLab
O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 11/05/2014 - 13:38:43 - [] ----D C:\Program Files\FileSearchy
O43 - CFD: 11/05/2014 - 19:56:55 - [] ----D C:\Program Files\Freemake
O43 - CFD: 11/05/2014 - 15:54:39 - [] ----D C:\Program Files\FreeTime
O43 - CFD: 09/05/2014 - 23:42:51 - [] ----D C:\Program Files\Google
O43 - CFD: 21/05/2014 - 10:37:17 - [] ----D C:\Program Files\Handbrake
O43 - CFD: 12/05/2014 - 22:28:21 - [] ----D C:\Program Files\HD Tune Pro
O43 - CFD: 14/05/2014 - 21:35:19 - [] ----D C:\Program Files\Hercules
O43 - CFD: 14/05/2014 - 21:35:18 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 18/03/2014 - 10:10:35 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 17/05/2014 - 17:32:24 - [] ----D C:\Program Files\IObit
O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\Program Files\iPod
O43 - CFD: 15/05/2014 - 12:21:34 - [] ----D C:\Program Files\iTunes
O43 - CFD: 13/05/2014 - 00:53:10 - [] ----D C:\Program Files\Java
O43 - CFD: 18/05/2014 - 08:07:09 - [] ----D C:\Program Files\ma-config.com
O43 - CFD: 18/05/2014 - 08:51:43 - [] ----D C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 11/05/2014 - 15:08:09 - [] ----D C:\Program Files\MediaInfo
O43 - CFD: 13/05/2014 - 11:41:21 - [] ----D C:\Program Files\Microsoft Visual FoxPro OLE DB Provider
O43 - CFD: 22/08/2013 - 10:17:26 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 16/05/2014 - 22:43:41 - [] ----D C:\Program Files\MKVToolNix
O43 - CFD: 15/05/2014 - 17:22:00 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 10/05/2014 - 08:25:13 - [] ----D C:\Program Files\NeoSmart Technologies
O43 - CFD: 12/05/2014 - 20:33:43 - [] ----D C:\Program Files\Notepad++
O43 - CFD: 10/05/2014 - 04:22:49 - [] ----D C:\Program Files\NVIDIA Corporation
O43 - CFD: 12/05/2014 - 18:18:58 - [0] ----D C:\Program Files\OpenVPN Technologies
O43 - CFD: 15/05/2014 - 01:55:40 - [] ----D C:\Program Files\PeerBlock
O43 - CFD: 10/05/2014 - 23:21:26 - [] ----D C:\Program Files\PS3 Media Server
O43 - CFD: 15/05/2014 - 00:21:51 - [] ----D C:\Program Files\Quietzone
O43 - CFD: 15/05/2014 - 17:22:00 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 13/05/2014 - 01:10:27 - [] R---D C:\Program Files\Skype
O43 - CFD: 11/05/2014 - 12:17:23 - [] ----D C:\Program Files\Spotflux
O43 - CFD: 15/05/2014 - 21:43:03 - [] ----D C:\Program Files\Stellar Phoenix Windows Data Recovery
O43 - CFD: 13/05/2014 - 00:55:29 - [] ----D C:\Program Files\TeamViewer
O43 - CFD: 14/05/2014 - 22:00:12 - [] ----D C:\Program Files\Transmission Remote GUI
O43 - CFD: 26/07/2012 - 08:04:59 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 15/05/2014 - 16:54:32 - [] ----D C:\Program Files\Uninstall Tool
O43 - CFD: 16/05/2014 - 23:59:52 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 14/05/2014 - 21:15:30 - [] ----D C:\Program Files\VMware
O43 - CFD: 12/05/2014 - 18:17:31 - [] ----D C:\Program Files\VS Revo Group
O43 - CFD: 17/05/2014 - 19:32:44 - [] ----D C:\Program Files\WhoCrashed
O43 - CFD: 16/05/2014 - 16:33:59 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 18/03/2014 - 09:38:19 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Windows Mail  =>.Microsoft Corporation
O43 - CFD: 10/05/2014 - 04:22:50 - [] ----D C:\Program Files\Windows Media Player  =>.Microsoft Corporation
O43 - CFD: 18/03/2014 - 10:10:31 - [] ----D C:\Program Files\Windows Multimedia Platform
O43 - CFD: 10/05/2014 - 04:29:00 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 18/03/2014 - 10:10:30 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 10/05/2014 - 04:22:50 - [] -SH-D C:\Program Files\Windows Sidebar
O43 - CFD: 15/05/2014 - 11:19:46 - [] --H-D C:\Program Files\WindowsApps
O43 - CFD: 22/08/2013 - 10:17:26 - [] ----D C:\Program Files\WindowsPowerShell
O43 - CFD: 13/05/2014 - 10:41:07 - [] ----D C:\Program Files\WinRAR
O43 - CFD: 21/05/2014 - 13:01:07 - [] ----D C:\Program Files\Wondershare
O43 - CFD: 21/05/2014 - 14:12:03 - [] ----D C:\Program Files\Xilisoft
O43 - CFD: 16/05/2014 - 22:06:41 - [] ----D C:\Program Files\YAMB
O43 - CFD: 22/05/2014 - 17:56:44 - [] ----D C:\Program Files\ZHPDiag  =>.Nicolas Coolman
O43 - CFD: 17/05/2014 - 23:19:32 - [0] ----D C:\Program Files\Common Files\AltrixSoft
O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 10/05/2014 - 18:45:55 - [] ----D C:\Program Files\Common Files\Bitdefender
O43 - CFD: 13/05/2014 - 00:53:12 - [] ----D C:\Program Files\Common Files\Java
O43 - CFD: 10/05/2014 - 18:50:01 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 22/08/2013 - 10:17:35 - [] ----D C:\Program Files\Common Files\Services
O43 - CFD: 13/05/2014 - 01:10:27 - [] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 14/05/2014 - 21:16:17 - [] ----D C:\Program Files\Common Files\VMware
O43 - CFD: 15/05/2014 - 14:04:35 - [] ----D C:\Program Files\Common Files\Wondershare
O43 - CFD: 15/05/2014 - 12:21:34 - [] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 17/05/2014 - 23:19:44 - [] ----D C:\ProgramData\AltrixSoft
O43 - CFD: 15/05/2014 - 12:20:51 - [] ----D C:\ProgramData\Apple
O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 10/05/2014 - 18:56:36 - [] ----D C:\ProgramData\BDLogging
O43 - CFD: 10/05/2014 - 18:57:20 - [] ----D C:\ProgramData\Bitdefender
O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 13/05/2014 - 11:58:23 - [] ----D C:\ProgramData\Database Harbor
O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 21/05/2014 - 10:56:27 - [] ----D C:\ProgramData\DVD Shrink
O43 - CFD: 21/05/2014 - 17:20:23 - [] ----D C:\ProgramData\Freemake
O43 - CFD: 17/05/2014 - 17:32:24 - [] ----D C:\ProgramData\IObit
O43 - CFD: 18/05/2014 - 08:07:07 - [] ----D C:\ProgramData\ma-config.com
O43 - CFD: 18/05/2014 - 01:22:50 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 18/05/2014 - 13:34:23 - [0] ----D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 10/05/2014 - 19:00:41 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 22/05/2014 - 13:27:29 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 10/05/2014 - 04:22:51 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 13/05/2014 - 00:53:17 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 10/05/2014 - 23:22:48 - [] ----D C:\ProgramData\PMS
O43 - CFD: 10/05/2014 - 04:22:51 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 15/05/2014 - 00:21:20 - [] ----D C:\ProgramData\Quietzone
O43 - CFD: 18/03/2014 - 09:38:18 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 13/05/2014 - 01:10:25 - [] ----D C:\ProgramData\Skype
O43 - CFD: 11/05/2014 - 12:17:23 - [] ----D C:\ProgramData\spotflux
O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 12/05/2014 - 18:09:55 - [] ----D C:\ProgramData\Sun
O43 - CFD: 11/05/2014 - 13:38:23 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 22/05/2014 - 13:28:08 - [] ----D C:\ProgramData\VMware
O43 - CFD: 15/05/2014 - 14:04:18 - [] ----D C:\ProgramData\Wondershare
O43 - CFD: 21/05/2014 - 20:33:26 - [] ----D C:\ProgramData\Wondershare Video Converter Ultimate
O43 - CFD: 21/05/2014 - 14:12:03 - [] ----D C:\ProgramData\Xilisoft
O43 - CFD: 09/05/2014 - 20:42:32 - [] ----D C:\Users\scorebut\AppData\Roaming\Adobe
O43 - CFD: 16/05/2014 - 19:53:41 - [] ----D C:\Users\scorebut\AppData\Roaming\Apple Computer
O43 - CFD: 21/05/2014 - 17:01:18 - [] ----D C:\Users\scorebut\AppData\Roaming\Bigasoft Total Video Converter 4
O43 - CFD: 10/05/2014 - 18:49:52 - [] ----D C:\Users\scorebut\AppData\Roaming\Bitdefender
O43 - CFD: 15/05/2014 - 16:54:32 - [] ----D C:\Users\scorebut\AppData\Roaming\CrystalIdea Software
O43 - CFD: 13/05/2014 - 11:41:21 - [] ----D C:\Users\scorebut\AppData\Roaming\Database Harbor
O43 - CFD: 21/05/2014 - 12:22:08 - [] ----D C:\Users\scorebut\AppData\Roaming\dvdcss
O43 - CFD: 21/05/2014 - 17:37:48 - [] ----D C:\Users\scorebut\AppData\Roaming\HandBrake
O43 - CFD: 12/05/2014 - 22:28:40 - [] ----D C:\Users\scorebut\AppData\Roaming\HD Tune Pro
O43 - CFD: 10/05/2014 - 05:29:42 - [] ----D C:\Users\scorebut\AppData\Roaming\Identities
O43 - CFD: 14/05/2014 - 21:35:05 - [] ----D C:\Users\scorebut\AppData\Roaming\InstallShield
O43 - CFD: 15/05/2014 - 17:38:53 - [] ----D C:\Users\scorebut\AppData\Roaming\libimobiledevice
O43 - CFD: 09/05/2014 - 20:52:31 - [] ----D C:\Users\scorebut\AppData\Roaming\Macromedia
O43 - CFD: 12/05/2014 - 18:20:47 - [0] ----D C:\Users\scorebut\AppData\Roaming\Maxthon3
O43 - CFD: 16/05/2014 - 20:31:24 - [] -S--D C:\Users\scorebut\AppData\Roaming\Microsoft
O43 - CFD: 16/05/2014 - 22:43:54 - [] ----D C:\Users\scorebut\AppData\Roaming\mkvtoolnix
O43 - CFD: 12/05/2014 - 20:35:54 - [] ----D C:\Users\scorebut\AppData\Roaming\Notepad++
O43 - CFD: 21/05/2014 - 14:15:30 - [] ----D C:\Users\scorebut\AppData\Roaming\NVIDIA
O43 - CFD: 10/05/2014 - 18:45:42 - [0] ----D C:\Users\scorebut\AppData\Roaming\QuickScan
O43 - CFD: 15/05/2014 - 15:20:41 - [] ----D C:\Users\scorebut\AppData\Roaming\Quietzone
O43 - CFD: 16/05/2014 - 20:58:36 - [] ----D C:\Users\scorebut\AppData\Roaming\redsn0w
O43 - CFD: 15/05/2014 - 00:42:56 - [] ----D C:\Users\scorebut\AppData\Roaming\Skype
O43 - CFD: 14/05/2014 - 23:15:56 - [] ----D C:\Users\scorebut\AppData\Roaming\TeamViewer
O43 - CFD: 21/05/2014 - 17:05:10 - [] ----D C:\Users\scorebut\AppData\Roaming\vlc
O43 - CFD: 15/05/2014 - 14:18:25 - [] ----D C:\Users\scorebut\AppData\Roaming\VMware
O43 - CFD: 13/05/2014 - 10:38:32 - [] ----D C:\Users\scorebut\AppData\Roaming\WinRAR
O43 - CFD: 21/05/2014 - 13:02:30 - [] ----D C:\Users\scorebut\AppData\Roaming\Wondershare Video Converter Ultimate
O43 - CFD: 21/05/2014 - 14:15:22 - [] ----D C:\Users\scorebut\AppData\Roaming\Xilisoft
O43 - CFD: 22/05/2014 - 17:58:52 - [] ----D C:\Users\scorebut\AppData\Roaming\ZHP  =>.Nicolas Coolman
O43 - CFD: 21/05/2014 - 13:02:07 - [0] ----D C:\Users\scorebut\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 15/05/2014 - 12:20:54 - [] ----D C:\Users\scorebut\AppData\Local\Apple
O43 - CFD: 15/05/2014 - 12:21:56 - [] ----D C:\Users\scorebut\AppData\Local\Apple Computer
O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Application Data
O43 - CFD: 21/05/2014 - 10:47:59 - [] ----D C:\Users\scorebut\AppData\Local\CrashDumps
O43 - CFD: 12/05/2014 - 19:06:56 - [] ----D C:\Users\scorebut\AppData\Local\Diagnostics
O43 - CFD: 11/05/2014 - 13:30:03 - [] ----D C:\Users\scorebut\AppData\Local\Downloaded Installations
O43 - CFD: 12/05/2014 - 21:01:22 - [] -SH-D C:\Users\scorebut\AppData\Local\EmieSiteList
O43 - CFD: 12/05/2014 - 21:01:22 - [] -SH-D C:\Users\scorebut\AppData\Local\EmieUserList
O43 - CFD: 09/05/2014 - 23:43:02 - [] ----D C:\Users\scorebut\AppData\Local\Google
O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Historique
O43 - CFD: 15/05/2014 - 17:38:23 - [] ----D C:\Users\scorebut\AppData\Local\Microsoft
O43 - CFD: 10/05/2014 - 08:26:10 - [] ----D C:\Users\scorebut\AppData\Local\NeoSmart_Technologies
O43 - CFD: 09/05/2014 - 23:13:56 - [] ----D C:\Users\scorebut\AppData\Local\NVIDIA
O43 - CFD: 10/05/2014 - 19:43:52 - [] ----D C:\Users\scorebut\AppData\Local\Packages
O43 - CFD: 11/05/2014 - 19:53:42 - [] ----D C:\Users\scorebut\AppData\Local\Programs
O43 - CFD: 12/05/2014 - 23:17:01 - [] ----D C:\Users\scorebut\AppData\Local\ShamurShamur
O43 - CFD: 13/05/2014 - 01:10:38 - [] ----D C:\Users\scorebut\AppData\Local\Skype
O43 - CFD: 22/05/2014 - 17:56:46 - [] ----D C:\Users\scorebut\AppData\Local\Temp
O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Temporary Internet Files
O43 - CFD: 17/05/2014 - 23:44:36 - [] ----D C:\Users\scorebut\AppData\Local\Transmission Remote GUI
O43 - CFD: 21/05/2014 - 14:51:13 - [] ----D C:\Users\scorebut\AppData\Local\VirtualStore
O43 - CFD: 15/05/2014 - 14:18:25 - [0] ----D C:\Users\scorebut\AppData\Local\VMware
O43 - CFD: 15/05/2014 - 14:04:36 - [] ----D C:\Users\scorebut\AppData\Local\Wondershare
O43 - CFD: 10/05/2014 - 04:22:18 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 10:17:27 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 10/05/2014 - 05:29:45 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/05/2014 - 17:01:13 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft
O43 - CFD: 20/05/2014 - 15:10:27 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
O43 - CFD: 11/05/2014 - 19:56:56 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
O43 - CFD: 21/05/2014 - 10:37:14 - [0] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
