Format du document : text/plain
Prévisualisation
~ Rapport de ZHPDiag v2014.4.14.26 - Nicolas Coolman (14/04/2014)
~ Lancé par julien gire (27/07/2015 20:05:46)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17905 (Defaut)
MFIE: Mozilla Firefox 39.0
GCIE: Google Chrome v44.0.2403.107
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
---\\ Logiciels de protection du système
avast! EasyPass v7-9-1-129
McAfee Security Scan Plus v3.8.130.8
Windows Defender W8
---\\ Logiciels d'optimisation du système
CCleaner v4.06 =>.Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 18 NPAPI
Adobe Reader XI
Java 7 Update 55
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 6033 MB (67% free)
System Restore: Activé (Enable)
System drive C: has 308 GB (34%) free of 902 GB
---\\ Mode de connexion au système
~ Computer Name: JULIEN
~ User Name: julien gire
~ All Users Names: UpdatusUser, julien gire, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\julien gire\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\julien gire\AppData\Roaming\
~ %Desktop% : C:\Users\julien gire\Desktop\
~ %Favorites% : C:\Users\julien gire\Favorites\
~ %LocalAppData% : C:\Users\julien gire\AppData\Local\
~ %StartMenu% : C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 308 Go of 902 Go)
D: Hard drive, Flash drive, Thumb drive (Free 3 Go of 29 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 49 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) (.28/01/2015 - 00:47:12.) -- C:\Windows\Explorer.exe [2501368]
[MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) (.28/12/2014 - 18:04:41.) -- C:\Windows\System32\Wininit.exe [145920]
[MD5.98C6A46E9E2822BF83196C2EAE43DBD4] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/06/2015 - 22:16:12.) -- C:\Windows\System32\wininet.dll [2427392]
[MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.28/12/2014 - 18:05:36.) -- C:\Windows\System32\Winlogon.exe [572416]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.30/05/2014 - 04:03:03.) -- C:\Windows\system32\Drivers\AFD.sys [563200]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.24/07/2014 - 12:45:39.) -- C:\Windows\system32\Drivers\HDAudBus.sys [76800]
[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) (.28/12/2014 - 18:20:32.) -- C:\Windows\system32\Drivers\i8042prt.sys [108544]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.27/06/2015 - 04:12:25.) -- C:\Windows\system32\Drivers\MRxSmb.sys [401408]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.28/12/2014 - 18:04:38.) -- C:\Windows\system32\Drivers\ntfs.sys [2025792]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.1BD3022FD6E450B00DE560265638FD2A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.28/12/2014 - 18:20:32.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [112640]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.14/11/2013 - 08:16:40.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.19/06/2014 - 03:13:36.) -- C:\Windows\system32\Drivers\volsnap.sys [310080]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/13375
~ Mes musiques (My Musics) : 27/4203
~ Mes Videos (My Videos) : 1/813
~ Mes Favoris (My Favorites) : 1/7
~ Mes Documents (My Documents) : 1/15297
~ Mon Bureau (My Desktop) : 1/4243
~ Menu demarrer (Programs) : 1/34
~ Hidden Files: Scanned in 00mn 28s
---\\ Processus lancés
[MD5.6009C7F55A71FA7F23692B92214A4CF8] - (.IObit - Performance Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [1774880] [PID.4056]
[MD5.CE3CAFC0FDAE974235EFF64ACBBEEBDD] - (.AuthenTec Inc. - TouchControl.) -- C:\Program Files (x86)\HP SimplePass\TouchControl.exe [3698024] [PID.4076]
[MD5.1F5EF56125100935CF715A6C89BD4F51] - (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe [2186528] [PID.4688]
[MD5.EDE5216C1A9F67F542D1FA68A8502A40] - (.Pas de propriétaire - IEWebSiteLogon.) -- C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe [4073320] [PID.4332]
[MD5.724CB7A116F7E1A67009D751BCF86586] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120] [PID.3496]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.4904]
[MD5.EC58C1A9A3281CE0C8FCC05BDBFECB37] - (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816] [PID.4932]
[MD5.105C276BB7B43501225C419B062096D0] - (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816] [PID.6108]
[MD5.07322C7B12AF81F00AC248190BBF69BE] - (.Siber Systems - RoboForm TaskBar Icon.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe [100200] [PID.4712]
[MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.4276]
[MD5.D722BEA04DD8EA91AF60308393CF5293] - (.Microsoft Corporation - Send to OneNote Tool.) -- C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.exe [194728] [PID.4900]
[MD5.656DFDB81019B8A11EFB05D974701AFD] - (.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [371976] [PID.3392]
[MD5.A2221900B57AEC20577996744FA4A56A] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296] [PID.4416]
[MD5.6198A9BC15ED77F318D5DDD1918CF1D1] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024] [PID.4504]
[MD5.9F3655267BA37004F519ABDDB3AEE244] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008] [PID.4528]
[MD5.FB1A303207C1124C2B61A50E5A32AC21] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968] [PID.5764]
[MD5.65C6AA484AD2287D20541C7735989437] - (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [5515496] [PID.4296]
[MD5.887CAA31048EB8ED09A0CBD0E6F46F09] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776] [PID.6056]
[MD5.4275C55AA440DC08EA0267AED31D9654] - (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712] [PID.3904]
[MD5.775DDB699B40C42E1BD799CC0EBF3528] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8215552] [PID.3888]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\julien gire\AppData\Local\Google\Chrome\User Data\Default\Preferences
---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\julien gire\AppData\Roaming\Mozilla\Firefox\Profiles\6uyso6es.default-1437074070538\prefs.js
C:\Users\julien gire\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js
C:\Users\julien gire\AppData\Roaming\Mozilla\Firefox\Profiles\mcrtnzil.default\prefs.js (.not file.)
M2 - MFEP: prefs.js [julien gire - extensions\iobitascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v2.0 (..)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - The plugin allows you to have a better experience with Microsoft Lync.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.12.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll
P2 - FPN: [HKLM] [@divx.com/DivX VOD Helper,version=1.0.0] - (.DivX, LLC. - DivX VOD Helper Plug-in.) -- C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
~ Firefox Browser: 8 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 22 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
O1 - Hosts: 54.225.95.126 achhmapmjlcjlomcbmbicbgkihghgnie
O1 - Hosts: 216.239.32.20 google.com www.google.com
O1 - Hosts: 216.239.32.20 google.com www.google.ad
O1 - Hosts: 216.239.32.20 google.com www.google.ae
O1 - Hosts: 216.239.32.20 google.com www.google.com.af
O1 - Hosts: 216.239.32.20 google.com www.google.com.ag
O1 - Hosts: 216.239.32.20 google.com www.google.com.ai
O1 - Hosts: 216.239.32.20 google.com www.google.al
O1 - Hosts: 216.239.32.20 google.com www.google.am
O1 - Hosts: 216.239.32.20 google.com www.google.co.ao
O1 - Hosts: 216.239.32.20 google.com www.google.com.ar
O1 - Hosts: 216.239.32.20 google.com www.google.as
O1 - Hosts: 216.239.32.20 google.com www.google.at
O1 - Hosts: 216.239.32.20 google.com www.google.com.au
O1 - Hosts: 216.239.32.20 google.com www.google.az
O1 - Hosts: 216.239.32.20 google.com www.google.ba
O1 - Hosts: 216.239.32.20 google.com www.google.com.bd
O1 - Hosts: 216.239.32.20 google.com www.google.be
O1 - Hosts: 216.239.32.20 google.com www.google.bf
O1 - Hosts: 216.239.32.20 google.com www.google.bg
O1 - Hosts: 216.239.32.20 google.com www.google.com.bh
O1 - Hosts: 216.239.32.20 google.com www.google.bi
O1 - Hosts: 216.239.32.20 google.com www.google.bj
O1 - Hosts: 216.239.32.20 google.com www.google.com.bn
O1 - Hosts: 216.239.32.20 google.com www.google.com.bo
O1 - Hosts: 216.239.32.20 google.com www.google.com.br
O1 - Hosts: 216.239.32.20 google.com www.google.bs
O1 - Hosts: 216.239.32.20 google.com www.google.bt
O1 - Hosts: 216.239.32.20 google.com www.google.co.bw
O1 - Hosts: 216.239.32.20 google.com www.google.by
O1 - Hosts: 216.239.32.20 google.com www.google.com.bz
O1 - Hosts: 216.239.32.20 google.com www.google.ca
O1 - Hosts: 216.239.32.20 google.com www.google.cd
O1 - Hosts: 216.239.32.20 google.com www.google.cf
O1 - Hosts: 216.239.32.20 google.com www.google.cg
O1 - Hosts: 216.239.32.20 google.com www.google.ch
O1 - Hosts: 216.239.32.20 google.com www.google.ci
O1 - Hosts: 216.239.32.20 google.com www.google.co.ck
O1 - Hosts: 216.239.32.20 google.com www.google.cl
O1 - Hosts: 216.239.32.20 google.com www.google.cm
O1 - Hosts: 216.239.32.20 google.com www.google.cn
O1 - Hosts: 216.239.32.20 google.com www.google.com.co
O1 - Hosts: 216.239.32.20 google.com www.google.co.cr
O1 - Hosts: 216.239.32.20 google.com www.google.com.cu
O1 - Hosts: 216.239.32.20 google.com www.google.cv
O1 - Hosts: 216.239.32.20 google.com www.google.com.cy
O1 - Hosts: 216.239.32.20 google.com www.google.cz
O1 - Hosts: 216.239.32.20 google.com www.google.de
O1 - Hosts: 216.239.32.20 google.com www.google.dj
O1 - Hosts: 216.239.32.20 google.com www.google.dk
O1 - Hosts: 216.239.32.20 google.com www.google.dm
O1 - Hosts: 216.239.32.20 google.com www.google.com.do
O1 - Hosts: 216.239.32.20 google.com www.google.dz
O1 - Hosts: 216.239.32.20 google.com www.google.com.ec
O1 - Hosts: 216.239.32.20 google.com www.google.ee
O1 - Hosts: 216.239.32.20 google.com www.google.com.eg
O1 - Hosts: 216.239.32.20 google.com www.google.es
O1 - Hosts: 216.239.32.20 google.com www.google.com.et
O1 - Hosts: 216.239.32.20 google.com www.google.fi
O1 - Hosts: 216.239.32.20 google.com www.google.com.fj
O1 - Hosts: 216.239.32.20 google.com www.google.fm
O1 - Hosts: 216.239.32.20 google.com www.google.fr
O1 - Hosts: 216.239.32.20 google.com www.google.ga
O1 - Hosts: 216.239.32.20 google.com www.google.ge
O1 - Hosts: 216.239.32.20 google.com www.google.gg
O1 - Hosts: 216.239.32.20 google.com www.google.com.gh
O1 - Hosts: 216.239.32.20 google.com www.google.com.gi
O1 - Hosts: 216.239.32.20 google.com www.google.gl
O1 - Hosts: 216.239.32.20 google.com www.google.gm
O1 - Hosts: 216.239.32.20 google.com www.google.gp
O1 - Hosts: 216.239.32.20 google.com www.google.gr
O1 - Hosts: 216.239.32.20 google.com www.google.com.gt
O1 - Hosts: 216.239.32.20 google.com www.google.gy
O1 - Hosts: 216.239.32.20 google.com www.google.com.hk
O1 - Hosts: 216.239.32.20 google.com www.google.hn
O1 - Hosts: 216.239.32.20 google.com www.google.hr
O1 - Hosts: 216.239.32.20 google.com www.google.ht
O1 - Hosts: 216.239.32.20 google.com www.google.hu
O1 - Hosts: 216.239.32.20 google.com www.google.co.id
O1 - Hosts: 216.239.32.20 google.com www.google.ie
O1 - Hosts: 216.239.32.20 google.com www.google.co.il
O1 - Hosts: 216.239.32.20 google.com www.google.im
O1 - Hosts: 216.239.32.20 google.com www.google.co.in
O1 - Hosts: 216.239.32.20 google.com www.google.iq
O1 - Hosts: 216.239.32.20 google.com www.google.is
O1 - Hosts: 216.239.32.20 google.com www.google.it
O1 - Hosts: 216.239.32.20 google.com www.google.je
O1 - Hosts: 216.239.32.20 google.com www.google.com.jm
O1 - Hosts: 216.239.32.20 google.com www.google.jo
O1 - Hosts: 216.239.32.20 google.com www.google.co.jp
O1 - Hosts: 216.239.32.20 google.com www.google.co.ke
O1 - Hosts: 216.239.32.20 google.com www.google.com.kh
O1 - Hosts: 216.239.32.20 google.com www.google.ki
O1 - Hosts: 216.239.32.20 google.com www.google.kg
O1 - Hosts: 216.239.32.20 google.com www.google.co.kr
O1 - Hosts: 216.239.32.20 google.com www.google.com.kw
O1 - Hosts: 216.239.32.20 google.com www.google.kz
O1 - Hosts: 216.239.32.20 google.com www.google.la
O1 - Hosts: 216.239.32.20 google.com www.google.com.lb
[...]
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 216
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: MSS+ Identifier [64Bits] - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} . (.McAfee, Inc. - Quick Browser Identifier for MSS+ Tool.) -- C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll
O2 - BHO: e-Carte Bleue Browser Helper Object [64Bits] - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} . (.Orbiscom Ltd. All rights reserved. - FTO CMB.) -- C:\Windows\SysWow64\BhoECart.dll
O2 - BHO: Skype for Business Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Canon Easy-WebPrint EX BHO [64Bits] - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: RoboForm BHO [64Bits] - {724d43a9-0d85-11d4-9908-00400523e39a} . (.AVAST Software - avast! EasyPass Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.Avast Software s.r.o. - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (...) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.dll =>.Microsoft Corporation
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
~ BHO: 17 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! EasyPass Toolbar - [HKLM]{724d43a0-0d85-11d4-9908-00400523e39a} . (.AVAST Software - avast! EasyPass Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll
O3 - Toolbar: Canon Easy-WebPrint EX - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{724D43A0-0D85-11D4-9908-00400523E39A} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: CCleaner.lnk . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: iTunes.lnk . (.Apple Inc. - iTunes.) -- C:\Users\julien gire\Desktop\Uses\iTunes.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Camera.lnk . (.Microsoft Corporation - Camera.) -- C:\WINDOWS\Camera\Camera.exe
O4 - GS\Program [Public]: Connected Music powered by Meridian.lnk . (.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O4 - GS\Program [Public]: Connected Music powered by Universal Music Group.lnk . (...) -- C:\Program Files (x86)\Connected Music powered by Universal Music Group\Connected Music powered by Universal Music Group.exe
O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
O4 - GS\Program [Public]: FileManager.lnk . (.Microsoft Corporation - OneDrive.) -- C:\WINDOWS\FileManager\FileManager.exe
O4 - GS\Program [Public]: Movie Maker.lnk . (.Microsoft Corporation - Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Photo Gallery.lnk . (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: PhotosApp.lnk . (.Microsoft Corporation - Photos.) -- C:\WINDOWS\FileManager\PhotosApp.exe
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Store.lnk . (...) -- C:\WINDOWS\WinStore\WinStore.htm
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\WINDOWS\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (...) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe (.not file.)
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) -- C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\WINDOWS\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) -- C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\WINDOWS\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\Accessories [UpdatusUser]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Desktop [UpdatusUser]: Pop up Blocker v6.0.6.lnk . (...) -- C:\Program Files (x86)\Pop up Blocker\pd.exe (.not file.)
O4 - GS\Desktop [UpdatusUser]: PopUp Destroy.lnk . (...) -- C:\Program Files (x86)\PopUp Destroy\Popup-Destroy.exe (.not file.)
O4 - GS\QuickLaunch [julien gire]: Foxit Reader.lnk . (...) -- C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
O4 - GS\QuickLaunch [julien gire]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [julien gire]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [julien gire]: Microsoft Outlook.lnk . (.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.exe
O4 - GS\QuickLaunch [julien gire]: WarThunder.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [julien gire]: Advanced SystemCare 8.lnk . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe
O4 - GS\TaskBar [julien gire]: Driver Booster 2.lnk . (.IObit - Driver Booster 2.) -- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
O4 - GS\TaskBar [julien gire]: File Explorer.lnk - Clé orpheline
O4 - GS\TaskBar [julien gire]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [julien gire]: iTunes.lnk . (.Apple Inc. - iTunes.) -- C:\Users\julien gire\Desktop\Uses\iTunes.exe
O4 - GS\TaskBar [julien gire]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [julien gire]: SimplePass LaunchSite.lnk . (.TODO: - TaskBarLauncher.) -- C:\Program Files (x86)\HP SimplePass\SimplePass LaunchSite.exe
O4 - GS\TaskBar [julien gire]: Start Menu 8.lnk . (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
O4 - GS\TaskBar [julien gire]: Word 2013.lnk . (...) -- C:\WINDOWS\Installer\{90150000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - GS\Program [julien gire]: avast! antivirus.lnk . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - GS\Program [julien gire]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Program [julien gire]: Start Menu 8.lnk . (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
O4 - GS\Program [julien gire]: WarThunder.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Accessories [julien gire]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\SendTo [julien gire]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [julien gire]: Ordinateur.lnk - Clé orpheline
~ Global Startup: 57 Scanned in 00mn 02s
---\\ Applications lancées au démarrage du système (O4)
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
O4 - GS\Startup [julien gire]: Envoyer à OneNote.lnk . (.Microsoft Corporation - Send to OneNote Tool.) -- C:\Program Files (x86)\Microsoft Office\Office15\ONENOTEM.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Users\julien gire\Desktop\Uses\iTunesHelper.exe
O4 - HKCU\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [RoboForm] . (.Siber Systems - RoboForm TaskBar Icon.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
O4 - HKLM\..\Wow6432Node\Run: [BtTray] . (.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
O4 - HKLM\..\Wow6432Node\Run: [CLVirtualDrive] . (.CyberLink Corp. - CyberLink Virtual Drive.) -- C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXMediaServer] . (.DivX, LLC - DivX DLNA Media Server.) -- C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propriétaire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.Avast Software s.r.o. - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKUS\S-1-5-21-3504430750-2508699932-2239496844-1002\..\Run: [iCloudServices] . (.Apple Inc. - iCloud.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKUS\S-1-5-21-3504430750-2508699932-2239496844-1002\..\Run: [ApplePhotoStreams] . (.Apple Inc. - iCloud Photos.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKUS\S-1-5-21-3504430750-2508699932-2239496844-1002\..\Run: [RoboForm] . (.Siber Systems - RoboForm TaskBar Icon.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
O4 - HKUS\S-1-5-21-3504430750-2508699932-2239496844-1002\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-3504430750-2508699932-2239496844-1002\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: Remplir les formulaires [64Bits] - {320AF880-6646-11D3-ABEE-C5DBF3571F46} . (.AVAST Software - avast! EasyPass Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Enregistrer les formulaires [64Bits] - {320AF880-6646-11D3-ABEE-C5DBF3571F49} . (.AVAST Software - avast! EasyPass Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Barre avast! EasyPass [64Bits] - {724d43aa-0d85-11d4-9908-00400523e39a} . (.AVAST Software - avast! EasyPass Main Module.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office15\ONBTTN~1.dll =>.Microsoft Corporation
O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 8 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{CC6BA0A6-4DBA-42BD-BEA5-4B8B6571355B}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{CC6BA0A6-4DBA-42BD-BEA5-4B8B6571355B}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) . (.Avast Software s.r.o. - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BlueSoleilCS (BlueSoleilCS) . (.IVT Corporation - Bluetooth Application.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Skype Click to Call Updater (c2cautoupdatesvc) . (...) - C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
O23 - Service: Skype Click to Call PNR Service (c2cpnrsvc) . (...) - C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
O23 - Service: TrueSuiteService (FPLService) . (.HP - HP Service.) - C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
O23 - Service: GamesAppIntegrationService (GamesAppIntegrationService) . (.WildTangent - WildTangent Games App Integration Service.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
O23 - Service: HP Connected Remote Service (HPConnectedRemote) . (.Hewlett-Packard - HPConnectedRemoteService.) - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
O23 - Service: oem17.inf (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Technologie de stockage Intel(R) Rapid (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) . (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Survey.) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (.Intel Corporation - Intel(R) ME Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.6.) - C:\WINDOWS\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>Crapware.SpyHunter
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StartMenu8 Service (StartMenuService) . (.IObit - StartMenu8 Services.) - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Validity WBF Policy Service (valWBFPolicyService) . (...) - C:\Windows\system32\valWBFPolicyService.exe
~ Services: 32 Scanned in 00mn 41s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\ASC8_SkipUac_julien gire.job [268]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1086]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1090]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Synaptics TouchPad Enhancements.job [264]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Uninstaller_SkipUac_julien_gire.job [304]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\UpdateTask.job [364]
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.6009C7F55A71FA7F23692B92214A4CF8] [APT] [ASC8_PerformanceMonitor] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [1774880]
[MD5.4F3B6C6464846AF0745E05C424084681] [APT] [ASC8_SkipUac_julien gire] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASC.exe [5424928]
[MD5.C50B830CA9BCD63754928CD6C0E2B114] [APT] [avast! Emergency Update] (.Avast Software s.r.o..) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1298688]
[MD5.22621F4BC16C5C47E76E40F251F0CC79] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3905304] =>.Piriform Ltd
[MD5.724CB7A116F7E1A67009D751BCF86586] [APT] [CLMLSvc_P2G8] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120]
[MD5.5556C54070E16F917393812335381087] [APT] [Driver Booster Scan] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [67904]
[MD5.A230678B227A36FF6A7B5E3DEF198750] [APT] [Driver Booster SkipUAC (julien gire)] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [4435264]
[MD5.0AEEF3E86850ADF3626DA01CE7E08D1E] [APT] [Driver Booster Update] (.IObit.) -- C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [1440576]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488]
[MD5.00000000000000000000000000000000] [APT] [Opera N Saturday] (...) -- C:\Program Files (x86)\Opera\launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Opera N Sunday] (...) -- C:\Program Files (x86)\Opera\launcher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-3504430750-2508699932-2239496844-1002] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3504430750-2508699932-2239496844-1002] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe (.not file.) [0]
[MD5.07322C7B12AF81F00AC248190BBF69BE] [APT] [Run RoboForm TaskBar Icon] (.Siber Systems.) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [100200]
[MD5.1C307171DD801689F2AB6040D64934B4] [APT] [SpyHunter4Startup] (.Enigma Software Group USA, LLC..) -- C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [8276352] =>Crapware.SpyHunter
