Sujet Précédent Sujet Suivant

Analyse ZHPDiag mardupc

Fermé
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 - 21 août 2011 à 18:42
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 - 21 août 2011 à 20:31
Bonjour,
1/
* Télécharge de AD-Remover sur ton Bureau.
http://www.teamxscript.org/adremoverTelechargement.html

/!\ Ferme toutes applications en cours /!\

- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

2/
Télécharge AdwCleaner (merci à Xplode)
Lance AdwCleaner
Clique sur le bouton [ Recherche ]
Patiente...
Poste le rapport qui apparait en fin de recherche.
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

@+




A voir également:

2 réponses

Réponse 1 / 2
mardupc Messages postés 15 Date d'inscription mardi 26 mai 2009 Statut Membre Dernière intervention 21 août 2011
21 août 2011 à 20:01
Rapport de ZHPDiag v1.28.1341 par Nicolas Coolman, Update du 17/08/2011
Run by Zohra at 21/08/2011 19:56:33
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18999

---\\ Windows Product Information
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : RJ34F
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 15 Model 104 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 892 MB (21% free)
System Restore: Activé (Enable)
System drive C: has 13 GB (23%) free of 56 GB

---\\ Logged in mode
~ Computer Name: PC-DE-ZOHRA
~ User Name: Zohra
~ All Users Names: Zohra, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Zohra\AppData\Roaming\
~ %Desktop% : C:\Users\Zohra\Desktop\
~ %Favorites% : C:\Users\Zohra\Favorites\
~ %LocalAppData% : C:\Users\Zohra\AppData\Local\
~ %StartMenu% : C:\Users\Zohra\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 13 Go of 56 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 44 Go of 55 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.21/07/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.5681261BF2572F8776E1344DCB090C0B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/12/2010 - 07:01:54.) -- C:\Windows\system32\wininet.dll [916480]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/07/2009 - 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.21/07/2009 - 07:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.21/07/2009 - 07:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
[MD5.95F5FF73B076576C41740F1A842B9B57] - (....) (.21/01/2008 - 09:33:40.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 03s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 18/4219
~ Mes musiques (My Musics) : 7/7 (Modified)
~ Mes Videos (My Videos) : 710/723
~ Mes Favoris (My Favorites) : 2/42
~ Mes Documents (My Documents) : 9/277
~ Mon Bureau (My Desktop) : 10/98
~ Menu demarrer (Programs) : 7/27
~ Scan Hidden Files in 00mn 19s



---\\ Processus lancés
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.3404]
[MD5.99C1D6B7C36C891EC099AA8D120185C4] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [4911104] [PID.3568]
[MD5.98888488D0E6DB0256E5E661BCD35EB6] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416] [PID.3584]
[MD5.DBC3E8226BE6FE67FAE94025C80FE907] - (.TOSHIBA CORPORATION - ConfigFree(TM) Task tray menu.) -- C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe [1056768] [PID.3608]
[MD5.7C98599DC1B7C7103A52B2C0BF462C56] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE [49152] [PID.3620]
[MD5.137962BA4B4B60A0E5F12D6C9DFA4C2F] - (.Chicony - traybar.) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [413696] [PID.3760]
[MD5.B0674AE101707D21F9E30484D6465704] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe [431456] [PID.3804]
[MD5.B50D6E98F87616444B7E3F8D190A5F09] - (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe [509816] [PID.3836]
[MD5.E9E5692F51D6032A1105C7BE27FC0BAE] - (.TOSHIBA Corporation - TOSHIBA Flash Cards.) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [712704] [PID.3844]
[MD5.3C6C546F303C1B956C6F5C436C97CB8F] - (.ALWIL Software - avast! Antivirus.) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe [2815192] [PID.3948]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.4016]
[MD5.137149B37E9C9DBDE30E4C40867252E4] - (.Pas de propriétaire - fr.) -- C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [430080] [PID.4028]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.4068]
[MD5.DD84FD291B2C324B8E6D6EF6B8643A69] - (...) -- C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe [4624384] [PID.3604]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.3000]
[MD5.09CFCEB5072C9FA0BFE0A551F6D5CE07] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [95528] [PID.2500]
[MD5.BE9A6C91999C1FB796F980C794E7DB9C] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [49152] [PID.4176]
[MD5.F064D3DA9BCEC02D9782D39446603DCA] - (.TOSHIBA CORPORATION - ConfigFree Switch Manager.) -- C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe [405504] [PID.4332]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.4876]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [53472] [PID.3724]
[MD5.5AB037B17F8A87D052F5A88E0D29A3C8] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638232] [PID.5848]
[MD5.461A87D7A4304BDA228CF1DBB86D3CE9] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.exe [243360] [PID.4416]
[MD5.ACC3C94C3E4705134FECB6A5EF1DA377] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [664576] [PID.1968]
[MD5.C7FBDD1ED42F82BFA35167A5C9803EA3] - (.Microsoft Corporation - PresentationFontCache.exe.) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904] [PID.]
[MD5.581B9BE9E92A0F3856CC85EC011EDC6F] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\Windows\system32\Ati2evxx.exe [610304] [PID.]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.]
[MD5.AE28BA1361D8040D8850F21CACFCCCE9] - (.ALWIL Software - avast! Service.) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384] [PID.]
[MD5.39E435C90C9C4F780FA0ED05CA3C3A1B] - (.Agere Systems - Agere Soft Modem Call Progress Service.) -- C:\Windows\system32\agrsmsvc.exe [9216] [PID.]
[MD5.596E452B5152EC9AFE8153D296459D2B] - (.TOSHIBA CORPORATION - Service of ConfigFree..) -- C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960] [PID.]
[MD5.B3041BDF1DD74D52BE5AB21776799874] - (.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\lxdvcoms.exe [594600] [PID.]
[MD5.E47F35A87FF0DA38DEF37A0EB0C2D2DF] - (.TOSHIBA Corporation - TOSHIBA Navi Support Service.) -- C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe [83312] [PID.]
[MD5.C5AC715B65B01788ABC22D10749DDDD8] - (.TOSHIBA Corporation - TDCSrv Application.) -- C:\Windows\system32\TODDSrv.exe [129632] [PID.]
[MD5.DA6903958CBDC091FFCBBCA70CCFF34C] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [431456] [PID.]
[MD5.22690DFFC7F2A18279A7A0489AA02BAC] - (.TOSHIBA Corporation - TosIPCSrv.exe.) -- c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [126976] [PID.]
[MD5.332D341D92B933600D41953B08360DFB] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152] [PID.]
[MD5.5A432A042DAE460ABE7199B758E8606C] - (.Microsoft Corporation - Office Source Engine.) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [145184] [PID.]
~ Scan Processes Running in 00mn 05s