O43 - CFD: 22/08/2013 - 10:17:27 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 12/05/2014 - 20:33:40 - [0] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 12/05/2014 - 18:17:32 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
O43 - CFD: 10/05/2014 - 05:29:45 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 10/05/2014 - 04:22:18 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 13/05/2014 - 10:41:07 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 16/05/2014 - 21:44:42 - [0] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YAMB
~ Program Folder: 179 Scanned in 00mn 02s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.DC5AB81C800FFDAE2C16273C22BEAB6B] - 09/05/2014 - 19:32:57 ---A- . (...) -- C:\Windows\System32\netcfg-303577.txt   [156]
O44 - LFC:[MD5.48DDFE7F3C91842749B7E663B0B79891] - 09/05/2014 - 19:32:58 ---A- . (...) -- C:\Windows\System32\netcfg-303936.txt   [152]
O44 - LFC:[MD5.F7154C29BA9207BEF97A75B273B1EF3A] - 09/05/2014 - 19:32:58 ---A- . (...) -- C:\Windows\System32\netcfg-304435.txt   [149]
O44 - LFC:[MD5.400D75DD81FA4467833C1643DF3AEE1D] - 09/05/2014 - 19:32:58 ---A- . (...) -- C:\Windows\System32\netcfg-304607.txt   [142]
O44 - LFC:[MD5.DF6A09FAFBB6DAEBC9E3E9ED358E45F4] - 09/05/2014 - 19:32:59 ---A- . (...) -- C:\Windows\System32\netcfg-304903.txt   [151]
O44 - LFC:[MD5.5D7632B6CD3792AFB78E585F65139D1D] - 09/05/2014 - 19:32:59 ---A- . (...) -- C:\Windows\System32\netcfg-305169.txt   [152]
O44 - LFC:[MD5.DBA311666EE68046E631193B61538326] - 09/05/2014 - 19:32:59 ---A- . (...) -- C:\Windows\System32\netcfg-305699.txt   [149]
O44 - LFC:[MD5.410E9022CF410786DEFB6F72F6D2A124] - 09/05/2014 - 19:33:00 ---A- . (...) -- C:\Windows\System32\netcfg-306011.txt   [152]
O44 - LFC:[MD5.3BAF9333F21DBAD20890833D11F62660] - 09/05/2014 - 19:33:00 ---A- . (...) -- C:\Windows\System32\netcfg-306276.txt   [153]
O44 - LFC:[MD5.9D05CF6DA2945BD7FF952910BAE86193] - 09/05/2014 - 19:33:03 ---A- . (...) -- C:\Windows\System32\netcfg-309817.txt   [177]
O44 - LFC:[MD5.2A9A2EE1BED50069010A8D59A3B705CA] - 09/05/2014 - 19:33:09 ---A- . (...) -- C:\Windows\System32\netcfg-311065.txt   [1127]
O44 - LFC:[MD5.82A13232C05598BFABA48278F810D7C0] - 09/05/2014 - 19:37:47 ---A- . (...) -- C:\Windows\System32\netcfg-179463.txt   [117]
O44 - LFC:[MD5.82A13232C05598BFABA48278F810D7C0] - 09/05/2014 - 19:37:48 ---A- . (...) -- C:\Windows\System32\netcfg-181709.txt   [117]
O44 - LFC:[MD5.CF699575036C7F58343A66BC2BA0D0AA] - 09/05/2014 - 20:18:10 ---A- . (.Khronos Group - OpenCL Client DLL.) -- C:\Windows\System32\OpenCL.dll   [53024]
O44 - LFC:[MD5.03F4527F7989F3C0A32CC8250353521E] - 09/05/2014 - 20:18:50 ---A- . (.NVIDIA Corporation - NVIDIA 3D Vision.) -- C:\Windows\System32\nvStreaming.exe   [599840]
O44 - LFC:[MD5.A5189CC0316DDCD935F360E26904ECA9] - 09/05/2014 - 21:18:54 ----- . (.Microsoft - Système d’évaluation de l’âge russe.) -- C:\Windows\System32\rars.rs   [14848]
O44 - LFC:[MD5.D815DD4262E4FCC211091F7BA7A01155] - 09/05/2014 - 21:33:01 ---A- . (.Microsoft Corporation - Microsoft Malware Protection Signature Upda.) -- C:\Windows\System32\MpSigStub.exe   [231584]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 09/05/2014 - 22:51:55 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdFs_01_11_00.Wdf   [0]
O44 - LFC:[MD5.F613545159701BEA780DF4F5D4331525] - 10/05/2014 - 02:42:44 RSHA- . (...) -- C:\BOOTSECT.BAK   [8192]
O44 - LFC:[MD5.040A3B49364A0BBE72FD4547C62F5730] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll   [4348704]
O44 - LFC:[MD5.F397F3A1B29FC59964E294EDC10D3431] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Display Shell Extension.) -- C:\Windows\System32\nvshext.dll   [62752]
O44 - LFC:[MD5.B92D1F29DA9D736D544BFD97B2BDE219] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) -- C:\Windows\System32\nvsvc.dll   [3044696]
O44 - LFC:[MD5.6B6ACD0435684531D50A8EC5541146CE] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) -- C:\Windows\System32\nvsvcr.dll   [2556360]
O44 - LFC:[MD5.7A50B5448C45C0BEBFCF0E6481ABD73F] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) -- C:\Windows\System32\nvvsvc.exe   [663896]
O44 - LFC:[MD5.C1DA161504716E9F90BA5CE2254AA423] - 10/05/2014 - 03:16:55 ---A- . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll   [375128]
O44 - LFC:[MD5.F21664F97BAEAFE7333B2EBC08A8096B] - 10/05/2014 - 03:27:53 ---A- . (...) -- C:\Windows\System32\emptyregdb.dat   [21680]
O44 - LFC:[MD5.81DD33EC695AB90466031CF430CFA1BD] - 10/05/2014 - 03:28:07 ---A- . (...) -- C:\Windows\diagerr.xml   [20958]
O44 - LFC:[MD5.81DD33EC695AB90466031CF430CFA1BD] - 10/05/2014 - 03:28:07 ---A- . (...) -- C:\Windows\diagwrn.xml   [20958]
O44 - LFC:[MD5.12B0701B1CEC1A7BB0E4C71D97661E23] - 10/05/2014 - 04:09:12 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml   [387210]
O44 - LFC:[MD5.C06B6C8E002EDB492D93F2494E32F9CA] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - API d’Accès réseau à distance.) -- C:\Windows\System32\rasapi32.dll   [605184]
O44 - LFC:[MD5.AFFB4EB53FC1D04495C8A5EC80B1EBCD] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - API en mode utilisateur FWP/IPsec.) -- C:\Windows\System32\FWPUCLNT.DLL   [264192]
O44 - LFC:[MD5.EB40EFEBE9EB4ACA3DD950A1AFA0F51B] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - API pour les capteurs.) -- C:\Windows\System32\SensorsApi.dll   [171008]
O44 - LFC:[MD5.FE85E0B190DD141E4826FEC9F015FA18] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - AppX All User Store DLL.) -- C:\Windows\System32\AppxAllUserStore.dll   [139776]
O44 - LFC:[MD5.B8EC6C4BAF08AAB5B2C810BEA96F19AC] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - AppX Deployment Extensions DLL.) -- C:\Windows\System32\AppXDeploymentExtensions.dll   [735232]
O44 - LFC:[MD5.6F389E3C60FD27DA4322F78D2233E1FC] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Application d’assistance Netsh de la platef.) -- C:\Windows\System32\nshwfp.dll   [567296]
O44 - LFC:[MD5.5C67F297B65D7E3075C34154ADD06237] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Bibliothèque Hid Class.) -- C:\Windows\System32\Drivers\hidclass.sys   [92160]
O44 - LFC:[MD5.1AFACFDB26C1B81586801AFF8BB0ABF1] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Bibliothèque de points de protection partag.) -- C:\Windows\System32\spp.dll   [222720]
O44 - LFC:[MD5.21DDC5D6CFAC0A5FEE3B364A9B58A7CB] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Bibliothèque principale du Gestionnaire de.) -- C:\Windows\System32\dwmcore.dll   [1764864]
O44 - LFC:[MD5.A82DF6AB70BF4558B58D0B2827B61C3C] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Bibliothèque proxy de protection système Mi.) -- C:\Windows\System32\sxproxy.dll   [33792]
O44 - LFC:[MD5.C7A5FE0979482C422488D0B491232AA8] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Canonical Display Driver.) -- C:\Windows\System32\cdd.dll   [179200]
O44 - LFC:[MD5.7559018F0024F00AC00198F18C6A0426] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys   [283992]
O44 - LFC:[MD5.91F6883B61C0E5BEAE9B734D8E46829B] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Composant logiciel enfichable Gestion de st.) -- C:\Windows\System32\wlangpui.dll   [386560]
O44 - LFC:[MD5.5AEFC877161F7A481DD7CC137F97E761] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Contrôle d’édition de texte enrichi, v7.5.) -- C:\Windows\System32\msftedit.dll   [2270208]
O44 - LFC:[MD5.1FE14EDDEED70613E3A032182C7796FB] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Credential Migration Handler.) -- C:\Windows\System32\CredentialMigrationHandler.dll   [27136]
O44 - LFC:[MD5.55758EBBC45E1628161121D7CFEAD4A1] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys   [102400]
O44 - LFC:[MD5.4F3AD1A7C0ED3CF5C4EBE49F61074E41] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL Windows Runtime Sensors.) -- C:\Windows\System32\Windows.Devices.Sensors.dll   [226304]
O44 - LFC:[MD5.9264B57E8C0BCCA14F92EBA56B9B5106] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL de l’agent de récupération Microsoft Wi.) -- C:\Windows\System32\ReAgent.dll   [800256]
O44 - LFC:[MD5.503281E8561B81FC080887ECAF5F5E31] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL de scanneurs périphériques Windows Runt.) -- C:\Windows\System32\Windows.Devices.Scanners.dll   [151040]
O44 - LFC:[MD5.582918F96C2B7E1E3AE17D08DB6DAC41] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL des services Net Logon.) -- C:\Windows\System32\netlogon.dll   [688640]
O44 - LFC:[MD5.057D0AABB078EBD9E276F86F893E5B87] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\KernelBase.dll   [863552]
O44 - LFC:[MD5.CC70F4C7CA6F8B49F21D2D1DB765C1D0] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL du client API BASE Windows NT.) -- C:\Windows\System32\kernel32.dll   [1037504]
O44 - LFC:[MD5.B4309F7821BDE5A31E1E4FB24ED97C5C] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL du client de déploiement d’AppX.) -- C:\Windows\System32\AppXDeploymentClient.dll   [197632]
O44 - LFC:[MD5.E30E1007658BF21C1A71E6D47C712303] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL du schéma d’audit de sécurité.) -- C:\Windows\System32\adtschema.dll   [731648]
O44 - LFC:[MD5.D07789299DA4D79B123336534E960F62] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL du serveur de déploiement d’AppX.) -- C:\Windows\System32\AppXDeploymentServer.dll   [1131520]
O44 - LFC:[MD5.411201FFB3882554D5B833E6EC2EC649] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DLL d’application d’assistance Windows pour.) -- C:\Windows\System32\pdh.dll   [254976]
O44 - LFC:[MD5.FF0EE1B87E5DD7A82F7BB124D5CA8BB6] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll   [494592]
O44 - LFC:[MD5.67D2296474FB0F3B858E1758FFA3AC79] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Direct3D 11 Runtime.) -- C:\Windows\System32\d3d11.dll   [1779800]
O44 - LFC:[MD5.15FBE33156A5F17280C549DBA993442C] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DirectX Graphics Infrastructure.) -- C:\Windows\System32\dxgi.dll   [406912]
O44 - LFC:[MD5.38EC892387B603803C12C87D95C67AAB] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys   [1326936]
O44 - LFC:[MD5.0A6E40913B804F21B28A731879443EE2] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys   [321880]
O44 - LFC:[MD5.7EE6ABE5A787F95006360C3703C65758] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Driver Installation Module.) -- C:\Windows\System32\drvcfg.exe   [51200]
O44 - LFC:[MD5.B6E94D847C1606240DDF5969E7AF794D] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Définir l’utilitaire d’emplacement réseau.) -- C:\Windows\System32\SetNetworkLocation.dll   [35840]
O44 - LFC:[MD5.119E091B5386379BC5AA598BE9440C75] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe   [2088160]
O44 - LFC:[MD5.92557399ED26FBABC5D8446B3C21CF0F] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL   [731648]
O44 - LFC:[MD5.E43322FA6C7AFC44801CA33CE8B44DBD] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Extension des modèles d’administration.) -- C:\Windows\System32\AdmTmpl.dll   [444928]
O44 - LFC:[MD5.879908EF84426F41891D940313D22584] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll   [1092896]
O44 - LFC:[MD5.B4AAA9FD65FE6C83DCA2A230993CD893] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll   [2317824]
O44 - LFC:[MD5.C40F5940DDDCCFFEB8C3E55CDE1A3E0C] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys   [482416]
O44 - LFC:[MD5.09C2C25E6199901B93716FE4A82E682C] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys   [147800]
O44 - LFC:[MD5.F37F40422662235AB5768C303E829602] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys   [227840]
O44 - LFC:[MD5.3CAE64347544C26C22D06CFFFADB78EB] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - MDMAgent.) -- C:\Windows\System32\MDMAgent.exe   [491008]
O44 - LFC:[MD5.83058B0F0CEC63A5A7438818B71C0935] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - MSXML 6.0.) -- C:\Windows\System32\msxml6.dll   [1679128]
O44 - LFC:[MD5.0303523E283AB4D03590C9AE56A8386A] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Media Foundation ReadWrite DLL.) -- C:\Windows\System32\mfreadwrite.dll   [355832]
O44 - LFC:[MD5.92B27D3407728C48710C8C27E25B3932] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft DirectComposition Library.) -- C:\Windows\System32\dcomp.dll   [241664]