[MD5.0A6B46C7DF4CC23C106E7494321AE5F3] [APT] [Uninstaller_SkipUac_julien_gire] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [8032544]
[MD5.00000000000000000000000000000000] [APT] [UpdateTask] (...) -- C:\Users\julien gire\AppData\Local\{EBF5DDA9-CF5D-B111-A2C5-94F986AD6861}\uninstall.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728]
[MD5.DDFD05786536EF7AA540CC490A9DE3CE] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [592288]
[MD5.00000000000000000000000000000000] [APT] [SystemSockets] (...) -- C:\Program Files (x86)\HomeTab\WBrokerHandler.exe (.not file.) [0] =>PUP.CertifiedToolbar
~ Scheduled Task: 37 Scanned in 00mn 06s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\WINDOWS\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswRdr) . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.Avast Software s.r.o. - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.Avast Software s.r.o. - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: (CLVirtualDrive) . (.CyberLink - It is a virtual device driver which could c.) - C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (HWiNFO32) . (.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) - C:\WINDOWS\sysWOW64\drivers\HWiNFO64A.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 42 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {0A5B39D2-7ED6-4779-BCC9-37F381139DB3}
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 8_is1
O42 - Logiciel: Aloha TriPeaks - (.WildTangent.) [HKLM][64Bits] -- WTA-6acf42a8-c6fb-4055-9da3-c78d6d686d3c
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D7B824DE-DA32-4772-9E5E-39C5158136A7}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {C4123106-B685-48E6-B9BD-E4F911841EB4}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: AuthenTec TrueAPI 64-bit - (.AuthenTec, Inc..) [HKLM][64Bits] -- {EBC0CC3F-B7A1-4FC8-8014-4C7BFD3925E8}
O42 - Logiciel: Avast Free Antivirus - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-a4f35478-55fd-46c9-bdb5-a5bb02742544
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Build-a-lot 4 - Power Source - (.WildTangent.) [HKLM][64Bits] -- WTA-aa32a17b-13c9-49ae-b6a4-ed4049660633
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner =>.Piriform Ltd
O42 - Logiciel: Canon Easy-WebPrint EX - (.Canon Inc..) [HKLM][64Bits] -- Easy-WebPrint EX
O42 - Logiciel: Canon IJ Scan Utility - (.Canon Inc..) [HKLM][64Bits] -- Canon_IJ_Scan_Utility
O42 - Logiciel: Canon Inkjet Printer/Scanner/Fax Extended Survey Program - (.Canon Inc..) [HKLM][64Bits] -- CANONIJPLM100
O42 - Logiciel: Canon MG2200 series MP Drivers - (.Canon Inc..) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2200_series
O42 - Logiciel: Canon MG2200 series On-screen Manual - (.Canon Inc..) [HKLM][64Bits] -- Canon MG2200 series On-screen Manual
O42 - Logiciel: Canon My Image Garden - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden
O42 - Logiciel: Canon My Image Garden Design Files - (.Canon Inc..) [HKLM][64Bits] -- Canon My Image Garden Design Files
O42 - Logiciel: Canon My Printer - (.Canon Inc..) [HKLM][64Bits] -- CanonMyPrinter
O42 - Logiciel: Configuration DivX - (.DivX, LLC.) [HKLM][64Bits] -- DivX Setup
O42 - Logiciel: Connected Music powered by Universal Music Group version 1.0 - (.Snowite.) [HKLM][64Bits] -- {46037DC7-F927-46DF-935F-D6F122BDD34B}_is1
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-4a145909-5b42-4ed7-99df-56cd118ae126
O42 - Logiciel: Crazy Chicken Soccer - (.WildTangent.) [HKLM][64Bits] -- WTA-c6d322df-7a58-43ce-9e92-c23b69e76171
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink Media Suite 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: CyberLink PhotoDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {4862344A-A39C-4897-ACD4-A1BED5163C5A}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD - (.CyberLink Corp..) [HKLM][64Bits] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: CyberLink PowerDirector 10 - (.CyberLink Corp..) [HKLM][64Bits] -- {B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: Driver Booster 2.3 - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1
O42 - Logiciel: EF Englishtown Advanced Speech Recognition version 4.6.449.1 - (.Shanghai Kingtas Technology Co., Ltd..) [HKLM][64Bits] -- EF Englishtown Advanced Speech Recognition_is1
O42 - Logiciel: Energy Star - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}
O42 - Logiciel: Enregistrement utilisateur de Canon MG2200 series - (.Canon Inc..) [HKLM][64Bits] -- Enregistrement utilisateur de Canon MG2200 series =>.Canon Inc
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-597b0d34-3616-4810-bf42-ac7557fda4f6
O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-0feb8894-f453-41ca-b62d-f17a5b5d2006
O42 - Logiciel: Foxit Reader - (.Foxit Corporation.) [HKLM][64Bits] -- Foxit Reader_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {F4D99A13-F63A-4FC1-8799-CFFDB78DDFB3}
O42 - Logiciel: Gardenscapes: Mansion Makeover - (.WildTangent.) [HKLM][64Bits] -- WTA-33797c14-3d1a-4e67-b908-655d824c69bd
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Google Update Helper - (.PriceMeter.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.PriceMeter
O42 - Logiciel: Governor of Poker 2 Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-b56bea71-dde5-499d-8aab-52d2509d4039
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {D878BE22-3270-4909-B1E1-91C8EF8D3234}
O42 - Logiciel: HP Connected Music (Meridian - installer) - (.Meridian Audio Ltd.) [HKLM][64Bits] -- StartHPConnectedMusic
O42 - Logiciel: HP Connected Music (Meridian - player) - (.Meridian Audio Ltd.) [HKCU][64Bits] -- HPConnectedMusic
O42 - Logiciel: HP Connected Remote - (.Hewlett-Packard.) [HKLM][64Bits] -- {F243A34B-AB7F-4065-B770-B85B767C247C}
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {8704FEEF-A6A8-4E7E-B124-BD6122C66E2C}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {B7037DD6-85FD-4FF6-9059-39532F796257}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Postscript Converter - (.Hewlett-Packard.) [HKLM][64Bits] -- {6E14E6D6-3175-4E1A-B934-CAB5A86367CD}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {E5823036-6F09-4D0A-B05C-E2BAA129288A}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {528AB81B-D65A-4AB0-A2B6-82B51A087D01}
O42 - Logiciel: HP Registration Service - (.Hewlett-Packard.) [HKLM][64Bits] -- {C2E428EB-116E-41C0-9E84-B22DE9CCA42F}
O42 - Logiciel: HP SimplePass - (.Hewlett-Packard.) [HKLM][64Bits] -- {34C821CA-6B55-44A0-8A9B-2EF471D6019E}
O42 - Logiciel: HP Utility Center - (.Hewlett-Packard.) [HKLM][64Bits] -- {0C57987A-A03A-4B95-A309-D23F78F406CA}
O42 - Logiciel: HP Wireless Button Driver - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {941DE69D-6CEE-4171-8F1F-3D7E352AA498}
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: IObit Malware Fighter - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1
O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}
O42 - Logiciel: Java 7 Update 55 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF}
O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0}
O42 - Logiciel: Jeux WildTangent - (.WildTangent.) [HKLM][64Bits] -- WildTangent wildgames Master Uninstall
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-b530cbbc-5a96-4527-8c0d-42fb55963f7c
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-50fa12c8-e9de-48ae-8bf8-bd626c42091f
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {F6F30C28-38AA-4DBA-AE0B-7E30238E61BB}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-f3a4e055-a37a-4917-aafd-ef5826e66de5
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft SkyDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- SkyDriveSetup.exe =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Mises à jour NVIDIA 1.10.8 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Mozilla Firefox 39.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 39.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-0173ba8a-4867-41cc-afcf-862caf848263
O42 - Logiciel: NVIDIA Pilote graphique 331.65 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-29b93bd7-69e9-43a8-8e1d-734126b5bcb6
O42 - Logiciel: Popcorn Time - (.Popcorn Official.) [HKCU][64Bits] -- Popcorn Time
O42 - Logiciel: Ralink Bluetooth Stack64 - (.Ralink Corporation.) [HKLM][64Bits] -- {95DF815D-BE2D-9118-F549-39794C5869CF}
O42 - Logiciel: Ralink RT3290 802.11bgn Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}
O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-051314b4-8d44-4c1d-911a-f28cc492ae2a
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: Royal Envoy 2 Collector's Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-f580c2fe-cc07-4aea-b96d-22fe090b78d8
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype™ 7.3 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Start Menu 8 - (.IObit.) [HKLM][64Bits] -- IObit_StartMenu8_is1
O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Trinklit Supreme - (.WildTangent.) [HKLM][64Bits] -- WTA-498423d0-b75f-4b37-9918-3a8d26df7114
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Update for Skype for Business 2015 (KB2889853) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{AE1BB975-11D1-49A0-82E8-1D26DD62AFE7}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054946) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054946) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}
O42 - Logiciel: Update for Skype for Business 2015 (KB3054946) 32-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{9BBF212C-5BD8-4C8A-B65F-91342D904ED8}
O42 - Logiciel: VC80CRTRedist - 8.0.50727.6195 - (.DivX, Inc.) [HKLM][64Bits] -- {933B4015-4618-4716-A828-5289FC03165F}
O42 - Logiciel: VLC media player 2.0.8 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Validity WBF DDK - (.Validity Sensors, Inc..) [HKLM][64Bits] -- {1F91C200-8F0F-4009-A75E-DB6CE151BD4E}
O42 - Logiciel: ViUpdater - (.Lee-Soft.com.) [HKLM][64Bits] -- ViUpdater
O42 - Logiciel: WarThunder - (.WarThunder.) [HKLM][64Bits] -- WarThunder
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-f3414064-1006-4b5b-8184-484220b381c8
O42 - Logiciel: WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: WinRAR 5.00 (32 bits) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: Youda Jewel Shop - (.WildTangent.) [HKLM][64Bits] -- WTA-3191fc2d-e9d3-4754-9db1-d8edfae14c12
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-f78890d7-ca02-4098-966c-319bd114ff01
O42 - Logiciel: avast! EasyPass v7-9-1-129 - (.AVAST Software.) [HKLM][64Bits] -- AI RoboForm
O42 - Logiciel: iCloud - (.Apple Inc..) [HKLM][64Bits] -- {309768A4-A2BB-4930-A5A2-8169678C9B4C}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {93F2A022-6C37-48B8-B241-FFABD9F60C30}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent =>P2P.BitTorrent
~ Logic: 80 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVAST Software]
[HKCU\Software\Activeris] =>PUP.Activeris
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\AuthenTec]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DivXNetworks]
[HKCU\Software\DivX]
[HKCU\Software\Ecommfactory]
[HKCU\Software\Foxit Software]
[HKCU\Software\GamesClient]
[HKCU\Software\GoldenGate]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\IvoSoft]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lake]
[HKCU\Software\Licenses]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\MainConcept]
[HKCU\Software\Mine]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\Opera Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Siber Systems]
[HKCU\Software\Skype]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\SynergeticSoft]
[HKCU\Software\TeleCharger]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\mozilla]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\AuthenTec]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CyberLink]
[HKLM\Software\DivX]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\GEAR Software]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\IObit]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nektra]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Synaptics]
[HKLM\Software\Validity]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Activeris] =>PUP.Activeris
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AuthenTec]
[HKLM\Software\Wow6432Node\BSPACode]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\DivX]
[HKLM\Software\Wow6432Node\Foxit Software]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IE5Tools]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\IVT Corporation]
[HKLM\Software\Wow6432Node\Insyde]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Loader]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Pirrit Solutions] =>PUP.PirritSuggestor
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Ralink Corporation]
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\RealNetworks]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Siber Systems]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\SynergeticSoft]
[HKLM\Software\Wow6432Node\TGUID]
[HKLM\Software\Wow6432Node\Validity]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Xing Technology Corp.]
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\mcafeeupdater]
~ Key Software: 383 Scanned in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 24/09/2013 - 16:34:30 - [176,621] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 23/09/2013 - 11:48:19 - [0] ----D C:\Program Files (x86)\Amazon
O43 - CFD: 23/09/2013 - 13:46:01 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 23/09/2013 - 13:45:38 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 02/06/2014 - 16:22:07 - [725,826] ----D C:\Program Files (x86)\Canon
O43 - CFD: 16/07/2015 - 18:52:44 - [776,663] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 25/10/2012 - 16:23:20 - [2,557] ----D C:\Program Files (x86)\Connected Music powered by Universal Music Group
O43 - CFD: 17/06/2013 - 11:35:59 - [-1373,517] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 23/09/2013 - 13:40:10 - [157,976] ----D C:\Program Files (x86)\DivX
O43 - CFD: 23/09/2013 - 13:41:06 - [77,498] ----D C:\Program Files (x86)\Foxit Software
O43 - CFD: 02/07/2015 - 16:03:15 - [473,915] ----D C:\Program Files (x86)\Google
O43 - CFD: 12/08/2014 - 12:22:07 - [48,476] ----D C:\Program Files (x86)\GUM26.tmp
O43 - CFD: 17/06/2013 - 11:44:26 - [408,871] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 25/10/2012 - 16:32:19 - [683,294] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 17/06/2013 - 11:32:34 - [92,393] ----D C:\Program Files (x86)\HP SimplePass
O43 - CFD: 25/10/2012 - 16:23:13 - [0,720] ----D C:\Program Files (x86)\HPConnectedMusic
O43 - CFD: 17/07/2015 - 10:40:06 - [0,053] ----D C:\Program Files (x86)\IlemiTVApp.com =>PUP.1ClickDownloader
O43 - CFD: 17/06/2013 - 11:34:47 - [178,108] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 07/01/2014 - 22:13:40 - [187,626] ----D C:\Program Files (x86)\Intel
O43 - CFD: 16/07/2015 - 19:34:53 - [6,557] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 18/06/2015 - 21:33:07 - [357,789] ----D C:\Program Files (x86)\IObit
O43 - CFD: 16/07/2015 - 21:21:00 - [323,427] ----D C:\Program Files (x86)\iS3
O43 - CFD: 18/04/2015 - 16:51:42 - [0,180] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 30/11/2014 - 12:42:18 - [256,995] ----D C:\Program Files (x86)\Java
O43 - CFD: 10/02/2014 - 16:49:47 - [98,370] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 10/02/2014 - 16:50:50 - [1259,684] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/05/2015 - 23:26:34 - [40,892] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 25/10/2012 - 16:19:27 - [5,306] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 10/02/2014 - 16:52:13 - [0,029] ----D C:\Program Files (x86)\Microsoft SQL Server
O43 - CFD: 25/10/2012 - 16:19:56 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 28/03/2014 - 00:54:28 - [8,445] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 18/07/2015 - 18:25:43 - [86,018] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 18/07/2015 - 18:25:44 - [0,247] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 07/01/2014 - 21:54:13 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 07/01/2014 - 22:05:40 - [3,748] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 22/09/2013 - 14:52:53 - [1,563] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 16/07/2015 - 20:17:51 - [0,001] ----D C:\Program Files (x86)\Opera
O43 - CFD: 17/06/2013 - 11:16:47 - [16,219] ----D C:\Program Files (x86)\Ralink Corporation
O43 - CFD: 10/06/2015 - 11:46:21 - [16,578] ----D C:\Program Files (x86)\Real
O43 - CFD: 17/06/2013 - 11:12:27 - [30,578] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 07/01/2014 - 21:54:13 - [36,665] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 07/11/2013 - 21:31:36 - [59,586] ----D C:\Program Files (x86)\Siber Systems
O43 - CFD: 23/05/2015 - 06:09:13 - [52,400] R---D C:\Program Files (x86)\Skype
O43 - CFD: 17/06/2013 - 11:41:52 - [2,444] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 26/04/2015 - 14:43:58 - [12,878] ----D C:\Program Files (x86)\Talkpal
O43 - CFD: 23/09/2013 - 13:49:31 - [102,176] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 22/09/2013 - 18:28:53 - [0,226] ----D C:\Program Files (x86)\ViUpdater
O43 - CFD: 25/10/2012 - 16:31:43 - [66,181] ----D C:\Program Files (x86)\WildGames
O43 - CFD: 23/09/2013 - 12:04:06 - [17,006] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 14/03/2015 - 20:49:16 - [1,261] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 24/09/2013 - 10:17:24 - [124,729] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 29/12/2014 - 08:25:15 - [5,739] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 29/12/2014 - 08:25:15 - [3,172] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 29/12/2014 - 08:25:15 - [0,220] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 17:36:30 - [7,239] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 29/12/2014 - 08:25:15 - [5,247] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 29/12/2014 - 08:25:15 - [0,220] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 07/01/2014 - 22:13:46 - [0] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 17:36:30 - [0] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 23/09/2013 - 13:32:34 - [5,105] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 27/07/2015 - 13:04:53 - [23,630] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 24/09/2013 - 16:34:31 - [10,067] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 23/09/2013 - 13:24:10 - [45,877] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 18/04/2015 - 16:20:22 - [162,545] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 17/06/2013 - 11:32:18 - [7,087] ----D C:\Program Files (x86)\Common Files\AuthenTec
O43 - CFD: 17/06/2013 - 11:31:02 - [0,091] ----D C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 10/02/2014 - 16:52:39 - [0,013] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 23/09/2013 - 13:39:55 - [36,259] ----D C:\Program Files (x86)\Common Files\DivX Shared
O43 - CFD: 16/07/2015 - 21:58:43 - [1,096] ----D C:\Program Files (x86)\Common Files\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b
O43 - CFD: 07/01/2014 - 22:03:05 - [101,667] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 17/06/2013 - 11:24:44 - [0,187] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 18/06/2015 - 21:33:41 - [0] ----D C:\Program Files (x86)\Common Files\IObit
O43 - CFD: 30/11/2014 - 12:43:11 - [2,051] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 28/03/2014 - 00:54:17 - [395,543] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 25/10/2012 - 16:13:09 - [1,416] ----D C:\Program Files (x86)\Common Files\Nikon
O43 - CFD: 17/06/2013 - 11:05:35 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 22/08/2013 - 17:36:33 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 25/03/2015 - 12:25:16 - [2,289] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 04/01/2014 - 12:04:32 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 29/12/2014 - 08:25:15 - [9,946] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 25/10/2012 - 16:19:18 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 20/03/2015 - 20:07:56 - [0,341] ----D C:\Program Files (x86)\Common Files\xing shared
O43 - CFD: 18/04/2015 - 16:20:22 - [0,007] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 19/04/2014 - 12:26:34 - [149,495] ----D C:\ProgramData\Adobe
O43 - CFD: 18/04/2015 - 16:42:22 - [170,419] ----D C:\ProgramData\Apple
O43 - CFD: 23/09/2013 - 13:46:07 - [67,820] ----D C:\ProgramData\Apple Computer
O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 07/11/2013 - 21:25:08 - [462,752] ----D C:\ProgramData\AVAST Software
O43 - CFD: 22/09/2013 - 14:42:54 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 10/02/2014 - 12:39:19 - [54,298] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 10/02/2014 - 12:53:08 - [0] --H-D C:\ProgramData\CanonIJEGV
O43 - CFD: 12/02/2015 - 14:30:17 - [0,002] --H-D C:\ProgramData\CanonIJMIG
O43 - CFD: 08/07/2015 - 10:32:37 - [0,043] ----D C:\ProgramData\CanonIJPLM
O43 - CFD: 12/02/2015 - 14:30:18 - [0,005] --H-D C:\ProgramData\CanonIJScan
O43 - CFD: 02/06/2014 - 16:19:05 - [0,083] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 17/06/2013 - 11:34:30 - [0] ----D C:\ProgramData\CyberLink
O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 23/09/2013 - 13:40:10 - [7,341] ----D C:\ProgramData\DivX
O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 17/06/2013 - 11:32:22 - [66,792] ----D C:\ProgramData\Downloaded Installations
O43 - CFD: 18/04/2015 - 16:52:28 - [2,774] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 19/07/2015 - 06:48:03 - [1,242] ----D C:\ProgramData\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b
O43 - CFD: 17/06/2013 - 12:54:01 - [8,360] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 17/06/2013 - 11:31:46 - [0] ----D C:\ProgramData\HP SimplePass 2011
O43 - CFD: 17/06/2013 - 11:30:19 - [0,111] ----D C:\ProgramData\install_clap
O43 - CFD: 17/06/2013 - 11:07:05 - [0,652] ----D C:\ProgramData\Intel
O43 - CFD: 16/07/2015 - 18:56:54 - [103,646] ----D C:\ProgramData\IObit
O43 - CFD: 24/09/2013 - 16:34:48 - [0] ----D C:\ProgramData\McAfee
O43 - CFD: 24/09/2013 - 16:34:48 - [0,001] ----D C:\ProgramData\McAfee Security Scan
O43 - CFD: 22/09/2013 - 14:42:54 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 11/12/2014 - 08:16:39 - [1140,042] -S--D C:\ProgramData\Microsoft
O43 - CFD: 19/07/2015 - 23:10:07 - [0,015] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 25/10/2012 - 16:19:23 - [0] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 10/02/2014 - 16:37:38 - [0,002] ----D C:\ProgramData\Microsoft Toolkit
O43 - CFD: 22/09/2013 - 14:42:55 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 21/04/2014 - 19:48:40 - [0,030] ----D C:\ProgramData\Mozilla
O43 - CFD: 05/01/2014 - 03:51:56 - [0,027] ----D C:\ProgramData\Norton
O43 - CFD: 17/06/2013 - 11:40:18 - [14,189] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 22/09/2013 - 20:42:14 - [5,858] ----D C:\ProgramData\NVIDIA
O43 - CFD: 07/01/2014 - 22:04:39 - [2,215] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 30/11/2014 - 12:55:28 - [67,709] ----D C:\ProgramData\Oracle
O43 - CFD: 10/06/2015 - 11:46:13 - [0,443] ----D C:\ProgramData\Package Cache
O43 - CFD: 07/01/2014 - 22:13:53 - [0,039] ----D C:\ProgramData\PRICache
O43 - CFD: 23/07/2015 - 23:54:33 - [0] ----D C:\ProgramData\ProductData
O43 - CFD: 17/06/2013 - 11:16:48 - [5,047] ----D C:\ProgramData\Ralink Bluetooth Stack
O43 - CFD: 17/06/2013 - 11:15:18 - [7,075] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 10/06/2015 - 11:45:59 - [35,065] ----D C:\ProgramData\Real
O43 - CFD: 29/12/2014 - 08:25:15 - [0,002] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 07/11/2013 - 21:31:52 - [0] ----D C:\ProgramData\RoboForm
O43 - CFD: 13/04/2015 - 20:18:23 - [64,641] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 19/07/2015 - 18:53:55 - [135,460] ----D C:\ProgramData\STOPzilla!
