Problème avec un virus
Fermé
squall0280
Messages postés
20
Date d'inscription
mercredi 10 mai 2006
Statut
Membre
Dernière intervention
13 janvier 2012
-
4 sept. 2011 à 00:28
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 - 4 sept. 2011 à 00:34
2011N2 Messages postés 13352 Date d'inscription samedi 29 janvier 2011 Statut Contributeur sécurité Dernière intervention 24 décembre 2016 - 4 sept. 2011 à 00:34
Bonsoir,
J'ai attrapé un virus recemment et je n'arrive pas à le supprimer complétement. J'ai vraiment besoin d'aide. J'ai un asus N53s avec windows seven.
Merci d'avance,
Cordialement,
Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011
Run by Quentin at 04/09/2011 00:09:48
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v5.0 (Defaut)
---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4001 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 146 GB (52%) free of 279 GB
---\\ Logged in mode
~ Computer Name: QUENTIN-PC
~ User Name: Quentin
~ All Users Names: UpdatusUser, Quentin, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Quentin\AppData\Roaming\
~ %Desktop% : C:\Users\Quentin\Desktop\
~ %Favorites% : C:\Users\Quentin\Favorites\
~ %LocalAppData% : C:\Users\Quentin\AppData\Local\
~ %StartMenu% : C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 146 Go of 279 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 394 Go of 394 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 833 Go of 932 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.26/08/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.0732B49B250E306F7A6591029AF9885B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/08/2011 - 06:36:16.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.18/02/2011 - 14:25:32.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.01/09/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/02/2011 - 14:27:28.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.19/02/2011 - 05:29:01.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 2/8
~ Mes Documents (My Documents) : 1/2
~ Menu demarrer (Programs) : 7/38
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.5BB1F77C8AF725A15EC9366498D275BB] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992] [PID.3040]
[MD5.BC3DA234CDA880578526DAB028F40268] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792] [PID.2300]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.1984]
[MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.3560]
[MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [PID.3816]
[MD5.27870BDDDE2BB30C134247512D8A6156] - (.PCTuto - autoupdater.) -- C:\Users\Quentin\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe [663168] [PID.3916]
[MD5.7EE22E13DEC8A6D18F4643C1EA34B0F0] - (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [984400] [PID.3248]
[MD5.79A3B950988F8D2B81906D0C0473158B] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624] [PID.3264]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016] [PID.3272]
[MD5.FD22B00049F775E952371E9C3DAC631B] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536] [PID.3292]
[MD5.7E7C0EB0F46307C18A5C46C346F549D4] - (...) -- C:\ExpressGateUtil\VAWinAgent.exe [21504] [PID.3164]
[MD5.22EC0852DBF032A93D8DA697065FA189] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336] [PID.3484]
[MD5.C252C2303FE79F201E64F269FEFF0DDB] - (.cyberlink - brs.) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe [75048] [PID.3492]
[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.3476]
[MD5.AF67EA73906F7C70888C39F09BA81CB7] - (.CyberLink - MediaEspresso DeviceDetector.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [965728] [PID.4496]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.1164]
[MD5.4486AD32BB05628967695FCA1BADD46E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.1084]
[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [669696] [PID.3408]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.]
[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.]
[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [136360] [PID.]
[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [269480] [PID.]
[MD5.0ADF410187B71C9B855721C8D59CEC7A] - (...) -- C:\ExpressGateUtil\VAWinService.exe [77312] [PID.]
[MD5.01F61F0F2B551EAEE2C12619B13B93D2] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [166528] [PID.]
[MD5.616F6E52CAE254727A886BA8EDA1BEEA] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.]
[MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe [2488888] [PID.]
[MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113208] [PID.]
[MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe [174648] [PID.]
[MD5.7F32D4C47A50E7223491E8FB9359907D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.]
[MD5.741688E5A65CC43567BCC329AE130075] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2009704] [PID.]
[MD5.2C16648A12999AE69A9EBF41974B0BA2] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.]
~ Scan Processes Running in 00mn 01s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R0 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Trend Micro NSC BHO [64Bits] - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll
O2 - BHO: Partner BHO Class [64Bits] - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} . (.Google Inc. - Partner application.) -- C:\ProgramData\Partner\Partner64.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll
O2 - BHO: TmBpIeBHO [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll
O2 - BHO: Trend Micro NSC BHO [64Bits] - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: Partner BHO Class [64Bits] - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} . (.Google Inc. - Partner application.) -- C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: TmBpIeBHO [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Google Dictionary Compression sdch [64Bits] - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} . (.Google Inc. - Fast Search.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [VizorHtmlDialog.exe] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exeial.html DEF DEF DEF (.not file.)