O44 - LFC:[MD5.A6880BA9A4F02D3C742DF956EA9CC44D] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft GDI+.) -- C:\Windows\System32\GdiPlus.dll   [1351168]
O44 - LFC:[MD5.2BDB085AA7ECA65D1793D150CEC960AF] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll   [1095488]
O44 - LFC:[MD5.4E69700BA6E05295F1BF5E067BFA59A4] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft Windows Device Property Manager.) -- C:\Windows\System32\DevPropMgr.dll   [95744]
O44 - LFC:[MD5.3D83889B6343386C918AB45F5C4C9355] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft Windows Location API.) -- C:\Windows\System32\LocationApi.dll   [262656]
O44 - LFC:[MD5.67F3D0E0D8F009FF665A0E452C6F13E8] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft Windows MRM.) -- C:\Windows\System32\MrmCoreR.dll   [629760]
O44 - LFC:[MD5.B918D220FCD67E5A4AF05018515E4C14] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft Windows Recovery Info DLL.) -- C:\Windows\System32\ReInfo.dll   [172544]
O44 - LFC:[MD5.7C0E08F3F04ED8874E19DD23753DE2C6] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Microsoft® Account Provider.) -- C:\Windows\System32\wlidprov.dll   [356864]
O44 - LFC:[MD5.1CB5B87BF19380FB7208787C99C23965] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Module d’installation de pilotes.) -- C:\Windows\System32\drvinst.exe   [98816]
O44 - LFC:[MD5.6AF7619D14A76D76BA8793EA07535EDC] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Moniteur de port d’imprimante WSD.) -- C:\Windows\System32\WSDMon.dll   [251392]
O44 - LFC:[MD5.F871C1523C46C935FDC7B11CC737625B] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Moteur de filtrage de base.) -- C:\Windows\System32\BFE.DLL   [551424]
O44 - LFC:[MD5.B3F1B6A3CC07E967B60584E7454B0890] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Objets de configuration du réseau.) -- C:\Windows\System32\netcfgx.dll   [390488]
O44 - LFC:[MD5.37725B5D560398E5BF4DAF85E4F89249] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Outil de diagnostic du service de temps Win.) -- C:\Windows\System32\w32tm.exe   [70656]
O44 - LFC:[MD5.D395D5C2900596DFA30478E79110D003] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys   [68608]
O44 - LFC:[MD5.775C3D06C408F4F093254B39637A6F1E] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll   [755712]
O44 - LFC:[MD5.FB32EF390BCAC55E11E0C5D12F4C9A45] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Panneau de configuration d’affichage.) -- C:\Windows\System32\Display.dll   [1816576]
O44 - LFC:[MD5.3314871104ECDA48F467057F1EEE4976] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS   [376152]
O44 - LFC:[MD5.BAFDB3519A9D1A6A0665A70696BA98D5] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys   [1679704]
O44 - LFC:[MD5.FBA4497DEBB5C07F5FA230618857A329] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Policy Storage dll.) -- C:\Windows\System32\l2gpstore.dll   [58368]
O44 - LFC:[MD5.59BB015A6FEB79D7911005D3E5F8C770] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Prise en charge d’impression Microsoft Wind.) -- C:\Windows\System32\Windows.Graphics.Printing.dll   [402432]
O44 - LFC:[MD5.7298FC235A76EDC1D03272B24FD1B33E] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [184832]
O44 - LFC:[MD5.2856A2FD0363C38C33150B0026FD76B1] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Radio Manager API.) -- C:\Windows\System32\RMapi.dll   [69120]
O44 - LFC:[MD5.ADC071E4F65BAC3AEF4807B23438472A] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll   [280576]
O44 - LFC:[MD5.5B8D7F29CA815E6DB156DF9853F0472D] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Service WSMan.) -- C:\Windows\System32\WsmSvc.dll   [2030080]
O44 - LFC:[MD5.A47341D3C4D2FB3984BDCAF00AE4A6C7] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Service de résolution du cache DNS.) -- C:\Windows\System32\dnsrslvr.dll   [186880]
O44 - LFC:[MD5.7F4B79568DD6BEC3ECC80C2AE93DC749] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Service mode utilisateur de Plug-and-Play.) -- C:\Windows\System32\umpnpmgr.dll   [96256]
O44 - LFC:[MD5.31D0E1BF76AA85F5A72F4FD488C3B508] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys   [38400]
O44 - LFC:[MD5.71E4AD300E86C0754D6070FB92475CF7] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys   [20992]
O44 - LFC:[MD5.BD9306F715EA9B959EDB892614F6D581] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Userenv.) -- C:\Windows\System32\userenv.dll   [94016]
O44 - LFC:[MD5.CBF73734B883C712BC07796708FCB0CD] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys   [69464]
O44 - LFC:[MD5.AF2A68F7890A680DAE0637EC49456A7B] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Web DAV Client DLL.) -- C:\Windows\System32\davclnt.dll   [85504]
O44 - LFC:[MD5.53E370C8ED69C68DFD26BAE4588095F3] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys   [124416]
O44 - LFC:[MD5.DB3F0877E5C225693A131AE82C262957] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Windows Overlay Filter.) -- C:\Windows\System32\Drivers\wof.sys   [138584]
O44 - LFC:[MD5.2169BB3BA0596881EE717A93EC60037D] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Windows Search URI Handler.) -- C:\Windows\System32\Windows.Shell.Search.UriHandler.dll   [35328]
O44 - LFC:[MD5.E6B3EE334DD67D3DA1411292877C15CD] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Windows Wi-Fi Direct DAF Plugin.) -- C:\Windows\System32\dafWfdProvider.dll   [153600]
O44 - LFC:[MD5.75DE8AED4FE16D07E7E22208BA88F0C5] - 10/05/2014 - 04:09:12 ---A- . (.Microsoft Corporation - Éditeur de descripteur de sécurité.) -- C:\Windows\System32\aclui.dll   [887296]
O44 - LFC:[MD5.B5B3334F177CED627C2D7FE38235B6B1] - 10/05/2014 - 04:09:56 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb   [2724864]
O44 - LFC:[MD5.130AFD0E373F22A6320B60FEBB7E8D56] - 10/05/2014 - 17:45:53 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys   [360376]
O44 - LFC:[MD5.3B5CA8EB6748D234F117AB203491F6F9] - 10/05/2014 - 17:45:54 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys   [165744]
O44 - LFC:[MD5.684EA7B248E1086E976E57F0FD5D5F2C] - 10/05/2014 - 17:56:23 ---A- . (.BitDefender - Active Virus Control Kernel Filtering drive.) -- C:\Windows\System32\Drivers\avckf.sys   [516936]
O44 - LFC:[MD5.026AE069027A3F25296FE1432C89D631] - 10/05/2014 - 17:56:23 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys   [778032]
O44 - LFC:[MD5.C24CD084F97B209376756E875AD800DE] - 10/05/2014 - 17:56:28 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\Drivers\bdfndisf6.sys   [78656]
O44 - LFC:[MD5.A1777C97C2FEA21D7166752AA2CCCBE8] - 10/05/2014 - 17:56:28 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys   [66832]
O44 - LFC:[MD5.9AAE1351722954E1C97764C0C431224B] - 10/05/2014 - 17:56:28 ---A- . (.BitDefender SRL - BitDefender SandBox User Interface Skinning.) -- C:\Windows\System32\bdsandboxuiskin.dll   [74512]
O44 - LFC:[MD5.2AAC896ECE26B5D71F765E9953893460] - 10/05/2014 - 17:56:28 ---A- . (.BitDefender SRL - BitDefender SandBox User Mode Filter Librar.) -- C:\Windows\System32\bdsandboxuh.dll   [27168]
O44 - LFC:[MD5.9130CCE19B5DB3D2E31F9F789263FC4A] - 10/05/2014 - 17:56:28 ---A- . (.Microsoft Corporation - CAPICOM Module.) -- C:\Windows\capicom.dll   [511328]
O44 - LFC:[MD5.3EB07ACEB02C6BBC58212BECF2114702] - 10/05/2014 - 17:56:35 ---A- . (.Bitdefender - Bitdefender Early Launch Anti-Malware Drive.) -- C:\Windows\System32\Drivers\bdelam.sys   [19984]
O44 - LFC:[MD5.A9970042BE512C7981B36E689C5F3F9F] - 10/05/2014 - 17:56:39 ---A- . (.Microsoft Corporation - WDF Coinstaller.) -- C:\Windows\System32\WdfCoInstaller01009.dll   [1461992]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/05/2014 - 17:56:41 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_Kernel_avchv_01009.Wdf   [0]
O44 - LFC:[MD5.4E8F2BB3A5A87E75C35533723B50E685] - 10/05/2014 - 17:57:30 ---A- . (...) -- C:\Windows\System32\user_gensett.xml   [385]
O44 - LFC:[MD5.18F93623E7CFA161D479FA3CD0B289E5] - 10/05/2014 - 19:17:40 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\Drivers\bdvedisk.sys   [74952]
O44 - LFC:[MD5.7F9B99B564E7C9FBB6729ED95B5BBB24] - 10/05/2014 - 19:17:41 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control.) -- C:\Windows\System32\Drivers\avchv.sys   [242504]
O44 - LFC:[MD5.9533FE0A942E00114047140B42DF8E3D] - 12/05/2014 - 23:53:10 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe   [175016]
O44 - LFC:[MD5.37C15684482B4D596316735DCEEE939A] - 12/05/2014 - 23:53:10 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe   [175528]
O44 - LFC:[MD5.B42338F92D3BDADA79B6BE553E72587C] - 12/05/2014 - 23:53:10 ---A- . (.Oracle Corporation - Pas de description.) -- C:\Windows\System32\WindowsAccessBridge.dll   [94632]
O44 - LFC:[MD5.6EA69D2312F3571F6F8BEADD224165E8] - 12/05/2014 - 23:53:12 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe   [264616]
O44 - LFC:[MD5.D5D25B7249B962BBD7D03B1C91D57106] - 13/05/2014 - 10:41:00 ---A- . (.Microsoft Corporation - Microsoft® Visual FoxPro® HTML Help Support.) -- C:\Windows\System32\FOXHHELP9.EXE   [73728]
O44 - LFC:[MD5.0AFFD99DE49ECB535F7EE81F1DB9C5AC] - 13/05/2014 - 10:41:00 ---A- . (.Microsoft Corporation - Microsoft® Visual FoxPro® HTML Help Support.) -- C:\Windows\System32\FOXHHELPPS9.DLL   [16384]
O44 - LFC:[MD5.B44598528C6AE71ED5A9910D22313783] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctDropDate ActiveX Control Module.) -- C:\Windows\System32\ctDropDate.ocx   [151552]
O44 - LFC:[MD5.DC64A0C3DF115C3483EBF27799768B61] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctDropMenu ActiveX Control Module.) -- C:\Windows\System32\ctDropMenu.ocx   [98304]
O44 - LFC:[MD5.E8E9596E3106ACC180B76B1B8554F137] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctGrid ActiveX Control Module.) -- C:\Windows\System32\ctGrid.ocx   [856064]
O44 - LFC:[MD5.88B2B720DA2EC12A8BA0D6288C784DE3] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctList List View ActiveX Control.) -- C:\Windows\System32\ctList.ocx   [471040]
O44 - LFC:[MD5.6404B32AD2FB5975071F4FEF35E4F48D] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctListBar List Bar ActiveX Control.) -- C:\Windows\System32\ctListbar.ocx   [221184]
O44 - LFC:[MD5.E400373D944DB7A979604B46016C39B8] - 13/05/2014 - 10:41:04 ---A- . (.DBI Technologies Inc. - ctTree ActiveX Control Module.) -- C:\Windows\System32\ctTree.ocx   [499712]
O44 - LFC:[MD5.A82F6CA4CF0DB37DF1276D8F610866A6] - 13/05/2014 - 10:41:04 ---A- . (.Fast Reports, Inc. - FastReport COM library.) -- C:\Windows\System32\FastReport4.dll   [4505600]
O44 - LFC:[MD5.86F1895AE8C5E8B17D99ECE768A70732] - 13/05/2014 - 10:41:04 ---A- . (.Microsoft Corporation - Microsoft® C Runtime Library.) -- C:\Windows\System32\msvcr71.dll   [348160]
O44 - LFC:[MD5.4E9CBC45D6EFB17A587DF4169227139F] - 13/05/2014 - 10:41:04 ---A- . (.dbi Technologies Inc. - ctHtml HTML Viewer ActiveX Control.) -- C:\Windows\System32\ctHtml.ocx   [57344]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/05/2014 - 18:55:13 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf   [0]
O44 - LFC:[MD5.A2E48F075EC3DA3A9E0D94001BDDC4D6] - 14/05/2014 - 20:16:22 ---A- . (...) -- C:\Windows\System32\%TMP%   [1024]
O44 - LFC:[MD5.3F40FA664309ED1CCC3592636A94DDF4] - 14/05/2014 - 20:16:34 ---A- . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\Drivers\hcmon.sys   [43840]
O44 - LFC:[MD5.BCBC72F1CD98187786478F5BC2AB2E0D] - 14/05/2014 - 20:16:53 ---A- . (.VMware, Inc. - VMware network install library.) -- C:\Windows\System32\vnetlib.dll   [776920]
O44 - LFC:[MD5.08E2C72275EEB2E74575D8176CC08EA6] - 14/05/2014 - 20:16:58 ---A- . (.VMware, Inc. - VMware NAT Service.) -- C:\Windows\System32\vmnat.exe   [437976]
O44 - LFC:[MD5.91E5F76329BC5EE309B9ECABE7E8844D] - 14/05/2014 - 20:16:58 ---A- . (.VMware, Inc. - VMware network application interface driver.) -- C:\Windows\System32\Drivers\vmnetuserif.sys   [26968]
O44 - LFC:[MD5.C04DA837FBC636DC88A2ACAEDB4E95F6] - 14/05/2014 - 20:17:02 ---A- . (.VMware, Inc. - VMware VMnet DHCP service.) -- C:\Windows\System32\vmnetdhcp.exe   [359128]
O44 - LFC:[MD5.843081D296F617DDFAE4D70F2564C852] - 14/05/2014 - 20:17:33 ---A- . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\Drivers\vsock.sys   [63824]
O44 - LFC:[MD5.4408CA8FD668E6C29948811FD25B1592] - 14/05/2014 - 20:17:33 ---A- . (.VMware, Inc. - VSockets Library.) -- C:\Windows\System32\vsocklib.dll   [63568]