---\\ Opera, Plugins,Démarrage,Recherche (P1,B0,B1)
B0 - SPO: operaprefs.ini [Zohra] Home URL=https://www.google.fr/?gws_rd=ssl
~ Scan Opera Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN:Firefox Plugin Navigator . (.BitTorrent, Inc. - BitTorrent Plugin 1.) -- C:\Program Files\Mozilla Firefox\Plugins\npbittorrent.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 1.5.0.52.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=0.8.6b] - (.VideoLAN Team - Version 0.8.6b, copyright 1996-2006 The VideoLAN Team<br><a href="http.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKUS\S-1-5-21-3190420659-2450760892-589418975-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\system32\ieframe.dll
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLi
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [StartCCC] . (...) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [topi] . (.TOSHIBA - TOSHIBA Online Product Information.) -- C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe
O4 - HKLM\..\Run: [Google Desktop Search] . (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O4 - HKLM\..\Run: [Desktop SMS] . (.Interactive Digital Media - Desktop SMS - German.) -- C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
O4 - HKLM\..\Run: [Camera Assistant Software] . (.Chicony - traybar.) -- C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
O4 - HKLM\..\Run: [TPwrMain] . (.TOSHIBA Corporation - TOSHIBA Power Saver.) -- C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
O4 - HKLM\..\Run: [SmoothView] . (.TOSHIBA Corporation - SmoothView.) -- C:\Program Files\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] . (.TOSHIBA Corporation - TOSHIBA Flash Cards.) -- C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [Toshiba Registration] . (.Toshiba - Vista Registration.) -- C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [Skytel] . (.Realtek Semiconductor Corp. - Realtek Voice Manager.) -- C:\Windows\Skytel.exe
O4 - HKLM\..\Run: [avast5] . (.ALWIL Software - avast! Antivirus.) -- C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKCU\..\Run: [TOSCDSPD] TOSCDSPD.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-3190420659-2450760892-589418975-1000\..\Run: [TOSCDSPD] TOSCDSPD.exe
O4 - HKUS\S-1-5-21-3190420659-2450760892-589418975-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-3190420659-2450760892-589418975-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Zohra\Desktop\Ad-Remover.lnk . (...) -- C:\Program Files\Ad-Remover\main.exe
O4 - Global Startup: C:\Users\Zohra\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Zohra\Desktop\Musique - Raccourci.lnk . (...) -- E:\Music
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files\BitTorrent\bittorrent.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Elements (H) - Raccourci.lnk . (...) -- H:\ (.not file.)
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk . (...) -- C:\Windows\Installer\{9011040C-6000-11D3-8CFE-0150048383C9}\wordicon.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\VDownloader.lnk . (.Vitzo.) -- C:\Program Files\VDOWNLOADER\VDownloader.exe
O4 - Global Startup: C:\Users\Zohra\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 01s



