API tools faq
paste
Advertisement
Guest User

ZHPDiag

a guest
May 19th, 2014
181
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 34.76 KB | None | 0 0
raw download clone embed print report
  1. ~ Rapport de ZHPDiag v2014.5.19.68 - Nicolas Coolman (19/05/2014)
  2. ~ Lancé par Romain (19/05/2014 18:52:17)
  3. ~ Adresse du Site Web http://nicolascoolman.webs.com
  4. ~ Blog d'analyse software : http://nicolascoolman.byethost7.com
  5. ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
  6. ~ Traduit par Nicolas Coolman
  7. ~ Etat de la version :
  8. ~ Liste blanche : Activée par le programme
  9. ~ Elévation des Privilèges : OK
  10. ~ User Account Control (UAC): Deactivate by program
  11.  
  12.  
  13. ---\\ Navigateurs Internet
  14. MSIE: Internet Explorer v11.0.9600.17107
  15. MFIE: Mozilla Firefox 29.0.1 (Defaut)
  16. GCIE: Google Chrome v34.0.1847.137
  17.  
  18. ---\\ Informations sur les produits Windows
  19. ~ Langage: Français
  20. Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
  21. Windows Server License Manager Script : OK
  22. ~ Windows Operating System - Windows(R) 7, OEM_SLP channel
  23. System Locked Preinstallation (OEM_SLP) : OK
  24. Windows ID Activation : OK
  25. ~ Windows Partial Key : 3Q6C9
  26. Windows License : OK
  27. ~ Windows Remaining Initializations Number : 1
  28. Software Protection Service (Protection logicielle) : OK
  29. Windows Automatic Updates : OK
  30. Windows Activation Technologies : OK
  31.  
  32. ---\\ Logiciels de protection du système
  33. Panda Cloud Cleaner v1.0.98
  34. Panda Internet Security 2014 v19.01.01
  35. Windows Defender W7
  36.  
  37. ---\\ Logiciels d'optimisation du système
  38.  
  39. ---\\ Logiciels de partage PeerToPeer
  40.  
  41. ---\\ Surveillance de Logiciels
  42. Adobe Flash Player 13 Plugin
  43. Adobe Reader XI
  44. Java 7 Update 51
  45. Java 7 Update 55
  46.  
  47. ---\\ Informations sur le système
  48. ~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
  49. ~ Operating System: 64 Bits
  50. Boot mode: Normal (Normal boot)
  51. Total RAM: 8094 MB (78% free)
  52. System Restore: Activé (Enable)
  53. System drive C: has 371 GB (40%) free of 910 GB
  54.  
  55. ---\\ Mode de connexion au système
  56. ~ Computer Name: ROMAIN-HP
  57. ~ User Name: Romain
  58. ~ All Users Names: Romain, HomeGroupUser$, Administrateur,
  59. ~ Unselected Option: None
  60. Logged in as Administrator
  61.  
  62. ---\\ Variables d'environnement
  63. ~ System Unit : C:\
  64. ~ %AppZHP% : C:\Users\Romain\AppData\Roaming\ZHP\
  65. ~ %AppData% : C:\Users\Romain\AppData\Roaming\
  66. ~ %Desktop% : C:\Users\Romain\Desktop\
  67. ~ %Favorites% : C:\Users\Romain\Favorites\
  68. ~ %LocalAppData% : C:\Users\Romain\AppData\Local\
  69. ~ %StartMenu% : C:\Users\Romain\AppData\Roaming\Microsoft\Windows\Start Menu\
  70. ~ %Windir% : C:\Windows\
  71. ~ %System% : C:\Windows\System32\
  72.  
  73. ---\\ Enumération des unités disques
  74. C: Hard drive, Flash drive, Thumb drive (Free 371 Go of 910 Go)
  75. D: CD-ROM drive (Not Inserted)
  76. F: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
  77.  
  78.  
  79.  
  80. ---\\ Etat du Centre de Sécurité Windows
  81. [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
  82. ~ Security Center: 41 Legitimates Filtered in 00mn 00s
  83.  
  84.  
  85.  