O44 - LFC:[MD5.6386E449D473501F191456DF1D12E434] - 14/05/2014 - 20:35:23 ---A- . (...) -- C:\Windows\System32\HWLMSET2PS.dll   [9728]
O44 - LFC:[MD5.F3A5F2BC52330DD6C8DB8EE7B7E0CFBF] - 14/05/2014 - 20:35:23 ---A- . (.Guillemot Corporation S.A. - HWLMSET2.) -- C:\Windows\System32\HWLMSET2.exe   [589824]
O44 - LFC:[MD5.CC0587F353DF94C119D7B57F99C8B6E5] - 14/05/2014 - 20:36:45 ---A- . (.Akkord Corporation - Stream Class Mini Driver.) -- C:\Windows\System32\Drivers\HDvidv.sys   [285952]
O44 - LFC:[MD5.F02EA43AE8F936124DEBF5B87F12C795] - 14/05/2014 - 20:36:45 ---A- . (.Guillemot Corporation - Filter Driver for the Hercules Webcams (MJP.) -- C:\Windows\System32\Drivers\hxctlflt.sys   [99968]
O44 - LFC:[MD5.2A1383753C9139226876338AC3FD44E7] - 14/05/2014 - 20:36:45 ---A- . (.OmniVision Technologies Inc. - Hercules VideoProcAmp Property Page.) -- C:\Windows\System32\HDExt.ax   [19456]
O44 - LFC:[MD5.9F05C1375F50E37BB278E5E7699C9088] - 14/05/2014 - 20:36:45 ---A- . (.OmniVision Technologies Inc. - OmniVision VFW Extention Page.) -- C:\Windows\System32\HDEXT.dll   [53248]
O44 - LFC:[MD5.1360A7661E5CD03BEF83C38C553A840E] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Authentication Provider.) -- C:\Windows\System32\storewuauth.dll   [159232]
O44 - LFC:[MD5.6AF6B1F571EACF5793BF619D0A8C6EB5] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - DLL d’exécution de l’infrastructure de test.) -- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll   [189952]
O44 - LFC:[MD5.8D302072E127B6C201BAA7EC5DB99C6C] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - This tool resets the Windows Store without.) -- C:\Windows\System32\WSReset.exe   [79360]
O44 - LFC:[MD5.D8C63F333D4A8D8433849A9ADC092BE9] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe   [31232]
O44 - LFC:[MD5.5E5146E8C3B7E52B2D7A5CCBAF04B65B] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll   [307712]
O44 - LFC:[MD5.DC72DC452793C9622E6F056B89F9302C] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll   [123904]
O44 - LFC:[MD5.82119579B000F62D96B083BC6A246C07] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll   [80896]
O44 - LFC:[MD5.8DA8026471B3470085B4AFB9C77BF45F] - 15/05/2014 - 10:12:26 ---A- . (.Microsoft Corporation - Windows Update client proxy stub.) -- C:\Windows\System32\wups.dll   [25088]
O44 - LFC:[MD5.51B615EF9408277FEF586EB97583844E] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll   [666624]
O44 - LFC:[MD5.1B3D8FADD954FA9161E65DA81F6F8E92] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - DLL du Gestionnaire de processus d’arrière-.) -- C:\Windows\System32\ubpm.dll   [159744]
O44 - LFC:[MD5.90F9A05844D80D5A190C07DA3025AC0F] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll   [1634304]
O44 - LFC:[MD5.AB3A013BA1C50B2309E5BF8136600656] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - TWINUI.APPCORE.) -- C:\Windows\System32\twinui.appcore.dll   [828928]
O44 - LFC:[MD5.92E9811EEC7DE0A8E0AD8632F7C79513] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe   [49544]
O44 - LFC:[MD5.0542A44401EA9451D82D3DF4BF3BD871] - 15/05/2014 - 10:12:27 ---A- . (.Microsoft Corporation - twinapi.appcore.) -- C:\Windows\System32\twinapi.appcore.dll   [419928]
O44 - LFC:[MD5.3F0DB8120F65E3223B4EAF6CA4CDB3C5] - 15/05/2014 - 10:12:28 ---A- . (.Microsoft Corporation - DLL WSShared.) -- C:\Windows\System32\WSShared.dll   [754688]
O44 - LFC:[MD5.ABF248007EAF71606B692F2178E483D7] - 15/05/2014 - 10:12:29 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll   [2818048]
O44 - LFC:[MD5.6923D6FAB7CBA8D82BD792182B4F3DE4] - 15/05/2014 - 10:12:31 ---A- . (.Microsoft Corporation - Microsoft SLR Error Reporting Helper.) -- C:\Windows\System32\mrt_map.dll   [80032]
O44 - LFC:[MD5.BA4FA107EF9A728C58A81B2EFCD6FE2B] - 15/05/2014 - 10:12:31 ---A- . (.Microsoft Corporation - System Language Runtime.) -- C:\Windows\System32\mrt100.dll   [26784]
O44 - LFC:[MD5.5B9AEA959D59C5F2DAEC2E6FD6DDFB0F] - 15/05/2014 - 10:13:49 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys   [30224]
O44 - LFC:[MD5.D7B8475F59FD0C9C395151E5BB5DCC2E] - 15/05/2014 - 10:13:50 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys   [92504]
O44 - LFC:[MD5.BBD6DF3FC00CACBFA92A4C98CE5C0CCD] - 15/05/2014 - 10:13:50 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys   [219992]
O44 - LFC:[MD5.1DEC681B79501A714F0D3FA2787183C3] - 15/05/2014 - 10:13:51 ---A- . (.Microsoft Corporation - Programme d’installation de Windows Update.) -- C:\Windows\System32\wusa.exe   [305152]
O44 - LFC:[MD5.FBCF3F01177953EBF1E735643621CCF5] - 15/05/2014 - 10:14:53 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll   [69632]
O44 - LFC:[MD5.EB5347F6149D3FF25F4D609A21A3BD67] - 15/05/2014 - 10:14:54 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll   [17382912]
O44 - LFC:[MD5.185ADA973B5020655CEE342059A86CBB] - 15/05/2014 - 11:21:37 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys   [26840]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 15/05/2014 - 11:40:27 --HA- . (...) -- C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf   [0]
O44 - LFC:[MD5.C8C9800179AF00C90629514E30873D80] - 15/05/2014 - 13:04:26 ---A- . (.http://libusb-win32.sourceforge.net - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys   [42592]
O44 - LFC:[MD5.535779909A40B42F4F3E48598F5778A5] - 15/05/2014 - 13:04:26 ---A- . (.http://libusb-win32.sourceforge.net - libusb-win32 - DLL.) -- C:\Windows\System32\libusb0.dll   [67680]
O44 - LFC:[MD5.262AD0EF90F757FB715B3EDD6A8E469C] - 15/05/2014 - 16:20:36 ---A- . (.Microsoft Corporation - PresentationNative_v0300.dll.) -- C:\Windows\System32\PresentationNative_v0300.dll   [778936]
O44 - LFC:[MD5.2083BD93AE43F9494318B422FF8943D1] - 15/05/2014 - 16:20:36 ---A- . (.Microsoft Corporation - WinFX OpenType/CFF Rasterizer.) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll   [102608]
O44 - LFC:[MD5.134F0E458D2DBDC297CD785F53F7129F] - 15/05/2014 - 16:20:36 ---A- . (.Microsoft Corporation - Windows Presentation Foundation Terminal Se.) -- C:\Windows\System32\TsWpfWrp.exe   [35480]
O44 - LFC:[MD5.C857721980B36F7018327FA795648CFF] - 15/05/2014 - 18:13:34 ---A- . (.Advanced Messaging Systems LLC - Outlook Redemption COM library.) -- C:\Windows\System32\PhoenixDll.dll   [6131200]
O44 - LFC:[MD5.9827540AD8A26F15F0CB56B6121BE143] - 15/05/2014 - 18:13:35 ---A- . (.Advanced Messaging Systems LLC - Outlook Redemption COM library.) -- C:\Windows\System32\StellarProfile.dll   [791680]
O44 - LFC:[MD5.4C0324ED6C52BE77907099A50D0AB633] - 15/05/2014 - 20:58:40 ---A- . (...) -- C:\Windows\spwdrp.INI   [135]
O44 - LFC:[MD5.F541298E463FA96F128629E799352E60] - 16/05/2014 - 15:26:10 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe   [90547776]
O44 - LFC:[MD5.0DC5AF80D059DEC792B665ED598C6567] - 17/05/2014 - 00:02:52 ---A- . (.SQLite Development Team - SQLite Dynamic Link Library (No TCL).) -- C:\Windows\System32\sqlite3.dll   [536576]
O44 - LFC:[MD5.681A8BD0F33530DDA4BD727547B97F59] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\System32\srcore.dll   [389632]
O44 - LFC:[MD5.8A382E0BB01F4DF83F3AEBE0B270DE61] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - BootMenuUX.) -- C:\Windows\System32\BootMenuUX.dll   [117248]
O44 - LFC:[MD5.3DA5CD1E3B9BDAF79731CB6CB1029CB3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Client de contrainte de quarantaine de la p.) -- C:\Windows\System32\tsgqec.dll   [53248]
O44 - LFC:[MD5.FF28231D41465C253E9F9EF164DD619C] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL de l’API côté client de configuration a.) -- C:\Windows\System32\wlanapi.dll   [230400]
O44 - LFC:[MD5.E697F1E4E819EB12C40AE01F88626BAB] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL de l’utilitaire de ressource de cluster.) -- C:\Windows\System32\resutils.dll   [219136]
O44 - LFC:[MD5.69F326FAE43423A4EDC1FA975C15FEF3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL du service de configuration automatique.) -- C:\Windows\System32\wlansvc.dll   [1309184]
O44 - LFC:[MD5.1FB00FDA0377C7DA27609507BE23A508] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkFoldersShell.dll   [166400]
O44 - LFC:[MD5.756E1472CB3BE829A8555869469074DE] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Fournisseur logiciel du service Microsoft®.) -- C:\Windows\System32\swprv.dll   [353280]
O44 - LFC:[MD5.D6BB129AB4F45174432D88C0B768E3A6] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll   [174080]
O44 - LFC:[MD5.495C3945889DD59993474F2434863835] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft Direct3D OS Thunk Layer.) -- C:\Windows\System32\d3d8thk.dll   [11776]
O44 - LFC:[MD5.D0E0E176F86C3B1048A67144DE0C5CD3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft® Remote Desktop Services Cryptogr.) -- C:\Windows\System32\tlscsp.dll   [46592]
O44 - LFC:[MD5.68A23F58F6F16B81BCBFCAA07CDF0680] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft® Windows System Restore Client Li.) -- C:\Windows\System32\srclient.dll   [61440]
O44 - LFC:[MD5.CEC5BA16A982DF0EE73A76879D58E272] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - OneDrive Sync Engine Host.) -- C:\Windows\System32\SkyDrive.exe   [672256]
O44 - LFC:[MD5.CF3EA59E07BF906B43058C98B6750D16] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Remote Desktop Services Client for Microsof.) -- C:\Windows\System32\rdvidcrl.dll   [855552]
O44 - LFC:[MD5.9FB020D7E15FFC391A14C816B313B30F] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe   [245248]
O44 - LFC:[MD5.F5DB09E62DD1F1864C8DCF596645B540] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll   [623104]
O44 - LFC:[MD5.5C74AC34C1CAA9C232836C580272B0DD] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Storage Management Provider for Spaces.) -- C:\Windows\System32\mispace.dll   [1029120]
O44 - LFC:[MD5.49F946F6350B2B395B23B648DD6BDCA1] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - System Settings Admin Flow XAML UI Implemen.) -- C:\Windows\System32\SystemSettingsAdminFlowUI.dll   [1631232]
O44 - LFC:[MD5.1B40B955BF29EC3C9877E0D7FBA6B0BF] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Telemetry Library for the OneDrive client.) -- C:\Windows\System32\SkyDriveTelemetry.dll   [590336]
O44 - LFC:[MD5.B1BE3F92825E0757B9477B2A3C690434] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll   [119296]
O44 - LFC:[MD5.3CABBCB26C4E73F3440A8A064EB490FF] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 Client Side Hel.) -- C:\Windows\System32\wlanhlp.dll   [11264]
O44 - LFC:[MD5.B6803C8A600E3F029A3D688D9E590CA3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM DLL.) -- C:\Windows\System32\wlanmsm.dll   [300544]
O44 - LFC:[MD5.4874EB05C1BE374B8A4AC15DF3DB07B0] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - API client de stratégie de groupe.) -- C:\Windows\System32\gpapi.dll   [111528]
O44 - LFC:[MD5.956D8170AD470804405C0564E10ED6ED] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll   [406504]
O44 - LFC:[MD5.06AB75759A0B2D79680F52ACDAE702A1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Bibliothèque d’API de cluster.) -- C:\Windows\System32\clusapi.dll   [313344]
O44 - LFC:[MD5.A58318CA9F98AAB207D4C84868490D1D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys   [502104]
O44 - LFC:[MD5.8C25FBB338147754DA42DF990FB3AE4A] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL MFCaptureEngine.) -- C:\Windows\System32\MFCaptureEngine.dll   [285144]
O44 - LFC:[MD5.88A821BC72CB1A935C92F453586233EF] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL Media Foundation.) -- C:\Windows\System32\mf.dll   [518544]
O44 - LFC:[MD5.96C367C7332903BE56F3638C7A70A56C] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll   [1089536]
O44 - LFC:[MD5.9B2871A78B9C21E8476361202F7D4D17] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Energy System Resource Usage Monitor (SRUM).) -- C:\Windows\System32\energyprov.dll   [47616]
O44 - LFC:[MD5.D9999E42604DA1D1F438C60669D7C7FB] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS   [286040]
O44 - LFC:[MD5.0F2941E664595AD94A737EA9016FC5D2] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Flux d’administration des paramètres du PC.) -- C:\Windows\System32\SystemSettingsAdminFlows.exe   [229344]
O44 - LFC:[MD5.4659090401A38C95A70F7847B1D981B0] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Fournisseur d’infrastructure WMI de configu.) -- C:\Windows\System32\tscfgwmi.dll   [185344]