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} . (...) -- C:\Toshiba\Webshops\ebay.ico
O9 - Extra button: eBay - Achetez, Vendez - {8A918C1D-E123-4E36-B562-5C1519E434CE} . (...) -- C:\Toshiba\Webshops\amazon.ico
O9 - Extra button: eBay - Achetez, Vendez - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~3\OFFICE11\REFBARH.ICO
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Scan Winsock in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
~ Scan Objets ActiveX in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{6610C4D4-AD59-44B4-839E-CA39B00ADBDE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DA2F1948-0726-41BD-96C3-E46DF18182EA}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{6610C4D4-AD59-44B4-839E-CA39B00ADBDE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DA2F1948-0726-41BD-96C3-E46DF18182EA}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{6610C4D4-AD59-44B4-839E-CA39B00ADBDE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DA2F1948-0726-41BD-96C3-E46DF18182EA}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{6610C4D4-AD59-44B4-839E-CA39B00ADBDE}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{DA2F1948-0726-41BD-96C3-E46DF18182EA}: DhcpNameServer = 192.168.0.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.Google - Google Desktop.) - C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.dll
~ Scan AppInit DLL in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ Scan SSODL in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems - Agere Soft Modem Call Progress Service.) - C:\Windows\system32\agrsmsvc.exe
O23 - Service: (Ati External Event Utility) . (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.ALWIL Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ConfigFree Service (ConfigFree Service) . (.TOSHIBA CORPORATION - Service of ConfigFree..) - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: lxdv_device (lxdv_device) . (.Pas de propriétaire - Printer Communication System.) - C:\Windows\system32\lxdvcoms.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) . (.TOSHIBA Corporation - TOSHIBA Navi Support Service.) - C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) . (.TOSHIBA Corporation - TDCSrv Application.) - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) . (.TOSHIBA Corporation - TOSHIBA Power Saver.) - c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA SMART Log Service (TOSHIBA SMART Log Service) . (.TOSHIBA Corporation - TosIPCSrv.exe.) - c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) . (.Ulead Systems, Inc. - ULCDRSvr.) - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\Veoh Networks\Veoh\VeohClient.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{237A9A0F-F44B-424F-B87C-523ED7681976}] (...) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
~ Scan Scheduled Task in 00mn 05s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\system32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\system32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\system32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\system32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\system32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: (RtlProt) . (.Windows (R) Codename Longhorn DDK provider - Realtek Utility I/O Driver.) - C:\Windows\system32\DRIVERS\rtlprot.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\system32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
~ Scan Drivers in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: Activation Assistant for the 2007 Microsoft Office suites - (.Microsoft Corporation.) [HKLM] -- Activation Assistant for the 2007 Microsoft Office suites
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Illustrator 10 - (.Adobe Systems, Inc..) [HKLM] -- {412033BC-44CF-48D9-B813-4B835101F4D3}
O42 - Logiciel: Adobe Photoshop 7.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop 7.0
O42 - Logiciel: Adobe SVG Viewer 3.0 - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer
O42 - Logiciel: BitTorrent - (.BitTorrent, Inc.) [HKCU] -- BitTorrent