  86. ---\\ Recherche particulière de fichiers génériques
  87. [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.12/04/2012 - 09:30:16.) -- C:\Windows\Explorer.exe [2871808]
  88. [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
  89. [MD5.F220BA78AB542C70211D73AE4729B2CD] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/03/2014 - 07:22:40.) -- C:\Windows\System32\wininet.dll [2260480]
  90. [MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
  91. [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
  92. [MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/09/2013 - 02:09:10.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
  93. [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
  94. [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
  95. [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
  96. [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
  97. [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
  98. [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
  99. [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
  100. [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.12/04/2012 - 09:32:56.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
  101. [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
  102. [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
  103. [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
  104. [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
  105. [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
  106. [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
  107. [MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.12/04/2012 - 09:27:58.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
  108. ~ Generic Processes: Scanned in 00mn 00s
  109.  
  110.  
  111.  
  112. ---\\ Etat des fichiers cachés (Caché/Total)
  113. ~ Mes images (My Pictures) : 1/246
  114. ~ Mes musiques (My Musics) : 1/5875
  115. ~ Mes Videos (My Videos) : 1/1956
  116. ~ Mes Favoris (My Favorites) : 1/36
  117. ~ Mes Documents (My Documents) : 1/18051
  118. ~ Mon Bureau (My Desktop) : 1/21
  119. ~ Menu demarrer (Programs) : 1/129
  120. ~ Hidden Files: Scanned in 00mn 00s
  121.  
  122.  
  123.  
  124. ---\\ Processus lancés
  125. [MD5.60BCE8BBD1C515007BB335ACEFBFC246] - (.HP - HP Service.) -- C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641768] [PID.880]
  126. [MD5.341457B79B3FC31A80C346C767045879] - (.Panda Security, S.L. - Anti-malware protection support executable.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe [28992] [PID.380]
  127. [MD5.2DD0F646190AA1ACF3B8F7941FBCFF1B] - (.Panda Security, S.L. - TPSrv Application.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe [173816] [PID.372]
  128. [MD5.E196DF9B4DA221A263B6EC7F0CFCD542] - (.Panda Security - Internet resident proxy.) -- C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA INTERNET SECURITY 2014\WebProxy.exe [108512] [PID.1452]
  129. [MD5.B362181ED3771DC03B4141927C80F801] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65432] [PID.1876]
  130. [MD5.221564CC7BE37611FE15EACF443E1BF6] - (.Apple Inc. - YSLoader.exe.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336] [PID.2732]
  131. [MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232] [PID.2620]
  132. [MD5.8313DC0085E8D05ED6662E90C6918443] - (.Hewlett-Packard Company - SolutionsFrameworkService.) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [49464] [PID.2260]
  133. [MD5.2BEC76BDCD1BC080210325E7B5094834] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [35200] [PID.2288]
  134. [MD5.13E838EA8652F8451F29301D3B56B17B] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [162648] [PID.2652]
  135. [MD5.54F00466439F749EDDF29CBA0BC1A28A] - (.Panda Security, S.L. - Panda Software Controler.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe [177440] [PID.2704]
  136. [MD5.F458128A5321BB48DF7B3D8E279F6393] - (.Panda Security, S.L. - Panda Function Service.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe [202016] [PID.2748]
  137. [MD5.2AE3F6B23448443BBEF5DE207159213B] - (.Panda Security, S.L. - Panda Process Protection Service.) -- C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe [62768] [PID.2128]
  138. [MD5.4D8C2645A12FDDF9CD4A68DDE8496BEF] - (.Panda Security, S.L. - Enhanced On-Access Anti-Malware Service.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe [313664] [PID.2596]
  139. [MD5.CC85A36EB009F45A53FF5344CCEFD58E] - (.Panda Security, S.L. - Enhanced On-Access Anti-Malware Protection.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\AVENGINE.exe [225088] [PID.2568]
  140. [MD5.532053E8E3BB8FA7166AB4E7685FDDCC] - (.Panda Security International - Panda Host Service.) -- c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.exe [226560] [PID.2364]
  141. [MD5.196C450F2779D0B462C444DA4906EA7F] - (.Panda Security S.L. - Panda Interface Manager Service.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe [108288] [PID.2708]
  142. [MD5.6241810294275CEA59EBA9733080E5EE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.648]
  143. [MD5.BD9457699AC9C1A0FE43398043617279] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [276824] [PID.2600]
  144. [MD5.F76057596EF65049869098677AB72C30] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [362840] [PID.3208]
  145. [MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.4344]
  146. [MD5.4D241A6A8F6BA9FA32FF836551FFDCEA] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.3448]
  147. [MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960] [PID.3412]
  148. [MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.2420]