O4 - HKLM\..\Run: [Trend Micro Client Framework] . (.Trend Micro Inc. - Trend Micro Client Session Agent Monitor.) -- C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
O4 - HKLM\..\Run: [Trend Micro Titanium] . (.Trend Micro Inc. - VizorShortCut Dynamic Link Library.) -- C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ETDWare] . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [IntelTBRunOnce] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\system32\wscript.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe
O4 - HKLM\..\Wow6432Node\Run: [Nuance PDF Reader-reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\APRP.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [FLxHCIm] . (.Windows (R) Win 7 DDK provider - Fresco Logic.) -- C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe
O4 - HKLM\..\Wow6432Node\Run: [SonicMasterTray] . (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Wow6432Node\Run: [Wireless Console 3] . (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Wow6432Node\Run: [VAWinAgent] . (...) -- C:\ExpressGateUtil\VAWinAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [BDRegion] . (.cyberlink - brs.) -- C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [PCTuto] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [autoupdater] . (.PCTuto - autoupdater.) -- C:\Users\Quentin\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
O17 - HKLM\System\CS1\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
O17 - HKLM\System\CS2\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tmbp [64Bits] - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll
O18 - Handler: tmpx [64Bits] - {0E526CB5-7446-41D1-A403-19BFE95E8C23} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA Compatible NVIDIA shim initializatio.) - C:\Windows\system32\nvinitx.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: CyberLink Product - 2011/08/04 12:11:39 (CLKMSVC10_38F51D56) . (.CyberLink - CyberLink KM Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.5.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: TiMiniService (TiMiniService) . (.Trend Micro Inc. - Titanium mini-service.) - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.3ACABCA6A8DB71B7F19C8A7523AE1846] [APT] [ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
[MD5.47BBD40D59B4242866E5AB7CE1F4F493] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\P4G\BatteryLife.exe
[MD5.937136835AEF6B4382D7DF6C5FC099EE] [APT] [ASUS Patch 10430001] (...) -- C:\Windows\AsPatch10430001.exe
[MD5.BC3DA234CDA880578526DAB028F40268] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
[MD5.5BB1F77C8AF725A15EC9366498D275BB] [APT] [ATKOSD2] (.ASUS.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
[MD5.AF67EA73906F7C70888C39F09BA81CB7] [APT] [DeviceDetector] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
~ Scan Scheduled Task in 00mn 05s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (tmtdi) . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - C:\Windows\system32\DRIVERS\tmtdi.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage
O42 - Logiciel: ASUS_Screensaver - (.Pas de propriétaire.) [HKLM] -- ASUS_Screensaver
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM] -- InstallShield_{878CADF7-5BD6-4A29-A6F4-AC51C0CE8068}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM] -- Asus Vibe2.0
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Bookworm Deluxe - (.Oberon Media Inc..) [HKLM] -- Bookworm Deluxe
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Cooking Dash - (.Oberon Media Inc..) [HKLM] -- Cooking Dash
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: ExpressGate Cloud - (.Asus.) [HKLM] -- InstallShield_{499DED08-6FA8-4749-8E94-8526CC9D1CA8}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM] -- {E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Governor of Poker - (.Oberon Media Inc..) [HKLM] -- Governor of Poker
O42 - Logiciel: Hotel Dash Suite Success - (.Oberon Media Inc..) [HKLM] -- Hotel Dash Suite Success
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Jewel Quest 3 - (.Oberon Media Inc..) [HKLM] -- Jewel Quest 3
O42 - Logiciel: Luxor 3 - (.Oberon Media Inc..) [HKLM] -- Luxor 3
O42 - Logiciel: Mahjongg dimensions - (.Oberon Media Inc..) [HKLM] -- Mahjongg dimensions
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 5.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0 (x86 fr)
O42 - Logiciel: NVIDIA Graphics Driver 267.54 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Plants vs Zombies - (.Oberon Media Inc..) [HKLM] -- Plants vs Zombies
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Trend Micro Titanium Internet Security - (.Trend Micro Inc..) [HKLM] -- {ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}