O43 - CFD: 04/01/2014 - 22:06:07 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 17/06/2013 - 11:21:06 - [0,002] ----D C:\ProgramData\Synaptics
O43 - CFD: 14/05/2014 - 21:48:00 - [2,129] ---AD C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 16:45:52 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 30/09/2013 - 19:30:23 - [0,030] ----D C:\ProgramData\TrueSuite
O43 - CFD: 17/06/2013 - 11:13:19 - [0] ----D C:\ProgramData\Validity
O43 - CFD: 16/07/2015 - 22:48:59 - [0,034] ----D C:\ProgramData\VIPRE
O43 - CFD: 25/10/2012 - 16:29:31 - [307,343] ----D C:\ProgramData\WildTangent
O43 - CFD: 11/02/2014 - 21:35:59 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
O43 - CFD: 25/10/2012 - 16:24:06 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 18/06/2015 - 21:34:22 - [0] ----D C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
O43 - CFD: 29/06/2015 - 22:18:55 - [3,337] ----D C:\Users\julien gire\AppData\Roaming\Adobe
O43 - CFD: 11/02/2014 - 21:36:04 - [1970,670] ----D C:\Users\julien gire\AppData\Roaming\Apple Computer
O43 - CFD: 07/11/2013 - 21:33:12 - [6,475] ----D C:\Users\julien gire\AppData\Roaming\AVAST Software
O43 - CFD: 12/02/2015 - 14:27:14 - [2,060] ----D C:\Users\julien gire\AppData\Roaming\Canon
O43 - CFD: 07/04/2014 - 23:30:53 - [0] ----D C:\Users\julien gire\AppData\Roaming\DivX
O43 - CFD: 16/07/2015 - 21:42:16 - [3,087] ----D C:\Users\julien gire\AppData\Roaming\Enigma Software Group
O43 - CFD: 23/09/2013 - 13:41:27 - [1,134] ----D C:\Users\julien gire\AppData\Roaming\Foxit Software
O43 - CFD: 16/07/2015 - 18:54:56 - [0,016] --H-D C:\Users\julien gire\AppData\Roaming\GoldenGate
O43 - CFD: 22/09/2013 - 14:52:16 - [3,270] ----D C:\Users\julien gire\AppData\Roaming\Hewlett-Packard
O43 - CFD: 22/09/2013 - 18:05:56 - [0] ----D C:\Users\julien gire\AppData\Roaming\hpqlog
O43 - CFD: 07/01/2014 - 22:40:20 - [0] ----D C:\Users\julien gire\AppData\Roaming\Identities
O43 - CFD: 18/06/2015 - 21:34:12 - [134,318] ----D C:\Users\julien gire\AppData\Roaming\IObit
O43 - CFD: 22/09/2013 - 18:05:41 - [0,064] ----D C:\Users\julien gire\AppData\Roaming\Macromedia
O43 - CFD: 16/07/2015 - 18:53:50 - [47,894] -S--D C:\Users\julien gire\AppData\Roaming\Microsoft
O43 - CFD: 20/04/2014 - 23:08:53 - [55,077] ----D C:\Users\julien gire\AppData\Roaming\Mozilla
O43 - CFD: 23/09/2013 - 12:19:14 - [0,004] ----D C:\Users\julien gire\AppData\Roaming\NVIDIA
O43 - CFD: 16/07/2015 - 20:17:41 - [0] ----D C:\Users\julien gire\AppData\Roaming\Opera Software
O43 - CFD: 27/04/2015 - 21:20:52 - [0,015] ----D C:\Users\julien gire\AppData\Roaming\ProductData
O43 - CFD: 10/06/2015 - 11:45:46 - [36,606] ----D C:\Users\julien gire\AppData\Roaming\Real
O43 - CFD: 16/07/2015 - 18:55:41 - [0,027] ----D C:\Users\julien gire\AppData\Roaming\Shortcut
O43 - CFD: 18/05/2015 - 20:47:33 - [8,643] ----D C:\Users\julien gire\AppData\Roaming\Skype
O43 - CFD: 22/09/2013 - 14:51:37 - [0] ----D C:\Users\julien gire\AppData\Roaming\Synaptics
O43 - CFD: 17/07/2015 - 09:36:34 - [41,097] ----D C:\Users\julien gire\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 04/01/2014 - 12:18:20 - [0,052] ----D C:\Users\julien gire\AppData\Roaming\ViStart
O43 - CFD: 22/09/2013 - 18:28:53 - [0] ----D C:\Users\julien gire\AppData\Roaming\ViUpdater
O43 - CFD: 26/06/2015 - 21:10:57 - [0,077] ----D C:\Users\julien gire\AppData\Roaming\vlc
O43 - CFD: 16/07/2015 - 18:53:04 - [0,861] ----D C:\Users\julien gire\AppData\Roaming\WarThunder
O43 - CFD: 23/09/2013 - 12:03:56 - [2,692] ----D C:\Users\julien gire\AppData\Roaming\WildTangent
O43 - CFD: 23/09/2013 - 13:32:50 - [0] ----D C:\Users\julien gire\AppData\Roaming\WinRAR
O43 - CFD: 27/07/2015 - 20:07:18 - [0,387] ----D C:\Users\julien gire\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 02/07/2015 - 16:07:38 - [18,393] ----D C:\Users\julien gire\AppData\Local\Adobe
O43 - CFD: 23/09/2013 - 13:46:02 - [0] ----D C:\Users\julien gire\AppData\Local\Apple
O43 - CFD: 24/09/2013 - 17:08:34 - [34,914] ----D C:\Users\julien gire\AppData\Local\Apple Computer
O43 - CFD: 07/01/2014 - 22:10:37 - [0] -SH-D C:\Users\julien gire\AppData\Local\Application Data
O43 - CFD: 23/09/2013 - 12:19:45 - [3,298] ----D C:\Users\julien gire\AppData\Local\Apps
O43 - CFD: 07/01/2014 - 22:40:44 - [30,785] ----D C:\Users\julien gire\AppData\Local\assembly
O43 - CFD: 22/09/2013 - 14:51:09 - [0,002] ----D C:\Users\julien gire\AppData\Local\AuthenTec
O43 - CFD: 23/09/2013 - 13:23:27 - [0,136] ----D C:\Users\julien gire\AppData\Local\avgchrome
O43 - CFD: 05/12/2013 - 21:24:06 - [0,002] ----D C:\Users\julien gire\AppData\Local\bluesoleil
O43 - CFD: 14/05/2014 - 20:44:21 - [0,001] ----D C:\Users\julien gire\AppData\Local\com
O43 - CFD: 16/07/2015 - 20:28:02 - [0] ----D C:\Users\julien gire\AppData\Local\Deployment
O43 - CFD: 02/07/2015 - 00:43:20 - [0] ----D C:\Users\julien gire\AppData\Local\Diagnostics
O43 - CFD: 23/02/2015 - 13:06:33 - [0] ----D C:\Users\julien gire\AppData\Local\ElevatedDiagnostics
O43 - CFD: 16/07/2015 - 20:18:02 - [0] -SH-D C:\Users\julien gire\AppData\Local\EmieSiteList
O43 - CFD: 16/07/2015 - 20:18:03 - [0] -SH-D C:\Users\julien gire\AppData\Local\EmieUserList
O43 - CFD: 22/09/2013 - 18:09:27 - [129,807] ----D C:\Users\julien gire\AppData\Local\Google
O43 - CFD: 06/06/2015 - 17:59:14 - [0] ----D C:\Users\julien gire\AppData\Local\GWX
O43 - CFD: 22/09/2013 - 14:53:42 - [0,002] ----D C:\Users\julien gire\AppData\Local\Hewlett-Packard
O43 - CFD: 07/01/2014 - 22:10:37 - [0] -SH-D C:\Users\julien gire\AppData\Local\Historique
O43 - CFD: 23/09/2013 - 13:51:08 - [0,002] ----D C:\Users\julien gire\AppData\Local\HP
O43 - CFD: 23/09/2013 - 12:19:08 - [104,420] ----D C:\Users\julien gire\AppData\Local\HPConnectedMusic
O43 - CFD: 21/04/2014 - 20:35:29 - [0] ----D C:\Users\julien gire\AppData\Local\Macromedia
O43 - CFD: 16/07/2015 - 19:30:38 - [1689,856] ----D C:\Users\julien gire\AppData\Local\Microsoft
O43 - CFD: 25/11/2014 - 17:47:52 - [0,208] ----D C:\Users\julien gire\AppData\Local\Microsoft Help
O43 - CFD: 21/04/2014 - 19:48:58 - [34,293] ----D C:\Users\julien gire\AppData\Local\Mozilla
O43 - CFD: 16/07/2015 - 20:17:41 - [0] ----D C:\Users\julien gire\AppData\Local\Opera Software
O43 - CFD: 20/07/2015 - 11:46:56 - [1110,456] ----D C:\Users\julien gire\AppData\Local\Packages
O43 - CFD: 18/05/2015 - 22:41:21 - [84,260] ----D C:\Users\julien gire\AppData\Local\Popcorn Time
O43 - CFD: 09/09/2014 - 21:31:50 - [79,246] ----D C:\Users\julien gire\AppData\Local\Popcorn Time fleex
O43 - CFD: 12/06/2015 - 12:07:04 - [11,042] ----D C:\Users\julien gire\AppData\Local\Popcorn-Time
O43 - CFD: 18/09/2014 - 18:16:23 - [11,100] ----D C:\Users\julien gire\AppData\Local\Popcorn-Time-fleex
O43 - CFD: 22/09/2013 - 14:51:32 - [0,039] ----D C:\Users\julien gire\AppData\Local\Power2Go8
O43 - CFD: 22/09/2013 - 18:07:43 - [0] ----D C:\Users\julien gire\AppData\Local\Programs
O43 - CFD: 25/03/2015 - 12:25:27 - [4,879] ----D C:\Users\julien gire\AppData\Local\Skype
O43 - CFD: 27/07/2015 - 20:06:34 - [21,534] ----D C:\Users\julien gire\AppData\Local\Temp
O43 - CFD: 07/01/2014 - 22:10:37 - [0] -SH-D C:\Users\julien gire\AppData\Local\Temporary Internet Files
O43 - CFD: 17/02/2014 - 21:22:03 - [0,001] ----D C:\Users\julien gire\AppData\Local\VirtualStore
O43 - CFD: 11/01/2015 - 23:01:33 - [0] ----D C:\Users\julien gire\AppData\Local\Western Digital
O43 - CFD: 27/08/2014 - 12:04:23 - [0,074] ----D C:\Users\julien gire\AppData\Local\Windows Live
O43 - CFD: 22/08/2013 - 17:36:32 - [0,004] R---D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 17:36:32 - [0,001] R---D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/06/2015 - 02:20:11 - [0] R---D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 17/07/2015 - 10:39:48 - [0,001] ----D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IlemiTVApp.com =>PUP.1ClickDownloader
O43 - CFD: 22/08/2013 - 17:36:32 - [0] ----D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 18/05/2015 - 22:41:22 - [0,004] ----D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time
O43 - CFD: 09/09/2014 - 21:31:50 - [0,004] ----D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Popcorn Time fleex
O43 - CFD: 20/06/2015 - 02:20:11 - [0,001] R---D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/01/2014 - 22:11:36 - [0,006] R---D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
O43 - CFD: 07/01/2014 - 22:18:02 - [0,004] ----D C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 222 Scanned in 01mn 31s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.A6880A81F2C8C403683B45AF5825D4A0] - 14/07/2015 - 15:13:55 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\System32\atmlib.dll [44032]
O44 - LFC:[MD5.EE451A7551CE545D07CED5710ABA9204] - 14/07/2015 - 15:14:00 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\System32\atmfd.dll [358912]
O44 - LFC:[MD5.171705D0C4E4442241C6098D4FF1C059] - 15/07/2015 - 09:35:13 ---A- . (.Microsoft Corporation - Microsoft OLE pour Windows.) -- C:\Windows\System32\ole32.dll [1661576]
O44 - LFC:[MD5.04659158548DB53FFFC51ADC5CBE3858] - 15/07/2015 - 09:36:22 ---A- . (.Microsoft Corporation - GDI Client DLL.) -- C:\Windows\System32\gdi32.dll [1380600]
O44 - LFC:[MD5.C1DC2E63FBBC734BB9B11FF7FDAF30D6] - 15/07/2015 - 09:36:47 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [816640]
O44 - LFC:[MD5.A82A658C7120E513A44EC477D7AE7A52] - 15/07/2015 - 09:36:47 ---A- . (.Microsoft Corporation - Objets homologues Internet Explorer.) -- C:\Windows\System32\iepeers.dll [145408]
O44 - LFC:[MD5.90E6E79D624D86CC4F4AF7C57EB91396] - 15/07/2015 - 09:36:48 ---A- . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll [262144]
O44 - LFC:[MD5.6B56CD995655081863FFB663EA519DBA] - 15/07/2015 - 09:36:50 ---A- . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll [1032704]
O44 - LFC:[MD5.66D75C8BDA2467A21793F2FCED29B723] - 15/07/2015 - 09:36:52 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [92160]
O44 - LFC:[MD5.ECFE64A113A2DFEF26442EA91AC7E9BF] - 15/07/2015 - 09:36:52 ---A- . (.Microsoft Corporation - TDC ActiveX Control.) -- C:\Windows\System32\tdc.ocx [87552]
O44 - LFC:[MD5.C0CB840274D41027E51A81F9DE2CC4C1] - 15/07/2015 - 09:36:53 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [199680]
O44 - LFC:[MD5.9C989DC61ABFB3479607DABF16BBF300] - 15/07/2015 - 09:36:56 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [801280]
O44 - LFC:[MD5.A21CB1630BD6D07CB9B83195F6269E63] - 15/07/2015 - 09:36:57 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [633856]
O44 - LFC:[MD5.9EB977926D63823082883F35C9774C94] - 15/07/2015 - 09:36:57 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2125824]
O44 - LFC:[MD5.CF84C52C84418075D1663C376DB04C18] - 15/07/2015 - 09:36:58 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [88064]
O44 - LFC:[MD5.9889590CA1A0F95F310A9616FA87B6FD] - 15/07/2015 - 09:36:58 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [800768]
O44 - LFC:[MD5.0E1D68E6691BBC62AF4CDF7F7A12C598] - 15/07/2015 - 09:37:00 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [584192]
O44 - LFC:[MD5.1259148E2B17FA7717E4550F58568BC8] - 15/07/2015 - 09:37:03 ---A- . (.Microsoft Corporation - ActiveX Interface Marshaling Library.) -- C:\Windows\System32\actxprxy.dll [2880000]
O44 - LFC:[MD5.98C6A46E9E2822BF83196C2EAE43DBD4] - 15/07/2015 - 09:37:03 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2427392]
O44 - LFC:[MD5.78E4D3781E5632BA88E5153510BEB625] - 15/07/2015 - 09:37:44 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1545728]
O44 - LFC:[MD5.41D59904967A4033FB4497DCED7320AD] - 15/07/2015 - 09:37:44 ---A- . (.Microsoft Corporation - Utilitaire à l’exécution pour Internet Expl.) -- C:\Windows\System32\iertutil.dll [2885632]
O44 - LFC:[MD5.6A70888EEC05B45C8990E8977C480019] - 15/07/2015 - 09:37:48 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [14453248]
O44 - LFC:[MD5.D74E2BE157B8A2A9CF29BEBB052B8A42] - 15/07/2015 - 09:38:02 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [25193984]
O44 - LFC:[MD5.AEE0035F389ED7EFE23E01253BFA382E] - 15/07/2015 - 09:38:41 ---A- . (.Microsoft Corporation - Windows Update Application Launcher.) -- C:\Windows\System32\wuapp.exe [35840]
O44 - LFC:[MD5.89DCA2C3E77CDAC198A395DB73617CCF] - 15/07/2015 - 09:38:41 ---A- . (.Microsoft Corporation - Windows Update Modern WuApp.) -- C:\Windows\System32\WUSettingsProvider.dll [409088]
O44 - LFC:[MD5.F8B153D04E96D5E24C4F482133B99753] - 15/07/2015 - 09:38:41 ---A- . (.Microsoft Corporation - Windows Update Vista Web Control.) -- C:\Windows\System32\wuwebv.dll [140288]
O44 - LFC:[MD5.97A706C00A1ADCF8C5875BC29BB9DBA3] - 15/07/2015 - 09:38:41 ---A- . (.Microsoft Corporation - Windows Update WUDriver Stub.) -- C:\Windows\System32\wudriver.dll [95744]
O44 - LFC:[MD5.DE5203BE4C45434F1EE6FB3FB451F9F8] - 15/07/2015 - 09:38:42 ---A- . (.Microsoft Corporation - API du client Windows Update.) -- C:\Windows\System32\wuapi.dll [891904]
O44 - LFC:[MD5.50CEC061C6D6FD2B9C89BECD08991CCB] - 15/07/2015 - 09:38:42 ---A- . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3701760]
O44 - LFC:[MD5.27BF17D45CEBD10D0096038C5B38D288] - 15/07/2015 - 09:38:42 ---A- . (.Microsoft Corporation - Expérience utilisateur du client Windows Up.) -- C:\Windows\System32\wucltux.dll [2229248]
O44 - LFC:[MD5.B137687B02C877047CCD4873D2925814] - 15/07/2015 - 09:38:42 ---A- . (.Microsoft Corporation - Windows Setup UI.) -- C:\Windows\System32\WinSetupUI.dll [359936]
O44 - LFC:[MD5.6AFBB018517367B69076CC84ABF9CA80] - 15/07/2015 - 09:38:42 ---A- . (.Microsoft Corporation - Windows Update.) -- C:\Windows\System32\wuauclt.exe [136904]
O44 - LFC:[MD5.EEACF91E8C44AEA612030418DDAA7EC9] - 15/07/2015 - 09:38:48 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [5923840]
O44 - LFC:[MD5.0F03CC00645D7F841879A048787D6AC7] - 15/07/2015 - 09:38:51 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [911360]
O44 - LFC:[MD5.C6264DEDF8FE95FAB9AFC47C3F95A6A8] - 15/07/2015 - 09:38:51 ---A- . (.Microsoft Corporation - WER Diagnostic Controller.) -- C:\Windows\System32\werdiagcontroller.dll [37888]
O44 - LFC:[MD5.431FE56F5A2F5937994CB2DA330B47DB] - 15/07/2015 - 09:38:52 ---A- . (.Microsoft Corporation - Générateur de points de terminaison du serv.) -- C:\Windows\System32\AudioEndpointBuilder.dll [230400]
O44 - LFC:[MD5.14AADFF241A96629D64DD7F015976E82] - 15/07/2015 - 09:39:18 ---A- . (.Microsoft Corporation - Client Microsoft® Active Directory Certific.) -- C:\Windows\System32\certcli.dll [445440]
O44 - LFC:[MD5.415862B5FF298A751D775AC49730D04C] - 15/07/2015 - 09:39:18 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1441792]
O44 - LFC:[MD5.46711F40D0F9E63F786ED23F9BD5215E] - 15/07/2015 - 09:39:19 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecpkg.sys [178008]
O44 - LFC:[MD5.BCBD64220AD85C26823453FF1DC3EFBD] - 15/07/2015 - 09:39:19 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [284672]
O44 - LFC:[MD5.57C2473D501331211D6885FD59F3E44B] - 15/07/2015 - 09:39:20 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [202240]
O44 - LFC:[MD5.B01F3377CB949F72366D0B014FF060B9] - 15/07/2015 - 09:39:20 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [442712]
O44 - LFC:[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - 15/07/2015 - 09:39:20 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [401408]
O44 - LFC:[MD5.63040C9A508532F90F6D0BF57E556B82] - 15/07/2015 - 09:39:20 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [989184]
O44 - LFC:[MD5.2F802C0E8B7714268C788D0625E6FBE2] - 15/07/2015 - 09:39:20 ---A- . (.Microsoft Corporation - Runtime d’appel de procédure distante.) -- C:\Windows\System32\rpcrt4.dll [1311960]
O44 - LFC:[MD5.2403EA62E45389F353E507A4EDA94F5D] - 15/07/2015 - 09:39:23 ---A- . (.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\System32\msiexec.exe [65024]
O44 - LFC:[MD5.A7E6931FBB62F18C5DAE52E9AC379C05] - 15/07/2015 - 09:39:24 ---A- . (.Microsoft Corporation - Windows Installer.) -- C:\Windows\System32\msi.dll [3320320]
O44 - LFC:[MD5.4043D5D64F57F86DE757ACD07FB500DB] - 15/07/2015 - 09:39:25 ---A- . (.Microsoft Corporation - Interface utilisateur d’authentification Wi.) -- C:\Windows\System32\authui.dll [2774528]
O44 - LFC:[MD5.DD3D37B54CFB348BA23D174CF1EF1F47] - 15/07/2015 - 09:39:26 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4177920]
O44 - LFC:[MD5.6D8BE0E262EE5D45DE47B772F9D6C3F3] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [1145856]
O44 - LFC:[MD5.4310B66A618A71B48BA092C4A514B8A5] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Compatibility Appraiser.) -- C:\Windows\System32\appraiser.dll [1084928]
O44 - LFC:[MD5.B96E8ECF192F2549A30F6A6E5548191D] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Compatibility Upgrade Migration Host.) -- C:\Windows\System32\acmigration.dll [67584]
O44 - LFC:[MD5.C20BFFEA714E9F71FC7BCDCFB2502396] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Device Inventory Library.) -- C:\Windows\System32\devinv.dll [433152]
O44 - LFC:[MD5.195770B066EBA124F9363A8A3E5E51C6] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - General Telemetry.) -- C:\Windows\System32\generaltel.dll [726528]
O44 - LFC:[MD5.7C20B163DE8138A311537C65B9E58EC0] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Microsoft Compatibility Telemetry.) -- C:\Windows\System32\CompatTelRunner.exe [26288]
O44 - LFC:[MD5.F368216A5F98B92AD02E7F61229B1B5B] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\Windows\System32\aepdu.dll [227328]
O44 - LFC:[MD5.F91793E2D348FB3D1C8EAD70ECBB3F49] - 15/07/2015 - 20:33:30 ---A- . (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\Windows\System32\invagent.dll [764928]
O44 - LFC:[MD5.D662761F10FF6805A8031150224BFCC8] - 15/07/2015 - 20:45:09 ---A- . (...) -- C:\Windows\win.ini [269]
O44 - LFC:[MD5.3B32CAA07D672F8A2E0DF5CB3A873F45] - 16/07/2015 - 20:37:03 ---A- . (...) -- C:\Windows\System32\Drivers\EsgScanner.sys [22704]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/07/2015 - 20:42:53 ---A- . (...) -- C:\autoexec.bat [0]
O44 - LFC:[MD5.7532B09D6708E62F615DCB0BD60327DD] - 22/07/2015 - 14:12:34 ---A- . (...) -- C:\Windows\MEMORY.DMP [825836157]
O44 - LFC:[MD5.EAD0C21480C946F2ABBA830A98077608] - 22/07/2015 - 14:18:19 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [498688]
O44 - LFC:[MD5.25991A1635AF725E9DC840A6A36824EC] - 25/07/2015 - 10:29:23 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428888]
O44 - LFC:[MD5.746DDF7D59AB8D721C88D48434597E8D] - 25/07/2015 - 10:29:23 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2476376]
O44 - LFC:[MD5.3DCE7705F6770C90A616B149C261E8EE] - 25/07/2015 - 10:29:33 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml [411133]
O44 - LFC:[MD5.EBB3AD82E6CE2B4B978E7CBF00E6089D] - 25/07/2015 - 10:29:54 ---A- . (.Microsoft Corporation - Windows.UI.Xaml dll.) -- C:\Windows\System32\Windows.UI.Xaml.dll [18823680]
O44 - LFC:[MD5.52A1B7ECAB4C9EF70FD41241691E09D3] - 25/07/2015 - 10:30:31 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [81920]
O44 - LFC:[MD5.12418846B057E4F92FC621F5C6CF737D] - 25/07/2015 - 10:30:32 ---A- . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys [53248]
O44 - LFC:[MD5.B810B2B39CCA90DC6BF42AF1658AE0D1] - 25/07/2015 - 10:30:32 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [1201664]
O44 - LFC:[MD5.C9DA92524CC8EFAD0822C40674A0938A] - 26/07/2015 - 19:34:00 ---A- . (...) -- C:\Windows\PFRO.log [596]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/07/2015 - 19:34:30 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.8154E68F2503F29B4CE407E7F309F557] - 27/07/2015 - 18:57:09 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1558952]
O44 - LFC:[MD5.F044E1395197B8623099AD3AEAFA3AB2] - 27/07/2015 - 18:58:46 ---A- . (...) -- C:\Windows\setupact.log [308]
O44 - LFC:[MD5.BF57BB74B78A3A9EAC944BB16D107758] - 27/07/2015 - 19:00:27 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
~ Files: 75 Scanned in 03mn 13s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.FAECCB9239FF386D0579308711265CD6] - 09/07/2015 - 08:20:21 ---A- - C:\Windows\Prefetch\SCANUTILITY.EXE-2D4E27DB.pf
O45 - LFCP:[MD5.F4405D71BB182DAE74A0C40259801FD2] - 13/07/2015 - 13:47:19 ---A- - C:\Windows\Prefetch\STARTMENU8.EXE-89E2B7E0.pf
O45 - LFCP:[MD5.7BE81FE77655C2A6E1445C10C60E9D65] - 16/07/2015 - 17:52:16 ---A- - C:\Windows\Prefetch\DJ.EXE-6CBB12D1.pf
O45 - LFCP:[MD5.7A3358D8A410C5BC506EC17C97A5E5D8] - 16/07/2015 - 17:52:33 ---A- - C:\Windows\Prefetch\5B7E8D2D_STP.EXE-5EB38D78.pf
O45 - LFCP:[MD5.4AFAE5D0E6F49CF139FDDEF5B8451304] - 16/07/2015 - 17:52:42 ---A- - C:\Windows\Prefetch\PCSPEEDUP.TMP-C5144DCE.pf
O45 - LFCP:[MD5.F0B72CC0021B9D2ACE320D94C1727D65] - 16/07/2015 - 18:27:11 ---A- - C:\Windows\Prefetch\UNINSTALL_PCSPEEDUP.TMP-9C460680.pf
O45 - LFCP:[MD5.ADF9641A88AD94A0DE3B41A199063D01] - 16/07/2015 - 18:29:34 ---A- - C:\Windows\Prefetch\63100.BUBBLE_DOCK.BBD023.NO.E-641BF18C.pf
O45 - LFCP:[MD5.59DC453D78A31A5C490EE79149E31EF8] - 16/07/2015 - 18:30:15 ---A- - C:\Windows\Prefetch\62793.WINDAPP.MON001.NO.EXE-585E4FC2.pf
O45 - LFCP:[MD5.FF40DAF1A0405F002A1ED45582525B5A] - 16/07/2015 - 18:30:23 ---A- - C:\Windows\Prefetch\62852.SELECTION_TOOLS.ALT001.-A6FCD2C8.pf
O45 - LFCP:[MD5.8FFDDAA168DE9DD6ECD4E7F13A581C06] - 16/07/2015 - 18:30:26 ---A- - C:\Windows\Prefetch\SELECTION TOOLS.EXE-8E33D307.pf
O45 - LFCP:[MD5.D6117D1F58D36AD86316C93F3F4EF0CE] - 16/07/2015 - 19:17:20 ---A- - C:\Windows\Prefetch\GWXUX.EXE-96BF65E3.pf
O45 - LFCP:[MD5.825A11F0520EFADBD21222611D9D0AC5] - 16/07/2015 - 19:17:42 ---A- - C:\Windows\Prefetch\INSTALLER.EXE-974BC9CE.pf
O45 - LFCP:[MD5.83DF0FF0D09A48C93AE7A9DCAB634259] - 16/07/2015 - 19:57:13 ---A- - C:\Windows\Prefetch\IDENTITIES.EXE-8DFF4B6A.pf
O45 - LFCP:[MD5.B5ECE8FC510F182AFDBDE360081995B6] - 16/07/2015 - 20:36:43 ---A- - C:\Windows\Prefetch\SPYHUNTER-INSTALLER.EXE-899AEE35.pf =>Crapware.SpyHunter
O45 - LFCP:[MD5.9F7E3F688F9BD1EB29D5D3CD94349A8D] - 16/07/2015 - 20:37:14 ---A- - C:\Windows\Prefetch\ESGINSTALLERX64STUB.EXE-64B1917A.pf
O45 - LFCP:[MD5.29394F40F7C6CE918B83440F69A97E7C] - 17/07/2015 - 08:48:45 ---A- - C:\Windows\Prefetch\SPYHUNTER4.EXE-3B4E3201.pf =>Crapware.SpyHunter
O45 - LFCP:[MD5.EA72E1A6AF67FCB42242E7A73D797165] - 17/07/2015 - 13:11:14 ---A- - C:\Windows\Prefetch\ENABLETASK.EXE-49CDE3FC.pf
O45 - LFCP:[MD5.1796F45A366B148A071E62C5FBB14B69] - 19/07/2015 - 17:53:55 ---A- - C:\Windows\Prefetch\SBSETUPDRIVERS.EXE-C03D6106.pf
O45 - LFCP:[MD5.309DDB25103ECCE66E78B88B86B8A104] - 27/07/2015 - 11:46:56 ---A- - C:\Windows\Prefetch\IEWEBSITELOGON.EXE-6A8171D8.pf
O45 - LFCP:[MD5.473964D47A75202BBD785C6BB2EA15CC] - 27/07/2015 - 12:00:59 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-AD17FC42.pf
O45 - LFCP:[MD5.A41FF2953BF4D175666909F508FFCF50] - 27/07/2015 - 12:42:17 ---A- - C:\Windows\Prefetch\dynreservedpri.db
O45 - LFCP:[MD5.B53E040F6632F7141CB059330F885557] - 27/07/2015 - 19:05:26 ---A- - C:\Windows\Prefetch\AUTOSWEEP.EXE-AC9E1E39.pf
O45 - LFCP:[MD5.70AFA16D64B8DA5E8CE4ADCEB1F93BB7] - 27/07/2015 - 19:05:26 ---A- - C:\Windows\Prefetch\BUILDINDEX.EXE-70666D71.pf
O45 - LFCP:[MD5.CDD5157DC533F1906E04B2C96263D831] - 27/07/2015 - 19:05:26 ---A- - C:\Windows\Prefetch\STARTMENU_HOOK.EXE-0C0A9390.pf
O45 - LFCP:[MD5.509ECDCAB8CE034BEB1B75C394CCAD6A] - 27/07/2015 - 19:06:29 ---A- - C:\Windows\Prefetch\HPCONNECTEDREMOTEUSER.EXE-1F44B348.pf
O45 - LFCP:[MD5.8A46B90B13A8055B97279EDB160337FB] - 28/06/2015 - 23:19:49 ---A- - C:\Windows\Prefetch\IJPLMUI.EXE-05E0ED60.pf
~ Prefetcher: 26 Scanned in 00mn 02s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Fournisseur de sécurité TLS/SSL.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Live Security Package.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicDisplay.sys . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\BasicRender.sys . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\dxgkrnl.sys . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\FsDepends.sys . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\FsDepends.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (...) -- C:\Windows\System32\Drivers\rdpencdd.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 17 Scanned in 00mn 00s
---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{26a2bd89-9981-11e4-8053-bc8556534b2a}\AutoRun\command. (...) -- F:\unlock.exe (.not file.)
