~ Rapport de ZHPDiag v2014.5.30.78 - Nicolas Coolman (30/05/2014) ~ Lancé par scorebut (31/05/2014 12:00:28) ~ Adresse du Site Web http://nicolascoolman.fr ~ Traduit par Nicolas Coolman ~ Etat de la version : Version à jour. ~ Liste blanche : Désactivée par l'utilisateur ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by program ---\\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.17107 (Defaut) GCIE: Google Chrome v35.0.1916.114 ---\\ Informations sur les produits Windows ~ Langage: Français Windows 7 Ultimate, 32-bit (Build 7600) Windows Server License Manager Script : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 33R9V Windows License : OK ~ Windows Remaining Initializations Number : 1000 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ Logiciels de protection du système Bitdefender Internet Security v17.27.0.1146 Malwarebytes Anti-Malware version 2.0.2.1012 Windows Defender W7 (Deactivate) ---\\ Logiciels d'optimisation du système CCleaner v4.14 ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Java 7 Update 55 ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 15 Stepping 6, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3071 MB (52% free) System Restore: Activé (Enable) System drive C: has 76 GB (50%) free of 150 GB ---\\ Mode de connexion au système ~ Computer Name: TOUR-VE ~ User Name: scorebut ~ All Users Names: scorebut, HomeGroupUser$, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\scorebut\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\scorebut\AppData\Roaming\ ~ %Desktop% : C:\Users\scorebut\Desktop\ ~ %Favorites% : C:\Users\scorebut\Favorites\ ~ %LocalAppData% : C:\Users\scorebut\AppData\Local\ ~ %StartMenu% : C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ Enumération des unités disques A: Floppy drive, Flash card reader, USB Key (Not Inserted) C: Hard drive, Flash drive, Thumb drive (Free 76 Go of 150 Go) D: Hard drive, Flash drive, Thumb drive (Free 31 Go of 105 Go) E: Hard drive, Flash drive, Thumb drive (Free 4 Go of 10 Go) F: Hard drive, Flash drive, Thumb drive (Free 3 Go of 30 Go) G: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) H: CD-ROM drive (Not Inserted) I: CD-ROM drive (Not Inserted) J: Floppy drive, Flash card reader, USB Key (Free 4 Go of 4 Go) ---\\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: 42 Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.119E091B5386379BC5AA598BE9440C75] - (.Microsoft Corporation - Explorateur Windows.) (.10/05/2014 - 04:09:12.) -- C:\Windows\Explorer.exe [2088160] [MD5.02BC073156B3097E94D63C4D609020DD] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 03:49:55.) -- C:\Windows\System32\Wininit.exe [112640] [MD5.F89C2BDB6E385ED6CA2AC0085BB6643A] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/03/2014 - 08:59:52.) -- C:\Windows\System32\wininet.dll [1789440] [MD5.70C57DC69D4A7D92D2CAC90C3AD16E6F] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.18/03/2014 - 08:59:51.) -- C:\Windows\System32\Winlogon.exe [459264] [MD5.BFB9E1202225113991F981D29BFB9029] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/03/2014 - 08:59:51.) -- C:\Windows\System32\sppcomapi.dll [438272] [MD5.216D830A67387CF922FEDC0DABA9BDFF] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.03/04/2014 - 03:24:03.) -- C:\Windows\system32\Drivers\AFD.sys [461312] [MD5.72FCAE2CE6DFEAB2AB072435017F3417] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 06:33:25.) -- C:\Windows\system32\Drivers\atapi.sys [23392] [MD5.CE232BB0965C0C0B786C3F976CCBFB7D] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 05:11:55.) -- C:\Windows\system32\Drivers\Cdfs.sys [73728] [MD5.E2FC132D48EA4E8B04432C33EFB77801] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 02:59:12.) -- C:\Windows\system32\Drivers\Cdrom.sys [124928] [MD5.55758EBBC45E1628161121D7CFEAD4A1] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.10/05/2014 - 04:09:12.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.3D06FB84CFFB1D959ACE7690A27A89E1] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.18/03/2014 - 08:22:40.) -- C:\Windows\system32\Drivers\HDAudBus.sys [69632] [MD5.5043E69532392A43549E5D41E22638AA] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 05:10:59.) -- C:\Windows\system32\Drivers\i8042prt.sys [82944] [MD5.FA6C94C754A566EA8A61D658932F32DE] - (.Microsoft Corporation - IP Network Address Translator.) (.18/03/2014 - 08:59:54.) -- C:\Windows\system32\Drivers\IpNat.sys [126976] [MD5.5213858EAB957E8153D45B13FCF30082] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.03/04/2014 - 03:24:01.) -- C:\Windows\system32\Drivers\MRxSmb.sys [333312] [MD5.BC242922B0D08F61CF7C87FD08FAFA8B] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 05:08:26.) -- C:\Windows\system32\Drivers\netBT.sys [218624] [MD5.BAFDB3519A9D1A6A0665A70696BA98D5] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.10/05/2014 - 04:09:12.) -- C:\Windows\system32\Drivers\ntfs.sys [1679704] [MD5.4F30970F15ADCC382544B31D5D7E368E] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 05:11:49.) -- C:\Windows\system32\Drivers\Parport.sys [81408] [MD5.C51AB62AB41A2E8560D12472B204CC00] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 05:07:36.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [81920] [MD5.67E91843B0344411820A012063E876B2] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.18/03/2014 - 08:38:09.) -- C:\Windows\system32\Drivers\rdpdr.sys [143872] [MD5.DB0C184142CF9FA1746F598A16EE92B2] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 07:13:54.) -- C:\Windows\system32\Drivers\tdx.sys [87040] [MD5.F4138DC230FC3DFE9E31201561D0491B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/03/2014 - 11:37:49.) -- C:\Windows\system32\Drivers\volsnap.sys [264536] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 2/23 ~ Mes musiques (My Musics) : 1/7 ~ Mes Videos (My Videos) : 2/5 ~ Mes Favoris (My Favorites) : 1/4 ~ Mes Documents (My Documents) : 1/14 ~ Mon Bureau (My Desktop) : 1/667 ~ Menu demarrer (Programs) : 1/38 ~ Hidden Files: Scanned in 00mn 00s ---\\ Processus lancés [MD5.2197DED64442B4B342971598208A7D1A] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) -- C:\WINDOWS\system32\taskhostex.exe [66624] [PID.1040] [MD5.189CD832964EC8EDD3075F13D16F4552] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [1821128] [PID.3516] [MD5.0087B7A1FE4B2F9CC632AF11D52CB371] - (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1797064] [PID.5996] [MD5.1766A2E004154830D4327861AF1BD3AB] - (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1845064] [PID.2132] [MD5.B38B860BF3D89F17EB6FF6183DB97DC7] - (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482392] [PID.672] [MD5.597CF4BEDFDC81B8903982664CAC6ED0] - (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614232] [PID.5648] [MD5.6D652B06EB3916DC41A9DBBBC4EDEED1] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8020480] [PID.5576] ~ Processes Running: Scanned in 00mn 00s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None G0 - GCSP: Preference [User Data\Default][HomePage] http://www.google.com G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [angedonhhlnfgpihepebcbbnbeeghcgd] HideMyAss - Free Web Proxy v.1.0.17 (Activé) G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.6 (Activé) G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé) G2 - GCE: Preference [User Data\Default] [bhmmomiinigofkjcapegjjndpbikblnp] WOT v.2.5.14, (Désactivé) G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé) G2 - GCE: Preference [User Data\Default] [ccahoghmggldkcdjiebjkidpfongdfbl] Bitdefender Wallet v.17.28.1 (Désactivé) G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé) G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé) G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.6.35, (Activé) G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé) G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé) G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé) G2 - GCE: Preference [User Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé) G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé) ---\\ Liste des dossiers d'extension Google Chrome G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\angedonhhlnfgpihepebcbbnbeeghcgd [HideMyAss - Free Web Proxy] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [WOT] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet] G2 - EXT: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail] ~ Google Lines Browser: 31 Scanned in 00mn 05s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.55.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.55.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.55.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll P2 - FPN: [HKLM] [@nvidia.com/3DVision] - (.NVIDIA Corporation - NVIDIA 3D Vision plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll P2 - FPN: [HKLM] [@nvidia.com/3DVisionStreaming] - (.NVIDIA Corporation - NVIDIA 3D Vision Streaming plugin for Mozilla browsers.) -- C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN ~ Firefox Browser: 8 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.fr R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.VideoLAN - VLC media player Web Plugin 2.1.3.) (No version) -- (.not file.) =>.VideoLAN ~ IE Browser: 8 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 23 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll ~ BHO: 6 Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\Desktop [scorebut]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\scorebut\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent ~ Global Startup: 1 Scanned in 00mn 05s ---\\ Applications lancées au démarrage du système (O4) O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Update Backend.) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender\bdagent.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKLM\..\Run: [vmware-tray.exe] . (.VMware, Inc. - VMware Tray Process.) -- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe =>.VMware, Inc O4 - HKLM\..\Run: [CamserviceHD] . (.Guillemot Corporation S.A. - Hercules Xtra Controller Main Application.) -- C:\Program Files\Hercules\Dualpix HD\XtrCtrlEx.exe O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe O4 - HKLM\..\Run: [Wondershare Helper Compact.exe] . (.Wondershare - Wondershare Studio.) -- C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe O4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKCU\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKCU\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Password Manager Agent.) -- C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Wallet] . (.Bitdefender - Bitdefender Password Manager.) -- C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe O4 - HKUS\S-1-5-21-1859082737-2953136737-1802256864-1001\..\Run: [Bitdefender Agent de l'application Wallet] . (.Bitdefender - Bitdefender Application Password Manager Ag.) -- C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe ~ Application: Scanned in 00mn 00s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll ~ Winsock: 7 Scanned in 00mn 00s ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains] http.ma-config.com O15 - Trusted Zone: [HKCU\...\Domains] http.touslesdrivers.com ~ IE Zone Confiance: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{DA6718F3-801B-42B9-97C4-A7408966F8F6}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CS1\Services\Tcpip\..\{DA6718F3-801B-42B9-97C4-A7408966F8F6}: DhcpNameServer = 192.168.0.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\WINDOWS\System32\mscoree.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - YSLoader.exe.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 335.2.) - C:\WINDOWS\system32\nvvsvc.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TeamViewer 9 (TeamViewer9) . (.TeamViewer GmbH - TeamViewer 9.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) . (.Bitdefender - Bitdefender Update Service.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe O23 - Service: VMware Authorization Service (VMAuthdService) . (.VMware, Inc. - VMware Authorization Service.) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc O23 - Service: VMware DHCP Service (VMnetDHCP) . (.VMware, Inc. - VMware VMnet DHCP service.) - C:\WINDOWS\system32\vmnetdhcp.exe O23 - Service: VMware USB Arbitration Service (VMUSBArbService) . (.VMware, Inc. - VMware USB Arbitration Service.) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe O23 - Service: VMware NAT Service (VMware NAT Service) . (.VMware, Inc. - VMware NAT Service.) - C:\WINDOWS\system32\vmnat.exe O23 - Service: VMware Workstation Server (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc O23 - Service: Bitdefender Virus Shield (VSSERV) . (.Bitdefender - Bitdefender Security Service.