  149. [MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.2388]
  150. [MD5.863020614D27D74CFC4194C598DEAD40] - (.Panda Security, S.L. - Panda permanent protection.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\ApVxdWin.exe [1062880] [PID.4944]
  151. [MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.4876]
  152. [MD5.D2946D9F020AE76E9CEF9B4A6DF838C0] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [1129760] [PID.4300]
  153. [MD5.0737D18842CE3C65FC0D04DA0D4875B1] - (.Pas de propriétaire - IEWebSiteLogon.) -- C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe [4073768] [PID.3304]
  154. [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\RunDll32.exe [0] [PID.5380]
  155. [MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.5356]
  156. [MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.5624]
  157. [MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.5816]
  158. [MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.5244]
  159. [MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [PID.5936]
  160. [MD5.D4106AC79DA6DF822AD3BFCD09802F5D] - (.Panda Security, S.L. - Panda AntiSpam Trainer.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\SRVLOAD.exe [91648] [PID.5184]
  161. [MD5.74D1E004483998E076FBBC0DE9B59763] - (.Panda Security, S.L. - PavBckPT Aplicación.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavBckPT.exe [112128] [PID.2864]
  162. [MD5.292C1E04626EED84C668E7714DD6DB66] - (.AuthenTec Inc. - TouchControl.) -- C:\Program Files (x86)\HP SimplePass\TouchControl.exe [3695912] [PID.6968]
  163. [MD5.44784D4AC3DA254F54BFD2249AD2D2EB] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7876096] [PID.6868]
  164. ~ Processes Running: Scanned in 00mn 00s
  165.  
  166.  
  167.  
  168. ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
  169. C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Preferences
  170. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
  171. G2 - GCE: Preference [User Data\Default] [emikpifndnjfkgofoglceekhkbaicbde] Free Rider HD v.1.1 (Activé)
  172. G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
  173. G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
  174. G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
  175.  
  176. ---\\ Liste des dossiers d'extension Google Chrome
  177. G2 - EXT: C:\Users\Romain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
  178. ~ Google Lines Browser: 55 Legitimates Filtered in 00mn 02s
  179.  
  180.  
  181.  
  182. ---\\ Internet Explorer, Proxy Management (R5)
  183. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
  184. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
  185. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
  186. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
  187. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  188. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
  189. ~ Proxy management: Scanned in 00mn 00s
  190.  
  191.  
  192.  
  193. ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
  194. F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
  195. F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
  196. F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
  197. ~ Keys: Scanned in 00mn 00s
  198.  
  199.  
  200.  
  201. ---\\ Hosts file redirection (O1)
  202. ~ Le fichier hosts est sain (The hosts file is clean).
  203. ~ Hosts File: Scanned in 00mn 00s
  204. ~ Nombre de lignes (Lines number): 19
  205.  
  206.  
  207.  
  208. ---\\ Autres liens utilisateurs (O4)
  209. O4 - GS\QuickLaunch [Romain]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Romain\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  210. ~ Global Startup: 1 Legitimates Filtered in 00mn 00s
  211.  
  212.  
  213.  
  214. ---\\ Applications lancées au démarrage du système (O4)
  215. O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
  216. O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
  217. O4 - HKLM\..\Run: [BoxSync] . (.Box, Inc. - Box Sync.) -- c:\Program Files\Box\Box Sync\BoxSync.exe
  218. O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
  219. O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
  220. O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
  221. O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
  222. O4 - HKLM\..\RunOnce: [NCPluginUpdater] . (.Hewlett-Packard - NCPluginUpdater.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
  223. O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  224. O4 - HKLM\..\Wow6432Node\Run: [HPOSD] . (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
  225. O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
  226. O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
  227. O4 - HKLM\..\Wow6432Node\Run: [APVXDWIN] . (.Panda Security, S.L. - Panda permanent protection.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\APVXDWIN.exe
  228. O4 - HKLM\..\Wow6432Node\Run: [SCANINICIO] . (.Panda Security, S.L. - Inicio Programado.) -- C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\Inicio.exe
  229. O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
  230. O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
  231. O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
  232. O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
  233. O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
  234. O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
  235. O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
  236. ~ Application: Scanned in 00mn 00s
  237.  
  238.  
  239.  