O44 - LFC:[MD5.0E647295EA5573F06DDD42F0FDFF254A] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) -- C:\Windows\System32\Drivers\fltMgr.sys   [271192]
O44 - LFC:[MD5.3D06FB84CFFB1D959ACE7690A27A89E1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys   [69632]
O44 - LFC:[MD5.38C86165505EB17F2317DD20963F3B02] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe   [194752]
O44 - LFC:[MD5.6BAE2EB5EFCEAC999BB1A5BF267C711D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Media Foundation Platform DLL.) -- C:\Windows\System32\mfplat.dll   [707048]
O44 - LFC:[MD5.336CD3BC763E300F5755BDAF26B3F6C2] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys   [311128]
O44 - LFC:[MD5.619C6E72B8433B3F67738F7E6C972A96] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll   [230808]
O44 - LFC:[MD5.74F452379260EA77CC59905AEDBD5AE7] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys   [240472]
O44 - LFC:[MD5.0586EBA2C2741193863CE0B07050E15D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft\Optimiseur de lecteur.) -- C:\Windows\System32\defragsvc.dll   [358400]
O44 - LFC:[MD5.77E18A1B65F3362137BCA8DEDBA3754F] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe   [5786968]
O44 - LFC:[MD5.9A82354DF0DDC5F131461DE01404BABC] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Panneau de configuration de Dossiers de tra.) -- C:\Windows\System32\WorkfoldersControl.dll   [667136]
O44 - LFC:[MD5.C7305D66D279C4A9445C049ABD6CE8A1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Prelaunch OptIn.) -- C:\Windows\System32\ploptin.dll   [31064]
O44 - LFC:[MD5.15905E6B799C1446A37915ED23CD17E5] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - RPC HTTP DLL.) -- C:\Windows\System32\rpchttp.dll   [144384]
O44 - LFC:[MD5.442E2B5A3B15DEA24AD89EDFBB7330CD] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys   [294744]
O44 - LFC:[MD5.E64760EE4341393C3895AD3FC1C8581D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys   [185856]
O44 - LFC:[MD5.7A0CFACFDF18C5A44D05F91656AB2C70] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Service Centre de sécurité de Windows.) -- C:\Windows\System32\wscsvc.dll   [99328]
O44 - LFC:[MD5.044B27361CEE42AD0662B04D57CDB716] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Service de cliché instantané de volumes Mic.) -- C:\Windows\System32\VSSVC.exe   [970240]
O44 - LFC:[MD5.A3ECC0F6960AA699895CB48BC69BEA3B] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll   [326024]
O44 - LFC:[MD5.EAF47B59FDEA68BC21963E3F05C0B0FE] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys   [333656]
O44 - LFC:[MD5.095419EC9E2CC85998B1824AAF6887D6] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Stratégie de groupe Client de préférences.) -- C:\Windows\System32\gpprefcl.dll   [590336]
O44 - LFC:[MD5.A9A027378882FFA14000612AE6FDA7AB] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Système de propriétés Microsoft.) -- C:\Windows\System32\propsys.dll   [1200288]
O44 - LFC:[MD5.A624CA7CDFA7941EECD6F96F1A47CCA3] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Video Stabilization MFT.) -- C:\Windows\System32\MSVideoDSP.dll   [178184]
O44 - LFC:[MD5.008368626F3EFAEDB0C2CD4565BA6797] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - API du Gestionnaire de fenêtres du Bureau M.) -- C:\Windows\System32\dwmapi.dll   [98584]
O44 - LFC:[MD5.13CE2AA6D3ACAF0B485DBFE8AF2F5C48] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll   [305768]
O44 - LFC:[MD5.59B435929D297D1ECC33CADB2D271C66] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll   [2825216]
O44 - LFC:[MD5.9E51948344BC8C8EBBDCD197948940F4] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [244736]
O44 - LFC:[MD5.5FAEA469BCE03F8FABAFB63D7603DC3C] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLNA DLL.) -- C:\Windows\System32\Windows.Media.Streaming.dll   [982016]
O44 - LFC:[MD5.962753FCB305B7F5D017A21E4636FE26] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll   [553472]
O44 - LFC:[MD5.20EA1075D820ECD58400A76B617DC384] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys   [156160]
O44 - LFC:[MD5.561945C42E36012B4799C342E6A96498] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll   [800768]
O44 - LFC:[MD5.90C83CF02C884315E595FA07CA9C64EF] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Media Foundation Simple Video Renderer DLL.) -- C:\Windows\System32\mfsvr.dll   [387896]
O44 - LFC:[MD5.5213858EAB957E8153D45B13FCF30082] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys   [333312]
O44 - LFC:[MD5.F4138DC230FC3DFE9E31201561D0491B] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys   [264536]
O44 - LFC:[MD5.216D830A67387CF922FEDC0DABA9BDFF] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys   [461312]
O44 - LFC:[MD5.F443E09D7076D93ACC69D751960AE744] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys   [375296]
O44 - LFC:[MD5.058C080523FA3D22B2C45F5C50E00375] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys   [560128]
O44 - LFC:[MD5.C97E772120135CD320CB217C92105B12] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de spouleur Windows.) -- C:\Windows\System32\winspool.drv   [370176]
O44 - LFC:[MD5.A4F3682781DD8B36E97FD04BA50845A2] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - RDPSRAPI COM Objects.) -- C:\Windows\System32\rdpencom.dll   [209920]
O44 - LFC:[MD5.E678126493997B951C6A6E91BC15C91C] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - SearchFolder.) -- C:\Windows\System32\SearchFolder.dll   [836608]
O44 - LFC:[MD5.8AEC7BA833DF2F6A21EA43BC10388E27] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\System32\MDEServer.exe   [264704]
O44 - LFC:[MD5.628B9923175FE0873D94DC3D3A990F14] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\System32\wmpmde.dll   [1159520]
O44 - LFC:[MD5.EC4FA776548BF1A05DAE3B5EFB0FFE6F] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\System32\winmde.dll   [1209616]
O44 - LFC:[MD5.E2AAB5EDC278D489C8EF87F277B5E3E6] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Windows Media Runtime DLL.) -- C:\Windows\System32\Windows.Media.dll   [888320]
O44 - LFC:[MD5.76892045ECB1D830185618DBD3467562] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll   [337408]
O44 - LFC:[MD5.BE8FB66895B5475B09F5907D875CD47D] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\System32\services.exe   [328984]
O44 - LFC:[MD5.BF701FF65226801895FF099A8B1E711D] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll   [834560]
O44 - LFC:[MD5.5AE9C90A51256F72C541A2FD81EAB7C4] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Media Foundation Core DLL.) -- C:\Windows\System32\mfcore.dll   [2144984]
O44 - LFC:[MD5.87AB9959EC23455326C8C55E59DE0A88] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Media Foundation MPEG2 Source and Sink DLL.) -- C:\Windows\System32\mfmpeg2srcsnk.dll   [669856]
O44 - LFC:[MD5.F9243C39F7F2F289357C97791B522546] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Microsoft OneDrive Sync Engine.) -- C:\Windows\System32\SyncEngine.dll   [3563008]
O44 - LFC:[MD5.ECB45C9FD9AC8DC3469BD323937DCC7A] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys   [3497472]
O44 - LFC:[MD5.EA7A99A15E809938A6D44E0C4CB00B57] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Service Dossiers de travail Microsoft (C).) -- C:\Windows\System32\workfolderssvc.dll   [1210368]
O44 - LFC:[MD5.A54EB398BC2D792A0C603A97F7975FD8] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll   [357376]
O44 - LFC:[MD5.A93E67D9084BEFC32C8E2B75FCC5B02E] - 17/05/2014 - 11:17:00 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll   [11792384]
O44 - LFC:[MD5.22306013C7C180699EAD991005AF2F93] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [1167360]
O44 - LFC:[MD5.8EAD5F0BC40579B106CDD9D2591CFEC5] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Direct3D 9 Runtime.) -- C:\Windows\System32\d3d9.dll   [1797896]
O44 - LFC:[MD5.E4D45EA9464CD5A05803CF2CD8D12AAE] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys   [1871704]
O44 - LFC:[MD5.23D46413D3BEF8C3402323025A51844D] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers.dll   [2130432]
O44 - LFC:[MD5.4550DC04464B86C5EB2CC77D9D27C06C] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Windows.UI.Search.) -- C:\Windows\System32\Windows.UI.Search.dll   [5833216]
O44 - LFC:[MD5.1E48870B29C7D7328A7D484A61250AE5] - 17/05/2014 - 11:17:03 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll   [5774848]
O44 - LFC:[MD5.A5358F64D4EB5ABE2829981CD9734901] - 17/05/2014 - 11:17:03 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll   [18755672]
O44 - LFC:[MD5.A717D4AC0C44BCBE990DBF8B6EC979AA] - 17/05/2014 - 11:17:07 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll   [12711424]
O44 - LFC:[MD5.0FDDBC46B0FE68B9516BED5CDC2A5296] - 17/05/2014 - 11:17:08 ---A- . (.Microsoft Corporation - PDF WinRT APIs.) -- C:\Windows\System32\Windows.Data.Pdf.dll   [5104640]
O44 - LFC:[MD5.787B436B4C7E330D9127A503B5EBA369] - 17/05/2014 - 11:23:37 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [333584]
O44 - LFC:[MD5.8AAD333C876590293F72B315E162BCC7] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O44 - LFC:[MD5.BA597F9A4BB90F038266CE1A3C3BE3FB] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\COMMAND.COM   [50648]
O44 - LFC:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O44 - LFC:[MD5.492090267B9608C62B956CD29BE3AFB7] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O44 - LFC:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O44 - LFC:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O44 - LFC:[MD5.CF9ED169FF86D935E47999E82359E898] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O44 - LFC:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O44 - LFC:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O44 - LFC:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O44 - LFC:[MD5.30A64B24DABF0483DDF6759D4F58A180] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS   [34688]
O44 - LFC:[MD5.112BFAEA0B8AD1AAB4484BBBE1DA9B40] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O44 - LFC:[MD5.BE6FE759FC5B154243914AA330BAADE6] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS   [35552]
O44 - LFC:[MD5.37BA9F0CB578362516C64344ECEC8ADC] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS   [34688]
O44 - LFC:[MD5.D753EEE17725526A67ACDDAA5D63EF68] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\append.exe   [12498]
O44 - LFC:[MD5.84BDB1E378591D930482B896A1648C53] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\bios1.rom   [28420]
O44 - LFC:[MD5.B44C4C9CA9D4BCC8430F3276576F562B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\bios4.rom   [8191]
O44 - LFC:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\country.sys   [27097]
O44 - LFC:[MD5.03783D0840B2C54D7665248425C74417] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\dosx.exe   [53600]
O44 - LFC:[MD5.B7A0AA49CBB604B2C3A42A49C36D8A4F] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\edlin.exe   [12642]
O44 - LFC:[MD5.683626544E81387771ED55E1A0F2047B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\exe2bin.exe   [8424]
O44 - LFC:[MD5.5E835121A3899CFA37E285E0CA2B4E7D] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\nlsfunc.exe   [7052]
O44 - LFC:[MD5.AD7B906FC883959E56E210B2B077CA00] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\setver.exe   [11753]
O44 - LFC:[MD5.86491AD7BC0964089CD4E703E65D45DB] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\v7vga.rom   [18832]
O44 - LFC:[MD5.C980C971AD4FF3CA5CEFDEF40932D3A1] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\win87em.dll   [13312]
O44 - LFC:[MD5.FF924F8AD691F25E5772B6E1A635831A] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Common Dialogs libraries.) -- C:\Windows\System32\COMMDLG.DLL   [32816]
O44 - LFC:[MD5.637D88E7A1BEDC4457C80DBC8BA9F135] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Ctl3D 3D Windows NT(WOW) Control.) -- C:\Windows\System32\ctl3dv2.dll   [27200]
O44 - LFC:[MD5.F6E6EE03D97AC5FCE9F0E4643724A106] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Graftabl Utility.) -- C:\Windows\System32\graftabl.com   [62976]
O44 - LFC:[MD5.D8F01AB82D5699A6A278651777D00B67] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Microsoft Network Dynamic Link Library for.) -- C:\Windows\System32\netapi.dll   [108464]