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s
---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s
---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "SoftwareSASGeneration"=1
~ MWPS: 18 Scanned in 00mn 00s
---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
~ MWPE Keys: 3 Scanned in 00mn 00s
---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.E1832BD9FD7E0FC2DC9FA5935DE3E8C1] - 22/08/2013 - 12:38:15 ---A- . (.Microsoft Corporation - 1394 OpenHCI Driver.) -- C:\Windows\System32\Drivers\1394ohci.sys [231424]
O58 - SDL:[MD5.AD508A1A46EC21B740AB31C28EFDFDB1] - 22/08/2013 - 13:43:41 ---A- . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\Windows\System32\Drivers\3ware.sys [108896]
O58 - SDL:[MD5.BE14A19386CC6711D2225D2B242AAC53] - 23/08/2012 - 08:45:42 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys [42400]
O58 - SDL:[MD5.E796AE43DDD1844281DB4D57294D17C0] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Pilote ACPI pour NT.) -- C:\Windows\System32\Drivers\acpi.sys [533824]
O58 - SDL:[MD5.AC8279D229398BCF05C3154ADCA86813] - 22/08/2013 - 13:49:54 ---A- . (.Microsoft Corporation - ACPIEx Driver.) -- C:\Windows\System32\Drivers\acpiex.sys [79712]
O58 - SDL:[MD5.A8970D9BF23CD309E0403978A1B58F3F] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - ACPI Processor Aggregator Device Driver.) -- C:\Windows\System32\Drivers\acpipagr.sys [10240]
O58 - SDL:[MD5.111A89C99C5B4F1A7BCE5F643DD86F65] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - ACPI Power Metering Driver.) -- C:\Windows\System32\Drivers\acpipmi.sys [12288]
O58 - SDL:[MD5.5758387D68A20AE7D3245011B07E36E7] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - ACPI Wake Alarm.) -- C:\Windows\System32\Drivers\acpitime.sys [10752]
O58 - SDL:[MD5.7C1FDF1B48298CBA7CE4BDD4978951AD] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS/SATA controller.) -- C:\Windows\System32\Drivers\adp80xx.sys [782176]
O58 - SDL:[MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - 30/05/2014 - 04:03:03 ---A- . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\Windows\System32\Drivers\afd.sys [563200]
O58 - SDL:[MD5.3EE5097945A7F680E320953271EB2D4F] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - RAS Agile Vpn Miniport Call Manager.) -- C:\Windows\System32\Drivers\agilevpn.sys [96768]
O58 - SDL:[MD5.7DFAEBA9AD62D20102B576D5CAC45EC8] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Filtre AGP 440 NT.) -- C:\Windows\System32\Drivers\AGP440.sys [62304]
O58 - SDL:[MD5.FE14D249D39368CA62D8DA6BC94AC694] - 11/05/2015 - 19:08:00 ---A- . (.Microsoft Corporation - Application Compatibility Cache.) -- C:\Windows\System32\Drivers\ahcache.sys [80384]
O58 - SDL:[MD5.7589DE749DB6F71A68489DCE04158729] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdk8.sys [95744]
O58 - SDL:[MD5.B46D2D89AFF8A9490FA8C98C7A5616E3] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\amdppm.sys [98816]
O58 - SDL:[MD5.D2BF2F94A47D332814910FD47C6BBCD2] - 22/08/2013 - 13:43:41 ---A- . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [79200]
O58 - SDL:[MD5.A8E04943C7BBA7219AA50400272C3C6E] - 22/08/2013 - 13:43:41 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [259424]
O58 - SDL:[MD5.CEA5F4F27CFC08E3A44D576811B35F50] - 22/08/2013 - 13:43:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [25952]
O58 - SDL:[MD5.415DD71628795197F7AFC176CBADC74E] - 28/12/2014 - 18:05:39 ---A- . (.Microsoft Corporation - AppID Driver.) -- C:\Windows\System32\Drivers\appid.sys [82944]
O58 - SDL:[MD5.65045784366F7EC5FB4E71BCF923187B] - 22/08/2013 - 13:43:41 ---A- . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [114016]
O58 - SDL:[MD5.B5B4C90E9F52DA8586F1E5461AD90A5D] - 01/07/2015 - 22:17:03 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29168]
O58 - SDL:[MD5.300CB8E510855189CAD0B72FFB5590CB] - 01/07/2015 - 22:17:03 ---A- . (.Avast Software s.r.o. - avast! File System Minifilter for Windows 2003/Vista.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [89944]
O58 - SDL:[MD5.6D37D8DB30D086739507C5F6E542656A] - 01/07/2015 - 22:17:02 ---A- . (.Avast Software s.r.o. - avast! WFP Redirect Driver.) -- C:\Windows\System32\Drivers\aswRdr2.sys [93528]
O58 - SDL:[MD5.07E32DFCA422A2920482D762D01957EC] - 01/07/2015 - 22:17:03 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65736]
O58 - SDL:[MD5.3B4AC2DBFC86F7247C1FF1FAF2860530] - 01/07/2015 - 22:15:58 ---A- . (.Avast Software s.r.o. - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswSnx.sys [1047320]
O58 - SDL:[MD5.A04F190FCD762E7BCC9BFC70563C52DB] - 02/07/2015 - 14:56:44 ---A- . (.Avast Software s.r.o. - avast! self protection module.) -- C:\Windows\System32\Drivers\aswsp.sys [442264]
O58 - SDL:[MD5.6E53278ECCFFBC2ACC2A5006745ED4BB] - 01/07/2015 - 22:17:04 ---A- . (.Avast Software s.r.o. - Stream Filter.) -- C:\Windows\System32\Drivers\aswStm.sys [137288]
O58 - SDL:[MD5.91782404718C6352C26B3242BAC3F0F1] - 01/07/2015 - 22:17:03 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [272248]
O58 - SDL:[MD5.3DB7721F06BC2FEDB25029EA23AB27DA] - 22/08/2013 - 12:38:53 ---A- . (.Microsoft Corporation - MS Remote Access serial network driver.) -- C:\Windows\System32\Drivers\asyncmac.sys [26624]
O58 - SDL:[MD5.74B14192CF79A72F7536B27CB8814FBD] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\Drivers\atapi.sys [26464]
O58 - SDL:[MD5.38E1F4E0148A24C65D215F14D57B0711] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - ATAPI Driver Extension.) -- C:\Windows\System32\Drivers\ataport.sys [199520]
O58 - SDL:[MD5.8CC7F7E4AFCBA605921B137ED7992C68] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Microsoft Basic Display Driver.) -- C:\Windows\System32\Drivers\BasicDisplay.sys [50688]
O58 - SDL:[MD5.38A82F4EE8C416A6744B6D30381ED768] - 22/02/2014 - 13:14:02 ---A- . (.Microsoft Corporation - Microsoft Basic Render Driver.) -- C:\Windows\System32\Drivers\BasicRender.sys [33280]
O58 - SDL:[MD5.99387C515F80270F097F6DD9B5315649] - 22/08/2013 - 13:49:53 ---A- . (.Microsoft Corporation - Battery Class Driver.) -- C:\Windows\System32\Drivers\battc.sys [35168]
O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys [17624]
O58 - SDL:[MD5.EC19013E4CF87609534165DF897274D6] - 22/08/2013 - 12:40:24 ---A- . (.Microsoft Corporation - BEEP Driver.) -- C:\Windows\System32\Drivers\beep.sys [7680]
O58 - SDL:[MD5.22177DD062F6696A98FAFF6BB0A82C98] - 15/06/2012 - 12:52:28 ---A- . (.Ralink Corporation. - Bluelet Audio Driver.) -- C:\Windows\System32\Drivers\blueletaudio.sys [34912]
O58 - SDL:[MD5.3699C834017C8BF46C216EE407758012] - 10/07/2012 - 16:28:20 ---A- . (.Ralink Corporation - AddOn Audio SCO Driver.) -- C:\Windows\System32\Drivers\BlueletSCOAudio.sys [35936]
O58 - SDL:[MD5.6B4FFFDDC618FCF64473CAA86E305697] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - NT Lan Manager Datagram Receiver Driver.) -- C:\Windows\System32\Drivers\bowser.sys [102912]
O58 - SDL:[MD5.F3C060444777A59FC63D920719E43CCD] - 28/12/2014 - 18:06:02 ---A- . (.Microsoft Corporation - MAC Bridge Driver.) -- C:\Windows\System32\Drivers\bridge.sys [115712]
O58 - SDL:[MD5.1C89EF529DB7DCA98E801EFDCC8437DE] - 23/11/2013 - 08:13:50 ---A- . (.Microsoft Corporation - Microsoft Bluetooth Audio Multiprofile Manager.) -- C:\Windows\System32\Drivers\BtaMPM.sys [19456]
O58 - SDL:[MD5.34AAF6FD68B8403E76F0D08A8C1C1DA3] - 15/06/2012 - 10:22:02 ---A- . (.IVT Corporation - Bluetooth Audio Bus Driver.) -- C:\Windows\System32\Drivers\BtAudioBus.sys [23136]
O58 - SDL:[MD5.A8F23D453A424FF4DE04989C4727ECC7] - 22/08/2013 - 12:38:39 ---A- . (.Microsoft Corporation - HID de contrôle à distance audio/vidéo Bluetooth.) -- C:\Windows\System32\Drivers\BthAvrcpTg.sys [36992]
O58 - SDL:[MD5.12418846B057E4F92FC621F5C6CF737D] - 25/07/2015 - 10:30:32 ---A- . (.Microsoft Corporation - Extension de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthenum.sys [53248]
O58 - SDL:[MD5.272A62B660A48AEF366F8A1836CED19F] - 11/05/2015 - 19:06:09 ---A- . (.Microsoft Corporation - Bluetooth Hands-Free Audio and Call Control HID Enumerator.) -- C:\Windows\System32\Drivers\bthhfenum.sys [57856]
O58 - SDL:[MD5.71FE2A48E4C93DDB9798C024880B6C07] - 22/08/2013 - 12:38:16 ---A- . (.Microsoft Corporation - Minipilote HID mains libres Bluetooth.) -- C:\Windows\System32\Drivers\BthhfHid.sys [30720]
O58 - SDL:[MD5.D30C67473A2E229662D21F27EAA9AAA5] - 04/12/2013 - 19:41:54 ---A- . (.Microsoft Corporation - Bluetooth LE Bus Enumerator.) -- C:\Windows\System32\Drivers\BthLEEnum.sys [226304]
O58 - SDL:[MD5.07E33226AD218A2A162662A05CAFB52F] - 22/08/2013 - 12:36:44 ---A- . (.Microsoft Corporation - Bluetooth Communications Driver.) -- C:\Windows\System32\Drivers\bthmodem.sys [63488]
O58 - SDL:[MD5.25BB93167DEF270188072603F92A1EF5] - 24/07/2014 - 12:41:43 ---A- . (.Microsoft Corporation - Bluetooth Personal Area Networking.) -- C:\Windows\System32\Drivers\bthpan.sys [118272]
O58 - SDL:[MD5.B810B2B39CCA90DC6BF42AF1658AE0D1] - 25/07/2015 - 10:30:32 ---A- . (.Microsoft Corporation - Pilote de bus Bluetooth.) -- C:\Windows\System32\Drivers\bthport.sys [1201664]
O58 - SDL:[MD5.52A1B7ECAB4C9EF70FD41241691E09D3] - 25/07/2015 - 10:30:31 ---A- . (.Microsoft Corporation - Pilote de Miniport Bluetooth.) -- C:\Windows\System32\Drivers\BTHUSB.SYS [81920]
O58 - SDL:[MD5.9C09D5F1257F1748A4EAB0E8584FAF61] - 19/07/2012 - 16:47:40 ---A- . (.Ralink Corporation - Bluetooth L2CAP_SCO Interface Profile Driver.) -- C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904]
O58 - SDL:[MD5.A4A73F631FE2AA2826FBE4A399B04DEF] - 22/08/2013 - 13:43:41 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [531296]
O58 - SDL:[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\Drivers\cdfs.sys [88576]
O58 - SDL:[MD5.C6796EA22B513E3457514D92DCDB1A3D] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\Drivers\cdrom.sys [164352]
O58 - SDL:[MD5.BE9936EDD3267FAAFF94A7835867F00B] - 22/08/2013 - 12:38:25 ---A- . (.Microsoft Corporation - Consumer IR Class Driver for eHome.) -- C:\Windows\System32\Drivers\circlass.sys [44032]
O58 - SDL:[MD5.2787A73C848128C950385CB3A63A6B91] - 28/12/2014 - 18:04:40 ---A- . (.Microsoft Corporation - SCSI Class System Dll.) -- C:\Windows\System32\Drivers\Classpnp.sys [337728]
O58 - SDL:[MD5.8EB7E70C2D348FE2476A2E3F2D585E3D] - 04/03/2015 - 11:25:11 ---A- . (.Microsoft Corporation - Common Log File System Driver.) -- C:\Windows\System32\Drivers\clfs.sys [377152]
O58 - SDL:[MD5.075CCE75090786F124573A788C8656E6] - 25/06/2012 - 09:24:50 ---A- . (.CyberLink - It is a virtual device driver which could create multiple virtu.) -- C:\Windows\System32\Drivers\CLVirtualDrive.sys [92536]
O58 - SDL:[MD5.EF6EF85DADC3184A10D8F2F7159973CB] - 22/08/2013 - 12:39:43 ---A- . (.Microsoft Corporation - Control Method Battery Driver.) -- C:\Windows\System32\Drivers\CmBatt.sys [25472]
O58 - SDL:[MD5.5E5AB950693F2C6D6ACBEE3A74697ED7] - 30/03/2015 - 06:47:00 ---A- . (.Microsoft Corporation - Kernel Cryptography, Next Generation.) -- C:\Windows\System32\Drivers\cng.sys [561928]
O58 - SDL:[MD5.03AAED827C36F35D70900558B8274905] - 22/08/2013 - 12:38:48 ---A- . (.Microsoft Corporation - Multi-Transport Composite Bus Enumerator.) -- C:\Windows\System32\Drivers\CompositeBus.sys [36352]
O58 - SDL:[MD5.A1FF7DFBFBE164CF92603C651D304DD2] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - Console Driver.) -- C:\Windows\System32\Drivers\condrv.sys [43008]
O58 - SDL:[MD5.FA47B0AA255B7CF4519E995C6404AE22] - 22/08/2013 - 13:43:41 ---A- . (.Microsoft Corporation - Crash Dump Driver.) -- C:\Windows\System32\Drivers\crashdmp.sys [68960]
O58 - SDL:[MD5.389C998C64319CD97625B0550E52ECFA] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - DAM Kernel Driver.) -- C:\Windows\System32\Drivers\dam.sys [58176]
O58 - SDL:[MD5.A03F362C5557E238CBFA914689C77248] - 06/03/2014 - 10:22:50 ---A- . (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\Drivers\dfsc.sys [134144]
O58 - SDL:[MD5.4D40C9B33F738797CF50E77CB7C53E85] - 22/08/2013 - 13:39:44 ---A- . (.Microsoft Corporation - PnP Disk Driver.) -- C:\Windows\System32\Drivers\disk.sys [100192]
O58 - SDL:[MD5.224C2CB37497472C345CB2A02DF11363] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Crash Dump Disk Driver.) -- C:\Windows\System32\Drivers\Diskdump.sys [36192]
O58 - SDL:[MD5.407B4FC1AEE5C19AC2ED7118CBB271E9] - 22/08/2013 - 12:40:38 ---A- . (.Microsoft Corporation - Boot Over USB Dump Driver.) -- C:\Windows\System32\Drivers\Dmpusbstor.sys [13312]
O58 - SDL:[MD5.EB70A894708D1BC176AFD690FF06085F] - 22/08/2013 - 12:37:14 ---A- . (.Microsoft Corporation - Dynamic Memory.) -- C:\Windows\System32\Drivers\dmvsc.sys [29696]
O58 - SDL:[MD5.F00B189ECA74DDF408AD934ADDC72477] - 28/12/2014 - 18:04:34 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmk.sys [89088]
O58 - SDL:[MD5.00C594D5A1DBD22AD8B2902B9F6EFF94] - 28/12/2014 - 18:04:34 ---A- . (.Microsoft Corporation - Microsoft Trusted Audio Drivers.) -- C:\Windows\System32\Drivers\drmkaud.sys [14528]
O58 - SDL:[MD5.05F5C162881BE293956C60456EDB0092] - 22/08/2013 - 13:39:46 ---A- . (.Microsoft Corporation - ATAPI Dump Driver.) -- C:\Windows\System32\Drivers\Dumpata.sys [33632]
O58 - SDL:[MD5.61A1C2641321A6B89A2B41C5D481EF48] - 22/02/2014 - 17:15:19 ---A- . (.Microsoft Corporation - Bitlocker Drive Encryption Crashdump Filter.) -- C:\Windows\System32\Drivers\dumpfve.sys [71888]
O58 - SDL:[MD5.95E295FD19F80B3AD33629B5AEFEC9C7] - 11/05/2015 - 19:02:58 ---A- . (.Microsoft Corporation - SD Crashdump Port Driver.) -- C:\Windows\System32\Drivers\dumpsd.sys [154432]
O58 - SDL:[MD5.E1BB0B6F00F470B451AB45EA13EBA0B3] - 28/12/2014 - 18:06:27 ---A- . (.Microsoft Corporation - DirectX Graphics Kernel.) -- C:\Windows\System32\Drivers\dxgkrnl.sys [1552704]
O58 - SDL:[MD5.982B9495F70FEEA269C48F18E960EFDE] - 28/12/2014 - 18:06:27 ---A- . (.Microsoft Corporation - DirectX Graphics MMS.) -- C:\Windows\System32\Drivers\dxgmms1.sys [389952]
O58 - SDL:[MD5.43531A5993380CC5113242C29D265FD9] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Enhanced Storage Class driver for IEEE 1667 devices.) -- C:\Windows\System32\Drivers\EhStorClass.sys [82784]
O58 - SDL:[MD5.6F8E738A9505A388B1157FDDE7B3101B] - 22/08/2013 - 13:43:40 ---A- . (.Microsoft Corporation - Microsoft driver for storage devices supporting IEEE 1667 and T.) -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys [114016]
O58 - SDL:[MD5.647C55949DD6C4C9E7C74A22E64F84FF] - 13/12/2006 - 15:42:08 ---A- . (.USB Smart Card Reader - USB Smart Card Reader.) -- C:\Windows\System32\Drivers\EMVSCARD.sys [28544]
O58 - SDL:[MD5.DFFFAE1442BA4076E18EED5E406FA0D3] - 22/08/2013 - 12:38:45 ---A- . (.Microsoft Corporation - Error Device Driver.) -- C:\Windows\System32\Drivers\errdev.sys [10240]
O58 - SDL:[MD5.3B32CAA07D672F8A2E0DF5CB3A873F45] - 16/07/2015 - 20:37:03 ---A- . (...) -- C:\Windows\System32\Drivers\EsgScanner.sys [22704]
O58 - SDL:[MD5.114BCFDF367FF37C3F1B0A96AF542E4D] - 22/08/2013 - 13:43:45 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3357024]
O58 - SDL:[MD5.7729D294A555C7AEB281ED8E4D0E01E4] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Microsoft Extended FAT File System.) -- C:\Windows\System32\Drivers\exfat.sys [200704]
O58 - SDL:[MD5.7C4E0D5900B2A1D11EDD626D6DDB937B] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Fast FAT File System Driver.) -- C:\Windows\System32\Drivers\fastfat.sys [217952]
O58 - SDL:[MD5.5D8402613E778B3BD45E687A8372710B] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Disk Controller Driver.) -- C:\Windows\System32\Drivers\fdc.sys [30720]
O58 - SDL:[MD5.BCFD8B149B3ADF92D0DB1E909CAF0265] - 22/02/2014 - 17:00:23 ---A- . (.Microsoft Corporation - FileInfo Filter Driver.) -- C:\Windows\System32\Drivers\fileinfo.sys [79192]
O58 - SDL:[MD5.A1A66C4FDAFD6B0289523232AFB7D8AF] - 22/08/2013 - 12:39:41 ---A- . (.Microsoft Corporation - File Trace Filter Driver.) -- C:\Windows\System32\Drivers\filetrace.sys [34816]
O58 - SDL:[MD5.BE743083CF7063C486A4398E3AEFE59A] - 22/08/2013 - 12:40:18 ---A- . (.Microsoft Corporation - Floppy Driver.) -- C:\Windows\System32\Drivers\flpydisk.sys [25088]
O58 - SDL:[MD5.C1FB505A73FA2E9019D32444AB33B75A] - 28/12/2014 - 18:04:38 ---A- . (.Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft.) -- C:\Windows\System32\Drivers\fltMgr.sys [354112]
O58 - SDL:[MD5.A7C31B168F371E8E6796219F23E354DB] - 28/12/2014 - 18:05:19 ---A- . (.Microsoft Corporation - File System Dependency Manager Mini Filter Driver.) -- C:\Windows\System32\Drivers\fsdepends.sys [61248]
O58 - SDL:[MD5.09F460AFEDCA03F3BF6E07D1CCC9AC42] - 22/08/2013 - 14:25:40 ---A- . (.Microsoft Corporation - File System Recognizer Driver.) -- C:\Windows\System32\Drivers\fs_rec.sys [30048]
O58 - SDL:[MD5.F152D55E497E12256290C43B31C7D0CE] - 08/04/2014 - 03:01:25 ---A- . (.Microsoft Corporation - BitLocker Drive Encryption Driver.) -- C:\Windows\System32\Drivers\fvevol.sys [589656]
O58 - SDL:[MD5.25991A1635AF725E9DC840A6A36824EC] - 25/07/2015 - 10:29:23 ---A- . (.Microsoft Corporation - FWP/IPsec Kernel-Mode API.) -- C:\Windows\System32\Drivers\FWPKCLNT.SYS [428888]
O58 - SDL:[MD5.9591D0B9351ED489EAFD9D1CE52A8015] - 22/08/2013 - 09:46:33 ---A- . (.Microsoft Corporation - Processor Driver.) -- C:\Windows\System32\Drivers\fxppm.sys [27136]
O58 - SDL:[MD5.FC3EF65EE20D39F8749C2218DBA681CA] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Filtre AGPv3.0 générique Microsoft pour plateformes de processe.) -- C:\Windows\System32\Drivers\GAGP30KX.SYS [65888]
O58 - SDL:[MD5.8E98D21EE06192492A5671A6144D092F] - 03/10/2012 - 16:14:56 ---A- . (.GEAR Software Inc. - CD DVD Filter.) -- C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240]
O58 - SDL:[MD5.D4B7ED39C7900384D9E5C1283F1E7926] - 24/07/2014 - 12:45:39 ---A- . (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\Drivers\hdaudbus.sys [76800]
O58 - SDL:[MD5.772A1DEEDFDBC244183B5C805D1B7D85] - 03/07/2012 - 00:16:02 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys [62784]
O58 - SDL:[MD5.10A70BC1871CD955D85CD88372724906] - 22/08/2013 - 12:39:01 ---A- . (.Microsoft Corporation - Hid Battery Driver.) -- C:\Windows\System32\Drivers\hidbatt.sys [26624]
O58 - SDL:[MD5.42F88B57CAE42FC10059C887B3FCFCEA] - 30/01/2015 - 04:01:51 ---A- . (.Microsoft Corporation - Pilote de miniport Bluetooth pour les périphériques HID.) -- C:\Windows\System32\Drivers\hidbth.sys [97792]
O58 - SDL:[MD5.ABB7341766902F5AAB45E15F34D19E15] - 06/03/2014 - 10:24:41 ---A- . (.Microsoft Corporation - Bibliothèque Hid Class.) -- C:\Windows\System32\Drivers\hidclass.sys [111616]
O58 - SDL:[MD5.C241A8BAFBBFC90176EA0F5240EACC17] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - I2C HID Miniport Driver.) -- C:\Windows\System32\Drivers\hidi2c.sys [41472]
O58 - SDL:[MD5.9BDDEE26255421017E161CCB9D5EDA95] - 22/08/2013 - 12:39:16 ---A- . (.Microsoft Corporation - Infrared Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidir.sys [45568]
O58 - SDL:[MD5.7FFB24B4A54B1ACD46CF6899D879CC9F] - 22/08/2013 - 12:40:26 ---A- . (.Microsoft Corporation - Hid Parsing Library.) -- C:\Windows\System32\Drivers\hidparse.sys [32512]
O58 - SDL:[MD5.8DB8EAB9D0C6A5DF0BDCADEA239220B4] - 06/03/2014 - 10:24:15 ---A- . (.Microsoft Corporation - USB Miniport Driver for Input Devices.) -- C:\Windows\System32\Drivers\hidusb.sys [33280]
O58 - SDL:[MD5.0C28C65207A2BD4C737A5BCDAB26A430] - 23/08/2012 - 08:45:42 ---A- . (.Hewlett-Packard Company - HP Disk Filter - SATA/RAID.) -- C:\Windows\System32\Drivers\hpdskflt.sys [29600]
O58 - SDL:[MD5.A6AACEA4C785789BDA5912AD1FEDA80D] - 22/08/2013 - 13:43:45 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [64352]
O58 - SDL:[MD5.E87A6D3B8FECD5B93BC0CFBB48C27970] - 24/02/2015 - 09:32:52 ---A- . (.Microsoft Corporation - HTTP Pile du protocole.) -- C:\Windows\System32\Drivers\http.sys [991552]
O58 - SDL:[MD5.90656C0B3864804B090434EFC582404F] - 22/08/2013 - 13:39:47 ---A- . (.Microsoft Corporation - Hardware Policy Driver.) -- C:\Windows\System32\Drivers\hwpolicy.sys [24416]