O42 - Logiciel: CCleaner (remove only) - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Camera Assistant Software for Toshiba - (.Chicony Electronics Co.,Ltd..) [HKLM] -- {37C866E4-AA67-4725-9E95-A39968DD7960}
O42 - Logiciel: Codeur Windows Media Série 9 - (.Pas de propriétaire.) [HKLM] -- Windows Media Encoder 9
O42 - Logiciel: DVD MovieFactory for TOSHIBA - (.Ulead Systems, Inc..) [HKLM] -- {F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}
O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM] -- {7B63B2922B174135AFC0E1377DD81EC2}
O42 - Logiciel: DivX Player - (.DivX, Inc..) [HKLM] -- {8ADFC4160D694100B5B8A22DE9DCABD9}
O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM] -- {B7050CBDB2504B34BC2A9CA0A692CC29}
O42 - Logiciel: Free Video Converter V 2.5 - (.Koyote Soft.) [HKLM] -- Free Video Converter_is1
O42 - Logiciel: Google Desktop - (.Google.) [HKLM] -- Google Desktop
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Manuels TOSHIBA - (.TOSHIBA.) [HKLM] -- {5B1DD5AA-FF34-4D6E-A912-CB46BB7378DC}
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: PDFCreator - (.Frank Heindörfer, Philip Chinery.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: REALTEK RTL8187B Wireless LAN Driver - (.Pas de propriétaire.) [HKLM] -- {895722FE-25FE-4854-95AC-B0C42F9DBEDA}
O42 - Logiciel: Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM] -- {DC24971E-1946-445D-8A82-CE685433FA7D}
O42 - Logiciel: Realtek WiFi Protected Setup Library - (.REALTEK Semiconductor Corp..) [HKLM] -- {02CA24DD-C8B0-4280-BE53-7862869C2EB1}
O42 - Logiciel: Réducteur de bruit du lecteur de CD/DVD - (.TOSHIBA.) [HKLM] -- {9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: Security Update for Windows Media Encoder (KB2447961) - (.Microsoft Corporation.) [HKLM] -- KB2447961
O42 - Logiciel: Security Update for Windows Media Encoder (KB954156) - (.Microsoft Corporation.) [HKLM] -- KB954156
O42 - Logiciel: Security Update for Windows Media Encoder (KB979332) - (.Microsoft Corporation.) [HKLM] -- KB979332
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics.) [HKLM] -- SynTPDeinstKey
O42 - Logiciel: TOSHIBA Assist - (.TOSHIBA.) [HKLM] -- {12B3A009-A080-4619-9A2A-C6DB151D8D67}
O42 - Logiciel: TOSHIBA DVD PLAYER - (.TOSHIBA Corporation.) [HKLM] -- {6C5F3BDC-0A1B-4436-A696-5939629D5C31}
O42 - Logiciel: TOSHIBA Extended Tiles for Windows Mobility Center - (.Toshiba.) [HKLM] -- InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}
O42 - Logiciel: TOSHIBA Face Recognition - (.TOSHIBA Corporation.) [HKLM] -- InstallShield_{C730E42C-935A-45BB-A0C5-37E5234D111B}
O42 - Logiciel: TOSHIBA Hardware Setup - (.Pas de propriétaire.) [HKLM] -- {2883F6F5-0509-43F3-868C-D50330DD9DD3}
O42 - Logiciel: TOSHIBA Software Modem - (.Agere Systems.) [HKLM] -- TOSHIBA Software Modem
O42 - Logiciel: TOSHIBA Supervisor Password - (.Pas de propriétaire.) [HKLM] -- {4B1E87C3-00DE-4898-8E39-E390AAEF2391}
O42 - Logiciel: TOSHIBA Value Added Package - (.TOSHIBA Corporation.) [HKLM] -- InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}
O42 - Logiciel: TRDCReminder - (.TOSHIBA.) [HKLM] -- InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}
O42 - Logiciel: TRORDCLauncher - (.TOSHIBA.) [HKLM] -- InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}
O42 - Logiciel: Toshiba Online Product Information - (.TOSHIBA.) [HKLM] -- {2290A680-4083-410A-ADCC-7092C67FC052}
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: VDownloader 2.9.462 - (.Vitzo Limited.) [HKLM] -- {A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1
O42 - Logiciel: VideoLAN VLC media player 0.8.6b - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime - (.Microsoft Corporation.) [HKLM] -- Visual Studio Tools for the Office system 3.0 Runtime
O42 - Logiciel: Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) - (.Microsoft Corporation.) [HKLM] -- {8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258
O42 - Logiciel: avast! Free Antivirus - (.Alwil Software.) [HKLM] -- avast5
O42 - Logiciel: myphotobook 3.5 - (.myphotobook.) [HKLM] -- myphotobook