O42 - Logiciel: UpdatePCTuto 2.0 - (.PCtuto.) [HKLM] -- UpdatePCTuto_is1
O42 - Logiciel: Windows Live Essentials - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: World of Goo - (.Oberon Media Inc..) [HKLM] -- World of Goo
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\ATK0100]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avira]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\ECAREME]
[HKCU\Software\Elantech]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\PCTuto]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\TrendMicro]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Wow6432Node]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AsLdr]
[HKLM\Software\Avira]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\ECAREME]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Lake]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\PCTuto]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\ScanSoft]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideACE]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Zeon]
[HKLM\Software\mozilla.org]
[HKLM\Software\syncables]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/08/2011 - 21:01:12 - [1517829] ----D- C:\Program Files\ASUS
O43 - CFD: 01/09/2011 - 16:31:56 - [8580520] ----D- C:\Program Files\CCleaner
O43 - CFD: 04/08/2011 - 20:49:36 - [181048454] ----D- C:\Program Files\Common Files
O43 - CFD: 11/04/2011 - 14:04:48 - [91075092] ----D- C:\Program Files\DVD Maker
O43 - CFD: 04/08/2011 - 20:58:34 - [11876568] ----D- C:\Program Files\Elantech
O43 - CFD: 04/08/2011 - 20:56:56 - [5712394] ----D- C:\Program Files\Fresco Logic Inc
O43 - CFD: 13/04/2011 - 04:33:20 - [318960] ----D- C:\Program Files\Google
O43 - CFD: 04/08/2011 - 21:01:24 - [12214065] ----D- C:\Program Files\Intel
O43 - CFD: 30/08/2011 - 17:24:36 - [8496573] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 09:45:56 - [155587122] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 04/08/2011 - 20:53:42 - [233969422] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 04/08/2011 - 21:05:40 - [13881659] ----D- C:\Program Files\P4G
O43 - CFD: 04/08/2011 - 20:59:14 - [18415536] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [59390633] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 13/04/2011 - 04:51:18 - [287585219] ----D- C:\Program Files\Trend Micro
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 11/04/2011 - 14:04:46 - [5159424] ----D- C:\Program Files\Windows Defender
O43 - CFD: 11/04/2011 - 14:04:46 - [10680440] ----D- C:\Program Files\Windows Journal
O43 - CFD: 13/04/2011 - 04:38:28 - [9758969] ----D- C:\Program Files\Windows Live
O43 - CFD: 11/04/2011 - 14:04:48 - [12603904] ----D- C:\Program Files\Windows Mail
O43 - CFD: 11/04/2011 - 14:04:48 - [9214381] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [15442100] ----D- C:\Program Files\Windows NT
O43 - CFD: 11/04/2011 - 14:04:46 - [6143768] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 22:09:10 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 11/04/2011 - 14:04:48 - [21952790] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 04/08/2011 - 20:49:36 - [15717214] ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 13/04/2011 - 04:36:48 - [149404839] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [621568] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 11/04/2011 - 14:04:46 - [15302131] ----D- C:\Program Files\Common Files\System
O43 - CFD: 04/08/2011 - 20:58:42 - [495] ----D- C:\ProgramData\AmUStor
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 01/09/2011 - 16:46:46 - [54326243] ----D- C:\ProgramData\Avira
O43 - CFD: 25/08/2011 - 17:23:08 - [4741987] ----D- C:\ProgramData\ChangeFolderView
O43 - CFD: 04/08/2011 - 21:14:34 - [34445] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 13/04/2011 - 04:33:04 - [19852288] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 13/04/2011 - 04:33:06 - [3991858] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 25/08/2011 - 17:20:08 - [1098813] ----D- C:\ProgramData\FolderView
O43 - CFD: 13/04/2011 - 04:33:22 - [12707] ----D- C:\ProgramData\Google
O43 - CFD: 04/08/2011 - 20:51:10 - [1902] ----D- C:\ProgramData\Intel
O43 - CFD: 03/09/2011 - 12:45:00 - [7324202] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 25/08/2011 - 17:20:42 - [9246584743] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 13/04/2011 - 04:33:08 - [471] ----D- C:\ProgramData\Nuance
O43 - CFD: 04/08/2011 - 20:55:06 - [3226252] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 04/08/2011 - 20:53:14 - [775433] ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 13/04/2011 - 04:48:46 - [28941574] ----D- C:\ProgramData\OberonGameConsole
O43 - CFD: 04/08/2011 - 21:00:48 - [1862] ----D- C:\ProgramData\P4G