O58 - SDL:[MD5.6D6F9E3BF0484967E52F7E846BFF1CA1] - 22/08/2013 - 12:37:49 ---A- . (.Microsoft Corporation - Microsoft VMBus Synthetic Keyboard Driver.) -- C:\Windows\System32\Drivers\hyperkbd.sys [13824]
O58 - SDL:[MD5.907C870F8C31F8DDD6F090857B46AB25] - 22/08/2013 - 12:39:20 ---A- . (.Microsoft Corporation - Microsoft VMBus Video Device Miniport Driver.) -- C:\Windows\System32\Drivers\HyperVideo.sys [22016]
O58 - SDL:[MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\Drivers\i8042prt.sys [108544]
O58 - SDL:[MD5.5D90E32E36CE5D4C535D17CE08AEAF05] - 30/07/2013 - 19:47:35 ---A- . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_GPIO.sys [24568]
O58 - SDL:[MD5.DD05E7E80F52ADE9AEB292819920F32C] - 25/07/2013 - 20:05:39 ---A- . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\Windows\System32\Drivers\iaLPSSi_I2C.sys [99320]
O58 - SDL:[MD5.C02FC4C6C411C85F209EBD0EBBF8CAE9] - 28/09/2012 - 19:37:04 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStorA.sys [650808]
O58 - SDL:[MD5.08BFE413B0B4AA8DFA4B5684CE06D3DC] - 10/08/2013 - 01:39:30 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver (inbox) - x64.) -- C:\Windows\System32\Drivers\iaStorAV.sys [651248]
O58 - SDL:[MD5.A2200C3033FA4EF249FC096A7A7D02A2] - 22/08/2013 - 13:43:45 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [412000]
O58 - SDL:[MD5.4F6363C26B4A3DDBC9FAFCBA68602B01] - 21/12/2013 - 00:02:44 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys [4216320]
O58 - SDL:[MD5.F5495B38BFB9149925F54F65AB40EFBF] - 20/06/2012 - 07:40:52 ---A- . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\Windows\System32\Drivers\IntcDAud.sys [342528]
O58 - SDL:[MD5.4011430BC9DA46ADFAE9915EFEC312FB] - 15/12/2013 - 00:34:54 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\intelaud.sys [39320]
O58 - SDL:[MD5.4E448FCFFD00E8D657CD9E48D3E47157] - 22/08/2013 - 13:43:44 ---A- . (.Microsoft Corporation - Intel PCI IDE Driver.) -- C:\Windows\System32\Drivers\intelide.sys [18272]
O58 - SDL:[MD5.7AA01AB1C110916825E6E1389F1B9AF2] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Intel Power Engine Plugin.) -- C:\Windows\System32\Drivers\intelpep.sys [39744]
O58 - SDL:[MD5.47E74A8E53C7C24DCE38311E1451C1D9] - 22/08/2013 - 09:46:35 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\intelppm.sys [98816]
O58 - SDL:[MD5.9DB76D7F9E4E53EFE5DD8C53DE837514] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - IP FILTER DRIVER.) -- C:\Windows\System32\Drivers\ipfltdrv.sys [84992]
O58 - SDL:[MD5.9C096BF5E10CA8BFA56F32522A89FAF1] - 24/07/2014 - 12:46:02 ---A- . (.Microsoft Corporation - PILOT IPMI WMI.) -- C:\Windows\System32\Drivers\IPMIDrv.sys [79872]
O58 - SDL:[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - 27/11/2013 - 13:02:29 ---A- . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys [142848]
O58 - SDL:[MD5.D826F4874A372FAE2F42478E0975EA02] - 22/08/2013 - 12:37:35 ---A- . (.Microsoft Corporation - IRDA Protocol Driver.) -- C:\Windows\System32\Drivers\irda.sys [118784]
O58 - SDL:[MD5.AE44C526AB5F8A487D941CEB57B10C97] - 22/08/2013 - 12:38:30 ---A- . (.Microsoft Corporation - Infra-Red Bus Enumerator.) -- C:\Windows\System32\Drivers\irenum.sys [17920]
O58 - SDL:[MD5.8AFEEA3955AA43616A60F133B1D25F21] - 22/08/2013 - 13:43:45 ---A- . (.Microsoft Corporation - Pilote de bus PNP ISA.) -- C:\Windows\System32\Drivers\isapnp.sys [21856]
O58 - SDL:[MD5.84E24744627E1547B02699D1DAE4BF0E] - 02/10/2012 - 09:58:14 ---A- . (.Ralink Corporation - Bluetooth Filter Driver.) -- C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48608]
O58 - SDL:[MD5.EE03564B7FAFE2E44EDA33D52E83B4A3] - 15/12/2013 - 00:34:54 ---A- . (.Intel Corporation - Intel® WiDi Solution.) -- C:\Windows\System32\Drivers\iwdbus.sys [27032]
O58 - SDL:[MD5.5917AFE4A3F695A54B99C1849C8207FE] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de la classe Clavier.) -- C:\Windows\System32\Drivers\kbdclass.sys [59712]
O58 - SDL:[MD5.8CD840A062F6BDF41DDE3ACB96164B72] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de filtre clavier HID.) -- C:\Windows\System32\Drivers\kbdhid.sys [32256]
O58 - SDL:[MD5.813871C7D402A05F2E3A7075F9584A05] - 22/08/2013 - 12:38:26 ---A- . (.Microsoft Corporation - Microsoft Kernel Debugger Network Miniport.) -- C:\Windows\System32\Drivers\kdnic.sys [19456]
O58 - SDL:[MD5.1DD05F4857C2188744B9E864658949DD] - 04/07/2014 - 13:59:02 ---A- . (.Microsoft Corporation - Kernel CSA Library.) -- C:\Windows\System32\Drivers\ks.sys [295424]
O58 - SDL:[MD5.4E829B18D5BAEC29893792A3C671A847] - 28/12/2014 - 18:04:38 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface.) -- C:\Windows\System32\Drivers\ksecdd.sys [100672]
O58 - SDL:[MD5.46711F40D0F9E63F786ED23F9BD5215E] - 28/06/2015 - 06:07:11 ---A- . (.Microsoft Corporation - Kernel Security Support Provider Interface Packages.) -- C:\Windows\System32\Drivers\ksecpkg.sys [178008]
O58 - SDL:[MD5.11AFB527AA370B1DAFD5C36F35F6D45F] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Kernel Streaming WOW Thunk Service.) -- C:\Windows\System32\Drivers\ksthunk.sys [21248]
O58 - SDL:[MD5.C09010B3680860131631F53E8FE7BAD8] - 22/08/2013 - 12:36:18 ---A- . (.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) -- C:\Windows\System32\Drivers\lltdio.sys [59392]
O58 - SDL:[MD5.C755AE4635457AA2A11F79C0DF857ABC] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [109408]
O58 - SDL:[MD5.ADAC09CBE7A2040B7F68B5E5C9A75141] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [93536]
O58 - SDL:[MD5.04D1274BB9BBCCF12BD12374002AA191] - 22/08/2013 - 13:43:44 ---A- . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas3.sys [81760]
O58 - SDL:[MD5.327469EEF3833D0C584B7E88A76AEC0C] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sss.sys [82784]
O58 - SDL:[MD5.DDEE191AB32DFC22C6465002ECDF5EE4] - 22/02/2014 - 13:14:25 ---A- . (.Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA.) -- C:\Windows\System32\Drivers\luafv.sys [124416]
O58 - SDL:[MD5.C895E3FAE8628EAA4ADE0F52862CA575] - 22/08/2013 - 12:39:38 ---A- . (.Microsoft Corporation - Medium changer class driver.) -- C:\Windows\System32\Drivers\mcd.sys [22016]
O58 - SDL:[MD5.EB5C03A070F30D64A6DF80E53B22F53F] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\Drivers\megasas.sys [56672]
O58 - SDL:[MD5.F6F13533196DE7A582D422B0241E4363] - 22/08/2013 - 13:43:45 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\megasr.sys [575840]
O58 - SDL:[MD5.8B38C44F69259987C95135C9627E2378] - 22/08/2013 - 12:40:15 ---A- . (.Microsoft Corporation - Pilote de périphérique modem.) -- C:\Windows\System32\Drivers\modem.sys [40960]
O58 - SDL:[MD5.601589000CC90F0DF8DA2CC254A3CCC9] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - Monitor Driver.) -- C:\Windows\System32\Drivers\monitor.sys [30208]
O58 - SDL:[MD5.08374E4E5B8914DE6067CBA99F61E930] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de la classe Souris.) -- C:\Windows\System32\Drivers\mouclass.sys [51008]
O58 - SDL:[MD5.5FCBAB60598AE119E02B4C27DE6B99EA] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de filtre souris HID.) -- C:\Windows\System32\Drivers\mouhid.sys [30208]
O58 - SDL:[MD5.D1D82F007A079A4D623DBD1F36EF30A1] - 28/12/2014 - 18:04:38 ---A- . (.Microsoft Corporation - Gestionnaire des points de montage.) -- C:\Windows\System32\Drivers\mountmgr.sys [102208]
O58 - SDL:[MD5.6FC047578785B0435F4E2660946D1ADC] - 28/12/2014 - 18:05:55 ---A- . (.Microsoft Corporation - Microsoft Protection Service Driver.) -- C:\Windows\System32\Drivers\mpsdrv.sys [74240]
O58 - SDL:[MD5.DB32958F0E704EFBF7F15161A569E39F] - 19/12/2014 - 07:26:49 ---A- . (.Microsoft Corporation - Windows NT WebDav Minirdr.) -- C:\Windows\System32\Drivers\mrxdav.sys [140800]
O58 - SDL:[MD5.6FBDF2B1B025A8E6E069234362FFFFB7] - 27/06/2015 - 04:12:25 ---A- . (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\Windows\System32\Drivers\mrxsmb.sys [401408]
O58 - SDL:[MD5.BCBD64220AD85C26823453FF1DC3EFBD] - 27/06/2015 - 04:12:07 ---A- . (.Microsoft Corporation - Longhorn SMB Downlevel SubRdr.) -- C:\Windows\System32\Drivers\mrxsmb10.sys [284672]
O58 - SDL:[MD5.57C2473D501331211D6885FD59F3E44B] - 27/06/2015 - 04:13:13 ---A- . (.Microsoft Corporation - Longhorn SMB 2.0 Redirector.) -- C:\Windows\System32\Drivers\mrxsmb20.sys [202240]
O58 - SDL:[MD5.D13329FBF8345B28AB30F44CC247DC08] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Mailslot driver.) -- C:\Windows\System32\Drivers\msfs.sys [30208]
O58 - SDL:[MD5.8DF1254093B5C354CE725EB6B9B0DE19] - 15/08/2014 - 01:36:55 ---A- . (.Microsoft Corporation - GPIO Class Extension Driver.) -- C:\Windows\System32\Drivers\msgpioclx.sys [146752]
O58 - SDL:[MD5.C6B474E46F9E543B875981ED3FFE6ADD] - 22/08/2013 - 13:43:48 ---A- . (.Microsoft Corporation - GPIO Button Driver.) -- C:\Windows\System32\Drivers\msgpiowin32.sys [41824]
O58 - SDL:[MD5.65C92EB9D08DB5C69F28C7FFD4E84E31] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pass-through HID to KMDF Filter Driver.) -- C:\Windows\System32\Drivers\mshidkmdf.sys [8192]
O58 - SDL:[MD5.52299F086AC2DAFD100DD5DC4A8614BA] - 22/08/2013 - 12:39:06 ---A- . (.Microsoft Corporation - Pilote direct pour interface HID-UMDF.) -- C:\Windows\System32\Drivers\mshidumdf.sys [9728]
O58 - SDL:[MD5.36D92AF3343C3A3E57FEF11C449AEA4C] - 22/08/2013 - 13:43:49 ---A- . (.Microsoft Corporation - ISA Driver.) -- C:\Windows\System32\Drivers\msisadrv.sys [17248]
O58 - SDL:[MD5.D90AB68D0FAC9F357F663670FDBB511E] - 06/04/2014 - 17:34:08 ---A- . (.Microsoft Corporation - Microsoft iSCSI Initiator Driver.) -- C:\Windows\System32\Drivers\msiscsi.sys [275800]
O58 - SDL:[MD5.A9BBBD2BAE6142253B9195E949AC2E8D] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS KS Server.) -- C:\Windows\System32\Drivers\mskssrv.sys [10624]
O58 - SDL:[MD5.51B3AC0560848CD6D65AC2033E293113] - 28/12/2014 - 18:05:55 ---A- . (.Microsoft Corporation - Pilote de protocole LLDP (Link Layer Discovery Protocol) Micros.) -- C:\Windows\System32\Drivers\mslldp.sys [66560]
O58 - SDL:[MD5.7B2128EB875DCBC006E6A913211006D6] - 22/08/2013 - 12:39:30 ---A- . (.Microsoft Corporation - MS Proxy Clock.) -- C:\Windows\System32\Drivers\mspclock.sys [7040]
O58 - SDL:[MD5.1E88171579B218115C7A772F8DE04BD8] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - MS Proxy Quality Manager.) -- C:\Windows\System32\Drivers\mspqm.sys [6784]
O58 - SDL:[MD5.BBE2A455053E63BECBF42C2F9B21FAE0] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - Kernel Remote Procedure Call Provider.) -- C:\Windows\System32\Drivers\msrpc.sys [366432]
O58 - SDL:[MD5.8D6B7D515C5CBCDB75B928A0B73C3C5E] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - System Management BIOS Driver.) -- C:\Windows\System32\Drivers\mssmbios.sys [37728]
O58 - SDL:[MD5.115019AE01E0EB9C048530D2928AB4A2] - 22/08/2013 - 12:38:38 ---A- . (.Microsoft Corporation - WDM Tee/Communication Transform Filter.) -- C:\Windows\System32\Drivers\mstee.sys [7936]
O58 - SDL:[MD5.96D604A35070360F0DD4A7A8AF410B5E] - 22/08/2013 - 12:37:36 ---A- . (.Microsoft Corporation - Pilote HID multipoint Microsoft.) -- C:\Windows\System32\Drivers\MTConfig.sys [13312]
O58 - SDL:[MD5.619CA29326B82372621DB2C0964D8365] - 22/08/2013 - 13:49:29 ---A- . (.Microsoft Corporation - Multiple UNC Provider Driver.) -- C:\Windows\System32\Drivers\mup.sys [78688]
O58 - SDL:[MD5.B8C35C94DCB2DFEAF03BB42131F2F77F] - 22/08/2013 - 13:43:49 ---A- . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\Windows\System32\Drivers\mvumis.sys [63840]
O58 - SDL:[MD5.6D3A2565E01B3E4B0F1BEDB0D4B00B3F] - 05/02/2015 - 21:24:44 ---A- . (.Microsoft Corporation - NDIS (Network Driver Interface Specification).) -- C:\Windows\System32\Drivers\ndis.sys [1113920]
O58 - SDL:[MD5.8CECC8DA55F3274181FD1EA28AD76664] - 28/12/2014 - 18:05:58 ---A- . (.Microsoft Corporation - Microsoft NDIS Packet Capture Filter Driver.) -- C:\Windows\System32\Drivers\ndiscap.sys [43008]
O58 - SDL:[MD5.269882812E9A68FFF1AFE1283D428322] - 28/12/2014 - 18:05:56 ---A- . (.Microsoft Corporation - Microsoft Network Adapter Multiplexor.) -- C:\Windows\System32\Drivers\NdisImPlatform.sys [126464]
O58 - SDL:[MD5.DC1D9F692C2AD84C214584C28501C1F7] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) -- C:\Windows\System32\Drivers\ndistapi.sys [24576]
O58 - SDL:[MD5.B832B35055BA2B7B4181861FF94D8E59] - 22/08/2013 - 12:37:34 ---A- . (.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) -- C:\Windows\System32\Drivers\ndisuio.sys [60416]
O58 - SDL:[MD5.1F58E48EF75F34C35D8E93A0DC535CFE] - 22/08/2013 - 12:36:25 ---A- . (.Microsoft Corporation - Énumérateur de cartes réseau virtuelles Microsoft.) -- C:\Windows\System32\Drivers\NdisVirtualBus.sys [16384]
O58 - SDL:[MD5.DEC29080202D4F9F17F55E18BCFCC41A] - 22/08/2013 - 12:35:56 ---A- . (.Microsoft Corporation - MS PPP Framing Driver (Strong Encryption).) -- C:\Windows\System32\Drivers\ndiswan.sys [220672]
O58 - SDL:[MD5.0BBE2FA30BAD58C9ADC01E4F84A3D2A1] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - NDIS Proxy.) -- C:\Windows\System32\Drivers\ndproxy.sys [72192]
O58 - SDL:[MD5.3083926D1CC5B56EA0786527B557DD1B] - 28/12/2014 - 18:05:54 ---A- . (.Microsoft Corporation - Windows Network Data Usage Monitoring Driver.) -- C:\Windows\System32\Drivers\Ndu.sys [103424]
O58 - SDL:[MD5.42FF4975D032CAE558AE4BB8448F6E5A] - 28/12/2014 - 18:05:58 ---A- . (.Microsoft Corporation - NetBIOS interface driver.) -- C:\Windows\System32\Drivers\netbios.sys [48128]
O58 - SDL:[MD5.0217532E19A748F0E5D569307363D5FD] - 22/08/2013 - 12:37:02 ---A- . (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\Drivers\netbt.sys [282624]
O58 - SDL:[MD5.7EC9376D245D734791AD46738712E7D8] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Network I/O Subsystem.) -- C:\Windows\System32\Drivers\netio.sys [473408]
O58 - SDL:[MD5.76E90502D9001077DA92F81126D06C9B] - 02/12/2013 - 16:32:18 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 Wireless Adapter Driver.) -- C:\Windows\System32\Drivers\netr28x.sys [2483376]
O58 - SDL:[MD5.D4DCE03870314D3354F3501F9DDD4123] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Virtual NDIS6.3 Miniport.) -- C:\Windows\System32\Drivers\netvsc63.sys [87040]
O58 - SDL:[MD5.8F44A2F57C9F1A19AC9C6288C10FB351] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NPFS Driver.) -- C:\Windows\System32\Drivers\npfs.sys [58880]
O58 - SDL:[MD5.CBDB4F0871C88DF930FC0E8588CA67FC] - 22/08/2013 - 12:38:22 ---A- . (.Microsoft Corporation - Named pipe service triggers.) -- C:\Windows\System32\Drivers\npsvctrig.sys [23040]
O58 - SDL:[MD5.0E046FF5823B95326D10CF1B4AF23541] - 28/12/2014 - 18:04:37 ---A- . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys [39424]
O58 - SDL:[MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - 28/12/2014 - 18:04:38 ---A- . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [2025792]
O58 - SDL:[MD5.EF1B290FC9F0E47CC0B537292BEE5904] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - NULL Driver.) -- C:\Windows\System32\Drivers\null.sys [5632]
O58 - SDL:[MD5.E71E299FF15390E585BACF2C18F55078] - 27/10/2013 - 09:04:02 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 331.65.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [12572960]
O58 - SDL:[MD5.FCC3A3F875C8CF258F71BE2F2CAA2355] - 27/10/2013 - 09:04:04 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 331.65.) -- C:\Windows\System32\Drivers\nvpciflt.sys [32544]
O58 - SDL:[MD5.BC6B5942AFF25EBAF62DE43C3807EDF8] - 22/08/2013 - 13:43:31 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [150368]
O58 - SDL:[MD5.1F43ABFFAC3D6CA356851D517392966E] - 22/08/2013 - 13:43:32 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [168288]
O58 - SDL:[MD5.6934A936A7369DFE37B7DBA93F5E5E49] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - Filtre AGP NForce NT.) -- C:\Windows\System32\Drivers\NV_AGP.SYS [124768]
O58 - SDL:[MD5.008F7CED69FD5B30CBDE1E03C6F36A27] - 28/12/2014 - 18:06:04 ---A- . (.Microsoft Corporation - Pilote de miniport WiFi natif.) -- C:\Windows\System32\Drivers\nwifi.sys [445440]
O58 - SDL:[MD5.FC0141B4A5AD6D637D883C1A89FC45C5] - 28/12/2014 - 18:05:57 ---A- . (.Microsoft Corporation - Planificateur de paquets QoS.) -- C:\Windows\System32\Drivers\pacer.sys [151040]
O58 - SDL:[MD5.764B1121867B2D9B31C491668AC72B2B] - 22/08/2013 - 12:40:02 ---A- . (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\Drivers\parport.sys [94208]
O58 - SDL:[MD5.BAFF6122CFC9F95CA175AD8C348179A4] - 28/12/2014 - 18:04:38 ---A- . (.Microsoft Corporation - Partition Management Driver.) -- C:\Windows\System32\Drivers\partmgr.sys [88896]
O58 - SDL:[MD5.91ED124E261EA8FAA1C0FFDF2A71B0C4] - 24/07/2014 - 16:28:35 ---A- . (.Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT.) -- C:\Windows\System32\Drivers\pci.sys [280384]
O58 - SDL:[MD5.346E38FCC6859A727DD28AFAD1F0AFF4] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\pciide.sys [14688]
O58 - SDL:[MD5.5D4D6146346B82EB3CA4EE0C5573193C] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - PCI IDE Bus Driver Extension.) -- C:\Windows\System32\Drivers\pciidex.sys [48992]
O58 - SDL:[MD5.4D3BDCC1C7B40C9D7B6AD990E6DEC397] - 22/08/2013 - 13:49:30 ---A- . (.Microsoft Corporation - Pilote de bus PCMCIA.) -- C:\Windows\System32\Drivers\pcmcia.sys [114528]
O58 - SDL:[MD5.BF28771D1436C88BE1D297D3098B0F7D] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Performance Counters for Windows Driver.) -- C:\Windows\System32\Drivers\pcw.sys [50016]
O58 - SDL:[MD5.ED54A75050211DC77F9B98C41E026858] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Power Dependency Coordinator Driver.) -- C:\Windows\System32\Drivers\pdc.sys [86336]
O58 - SDL:[MD5.0ECEE590F2E2EF969FB74A6FC583A1E6] - 22/02/2014 - 13:09:37 ---A- . (.Microsoft Corporation - Protected Environment Authentication and Authorization Export D.) -- C:\Windows\System32\Drivers\PEAuth.sys [663040]
O58 - SDL:[MD5.C76097CA941FA7CAFEDB1E557969025C] - 28/12/2014 - 18:04:34 ---A- . (.Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices).) -- C:\Windows\System32\Drivers\portcls.sys [272384]
O58 - SDL:[MD5.ECD373F9571C745894367CC2635EA44F] - 22/08/2013 - 09:46:34 ---A- . (.Microsoft Corporation - Processor Device Driver.) -- C:\Windows\System32\Drivers\processr.sys [92160]
O58 - SDL:[MD5.83868EB2924E6BC21A54337C65D614D1] - 28/12/2014 - 18:05:56 ---A- . (.Microsoft Corporation - Pilote du support de Microsoft Quality Windows Audio Video Expe.) -- C:\Windows\System32\Drivers\qwavedrv.sys [47104]
O58 - SDL:[MD5.B337B1F1E82A83E20A1743E008E25C0F] - 28/12/2014 - 18:06:02 ---A- . (.Microsoft Corporation - RAS Automatic Connection Driver.) -- C:\Windows\System32\Drivers\rasacd.sys [17408]
O58 - SDL:[MD5.1BD3022FD6E450B00DE560265638FD2A] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\rasl2tp.sys [112640]
O58 - SDL:[MD5.5247F308C4103CDC4FE12AE1D235800A] - 22/08/2013 - 12:36:37 ---A- . (.Microsoft Corporation - RAS PPPoE mini-port/call-manager driver.) -- C:\Windows\System32\Drivers\raspppoe.sys [84992]
O58 - SDL:[MD5.E075CC071022BD4E9BE7C024717C0E0A] - 22/08/2013 - 12:35:51 ---A- . (.Microsoft Corporation - Peer-to-Peer Tunneling Protocol.) -- C:\Windows\System32\Drivers\raspptp.sys [107520]
O58 - SDL:[MD5.41F631007A158FEBB67F0E2AD1601BBA] - 28/12/2014 - 18:05:55 ---A- . (.Microsoft Corporation - RAS SSTP Miniport Call Manager.) -- C:\Windows\System32\Drivers\rassstp.sys [93696]
O58 - SDL:[MD5.A1A5E79C0D1352AFDC08328A623DA051] - 17/12/2013 - 08:21:26 ---A- . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur red.) -- C:\Windows\System32\Drivers\rdbss.sys [408576]
O58 - SDL:[MD5.6B21EBF892CD8CACB71669B35AB5DE32] - 22/08/2013 - 12:38:52 ---A- . (.Microsoft Corporation - Microsoft RDP Bus Device driver.) -- C:\Windows\System32\Drivers\rdpbus.sys [22528]
O58 - SDL:[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - 14/11/2013 - 08:16:40 ---A- . (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) -- C:\Windows\System32\Drivers\rdpdr.sys [195584]