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ALWIL Software]
[HKCU\Software\ATI Technologies Inc.]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Aurigma]
[HKCU\Software\AppDataLow\Software\DivXNetworks]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Big Fish Games]
[HKCU\Software\Bugsplat]
[HKCU\Software\CEC_CM_SW]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DivXNetworks]
[HKCU\Software\Gabest]
[HKCU\Software\Gestalt Games]
[HKCU\Software\Google]
[HKCU\Software\IDM]
[HKCU\Software\IE]
[HKCU\Software\IM Providers]
[HKCU\Software\ImageViewer]
[HKCU\Software\JavaSoft]
[HKCU\Software\JollyBear]
[HKCU\Software\Lexmark X5400 Series]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Lucent]
[HKCU\Software\Macromedia]
[HKCU\Software\Meridian93]
[HKCU\Software\Multi File Downloader]
[HKCU\Software\MultiStageTrayAgent]
[HKCU\Software\Nektra]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Opera Software]
[HKCU\Software\PDFCreator]
[HKCU\Software\Patchou]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Skype]
[HKCU\Software\Synaptics]
[HKCU\Software\TOSHIBA]
[HKCU\Software\TorrentAid]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Veoh]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKCU\Software\Zattoo Inc.]
[HKCU\Software\Zylom]
[HKCU\Software\unpacker]
[HKLM\Software\204]
[HKLM\Software\781]
[HKLM\Software\ABBYY]
[HKLM\Software\ALWIL Software]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Agere]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Big Fish Games]
[HKLM\Software\BitTorrent]
[HKLM\Software\Chicony Electronics Co.,Ltd.]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CompanyA]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\FreeCDRIP]
[HKLM\Software\Google]
[HKLM\Software\IDM]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Kodak]
[HKLM\Software\LexmarkInkjet]
[HKLM\Software\Licenses]
[HKLM\Software\Lucent]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek USB 2.0 Card Reader]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\RtWLan]
[HKLM\Software\SOFTWARE]
[HKLM\Software\SRS Labs]
[HKLM\Software\Samsung]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Sys Modules]
[HKLM\Software\TOSHIBA]
[HKLM\Software\Trad-FR]
[HKLM\Software\Ulead Systems]
[HKLM\Software\VDownloader]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\Waves Audio]
[HKLM\Software\Windows]
[HKLM\Software\Yahoo]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 25/02/2008 - 16:33:28 - [12683094] ----D- C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
O43 - CFD: 21/08/2011 - 19:06:42 - [136900301] ----D- C:\Program Files\Ad-Remover
O43 - CFD: 18/06/2011 - 15:11:50 - [385724122] ----D- C:\Program Files\Adobe
O43 - CFD: 23/05/2010 - 11:12:32 - [183570251] ----D- C:\Program Files\Alwil Software
O43 - CFD: 22/02/2008 - 11:45:42 - [14403732] ----D- C:\Program Files\ATI
O43 - CFD: 22/02/2008 - 11:48:46 - [127028168] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 17/07/2009 - 15:28:14 - [1045760] ----D- C:\Program Files\BitTorrent
O43 - CFD: 07/06/2008 - 09:25:04 - [65057094] ----D- C:\Program Files\Camera Assistant Software for Toshiba
O43 - CFD: 23/11/2009 - 03:13:34 - [2761904] ----D- C:\Program Files\CCleaner
O43 - CFD: 11/06/2011 - 13:50:48 - [775905260] ----D- C:\Program Files\Common Files
O43 - CFD: 23/11/2009 - 03:27:22 - [20120481] ----D- C:\Program Files\DivX
O43 - CFD: 26/02/2010 - 01:45:12 - [12956628] ----D- C:\Program Files\Free Video Converter
O43 - CFD: 23/11/2009 - 03:27:24 - [18394625] ----D- C:\Program Files\Google
O43 - CFD: 22/02/2008 - 12:34:06 - [15909978] ----D- C:\Program Files\IDM
O43 - CFD: 30/03/2011 - 23:52:16 - [145008781] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 16/12/2010 - 19:54:46 - [5575368] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 22/02/2008 - 12:18:22 - [23151528] ----D- C:\Program Files\InterVideo
O43 - CFD: 31/07/2011 - 23:14:44 - [172228036] ----D- C:\Program Files\Java
O43 - CFD: 24/07/2009 - 21:04:34 - [121856] ----D- C:\Program Files\Kodak
O43 - CFD: 07/06/2008 - 09:41:22 - [378121] ----D- C:\Program Files\ltmoh
O43 - CFD: 30/08/2010 - 22:34:18 - [0] ----D- C:\Program Files\MarkAny
O43 - CFD: 21/11/2010 - 21:15:12 - [14864648] ----D- C:\Program Files\Messenger Plus! Live