O43 - CFD: 13/04/2011 - 04:33:34 - [1516372] ----D- C:\ProgramData\Partner
O43 - CFD: 13/04/2011 - 04:33:06 - [1275444] ----D- C:\ProgramData\ScanSoft
O43 - CFD: 04/08/2011 - 20:59:16 - [8886] ----D- C:\ProgramData\SonicFocus
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 04/08/2011 - 21:14:14 - [323868] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 01/09/2011 - 16:33:38 - [2117682] ----D- C:\ProgramData\Trend Micro
O43 - CFD: 01/09/2011 - 10:03:58 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Adobe
O43 - CFD: 25/08/2011 - 18:04:42 - [0] ----D- C:\Users\Quentin\AppData\Roaming\ASUS WebStorage
O43 - CFD: 01/09/2011 - 17:05:08 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Avira
O43 - CFD: 25/08/2011 - 17:20:30 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Identities
O43 - CFD: 01/09/2011 - 16:25:42 - [470] ----D- C:\Users\Quentin\AppData\Roaming\Macromedia
O43 - CFD: 03/09/2011 - 12:45:08 - [237871] ----D- C:\Users\Quentin\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Media Center Programs
O43 - CFD: 03/09/2011 - 22:48:44 - [3812798] -S--D- C:\Users\Quentin\AppData\Roaming\Microsoft
O43 - CFD: 01/09/2011 - 16:28:20 - [13880634] ----D- C:\Users\Quentin\AppData\Roaming\Mozilla
O43 - CFD: 01/09/2011 - 16:27:38 - [2162059] ----D- C:\Users\Quentin\AppData\Roaming\PCtuto
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Application Data
O43 - CFD: 01/09/2011 - 10:03:36 - [60] ----D- C:\Users\Quentin\AppData\Local\Google
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Historique
O43 - CFD: 03/09/2011 - 23:26:58 - [29439519] ----D- C:\Users\Quentin\AppData\Local\Microsoft
O43 - CFD: 01/09/2011 - 16:28:10 - [40950579] ----D- C:\Users\Quentin\AppData\Local\Mozilla
O43 - CFD: 26/08/2011 - 14:24:08 - [40960] ----D- C:\Users\Quentin\AppData\Local\Power2Go
O43 - CFD: 04/09/2011 - 00:08:48 - [1262799] ----D- C:\Users\Quentin\AppData\Local\Temp
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Temporary Internet Files
O43 - CFD: 25/08/2011 - 17:19:42 - [0] ----D- C:\Users\Quentin\AppData\Local\VirtualStore
O43 - CFD: 04/08/2011 - 20:58:42 - [3037097] ----D- C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 25/08/2011 - 18:16:52 - [546953692] ----D- C:\Program Files (x86)\ASUS
O43 - CFD: 01/09/2011 - 16:46:46 - [147502684] ----D- C:\Program Files (x86)\Avira
O43 - CFD: 04/08/2011 - 20:59:00 - [816601158] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 04/08/2011 - 21:14:22 - [1258970242] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 13/04/2011 - 04:33:30 - [327715359] ----D- C:\Program Files (x86)\Google
O43 - CFD: 04/08/2011 - 21:14:40 - [91145019] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 04/08/2011 - 20:55:26 - [15707517] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 30/08/2011 - 17:24:38 - [7447989] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 03/09/2011 - 12:45:02 - [6966886] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 13/04/2011 - 04:47:22 - [18850185] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 13/04/2011 - 04:25:18 - [6423243] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/04/2011 - 04:34:48 - [38271979] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 13/04/2011 - 04:42:58 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 01/09/2011 - 16:28:06 - [34245106] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 13/04/2011 - 04:33:06 - [45049512] ----D- C:\Program Files (x86)\Nuance
O43 - CFD: 04/08/2011 - 20:53:52 - [6911704] ----D- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 03/09/2011 - 23:58:20 - [0] ----D- C:\Program Files (x86)\PCTuto
O43 - CFD: 04/08/2011 - 21:00:00 - [15796210] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [61735681] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/04/2011 - 04:49:30 - [169308348] ----D- C:\Program Files (x86)\syncables
O43 - CFD: 04/08/2011 - 20:59:24 - [0] --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/04/2011 - 14:04:46 - [1107456] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/04/2011 - 04:45:12 - [329907869] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 11/04/2011 - 14:04:46 - [12117504] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 11/04/2011 - 14:04:46 - [6056721] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [15012020] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 11/04/2011 - 14:04:46 - [5045512] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 22:09:12 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 11/04/2011 - 14:04:46 - [16247603] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 04/09/2011 - 00:10:04 - [4013621] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 04/08/2011 - 21:01:06 - [3261625] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 04/08/2011 - 20:49:36 - [14245009] ----D- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 13/04/2011 - 04:50:18 - [39347514] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/04/2011 - 04:48:02 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 04/08/2011 - 20:55:28 - [162236] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [41116583] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/04/2011 - 14:04:46 - [13449715] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/04/2011 - 04:33:38 - [704660878] ----D- C:\Program Files (x86)\Common Files\Windows Live