O44 - LFC:[MD5.43F537117EC1C6D7E9C6B3A3847F3D4C] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - NTVDM.EXE.) -- C:\Windows\System32\ntvdm.exe   [536576]
O44 - LFC:[MD5.D475029D732983ED962A8FF61688C912] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Object Linking and Embedding Client Library.) -- C:\Windows\System32\olecli.dll   [82944]
O44 - LFC:[MD5.F71B2CD664E53E6525AB636DB91320F6] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - System APIs for Multimedia.) -- C:\Windows\System32\MMSYSTEM.DLL   [68992]
O44 - LFC:[MD5.2FA37D14674021365FF4AF6A2B639FB8] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Virtual Dos Machine Network Interface Libra.) -- C:\Windows\System32\vdmredir.dll   [22016]
O44 - LFC:[MD5.01B656374912D7CCF7465A3893F18982] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows COMM Driver.) -- C:\Windows\System32\COMM.drv   [10544]
O44 - LFC:[MD5.789F63C7978AD84A2214D3AA3BF0F609] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Fault detection utility.) -- C:\Windows\System32\DRWATSON.EXE   [28112]
O44 - LFC:[MD5.8E6F7D51A5CB299C25621C6C1AB57E84] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Help Engine application file.) -- C:\Windows\winhelp.exe   [256192]
O44 - LFC:[MD5.37F4D55260E037EE9862D0AF93348755] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows IME interface core component.) -- C:\Windows\System32\WINNLS.DLL   [5120]
O44 - LFC:[MD5.2F6B026C02CAAD3768FEEB6172A1C037] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Kernel.) -- C:\Windows\System32\krnl386.exe   [92320]
O44 - LFC:[MD5.DC8A8C47542EDD026AD8F4AC3D6C2292] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Shell library.) -- C:\Windows\System32\SHELL.DLL   [5120]
O44 - LFC:[MD5.283CAD5E151AE7C73D7F733D527D774E] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows System Editor application file.) -- C:\Windows\System32\sysedit.exe   [18896]
O44 - LFC:[MD5.51331D29F13FDA16832DC5EE8FF9B781] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows WIFE interface core component.) -- C:\Windows\System32\WIFEMAN.DLL   [9216]
O44 - LFC:[MD5.19006F183E6B5CBB5C078CDA84208C3A] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows for Workgroups network driver.) -- C:\Windows\System32\WFWNET.DRV   [12704]
O44 - LFC:[MD5.8AA8DCC96FA0492E3B5D415537FAB8FE] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\EDIT.HLP   [10790]
O44 - LFC:[MD5.6E4E7884E6489AC4F5E6DAB176A73E52] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\GRAPHICS.COM   [19694]
O44 - LFC:[MD5.4D7E256377A5E934EA1820B2CEA79131] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\KB16.COM   [14710]
O44 - LFC:[MD5.CB4EE86C87F4C03FAC7E14F30D57153E] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\NTIO.SYS   [33968]
O44 - LFC:[MD5.C17AFA0AAD78C621F818DD6729572C48] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\debug.exe   [20634]
O44 - LFC:[MD5.F6E368E10B600836DD349FF937B183A2] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\edit.com   [69886]
O44 - LFC:[MD5.52E91EAC2F3175B1A5B0150382B6D771] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\ega.cpi   [127213]
O44 - LFC:[MD5.BC33AA625D6B807F718627386DF78426] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\graphics.pro   [21232]
O44 - LFC:[MD5.390762963E6B4C861E5E0CA5A3E56E40] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\mem.exe   [39274]
O44 - LFC:[MD5.CC91779ED74FAE851CD3EA7541DDE488] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - DDE Management library.) -- C:\Windows\System32\DDEML.DLL   [39424]
O44 - LFC:[MD5.774D60CB0AD198F493CEFC9057755A05] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Microsoft LAN Manager 2.1 Network Driver fo.) -- C:\Windows\System32\lanman.drv   [221600]
O44 - LFC:[MD5.57F8A50513E43AAF6A7B23389E389BBC] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Microsoft LAN Manager 2.1 Network Dynamic L.) -- C:\Windows\System32\pmspl.dll   [46592]
O44 - LFC:[MD5.33E60144FEA594586F9DC2411DDD3A7C] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - NTVDMD.DLL.) -- C:\Windows\System32\ntvdmd.dll   [14336]
O44 - LFC:[MD5.CD91F7B8E44CF4FC5E61359FBC5118C6] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\compobj.dll   [27792]
O44 - LFC:[MD5.87D4F4D78074C0CAC0EAC88ABCF87F7A] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2.dll   [42592]
O44 - LFC:[MD5.EB38BE7D7CF9EC15442A9D24CB39A2AC] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2disp.dll   [169520]
O44 - LFC:[MD5.32CFCC848A57F87638E31E8735515F80] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2nls.dll   [153008]
O44 - LFC:[MD5.5C8CDB104C31D1624EDBEEF75C1506CF] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\storage.dll   [4208]
O44 - LFC:[MD5.7161255DFA81E67B66B746D2504D2F2B] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\typelib.dll   [177856]
O44 - LFC:[MD5.16BF834A84A7DC0D24EDC8E924C90637] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Object Linking and Embedding Server Library.) -- C:\Windows\System32\OLESVR.DLL   [24064]
O44 - LFC:[MD5.D022D32A7BCB0B54C34BD687AC00564C] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Version Checking and File Installation Libr.) -- C:\Windows\System32\ver.dll   [9008]
O44 - LFC:[MD5.A645DE92186DE912A96EBE311F0C5955] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - WIN.COM for compatibility.) -- C:\Windows\System32\win.com   [8192]
O44 - LFC:[MD5.C86363C599E5D6836C21A3A3FD21C388] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows Debug/Tool helper library.) -- C:\Windows\System32\TOOLHELP.DLL   [13888]
O44 - LFC:[MD5.80E15C136F95800C9172E610AA96D9C2] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows Graphics Device Interface core comp.) -- C:\Windows\System32\GDI.EXE   [24576]
O44 - LFC:[MD5.C2520B98C8658C73C138F9B26E203322] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows User-interface core component.) -- C:\Windows\System32\USER.EXE   [47840]
O44 - LFC:[MD5.C7F038338BF55DE73B57C1FC7B23671A] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows file expansion library.) -- C:\Windows\System32\lzexpand.dll   [9936]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2014 - 23:05:06 RSHA- . (...) -- C:\IO.SYS   [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2014 - 23:05:06 RSHA- . (...) -- C:\MSDOS.SYS   [0]
O44 - LFC:[MD5.0C6EA0109CFEDF441F06D031E9A8D1A9] - 18/05/2014 - 00:22:50 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [23256]
O44 - LFC:[MD5.B300EA7D40619799208A5805606A1788] - 18/05/2014 - 00:22:50 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys   [51416]
O44 - LFC:[MD5.1A46B55D553A8033A58E334DFD115E7F] - 18/05/2014 - 01:17:33 ---A- . (...) -- C:\Windows\setupact.log   [294401]
O44 - LFC:[MD5.3F3BEE3B64AB0EF8AFB16098DF928773] - 18/05/2014 - 07:36:06 ---A- . (...) -- C:\Windows\System32\checkdnsid.xml   [265]
O44 - LFC:[MD5.3B4C137E2CA87CF773204653A80B5BE9] - 18/05/2014 - 10:48:20 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys   [75480]
O44 - LFC:[MD5.65EB70FE0AE1D2605FFC0AF96D997F63] - 20/05/2014 - 13:36:14 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI   [1832128]
O44 - LFC:[MD5.160F462669322C6352D9B36717554E26] - 20/05/2014 - 13:36:14 ---A- . (...) -- C:\Windows\System32\perfc009.dat   [136604]
O44 - LFC:[MD5.CC46A7D5C82990C8CA330E240696C74D] - 20/05/2014 - 13:36:14 ---A- . (...) -- C:\Windows\System32\perfc00C.dat   [160416]
O44 - LFC:[MD5.66D563D60BBB160F45F0C3134276EAC3] - 20/05/2014 - 13:36:14 ---A- . (...) -- C:\Windows\System32\perfh009.dat   [724962]
O44 - LFC:[MD5.2B8198F8B1C9D76DF03FC43F671C2C01] - 20/05/2014 - 13:36:14 ---A- . (...) -- C:\Windows\System32\perfh00C.dat   [813792]
O44 - LFC:[MD5.81674239BC81FB7DBEE85B8A35F5C863] - 21/05/2014 - 12:01:24 ---A- . (...) -- C:\Windows\System32\WSCM32.dll   [214528]
O44 - LFC:[MD5.5F5FFD142DE69616EE8610811182D075] - 21/05/2014 - 12:01:24 ---A- . (...) -- C:\Windows\System32\WSCM64.dll   [721263]
O44 - LFC:[MD5.661B911FA04E73FB073FF9B1C9BD2E05] - 21/05/2014 - 13:28:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys   [107736]
O44 - LFC:[MD5.286A47EC1D825E6E5408E3B528A9EB83] - 21/05/2014 - 22:24:54 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin   [512]
O44 - LFC:[MD5.93177BB697C74CA5F3B7F64214223C75] - 22/05/2014 - 12:24:56 ---A- . (...) -- C:\bdlog.txt   [11826]
O44 - LFC:[MD5.10030800DEFBABC8B0D86245E0EC09A6] - 22/05/2014 - 12:25:51 ---A- . (...) -- C:\Windows\PFRO.log   [16094]
O44 - LFC:[MD5.46F64FE02CE3D0BB6AD9E9B1B6D116CE] - 22/05/2014 - 16:54:19 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.7159943E7F35D50304A2A7C1D92BCFE7] - 22/05/2014 - 16:54:54 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1152849]
~ Files: 374 Scanned in 00mn 44s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iaioi2c.sys . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 18 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 3 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys   [86368]
O58 - SDL:22/08/2013 - 06:33:25 ---A- . (.PMC-Sierra - PMC-Sierra Storport  Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys   [773472]
O58 - SDL:22/08/2013 - 06:33:25 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys   [72544]
O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys   [215392]
O58 - SDL:22/08/2013 - 06:33:24 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys   [22880]
O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys   [101728]
O58 - SDL:17/05/2013 - 10:13:26 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\System32\Drivers\ASACPI.sys   [16256]
O58 - SDL:02/12/2013 - 11:55:42 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys   [778032]
O58 - SDL:10/05/2014 - 19:17:41 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\Windows\System32\Drivers\avchv.sys   [242504]
O58 - SDL:02/12/2013 - 11:57:46 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\System32\Drivers\avckf.sys   [516936]
O58 - SDL:13/08/2013 - 00:25:32 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys   [16088]
O58 - SDL:08/09/2013 - 19:04:56 ---A- . (.Bitdefender - Bitdefender Early Launch Anti-Malware Driver.) -- C:\Windows\System32\Drivers\bdelam.sys   [19984]
O58 - SDL:08/07/2013 - 17:07:47 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\Drivers\bdfndisf6.sys   [78656]
O58 - SDL:04/11/2013 - 15:47:30 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys   [66832]
O58 - SDL:10/05/2014 - 19:17:40 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\Drivers\bdvedisk.sys   [74952]
O58 - SDL:21/08/2012 - 12:01:22 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys   [26840]
O58 - SDL:23/08/2013 - 12:48:39 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys   [165744]
O58 - SDL:27/02/2014 - 17:40:48 ---A- . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\Drivers\hcmon.sys   [43840]
O58 - SDL:12/07/2007 - 23:45:08 ---A- . (.Akkord Corporation - Stream Class Mini Driver.) -- C:\Windows\System32\Drivers\HDvidv.sys   [285952]
O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys   [56672]
O58 - SDL:08/02/2009 - 23:42:42 ---A- . (.Guillemot Corporation - Filter Driver for the Hercules Webcams (MJPG).) -- C:\Windows\System32\Drivers\hxctlflt.sys   [99968]
O58 - SDL:23/07/2013 - 22:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaiogpio.sys   [22016]
O58 - SDL:23/07/2013 - 22:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys   [61936]
O58 - SDL:10/08/2013 - 01:39:44 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x86.) -- C:\Windows\System32\Drivers\iaStorAV.sys   [524784]
O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys   [333664]
O58 - SDL:23/10/2013 - 13:03:38 ---A- . (.http://libusb-win32.sourceforge.net - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys   [42592]
O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys   [94048]
O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys   [79712]
O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys   [68960]
O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys   [69472]
O58 - SDL:03/04/2014 - 08:50:56 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys   [23256]
O58 - SDL:18/05/2014 - 10:48:20 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys   [75480]
O58 - SDL:21/05/2014 - 13:28:08 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys   [107736]