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe ~ Services: 15 Scanned in 00mn 11s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found ~ BEX: 1 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) [MD5.82EB400763D254D098EA7566D0A11A71] [APT] [Bitdefender Auto Scan] (.Bitdefender.) -- C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [22504] [MD5.13ECAC1C51CC00147BD06B5ABF142956] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4529944] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648] [MD5.00000000000000000000000000000000] [APT] [{FF7A72DA-CE70-4ED4-A051-7D0CC424383D}] (...) -- C:\Users\scorebut\Desktop\MediaInfo_GUI_0.7.54_Windows_x64.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1072] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1072] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1076] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1076] ~ Scheduled Task: 9 Scanned in 00mn 04s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\35.0.1916.114\Installer\chrmstp.exe ~ Active Setup: 8 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys O41 - Driver: oem8.inf (BdfNdisf) . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys O41 - Driver: (bdfwfpf) . (.BitDefender LLC - BitDefender Firewall WFP Filter Driver.) - C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys O41 - Driver: (bdselfpr) . (.BitDefender LLC - BitDefender Self Protection Driver.) - C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: (MpKsl0879b09e) . (. - .) - C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{5A7AF5B6-7932-4867-9BE6-F74EB3DC676E}\MpKsl0879b09e.sys (.not file.) O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys ~ Drivers: 42 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {AAC5D43E-816D-4C2D-8E51-55FFF35BE301} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM] -- {18D47FA1-0440-48D3-A7E0-DA09537FF471} O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc O42 - Logiciel: Bigasoft Total Video Converter 4.2.6.5249 - (.Bigasoft Corporation.) [HKLM] -- {A72CE741-1F32-4D79-BFFB-A714375C678D}_is1 O42 - Logiciel: Bitdefender Internet Security - (.Bitdefender.) [HKLM] -- Bitdefender O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM] -- {79155F2B-9895-49D7-8612-D92580E0DE5B} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner O42 - Logiciel: CamStudio 2.02 Fr - (...) [HKLM] -- CamStudio 2.02 Fr_is1 O42 - Logiciel: Cool Beans NFO Creator 2.0.1.3 - (.Cool Beans Software.) [HKLM] -- Cool Beans NFO Creator_is1 O42 - Logiciel: DVD Shrink 3.2 - (.DVD Shrink.) [HKLM] -- DVD Shrink_is1 O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler O42 - Logiciel: Dualpix HD - (.Hercules.) [HKLM] -- {59579B12-97E6-437E-B988-BA032165D355} O42 - Logiciel: ERUNT 1.1j - (.Lars Hederer.) [HKLM] -- ERUNT_is1 O42 - Logiciel: EasyBCD 2.2 - (.NeoSmart Technologies.) [HKLM] -- EasyBCD O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: HandBrake 0.9.9.1 - (...) [HKLM] -- HandBrake O42 - Logiciel: IObit Unlocker - (.IObit.) [HKLM] -- IObit Unlocker_is1 O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217025FF} O42 - Logiciel: K-Lite Mega Codec Pack 10.5.0 - (...) [HKLM] -- KLiteCodecPack_is1 O42 - Logiciel: Ma-Config.com - (.Cybelsoft.) [HKLM] -- {E83B7C94-57F6-4CA2-8C80-CBC2089BC762} O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.2.1012 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1 O42 - Logiciel: MediaInfo 0.7.69 - (.MediaArea.net.) [HKLM] -- MediaInfo O42 - Logiciel: Mises à jour NVIDIA 10.4.0 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update O42 - Logiciel: NVIDIA Pilote 3D Vision 335.23 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision O42 - Logiciel: NVIDIA Pilote graphique 335.23 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM] -- NVIDIAStereo O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM] -- Notepad++ O42 - Logiciel: PS3 Media Server - (.PS3 Media Server.) [HKLM] -- PS3 Media Server O42 - Logiciel: PeerBlock 1.2 (r693) - (.PeerBlock, LLC.) [HKLM] -- {015C5B35-B678-451C-9AEE-821E8D69621C}_is1 O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva O42 - Logiciel: Skype™ 6.14 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7} O42 - Logiciel: Speccy - (.Piriform.) [HKLM] -- Speccy O42 - Logiciel: Stellar Phoenix Windows Data Recovery - Professional - (.Stellar Information Systems Ltd.) [HKLM] -- Stellar Phoenix Windows Data Recovery - Professional_is1 O42 - Logiciel: TeamViewer 9 - (.TeamViewer.) [HKLM] -- TeamViewer 9 O42 - Logiciel: TeraCopy 2.3 - (.Code Sector.) [HKLM] -- TeraCopy_is1 O42 - Logiciel: Transmission Remote GUI 5.0.1 - (.Yury Sidorov.) [HKLM] -- transgui_is1 O42 - Logiciel: Uninstall Tool - (.CrystalIDEA Software, Inc..) [HKLM] -- Uninstall Tool_is1 O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN O42 - Logiciel: VMware Workstation - (.VMware, Inc.) [HKLM] -- VMware_Workstation =>.VMware, Inc O42 - Logiciel: VMware Workstation - (.VMware, Inc..) [HKLM] -- {0D94F75A-0EA6-4951-B3AF-B145FA9E05C6} =>.VMware, Inc O42 - Logiciel: WinRAR 5.10 bêta 4 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver O42 - Logiciel: Windows 7 USB/DVD Download Tool - (.Microsoft Corporation.) [HKLM] -- {CCF298AF-9CE1-4B26-B251-486E98A34789} O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM] -- {2F21564D-DE05-4C6D-B21E-08B9D313FAB3} O42 - Logiciel: tools-freebsd - (.VMware, Inc..) [HKLM] -- {003BFBBD-6C67-419E-A24D-0DCAFC3A5249} O42 - Logiciel: tools-linux - (.VMware, Inc..) [HKLM] -- {D102611A-6466-4101-A51D-51069303AC65} O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM] -- {197597A7-AD33-4898-9D8E-73066818B464} O42 - Logiciel: tools-solaris - (.VMware, Inc..) [HKLM] -- {AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4} O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D} O42 - Logiciel: tools-windows - (.VMware, Inc..) [HKLM] -- {FFD9383C-01D5-4897-A954-43AF599AED30} O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent =>P2P.BitTorrent ~ Logic: 43 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\Akeo Consulting] [HKCU\Software\AltrixSoft] [HKCU\Software\AppDataLow\Software\JavaSoft] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Bigasoft] [HKCU\Software\BitTorrent] =>P2P.BitTorrent [HKCU\Software\Bitdefender] [HKCU\Software\CamStudioOpenSource for Nick] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Code Sector] [HKCU\Software\CrystalIdea Software] [HKCU\Software\Cygwin] [HKCU\Software\DVD Shrink] [HKCU\Software\EFD Software] [HKCU\Software\FinalWire] [HKCU\Software\FreeTime] [HKCU\Software\Freemake] [HKCU\Software\GNU] [HKCU\Software\Gabest] [HKCU\Software\Google] [HKCU\Software\Hercules] [HKCU\Software\IM Providers] [HKCU\Software\Icaros] [HKCU\Software\JavaSoft] [HKCU\Software\Lagarith] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\MPC-HC] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes Anti-Rootkit] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Mine] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\NVIDIA Corporation] [HKCU\Software\Network Optix] [HKCU\Software\Nilings] [HKCU\Software\PS3 Media Server] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Quietzone] [HKCU\Software\RegisteredApplications] [HKCU\Software\Resplendence Sp] [HKCU\Software\Skype] [HKCU\Software\Stellar information Systems ltd.] [HKCU\Software\Sysinternals] [HKCU\Software\TeamViewer] [HKCU\Software\Trolltech] [HKCU\Software\Tucows] [HKCU\Software\VMware, Inc.] [HKCU\Software\WSVCUPlugin] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wondershare] [HKCU\Software\WsAudio_Device] [HKCU\Software\Xilisoft] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\ej-technologies] [HKCU\Software\madshi] [HKCU\Software\redsn0w] [HKLM\Software\ASUS] [HKLM\Software\ATI Technologies] [HKLM\Software\AVC3] [HKLM\Software\AdwCleaner] [HKLM\Software\AltrixSoft] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\Bigasoft] [HKLM\Software\BitDefender] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Code Sector] [HKLM\Software\Cygwin] [HKLM\Software\Freemake] [HKLM\Software\GEAR Software] [HKLM\Software\GNU] [HKLM\Software\Google] [HKLM\Software\Hercules] [HKLM\Software\IM Providers] [HKLM\Software\Icaros] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\KLCodecPack] [HKLM\Software\Khronos] [HKLM\Software\LAV] [HKLM\Software\Licenses] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes Anti-Rootkit] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\NVIDIA Corporation] [HKLM\Software\NeoSmart Technologies] [HKLM\Software\ODBC] [HKLM\Software\OpenVPN-GUI] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RegisteredApplications] [HKLM\Software\Skype] [HKLM\Software\Stellar information Systems ltd.] [HKLM\Software\TeamViewer] [HKLM\Software\ThinPrint] [HKLM\Software\VMware, Inc.] [HKLM\Software\VideoLAN] [HKLM\Software\Volatile] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ~ Key Software: 209 Scanned in 00mn 00s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 15/05/2014 - 12:20:53 - [] ----D C:\Program Files\Apple Software Update =>.Apple Inc O43 - CFD: 21/05/2014 - 17:01:09 - [] ----D C:\Program Files\Bigasoft O43 - CFD: 10/05/2014 - 18:45:53 - [] ----D C:\Program Files\Bitdefender O43 - CFD: 15/05/2014 - 12:20:36 - [] ----D C:\Program Files\Bonjour O43 - CFD: 26/05/2014 - 01:34:21 - [] ----D C:\Program Files\CamStudio O43 - CFD: 29/05/2014 - 16:18:14 - [] ----D C:\Program Files\CCleaner O43 - CFD: 21/05/2014 - 14:12:04 - [] ----D C:\Program Files\Common Files O43 - CFD: 26/05/2014 - 11:50:40 - [] ----D C:\Program Files\Cool Beans NFO Creator O43 - CFD: 29/05/2014 - 19:31:05 - [] ----D C:\Program Files\Defraggler O43 - CFD: 15/05/2014 - 14:04:24 - [] --H-D C:\Program Files\Dr.Fone_Temp O43 - CFD: 21/05/2014 - 10:43:23 - [] ----D C:\Program Files\DVD Shrink O43 - CFD: 25/05/2014 - 21:40:59 - [] ----D C:\Program Files\ERUNT O43 - CFD: 17/05/2014 - 12:19:09 - [0] ----D C:\Program Files\FDRLab O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\Program Files\Fichiers communs O43 - CFD: 11/05/2014 - 13:38:43 - [] ----D C:\Program Files\FileSearchy O43 - CFD: 26/05/2014 - 00:44:04 - [0] ----D C:\Program Files\FreeTime O43 - CFD: 09/05/2014 - 23:42:51 - [] ----D C:\Program Files\Google O43 - CFD: 21/05/2014 - 10:37:17 - [] ----D C:\Program Files\Handbrake O43 - CFD: 14/05/2014 - 21:35:19 - [] ----D C:\Program Files\Hercules O43 - CFD: 14/05/2014 - 21:35:18 - [] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 18/03/2014 - 10:10:35 - [] ----D C:\Program Files\Internet Explorer O43 - CFD: 17/05/2014 - 17:32:24 - [] ----D C:\Program Files\IObit O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\Program Files\iPod O43 - CFD: 15/05/2014 - 12:21:34 - [] ----D C:\Program Files\iTunes O43 - CFD: 13/05/2014 - 00:53:10 - [] ----D C:\Program Files\Java O43 - CFD: 26/05/2014 - 02:05:04 - [] ----D C:\Program Files\K-Lite Codec Pack O43 - CFD: 18/05/2014 - 08:07:09 - [] ----D C:\Program Files\ma-config.com O43 - CFD: 29/05/2014 - 17:29:43 - [] ----D C:\Program Files\Malwarebytes Anti-Malware O43 - CFD: 11/05/2014 - 15:08:09 - [] ----D C:\Program Files\MediaInfo O43 - CFD: 13/05/2014 - 11:41:21 - [] ----D C:\Program Files\Microsoft Visual FoxPro OLE DB Provider O43 - CFD: 22/08/2013 - 10:17:26 - [] ----D C:\Program Files\Microsoft.NET O43 - CFD: 15/05/2014 - 17:22:00 - [] ----D C:\Program Files\MSBuild O43 - CFD: 10/05/2014 - 08:25:13 - [] ----D C:\Program Files\NeoSmart Technologies O43 - CFD: 12/05/2014 - 20:33:43 - [] ----D C:\Program Files\Notepad++ O43 - CFD: 10/05/2014 - 04:22:49 - [] ----D C:\Program Files\NVIDIA Corporation O43 - CFD: 12/05/2014 - 18:18:58 - [0] ----D C:\Program Files\OpenVPN Technologies O43 - CFD: 30/05/2014 - 20:33:57 - [] ----D C:\Program Files\PeerBlock O43 - CFD: 10/05/2014 - 23:21:26 - [] ----D C:\Program Files\PS3 Media Server O43 - CFD: 29/05/2014 - 16:16:52 - [] ----D C:\Program Files\Recuva O43 - CFD: 15/05/2014 - 17:22:00 - [] ----D C:\Program Files\Reference Assemblies O43 - CFD: 13/05/2014 - 01:10:27 - [] R---D C:\Program Files\Skype O43 - CFD: 29/05/2014 - 16:17:02 - [] ----D C:\Program Files\Speccy O43 - CFD: 11/05/2014 - 12:17:23 - [] ----D C:\Program Files\Spotflux O43 - CFD: 15/05/2014 - 21:43:03 - [] ----D C:\Program Files\Stellar Phoenix Windows Data Recovery O43 - CFD: 13/05/2014 - 00:55:29 - [] ----D C:\Program Files\TeamViewer O43 - CFD: 25/05/2014 - 22:10:47 - [] ----D C:\Program Files\TeraCopy O43 - CFD: 14/05/2014 - 22:00:12 - [] ----D C:\Program Files\Transmission Remote GUI O43 - CFD: 26/07/2012 - 08:04:59 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 15/05/2014 - 16:54:32 - [] ----D C:\Program Files\Uninstall Tool O43 - CFD: 16/05/2014 - 23:59:52 - [] ----D C:\Program Files\VideoLAN O43 - CFD: 14/05/2014 - 21:15:30 - [] ----D C:\Program Files\VMware O43 - CFD: 26/05/2014 - 00:44:48 - [0] ----D C:\Program Files\VS Revo Group O43 - CFD: 16/05/2014 - 16:33:59 - [] ----D C:\Program Files\Windows Defender O43 - CFD: 18/03/2014 - 09:38:19 - [] ----D C:\Program Files\Windows Journal O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation O43 - CFD: 10/05/2014 - 04:22:50 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation O43 - CFD: 18/03/2014 - 10:10:31 - [] ----D C:\Program Files\Windows Multimedia Platform O43 - CFD: 10/05/2014 - 04:29:00 - [] ----D C:\Program Files\Windows NT O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Windows Photo Viewer O43 - CFD: 18/03/2014 - 10:10:30 - [] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 10/05/2014 - 04:22:50 - [] -SH-D C:\Program Files\Windows Sidebar O43 - CFD: 29/05/2014 - 14:03:07 - [] --H-D C:\Program Files\WindowsApps O43 - CFD: 22/08/2013 - 10:17:26 - [] ----D C:\Program Files\WindowsPowerShell O43 - CFD: 13/05/2014 - 10:41:07 - [] ----D C:\Program Files\WinRAR O43 - CFD: 26/05/2014 - 00:40:41 - [] ----D C:\Program Files\Wondershare O43 - CFD: 31/05/2014 - 11:59:16 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman O43 - CFD: 22/05/2014 - 13:09:01 - [0] ----D C:\Program Files\Common Files\AltrixSoft O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\Program Files\Common Files\Apple O43 - CFD: 10/05/2014 - 18:45:55 - [] ----D C:\Program Files\Common Files\Bitdefender O43 - CFD: 13/05/2014 - 00:53:12 - [] ----D C:\Program Files\Common Files\Java O43 - CFD: 10/05/2014 - 18:50:01 - [] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 22/08/2013 - 10:17:35 - [] ----D C:\Program Files\Common Files\Services O43 - CFD: 13/05/2014 - 01:10:27 - [] ----D C:\Program Files\Common Files\Skype O43 - CFD: 18/03/2014 - 09:25:42 - [] ----D C:\Program Files\Common Files\System O43 - CFD: 14/05/2014 - 21:16:17 - [] ----D C:\Program Files\Common Files\VMware O43 - CFD: 15/05/2014 - 14:04:35 - [] ----D C:\Program Files\Common Files\Wondershare O43 - CFD: 15/05/2014 - 12:21:34 - [] ----D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 O43 - CFD: 17/05/2014 - 23:19:44 - [] ----D C:\ProgramData\AltrixSoft O43 - CFD: 15/05/2014 - 12:20:51 - [] ----D C:\ProgramData\Apple O43 - CFD: 15/05/2014 - 12:21:06 - [] ----D C:\ProgramData\Apple Computer O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Application Data O43 - CFD: 10/05/2014 - 18:56:36 - [] ----D C:\ProgramData\BDLogging O43 - CFD: 10/05/2014 - 18:57:20 - [] ----D C:\ProgramData\Bitdefender O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Bureau O43 - CFD: 13/05/2014 - 11:58:23 - [] ----D C:\ProgramData\Database Harbor O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Desktop O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Documents O43 - CFD: 21/05/2014 - 10:56:27 - [] ----D C:\ProgramData\DVD Shrink O43 - CFD: 17/05/2014 - 17:32:24 - [] ----D C:\ProgramData\IObit O43 - CFD: 18/05/2014 - 08:07:07 - [] ----D C:\ProgramData\ma-config.com O43 - CFD: 29/05/2014 - 17:29:40 - [] ----D C:\ProgramData\Malwarebytes O43 - CFD: 31/05/2014 - 00:42:24 - [0] ----D C:\ProgramData\Malwarebytes' Anti-Malware (portable) O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Menu Démarrer O43 - CFD: 10/05/2014 - 19:00:41 - [] -S--D C:\ProgramData\Microsoft O43 - CFD: 09/05/2014 - 20:36:19 - [] -SH-D C:\ProgramData\Modèles O43 - CFD: 30/05/2014 - 23:06:22 - [] ----D C:\ProgramData\NVIDIA O43 - CFD: 10/05/2014 - 04:22:51 - [] ----D C:\ProgramData\NVIDIA Corporation O43 - CFD: 13/05/2014 - 00:53:17 - [0] ----D C:\ProgramData\Oracle O43 - CFD: 10/05/2014 - 23:22:48 - [] ----D C:\ProgramData\PMS O43 - CFD: 10/05/2014 - 04:22:51 - [] ----D C:\ProgramData\PRICache O43 - CFD: 15/05/2014 - 00:21:20 - [] ----D C:\ProgramData\Quietzone O43 - CFD: 18/03/2014 - 09:38:18 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 30/05/2014 - 18:39:31 - [] ----D C:\ProgramData\RogueKiller O43 - CFD: 13/05/2014 - 01:10:25 - [] ----D C:\ProgramData\Skype O43 - CFD: 11/05/2014 - 12:17:23 - [] ----D C:\ProgramData\spotflux O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Start Menu O43 - CFD: 12/05/2014 - 18:09:55 - [] ----D C:\ProgramData\Sun O43 - CFD: 11/05/2014 - 13:38:23 - [0] ---AD C:\ProgramData\TEMP O43 - CFD: 22/08/2013 - 09:23:42 - [] -SH-D C:\ProgramData\Templates O43 - CFD: 30/05/2014 - 23:06:35 - [] ----D C:\ProgramData\VMware O43 - CFD: 15/05/2014 - 14:04:18 - [] ----D C:\ProgramData\Wondershare O43 - CFD: 09/05/2014 - 20:42:32 - [] ----D C:\Users\scorebut\AppData\Roaming\Adobe O43 - CFD: 16/05/2014 - 19:53:41 - [] ----D C:\Users\scorebut\AppData\Roaming\Apple Computer O43 - CFD: 21/05/2014 - 17:01:18 - [] ----D C:\Users\scorebut\AppData\Roaming\Bigasoft Total Video Converter 4 O43 - CFD: 10/05/2014 - 18:49:52 - [] ----D C:\Users\scorebut\AppData\Roaming\Bitdefender O43 - CFD: 15/05/2014 - 16:54:32 - [] ----D C:\Users\scorebut\AppData\Roaming\CrystalIdea Software O43 - CFD: 13/05/2014 - 11:41:21 - [] ----D C:\Users\scorebut\AppData\Roaming\Database Harbor O43 - CFD: 21/05/2014 - 12:22:08 - [] ----D C:\Users\scorebut\AppData\Roaming\dvdcss O43 - CFD: 23/05/2014 - 22:31:08 - [] ----D C:\Users\scorebut\AppData\Roaming\HandBrake O43 - CFD: 10/05/2014 - 05:29:42 - [] ----D C:\Users\scorebut\AppData\Roaming\Identities O43 - CFD: 14/05/2014 - 21:35:05 - [] ----D C:\Users\scorebut\AppData\Roaming\InstallShield O43 - CFD: 15/05/2014 - 17:38:53 - [] ----D C:\Users\scorebut\AppData\Roaming\libimobiledevice O43 - CFD: 09/05/2014 - 20:52:31 - [] ----D C:\Users\scorebut\AppData\Roaming\Macromedia O43 - CFD: 29/05/2014 - 17:12:37 - [] ----D C:\Users\scorebut\AppData\Roaming\Malwarebytes O43 - CFD: 12/05/2014 - 18:20:47 - [0] ----D C:\Users\scorebut\AppData\Roaming\Maxthon3 O43 - CFD: 23/05/2014 - 20:06:14 - [] -S--D C:\Users\scorebut\AppData\Roaming\Microsoft O43 - CFD: 16/05/2014 - 22:43:54 - [] ----D C:\Users\scorebut\AppData\Roaming\mkvtoolnix O43 - CFD: 12/05/2014 - 20:35:54 - [] ----D C:\Users\scorebut\AppData\Roaming\Notepad++ O43 - CFD: 21/05/2014 - 14:15:30 - [] ----D C:\Users\scorebut\AppData\Roaming\NVIDIA O43 - CFD: 10/05/2014 - 18:45:42 - [0] ----D C:\Users\scorebut\AppData\Roaming\QuickScan O43 - CFD: 15/05/2014 - 15:20:41 - [] ----D C:\Users\scorebut\AppData\Roaming\Quietzone O43 - CFD: 16/05/2014 - 20:58:36 - [] ----D C:\Users\scorebut\AppData\Roaming\redsn0w O43 - CFD: 15/05/2014 - 00:42:56 - [] ----D C:\Users\scorebut\AppData\Roaming\Skype O43 - CFD: 14/05/2014 - 23:15:56 - [] ----D C:\Users\scorebut\AppData\Roaming\TeamViewer O43 - CFD: 26/05/2014 - 11:05:10 - [] ----D C:\Users\scorebut\AppData\Roaming\TeraCopy O43 - CFD: 29/05/2014 - 12:24:59 - [] ----D C:\Users\scorebut\AppData\Roaming\uTorrent =>P2P.µTorrent O43 - CFD: 24/05/2014 - 18:49:15 - [] ----D C:\Users\scorebut\AppData\Roaming\vlc O43 - CFD: 24/05/2014 - 00:10:19 - [] ----D C:\Users\scorebut\AppData\Roaming\VMware O43 - CFD: 13/05/2014 - 10:38:32 - [] ----D C:\Users\scorebut\AppData\Roaming\WinRAR O43 - CFD: 21/05/2014 - 13:02:30 - [] ----D C:\Users\scorebut\AppData\Roaming\Wondershare Video Converter Ultimate O43 - CFD: 21/05/2014 - 14:15:22 - [] ----D C:\Users\scorebut\AppData\Roaming\Xilisoft O43 - CFD: 31/05/2014 - 12:01:15 - [] ----D C:\Users\scorebut\AppData\Roaming\ZHP =>.Nicolas Coolman O43 - CFD: 21/05/2014 - 13:02:07 - [0] ----D C:\Users\scorebut\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A} O43 - CFD: 15/05/2014 - 12:20:54 - [] ----D C:\Users\scorebut\AppData\Local\Apple O43 - CFD: 15/05/2014 - 12:21:56 - [] ----D C:\Users\scorebut\AppData\Local\Apple Computer O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Application Data O43 - CFD: 25/05/2014 - 22:48:23 - [] ----D C:\Users\scorebut\AppData\Local\Apps O43 - CFD: 25/05/2014 - 01:32:55 - [] ----D C:\Users\scorebut\AppData\Local\CrashDumps O43 - CFD: 12/05/2014 - 19:06:56 - [] ----D C:\Users\scorebut\AppData\Local\Diagnostics O43 - CFD: 11/05/2014 - 13:30:03 - [] ----D C:\Users\scorebut\AppData\Local\Downloaded Installations O43 - CFD: 30/05/2014 - 21:55:27 - [] ----D C:\Users\scorebut\AppData\Local\ElevatedDiagnostics O43 - CFD: 12/05/2014 - 21:01:22 - [] -SH-D C:\Users\scorebut\AppData\Local\EmieSiteList O43 - CFD: 12/05/2014 - 21:01:22 - [] -SH-D C:\Users\scorebut\AppData\Local\EmieUserList O43 - CFD: 09/05/2014 - 23:43:02 - [] ----D C:\Users\scorebut\AppData\Local\Google O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Historique O43 - CFD: 25/05/2014 - 22:23:46 - [] ----D C:\Users\scorebut\AppData\Local\immersive-explorer.com O43 - CFD: 26/05/2014 - 18:17:46 - [] ----D C:\Users\scorebut\AppData\Local\Microsoft O43 - CFD: 10/05/2014 - 08:26:10 - [] ----D C:\Users\scorebut\AppData\Local\NeoSmart_Technologies O43 - CFD: 09/05/2014 - 23:13:56 - [] ----D C:\Users\scorebut\AppData\Local\NVIDIA O43 - CFD: 10/05/2014 - 19:43:52 - [] ----D C:\Users\scorebut\AppData\Local\Packages O43 - CFD: 11/05/2014 - 19:53:42 - [] ----D C:\Users\scorebut\AppData\Local\Programs O43 - CFD: 12/05/2014 - 23:17:01 - [] ----D C:\Users\scorebut\AppData\Local\ShamurShamur O43 - CFD: 13/05/2014 - 01:10:38 - [] ----D C:\Users\scorebut\AppData\Local\Skype O43 - CFD: 31/05/2014 - 11:59:24 - [] ----D C:\Users\scorebut\AppData\Local\Temp O43 - CFD: 10/05/2014 - 04:21:48 - [] -SH-D C:\Users\scorebut\AppData\Local\Temporary Internet Files O43 - CFD: 31/05/2014 - 03:34:07 - [] ----D C:\Users\scorebut\AppData\Local\Transmission Remote GUI O43 - CFD: 21/05/2014 - 14:51:13 - [] ----D C:\Users\scorebut\AppData\Local\VirtualStore O43 - CFD: 24/05/2014 - 00:10:19 - [0] ----D C:\Users\scorebut\AppData\Local\VMware O43 - CFD: 15/05/2014 - 14:04:36 - [] ----D C:\Users\scorebut\AppData\Local\Wondershare O43 - CFD: 10/05/2014 - 04:22:18 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 22/08/2013 - 10:17:27 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 10/05/2014 - 05:29:45 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 21/05/2014 - 17:01:13 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bigasoft O43 - CFD: 21/05/2014 - 10:37:14 - [0] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake O43 - CFD: 22/08/2013 - 10:17:27 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 12/05/2014 - 20:33:40 - [0] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 10/05/2014 - 05:29:45 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 10/05/2014 - 04:22:18 - [] R---D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 25/05/2014 - 22:48:24 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool O43 - CFD: 13/05/2014 - 10:41:07 - [] ----D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Program Folder: 180 Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.F541298E463FA96F128629E799352E60] - 16/05/2014 - 15:26:10 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [90547776] O44 - LFC:[MD5.058A126C380D90BD9905A63F8C71D54C] - 16/05/2014 - 19:00:00 ---A- . (.Pas de propriétaire - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll [112640] O44 - LFC:[MD5.0DC5AF80D059DEC792B665ED598C6567] - 17/05/2014 - 00:02:52 ---A- . (.SQLite Development Team - SQLite Dynamic Link Library (No TCL).) -- C:\Windows\System32\sqlite3.dll [536576] O44 - LFC:[MD5.681A8BD0F33530DDA4BD727547B97F59] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Bibliothèque principale de Restauration du.) -- C:\Windows\System32\srcore.dll [389632] O44 - LFC:[MD5.8A382E0BB01F4DF83F3AEBE0B270DE61] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - BootMenuUX.) -- C:\Windows\System32\BootMenuUX.dll [117248] O44 - LFC:[MD5.3DA5CD1E3B9BDAF79731CB6CB1029CB3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Client de contrainte de quarantaine de la p.) -- C:\Windows\System32\tsgqec.dll [53248] O44 - LFC:[MD5.FF28231D41465C253E9F9EF164DD619C] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL de l’API côté client de configuration a.) -- C:\Windows\System32\wlanapi.dll [230400] O44 - LFC:[MD5.E697F1E4E819EB12C40AE01F88626BAB] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL de l’utilitaire de ressource de cluster.) -- C:\Windows\System32\resutils.dll [219136] O44 - LFC:[MD5.69F326FAE43423A4EDC1FA975C15FEF3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - DLL du service de configuration automatique.) -- C:\Windows\System32\wlansvc.dll [1309184] O44 - LFC:[MD5.1FB00FDA0377C7DA27609507BE23A508] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Extension d’environnement de Dossiers de tr.) -- C:\Windows\System32\WorkFoldersShell.dll [166400] O44 - LFC:[MD5.756E1472CB3BE829A8555869469074DE] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Fournisseur logiciel du service Microsoft®.) -- C:\Windows\System32\swprv.dll [353280] O44 - LFC:[MD5.D6BB129AB4F45174432D88C0B768E3A6] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [174080] O44 - LFC:[MD5.495C3945889DD59993474F2434863835] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft Direct3D OS Thunk Layer.) -- C:\Windows\System32\d3d8thk.dll [11776] O44 - LFC:[MD5.D0E0E176F86C3B1048A67144DE0C5CD3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft® Remote Desktop Services