~ Scan Program Folder in 00mn 11s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.03D0E8C0C65D607E48898E7C7F166E19] - 03/09/2011 - 22:44:06 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini [2180]
O44 - LFC:[MD5.03D0E8C0C65D607E48898E7C7F166E19] - 03/09/2011 - 22:44:06 RSHAD . (...) -- C:\Windows\system32\AutoRunFilter.ini [2180]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 03/09/2011 - 22:43:50 ---A- . (...) -- C:\Windows\SysNative\acovcnt.exe [45056]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 03/09/2011 - 22:43:50 RSHAD . (...) -- C:\Windows\system32\acovcnt.exe [45056]
O44 - LFC:[MD5.A1AA99AC7740BABE75696625B3AEBEF5] - 03/09/2011 - 22:43:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.BCC69A0014DCA851B6BCF472D8F55755] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [8503202]
O44 - LFC:[MD5.B301ACCC7A22E5D673EDCF2B0A8CD974] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc001.dat [79916]
O44 - LFC:[MD5.3BCEE306F0A64AF67EEDE7934C57795A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc007.dat [129680]
O44 - LFC:[MD5.6857DA4E79C236A38C1B63C58B2359FB] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc008.dat [89672]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107320]
O44 - LFC:[MD5.78617C0A0FC78EAB017B93F150C1D8E7] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00A.dat [137456]
O44 - LFC:[MD5.8B2A895E6E45A85D207F5640B31E2013] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131436]
O44 - LFC:[MD5.CFBAF4DD523D0D09B42690593F0682C8] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00D.dat [70026]
O44 - LFC:[MD5.3FC1EADC00F4BE8274F79FF4AED9C1CE] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc010.dat [127758]
O44 - LFC:[MD5.343443600AE83FE50DB6BB006B926D86] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc013.dat [133360]
O44 - LFC:[MD5.7C06FB1C3586EA0EBD2164EB2981BC4A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc019.dat [132644]
O44 - LFC:[MD5.EDD4C0136B4B8B12C10164DE783083E5] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh001.dat [438430]
O44 - LFC:[MD5.9B25669B536276DF6531BA87FDFFF908] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh007.dat [644948]
O44 - LFC:[MD5.CA838308C56D1A238FB3709850C4D630] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh008.dat [552564]
O44 - LFC:[MD5.4622B9AA106C697D40BFACA3995CC35A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618602]
O44 - LFC:[MD5.68CCD3BBA7137BB8978DC15DEBB39EFC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00A.dat [695412]
O44 - LFC:[MD5.37AC9B800EA804446FFCB53CAD15F3EC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706416]
O44 - LFC:[MD5.E8817ADC58D98116ED2A3D143638D770] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00D.dat [358086]
O44 - LFC:[MD5.FA027D6F0CAF5F22C4CC48F295BCF6F3] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh010.dat [691422]
O44 - LFC:[MD5.6AA6AFA490AE6FCDB93B693DF2C89842] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh013.dat [692768]
O44 - LFC:[MD5.8EA88986425CB87FC7892590C0962250] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh019.dat [678144]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfc0404.dat [107320]
O44 - LFC:[MD5.07C2B85018A0E1DF014DB40896304C10] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfc0816.dat [134338]
O44 - LFC:[MD5.3B36E2AAC02E7032363775A8D176EC62] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfh0404.dat [390160]
O44 - LFC:[MD5.8E4D720529736942F81264ED8F20A1CC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfh0816.dat [681496]
O44 - LFC:[MD5.BCC69A0014DCA851B6BCF472D8F55755] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\PerfStringBackup.INI [8503202]
O44 - LFC:[MD5.B301ACCC7A22E5D673EDCF2B0A8CD974] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc001.dat [79916]
O44 - LFC:[MD5.3BCEE306F0A64AF67EEDE7934C57795A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc007.dat [129680]
O44 - LFC:[MD5.6857DA4E79C236A38C1B63C58B2359FB] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc008.dat [89672]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [107320]
O44 - LFC:[MD5.78617C0A0FC78EAB017B93F150C1D8E7] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00A.dat [137456]