O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys   [51552]
O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys   [464736]
O58 - SDL:22/08/2013 - 06:33:32 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys   [58208]
O58 - SDL:03/04/2014 - 08:51:18 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys   [51416]
O58 - SDL:20/03/2014 - 22:03:40 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 335.23.) -- C:\Windows\System32\Drivers\nvlddmkm.sys   [10523480]
O58 - SDL:22/08/2013 - 06:33:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys   [120160]
O58 - SDL:22/08/2013 - 06:33:33 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys   [141664]
O58 - SDL:10/03/2014 - 17:30:04 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\ptun0901.sys   [35288]
O58 - SDL:30/04/2014 - 14:26:22 ---A- . (.CJSC Returnil Software - Returnil Multi Snapshot Engine MiniFilter.) -- C:\Windows\System32\Drivers\rmseffmv.sys   [28336]
O58 - SDL:30/04/2014 - 14:26:24 ---A- . (.CJSC Returnil Software - Returnil Multi Snapshot Engine Core Driver.) -- C:\Windows\System32\Drivers\rmseng.sys   [264736]
O58 - SDL:18/06/2013 - 13:23:13 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x86.sys   [490496]
O58 - SDL:22/08/2013 - 09:16:47 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys   [20480]
O58 - SDL:22/08/2013 - 06:32:56 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys   [41312]
O58 - SDL:22/08/2013 - 06:32:57 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys   [79200]
O58 - SDL:22/08/2013 - 06:32:57 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x86.) -- C:\Windows\System32\Drivers\stexstor.sys   [26976]
O58 - SDL:22/08/2013 - 13:40:22 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\tap0901.sys   [35288]
O58 - SDL:06/05/2014 - 07:48:32 ---A- . (.Spotflux, Inc. - Spotflux Network Device Driver.) -- C:\Windows\System32\Drivers\tapSF0901.sys   [33728]
O58 - SDL:07/08/2013 - 12:46:04 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys   [360376]
O58 - SDL:18/03/2013 - 15:51:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys   [45056]
O58 - SDL:22/08/2013 - 06:33:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys   [18272]
O58 - SDL:08/10/2013 - 17:20:50 ---A- . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\Drivers\vmci.sys   [71888]
O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware virtual network driver (32-bit).) -- C:\Windows\System32\Drivers\vmnet.sys   [20048]
O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware virtual network adapter driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetadapter.sys   [17104]
O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware bridge driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetbridge.sys   [37456]
O58 - SDL:14/04/2014 - 15:41:42 ---A- . (.VMware, Inc. - VMware network application interface driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetuserif.sys   [26968]
O58 - SDL:14/04/2014 - 15:40:58 ---A- . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\Drivers\vmx86.sys   [66136]
O58 - SDL:22/08/2013 - 06:33:01 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\Drivers\vsmraid.sys   [148832]
O58 - SDL:08/10/2013 - 17:20:56 ---A- . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\Drivers\vsock.sys   [63824]
O58 - SDL:22/02/2013 - 02:28:26 ---A- . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\Windows\System32\Drivers\vstor2-mntapi20-shared.sys   [23632]
O58 - SDL:22/08/2013 - 06:33:01 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS   [276832]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\country.sys   [27097]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O58 - SDL:17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\NTIO.SYS   [33968]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS   [34688]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS   [35552]
O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS   [34688]
~ Drivers: 78 Scanned in 00mn 03s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Ads.BackgroundStyles_8_1_RP-9f980e6d.dll   [12248]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!MsnJVData.Video_Styles_8_1_RTM-9da0e9ee.dll   [10712]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.AccentColorStyles_8_1_RP-f16782e7.dll   [13272]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.Branding_8_1_RTM-1aa170b9.dll   [15320]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.ButtonStyles_8_1_SpringGDR-ff8d7ba7.dll   [25560]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.GridViewStyles_8_1_SpringGDR-deacc251.dll   [30680]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.HeroStyles_8_1_RTM-45ef23fc.dll   [23000]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.ImageStyles_8_1_SpringGDR-1e013bca.dll   [12248]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.NullableImage_8_1_SpringGDR-61977366.dll   [11224]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.SerpAnswerBlock_Selectable_8_1_RP-50f23571.dll   [14808]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.SerpAnswerBlock_Suppressed_8_1_RP-9749e2bf.dll   [14296]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.SerpGridViewStyles_8_1_RTM-585bfba1.dll   [23512]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.TextStyles_8_1_SpringGDR-bc62340a.dll   [35800]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Web.MetadataWithoutSuffix_8_1_RP-9fcd7344.dll   [11224]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Web.RichAlgo_Landscape_8_1_RP-30e0ff7c.dll   [11224]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Local\Multimedia.ImageDetails.dll   [18392]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Landscape_8_1_RP-9d7f86a9.dll   [11736]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Portrait_8_1_RP-e2820368.dll   [11736]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.EntryAnswer_Snap_8_1_RP-28755c71.dll   [11736]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.ImageDetails_RTM-645d8117.dll   [18392]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.Home_Horizontal_8_1_RP-bb56e430.dll   [10712]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.Home_Vertical_8_1_RP-a4518597.dll   [10712]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\QuerySuggestion.ListItem_8_1_RP-cfced051.dll   [10712]
O61 - LFC: 15/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.List_8_1_RTM-dddcb8a3.dll   [17880]
O61 - LFC: 15/05/2014 - 18:00:10 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.Algo_Generic_8_1_RP-473969cf.dll   [11224]
O61 - LFC: 15/05/2014 - 18:00:10 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.RichAlgo_Portrait_8_1_RP-9812756d.dll   [11736]
O61 - LFC: 15/05/2014 - 18:00:13 ---A- . (...) -- C:\Users\scorebut\Desktop\CamStudio_Setup_v2.7.2_r326_(build_19Oct2013).exe   [665840]
O61 - LFC: 15/05/2014 - 18:00:13 ---A- . (.CNET Download.com.) -- C:\Users\scorebut\Desktop\cbsidlm-cbsi188-iTools-ORG-75629761.exe   [929416]
O61 - LFC: 15/05/2014 - 18:00:13 ---A- . (.Returnil and its licensors.) -- C:\Users\scorebut\AppData\Roaming\Quietzone\RQZ\rvsupd.dll   [692520]
O61 - LFC: 15/05/2014 - 18:00:14 ---A- . (.Reincubate Ltd.) -- C:\Users\scorebut\Desktop\iphonebackupextractor-latest.exe   [3132136]
O61 - LFC: 15/05/2014 - 18:00:14 ---A- . (.iH8sn0w.) -- C:\Users\scorebut\Desktop\ireb\iREB-r7.exe   [1049088]
O61 - LFC: 15/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\red\redsn0w_win_0.9.15b3\redsn0w.exe   [137580544]
O61 - LFC: 15/05/2014 - 18:00:16 ---A- . (.Tansee, Inc..) -- C:\Users\scorebut\Desktop\tanseeiphonesms.exe   [9613528]
O61 - LFC: 15/05/2014 - 18:00:17 ---A- . (.Hodo iPhone Data Recovery, Inc..) -- C:\Users\scorebut\Downloads\hodo_iOS_data_recovery_trial.exe   [7718130]
O61 - LFC: 16/05/2014 - 18:00:15 ---A- . (.Moritz Bunkus.) -- C:\Users\scorebut\Desktop\mkvtoolnix-6.9.1-setup.exe   [11522283]
O61 - LFC: 16/05/2014 - 18:00:15 ---A- . (.Moritz Bunkus.) -- C:\Users\scorebut\Desktop\mkvtoolnix-amd64-6.9.1-setup.exe   [12058405]
O61 - LFC: 16/05/2014 - 18:00:16 ---A- . (...) -- C:\Users\scorebut\Desktop\vlc-2.1.3-win32.exe   [24677393]
O61 - LFC: 16/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\yamb\Yamb.exe   [1965598]
O61 - LFC: 17/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.FactsList_8_1_RP-bf695b40.dll   [15320]
O61 - LFC: 17/05/2014 - 18:00:09 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.Rating_8_1_RP-5b672b01.dll   [11736]
O61 - LFC: 17/05/2014 - 18:00:13 ---A- . (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.208.exe   [1325827]
O61 - LFC: 17/05/2014 - 18:00:14 ---A- . (.AltrixSoft.) -- C:\Users\scorebut\Desktop\hddinsp.exe   [2781112]
O61 - LFC: 17/05/2014 - 18:00:14 ---A- . (.Malwarebytes Corporation.) -- C:\Users\scorebut\Desktop\mbam-setup-2.0.1.1004.exe   [17305616]
O61 - LFC: 17/05/2014 - 18:00:16 ---A- . (.Resplendence Software Projects Sp..) -- C:\Users\scorebut\Desktop\whocrashedSetup.exe   [2668480]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x64\Unlocker.exe   [130624]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x64\UnlockerDriver5.sys   [12352]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x64\UnlockerInject32.exe   [5120]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x86\Unlocker.exe   [94208]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x86\UnlockerAssistant.exe   [17408]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x86\UnlockerDriver5.sys   [4096]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\x86\UnlockerHook.dll   [4608]
O61 - LFC: 17/05/2014 - 18:00:17 ---A- . (.Nicolas Coolman.) -- C:\Users\scorebut\Desktop\zhpdiag_2014.5.17.66.exe   [6779861]  =>.Nicolas Coolman
O61 - LFC: 18/05/2014 - 18:00:13 ---A- . (...) -- C:\Users\scorebut\Desktop\aida_icons7.dll   [308016]
O61 - LFC: 18/05/2014 - 18:00:14 ---A- . (...) -- C:\Users\scorebut\Desktop\MaConfig_win.exe   [255880]
O61 - LFC: 18/05/2014 - 18:00:14 ---A- . (.Malwarebytes.) -- C:\Users\scorebut\Desktop\mbae-setup-0.10.3.0100.exe   [2463848]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\firefox.com   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\firefox.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\iexplore.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\mbam-chameleon.com   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\mbam-chameleon.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\rundll32.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\svchost.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\melon\winlogon.exe   [218184]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (.Malwarebytes Corp..) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009.exe   [12589848]
O61 - LFC: 18/05/2014 - 18:00:15 ---A- . (.Malwarebytes Corporation.) -- C:\Users\scorebut\Desktop\melon\mbam-setup-downloaded.exe   [17305616]
O61 - LFC: 20/05/2014 - 18:00:13 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\ccsetup413.exe   [4745984]
O61 - LFC: 20/05/2014 - 18:00:14 ---A- . (.Free Time.) -- C:\Users\scorebut\Desktop\FFSetup3.3.4.0.exe   [55003752]
O61 - LFC: 21/05/2014 - 18:00:13 ---A- . (...) -- C:\Users\scorebut\AppData\Roaming\NVIDIA\GLCache\360b878fa721de813dd9378f49ab3ffe\a1096a3e2a3724f6\2505e28d9505a54a.bin   [4866]
O61 - LFC: 21/05/2014 - 18:00:13 ---A- . (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.210.exe   [1326389]
O61 - LFC: 21/05/2014 - 18:00:14 ---A- . (...) -- C:\Users\scorebut\Desktop\DVDshrink32setup_downloader-ccTYoeSZ.exe   [236920]
O61 - LFC: 21/05/2014 - 18:00:14 ---A- . (...) -- C:\Users\scorebut\Desktop\HandBrake-0.9.9-1_i686-Win_GUI.exe   [13888037]
O61 - LFC: 21/05/2014 - 18:00:15 ---A- . (...) -- C:\Users\scorebut\Desktop\RogueKiller.com.exe   [3972608]
O61 - LFC: 21/05/2014 - 18:00:15 ---A- . (.MediaArea.net.) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.54_Windows_x64.exe   [3496248]
O61 - LFC: 21/05/2014 - 18:00:15 ---A- . (.MediaArea.net.) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.69_Windows.exe   [4924256]
O61 - LFC: 21/05/2014 - 18:00:16 ---A- . (.Wondershare Software.) -- C:\Users\scorebut\Desktop\video-converter-ultimate_full905.exe   [41348016]
O61 - LFC: 21/05/2014 - 18:00:17 ---A- . (...) -- C:\Users\scorebut\Desktop\Xilisoft Video Converter Ultimate 7.8.1\x-video-converter-ultimate7.exe   [37554632]