  240. ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
  241. O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 [64Bits] - {25510184-5A38-4A99-B273-DCA8EEF6CD08} . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\Resources\Icons\HP.ico
  242. ~ IE Extra Buttons: Scanned in 00mn 00s
  243.  
  244.  
  245.  
  246. ---\\ Modification Domaine/Adresses DNS (O17)
  247. O17 - HKLM\System\CCS\Services\Tcpip\..\{1488A7A4-4516-4CE9-B90E-372E736FF2B4}: DhcpNameServer = 172.20.10.1
  248. O17 - HKLM\System\CCS\Services\Tcpip\..\{70267791-1318-455C-B279-F724C3CA5312}: DhcpNameServer = 192.168.1.1 192.168.1.1
  249. O17 - HKLM\System\CS1\Services\Tcpip\..\{1488A7A4-4516-4CE9-B90E-372E736FF2B4}: DhcpNameServer = 172.20.10.1
  250. O17 - HKLM\System\CS1\Services\Tcpip\..\{70267791-1318-455C-B279-F724C3CA5312}: DhcpNameServer = 192.168.1.1 192.168.1.1
  251. O17 - HKLM\System\CS2\Services\Tcpip\..\{1488A7A4-4516-4CE9-B90E-372E736FF2B4}: DhcpNameServer = 172.20.10.1
  252. O17 - HKLM\System\CS2\Services\Tcpip\..\{70267791-1318-455C-B279-F724C3CA5312}: DhcpNameServer = 192.168.1.1 192.168.1.1
  253. O17 - HKLM\System\CS2\Services\Tcpip\..\{E098E3DB-14EA-4B9C-B273-B44E98831E7B}: DhcpNameServer = 192.168.1.1 192.168.1.1
  254. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
  255. ~ Domain: Scanned in 00mn 00s
  256.  
  257.  
  258.  
  259. ---\\ Protocole additionnel (O18)
  260. O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
  261. O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
  262. ~ Protocole Additionnel: Scanned in 00mn 00s
  263.  
  264.  
  265.  
  266. ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
  267. O20 - Winlogon Notify: avldr . (.On-Access Anti-Malware Scanner Sync - On-Access Anti-Malware Scanner Sync.) -- C:\Windows\System32\avldr64.dll
  268. O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
  269. ~ Winlogon: Scanned in 00mn 00s
  270.  
  271.  
  272.  
  273. ---\\ Tâches planifiées en automatique (O39)
  274. [MD5.00000000000000000000000000000000] [APT] [{6B6D04BF-D29A-474E-88EC-C19A53994775}] (...) -- C:\Users\Romain\Downloads\win64_153318.exe (.not file.) [0]
  275. O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
  276. O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1064]
  277. O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1068]
  278. O39 - APT: - (..) -- C:\Windows\System32\Tasks\HPCeeScheduleForRomain [336]
  279. ~ Scheduled Task: 54 Legitimates Filtered in 00mn 00s
  280.  
  281.  
  282.  
  283. ---\\ HKCU & HKLM Software Keys
  284. [HKCU\Software\AnnyStudio]
  285. [HKLM\Software\UnifL]
  286. ~ Key Software: 332 Legitimates Filtered in 00mn 00s
  287.  
  288.  
  289.  
  290. ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
  291. O43 - CFD: 11/05/2014 - 23:47:57 - [] ----D C:\Program Files (x86)\SP55068
  292. O43 - CFD: 03/02/2014 - 21:45:12 - [] ----D C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
  293. O43 - CFD: 29/04/2014 - 21:18:13 - [] ----D C:\Users\Romain\AppData\Roaming\library_dir
  294. ~ Program Folder: 212 Legitimates Filtered in 00mn 00s
  295.  
  296.  
  297.  
  298. ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
  299. O44 - LFC:[MD5.64A0869F18560CD529120ADE00155C3E] - 11/05/2014 - 21:53:12 ---A- . (...) -- C:\Windows\System32\atipblup.dat [3917]
  300. O44 - LFC:[MD5.CFE52230DC51DDC1039FB5B67F301998] - 19/05/2014 - 06:37:31 ---A- . (...) -- C:\Windows\System32\Drivers\APPFLTR.CFG [1132]
  301. O44 - LFC:[MD5.CFE52230DC51DDC1039FB5B67F301998] - 19/05/2014 - 06:37:31 ---A- . (...) -- C:\Windows\System32\Drivers\APPFLTR.CFG.bck [1132]
  302. O44 - LFC:[MD5.3CE4D7E92B32A96D679E33E20653A1C7] - 19/05/2014 - 17:38:09 ---A- . (...) -- C:\Windows\System32\Drivers\APPFCONT.DAT [562712]
  303. O44 - LFC:[MD5.3CE4D7E92B32A96D679E33E20653A1C7] - 19/05/2014 - 17:38:09 ---A- . (...) -- C:\Windows\System32\Drivers\APPFCONT.DAT.bck [562712]
  304. ~ Files: 48 Legitimates Filtered in 00mn 00s
  305.  