O43 - CFD: 26/05/2010 - 14:49:02 - [752723] ----D- C:\Program Files\Microsoft
O43 - CFD: 02/11/2006 - 14:37:36 - [93446071] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 08/02/2010 - 23:50:58 - [315777843] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 01/10/2009 - 14:01:18 - [1559148] ----D- C:\Program Files\Microsoft Office Outlook Connector
O43 - CFD: 16/12/2010 - 04:12:14 - [144677302] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 26/06/2010 - 03:05:34 - [8352099] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 12/08/2010 - 03:29:08 - [99342446] ----D- C:\Program Files\Movie Maker
O43 - CFD: 09/12/2009 - 20:49:22 - [597383] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 02/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 26/11/2009 - 11:10:32 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 22/02/2008 - 12:33:44 - [18592497] ----D- C:\Program Files\myphotobook
O43 - CFD: 13/07/2011 - 01:16:02 - [209] ----D- C:\Program Files\Opera
O43 - CFD: 30/03/2011 - 23:47:10 - [0] ----D- C:\Program Files\PC Connectivity Solution
O43 - CFD: 04/12/2008 - 15:57:10 - [19638058] ----D- C:\Program Files\PDFCreator
O43 - CFD: 20/02/2009 - 14:54:38 - [4509306] ----D- C:\Program Files\Picasa2
O43 - CFD: 23/11/2009 - 03:27:50 - [81682603] ----D- C:\Program Files\QuickTime
O43 - CFD: 07/06/2008 - 09:42:52 - [22612430] ----D- C:\Program Files\Realtek
O43 - CFD: 07/06/2008 - 09:41:26 - [850757] ----D- C:\Program Files\REALTEK RTL8187B Wireless LAN Driver
O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 30/03/2011 - 23:51:30 - [2103936] ----D- C:\Program Files\Samsung
O43 - CFD: 21/08/2010 - 22:24:46 - [14333105] ----D- C:\Program Files\SFR
O43 - CFD: 22/02/2008 - 11:57:20 - [14542283] ----D- C:\Program Files\Synaptics
O43 - CFD: 07/06/2008 - 09:31:28 - [254045306] ----D- C:\Program Files\TOSHIBA
O43 - CFD: 22/02/2008 - 12:14:30 - [421733795] ----D- C:\Program Files\Ulead Systems
O43 - CFD: 26/08/2010 - 22:52:50 - [16836048] ----D- C:\Program Files\VDOWNLOADER
O43 - CFD: 01/12/2008 - 21:52:42 - [32315401] ----D- C:\Program Files\VideoLAN
O43 - CFD: 04/11/2009 - 16:13:10 - [1547264] ----D- C:\Program Files\WinAVI MP4 Converter
O43 - CFD: 23/07/2009 - 10:54:02 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 23/07/2009 - 10:54:02 - [2737152] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 23/07/2009 - 10:53:56 - [4490624] ----D- C:\Program Files\Windows Defender
O43 - CFD: 23/07/2009 - 10:54:02 - [7084664] ----D- C:\Program Files\Windows Journal
O43 - CFD: 21/08/2011 - 12:54:12 - [2969731] ----D- C:\Program Files\Windows Live
O43 - CFD: 02/03/2009 - 21:43:08 - [245112] ----D- C:\Program Files\Windows Live SkyDrive
O43 - CFD: 16/12/2010 - 19:54:48 - [9116344] ----D- C:\Program Files\Windows Mail
O43 - CFD: 22/02/2008 - 12:17:54 - [14301199] ----D- C:\Program Files\Windows Media Components
O43 - CFD: 14/10/2010 - 19:25:10 - [4498121] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 23/11/2009 - 03:28:34 - [7957544] ----D- C:\Program Files\Windows NT
O43 - CFD: 23/07/2009 - 10:54:00 - [13528738] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 29/10/2009 - 19:07:42 - [134144] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 23/07/2009 - 10:54:02 - [6887473] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 21/08/2011 - 19:57:36 - [4008012] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 18/06/2011 - 15:12:06 - [69977744] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 21/07/2009 - 11:25:56 - [86016] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 19/06/2009 - 14:45:54 - [8024284] ----D- C:\Program Files\Common Files\DivX Shared
O43 - CFD: 22/02/2008 - 12:18:20 - [6755169] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 31/07/2011 - 23:17:26 - [35978333] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 30/08/2010 - 22:32:52 - [384147696] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 19/06/2009 - 14:46:26 - [4085400] ----D- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 30/03/2011 - 23:47:04 - [76665] ----D- C:\Program Files\Common Files\Samsung
O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 01/10/2009 - 14:01:18 - [27697315] ----D- C:\Program Files\Common Files\System
O43 - CFD: 22/02/2008 - 12:20:52 - [1374029] ----D- C:\Program Files\Common Files\Toshiba Shared