O58 - SDL:[MD5.BC8A79C625568DDB7DCA49D0C2741A64] - 28/12/2014 - 18:07:41 ---A- . (.Microsoft Corporation - Microsoft RDP Video Miniport driver.) -- C:\Windows\System32\Drivers\rdpvideominiport.sys [27456]
O58 - SDL:[MD5.A26AEC49F318FEE141DDDB2C5F99B3E6] - 22/02/2014 - 17:00:25 ---A- . (.Microsoft Corporation - ReadyBoost Driver.) -- C:\Windows\System32\Drivers\rdyboost.sys [249688]
O58 - SDL:[MD5.615DFD97DEA56CE1C3A52185A3038FF8] - 28/12/2014 - 18:05:49 ---A- . (.Microsoft Corporation - Pilote du système de fichiers ReFS NT.) -- C:\Windows\System32\Drivers\refs.sys [921920]
O58 - SDL:[MD5.DC66AE45816614D2999DCD3834DCCC4E] - 30/01/2015 - 04:00:56 ---A- . (.Microsoft Corporation - Bluetooth RFCOMM Driver.) -- C:\Windows\System32\Drivers\rfcomm.sys [167424]
O58 - SDL:[MD5.D7A41959BB3A8510F1BAC36F5CEC1874] - 28/12/2014 - 18:06:01 ---A- . (.Microsoft Corporation - Reliable Multicast Transport.) -- C:\Windows\System32\Drivers\rmcast.sys [144384]
O58 - SDL:[MD5.4A24C61ED665DB4D13B93FACA06350CA] - 22/08/2013 - 12:38:44 ---A- . (.Microsoft Corporation - Remote NDIS Miniport.) -- C:\Windows\System32\Drivers\RNDISMP.sys [32256]
O58 - SDL:[MD5.9746BA79DE0CA5EB5104406A9ED62D01] - 28/12/2014 - 18:05:56 ---A- . (.Microsoft Corporation - Legacy Non-Pnp Modem Device Driver.) -- C:\Windows\System32\Drivers\rootmdm.sys [11776]
O58 - SDL:[MD5.2D05A5508F4685412F2B89E8C2189ABC] - 22/08/2013 - 12:36:34 ---A- . (.Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6.) -- C:\Windows\System32\Drivers\rspndr.sys [80384]
O58 - SDL:[MD5.0283ADA7E6B1F2E495A0EA0EF2C1F9A2] - 22/10/2014 - 14:29:25 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt630x64.sys [873688]
O58 - SDL:[MD5.3B7A94926B52D171C5B515EDECC2118E] - 02/12/2013 - 09:42:14 ---A- . (.Ralink Technology, Corp. - Ralink Bluetooth Adapter.) -- C:\Windows\System32\Drivers\rtbth.sys [1204424]
O58 - SDL:[MD5.8EAAC43684B9DE3F1532767EEB3DCA97] - 09/08/2012 - 04:17:50 ---A- . (.Realtek Semiconductor Corp. - Realtek Pcie CardReader Driver for 2K/XP/Vista/Win7/Win8.) -- C:\Windows\System32\Drivers\RtsP2Stor.sys [273040]
O58 - SDL:[MD5.C624A1B32211C3166EDB3F4AB02A30B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - SBP-2 Protocol Driver.) -- C:\Windows\System32\Drivers\sbp2port.sys [107872]
O58 - SDL:[MD5.13BEA6C882D4D877A5A85CA149C86BC1] - 28/12/2014 - 18:05:37 ---A- . (.Microsoft Corporation - Pilote de filtre de lecteur de carte à puce Microsoft.) -- C:\Windows\System32\Drivers\scfilter.sys [40960]
O58 - SDL:[MD5.1C4EB3ACEA98CAD8FC7CF50F629FF0C6] - 22/08/2013 - 13:43:32 ---A- . (.Microsoft Corporation - SCSI Port Driver.) -- C:\Windows\System32\Drivers\scsiport.sys [170848]
O58 - SDL:[MD5.C54B6B2170BF628FD42F799A66956D75] - 11/05/2015 - 19:02:58 ---A- . (.Microsoft Corporation - Pilote du bus numérique sécurisé (SD).) -- C:\Windows\System32\Drivers\sdbus.sys [239424]
O58 - SDL:[MD5.0B1E929D11A8E358106955603FAC65E8] - 22/02/2014 - 16:49:49 ---A- . (.Microsoft Corporation - Pilote de classe de stockage SD.) -- C:\Windows\System32\Drivers\sdstor.sys [79192]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 22/08/2013 - 16:35:09 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]
O58 - SDL:[MD5.DB2FF24CE0BDD15FE75870AFE312BA89] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - Serial Class Extension.) -- C:\Windows\System32\Drivers\SerCx.sys [69472]
O58 - SDL:[MD5.0044B31F93946D5D41982314381FE431] - 07/01/2014 - 20:58:10 ---A- . (.Microsoft Corporation - Serial Class Extension V2.) -- C:\Windows\System32\Drivers\SerCx2.sys [146776]
O58 - SDL:[MD5.3CD600C089C1251BEEB4CD4CD5164F9E] - 22/08/2013 - 12:40:17 ---A- . (.Microsoft Corporation - Serial Port Enumerator.) -- C:\Windows\System32\Drivers\serenum.sys [23040]
O58 - SDL:[MD5.D864381BC9C725FAB01D94C060660166] - 22/08/2013 - 12:40:08 ---A- . (.Microsoft Corporation - Pilote de périphérique série.) -- C:\Windows\System32\Drivers\serial.sys [83456]
O58 - SDL:[MD5.148195AE95D9BC7375A08846439FDAC1] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys [26112]
O58 - SDL:[MD5.472B7A5AC181C050888DB454663DD764] - 22/08/2013 - 12:40:00 ---A- . (.Microsoft Corporation - SCSI Floppy Driver.) -- C:\Windows\System32\Drivers\sfloppy.sys [17408]
O58 - SDL:[MD5.2F518D13DD6F3053837FE606F1A2EA1F] - 22/08/2013 - 13:43:31 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [44896]
O58 - SDL:[MD5.1AC9A200A9C49C4508F04AAFFCA34A3F] - 22/08/2013 - 13:43:32 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [81760]
O58 - SDL:[MD5.0055CEA831410FDC6466285E1F7CFDC2] - 14/09/2012 - 23:09:32 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_AMDASF.sys [41272]
O58 - SDL:[MD5.295DEA82E1247F3D705700C990F28452] - 14/09/2012 - 23:09:32 ---A- . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\Windows\System32\Drivers\Smb_driver_Intel.sys [43832]
O58 - SDL:[MD5.8C0773703184485D57975B6C1ED48730] - 22/08/2013 - 12:40:16 ---A- . (.Microsoft Corporation - Smart Card Driver Library.) -- C:\Windows\System32\Drivers\smclib.sys [19968]
O58 - SDL:[MD5.D24B1945ED1F9C96DA786DBBF1E983CE] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Storage Spaces Driver.) -- C:\Windows\System32\Drivers\spaceport.sys [415040]
O58 - SDL:[MD5.F337BE11071818FC3F5DC2940B6BDE34] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - SPB Class Extension.) -- C:\Windows\System32\Drivers\SpbCx.sys [72032]
O58 - SDL:[MD5.6416E79A58A8FCC33A447A4DDDD3BF04] - 24/07/2014 - 12:43:29 ---A- . (.Microsoft Corporation - Server driver.) -- C:\Windows\System32\Drivers\srv.sys [412160]
O58 - SDL:[MD5.00D8AC8E3053290BDE6EA2FB6810D2FC] - 28/12/2014 - 18:04:42 ---A- . (.Microsoft Corporation - Pilote de serveur SMB 2.0.) -- C:\Windows\System32\Drivers\srv2.sys [678400]
O58 - SDL:[MD5.D047CD668E6277FD80F0C613946F034C] - 27/06/2014 - 07:22:23 ---A- . (.Microsoft Corporation - Server Network driver.) -- C:\Windows\System32\Drivers\srvnet.sys [246272]
O58 - SDL:[MD5.73BDD44A6088916964945886F9025409] - 22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]
O58 - SDL:[MD5.5252D7BC56E5E0ED715AEA8FE173A455] - 22/01/2014 - 07:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]
O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys [31072]
O58 - SDL:[MD5.0ED2E318ABB68C1A35A8B8038BDB4C90] - 22/08/2013 - 13:43:31 ---A- . (.Microsoft Corporation - MS AHCI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\storahci.sys [107872]
O58 - SDL:[MD5.6B06E2D11E604BE2B1A406C4CB3B90DE] - 14/11/2013 - 08:37:14 ---A- . (.Microsoft Corporation - Microsoft NVM Express Storport Miniport Driver.) -- C:\Windows\System32\Drivers\stornvme.sys [57176]
O58 - SDL:[MD5.13EFD41E351F31E087283CF66C29A25E] - 28/12/2014 - 18:05:29 ---A- . (.Microsoft Corporation - Microsoft Storage Port Driver.) -- C:\Windows\System32\Drivers\storport.sys [373568]
O58 - SDL:[MD5.548759755BC73DAD663250239D7E0B9F] - 22/08/2013 - 13:36:48 ---A- . (.Microsoft Corporation - Storage VSC Driver.) -- C:\Windows\System32\Drivers\storvsc.sys [45888]
O58 - SDL:[MD5.FF184501F8F556147BBBDE571315C137] - 22/08/2013 - 12:39:26 ---A- . (.Microsoft Corporation - WDM CODEC Class Device Driver 2.0.) -- C:\Windows\System32\Drivers\stream.sys [67584]
O58 - SDL:[MD5.DDB926338200FC230FC9AAE803D053C2] - 14/08/2012 - 10:48:50 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [542208]
O58 - SDL:[MD5.65454187E0F8B6C0DCECB0287D06EC43] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Plug and Play Software Device Enumerator.) -- C:\Windows\System32\Drivers\swenum.sys [14144]
O58 - SDL:[MD5.B6A2B49028C45A2B5322DD638FE7BE5F] - 14/09/2012 - 23:09:34 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [457528]
O58 - SDL:[MD5.B13A57CE2F17B8C789E895E15F115DB0] - 22/08/2013 - 12:39:50 ---A- . (.Microsoft Corporation - SCSI Tape Class Driver.) -- C:\Windows\System32\Drivers\tape.sys [29696]
O58 - SDL:[MD5.A57A897E3F87B8E9F30A627C42779A76] - 28/12/2014 - 18:05:20 ---A- . (.Microsoft Corporation - Export driver for kernel mode TPM API.) -- C:\Windows\System32\Drivers\tbs.sys [21824]
O58 - SDL:[MD5.746DDF7D59AB8D721C88D48434597E8D] - 25/07/2015 - 10:29:23 ---A- . (.Microsoft Corporation - Pilote TCP/IP.) -- C:\Windows\System32\Drivers\tcpip.sys [2476376]
O58 - SDL:[MD5.41CF802064F72E55F50CA0A221FD36D4] - 06/03/2014 - 10:19:59 ---A- . (.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) -- C:\Windows\System32\Drivers\tcpipreg.sys [49152]
O58 - SDL:[MD5.3C7361E0A5A6966DB957B94ECF924A9E] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Wrapper.) -- C:\Windows\System32\Drivers\tdi.sys [30208]
O58 - SDL:[MD5.FFF28F9F6823EB1756C60F1649560BBF] - 22/08/2013 - 14:25:35 ---A- . (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\Drivers\tdx.sys [107520]
O58 - SDL:[MD5.EB1D78140D6634C32A46AB1006105EDC] - 04/05/2014 - 18:31:21 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\TeeDriverx64.sys [100312]
O58 - SDL:[MD5.232D185D2337F141311D0CF1983E1431] - 14/11/2013 - 08:16:36 ---A- . (.Microsoft Corporation - Terminal Server Input Driver.) -- C:\Windows\System32\Drivers\terminpt.sys [37216]
O58 - SDL:[MD5.E8D2721972B8A2C3A4F6DE5C43D163E5] - 22/08/2013 - 13:39:14 ---A- . (.Microsoft Corporation - Kernel Transaction Manager Driver.) -- C:\Windows\System32\Drivers\tm.sys [121184]
O58 - SDL:[MD5.82F909359600D3603FE852DB7F135626] - 22/08/2013 - 13:49:33 ---A- . (.Microsoft Corporation - Pilote de périphérique TPM.) -- C:\Windows\System32\Drivers\tpm.sys [159584]
O58 - SDL:[MD5.BF8F54CA37E9C9D6582C31C5761F8C93] - 22/08/2013 - 12:37:28 ---A- . (.Microsoft Corporation - Pilote de filtre pour concentrateur USB du Bureau à distance.) -- C:\Windows\System32\Drivers\TsUsbFlt.sys [56320]
O58 - SDL:[MD5.20185BEB7512EDE4EFECDFA148AC9F99] - 28/12/2014 - 18:04:37 ---A- . (.Microsoft Corporation - Remote Desktop Generic USB Driver.) -- C:\Windows\System32\Drivers\TsUsbGD.sys [29696]
O58 - SDL:[MD5.C8E0E78B5D284C2FF59BDFFDAF997242] - 22/08/2013 - 12:35:45 ---A- . (.Microsoft Corporation - Pilote d’interface de tunnel Microsoft.) -- C:\Windows\System32\Drivers\tunnel.sys [154112]
O58 - SDL:[MD5.F6EEAD052943B5A3104C1405BB856C54] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre MS AGPv3.5.) -- C:\Windows\System32\Drivers\UAGP35.SYS [64864]
O58 - SDL:[MD5.FE6067B1FD4E63650C667B33D080565B] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Microsoft Uasp Driver.) -- C:\Windows\System32\Drivers\uaspstor.sys [74080]
O58 - SDL:[MD5.807F8CF3E973305FC435C61CBBEE2A49] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - USB Controller Extension.) -- C:\Windows\System32\Drivers\UCX01000.SYS [189248]
O58 - SDL:[MD5.C61EAF8E1E4B2F62BA4FDF457440B2C6] - 11/05/2015 - 19:03:13 ---A- . (.Microsoft Corporation - UDF File System Driver.) -- C:\Windows\System32\Drivers\udfs.sys [316416]
O58 - SDL:[MD5.9578691F297E1B1F519970FE6D47CB21] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - UEFI Driver for NT.) -- C:\Windows\System32\Drivers\uefi.sys [26976]
O58 - SDL:[MD5.5EAB5117DDB24FC4D39E6FFFCF1837B9] - 22/08/2013 - 13:43:33 ---A- . (.Microsoft Corporation - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) -- C:\Windows\System32\Drivers\ULIAGPKX.SYS [65888]
O58 - SDL:[MD5.DA34C39A18E60E7C3FA0630566408034] - 22/08/2013 - 12:38:59 ---A- . (.Microsoft Corporation - User-Mode Bus Enumerator.) -- C:\Windows\System32\Drivers\umbus.sys [46080]
O58 - SDL:[MD5.AE8294875E5446E359B1E8035D40C05E] - 22/08/2013 - 12:38:58 ---A- . (.Microsoft Corporation - Generic pass-through driver.) -- C:\Windows\System32\Drivers\umpass.sys [11776]
O58 - SDL:[MD5.312BB35275EB15145F4B6D1FFCE56C50] - 18/06/2015 - 20:59:16 ---A- . (.Microsoft Corporation - Remote NDIS USB Driver.) -- C:\Windows\System32\Drivers\usb8023.sys [20992]
O58 - SDL:[MD5.5C3BE22E485B9BF11FCEFDC676C728D0] - 15/08/2014 - 22:35:00 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
O58 - SDL:[MD5.5D45329A96B1A417DC7F59FDEABC0DDE] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - Universal Serial Bus Camera Driver.) -- C:\Windows\System32\Drivers\USBCAMD2.sys [32512]
O58 - SDL:[MD5.FF78D053A05E5A394F4E3C1816CC65A8] - 24/07/2014 - 16:28:38 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [143680]
O58 - SDL:[MD5.0139248F6B95CF0D837B5B46A2722D40] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - USB Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\usbcir.sys [98304]
O58 - SDL:[MD5.D79920BE4E6683D3AB50F71457A4F6C6] - 31/05/2014 - 11:07:07 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [27480]
O58 - SDL:[MD5.48BA326A3DBA5B5BEB5F2777F4618696] - 31/05/2014 - 11:07:08 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [89944]
O58 - SDL:[MD5.FEF0BC107812B36849741C3211BA6B60] - 24/07/2014 - 16:28:38 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB par défaut.) -- C:\Windows\System32\Drivers\usbhub.sys [419648]
O58 - SDL:[MD5.95B0179BDA907252025DEEA183699FB3] - 11/05/2015 - 19:06:20 ---A- . (.Microsoft Corporation - Pilote de concentrateur USB3.) -- C:\Windows\System32\Drivers\USBHUB3.SYS [467776]
O58 - SDL:[MD5.3019097FB6C985EF24C058090FF3BDBD] - 22/08/2013 - 12:39:27 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [30208]
O58 - SDL:[MD5.FE0ADF5028EB8C1339B66B3AEDE3FEF9] - 31/05/2014 - 11:07:07 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [440664]
O58 - SDL:[MD5.4D655E3B684BE9B0F7FFD8A2935C348C] - 22/08/2013 - 12:36:33 ---A- . (.Microsoft Corporation - USB Printer driver.) -- C:\Windows\System32\Drivers\usbprint.sys [26112]
O58 - SDL:[MD5.3431FBFAC156EB7FEF9B936EC2A77AF6] - 22/08/2013 - 12:39:39 ---A- . (.Microsoft Corporation - Gestionnaire de stratégie de redirection USB Windows.) -- C:\Windows\System32\Drivers\usbrpm.sys [30720]
O58 - SDL:[MD5.0F030491BA4A27BD46F8B8ACEEE83F1A] - 28/12/2014 - 18:04:35 ---A- . (.Microsoft Corporation - USB Scanner Driver.) -- C:\Windows\System32\Drivers\usbscan.sys [44544]
O58 - SDL:[MD5.66732C13628BDB1AB0D6FD46027327C2] - 31/08/2014 - 01:17:06 ---A- . (.Microsoft Corporation - Pilote de classe de stockage de masse USB.) -- C:\Windows\System32\Drivers\USBSTOR.SYS [148800]
O58 - SDL:[MD5.064260B3A5868AC894A4943543BC7AB7] - 31/05/2014 - 07:30:09 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [37376]
O58 - SDL:[MD5.5C8F604F6DC74177CDD8372D7B1ADFF0] - 28/12/2014 - 18:04:34 ---A- . (.Microsoft Corporation - USB Video Class Driver.) -- C:\Windows\System32\Drivers\usbvideo.sys [212736]
O58 - SDL:[MD5.44603DA5A87FB491EF59C889EBBB4DDB] - 23/05/2015 - 13:36:29 ---A- . (.Microsoft Corporation - Pilote XHCI USB.) -- C:\Windows\System32\Drivers\USBXHCI.SYS [325464]
O58 - SDL:[MD5.FEB26E3B8345A7E8D62F945C4AE86562] - 22/08/2013 - 13:37:27 ---A- . (.Microsoft Corporation - Virtual Drive Root Enumerator.) -- C:\Windows\System32\Drivers\vdrvroot.sys [37728]
O58 - SDL:[MD5.A026EDEAA5EECAE0B08E2748B616D4BD] - 14/11/2013 - 08:31:05 ---A- . (.Microsoft Corporation - Driver Verifier Extension.) -- C:\Windows\System32\Drivers\VerifierExt.sys [175960]
O58 - SDL:[MD5.F6ECFD6128A16A4851CFE98D4E01B011] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - VHD Miniport Driver.) -- C:\Windows\System32\Drivers\vhdmp.sys [551232]
O58 - SDL:[MD5.06D38968028E9AB19DE9B618C7B6D199] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [19808]
O58 - SDL:[MD5.608BD5400EFD2307A5F8DDDC87775734] - 22/08/2013 - 12:39:31 ---A- . (.Microsoft Corporation - Video Port Driver.) -- C:\Windows\System32\Drivers\videoprt.sys [49152]
O58 - SDL:[MD5.A53E798C06D729CCF8459968B4372F6E] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Hyper-V VMBus KMCL.) -- C:\Windows\System32\Drivers\vmbkmcl.sys [89368]
O58 - SDL:[MD5.511AD3FF957A0127E6BD336FF6F89C38] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Microsoft Hyper-V Virtual Machine Bus Child Driver.) -- C:\Windows\System32\Drivers\vmbus.sys [97048]
O58 - SDL:[MD5.DA40BEA0A863CE768C940CA9723BF81F] - 22/08/2013 - 12:37:50 ---A- . (.Microsoft Corporation - Microsoft VMBus HID Miniport.) -- C:\Windows\System32\Drivers\VMBusHID.sys [21760]
O58 - SDL:[MD5.0BF5CAD281E25F1418E5B8875DC5ADD1] - 22/08/2013 - 12:38:23 ---A- . (.Microsoft Corporation - Virtual Machine Generation Counter.) -- C:\Windows\System32\Drivers\vmgencounter.sys [11264]
O58 - SDL:[MD5.1A063730F221B2746FF00457AE17E4F0] - 22/08/2013 - 12:38:37 ---A- . (.Microsoft Corporation - Microsoft S3 Emulated Device Cap Driver.) -- C:\Windows\System32\Drivers\vms3cap.sys [7168]
O58 - SDL:[MD5.8B9486B64E5FC17FB9CC04CA10B77A34] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Virtual Storage Filter Driver.) -- C:\Windows\System32\Drivers\vmstorfl.sys [49944]
O58 - SDL:[MD5.55D7D963DE85162F1C49721E502F9744] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys [73568]
O58 - SDL:[MD5.CCB9E901F7254BF96D28EB1B0E5329B7] - 22/08/2013 - 13:39:15 ---A- . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys [377696]
O58 - SDL:[MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - 19/06/2014 - 03:13:36 ---A- . (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\Drivers\volsnap.sys [310080]
O58 - SDL:[MD5.EF31713EE4C7CCFE4049F7E7F15645A2] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Virtual PCI Bus.) -- C:\Windows\System32\Drivers\vpci.sys [69952]
O58 - SDL:[MD5.4539F45F9F4C9757A86A56C949421E07] - 22/08/2013 - 13:43:34 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [168800]
O58 - SDL:[MD5.0849B7260F26FE05EA56DED0672E2F4B] - 22/08/2013 - 13:43:34 ---A- . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\Windows\System32\Drivers\VSTXRAID.SYS [305504]
O58 - SDL:[MD5.BE970C369E43B509C1EDA2B8FA7CECB0] - 22/08/2013 - 12:39:00 ---A- . (.Microsoft Corporation - Pilote de bus WiFi virtuel.) -- C:\Windows\System32\Drivers\vwifibus.sys [24576]
O58 - SDL:[MD5.35BF5C5F5E3C9902C98978C7640574DA] - 30/04/2014 - 07:43:46 ---A- . (.Microsoft Corporation - Virtual WiFi Filter Driver.) -- C:\Windows\System32\Drivers\vwififlt.sys [71680]
O58 - SDL:[MD5.65ED7B9CFEA893DF7748D5FF692690DE] - 30/04/2014 - 07:41:59 ---A- . (.Microsoft Corporation - Virtual WiFi Miniport Driver.) -- C:\Windows\System32\Drivers\vwifimp.sys [38912]
O58 - SDL:[MD5.0910AB9ED404C1434E2D0376C2AD5D8B] - 22/08/2013 - 12:39:15 ---A- . (.Microsoft Corporation - Wacom Serial Pen Tablet HID Driver.) -- C:\Windows\System32\Drivers\wacompen.sys [26752]
O58 - SDL:[MD5.B41F3E5780D97CFD44A717153AD9CF2C] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) -- C:\Windows\System32\Drivers\wanarp.sys [80896]
O58 - SDL:[MD5.9CC0003FB8ED3763B977B43F1012FF63] - 22/02/2014 - 13:14:40 ---A- . (.Microsoft Corporation - Watchdog Driver.) -- C:\Windows\System32\Drivers\watchdog.sys [54272]
O58 - SDL:[MD5.1751F6B031ADAC34724511057D2E455D] - 04/02/2015 - 00:58:04 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [44024]
O58 - SDL:[MD5.CB6C63FF8342B467E2EF76E98D5B934D] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys [839488]
O58 - SDL:[MD5.D296D0F0DB2CD1504F90405603664493] - 04/02/2015 - 00:58:33 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter driver.) -- C:\Windows\System32\Drivers\WdFilter.sys [264000]
O58 - SDL:[MD5.42C23552FC0BF2BAB9053BE6E4DC3D13] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - Kernel Mode Driver Framework Loader.) -- C:\Windows\System32\Drivers\WdfLdr.sys [60224]
O58 - SDL:[MD5.9F4DF0043965808973023A9B51A11136] - 04/02/2015 - 00:58:33 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Driver.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [114496]
O58 - SDL:[MD5.2E0AF5B354ED1BB10314353B6A625B68] - 22/08/2013 - 13:39:04 ---A- . (.Microsoft Corporation - Windows Error Reporting Kernel Driver.) -- C:\Windows\System32\Drivers\werkernel.sys [38240]
O58 - SDL:[MD5.715ABA3DD164D06457A2A3C92F6EA9D5] - 28/12/2014 - 18:20:32 ---A- . (.Microsoft Corporation - WFP NDIS 6.30 Lightweight Filter Driver.) -- C:\Windows\System32\Drivers\wfplwfs.sys [136512]