O44 - LFC:[MD5.8B2A895E6E45A85D207F5640B31E2013] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [131436]
O44 - LFC:[MD5.CFBAF4DD523D0D09B42690593F0682C8] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00D.dat [70026]
O44 - LFC:[MD5.3FC1EADC00F4BE8274F79FF4AED9C1CE] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc010.dat [127758]
O44 - LFC:[MD5.343443600AE83FE50DB6BB006B926D86] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc013.dat [133360]
O44 - LFC:[MD5.7C06FB1C3586EA0EBD2164EB2981BC4A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc019.dat [132644]
O44 - LFC:[MD5.EDD4C0136B4B8B12C10164DE783083E5] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh001.dat [438430]
O44 - LFC:[MD5.9B25669B536276DF6531BA87FDFFF908] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh007.dat [644948]
O44 - LFC:[MD5.CA838308C56D1A238FB3709850C4D630] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh008.dat [552564]
O44 - LFC:[MD5.4622B9AA106C697D40BFACA3995CC35A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [618602]
O44 - LFC:[MD5.68CCD3BBA7137BB8978DC15DEBB39EFC] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\
J'ai attrapé un virus recemment et je n'arrive pas à le supprimer complétement. J'ai vraiment besoin d'aide. J'ai un asus N53s avec windows seven.
Merci d'avance,
Cordialement,
Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011
Run by Quentin at 04/09/2011 00:09:48
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 5.0 v5.0 (Defaut)
---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4001 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 146 GB (52%) free of 279 GB
---\\ Logged in mode
~ Computer Name: QUENTIN-PC
~ User Name: Quentin
~ All Users Names: UpdatusUser, Quentin, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Quentin\AppData\Roaming\
~ %Desktop% : C:\Users\Quentin\Desktop\
~ %Favorites% : C:\Users\Quentin\Favorites\
~ %LocalAppData% : C:\Users\Quentin\AppData\Local\
~ %StartMenu% : C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 146 Go of 279 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 394 Go of 394 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Hard drive, Flash drive, Thumb drive (Free 833 Go of 932 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.26/08/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.0732B49B250E306F7A6591029AF9885B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.26/08/2011 - 06:36:16.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.18/02/2011 - 14:25:32.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.01/09/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/02/2011 - 14:27:28.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.19/02/2011 - 05:29:01.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 2/8
~ Mes Documents (My Documents) : 1/2
~ Menu demarrer (Programs) : 7/38
~ Scan Hidden Files in 00mn 00s
---\\ Processus lancés
[MD5.5BB1F77C8AF725A15EC9366498D275BB] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992] [PID.3040]
[MD5.BC3DA234CDA880578526DAB028F40268] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305792] [PID.2300]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.1984]
[MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.3560]
[MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [PID.3816]
[MD5.27870BDDDE2BB30C134247512D8A6156] - (.PCTuto - autoupdater.) -- C:\Users\Quentin\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe [663168] [PID.3916]
[MD5.7EE22E13DEC8A6D18F4643C1EA34B0F0] - (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [984400] [PID.3248]
[MD5.79A3B950988F8D2B81906D0C0473158B] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624] [PID.3264]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016] [PID.3272]
[MD5.FD22B00049F775E952371E9C3DAC631B] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536] [PID.3292]
[MD5.7E7C0EB0F46307C18A5C46C346F549D4] - (...) -- C:\ExpressGateUtil\VAWinAgent.exe [21504] [PID.3164]
[MD5.22EC0852DBF032A93D8DA697065FA189] - (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336] [PID.3484]
[MD5.C252C2303FE79F201E64F269FEFF0DDB] - (.cyberlink - brs.) -- C:\Program Files (x86)\CyberLink\Shared files\brs.exe [75048] [PID.3492]
[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.3476]
[MD5.AF67EA73906F7C70888C39F09BA81CB7] - (.CyberLink - MediaEspresso DeviceDetector.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [965728] [PID.4496]
[MD5.6C9CD3ECBA6732661C8BBE37A877A2BD] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.1164]
[MD5.4486AD32BB05628967695FCA1BADD46E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.1084]
[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [669696] [PID.3408]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.]