O43 - CFD: 22/02/2008 - 12:18:08 - [21678602] ----D- C:\Program Files\Common Files\Ulead Systems
O43 - CFD: 02/03/2009 - 20:42:18 - [137740264] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 23/11/2009 - 03:27:22 - [34234402] -SH-D- C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 18/06/2011 - 15:12:00 - [764] ----D- C:\ProgramData\Adobe
O43 - CFD: 23/05/2010 - 11:06:24 - [97455268] ----D- C:\ProgramData\Alwil Software
O43 - CFD: 07/09/2008 - 01:03:18 - [29790208] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 22/02/2008 - 11:56:12 - [205] ----D- C:\ProgramData\ATI
O43 - CFD: 09/04/2010 - 10:18:24 - [0] ----D- C:\ProgramData\boost_interprocess
O43 - CFD: 07/06/2008 - 09:33:52 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 07/06/2008 - 09:33:52 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 07/09/2008 - 01:01:26 - [14402] ----D- C:\ProgramData\Google
O43 - CFD: 30/08/2009 - 14:10:34 - [1123] ----D- C:\ProgramData\JollyBear
O43 - CFD: 24/07/2009 - 21:04:46 - [327] ----D- C:\ProgramData\Kodak
O43 - CFD: 11/03/2009 - 10:02:16 - [7614] ----D- C:\ProgramData\McAfee
O43 - CFD: 07/06/2008 - 09:33:52 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 19/08/2009 - 01:49:18 - [76997814] ----D- C:\ProgramData\Meridian93
O43 - CFD: 05/06/2010 - 00:52:32 - [210121076] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 08/02/2010 - 23:52:20 - [57040] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 07/06/2008 - 09:33:52 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 30/03/2011 - 23:47:00 - [1072424] ----D- C:\ProgramData\Samsung
O43 - CFD: 11/06/2011 - 13:50:46 - [24210597] ----D- C:\ProgramData\Skype
O43 - CFD: 29/08/2009 - 13:22:58 - [0] ----D- C:\ProgramData\SpinTop Games
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 31/03/2010 - 11:39:12 - [295] ----D- C:\ProgramData\Sun
O43 - CFD: 25/12/2009 - 18:34:22 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 22/02/2008 - 12:20:02 - [1024] ----D- C:\ProgramData\Toshiba
O43 - CFD: 07/06/2008 - 09:38:24 - [739] ----D- C:\ProgramData\ToshibaEurope
O43 - CFD: 22/02/2008 - 12:17:22 - [220835] ----D- C:\ProgramData\Ulead Systems
O43 - CFD: 15/06/2008 - 16:59:34 - [0] ----D- C:\ProgramData\WindowsSearch
O43 - CFD: 08/06/2008 - 01:01:10 - [394090] ----D- C:\ProgramData\WLInstaller
O43 - CFD: 06/08/2009 - 16:06:44 - [1571] ----D- C:\ProgramData\Yahoo!
O43 - CFD: 28/08/2009 - 00:58:00 - [0] ----D- C:\ProgramData\Zylom
O43 - CFD: 25/02/2008 - 16:33:30 - [6904815] ----D- C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
O43 - CFD: 20/05/2009 - 02:45:00 - [8341906] ----D- C:\Users\Zohra\AppData\Roaming\Adobe
O43 - CFD: 08/06/2008 - 22:59:08 - [134762] ----D- C:\Users\Zohra\AppData\Roaming\Apple Computer
O43 - CFD: 07/06/2008 - 09:45:08 - [0] ----D- C:\Users\Zohra\AppData\Roaming\ATI
O43 - CFD: 30/08/2009 - 01:00:12 - [14363] ----D- C:\Users\Zohra\AppData\Roaming\BigFishv1005
O43 - CFD: 01/07/2011 - 00:00:36 - [843894] ----D- C:\Users\Zohra\AppData\Roaming\BitTorrent
O43 - CFD: 25/12/2009 - 00:34:54 - [51762121] ----D- C:\Users\Zohra\AppData\Roaming\Dekovir
O43 - CFD: 18/02/2010 - 15:14:50 - [16440] ----D- C:\Users\Zohra\AppData\Roaming\DivX
O43 - CFD: 17/05/2009 - 15:34:06 - [695] ----D- C:\Users\Zohra\AppData\Roaming\dvdcss
O43 - CFD: 26/02/2010 - 01:45:22 - [769] ----D- C:\Users\Zohra\AppData\Roaming\FreeVideoConverter
O43 - CFD: 20/02/2009 - 14:53:52 - [0] ----D- C:\Users\Zohra\AppData\Roaming\Google
O43 - CFD: 07/06/2008 - 09:43:22 - [0] ----D- C:\Users\Zohra\AppData\Roaming\Identities
O43 - CFD: 07/06/2008 - 09:41:24 - [0] ----D- C:\Users\Zohra\AppData\Roaming\InstallShield
O43 - CFD: 08/06/2008 - 01:15:46 - [509] ----D- C:\Users\Zohra\AppData\Roaming\Macromedia
O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\Zohra\AppData\Roaming\Media Center Programs
O43 - CFD: 19/08/2009 - 01:48:26 - [89360] ----D- C:\Users\Zohra\AppData\Roaming\Meridian93
O43 - CFD: 09/12/2009 - 20:49:56 - [23246944] -S--D- C:\Users\Zohra\AppData\Roaming\Microsoft
O43 - CFD: 14/09/2010 - 01:11:24 - [1259520] ----D- C:\Users\Zohra\AppData\Roaming\MPMAN
O43 - CFD: 08/04/2010 - 00:19:08 - [58] ----D- C:\Users\Zohra\AppData\Roaming\Multi File Downloader
O43 - CFD: 08/06/2008 - 02:23:20 - [16889376] ----D- C:\Users\Zohra\AppData\Roaming\myphotobook