  306.  
  307.  
  308. ---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
  309. O53 - SMSR:HKLM\...\startupreg\BoxSync [Key] . (.Box, Inc. - Box Sync.) -- c:\Program Files\Box\Box Sync\BoxSync.exe
  310. ~ SMSR Keys: 4 Legitimates Filtered in 00mn 00s
  311.  
  312.  
  313.  
  314. ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
  315. O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
  316. O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
  317. ~ MWPS: 16 Legitimates Filtered in 00mn 00s
  318.  
  319.  
  320.  
  321. ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
  322. O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
  323. ~ MWPE Keys: 12 Legitimates Filtered in 00mn 00s
  324.  
  325.  
  326.  
  327. ---\\ Liste des pilotes du système (SDL) (O58)
  328. O58 - SDL:25/01/2014 - 13:28:07 ---A- . (.Pas de propriétaire - COMFiltr.) -- C:\Windows\System32\Drivers\COMFiltr.sys [15928]
  329. O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
  330. O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
  331. O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
  332. O58 - SDL:06/03/2012 - 05:04:18 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt64.sys [536064]
  333. O58 - SDL:18/03/2013 - 16:51:08 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
  334. ~ Drivers: 90 Legitimates Filtered in 00mn 00s
  335.  
  336.  
  337.  
  338. ---\\ Liste des outils de désinfection (LATC) (O63)
  339. O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
  340. ~ ADS: Scanned in 00mn 00s
  341.  
  342.  
  343.  
  344. ---\\ Liste les services legacy du registre (LALS) (O64)
  345. O64 - Services: CurCS - 28/02/2012 - C:\Windows\System32\DRIVERS\igdpmd64.sys (intelkmd) .(.Intel Corporation - Intel Graphics Kernel Mode Driver.) - LEGACY_INTELKMD
  346. ~ Legacy: 86 Legitimates Filtered in 00mn 00s
  347.  
  348.  
  349.  
  350. ---\\ Menu de démarrage Internet (SMI) (O68)
  351. O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  352. O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  353. O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
  354. ~ Keys: Scanned in 00mn 00s
  355.  
  356.  
  357.  
  358. ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
  359. O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
  360. O69 - SBI: SearchScopes [HKCU] {C5A3B93B-F3CE-4C1A-A59E-250B33748D32} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr
  361. O69 - SBI: SearchScopes [HKCU] {D944BB61-2E34-4DBF-A683-47E505C587DC} - (eBay) - http://rover.ebay.com =>Toolbar.eBay
  362. ~ Keys: Scanned in 00mn 00s
  363.  
  364.  
  365.  
  366. ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
  367. C:\MinGW\msys\1.0\bin\ssh-keygen.exe =>.Crack,Keygen
  368. C:\MinGW\msys\1.0\bin\ssh-keygen.exe =>.Crack,Keygen
  369. ~ Files: Scanned in 00mn 12s
  370.  
  371.  
  372.  
  373. ---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
  374. O87 - FAEL: "{B6898DA0-5658-41CA-8449-9760F0375045}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Romain\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  375. O87 - FAEL: "{E0D80A65-42CD-41DB-8A42-FE135DE73820}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Romain\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
  376. ~ Firewall: 2 Legitimates Filtered in 00mn 01s
  377.  
  378.  
  379.  