O58 - SDL:[MD5.5F66B7BB330AA80067FC66149A692620] - 28/12/2014 - 18:05:19 ---A- . (.Microsoft Corporation - Wim file system Driver.) -- C:\Windows\System32\Drivers\wimmount.sys [33600]
O58 - SDL:[MD5.10A78656BF6126245631705E45F9B9CF] - 28/12/2014 - 18:04:33 ---A- . (.Microsoft Corporation - Windows Hypervisor Interface Driver.) -- C:\Windows\System32\Drivers\winhv.sys [61208]
O58 - SDL:[MD5.AC263C2F66405589528995AA41040599] - 22/08/2013 - 12:37:55 ---A- . (.Microsoft Corporation - Windows WinUSB Class Driver.) -- C:\Windows\System32\Drivers\winusb.sys [78848]
O58 - SDL:[MD5.4F2A80D65AE6F845776E2F06AE6782ED] - 31/08/2012 - 08:40:24 ---A- . (.Hewlett-Packard Development Company, L.P. - HP Wireless Button Driver.) -- C:\Windows\System32\Drivers\WirelessButtonDriver64.sys [20800]
O58 - SDL:[MD5.2834D9D3B4F554A39C72F00EA3F0E128] - 22/08/2013 - 12:40:04 ---A- . (.Microsoft Corporation - Windows Management Interface for ACPI.) -- C:\Windows\System32\Drivers\wmiacpi.sys [16384]
O58 - SDL:[MD5.1FE5DDC32243469E6FA4440C02775A34] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WMILIB WMI support library Dll.) -- C:\Windows\System32\Drivers\wmilib.sys [18272]
O58 - SDL:[MD5.7FC5667DF73D4B04AA457CC3A4180E09] - 13/03/2014 - 13:35:24 ---A- . (.Microsoft Corporation - Windows Overlay Filter.) -- C:\Windows\System32\Drivers\wof.sys [157016]
O58 - SDL:[MD5.A2468CC3509394A33C4C32F99563D845] - 28/12/2014 - 18:07:34 ---A- . (.Microsoft Corporation - Family Safety Filter Driver.) -- C:\Windows\System32\Drivers\wpcfltr.sys [54784]
O58 - SDL:[MD5.9F2904B55F6CECCD1A8D986B5CE2609A] - 22/08/2013 - 13:36:12 ---A- . (.Microsoft Corporation - Windows Portable Device Upper Class Filter Driver.) -- C:\Windows\System32\Drivers\WpdUpFltr.sys [26976]
O58 - SDL:[MD5.38CAE0D33091C6F3B542F230E70ED44B] - 22/08/2013 - 14:25:41 ---A- . (.Microsoft Corporation - WPP Trace Recorder.) -- C:\Windows\System32\Drivers\WppRecorder.sys [23392]
O58 - SDL:[MD5.AE072B0339D0A18E455DC21666CAD572] - 22/08/2013 - 12:40:03 ---A- . (.Microsoft Corporation - Couche IFS Winsock2.) -- C:\Windows\System32\Drivers\ws2ifsl.sys [21504]
O58 - SDL:[MD5.F586F3F1BF962FE9AE4316E0D896B22F] - 22/08/2013 - 12:39:58 ---A- . (.Microsoft Corporation - Web Services Print Device Driver.) -- C:\Windows\System32\Drivers\WSDPrint.sys [20992]
O58 - SDL:[MD5.58035FD3369879E02D65989C44D27450] - 28/12/2014 - 18:04:35 ---A- . (.Microsoft Corporation - Web Service Based Scan Device Driver.) -- C:\Windows\System32\Drivers\WSDScan.sys [23040]
O58 - SDL:[MD5.481286719402E4BAEFEA0604AB1B5113] - 28/12/2014 - 18:05:32 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform.) -- C:\Windows\System32\Drivers\WUDFPf.sys [113664]
O58 - SDL:[MD5.D7B4859227B02BCC1055B279A63C937F] - 28/12/2014 - 18:05:29 ---A- . (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Reflecto.) -- C:\Windows\System32\Drivers\WUDFRd.sys [226304]
O58 - SDL:[MD5.DD3D37B54CFB348BA23D174CF1EF1F47] - 25/06/2015 - 03:31:32 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [4177920]
O58 - SDL:[MD5.ABF0C4FD83C2568E4630E1FC0D12D7F8] - 28/12/2014 - 18:05:25 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll [31232]
O58 - SDL:[MD5.602786CC58F906BD550C6A63AA4CD50D] - 28/12/2014 - 18:05:26 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\System32\Windows.System.Display.dll [28160]
O58 - SDL:[MD5.0ED5E928E44513C4E646E5B1BA5AC19A] - 28/12/2014 - 18:05:14 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\System32\Windows.System.Profile.HardwareId.dll [212992]
O58 - SDL:[MD5.E16E4F3918FFB9131507D932D10858B4] - 28/12/2014 - 18:05:14 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\System32\Windows.System.Profile.SystemManufacturers.dll [27136]
O58 - SDL:[MD5.B721B68908AD35DEEBC6780001CCAAF6] - 28/12/2014 - 18:06:18 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\System32\Windows.System.RemoteDesktop.dll [22528]
O58 - SDL:[MD5.22177DD062F6696A98FAFF6BB0A82C98] - 15/06/2012 - 12:52:28 ---A- . (.Ralink Corporation. - Bluelet Audio Driver.) -- C:\Windows\SysWOW64\drivers\blueletaudio.sys [34912]
O58 - SDL:[MD5.E5805896A55D4166C20F216249F40FA3] - 18/06/2015 - 20:37:47 ---A- . (.REALiX(tm) - HWiNFO AMD64 Kernel Driver.) -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528]
O58 - SDL:[MD5.552A6C66B950A3E99AA4C0782DF61D24] - 28/12/2014 - 18:05:25 ---A- . (.Microsoft Corporation - Windows Background System Events Broker API Server.) -- C:\Windows\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll [25600]
O58 - SDL:[MD5.FE541E9D6B9BCD28B35CC567773EE020] - 28/12/2014 - 18:06:44 ---A- . (.Microsoft Corporation - DLL d’exécution de l’affichage système Windows.) -- C:\Windows\SysWOW64\Windows.System.Display.dll [23040]
O58 - SDL:[MD5.4BDD9926B092E3306EAE638205C05A3E] - 28/12/2014 - 18:05:14 ---A- . (.Microsoft Corporation - DLL d’ID matériel du profil du système Windows.) -- C:\Windows\SysWOW64\Windows.System.Profile.HardwareId.dll [181248]
O58 - SDL:[MD5.809E50F92808897944B44D12BB77E359] - 28/12/2014 - 18:06:37 ---A- . (.Microsoft Corporation - Windows.System.Profile.SystemManufacturers.) -- C:\Windows\SysWOW64\Windows.System.Profile.SystemManufacturers.dll [22528]
O58 - SDL:[MD5.8AAD7AB1B8B19E3061D749B8C0248895] - 28/12/2014 - 18:04:52 ---A- . (.Microsoft Corporation - Windows System RemoteDesktop Runtime DLL.) -- C:\Windows\SysWOW64\Windows.System.RemoteDesktop.dll [17920]
~ Drivers: 18 Scanned in 00mn 17s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 24/07/2015 - 20:13:07 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Packages\AD2F1837.GettingStartedwithWindows8_v10z8vjag6ke6\Settings\settings.dat [8192]
O61 - LFC: 24/07/2015 - 20:13:30 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Packages\SonicWALL.MobileConnect_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 24/07/2015 - 20:13:45 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Packages\windows.immersivecontrolpanel_cw5n1h2txyewy\Settings\settings.dat [8192]
O61 - LFC: 25/07/2015 - 20:16:34 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\Backup\ASCBackup32-2015-07-25(11-30-38).reg [17644]
O61 - LFC: 25/07/2015 - 20:16:34 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\Backup\ASCBackup64-2015-07-25(11-30-38).reg [42584]
O61 - LFC: 25/07/2015 - 20:16:35 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\JFilterkey.dbd [169150]
O61 - LFC: 25/07/2015 - 20:16:35 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\Log\ASCLog-2015-07-25(11-30-38).txt [1607048]
O61 - LFC: 26/07/2015 - 20:12:44 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt [5]
O61 - LFC: 26/07/2015 - 20:12:49 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Google\Chrome\User Data\Local State [38007]
O61 - LFC: 26/07/2015 - 20:12:49 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849]
O61 - LFC: 26/07/2015 - 20:12:50 ---A- . (...) -- C:\Users\julien gire\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.823\_platform_specific\win_x86\CdmAdapterVersion [12]
O61 - LFC: 26/07/2015 - 20:16:35 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\Log\ASCLog-2015-07-26(20-39-33).txt [247945]
O61 - LFC: 26/07/2015 - 20:16:35 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\IObit\Advanced SystemCare V8\PFilterkey.dbd [44]
O61 - LFC: 26/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\3d8ae947-9963-4cbe-ae35-32215ec251d5 [468]
O61 - LFC: 27/07/2015 - 20:12:57 --HA- . (...) -- C:\Users\julien gire\AppData\Local\IconCache.db [37764]
O61 - LFC: 27/07/2015 - 20:15:58 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\Adobe\Flash Player\NativeCache\NativeCache.directory [0]
O61 - LFC: 27/07/2015 - 20:16:31 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\Hewlett-Packard\HP Connected Remote\data\WMC_module.sdf [3190784]
O61 - LFC: 27/07/2015 - 20:16:31 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\Hewlett-Packard\HP Connected Remote\data\WMP_module.sdf [98304]
O61 - LFC: 27/07/2015 - 20:16:31 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\Hewlett-Packard\HP Connected Remote\data\iTunes_module.sdf [163840]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\21df15b0-e309-4d66-a211-4216a482226c [468]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\66310e51-8780-4b4f-9bf9-07dc4c321f81 [468]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\6dea624a-f4b0-4d7b-ad69-89b55cf1ab89 [468]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\83eafdbf-f127-4824-8586-3d4f44cd1306 [468]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\929acc48-a6f8-4279-813c-d0035323047d [468]
O61 - LFC: 27/07/2015 - 20:49:26 -SHA- . (...) -- C:\Users\julien gire\AppData\Roaming\Microsoft\Protect\S-1-5-21-3504430750-2508699932-2239496844-1002\d5e4e087-c476-45c5-8703-f2e21df5ade6 [468]
O61 - LFC: 27/07/2015 - 20:49:32 ---A- . (...) -- C:\Users\julien gire\AppData\Roaming\ProductData\update.spt [15865]
O61 - LFC: 27/07/2015 - 20:57:40 ---A- . (...) -- C:\Users\julien gire\Downloads\adwcleaner_4.208.exe [2248704]
O61 - LFC: 27/07/2015 - 20:57:41 ---A- . (...) -- C:\Users\julien gire\Downloads\ZHPDiag2.exe [0] =>.Nicolas Coolman
O61 - LFC: 27/07/2015 - 20:57:42 ---A- . (...) -- C:\Users\julien gire\Links\Photos iCloud.lnk [160]
~ Files: 29 Scanned in 50mn 53s
---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s
---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
~ FASS Keys: 11 Scanned in 00mn 04s
---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCR] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (Web Search) - http://search.certified-toolbar.com =>PUP.CertifiedToolbar
~ Keys: Scanned in 00mn 00s
---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [214528]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [156160]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [329216]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1360896]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [1084416]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [926208]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [31744]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [110080]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110592]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1265152]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [230400]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [71168]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [135168]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [227328]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [339968]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84992]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [101376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [348672]
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Windows.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240]
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [1639424]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [59392]
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [206848]
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Microsoft.) -- C:\Windows\System32\ncasvc.dll [166400]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [102912]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à distance.) -- C:\Windows\System32\rasmans.dll [542208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [73728]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [452608]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [313344]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [3701760]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [933376]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000]
~ Services: 34 Scanned in 00mn 08s
---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "vm-monitoring-rpc" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "vm-monitoring-dcom" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "Wininit-Shutdown-In-Rule-TCP-RPC-EPMapper" | In - None - P6 - FALSE | .(.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\system32\wininit.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "ProximityUxHost-Sharing-In-TCP-NoScope" | In - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "ProximityUxHost-Sharing-Out-TCP-NoScope" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Hôte UX de proximité.) -- C:\Windows\system32\proximityuxhost.exe
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnPHost-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNTS-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-WSDEVNT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "EventForwarder-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Event Forwarder.) -- C:\Windows\system32\NetEvtFwdr.exe
O87 - FAEL: "EventForwarder-RPCSS-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TPMVSCMGR-Server-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "TPMVSCMGR-Server-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - TPM Virtual Smart Card Manager DCOM Server.) -- C:\Windows\system32\RmtTpmVscMgrSvr.exe
O87 - FAEL: "Netlogon-TCP-RPC-In" | In - None - P6 - FALSE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\System32\lsass.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" |In - None - P6 - TRUE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\p2phost.exe (.not file.)
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WirelessDisplay-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WirelessDisplay-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WirelessDisplay-Out-UDP" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\WUDFHost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-In-UDP-NoScope" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-LocalSubnetScope" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-NoScope" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-LocalSubnetScope" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-NoScope" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-LocalSubnetScope" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-In-RTSP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Serveur Lire sur.) -- C:\Windows\system32\mdeserver.exe
O87 - FAEL: "PlayTo-SSDP-Discovery-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-UDP-PlayToScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-UDP-PlayToScope" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-In-TCP-PlayToScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PlayTo-QWave-Out-TCP-PlayToScope" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WFDPRINT-DAFWSD-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "WFDPRINT-DAFWSD-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "WFDPRINT-SPOOL-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "WFDPRINT-SPOOL-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "WFDPRINT-SCAN-In-Active" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WFDPRINT-SCAN-Out-Active" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-In-TCP" |In - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-TERMSRV-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\ehome\ehshell.exe (.not file.)
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-Prov-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcx2prov.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-McrMgr-Out-TCP" |Out - None - P6 - FALSE | .(...) -- C:\Windows\ehome\mcrmgr.exe (.not file.)
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-LLMNR-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-DAS-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Device Association Framework Provider Host.) -- C:\Windows\system32\dashost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-UPnP-Out-TCP_1" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP_1" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP_1" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{A97E3DE2-B23A-48DD-8C4D-A8DE77E93222}" |In - None - P17 - TRUE | .(...) -- C:\Users\julien gire\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{6278CEBA-8CC9-4C3C-8D12-98698CA5B08D}" |In - None - P6 - TRUE | .(...) -- C:\Users\julien gire\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{7916D5BF-EE75-4BCF-9365-D33C80ACC883}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{B1BA975D-C269-44FD-948E-8D4C341B3CF3}" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{162F1D0F-289F-497A-AA62-CEC561FD84D9}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{46AC86B9-C70C-4DBB-96D2-CED868856614}" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{234B9BEC-6683-4161-9ED2-67892DE94677}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{9F848938-4B7D-44B9-B175-BC078C3F809D}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{FB156CF8-AE99-4177-9365-B79F4ABDFBC1}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{03AA55A2-FBF1-422A-B3DB-94DA3C61F6A5}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "UDP Query User{8A613374-C9B8-4DDD-B2D8-B3188F61BCDE}C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P17 - TRUE | .(...) -- C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "TCP Query User{F98F1787-6CB3-47F4-BF25-EB16B0F80710}C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Public - P6 - TRUE | .(...) -- C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{FE1DDF50-2BA7-48EC-BF6D-FADB462055F7}C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "TCP Query User{A6C8E8B5-77C0-4C5F-8EA1-6740D5173F05}C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\julien gire\appdata\roaming\cacaoweb\cacaoweb.exe (.not file.) =>PUP.CacaoWeb
O87 - FAEL: "{141F3AF1-1E74-4ED1-8573-8067C4689ADE}" | In - Private - P17 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O87 - FAEL: "{B8D95712-7B46-4460-AC1A-0D7A52126FD0}" | In - Private - P6 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O87 - FAEL: "{9CA6D474-650B-441E-82B8-394D69DCB323}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{08164035-7C7A-4032-AB30-E11506C74C10}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{D948F526-5D44-4795-B4BD-41F701A4232B}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{9FB9E352-016C-429D-849C-2F3ABAD60711}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{0D538708-E930-4E88-BF7A-4CA2253CF94F}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "{DDDCD4A9-7D1C-4CD3-9FE5-2A28EE6F2F1F}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{5DA9E2B6-5242-48FD-B736-08D9D6315467}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O87 - FAEL: "{F4449B10-1B4A-4B5A-9E7A-A617D1777B83}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O87 - FAEL: "{A471DFB0-F9AC-4F59-B981-92E057C88727}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDirector 10.) -- C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.exe
O87 - FAEL: "{175E3D07-E036-4C05-852C-E008A4AB06D5}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 10.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.exe
O87 - FAEL: "{C6D00600-5918-4F24-A91F-EBFC1875E0FC}" | In - Public - P17 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O87 - FAEL: "{5D8EAEC6-9AA6-4B7C-8ABD-55F8C96C5806}" | In - Public - P6 - TRUE | .(.IVT Corporation - Bluetooth Application.) -- C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
O87 - FAEL: "{05B3DDC7-0C9E-4CFD-BCFF-00D857C3224F}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{C312C276-0A34-4C3B-9DA9-51B484A9C04D}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O87 - FAEL: "{88CEBC4A-E997-4603-93C8-FA5683F7A426}" | In - None - P6 - TRUE | .(.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O87 - FAEL: "{A722BCD0-7546-45F3-BE6C-8E66254AB6E0}" | Out - None - P6 - TRUE | .(.Meridian Audio Ltd - HP Connected Music.) -- C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
O87 - FAEL: "{49F59C68-491C-43BD-89AE-13FC07468F24}" |In - None - P6 - TRUE | .(...) -- C:\Users\Administrator\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (.not file.)