O61 - LFC: 21/05/2014 - 18:00:17 ---A- . (.Ellora Assets Corporation.) -- C:\Users\scorebut\Downloads\FreemakeVideoConverterSetup.exe   [1308200]
O61 - LFC: 22/05/2014 - 18:00:10 ---A- . (.Nicolas Coolman.) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\INetCache\IE\J94SMC42\ZHPDiag2[1].exe   [6781007]  =>.Nicolas Coolman
~ 1 Fichiers temporaires (Temporary files)
~ 1 Fichiers cookies (Cookies files)
~ Files: 78 Scanned in 00mn 09s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [160768]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [128512]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [128512]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [244736]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [1167360]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [731648]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [795648]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [23040]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [88576]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [116224]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [91136]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [980480]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [174592]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [73728]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [105472]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [184832]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [280576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [59392]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [75776]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll   [1203200]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll   [357376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [299008]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll   [165376]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll   [141312]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [93696]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll   [457216]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [177664]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [54784]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [380928]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [248320]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll   [2818048]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [801792]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [564736]
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [151040]
O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll   [75104]
~ Services: 36 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.EAB8264663E2A4D612B09A159AEE8516] [SPRF][10/05/2014] (...) -- C:\ProgramData\1399740342.bdinstall.bin   [828540]
[MD5.9C038759E5993C0B3BFD8F2192C12747] [SPRF][17/05/2014] (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.208.exe   [1325827]
[MD5.70F851F7A524071E13F17DC401A21906] [SPRF][21/05/2014] (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.210.exe   [1326389]
[MD5.F77F69A38F07794FA84385D7D2F9171D] [SPRF][18/05/2014] (...) -- C:\Users\scorebut\Desktop\aida_icons7.dll   [308016]
[MD5.B063DF7C7CA0F702EAC68E569743AAAA] [SPRF][13/05/2013] (...) -- C:\Users\scorebut\Desktop\backuphelper_1293555261.exe   [1693773]
[MD5.0BB89EEEF0B545C2F75E129C7891FA5F] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\bitdefender_isecurity.exe   [7307384]
[MD5.935C478B68509048DC2F6AB32DD6D83A] [SPRF][15/05/2014] (...) -- C:\Users\scorebut\Desktop\CamStudio_Setup_v2.7.2_r326_(build_19Oct2013).exe   [665840]
[MD5.122E0FE0BD52D264FFB874E538114473] [SPRF][15/05/2014] (.CNET Download.com - CNET Download.com.) -- C:\Users\scorebut\Desktop\cbsidlm-cbsi188-iTools-ORG-75629761.exe   [929416]
[MD5.55BC08E32879A3DE7386A2695D668304] [SPRF][20/05/2014] (.Piriform Ltd - CCleaner Installer.) -- C:\Users\scorebut\Desktop\ccsetup413.exe   [4745984]
[MD5.D7B4664714DE480C989038313637A4EE] [SPRF][21/05/2014] (...) -- C:\Users\scorebut\Desktop\DVDshrink32setup_downloader-ccTYoeSZ.exe   [236920]
[MD5.49BC31BCF96D98566B800FBDCB2C663D] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\EasyBCD 2.2.exe   [1618440]
[MD5.A47BECF8B66A4DBC00D237DDAB21D0D2] [SPRF][20/05/2014] (.Free Time - Format Factory Video/Audio/Picture Converter.) -- C:\Users\scorebut\Desktop\FFSetup3.3.4.0.exe   [55003752]
[MD5.C80868306BA3301F58D044B5EDE1179F] [SPRF][11/05/2014] (.Ellora Assets Corporation - Freemake Video Converter Setup.) -- C:\Users\scorebut\Desktop\FreemakeVideoConverterSetup.exe   [1308200]
[MD5.863C73B8DDCB04AE2DF66F59A4354519] [SPRF][21/05/2014] (...) -- C:\Users\scorebut\Desktop\HandBrake-0.9.9-1_i686-Win_GUI.exe   [13888037]
[MD5.3DE0CBFCB71EDD59FEFAFBA300886A78] [SPRF][17/05/2014] (.AltrixSoft - Hard Drive Inspector.) -- C:\Users\scorebut\Desktop\hddinsp.exe   [2781112]
[MD5.88079B66B8CB2C65FC5A220F3C75495C] [SPRF][14/05/2014] (.Macrovision Corporation - Setup.exe.) -- C:\Users\scorebut\Desktop\HHD_v4.0.2.1.exe   [56843688]
[MD5.4AE7A5E56E5EC018C2CFF18DC963A16C] [SPRF][15/05/2014] (.Reincubate Ltd - iPhone Backup Extractor installer.) -- C:\Users\scorebut\Desktop\iphonebackupextractor-latest.exe   [3132136]
[MD5.1B47D23A5EA99CF742E23112B4C33060] [SPRF][18/05/2014] (...) -- C:\Users\scorebut\Desktop\MaConfig_win.exe   [255880]
[MD5.49915672F44C9A4FBC980D72B3B6EF4E] [SPRF][18/05/2014] (.Malwarebytes - Malwarebytes Anti-Exploit Setup.) -- C:\Users\scorebut\Desktop\mbae-setup-0.10.3.0100.exe   [2463848]
[MD5.302103AF95A8F43AD85F80DAE14BDB9C] [SPRF][17/05/2014] (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\scorebut\Desktop\mbam-setup-2.0.1.1004.exe   [17305616]
[MD5.99D69C3E87FE1556B76886F778480E2D] [SPRF][18/05/2014] (.Malwarebytes Corp. - Malwarebytes Anti-Rootkit.) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009.exe   [12589848]
[MD5.4EE4ECE74B0E6F9B166B9ADA1F0E1514] [SPRF][21/05/2014] (.MediaArea.net - All about your audio and video files.) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.54_Windows_x64.exe   [3496248]
[MD5.2ABC77C19749DD8F9EF63600827C5F33] [SPRF][21/05/2014] (.MediaArea.net - All about your audio and video files.) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.69_Windows.exe   [4924256]
[MD5.71A2B3098117D19A80064B1DA1AB2388] [SPRF][16/05/2014] (.Moritz Bunkus - MKVToolNix 6.9.1.) -- C:\Users\scorebut\Desktop\mkvtoolnix-6.9.1-setup.exe   [11522283]
[MD5.2C88D673AEBB2A932EDE3595FD86BAB6] [SPRF][16/05/2014] (.Moritz Bunkus - MKVToolNix 6.9.1.) -- C:\Users\scorebut\Desktop\mkvtoolnix-amd64-6.9.1-setup.exe   [12058405]
[MD5.67781D1AACCF58665EE1D3E1846AD3B8] [SPRF][14/05/2014] (.PeerBlock, LLC - PeerBlock 1.2 (r693) Setup.) -- C:\Users\scorebut\Desktop\PeerBlock-Setup_v1.2_r693.exe   [2374320]
[MD5.A892D0B64211C7EF519415BE9E9A0956] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\ps3-media-server_1-90-1_fr_285574_32.exe   [53679694]
[MD5.72DB9135701339D37A02D9BA78B33404] [SPRF][13/05/2014] (...) -- C:\Users\scorebut\Desktop\rar-password-recovery-trial.exe   [4499133]
[MD5.240DDA08F6EE9290747D1A04A99D1CCA] [SPRF][21/05/2014] (...) -- C:\Users\scorebut\Desktop\RogueKiller.com.exe   [3972608]
[MD5.F60653FB74468F4783568E3516CCEE7B] [SPRF][10/05/2014] (.Akeo Consulting (http://akeo.ie) - Rufus.) -- C:\Users\scorebut\Desktop\rufus-1.4.7.exe   [606120]
[MD5.0D0AE1B62B9A50C65A3934E5A6CF5CE5] [SPRF][13/05/2014] (.Skype Technologies S.A. - Skype.) -- C:\Users\scorebut\Desktop\SkypeSetupFull.exe   [34827424]
[MD5.2E6B3BA13715A5C9BCE6A6CCF02CEC6F] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\spotflux-2.10.7-97.exe   [2712872]
[MD5.F0D26D1625B12A3A76148E9DE59E9735] [SPRF][15/05/2014] (.Tansee, Inc. - Tansee iPhone Transfer SMS Setup.) -- C:\Users\scorebut\Desktop\tanseeiphonesms.exe   [9613528]
[MD5.698738342F8B7F8706BA6CC4B3968773] [SPRF][09/05/2014] (.TeamViewer GmbH - Pas de description.) -- C:\Users\scorebut\Desktop\TeamViewer_Setup_fr.exe   [6212016]
[MD5.FAA769DBA68A5DC0C48FBBE19A9850D2] [SPRF][13/05/2014] (.Yury Sidorov - Transmission Remote GUI Setup.) -- C:\Users\scorebut\Desktop\transgui-5.0.1-setup.exe   [1783216]
[MD5.040079C39186A5D46328BE8BFE151F0C] [SPRF][27/07/2005] (...) -- C:\Users\scorebut\Desktop\vcr34rus.exe   [31210]
[MD5.D53656D5A01135CA198FEC2831180E32] [SPRF][21/05/2014] (.Wondershare Software - Wondershare Video Converter Ultimate Setup.) -- C:\Users\scorebut\Desktop\video-converter-ultimate_full905.exe   [41348016]
[MD5.DF463B4C69C1531D1DA7DA3E30E7F8B5] [SPRF][16/05/2014] (...) -- C:\Users\scorebut\Desktop\vlc-2.1.3-win32.exe   [24677393]
[MD5.6AC0462029F33F6760E4960931D08468] [SPRF][17/05/2014] (.Resplendence Software Projects Sp. - WhoCrashed Home Edition Setup.) -- C:\Users\scorebut\Desktop\whocrashedSetup.exe   [2668480]
[MD5.F9CCB8D2F80921091B0649567B133086] [SPRF][08/05/2014] (...) -- C:\Users\scorebut\Desktop\winrar-x86-510b4fr.exe   [1840568]
[MD5.AB6F0D2C70421DAD35DD14E2640E3A1D] [SPRF][17/05/2014] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\scorebut\Desktop\zhpdiag_2014.5.17.66.exe   [6779861]
[MD5.63A8F8086EB1097D64B4C4B288530128] [SPRF][13/05/2014] (...) -- C:\Users\scorebut\Desktop\zip-password-recovery-trial.exe   [4863959]
[MD5.03B9F8F7B3AA1C42602ED6A615A89BDE] [SPRF][14/05/2014] (.FDRLab Data Recovery Centre - Zip Password Tool Setup.) -- C:\Users\scorebut\Desktop\zip_password_tool_setup.exe   [739276]
~ Files: 43 Scanned in 00mn 10s



---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS:  - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS:  - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS:  - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS:  - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS:  - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS:  - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
~ MNS: 6 Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Disabled 15/03/2014 69880 |  (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe
SS - | Auto 09/05/2014 116648 |  (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 09/05/2014 116648 |  (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 21/02/2014 553288 |  (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Auto 23/10/2013 172192 |  (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - | Auto 12/02/2014 43336 |  (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 30/08/2011 390504 |  (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 01/04/2014 2117960 |  (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
SR - | Auto 04/03/2014 663896 |  (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 04/03/2014 411936 |  (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SR - | Auto 25/04/2014 5024576 |  (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
SR - | Auto 15/03/2014 54424 |  (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
SR - | Auto 14/04/2014 86744 |  (VMAuthdService) . (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe  =>.VMware, Inc
SR - | Auto 14/04/2014 359128 |  (VMnetDHCP) . (.VMware, Inc..) - C:\WINDOWS\system32\vmnetdhcp.exe
SR - | Auto 27/02/2014 722624 |  (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
SR - | Auto 14/04/2014 437976 |  (VMware NAT Service) . (.VMware, Inc..) - C:\WINDOWS\system32\vmnat.exe
SR - | Auto 14/04/2014 14407384 |  (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe  =>.VMware, Inc
SR - | Auto 24/03/2014 1248712 |  (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
SR - | Demand 24/03/2014 22224 |  (WinDefend) . (.Microsoft Corporation.) - C:\Program Files\Windows Defender\MsMpEng.exe
SR - | Demand 22/08/2013 31552 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services:  Scanned in 00mn 11s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ MBR: 1 Scanned in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by scorebut at 22/05/2014 18:02:44
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR:  Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13029 - (22/05/2014)
Clés trouvées (Keys found) : 0
Valeurs trouvées (Values found) : 0
Dossiers trouvés  (Folders found) : 0
Fichiers trouvés  (Files found) : 0

~ Additionnel Scan: 258315 Items scanned in 00mn 22s



End of the scan (1560 lines in 05mn 09s)(0)