  380. ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
  381. SS - | Demand 15/05/2014 257712 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
  382. SS - | Demand 10/03/2014 28768 | (BoxSyncUpdateService) . (.Box Inc..) - C:\Program Files\Box\Box Sync\SyncUpdaterService.exe
  383. SS - | Auto 01/02/2012 945440 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
  384. SS - | Demand 28/02/2012 276248 | (cphs) . (.Intel Corporation.) - C:\Windows\SysWow64\IntelCpHeciSvc.exe
  385. SS - | Auto 25/01/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  386. SS - | Demand 25/01/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  387. SS - | Demand 21/02/2014 641352 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
  388. SS - | Demand 10/05/2014 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
  389. SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
  390. SS - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
  391. SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
  392. SS - | Demand 25/02/2014 568512 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
  393. SR - | Auto 21/12/2013 65432 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  394. SR - | Auto 01/03/2012 235520 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
  395. SR - | Auto 12/02/2014 43336 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  396. SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
  397. SR - | Auto 10/07/1658 0 | (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe =>.EasyBits Software AS
  398. SR - | Auto 07/06/2013 1641768 | (FPLService) . (.HP.) - C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
  399. SR - | Auto 04/11/2013 92160 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
  400. SR - | Demand 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll (hpqcxs08) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
  401. SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll (hpqddsvc) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
  402. SR - | Demand 13/05/2013 1129760 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
  403. SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.dll (HPSLPSVC) . (.Hewlett-Packard Co..) - C:\Windows\System32\svchost.exe
  404. SR - | Auto 24/09/2012 31040 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
  405. SR - | Auto 01/04/2014 49464 | (HPSupportSolutionsFrameworkService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
  406. SR - | Auto 05/03/2012 35200 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
  407. SR - | Auto 21/11/2013 15720 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  408. SR - | Auto 02/02/2012 628448 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
  409. SR - | Auto 16/03/2012 162648 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  410. SR - | Auto 16/03/2012 276824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  411. SR - | Auto 19/11/2012 177440 | (Panda Software Controller) . (.Panda Security, S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsCtrls.exe
  412. SR - | Auto 21/09/2012 202016 | (PAVFNSVR) . (.Panda Security, S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PavFnSvr.exe
  413. SR - | Auto 04/02/2008 62768 | (PavPrSrv) . (.Panda Security, S.L..) - C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
  414. SR - | Auto 13/04/2011 313664 | (PAVSRV) . (.Panda Security, S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\pavsrvx86.exe
  415. SR - | Auto 26/11/2009 226560 | (PSHost) . (.Panda Security International.) - c:\program files (x86)\panda security\panda internet security 2014\firewall\PSHOST.exe
  416. SR - | Auto 19/06/2008 108288 | (PSIMSVC) . (.Panda Security S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PsImSvc.exe
  417. SR - | Auto 16/08/2010 28992 | (PskSvcRetail) . (.Panda Security, S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\PskSvc.exe
  418. SR - | Auto 06/03/2012 314880 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
  419. SR - | Auto 25/02/2014 173816 | (TPSrv) . (.Panda Security, S.L..) - C:\Program Files (x86)\Panda Security\Panda Internet Security 2014\TPSrvWow.exe
  420. SR - | Demand 07/01/2013 401856 | (TrueService) . (.AuthenTec, Inc..) - C:\Program Files\Common Files\AuthenTec\TrueService.exe
  421. SR - | Auto 16/03/2012 362840 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
  422. SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
  423. SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
  424. SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
  425. ~ Services: Scanned in 00mn 04s
  426.  
  427.  
  428.  
  429. ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
  430. Run by Romain at 19/05/2014 18:52:58
  431. ~ OS 64 not supported by MBR tool
  432. ~ MBR: 0 Legitimates Filtered in 00mn 00s
  433.  
  434.  
  435.  
  436. ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
  437. Written by ad13, http://ad13.geekstog
  438. Run by Romain at 19/05/2014 18:53:00
  439. ********* Dump file Name *********
  440. C:\PhysicalDisk0_MBR.bin
  441. ~ MBR: Scanned in 00mn 02s
  442.  
  443.  
  444.  
  445. ---\\ Scan Additionnel (O88)
  446. Database Version : 13029 - (19/05/2014)
  447. Clés trouvées (Keys found) : 0
  448. Valeurs trouvées (Values found) : 1
  449. Dossiers trouvés (Folders found) : 0
  450. Fichiers trouvés (Files found) : 0
  451.  
  452. ~ Additionnel Scan: 492251 Items scanned in 00mn 19s
  453.  
  454.  
  455.  
  456. ---\\ Récapitulatif des détections trouvées sur votre station
  457. ~ MSI: 0 link(s) detected in 00mn 00s
  458.  
  459.  
  460.  
  461. ~ 988 Legitimates filtered by white list
  462. End of the scan (461 lines in 01mn 03s)(2)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!