O43 - CFD: 09/12/2009 - 16:32:00 - [2237719] ----D- C:\Users\Zohra\AppData\Roaming\Opera
O43 - CFD: 30/03/2011 - 23:46:58 - [0] ----D- C:\Users\Zohra\AppData\Roaming\Samsung
O43 - CFD: 18/05/2009 - 15:12:58 - [4308] ----D- C:\Users\Zohra\AppData\Roaming\Shareaza
O43 - CFD: 23/12/2010 - 22:12:28 - [34880] ----D- C:\Users\Zohra\AppData\Roaming\skypePM
O43 - CFD: 13/10/2008 - 23:20:24 - [835] ----D- C:\Users\Zohra\AppData\Roaming\Toshiba
O43 - CFD: 23/02/2010 - 01:24:04 - [3207168] ----D- C:\Users\Zohra\AppData\Roaming\U3
O43 - CFD: 11/06/2009 - 17:13:14 - [816379] ----D- C:\Users\Zohra\AppData\Roaming\uTorrent
O43 - CFD: 01/08/2010 - 23:04:20 - [0] ----D- C:\Users\Zohra\AppData\Roaming\VDownloader
O43 - CFD: 05/07/2009 - 23:29:30 - [788143] ----D- C:\Users\Zohra\AppData\Roaming\vlc
O43 - CFD: 14/11/2009 - 10:18:38 - [16674] ----D- C:\Users\Zohra\AppData\Roaming\X5400 Series
O43 - CFD: 06/08/2009 - 16:06:26 - [0] ----D- C:\Users\Zohra\AppData\Roaming\Yahoo!
O43 - CFD: 18/06/2011 - 15:10:10 - [381502] ----D- C:\Users\Zohra\AppData\Local\Adobe
O43 - CFD: 08/06/2008 - 22:56:24 - [0] ----D- C:\Users\Zohra\AppData\Local\Apple
O43 - CFD: 09/06/2008 - 13:34:18 - [83304] ----D- C:\Users\Zohra\AppData\Local\Apple Computer
O43 - CFD: 07/06/2008 - 09:37:50 - [0] -SH-D- C:\Users\Zohra\AppData\Local\Application Data
O43 - CFD: 07/06/2008 - 09:45:08 - [38071] ----D- C:\Users\Zohra\AppData\Local\ATI
O43 - CFD: 20/02/2009 - 14:54:34 - [1879616036] ----D- C:\Users\Zohra\AppData\Local\Google
O43 - CFD: 07/06/2008 - 09:37:50 - [0] -SH-D- C:\Users\Zohra\AppData\Local\Historique
O43 - CFD: 30/08/2009 - 14:10:34 - [0] ----D- C:\Users\Zohra\AppData\Local\JollyBear
O43 - CFD: 24/08/2008 - 18:38:26 - [0] ----D- C:\Users\Zohra\AppData\Local\KodakGallery
O43 - CFD: 11/10/2010 - 20:17:34 - [848104004] ----D- C:\Users\Zohra\AppData\Local\Microsoft
O43 - CFD: 05/09/2009 - 00:20:50 - [1732085] ----D- C:\Users\Zohra\AppData\Local\Microsoft Games
O43 - CFD: 11/01/2009 - 20:11:34 - [0] ----D- C:\Users\Zohra\AppData\Local\Microsoft Help
O43 - CFD: 22/06/2009 - 01:22:50 - [0] ----D- C:\Users\Zohra\AppData\Local\Mozilla
O43 - CFD: 25/12/2009 - 17:39:02 - [118994704] ----D- C:\Users\Zohra\AppData\Local\Nick Chase A Detective Story
O43 - CFD: 09/12/2009 - 16:32:04 - [32486155] ----D- C:\Users\Zohra\AppData\Local\Opera
O43 - CFD: 23/12/2009 - 21:51:12 - [43040] ----D- C:\Users\Zohra\AppData\Local\Ph03nixNewMedia
O43 - CFD: 08/06/2008 - 21:34:34 - [5698707] ----D- C:\Users\Zohra\AppData\Local\Shareaza
O43 - CFD: 21/08/2011 - 19:51:12 - [296640043] ----D- C:\Users\Zohra\AppData\Local\Temp
O43 - CFD: 07/06/2008 - 09:37:50 - [0] -SH-D- C:\Users\Zohra\AppData\Local\Temporary Internet Files
O43 - CFD: 07/06/2008 - 09:44:48 - [0] ----D- C:\Users\Zohra\AppData\Local\Toshiba
O43 - CFD: 01/08/2010 - 23:54:52 - [1594] ----D- C:\Users\Zohra\AppData\Local\vdownloader
O43 - CFD: 08/06/2008 - 02:23:12 - [460113] ----D- C:\Users\Zohra\AppData\Local\VirtualStore
O43 - CFD: 06/08/2009 - 16:06:02 - [0] ----D- C:\Users\Zohra\AppData\Local\Yahoo
~ Scan Program Folder in 00mn 56s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.2CBC91B1B5DA1BE2B80D9CF017D1636B] - 21/08/2011 - 18:30:42 ---A- . (...) -- C:\AdwCleaner[R3].txt [581]
O44 - LFC:[MD5.017593DF96CCE839A32266A4A11F7395] - 21/08/2011 - 18:27:18 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1125309]
O44 - LFC:[MD5.DB4C4724FAB50EA0C9DE7DFD5FF10E43] - 21/08/2011 - 18:1
0
Réponse 2 / 2
Fish66 Messages postés 17505 Date d'inscription dimanche 24 juillet 2011 Statut Contributeur sécurité Dernière intervention 16 juin 2021 1 318
21 août 2011 à 20:31
Re,

Héberge le rpport stp comme suit :
* Rends toi sur http://pjjoint.malekal.com/
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux heberger et clique sur Ouvrir
*Clique sur le bouton Envoyer
* Un message de confirmation s'affiche, copie le lien dans ta prochaine réponse.

0

Discussions similaires

a quoi sert vraiment ce logiciel ZHPDIAG
Utilisateur anonyme -
Utilisateur anonyme -

7 réponses
échec de l'analyse antivirus
StalkerShadows -
ness -

19 réponses
Echec analyse antivirus lors de téléchargement
mathelp_3935 -
Malekal_morte- -

19 réponses
" Échec de l'analyse antivirus " la solution.
bazfile -
bazfile -

0 réponse
Échec de l'analyse anti virus.
alice1414 -
bazfile -

3 réponses