Cryptogr.) -- C:\Windows\System32\tlscsp.dll [46592] O44 - LFC:[MD5.68A23F58F6F16B81BCBFCAA07CDF0680] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Microsoft® Windows System Restore Client Li.) -- C:\Windows\System32\srclient.dll [61440] O44 - LFC:[MD5.CEC5BA16A982DF0EE73A76879D58E272] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - OneDrive Sync Engine Host.) -- C:\Windows\System32\SkyDrive.exe [672256] O44 - LFC:[MD5.CF3EA59E07BF906B43058C98B6750D16] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Remote Desktop Services Client for Microsof.) -- C:\Windows\System32\rdvidcrl.dll [855552] O44 - LFC:[MD5.9FB020D7E15FFC391A14C816B313B30F] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\System32\rstrui.exe [245248] O44 - LFC:[MD5.F5DB09E62DD1F1864C8DCF596645B540] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [623104] O44 - LFC:[MD5.5C74AC34C1CAA9C232836C580272B0DD] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Storage Management Provider for Spaces.) -- C:\Windows\System32\mispace.dll [1029120] O44 - LFC:[MD5.49F946F6350B2B395B23B648DD6BDCA1] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - System Settings Admin Flow XAML UI Implemen.) -- C:\Windows\System32\SystemSettingsAdminFlowUI.dll [1631232] O44 - LFC:[MD5.1B40B955BF29EC3C9877E0D7FBA6B0BF] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Telemetry Library for the OneDrive client.) -- C:\Windows\System32\SkyDriveTelemetry.dll [590336] O44 - LFC:[MD5.B1BE3F92825E0757B9477B2A3C690434] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - UMRDP Display Driver.) -- C:\Windows\System32\rdpudd.dll [119296] O44 - LFC:[MD5.3CABBCB26C4E73F3440A8A064EB490FF] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 Client Side Hel.) -- C:\Windows\System32\wlanhlp.dll [11264] O44 - LFC:[MD5.B6803C8A600E3F029A3D688D9E590CA3] - 17/05/2014 - 11:16:56 ---A- . (.Microsoft Corporation - Windows Wireless LAN 802.11 MSM DLL.) -- C:\Windows\System32\wlanmsm.dll [300544] O44 - LFC:[MD5.4874EB05C1BE374B8A4AC15DF3DB07B0] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - API client de stratégie de groupe.) -- C:\Windows\System32\gpapi.dll [111528] O44 - LFC:[MD5.956D8170AD470804405C0564E10ED6ED] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [406504] O44 - LFC:[MD5.06AB75759A0B2D79680F52ACDAE702A1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Bibliothèque d’API de cluster.) -- C:\Windows\System32\clusapi.dll [313344] O44 - LFC:[MD5.A58318CA9F98AAB207D4C84868490D1D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [502104] O44 - LFC:[MD5.8C25FBB338147754DA42DF990FB3AE4A] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL MFCaptureEngine.) -- C:\Windows\System32\MFCaptureEngine.dll [285144] O44 - LFC:[MD5.88A821BC72CB1A935C92F453586233EF] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL Media Foundation.) -- C:\Windows\System32\mf.dll [518544] O44 - LFC:[MD5.96C367C7332903BE56F3638C7A70A56C] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1089536] O44 - LFC:[MD5.9B2871A78B9C21E8476361202F7D4D17] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Energy System Resource Usage Monitor (SRUM).) -- C:\Windows\System32\energyprov.dll [47616] O44 - LFC:[MD5.D9999E42604DA1D1F438C60669D7C7FB] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [286040] O44 - LFC:[MD5.0F2941E664595AD94A737EA9016FC5D2] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Flux d’administration des paramètres du PC.) -- C:\Windows\System32\SystemSettingsAdminFlows.exe [229344] O44 - LFC:[MD5.4659090401A38C95A70F7847B1D981B0] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Fournisseur d’infrastructure WMI de configu.) -- C:\Windows\System32\tscfgwmi.dll [185344] O44 - LFC:[MD5.0E647295EA5573F06DDD42F0FDFF254A] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) -- C:\Windows\System32\Drivers\fltMgr.sys [271192] O44 - LFC:[MD5.3D06FB84CFFB1D959ACE7690A27A89E1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [69632] O44 - LFC:[MD5.38C86165505EB17F2317DD20963F3B02] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Isolation graphique de périphérique audio W.) -- C:\Windows\System32\audiodg.exe [194752] O44 - LFC:[MD5.6BAE2EB5EFCEAC999BB1A5BF267C711D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Media Foundation Platform DLL.) -- C:\Windows\System32\mfplat.dll [707048] O44 - LFC:[MD5.336CD3BC763E300F5755BDAF26B3F6C2] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [311128] O44 - LFC:[MD5.619C6E72B8433B3F67738F7E6C972A96] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft Trust Verification APIs.) -- C:\Windows\System32\wintrust.dll [230808] O44 - LFC:[MD5.74F452379260EA77CC59905AEDBD5AE7] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [240472] O44 - LFC:[MD5.0586EBA2C2741193863CE0B07050E15D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Microsoft\Optimiseur de lecteur.) -- C:\Windows\System32\defragsvc.dll [358400] O44 - LFC:[MD5.77E18A1B65F3362137BCA8DEDBA3754F] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - NT Kernel & System.) -- C:\Windows\System32\ntoskrnl.exe [5786968] O44 - LFC:[MD5.9A82354DF0DDC5F131461DE01404BABC] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Panneau de configuration de Dossiers de tra.) -- C:\Windows\System32\WorkfoldersControl.dll [667136] O44 - LFC:[MD5.C7305D66D279C4A9445C049ABD6CE8A1] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Prelaunch OptIn.) -- C:\Windows\System32\ploptin.dll [31064] O44 - LFC:[MD5.15905E6B799C1446A37915ED23CD17E5] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - RPC HTTP DLL.) -- C:\Windows\System32\rpchttp.dll [144384] O44 - LFC:[MD5.442E2B5A3B15DEA24AD89EDFBB7330CD] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [294744] O44 - LFC:[MD5.E64760EE4341393C3895AD3FC1C8581D] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [185856] O44 - LFC:[MD5.7A0CFACFDF18C5A44D05F91656AB2C70] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Service Centre de sécurité de Windows.) -- C:\Windows\System32\wscsvc.dll [99328] O44 - LFC:[MD5.044B27361CEE42AD0662B04D57CDB716] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Service de cliché instantané de volumes Mic.) -- C:\Windows\System32\VSSVC.exe [970240] O44 - LFC:[MD5.A3ECC0F6960AA699895CB48BC69BEA3B] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Session audio.) -- C:\Windows\System32\AudioSes.dll [326024] O44 - LFC:[MD5.EAF47B59FDEA68BC21963E3F05C0B0FE] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [333656] O44 - LFC:[MD5.095419EC9E2CC85998B1824AAF6887D6] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Stratégie de groupe Client de préférences.) -- C:\Windows\System32\gpprefcl.dll [590336] O44 - LFC:[MD5.A9A027378882FFA14000612AE6FDA7AB] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Système de propriétés Microsoft.) -- C:\Windows\System32\propsys.dll [1200288] O44 - LFC:[MD5.A624CA7CDFA7941EECD6F96F1A47CCA3] - 17/05/2014 - 11:16:57 ---A- . (.Microsoft Corporation - Video Stabilization MFT.) -- C:\Windows\System32\MSVideoDSP.dll [178184] O44 - LFC:[MD5.008368626F3EFAEDB0C2CD4565BA6797] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - API du Gestionnaire de fenêtres du Bureau M.) -- C:\Windows\System32\dwmapi.dll [98584] O44 - LFC:[MD5.13CE2AA6D3ACAF0B485DBFE8AF2F5C48] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [305768] O44 - LFC:[MD5.59B435929D297D1ECC33CADB2D271C66] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLL RDPCore TS.) -- C:\Windows\System32\rdpcorets.dll [2825216] O44 - LFC:[MD5.9E51948344BC8C8EBBDCD197948940F4] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [244736] O44 - LFC:[MD5.5FAEA469BCE03F8FABAFB63D7603DC3C] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - DLNA DLL.) -- C:\Windows\System32\Windows.Media.Streaming.dll [982016] O44 - LFC:[MD5.962753FCB305B7F5D017A21E4636FE26] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Fournisseur d’impression de rendu côté clie.) -- C:\Windows\System32\win32spl.dll [553472] O44 - LFC:[MD5.20EA1075D820ECD58400A76B617DC384] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [156160] O44 - LFC:[MD5.561945C42E36012B4799C342E6A96498] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Media Foundation Media Engine DLL.) -- C:\Windows\System32\MFMediaEngine.dll [800768] O44 - LFC:[MD5.90C83CF02C884315E595FA07CA9C64EF] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Media Foundation Simple Video Renderer DLL.) -- C:\Windows\System32\mfsvr.dll [387896] O44 - LFC:[MD5.5213858EAB957E8153D45B13FCF30082] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [333312] O44 - LFC:[MD5.F4138DC230FC3DFE9E31201561D0491B] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [264536] O44 - LFC:[MD5.216D830A67387CF922FEDC0DABA9BDFF] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [461312] O44 - LFC:[MD5.F443E09D7076D93ACC69D751960AE744] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [375296] O44 - LFC:[MD5.058C080523FA3D22B2C45F5C50E00375] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [560128] O44 - LFC:[MD5.C97E772120135CD320CB217C92105B12] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Pilote de spouleur Windows.) -- C:\Windows\System32\winspool.drv [370176] O44 - LFC:[MD5.A4F3682781DD8B36E97FD04BA50845A2] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - RDPSRAPI COM Objects.) -- C:\Windows\System32\rdpencom.dll [209920] O44 - LFC:[MD5.E678126493997B951C6A6E91BC15C91C] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - SearchFolder.) -- C:\Windows\System32\SearchFolder.dll [836608] O44 - LFC:[MD5.8AEC7BA833DF2F6A21EA43BC10388E27] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\System32\MDEServer.exe [264704] O44 - LFC:[MD5.628B9923175FE0873D94DC3D3A990F14] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - WMPMDE DLL.) -- C:\Windows\System32\wmpmde.dll [1159520] O44 - LFC:[MD5.EC4FA776548BF1A05DAE3B5EFB0FFE6F] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - WinMDE DLL.) -- C:\Windows\System32\winmde.dll [1209616] O44 - LFC:[MD5.E2AAB5EDC278D489C8EF87F277B5E3E6] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - Windows Media Runtime DLL.) -- C:\Windows\System32\Windows.Media.dll [888320] O44 - LFC:[MD5.76892045ECB1D830185618DBD3467562] - 17/05/2014 - 11:16:58 ---A- . (.Microsoft Corporation - XPS to GDI Converter.) -- C:\Windows\System32\XpsGdiConverter.dll [337408] O44 - LFC:[MD5.BE8FB66895B5475B09F5907D875CD47D] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\System32\services.exe [328984] O44 - LFC:[MD5.BF701FF65226801895FF099A8B1E711D] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - DLL de spouleur local.) -- C:\Windows\System32\localspl.dll [834560] O44 - LFC:[MD5.5AE9C90A51256F72C541A2FD81EAB7C4] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Media Foundation Core DLL.) -- C:\Windows\System32\mfcore.dll [2144984] O44 - LFC:[MD5.87AB9959EC23455326C8C55E59DE0A88] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Media Foundation MPEG2 Source and Sink DLL.) -- C:\Windows\System32\mfmpeg2srcsnk.dll [669856] O44 - LFC:[MD5.F9243C39F7F2F289357C97791B522546] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Microsoft OneDrive Sync Engine.) -- C:\Windows\System32\SyncEngine.dll [3563008] O44 - LFC:[MD5.ECB45C9FD9AC8DC3469BD323937DCC7A] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3497472] O44 - LFC:[MD5.EA7A99A15E809938A6D44E0C4CB00B57] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Service Dossiers de travail Microsoft (C).) -- C:\Windows\System32\workfolderssvc.dll [1210368] O44 - LFC:[MD5.A54EB398BC2D792A0C603A97F7975FD8] - 17/05/2014 - 11:16:59 ---A- . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [357376] O44 - LFC:[MD5.A93E67D9084BEFC32C8E2B75FCC5B02E] - 17/05/2014 - 11:17:00 ---A- . (.Microsoft Corporation - TWINUI.) -- C:\Windows\System32\twinui.dll [11792384] O44 - LFC:[MD5.22306013C7C180699EAD991005AF2F93] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1167360] O44 - LFC:[MD5.8EAD5F0BC40579B106CDD9D2591CFEC5] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Direct3D 9 Runtime.) -- C:\Windows\System32\d3d9.dll [1797896] O44 - LFC:[MD5.E4D45EA9464CD5A05803CF2CD8D12AAE] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [1871704] O44 - LFC:[MD5.23D46413D3BEF8C3402323025A51844D] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - System Settings Handlers Implementation.) -- C:\Windows\System32\SettingsHandlers.dll [2130432] O44 - LFC:[MD5.4550DC04464B86C5EB2CC77D9D27C06C] - 17/05/2014 - 11:17:01 ---A- . (.Microsoft Corporation - Windows.UI.Search.) -- C:\Windows\System32\Windows.UI.Search.dll [5833216] O44 - LFC:[MD5.1E48870B29C7D7328A7D484A61250AE5] - 17/05/2014 - 11:17:03 ---A- . (.Microsoft Corporation - Client ActiveX des services Bureau à distan.) -- C:\Windows\System32\mstscax.dll [5774848] O44 - LFC:[MD5.A5358F64D4EB5ABE2829981CD9734901] - 17/05/2014 - 11:17:03 ---A- . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll [18755672] O44 - LFC:[MD5.A717D4AC0C44BCBE990DBF8B6EC979AA] - 17/05/2014 - 11:17:07 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll [12711424] O44 - LFC:[MD5.0FDDBC46B0FE68B9516BED5CDC2A5296] - 17/05/2014 - 11:17:08 ---A- . (.Microsoft Corporation - PDF WinRT APIs.) -- C:\Windows\System32\Windows.Data.Pdf.dll [5104640] O44 - LFC:[MD5.787B436B4C7E330D9127A503B5EBA369] - 17/05/2014 - 11:23:37 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [333584] O44 - LFC:[MD5.8AAD333C876590293F72B315E162BCC7] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] O44 - LFC:[MD5.BA597F9A4BB90F038266CE1A3C3BE3FB] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\COMMAND.COM [50648] O44 - LFC:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O44 - LFC:[MD5.492090267B9608C62B956CD29BE3AFB7] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809] O44 - LFC:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O44 - LFC:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O44 - LFC:[MD5.CF9ED169FF86D935E47999E82359E898] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O44 - LFC:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O44 - LFC:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O44 - LFC:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O44 - LFC:[MD5.30A64B24DABF0483DDF6759D4F58A180] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34688] O44 - LFC:[MD5.112BFAEA0B8AD1AAB4484BBBE1DA9B40] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O44 - LFC:[MD5.BE6FE759FC5B154243914AA330BAADE6] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35552] O44 - LFC:[MD5.37BA9F0CB578362516C64344ECEC8ADC] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34688] O44 - LFC:[MD5.D753EEE17725526A67ACDDAA5D63EF68] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\append.exe [12498] O44 - LFC:[MD5.84BDB1E378591D930482B896A1648C53] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\bios1.rom [28420] O44 - LFC:[MD5.B44C4C9CA9D4BCC8430F3276576F562B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\bios4.rom [8191] O44 - LFC:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\country.sys [27097] O44 - LFC:[MD5.03783D0840B2C54D7665248425C74417] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\dosx.exe [53600] O44 - LFC:[MD5.B7A0AA49CBB604B2C3A42A49C36D8A4F] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\edlin.exe [12642] O44 - LFC:[MD5.683626544E81387771ED55E1A0F2047B] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\exe2bin.exe [8424] O44 - LFC:[MD5.5E835121A3899CFA37E285E0CA2B4E7D] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\nlsfunc.exe [7052] O44 - LFC:[MD5.AD7B906FC883959E56E210B2B077CA00] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\setver.exe [11753] O44 - LFC:[MD5.86491AD7BC0964089CD4E703E65D45DB] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\v7vga.rom [18832] O44 - LFC:[MD5.C980C971AD4FF3CA5CEFDEF40932D3A1] - 17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\win87em.dll [13312] O44 - LFC:[MD5.FF924F8AD691F25E5772B6E1A635831A] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Common Dialogs libraries.) -- C:\Windows\System32\COMMDLG.DLL [32816] O44 - LFC:[MD5.637D88E7A1BEDC4457C80DBC8BA9F135] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Ctl3D 3D Windows NT(WOW) Control.) -- C:\Windows\System32\ctl3dv2.dll [27200] O44 - LFC:[MD5.F6E6EE03D97AC5FCE9F0E4643724A106] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Graftabl Utility.) -- C:\Windows\System32\graftabl.com [62976] O44 - LFC:[MD5.D8F01AB82D5699A6A278651777D00B67] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Microsoft Network Dynamic Link Library for.) -- C:\Windows\System32\netapi.dll [108464] O44 - LFC:[MD5.43F537117EC1C6D7E9C6B3A3847F3D4C] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - NTVDM.EXE.) -- C:\Windows\System32\ntvdm.exe [536576] O44 - LFC:[MD5.D475029D732983ED962A8FF61688C912] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Object Linking and Embedding Client Library.) -- C:\Windows\System32\olecli.dll [82944] O44 - LFC:[MD5.F71B2CD664E53E6525AB636DB91320F6] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - System APIs for Multimedia.) -- C:\Windows\System32\MMSYSTEM.DLL [68992] O44 - LFC:[MD5.2FA37D14674021365FF4AF6A2B639FB8] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Virtual Dos Machine Network Interface Libra.) -- C:\Windows\System32\vdmredir.dll [22016] O44 - LFC:[MD5.01B656374912D7CCF7465A3893F18982] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows COMM Driver.) -- C:\Windows\System32\COMM.drv [10544] O44 - LFC:[MD5.789F63C7978AD84A2214D3AA3BF0F609] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Fault detection utility.) -- C:\Windows\System32\DRWATSON.EXE [28112] O44 - LFC:[MD5.8E6F7D51A5CB299C25621C6C1AB57E84] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Help Engine application file.) -- C:\Windows\winhelp.exe [256192] O44 - LFC:[MD5.37F4D55260E037EE9862D0AF93348755] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows IME interface core component.) -- C:\Windows\System32\WINNLS.DLL [5120] O44 - LFC:[MD5.2F6B026C02CAAD3768FEEB6172A1C037] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Kernel.) -- C:\Windows\System32\krnl386.exe [92320] O44 - LFC:[MD5.DC8A8C47542EDD026AD8F4AC3D6C2292] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows Shell library.) -- C:\Windows\System32\SHELL.DLL [5120] O44 - LFC:[MD5.283CAD5E151AE7C73D7F733D527D774E] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows System Editor application file.) -- C:\Windows\System32\sysedit.exe [18896] O44 - LFC:[MD5.51331D29F13FDA16832DC5EE8FF9B781] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows WIFE interface core component.) -- C:\Windows\System32\WIFEMAN.DLL [9216] O44 - LFC:[MD5.19006F183E6B5CBB5C078CDA84208C3A] - 17/05/2014 - 23:04:29 ---A- . (.Microsoft Corporation - Windows for Workgroups network driver.) -- C:\Windows\System32\WFWNET.DRV [12704] O44 - LFC:[MD5.8AA8DCC96FA0492E3B5D415537FAB8FE] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\EDIT.HLP [10790] O44 - LFC:[MD5.6E4E7884E6489AC4F5E6DAB176A73E52] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\GRAPHICS.COM [19694] O44 - LFC:[MD5.4D7E256377A5E934EA1820B2CEA79131] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\KB16.COM [14710] O44 - LFC:[MD5.CB4EE86C87F4C03FAC7E14F30D57153E] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33968] O44 - LFC:[MD5.C17AFA0AAD78C621F818DD6729572C48] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\debug.exe [20634] O44 - LFC:[MD5.F6E368E10B600836DD349FF937B183A2] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\edit.com [69886] O44 - LFC:[MD5.52E91EAC2F3175B1A5B0150382B6D771] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\ega.cpi [127213] O44 - LFC:[MD5.BC33AA625D6B807F718627386DF78426] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\graphics.pro [21232] O44 - LFC:[MD5.390762963E6B4C861E5E0CA5A3E56E40] - 17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\mem.exe [39274] O44 - LFC:[MD5.CC91779ED74FAE851CD3EA7541DDE488] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - DDE Management library.) -- C:\Windows\System32\DDEML.DLL [39424] O44 - LFC:[MD5.774D60CB0AD198F493CEFC9057755A05] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Microsoft LAN Manager 2.1 Network Driver fo.) -- C:\Windows\System32\lanman.drv [221600] O44 - LFC:[MD5.57F8A50513E43AAF6A7B23389E389BBC] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Microsoft LAN Manager 2.1 Network Dynamic L.) -- C:\Windows\System32\pmspl.dll [46592] O44 - LFC:[MD5.33E60144FEA594586F9DC2411DDD3A7C] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - NTVDMD.DLL.) -- C:\Windows\System32\ntvdmd.dll [14336] O44 - LFC:[MD5.CD91F7B8E44CF4FC5E61359FBC5118C6] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\compobj.dll [27792] O44 - LFC:[MD5.87D4F4D78074C0CAC0EAC88ABCF87F7A] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2.dll [42592] O44 - LFC:[MD5.EB38BE7D7CF9EC15442A9D24CB39A2AC] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2disp.dll [169520] O44 - LFC:[MD5.32CFCC848A57F87638E31E8735515F80] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\ole2nls.dll [153008] O44 - LFC:[MD5.5C8CDB104C31D1624EDBEEF75C1506CF] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\storage.dll [4208] O44 - LFC:[MD5.7161255DFA81E67B66B746D2504D2F2B] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - OLE 2.1 16/32 Interoperability Library.) -- C:\Windows\System32\typelib.dll [177856] O44 - LFC:[MD5.16BF834A84A7DC0D24EDC8E924C90637] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Object Linking and Embedding Server Library.) -- C:\Windows\System32\OLESVR.DLL [24064] O44 - LFC:[MD5.D022D32A7BCB0B54C34BD687AC00564C] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Version Checking and File Installation Libr.) -- C:\Windows\System32\ver.dll [9008] O44 - LFC:[MD5.A645DE92186DE912A96EBE311F0C5955] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - WIN.COM for compatibility.) -- C:\Windows\System32\win.com [8192] O44 - LFC:[MD5.C86363C599E5D6836C21A3A3FD21C388] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows Debug/Tool helper library.) -- C:\Windows\System32\TOOLHELP.DLL [13888] O44 - LFC:[MD5.80E15C136F95800C9172E610AA96D9C2] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows Graphics Device Interface core comp.) -- C:\Windows\System32\GDI.EXE [24576] O44 - LFC:[MD5.C2520B98C8658C73C138F9B26E203322] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows User-interface core component.) -- C:\Windows\System32\USER.EXE [47840] O44 - LFC:[MD5.C7F038338BF55DE73B57C1FC7B23671A] - 17/05/2014 - 23:04:30 ---A- . (.Microsoft Corporation - Windows file expansion library.) -- C:\Windows\System32\lzexpand.dll [9936] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2014 - 23:05:06 RSHA- . (...) -- C:\IO.SYS [0] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 17/05/2014 - 23:05:06 RSHA- . (...) -- C:\MSDOS.SYS [0] O44 - LFC:[MD5.3F3BEE3B64AB0EF8AFB16098DF928773] - 18/05/2014 - 07:36:06 ---A- . (...) -- C:\Windows\System32\checkdnsid.xml [265] O44 - LFC:[MD5.EE8B03B9FC6E02A2662C8D76C13BDEC5] - 25/05/2014 - 21:27:18 ---A- . (...) -- C:\Windows\setupact.log [299069] O44 - LFC:[MD5.6B939281041B8890CB7371E0A8971FC0] - 26/05/2014 - 00:47:14 ---A- . (...) -- C:\Windows\System32\Drivers\camcodec.inf [1461] O44 - LFC:[MD5.1C2BA2818CC4D73090D88AE297E75633] - 26/05/2014 - 00:47:14 ---A- . (.RenderSoft Software - CamStudio lossless video codec.) -- C:\Windows\System32\camcodec.dll [65536] O44 - LFC:[MD5.62368A1AA172EA675C59C9B85729B2F8] - 26/05/2014 - 00:54:58 ---A- . (...) -- C:\Windows\camcodec100.ini [38] O44 - LFC:[MD5.65EB70FE0AE1D2605FFC0AF96D997F63] - 26/05/2014 - 01:03:53 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1832128] O44 - LFC:[MD5.160F462669322C6352D9B36717554E26] - 26/05/2014 - 01:03:53 ---A- . (...) -- C:\Windows\System32\perfc009.dat [136604] O44 - LFC:[MD5.CC46A7D5C82990C8CA330E240696C74D] - 26/05/2014 - 01:03:53 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [160416] O44 - LFC:[MD5.66D563D60BBB160F45F0C3134276EAC3] - 26/05/2014 - 01:03:53 ---A- . (...) -- C:\Windows\System32\perfh009.dat [724962] O44 - LFC:[MD5.2B8198F8B1C9D76DF03FC43F671C2C01] - 26/05/2014 - 01:03:53 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [813792] O44 - LFC:[MD5.7B2220EC183EE8C019017E3EB5E67481] - 26/05/2014 - 01:05:05 ---A- . (...) -- C:\Windows\System32\unrar.dll [218200] O44 - LFC:[MD5.56552C7C36B6237704CE3BA9DF49FECF] - 26/05/2014 - 01:05:06 ---A- . (...) -- C:\Windows\System32\xvidvfw.dll [243200] O44 - LFC:[MD5.FC726DD94F4DD4028A976FCC4DBF0C43] - 26/05/2014 - 01:05:06 ---A- . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm [122880] O44 - LFC:[MD5.C26B7B8CA40C627B9DE399F9F8FACC69] - 26/05/2014 - 01:05:07 ---A- . (...) -- C:\Windows\System32\xvidcore.dll [650752] O44 - LFC:[MD5.FA425C74CE2EB719B2A77A7A2ADDAE32] - 26/05/2014 - 01:05:07 ---A- . (.Pas de propriétaire - Lagarith.) -- C:\Windows\System32\lagarith.dll [216064] O44 - LFC:[MD5.FBE5C2BDED0E85F6F0E68D1D6F2521DF] - 26/05/2014 - 01:05:07 ---A- . (.x264vfw project - x264vfw - H.264/MPEG-4 AVC codec.) -- C:\Windows\System32\x264vfw.dll [3649536] O44 - LFC:[MD5.2925B2277D18CB5EE965A99E1F3BB1D3] - 28/05/2014 - 20:05:45 ---A- . (...) -- C:\Windows\System32\template.txt [2903] O44 - LFC:[MD5.286A47EC1D825E6E5408E3B528A9EB83] - 29/05/2014 - 15:32:37 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512] O44 - LFC:[MD5.8683C1B450F4B3872839308D836E0F92] - 29/05/2014 - 16:29:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [23256] O44 - LFC:[MD5.A77C7E0C8C879AF2DDBEBCF8332207DF] - 29/05/2014 - 16:29:40 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [51928] O44 - LFC:[MD5.8D829225D4A04D231589719ECCC4626A] - 30/05/2014 - 19:36:25 ---A- . (...) -- C:\Windows\PFRO.log [23238] O44 - LFC:[MD5.8D6CA73D428A638570C061729BAFF23D] - 30/05/2014 - 20:00:52 ---A- . (...) -- C:\bdlog.txt [16897] O44 - LFC:[MD5.DC4ED57D12E7DD9752313085ABEC8024] - 30/05/2014 - 22:04:04 ---A- . (...) -- C:\Windows\ntbtlog.txt [83458] O44 - LFC:[MD5.E2540697FF34C30452A6B4BD4E51EDA7] - 30/05/2014 - 22:04:10 ---A- . (...) -- C:\TDSSKiller.3.0.0.37_30.05.2014_23.03.57_log.txt [6156] O44 - LFC:[MD5.3EE2BCA0129312BB4572A667BDCFADF5] - 30/05/2014 - 22:09:32 ---A- . (...) -- C:\TDSSKiller.3.0.0.37_30.05.2014_23.06.53_log.txt [737016] O44 - LFC:[MD5.10B12F9644229996DA126E15433CC120] - 30/05/2014 - 22:32:47 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1061421] O44 - LFC:[MD5.3B4C137E2CA87CF773204653A80B5BE9] - 30/05/2014 - 23:18:18 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [75480] O44 - LFC:[MD5.024ACCA2F972EE094EB0F4289F2FA893] - 30/05/2014 - 23:19:06 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [107224] O44 - LFC:[MD5.2B14E11EC3F0405FD3AAD5BDD9E8DB9E] - 31/05/2014 - 07:54:44 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.E42C7ED4EC244409A1D49D6A57F52DCD] - 31/05/2014 - 10:18:01 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [26624] ~ Files: 198 Scanned in 00mn 11s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.1616187705CE630A189F5604322F397F] - 26/05/2014 - 16:52:42 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-443D8C7E.pf =>P2P.µTorrent O45 - LFCP:[MD5.F4B5C11A80E503B7AD3BF3E757B34A16] - 29/05/2014 - 11:22:09 ---A- - C:\Windows\Prefetch\UTORRENT.EXE-58096821.pf =>P2P.µTorrent ~ Prefetcher: 2 Scanned in 00mn 00s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\98430893.sys . (...) -- C:\Windows\System32\Drivers\98430893.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\iaioi2c.sys . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\98430893.sys . (...) -- C:\Windows\System32\Drivers\98430893.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys ~ CSB: 20 Scanned in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - taskmgr.exe - "C:\USERS\SCOREBUT\DESKTOP\PROC.EXPLORER\PROCEXP.EXE" ~ IFEO: Scanned in 00mn 00s ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll O52 - TDSD: \Drivers32\"VIDC.CSCD"="camcodec.dll" . (.RenderSoft Software - CamStudio lossless video codec.) -- C:\Windows\System32\camcodec.dll O52 - TDSD: \Drivers32\"VIDC.LAGS"="lagarith.dll" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\System32\lagarith.dll O52 - TDSD: \Drivers32\"VIDC.X264"="x264vfw.dll" . (.x264vfw project - x264vfw - H.264/MPEG-4 AVC codec.) -- C:\Windows\System32\x264vfw.dll O52 - TDSD: \Drivers32\"VIDC.XVID"="xvidvfw.dll" . (...) -- C:\Windows\System32\xvidvfw.dll O52 - TDSD: \Drivers32\"VIDC.FFDS"="ff_vfw.dll" . (.Pas de propriétaire - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \Drivers32\"msacm.ac3acm"="ac3acm.acm" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm O52 - TDSD: \Drivers32\"msacm.l3codecp"="l3codecp.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"lagarith.dll"="Lagarith lossless video codec" . (.Pas de propriétaire - Lagarith.) -- C:\Windows\System32\lagarith.dll O52 - TDSD: \drivers.desc\"ff_vfw.dll"="ffdshow video codec" . (.Pas de propriétaire - ffdshow VFW.) -- C:\Windows\System32\ff_vfw.dll O52 - TDSD: \drivers.desc\"ac3acm.acm"="AC3 ACM codec" . (.fccHandler - AC-3 ACM Codec.) -- C:\Windows\System32\ac3acm.acm O52 - TDSD: \drivers.desc\"l3codecp.acm"="Fraunhofer IIS MPEG Layer-3 Codec (Professional)" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Audio Layer-3 Codec for MSACM.) -- C:\Windows\System32\l3codecp.acm ~ TDSD: 14 Scanned in 00mn 00s ---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 ~ MWPS: 17 Scanned in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [86368] O58 - SDL:22/08/2013 - 06:33:25 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [773472] O58 - SDL:22/08/2013 - 06:33:25 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [72544] O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows fa.) -- C:\Windows\System32\Drivers\amdsbs.sys [215392] O58 - SDL:22/08/2013 - 06:33:24 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [22880] O58 - SDL:22/08/2013 - 06:33:26 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [101728] O58 - SDL:17/05/2013 - 10:13:26 ---A- . (.Pas de propriétaire - ATK0110 ACPI Utility.) -- C:\Windows\System32\Drivers\ASACPI.sys [16256] O58 - SDL:02/12/2013 - 11:55:42 ---A- . (.BitDefender - Active Virus Control filter driver.) -- C:\Windows\System32\Drivers\avc3.sys [778032] O58 - SDL:10/05/2014 - 19:17:41 ---A- . (.BitDefender - BitDefender AntiVirus Active Virus Control Hypervisor driver.) -- C:\Windows\System32\Drivers\avchv.sys [242504] O58 - SDL:02/12/2013 - 11:57:46 ---A- . (.BitDefender - Active Virus Control Kernel Filtering driver.) -- C:\Windows\System32\Drivers\avckf.sys [516936] O58 - SDL:13/08/2013 - 00:25:32 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [16088] O58 - SDL:08/09/2013 - 19:04:56 ---A- . (.Bitdefender - Bitdefender Early Launch Anti-Malware Driver.) -- C:\Windows\System32\Drivers\bdelam.sys [19984] O58 - SDL:08/07/2013 - 17:07:47 ---A- . (.BitDefender LLC - BitDefender Firewall NDIS6 Filter Driver.) -- C:\Windows\System32\Drivers\bdfndisf6.sys [78656] O58 - SDL:04/11/2013 - 15:47:30 ---A- . (.BitDefender SRL - BitDefender SandBox Filter Driver.) -- C:\Windows\System32\Drivers\bdsandbox.sys [66832] O58 - SDL:10/05/2014 - 19:17:40 ---A- . (.BitDefender - FileVault Disk Driver.) -- C:\Windows\System32\Drivers\bdvedisk.sys [74952] O58 - SDL:21/08/2012 - 12:01:22 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [26840] O58 - SDL:23/08/2013 - 12:48:39 ---A- . (.BitDefender LLC - BitDefender Gonzales FileSystem Driver.) -- C:\Windows\System32\Drivers\gzflt.sys [165744] O58 - SDL:27/02/2014 - 17:40:48 ---A- . (.VMware, Inc. - VMware USB monitor.) -- C:\Windows\System32\Drivers\hcmon.sys [43840] O58 - SDL:12/07/2007 - 23:45:08 ---A- . (.Akkord Corporation - Stream Class Mini Driver.) -- C:\Windows\System32\Drivers\HDvidv.sys [285952] O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [56672] O58 - SDL:08/02/2009 - 23:42:42 ---A- . (.Guillemot Corporation - Filter Driver for the Hercules Webcams (MJPG).) -- C:\Windows\System32\Drivers\hxctlflt.sys [99968] O58 - SDL:23/07/2013 - 22:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaiogpio.sys [22016] O58 - SDL:23/07/2013 - 22:18:30 ---A- . (.Intel Corporation - Intel(R) Atom(TM) Processor I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaioi2c.sys [61936] O58 - SDL:10/08/2013 - 01:39:44 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x86.) -- C:\Windows\System32\Drivers\iaStorAV.sys [524784] O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\Drivers\iaStorV.sys [333664] O58 - SDL:23/10/2013 - 13:03:38 ---A- . (.http://libusb-win32.sourceforge.net - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys [42592] O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [94048] O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [79712] O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [68960] O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [69472] O58 - SDL:12/05/2014 - 06:25:54 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [23256] O58 - SDL:30/05/2014 - 23:18:18 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [75480] O58 - SDL:30/05/2014 - 23:19:06 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [107224] O58 - SDL:22/08/2013 - 06:33:30 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [51552] O58 - SDL:22/08/2013 - 06:33:29 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [464736] O58 - SDL:22/08/2013 - 06:33:32 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [58208] O58 - SDL:12/05/2014 - 06:26:12 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [51928] O58 - SDL:20/03/2014 - 22:03:40 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 335.23.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [10523480] O58 - SDL:22/08/2013 - 06:33:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [120160] O58 - SDL:22/08/2013 - 06:33:33 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [141664] O58 - SDL:10/03/2014 - 17:30:04 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\ptun0901.sys [35288] O58 - SDL:30/04/2014 - 14:26:22 ---A- . (.CJSC Returnil Software - Returnil Multi Snapshot Engine MiniFilter.) -- C:\Windows\System32\Drivers\rmseffmv.sys [28336] O58 - SDL:30/04/2014 - 14:26:24 ---A- . (.CJSC Returnil Software - Returnil Multi Snapshot Engine Core Driver.) -- C:\Windows\System32\Drivers\rmseng.sys [264736] O58 - SDL:18/06/2013 - 13:23:13 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 32-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x86.sys [490496] O58 - SDL:22/08/2013 - 09:16:47 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [20480] O58 - SDL:22/08/2013 - 06:32:56 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [41312] O58 - SDL:22/08/2013 - 06:32:57 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [79200] O58 - SDL:22/08/2013 - 06:32:57 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x86.) -- C:\Windows\System32\Drivers\stexstor.sys [26976] O58 - SDL:22/08/2013 - 13:40:22 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\tap0901.sys [35288] O58 - SDL:06/05/2014 - 07:48:32 ---A- . (.Spotflux, Inc. - Spotflux Network Device Driver.) -- C:\Windows\System32\Drivers\tapSF0901.sys [33728] O58 - SDL:31/05/2014 - 10:18:01 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [26624] O58 - SDL:07/08/2013 - 12:46:04 ---A- . (.BitDefender S.R.L. - Trufos Kernel Module.) -- C:\Windows\System32\Drivers\trufos.sys [360376] O58 - SDL:18/03/2013 - 15:51:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl.sys [45056] O58 - SDL:22/08/2013 - 06:33:00 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [18272] O58 - SDL:08/10/2013 - 17:20:50 ---A- . (.VMware, Inc. - VMware PCI VMCI Bus Device.) -- C:\Windows\System32\Drivers\vmci.sys [71888] O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware virtual network driver (32-bit).) -- C:\Windows\System32\Drivers\vmnet.sys [20048] O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware virtual network adapter driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetadapter.sys [17104] O58 - SDL:14/04/2014 - 15:40:42 ---A- . (.VMware, Inc. - VMware bridge driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetbridge.sys [37456] O58 - SDL:14/04/2014 - 15:41:42 ---A- . (.VMware, Inc. - VMware network application interface driver (32-bit).) -- C:\Windows\System32\Drivers\vmnetuserif.sys [26968] O58 - SDL:14/04/2014 - 15:40:58 ---A- . (.VMware, Inc. - VMware kernel driver.) -- C:\Windows\System32\Drivers\vmx86.sys [66136] O58 - SDL:22/08/2013 - 06:33:01 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\System32\Drivers\vsmraid.sys [148832] O58 - SDL:08/10/2013 - 17:20:56 ---A- . (.VMware, Inc. - VMware vSockets Service.) -- C:\Windows\System32\Drivers\vsock.sys [63824] O58 - SDL:22/02/2013 - 02:28:26 ---A- . (.VMware, Inc. - VMware Virtual Storage Volume Driver.) -- C:\Windows\System32\Drivers\vstor2-mntapi20-shared.sys [23632] O58 - SDL:22/08/2013 - 06:33:01 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [276832] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\country.sys [27097] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146] O58 - SDL:17/05/2014 - 23:04:30 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33968] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34688] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35552] O58 - SDL:17/05/2014 - 23:04:29 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34688] ~ Drivers: 79 Scanned in 00mn 03s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 24/05/2014 - 12:01:43 ---A- . (.BitTorrent Inc..) -- C:\Users\scorebut\AppData\Roaming\uTorrent\updates\3.4.1_31395.exe [1271376] =>P2P.BitTorrent O61 - LFC: 24/05/2014 - 12:01:43 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\CCleaner Professional Plus v4.14.4707 [Mblack47.es.tl]\ccsetup414.exe [4748896] O61 - LFC: 24/05/2014 - 12:01:43 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\CCleaner Professional Plus v4.14.4707 [Mblack47.es.tl]\spsetup126.exe [4890736] O61 - LFC: 24/05/2014 - 12:01:47 ---A- . (.Microsoft Corporation.) -- C:\Users\scorebut\Desktop\OSGS14-WindowsSetupBox-32bitand64bit-English-4141408.exe [6431728] O61 - LFC: 24/05/2014 - 12:01:47 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\Nouveau dossier\CCleaner Professional Plus v4.14.4707 [Mblack47.es.tl]\ccsetup414.exe [4748896] O61 - LFC: 24/05/2014 - 12:01:47 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\Nouveau dossier\CCleaner Professional Plus v4.14.4707 [Mblack47.es.tl]\spsetup126.exe [4890736] O61 - LFC: 24/05/2014 - 12:01:53 ---A- . (.BitTorrent Inc..) -- C:\Users\scorebut\Desktop\uTorrent.exe [1271376] =>P2P.BitTorrent O61 - LFC: 24/05/2014 - 12:01:53 ---A- . (.Pierre TORRIS.) -- C:\Users\scorebut\Downloads\productkey\winfokeys\WinfoKeys.exe [1247232] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Ads.Medium_Landscape_8_1_RTM-ddcfb8f2.dll [13272] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Ads.SerpAdsLayout_8_1_RTM-3dc295a4.dll [11736] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Web.Metadata_8_1_RP-e29ff4ad.dll [11224] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Medium_Portrait_8_1_RTM-42de12af.dll [12248] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Ads.Small_Generic_8_1_RP-07c96673.dll [11224] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.ImageAnswer_Horizontal_8_1_RTM-dce2a546.dll [11736] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Multimedia.ImageAnswer_Vertical_8_1_RTM-4d5d3c50.dll [12248] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.SerpAnswerBlock_FocusOnly_8_1_RP-8920ab69.dll [14808] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\Immersive Explorer optimizer.exe [95744] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\ImrsvExBackground.exe [8192] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\NativeOp.dll [17408] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\TaskbarHelper.dll [22528] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\icons.dll [224256] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (.Julien MANICI.) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\Immersive Explorer.exe [657920] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (.Microsoft.) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\Microsoft.WindowsAPICodePack.Shell.dll [542720] O61 - LFC: 25/05/2014 - 12:01:41 ---A- . (.Microsoft.) -- C:\Users\scorebut\AppData\Local\immersive-explorer.com\Microsoft.WindowsAPICodePack.dll [105472] O61 - LFC: 25/05/2014 - 12:01:42 R--A- . (...) -- C:\Users\scorebut\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe [119808] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\FileSearchy_v1.22.exe [9427464] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\glogg-latest-setup.exe [4961667] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\Icons.dll [224256] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\Immersive Explorer Optimizer.exe [95744] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\ImrsvExBackground.exe [8192] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (.Julien MANICI.) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\Immersive Explorer.exe [657920] O61 - LFC: 25/05/2014 - 12:01:44 ---A- . (.Microsoft Corporation.) -- C:\Users\scorebut\Desktop\dotNetFx40_Full_setup.exe [889416] O61 - LFC: 25/05/2014 - 12:01:45 ---A- . (...) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\NativeOp.dll [17408] O61 - LFC: 25/05/2014 - 12:01:45 ---A- . (...) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\TaskbarHelper.dll [22528] O61 - LFC: 25/05/2014 - 12:01:45 ---A- . (.Microsoft.) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\Microsoft.WindowsAPICodePack.Shell.dll [542720] O61 - LFC: 25/05/2014 - 12:01:45 ---A- . (.Microsoft.) -- C:\Users\scorebut\Desktop\imersiv\Immersive Explorer 1.0.5\Microsoft.WindowsAPICodePack.dll [105472] O61 - LFC: 25/05/2014 - 12:01:47 ---A- . (.PGK GmbH.) -- C:\Users\scorebut\Desktop\PGK.Extensions.dll [64512] O61 - LFC: 25/05/2014 - 12:01:47 ---A- . (.Sysinternals - www.sysinternals.com.) -- C:\Users\scorebut\Desktop\procexplorer\procexp.exe [2925760] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.Geza Kovacs.) -- C:\Users\scorebut\Desktop\unetbootin-windows-603.exe [4831744] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.IObit.) -- C:\Users\scorebut\Downloads\iobituninstaller.exe [12906784] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.Lars Hederer.) -- C:\Users\scorebut\Downloads\erunt-setup.exe [791393] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.Microsoft Corporation.) -- C:\Users\scorebut\Desktop\Windows8-Setup.exe [5487040] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.PGK GmbH.) -- C:\Users\scorebut\Desktop\XBootv1.0beta14\PGK.Extensions.dll [64512] O61 - LFC: 25/05/2014 - 12:01:53 ---A- . (.PortableApps.com.) -- C:\Users\scorebut\Downloads\IObitUninstallerPortable_3.2.paf.exe [13047137] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [412227] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!ModernApplications.AppStoreItem_8_1_RTM-b18e1027.dll [11736] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.AppButton_8_1_RP-df2cf5e1.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\!Shared.Wireframe_List_Horizontal_8_1_RTM-9e187815.dll [10712] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Landscape_8_1_RP-e50a2a67.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Portrait_8_1_RP-1f4469d2.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\ModernApplications.AppStoreSingleLayout_Snap_8_1_RP-936e182b.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.NullableImageWithCustomBackground_8_1_SpringGDR-ed3aa063.dll [11224] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Shared.Wireframe_List_Vertical_8_1_RTM-6ee7c70f.dll [11224] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_Landscape_8_1_RP-093821dc.dll [13272] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_Portrait_8_1_RP-f96819b8.dll [14296] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.AppifiedAlgo_VerticalNarrow_8_1_RP-92e040cb.dll [12248] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.DcardAlgo_Landscape_8_1_RP_Appified-9a63acce.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.DcardAlgo_Portrait_8_1_RP_Appified-d7abe6e0.dll [12760] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.DcardAlgo_VerticalNarrow_8_1_RP-5975fc62.dll [11224] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.DeepLinkItem_8_1_RP-63a6e4ea.dll [10712] O61 - LFC: 26/05/2014 - 12:01:41 ---A- . (...) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\ConnectedSearch\Templates\Web.DeepLinksList_8_1_RP_Appified-e5d9de41.dll [14808] O61 - LFC: 26/05/2014 - 12:01:43 ---A- . (...) -- C:\Users\scorebut\Desktop\CamStudio_Setup_v2.7.2_r326_(build_19Oct2013) (1).exe [679144] O61 - LFC: 26/05/2014 - 12:01:43 ---A- . (...) -- C:\Users\scorebut\Desktop\cam\CamStudio202Fr.exe [1542287] O61 - LFC: 26/05/2014 - 12:01:43 ---A- . (.BitTorrent Inc..) -- C:\Users\scorebut\AppData\Roaming\uTorrent\uTorrent.exe [1271376] =>P2P.BitTorrent O61 - LFC: 26/05/2014 - 12:01:44 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\ccsetup414pro (1).exe [4750144] O61 - LFC: 26/05/2014 - 12:01:44 ---A- . (.Piriform Ltd.) -- C:\Users\scorebut\Desktop\ccsetup414pro.exe [4750144] O61 - LFC: 26/05/2014 - 12:01:45 ---A- . (...) -- C:\Users\scorebut\Desktop\K-Lite_Codec_Pack_1050_Mega.exe [32601488] O61 - LFC: 26/05/2014 - 12:01:46 ---A- . (...) -- C:\Users\scorebut\Desktop\nfo01.exe [691224] O61 - LFC: 26/05/2014 - 12:01:53 ---A- . (...) -- C:\Users\scorebut\Downloads\nfo01 [1].exe [591337] O61 - LFC: 29/05/2014 - 12:01:41 ---A- . (.Malwarebytes Corporation.) -- C:\Users\scorebut\AppData\Local\Microsoft\Windows\INetCache\IE\J94SMC42\mbam-setup-2.0.2.1012[1].exe [17292760] O61 - LFC: 29/05/2014 - 12:01:43 ---A- . (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.211.exe [1327971] O61 - LFC: 29/05/2014 - 12:01:44 ----- . (...) -- C:\Users\scorebut\Desktop\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\CCleanerBundle-Setup.exe [13745256] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccsetup414.exe [4748896] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\dfsetup218.exe [4362512] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\rcsetup151.exe [4210920] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\ccleaner.professional.plus.v4.14.4707.FR.defraggler.recuva.speccy.crack.exe\spsetup126.exe [4890736] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\firefox.com [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\firefox.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\iexplore.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\mbam-chameleon.com [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\mbam-chameleon.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\rundll32.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\svchost.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (...) -- C:\Users\scorebut\Desktop\chameleon\winlogon.exe [218184] O61 - LFC: 29/05/2014 - 12:01:44 ---A- . (.Malwarebytes Corporation.) -- C:\Users\scorebut\Desktop\chameleon\mbam-setup-downloaded.exe [10285040] O61 - LFC: 29/05/2014 - 12:01:45 ---A- . (.Malwarebytes Corporation.) -- C:\Users\scorebut\Desktop\mbam-setup-2.0.2.1012.exe [17292760] O61 - LFC: 29/05/2014 - 12:01:45 ---A- . (.Malwarebytes.) -- C:\Users\scorebut\Desktop\mbae-setup-0.10.3.0100 (1).exe [2463848] O61 - LFC: 29/05/2014 - 12:01:46 ---A- . (.Malwarebytes Corp..) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009 (1).exe [12589848] O61 - LFC: 29/05/2014 - 12:01:47 ---A- . (...) -- C:\Users\scorebut\Desktop\RogueKiller.exe [4668928] O61 - LFC: 30/05/2014 - 12:01:42 ---A- . (.Kaspersky Lab ZAO.) -- C:\Users\scorebut\AppData\Local\Temp\{EC436979-1B6B-4962-9BB4-343D2C2FBD2B}.exe [4176736] O61 - LFC: 30/05/2014 - 12:01:43 ---A- . (.Sysinternals - www.sysinternals.com.) -- C:\Users\scorebut\Desktop\autorun\autoruns.exe [591040] O61 - LFC: 30/05/2014 - 12:01:43 ---A- . (.Sysinternals - www.sysinternals.com.) -- C:\Users\scorebut\Desktop\autorun\autorunsc.exe [504000] O61 - LFC: 30/05/2014 - 12:01:45 ---A- . (.Thisisu.) -- C:\Users\scorebut\Desktop\Junkware Removal Tool.exe [1016261] O61 - LFC: 30/05/2014 - 12:01:46 ---A- . (.Malwarebytes Corp..) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009 (2).exe [12589848] O61 - LFC: 30/05/2014 - 12:01:47 ---A- . (.Bleeping Computer, LLC.) -- C:\Users\scorebut\Desktop\rkill.exe [1940216] O61 - LFC: 30/05/2014 - 12:01:47 ---A- . (.Sysinternals - www.sysinternals.com.) -- C:\Users\scorebut\Desktop\proc.explorer\procexp.exe [2925760] O61 - LFC: 30/05/2014 - 12:01:53 ---A- . (.Kaspersky Lab ZAO.) -- C:\Users\scorebut\Desktop\tdsskiller.exe [4176736] O61 - LFC: 31/05/2014 - 12:01:45 ---A- . (...) -- C:\Users\scorebut\Desktop\ipscan.exe [441344] O61 - LFC: 31/05/2014 - 12:01:47 ---A- . (...) -- C:\Users\scorebut\Desktop\ScanIP4.exe [1042202] O61 - LFC: 31/05/2014 - 12:01:47 ---A- . (.Antonio Da Cruz.) -- C:\Users\scorebut\Desktop\photofiltre\PhotoFiltre.exe [2835456] O61 - LFC: 31/05/2014 - 12:01:53 ---A- . (.Nicolas Coolman.) -- C:\Users\scorebut\Desktop\ZHPDiag2.exe [6819311] =>.Nicolas Coolman ~ 1325 Fichiers temporaires (Temporary files) ~ 1 Fichiers cookies (Cookies files) ~ Files: 101 Scanned in 00mn 12s ---\\ Fichiers Alternate Data Stream (ADS) (O62) O62 - ADS:Alternate Data Stream File - C:\Windows\System32\camcodec.dll:Zone.Identifier O62 - ADS:Alternate Data Stream File - C:\Windows\System32\Drivers\camcodec.inf:Zone.Identifier ~ ADS: Scanned in 00mn 01s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\\ Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ~ FASS Keys: 10 Scanned in 00mn 00s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les service demarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [160768] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [128512] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [128512] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [244736] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1167360] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [731648] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [795648] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [23040] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [88576] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [116224] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [91136] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [980480] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [174592] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [73728] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [105472] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [184832] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [280576] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [59392] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [75776] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1203200] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [357376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [299008] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [165376] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [141312] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [93696] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [457216] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [177664] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [54784] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [380928] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [248320] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2818048] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [801792] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [564736] O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [151040] O83 - Search Svchost Services: MsKeyboardFilter (MsKeyboardFilter) . (.Microsoft Corporation - SvcHost Service for Microsoft Keyboard Filter.) -- C:\Windows\System32\KeyboardFilterSvc.dll [75104] ~ Services: 36 Scanned in 00mn 00s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.EAB8264663E2A4D612B09A159AEE8516] [SPRF][10/05/2014] (...) -- C:\ProgramData\1399740342.bdinstall.bin [828540] [MD5.9EC73884D7D7BFEC9EED7EAF3122A0BE] [SPRF][29/05/2014] (...) -- C:\Users\scorebut\Desktop\adwcleaner_3.211.exe [1327971] [MD5.F77F69A38F07794FA84385D7D2F9171D] [SPRF][18/05/2014] (...) -- C:\Users\scorebut\Desktop\aida_icons7.dll [308016] [MD5.B063DF7C7CA0F702EAC68E569743AAAA] [SPRF][13/05/2013] (...) -- C:\Users\scorebut\Desktop\backuphelper_1293555261.exe [1693773] [MD5.0BB89EEEF0B545C2F75E129C7891FA5F] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\bitdefender_isecurity.exe [7307384] [MD5.184343FEE9CDAB3E0E0D17DEC3A22B82] [SPRF][26/05/2014] (...) -- C:\Users\scorebut\Desktop\CamStudio_Setup_v2.7.2_r326_(build_19Oct2013) (1).exe [679144] [MD5.122E0FE0BD52D264FFB874E538114473] [SPRF][15/05/2014] (.CNET Download.com - CNET Download.com.) -- C:\Users\scorebut\Desktop\cbsidlm-cbsi188-iTools-ORG-75629761.exe [929416] [MD5.55BC08E32879A3DE7386A2695D668304] [SPRF][20/05/2014] (.Piriform Ltd - CCleaner Installer.) -- C:\Users\scorebut\Desktop\ccsetup413.exe [4745984] [MD5.2C056BEBD5B5F897EA9A1F0CA0C047C0] [SPRF][26/05/2014] (.Piriform Ltd - CCleaner Installer.) -- C:\Users\scorebut\Desktop\ccsetup414pro (1).exe [4750144] [MD5.2C056BEBD5B5F897EA9A1F0CA0C047C0] [SPRF][26/05/2014] (.Piriform Ltd - CCleaner Installer.) -- C:\Users\scorebut\Desktop\ccsetup414pro.exe [4750144] [MD5.53406E9988306CBD4537677C5336ABA4] [SPRF][25/05/2014] (.Microsoft Corporation - Microsoft .NET Framework 4 Setup.) -- C:\Users\scorebut\Desktop\dotNetFx40_Full_setup.exe [889416] [MD5.49BC31BCF96D98566B800FBDCB2C663D] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\EasyBCD 2.2.exe [1618440] [MD5.A47BECF8B66A4DBC00D237DDAB21D0D2] [SPRF][20/05/2014] (.Free Time - Format Factory Video/Audio/Picture Converter.) -- C:\Users\scorebut\Desktop\FFSetup3.3.4.0.exe [55003752] [MD5.B751B9266073B7E9FA7F86A864DAA1F5] [SPRF][25/05/2014] (.Pas de propriétaire - FileSearchy setup.) -- C:\Users\scorebut\Desktop\FileSearchy_v1.22.exe [9427464] [MD5.C80868306BA3301F58D044B5EDE1179F] [SPRF][11/05/2014] (.Ellora Assets Corporation - Freemake Video Converter Setup.) -- C:\Users\scorebut\Desktop\FreemakeVideoConverterSetup.exe [1308200] [MD5.A0848646DF868B5D34B09004C7B80BD3] [SPRF][25/05/2014] (...) -- C:\Users\scorebut\Desktop\glogg-latest-setup.exe [4961667] [MD5.863C73B8DDCB04AE2DF66F59A4354519] [SPRF][21/05/2014] (...) -- C:\Users\scorebut\Desktop\HandBrake-0.9.9-1_i686-Win_GUI.exe [13888037] [MD5.3DE0CBFCB71EDD59FEFAFBA300886A78] [SPRF][17/05/2014] (.AltrixSoft - Hard Drive Inspector.) -- C:\Users\scorebut\Desktop\hddinsp.exe [2781112] [MD5.88079B66B8CB2C65FC5A220F3C75495C] [SPRF][14/05/2014] (.Macrovision Corporation - Setup.exe.) -- C:\Users\scorebut\Desktop\HHD_v4.0.2.1.exe [56843688] [MD5.4AE7A5E56E5EC018C2CFF18DC963A16C] [SPRF][15/05/2014] (.Reincubate Ltd - iPhone Backup Extractor installer.) -- C:\Users\scorebut\Desktop\iphonebackupextractor-latest.exe [3132136] [MD5.00DA87E417E5A1E17D589A3C91CEADDC] [SPRF][31/05/2014] (...) -- C:\Users\scorebut\Desktop\ipscan.exe [441344] [MD5.CA630DBADEB5B6101531F986ADFE46C9] [SPRF][30/05/2014] (.Thisisu - Junkware Removal Tool.) -- C:\Users\scorebut\Desktop\Junkware Removal Tool.exe [1016261] [MD5.884F3C8083DA0D232E24616ED6EE00B3] [SPRF][26/05/2014] (.Pas de propriétaire - K-Lite Mega Codec Pack Setup.) -- C:\Users\scorebut\Desktop\K-Lite_Codec_Pack_1050_Mega.exe [32601488] [MD5.1B47D23A5EA99CF742E23112B4C33060] [SPRF][18/05/2014] (...) -- C:\Users\scorebut\Desktop\MaConfig_win.exe [255880] [MD5.49915672F44C9A4FBC980D72B3B6EF4E] [SPRF][29/05/2014] (.Malwarebytes - Malwarebytes Anti-Exploit Setup.) -- C:\Users\scorebut\Desktop\mbae-setup-0.10.3.0100 (1).exe [2463848] [MD5.49915672F44C9A4FBC980D72B3B6EF4E] [SPRF][18/05/2014] (.Malwarebytes - Malwarebytes Anti-Exploit Setup.) -- C:\Users\scorebut\Desktop\mbae-setup-0.10.3.0100.exe [2463848] [MD5.302103AF95A8F43AD85F80DAE14BDB9C] [SPRF][17/05/2014] (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\scorebut\Desktop\mbam-setup-2.0.1.1004.exe [17305616] [MD5.E90BF9E1562F40140161573B79CD5720] [SPRF][29/05/2014] (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\scorebut\Desktop\mbam-setup-2.0.2.1012.exe [17292760] [MD5.99D69C3E87FE1556B76886F778480E2D] [SPRF][29/05/2014] (.Malwarebytes Corp. - Malwarebytes Anti-Rootkit.) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009 (1).exe [12589848] [MD5.99D69C3E87FE1556B76886F778480E2D] [SPRF][30/05/2014] (.Malwarebytes Corp. - Malwarebytes Anti-Rootkit.) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009 (2).exe [12589848] [MD5.99D69C3E87FE1556B76886F778480E2D] [SPRF][18/05/2014] (.Malwarebytes Corp. - Malwarebytes Anti-Rootkit.) -- C:\Users\scorebut\Desktop\mbar-1.07.0.1009.exe [12589848] [MD5.05A2791C11FB6CF007DB07E238B585EC] [SPRF][26/05/2014] (...) -- C:\Users\scorebut\Desktop\nfo01.exe [691224] [MD5.26A952BF8DE88D2FE1F0C5AAB51EC21E] [SPRF][24/05/2014] (.Microsoft Corporation - Windows 8.1 Assistant.) -- C:\Users\scorebut\Desktop\OSGS14-WindowsSetupBox-32bitand64bit-English-4141408.exe [6431728] [MD5.67781D1AACCF58665EE1D3E1846AD3B8] [SPRF][14/05/2014] (.PeerBlock, LLC - PeerBlock 1.2 (r693) Setup.) -- C:\Users\scorebut\Desktop\PeerBlock-Setup_v1.2_r693.exe [2374320] [MD5.72655C3C5F1EF41F6C7819262C667586] [SPRF][25/05/2014] (.PGK GmbH - PGK.Extensions.) -- C:\Users\scorebut\Desktop\PGK.Extensions.dll [64512] [MD5.A892D0B64211C7EF519415BE9E9A0956] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\ps3-media-server_1-90-1_fr_285574_32.exe [53679694] [MD5.72DB9135701339D37A02D9BA78B33404] [SPRF][13/05/2014] (...) -- C:\Users\scorebut\Desktop\rar-password-recovery-trial.exe [4499133] [MD5.BA48F4C0988795FBEADAE23BE988054D] [SPRF][30/05/2014] (.Bleeping Computer, LLC - Terminates malware processes so that you can run your normal security programs..) -- C:\Users\scorebut\Desktop\rkill.exe [1940216] [MD5.F4DB71F3963417638D67D52996A4D0AE] [SPRF][29/05/2014] (...) -- C:\Users\scorebut\Desktop\RogueKiller.exe [4668928] [MD5.F60653FB74468F4783568E3516CCEE7B] [SPRF][10/05/2014] (.Akeo Consulting (http://akeo.ie) - Rufus.) -- C:\Users\scorebut\Desktop\rufus-1.4.7.exe [606120] [MD5.CC4C168E0018CBEBEE5CB6737136B5C3] [SPRF][31/05/2014] (.Pas de propriétaire - Scanneur IP.) -- C:\Users\scorebut\Desktop\ScanIP4.exe [1042202] [MD5.0D0AE1B62B9A50C65A3934E5A6CF5CE5] [SPRF][13/05/2014] (.Skype Technologies S.A. - Skype.) -- C:\Users\scorebut\Desktop\SkypeSetupFull.exe [34827424] [MD5.2E6B3BA13715A5C9BCE6A6CCF02CEC6F] [SPRF][10/05/2014] (...) -- C:\Users\scorebut\Desktop\spotflux-2.10.7-97.exe [2712872] [MD5.F0D26D1625B12A3A76148E9DE59E9735] [SPRF][15/05/2014] (.Tansee, Inc. - Tansee iPhone Transfer SMS Setup.) -- C:\Users\scorebut\Desktop\tanseeiphonesms.exe [9613528] [MD5.A85AB106C480911A54E9F0FD527A134A] [SPRF][30/05/2014] (.Kaspersky Lab ZAO - TDSS rootkit removing tool.) -- C:\Users\scorebut\Desktop\tdsskiller.exe [4176736] [MD5.698738342F8B7F8706BA6CC4B3968773] [SPRF][09/05/2014] (.TeamViewer GmbH - Pas de description.) -- C:\Users\scorebut\Desktop\TeamViewer_Setup_fr.exe [6212016] [MD5.FAA769DBA68A5DC0C48FBBE19A9850D2] [SPRF][13/05/2014] (.Yury Sidorov - Transmission Remote GUI Setup.) -- C:\Users\scorebut\Desktop\transgui-5.0.1-setup.exe [1783216] [MD5.BA2EC3F4EC72525F88630AD7890E6AFF] [SPRF][25/05/2014] (.Geza Kovacs - UNetbootin - Universal Netboot Installer - http://unetbootin.sourceforge.net.) -- C:\Users\scorebut\Desktop\unetbootin-windows-603.exe [4831744] [MD5.24FD10A15761C3456E3CD1337E75296D] [SPRF][24/05/2014] (.BitTorrent Inc. - µTorrent.) -- C:\Users\scorebut\Desktop\uTorrent.exe [1271376] =>P2P.BitTorrent [MD5.040079C39186A5D46328BE8BFE151F0C] [SPRF][27/07/2005] (...) -- C:\Users\scorebut\Desktop\vcr34rus.exe [31210] [MD5.DF463B4C69C1531D1DA7DA3E30E7F8B5] [SPRF][16/05/2014] (...) -- C:\Users\scorebut\Desktop\vlc-2.1.3-win32.exe [24677393] [MD5.6AC0462029F33F6760E4960931D08468] [SPRF][17/05/2014] (.Resplendence Software Projects Sp. - WhoCrashed Home Edition Setup.) -- C:\Users\scorebut\Desktop\whocrashedSetup.exe [2668480] [MD5.A112A9B39D22E592C71F617CF379BB9B] [SPRF][25/05/2014] (.Microsoft Corporation - Installation de Windows 8.) -- C:\Users\scorebut\Desktop\Windows8-Setup.exe [5487040] [MD5.F9CCB8D2F80921091B0649567B133086] [SPRF][08/05/2014] (...) -- C:\Users\scorebut\Desktop\winrar-x86-510b4fr.exe [1840568] [MD5.C1BA914124E9A07FD7CAC4CEB8338EEC] [SPRF][31/05/2014] (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Users\scorebut\Desktop\ZHPDiag2.exe [6819311] [MD5.63A8F8086EB1097D64B4C4B288530128] [SPRF][13/05/2014] (...) -- C:\Users\scorebut\Desktop\zip-password-recovery-trial.exe [4863959] [MD5.03B9F8F7B3AA1C42602ED6A615A89BDE] [SPRF][14/05/2014] (.FDRLab Data Recovery Centre - Zip Password Tool Setup.) -- C:\Users\scorebut\Desktop\zip_password_tool_setup.exe [739276] ~ Files: 57 Scanned in 00mn 14s ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{3D6F2D67-D70E-4153-B4F7-869BF98EAF2C}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\scorebut\Desktop\uTorrent.exe =>P2P.BitTorrent O87 - FAEL: "{E50E8905-4D6D-444C-9FF2-7CCE4719D04F}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\scorebut\Desktop\uTorrent.exe =>P2P.BitTorrent ~ Firewall: 2 Scanned in 00mn 01s ---\\ Enumère les données de la clé NameSpace (MNS) (O92) O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE} O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B} O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA} O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C} O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0} O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641} ~ MNS: 6 Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 15/03/2014 69880 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe SS - | Auto 09/05/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 09/05/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Demand 21/02/2014 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe SS - | Demand 22/08/2013 31552 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 12/02/2014 43336 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 01/04/2014 2117960 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exe SR - | Auto 04/03/2014 663896 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe SR - | Auto 04/03/2014 411936 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe SR - | Auto 25/04/2014 5024576 | (TeamViewer9) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe SR - | Auto 15/03/2014 54424 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe SR - | Auto 14/04/2014 86744 | (VMAuthdService) . (.VMware, Inc..) - C:\Program Files\VMware\VMware Workstation\vmware-authd.exe =>.VMware, Inc SR - | Auto 14/04/2014 359128 | (VMnetDHCP) . (.VMware, Inc..) - C:\WINDOWS\system32\vmnetdhcp.exe SR - | Auto 27/02/2014 722624 | (VMUSBArbService) . (.VMware, Inc..) - C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe SR - | Auto 14/04/2014 437976 | (VMware NAT Service) . (.VMware, Inc..) - C:\WINDOWS\system32\vmnat.exe SR - | Auto 14/04/2014 14407384 | (VMwareHostd) . (...) - C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe =>.VMware, Inc SR - | Auto 24/03/2014 1248712 | (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe SR - | Demand 24/03/2014 22224 | (WinDefend) . (.Microsoft Corporation.) - C:\Program Files\Windows Defender\MsMpEng.exe ~ Services: Scanned in 00mn 14s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net ~ MBR: 1 Scanned in 00mn 02s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by scorebut at 31/05/2014 12:03:58 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s ---\\ Scan Additionnel (O88) Database Version : 13026 - (30/05/2014) Clés trouvées (Keys found) : 1 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 1 Fichiers trouvés (Files found) : 2 [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^ C:\Users\scorebut\AppData\Roaming\uTorrent =>P2P.µTorrent^ [HKCU\Software\BitTorrent] =>P2P.BitTorrent^ C:\Users\scorebut\Desktop\uTorrent.exe =>P2P.BitTorrent^ ~ Additionnel Scan: 257253 Items scanned in 00mn 40s ---\\ Récapitulatif des détections trouvées sur votre station ~ MSI: 0 link(s) detected in 00mn 00s End of the scan (1482 lines in 04mn 14s)(0)