O87 - FAEL: "{3AE8E3C5-5DCE-4141-93FA-EE9998CF35D1}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{CAE527DF-7A02-48B5-98CD-6A8CBB411B37}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{24966654-D690-4291-AA49-AD589E3C12CA}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{AD2297B3-9B37-48FE-AF4E-1BD4FA3C96FF}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{46328674-CD9F-49CB-966B-1565C2E8670C}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{C2B0F795-1592-4F83-8ED0-BB6680B11641}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{185D1726-3545-4E22-951A-0A38F1CDA33E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{AD9CC6FE-E1E0-431D-8F76-89F808394088}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files (x86)\Microsoft Office\Office15\outlook.exe
O87 - FAEL: "{5BA75D41-E949-423A-8D71-60E4DD33823B}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{4F969699-9B21-40E2-8FE8-658A3BEFA59F}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\lync.exe
O87 - FAEL: "{E36DEA93-95EC-41A6-BA8B-CA2937C46B0D}" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{8C1AAE86-A0E3-4858-84C4-A7BE67C2E6DA}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe
O87 - FAEL: "{CFF3E6FE-89A8-4F19-ACE7-AC7E2F33C14B}" |In - None - P6 - TRUE | .(...) -- C:\Users\julien gire\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{DDB36A20-1BDC-4E22-AA3F-6FACCEBFA401}" |In - None - P17 - TRUE | .(...) -- C:\Users\julien gire\AppData\Roaming\uTorrent\uTorrent.exe (.not file.) =>P2P.µTorrent
O87 - FAEL: "{A69AD8CC-1F6D-4E3F-9B83-06E2E55ED538}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSearchShield.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{C689D7E6-B081-430E-92BB-842FD5120614}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSearchShield.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{D8FE760D-3F48-449E-979E-737C8183CA98}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSystemUpgrade.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{70715181-F025-45ED-994E-EBF31C64D9F9}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSystemUpgrade.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{EA754C19-9863-4749-97CB-355B330C2681}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WBrokerHandler.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{685E9C53-C503-42E6-BD73-5FC25C879D9C}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WBrokerHandler.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{EA7CD2DD-E326-4AF7-98A8-05CDAC703BF8}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\SoloApp.exe (.not file.)
O87 - FAEL: "{C5B0552D-F41C-4645-BF04-B8CA8EDCCE47}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\SoloApp.exe (.not file.)
O87 - FAEL: "{534692EA-34B2-4BD5-B4AA-B6B8CD6C8610}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\WebDriver.dll (.not file.)
O87 - FAEL: "{1F49098E-0004-4571-86B3-2B6ABC1827CC}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\WebDriver.dll (.not file.)
O87 - FAEL: "{9CE46959-1346-4966-9CDB-9A9F7B8F3FB4}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\chromedriver.exe (.not file.)
O87 - FAEL: "{FF1CA344-52A0-4C3D-9C98-BC6C3D8DAFE4}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\chromedriver.exe (.not file.)
O87 - FAEL: "{F6525499-A032-41BD-A780-6319D9120636}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\IEDriverServer.exe (.not file.)
O87 - FAEL: "{702F1629-A64D-45E2-BDAF-8BD38A93D905}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\IEDriverServer.exe (.not file.)
O87 - FAEL: "{6636C865-32B8-4286-9072-E99BC42CCD53}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSearchShield.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{6EA3EC29-4D92-4789-AA7D-726D12121563}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSearchShield.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{6099DB37-D2F9-44B6-8C4E-49EDDBD98E4D}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSystemUpgrade.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{672CB1CB-5EEE-493C-AC5B-A4E83DC3F56E}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WSystemUpgrade.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{041FF5FE-1A4A-4085-B9BD-F9EB93B41F20}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WBrokerHandler.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{BEBB9203-3109-4416-996B-1CD1A3AF8454}" |Out - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HomeTab\WBrokerHandler.exe (.not file.) =>PUP.CertifiedToolbar
O87 - FAEL: "{17D1C794-83FB-4AAD-935D-54FDA2CFD279}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\SoloApp.exe (.not file.)
O87 - FAEL: "{7990A9AD-5689-42F2-A2B4-435CC36751EB}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\SoloApp.exe (.not file.)
O87 - FAEL: "{0B5DF3A6-9AA7-40A0-B474-83A43902B0BB}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\WebDriver.dll (.not file.)
O87 - FAEL: "{8D0B4CDC-C1D4-433E-B6C0-1ED8D0FE28E0}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\WebDriver.dll (.not file.)
O87 - FAEL: "{054E9843-A0CD-4FB8-AE4C-EF790DAAE61F}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\chromedriver.exe (.not file.)
O87 - FAEL: "{63DA4DC1-6830-4D75-AAC0-B24E6325A435}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\chromedriver.exe (.not file.)
O87 - FAEL: "{200F620A-FC17-4A67-AD51-BF3032214D09}" |In - None - P17 - TRUE | .(...) -- C:\SoloApp\IEDriverServer.exe (.not file.)
O87 - FAEL: "{04F7D5DF-806C-45EB-97B2-A04FF2F4B15F}" |Out - None - P17 - TRUE | .(...) -- C:\SoloApp\IEDriverServer.exe (.not file.)
O87 - FAEL: "{37BF0BA1-F972-4796-8D8A-F2FFD45602CC}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "{DB279CA3-9732-4A7A-8FB9-E58A0733661D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe =>.Microsoft Corporation
O87 - FAEL: "TCP Query User{7C0E8BF5-7217-4251-A86A-3594DF74155E}C:\users\julien gire\appdata\local\popcorn time fleex\node-webkit\nw.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\julien gire\appdata\local\popcorn time fleex\node-webkit\nw.exe
O87 - FAEL: "UDP Query User{967CE9A6-E765-4FCB-8AFF-588998ADA815}C:\users\julien gire\appdata\local\popcorn time fleex\node-webkit\nw.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\julien gire\appdata\local\popcorn time fleex\node-webkit\nw.exe
O87 - FAEL: "TCP Query User{C4E0CF2A-2B20-494D-A3CA-5EC25D93F3E6}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "UDP Query User{A9551BA7-6C2F-43CB-BB65-F59D2340134F}C:\program files (x86)\skype\phone\skype.exe" | In - Private - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{25C3DD37-A024-4E73-BB8A-B303A9202AD5}" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "{39621BF8-782C-44D1-B57E-55154A86EFCA}" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O87 - FAEL: "TCP Query User{BB2FF2D4-8705-4812-AC8E-EF07D7FEFCE8}C:\program files (x86)\skype\phone\skype.exe" | In - Public - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "UDP Query User{8C31BC5D-76B1-4D80-8FE2-BC47DAF59DB6}C:\program files (x86)\skype\phone\skype.exe" | In - Public - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\program files (x86)\skype\phone\skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "TCP Query User{6E67034C-4C35-4516-B77B-0021A9FD7317}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{E61F5C70-9B6F-4BC8-8B5E-09F018539D00}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "{A2762B35-9F25-4423-8214-47753B8C5528}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Users\julien gire\Desktop\Uses\iTunes.exe
O87 - FAEL: "TCP Query User{120D358E-C1C3-40FF-BBD1-2BAB0C3A5E94}C:\users\julien gire\appdata\local\popcorn time\node-webkit\popcorn time.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\julien gire\appdata\local\popcorn time\node-webkit\popcorn time.exe
O87 - FAEL: "UDP Query User{3CA5B8A2-DF8C-4B32-A28B-1E90D3730C00}C:\users\julien gire\appdata\local\popcorn time\node-webkit\popcorn time.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\julien gire\appdata\local\popcorn time\node-webkit\popcorn time.exe
O87 - FAEL: "{BD39C41D-997B-42DF-A0F6-617928176342}" | In - Private - P6 - TRUE | .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
O87 - FAEL: "{2E4C4B9D-6A5A-43CE-BE03-CB2B1EC68A42}" | In - Private - P17 - TRUE | .(.AVAST Software - avast! NG front end.) -- C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
O87 - FAEL: "{856F6DF6-DFE3-41D8-8751-1F3547B08EE9}" | In - None - P17 - TRUE | .(.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
~ Firewall: 318 Scanned in 00mn 04s
---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "00005109F10010400000000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - اللغة العربية.) -- C:\WINDOWS\Installer\{90150000-001F-0401-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10031400000000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Nederlands.) -- C:\WINDOWS\Installer\{90150000-001F-0413-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10070400000000000F01FEC" . (.Microsoft Office Korrekturhilfen 2013 - Deutsch.) -- C:\WINDOWS\Installer\{90150000-001F-0407-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F10090400000000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - English.) -- C:\WINDOWS\Installer\{90150000-001F-0409-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F100A0C00000000000F01FEC" . (.Microsoft Office Proofing Tools 2013 - Español.) -- C:\WINDOWS\Installer\{90150000-001F-0C0A-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "00005109F100C0400000000000F01FEC" . (.Outils de vérification linguistique 2013 de Microsoft Office - Français.) -- C:\WINDOWS\Installer\{90150000-001F-040C-0000-0000000FF1CE}\misc.exe,6
O90 - PUC: "002C19F1F0F890047AE5BDC61E15DBE4" . (.Validity WBF DDK.) -- C:\Windows\Installer\{1F91C200-8F0F-4009-A75E-DB6CE151BD4E}\ValidityLogo.ico
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "0AB19942EE0FDA44C98CE55CA0CE6F7B" . (.Skype™ 7.3.) -- C:\WINDOWS\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe
O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe =>.Hewlett-Packard Co
O90 - PUC: "175ACBFED716A484E9AC3E10BBD67005" . (.Windows Live Writer.) -- C:\Windows\Installer\{EFBCA571-617D-484A-9ECA-E301BB6D0750}\ApplicationIcon.ico
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "220A2F3973C68B842B14FFBA9D6FC003" . (.iTunes.) -- C:\WINDOWS\Installer\{93F2A022-6C37-48B8-B241-FFABD9F60C30}\Installer.ico
O90 - PUC: "22EB878D072390941B1E198CFED82343" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{D878BE22-3270-4909-B1E1-91C8EF8D3234}\controlPanelIcon.exe
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2D6F4B0BEA2FA1544969F6F2A698B723" . (.PowerDirector.) -- C:\Windows\Installer\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\ARPPRODUCTICON.exe
O90 - PUC: "3CAB682B6EBC4584FB86BE273AC4AE65" . (.Windows Live Messenger.) -- C:\Windows\Installer\{B286BAC3-CBE6-4854-BF68-EB72A34CEA56}\MsblIco.Exe
O90 - PUC: "42C6FBF1Df1C10144AB2C065F4E9E897" . (.Media Suite.) -- C:\Windows\Installer\{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "4A867903BB2A03945A2A189676C8B9C4" . (.iCloud.) -- C:\WINDOWS\Installer\{309768A4-A2BB-4930-A5A2-8169678C9B4C}\ARP.ico
O90 - PUC: "6013214C586B6E849BDB4E9F1148E14B" . (.Apple Mobile Device Support.) -- C:\WINDOWS\Installer\{C4123106-B685-48E6-B9BD-E4F911841EB4}\Installer.ico
O90 - PUC: "6303285E90F6A0D40BC52EAB1A9282A8" . (.HP Quick Launch.) -- C:\windows\Installer\{E5823036-6F09-4D0A-B05C-E2BAA129288A}\_853F67D554F05449430E7E.exe
O90 - PUC: "68AB67CA408033019195008142412751" . (.Adobe Refresh Manager.) -- C:\WINDOWS\Installer\{AC76BA86-0804-1033-1959-001824147215}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.12) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "6DD7307BDF586FF409959335F2972675" . (.HP Documentation.) -- C:\Windows\Installer\{B7037DD6-85FD-4FF6-9059-39532F796257}\NotebookDocs.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "9A1221D6FB710CE4182F723DE03C7010" . (.Skype Click to Call.) -- C:\WINDOWS\Installer\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}\ICON_PRODUCT
O90 - PUC: "A3511AFA745FB9048B73A3D0C6A5F3CE" . (.Apple Application Support (32 bits).) -- C:\WINDOWS\Installer\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}\WinInstall.ico
O90 - PUC: "A4432684C93A7984CA4D1AEB5D61C3A5" . (.PhotoDirector.) -- C:\windows\Installer\{4862344A-A39C-4897-ACD4-A1BED5163C5A}\ARPPRODUCTICON.exe
O90 - PUC: "A78975C0A30A59B43A902DF3874F60AC" . (.HP Utility Center.) -- C:\Windows\Installer\{0C57987A-A03A-4B95-A309-D23F78F406CA}\ARPPRODUCTICON.exe
O90 - PUC: "AC128C4355B60A44A8B9E24F176D10E9" . (.HP SimplePass.) -- C:\Windows\Installer\{34C821CA-6B55-44A0-8A9B-2EF471D6019E}\ARPPRODUCTICON.exe
O90 - PUC: "B18BA825A56D0BA42A6B285BA180D710" . (.HP Recovery Manager.) -- C:\windows\Installer\{528AB81B-D65A-4AB0-A2B6-82B51A087D01}\_853F67D554F05449430E7E.exe
O90 - PUC: "B43A342FF7BA56047B078BB567C742C7" . (.HP Connected Remote.) -- C:\windows\Installer\{F243A34B-AB7F-4065-B770-B85B767C247C}\_853F67D554F05449430E7E.exe
O90 - PUC: "BE824E2CE6110C14E9482BD29ECC4AF2" . (.HP Registration Service.) -- C:\Windows\Installer\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}\ARPPRODUCTICON.exe
O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe
O90 - PUC: "D4ADA0CF5AF82544A8FF0F0AAB9CE77F" . (.Energy Star.) -- C:\Windows\Installer\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}\_853F67D554F05449430E7E.exe
O90 - PUC: "D518FD59D2EB81195F949397C48596FC" . (.Ralink Bluetooth Stack64.) -- C:\Windows\Installer\{95DF815D-BE2D-9118-F549-39794C5869CF}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\WINDOWS\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D84D78A2FDF3df1479DC1A3E07FEFF2E" . (.Power2Go.) -- C:\Windows\Installer\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}\ARPPRODUCTICON.exe
O90 - PUC: "D96ED149EEC61714F8F1D3E753A24A89" . (.HP Wireless Button Driver.) -- C:\Windows\Installer\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}\ARPPRODUCTICON.exe
O90 - PUC: "DE532CED4A8571542A874CE1D8EABAB3" . (.PowerDVD.) -- C:\Windows\Installer\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\ARPPRODUCTICON.exe
O90 - PUC: "ED428B7D23AD2774E9E5935C5118637A" . (.Apple Application Support (64 bits).) -- C:\WINDOWS\Installer\{D7B824DE-DA32-4772-9E5E-39C5158136A7}\WinInstall.ico
O90 - PUC: "F3CC0CBE1A7B8CF40841C4B7DF93528E" . (.AuthenTec TrueAPI 64-bit.) -- C:\Windows\Installer\{EBC0CC3F-B7A1-4FC8-8014-4C7BFD3925E8}\appicon
O90 - PUC: "FEEF40788A6AE7E41B42DB16226CE6C2" . (.HP CoolSense.) -- C:\windows\Installer\{8704FEEF-A6A8-4E7E-B124-BD6122C66E2C}\_853F67D554F05449430E7E.exe
~ Update Products: 125 Scanned in 00mn 00s
---\\ Enumère les données de la clé NameSpace (MNS) (O92)
O92 - MNS: - {1CF1260C-4DD0-4ebb-811F-33C572699FDE}
O92 - MNS: - {374DE290-123F-4565-9164-39C4925E467B}
O92 - MNS: - {3ADD1653-EB32-4cb0-BBD7-DFA0ABB5ACCA}
O92 - MNS: - {A0953C92-50DC-43bf-BE83-3742FED03C9C}
O92 - MNS: - {A8CDFF1C-4878-43be-B5FD-F8091C1C60D0}
O92 - MNS: - {B4BFCC3A-DB2C-424C-B029-7FE99A87C641}
O92 - MNS: Photos iCloud - {F0D63F85-37EC-4097-B30D-61B4A8917118}
~ MNS: 7 Scanned in 00mn 00s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.8C5AB712B6B35BEE0EB2F1111BBBB9EA] [WIS][08/04/2014] (.KalityWeb - WebAdSystem.) -- C:\Windows\Installer\1a0d92.msi [1064960] =>Adware.WebAdSystem
[MD5.79BBAAC753ABDA50DF19030265F7D1A6] [WIS][20/04/2014] (.Boxore OU - Boxore Client Installer.) -- C:\Windows\Installer\1ea966.msi [2473984] =>Adware.Boxore
[MD5.2C80666AE49E25F97BF091935B07B03B] [WIS][13/04/2015] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\47961.msi [41451520]
[MD5.F9C4E63C705AF698F4A3805F0F3754B2] [WIS][06/10/2012] (.Ralink Corporation - Ralink Bluetooth Stack.) -- C:\Windows\Installer\81e0b.msi [5694724]
[MD5.BC8FAF80A6FEE9CA7D51F744A6F0D45E] [WIS][16/04/2014] (.ReSoft Ltd. - Shopping Helper Smartbar.) -- C:\Windows\Installer\ae1946.msi [9502720] =>Hijacker.SmartBar
[MD5.9A5263D3C011F34BFA10C5458CF27197] [WIS][16/04/2014] (.SupraSavings - SupraSavings.) -- C:\Windows\Installer\afa029.msi [4997120] =>PUP.SupraSavings
[MD5.729CD9BDFEF2A0BADBBF9D71414BC52E] [WIS][22/09/2013] (.Iminent - Iminent.) -- C:\Windows\Installer\bdfede.msi [10227712] =>Adware.IMBooster
~ WIS: 131 Scanned in 00mn 42s
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 15/07/2015 268976 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 01/05/2015 1394816 | (c2cautoupdatesvc) . (...) - C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
SS - | Auto 01/05/2015 1772672 | (c2cpnrsvc) . (...) - C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
SS - | Demand 21/12/2013 279000 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - | Auto 12/08/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 12/08/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Auto 28/09/2012 14904 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 06/09/2013 288776 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe
SS - | Demand 17/07/2015 148136 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Auto 27/10/2013 1364256 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Auto 18/02/2015 315488 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 07/07/2015 82128 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 03/04/2015 814880 | (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe
SR - | Auto 19/01/2015 77128 | (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 01/07/2015 343336 | (avast! Antivirus) . (.Avast Software s.r.o..) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Demand 01/07/2015 4034896 | (AvastVBoxSvc) . (.Avast Software.) - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
SR - | Auto 26/09/2012 1612552 | (BlueSoleilCS) . (.IVT Corporation.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Demand 19/09/2012 146184 | (BsHelpCS) . (.IVT Corporation.) - C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
SR - | Auto 10/08/2012 1641320 | (FPLService) . (.HP.) - C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
SR - | Auto 06/09/2013 240736 | (GamesAppIntegrationService) . (.WildTangent.) - C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
SR - | Auto 27/09/2012 86528 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
SR - | Auto 12/10/2012 35744 | (HPConnectedRemote) . (.Hewlett-Packard.) - C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
SR - | Demand 07/09/2012 1001376 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 23/08/2012 29600 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 07/09/2012 35232 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 25/07/2012 2457232 | (IconMan_R) . (.Realsil Microelectronics Inc..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
SR - | Auto 28/03/2012 140456 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe
SR - | Auto 15/05/2014 342336 | (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
SR - | Auto 20/04/2012 635104 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 18/07/2012 128896 | (Intel(R) ME Service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Demand 07/04/2015 643880 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 18/07/2012 165760 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 02/06/2015 2904864 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
SR - | Auto 18/07/2012 276864 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 23/10/2013 922912 | (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe
SR - | Auto 16/07/2015 1026944 | (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC..) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>Crapware.SpyHunter
SR - | Auto 14/08/2012 322048 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SR - | Auto 13/03/2015 1055008 | (StartMenuService) . (.IObit.) - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
SR - | Demand 16/07/2012 401256 | (TrueService) . (.AuthenTec, Inc..) - C:\Program Files\Common Files\AuthenTec\TrueService.exe
SR - | Auto 18/07/2012 364416 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 06/09/2012 28160 | (valWBFPolicyService) . (...) - C:\Windows\system32\valWBFPolicyService.exe
SR - | Demand 10/07/1658 0 | (WdNisSvc) . (...) - C:\Program Files (x86)\Windows Defender\NisSrv.exe
SR - | Demand 10/07/1658 0 | (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe
SR - | Demand 28/12/2014 38792 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 10s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by julien gire at 27/07/2015 21:07:41
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by julien gire at 27/07/2015 21:07:43
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 02s
---\\ Scan Additionnel (O88)
Database Version : 13044 - (14/04/2014)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 3
Fichiers trouvés (Files found) : 11
[HKLM\SYSTEM\CurrentControlSet\Services\SpyHunter 4 Service] =>Crapware.SpyHunter^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}] =>PUP.PriceMeter^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\uTorrent] =>P2P.BitTorrent^
C:\Program Files (x86)\IlemiTVApp.com =>PUP.1ClickDownloader^
C:\Users\julien gire\AppData\Roaming\uTorrent =>P2P.µTorrent^
C:\Users\julien gire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IlemiTVApp.com =>PUP.1ClickDownloader^
C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe =>Crapware.SpyHunter^
[HKCU\Software\Activeris] =>PUP.Activeris^
[HKCU\Software\BitTorrent] =>P2P.BitTorrent^
[HKLM\Software\Wow6432Node\Activeris] =>PUP.Activeris^
[HKLM\Software\Wow6432Node\Pirrit Solutions] =>PUP.PirritSuggestor^
C:\Windows\Installer\1a0d92.msi =>Adware.WebAdSystem^
C:\Windows\Installer\1ea966.msi =>Adware.Boxore^
C:\Windows\Installer\ae1946.msi =>Hijacker.SmartBar^
C:\Windows\Installer\afa029.msi =>PUP.SupraSavings^
C:\Windows\Installer\bdfede.msi =>Adware.IMBooster^
C:\Users\julien gire\Downloads\cacaoweb.exe =>PUP.CacaoWeb
~ Additionnel Scan: 393391 Items scanned in 00mn 31s
---\\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.webs.com/apps/blog/show/26609241-crapware-spyhunter =>Crapware.SpyHunter
http://nicolascoolman.webs.com/apps/blog/show/28040039-pup-certifiedtoolbar =>PUP.CertifiedToolbar
http://nicolascoolman.webs.com/apps/blog/show/41981105-pup-pricemeter =>PUP.PriceMeter
http://nicolascoolman.webs.com/apps/blog/show/41903075-pup-activeris =>PUP.Activeris
http://nicolascoolman.webs.com/apps/blog/show/41590424-pup-pirritsuggestor =>PUP.PirritSuggestor
http://nicolascoolman.webs.com/apps/blog/show/26607014-pup-1clickdownloader =>PUP.1ClickDownloader
http://nicolascoolman.webs.com/apps/blog/show/27566847-pup-cacaoweb =>PUP.CacaoWeb
http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
http://nicolascoolman.webs.com/apps/blog/show/27531758-adware-webadsystem =>Adware.WebAdSystem
http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar
http://nicolascoolman.webs.com/apps/blog/show/42067481-pup-suprasavings =>PUP.SupraSavings
~ MSI: 12 link(s) detected in 00mn 00s
End of the scan (2353 lines in 02mn 34s)(0)