[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.]
[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [136360] [PID.]
[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [269480] [PID.]
[MD5.0ADF410187B71C9B855721C8D59CEC7A] - (...) -- C:\ExpressGateUtil\VAWinService.exe [77312] [PID.]
[MD5.01F61F0F2B551EAEE2C12619B13B93D2] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [166528] [PID.]
[MD5.616F6E52CAE254727A886BA8EDA1BEEA] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.]
[MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe [2488888] [PID.]
[MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113208] [PID.]
[MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe [174648] [PID.]
[MD5.7F32D4C47A50E7223491E8FB9359907D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [325656] [PID.]
[MD5.741688E5A65CC43567BCC329AE130075] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2009704] [PID.]
[MD5.2C16648A12999AE69A9EBF41974B0BA2] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.]
~ Scan Processes Running in 00mn 01s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R0 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=asus.msn.com&ocid=ASUDHP&pc=ASU2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Trend Micro NSC BHO [64Bits] - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll
O2 - BHO: Partner BHO Class [64Bits] - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} . (.Google Inc. - Partner application.) -- C:\ProgramData\Partner\Partner64.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll
O2 - BHO: TmBpIeBHO [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll
O2 - BHO: Trend Micro NSC BHO [64Bits] - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll
O2 - BHO: Partner BHO Class [64Bits] - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} . (.Google Inc. - Partner application.) -- C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: TmBpIeBHO [64Bits] - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll
O2 - BHO: Google Dictionary Compression sdch [64Bits] - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} . (.Google Inc. - Fast Search.) -- C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper [64Bits] - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (...) -- "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (.not file.)
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [VizorHtmlDialog.exe] C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exeial.html DEF DEF DEF (.not file.)
O4 - HKLM\..\Run: [Trend Micro Client Framework] . (.Trend Micro Inc. - Trend Micro Client Session Agent Monitor.) -- C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
O4 - HKLM\..\Run: [Trend Micro Titanium] . (.Trend Micro Inc. - VizorShortCut Dynamic Link Library.) -- C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [ETDWare] . (.ELAN Microelectronic Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [AmIcoSinglun64] . (.Alcor Micro Corp. - Single LUN Icon Utility for VID 058F PID 63.) -- C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
O4 - HKLM\..\Run: [RtHDVBg] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O4 - HKLM\..\Run: [IntelTBRunOnce] . (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\system32\wscript.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\System32\StikyNot.exe
O4 - HKLM\..\Wow6432Node\Run: [Nuance PDF Reader-reminder] . (.Nuance Communications, Inc. - Ereg.) -- C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files (x86)\ASUS\APRP\APRP.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ecareme - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [FLxHCIm] . (.Windows (R) Win 7 DDK provider - Fresco Logic.) -- C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe
O4 - HKLM\..\Wow6432Node\Run: [SonicMasterTray] . (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Wow6432Node\Run: [Wireless Console 3] . (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Wow6432Node\Run: [VAWinAgent] . (...) -- C:\ExpressGateUtil\VAWinAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [RemoteControl10] . (.CyberLink Corp. - PowerDVD RC Service.) -- C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe
O4 - HKLM\..\Wow6432Node\Run: [BDRegion] . (.cyberlink - brs.) -- C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdatePSTShortCut] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Wow6432Node\Run: [PCTuto] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [autoupdater] . (.PCTuto - autoupdater.) -- C:\Users\Quentin\AppData\Roaming\PCtuto\UpdatePCTuto\autoupdater.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\Run: [ISUSPM] . (.Acresso Corporation - Acresso Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1154546111-1321533644-2127466592-1002-1154546111-1321533644-2127466592-1000\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
~ Scan Global Startup in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
O17 - HKLM\System\CS1\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
O17 - HKLM\System\CS2\Services\Tcpip\..\{FCB10D65-FEF8-440B-A1EE-312BBCCCBC13}: DhcpNameServer = 212.27.40.241 212.27.40.242
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tmbp [64Bits] - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} . (.Trend Micro Inc. - Trend Micro Browser Plug-In (IE).) -- C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll
O18 - Handler: tmpx [64Bits] - {0E526CB5-7446-41D1-A403-19BFE95E8C23} . (.Trend Micro Inc. - Trend Micro NSC IE Plug-In.) -- C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA Compatible NVIDIA shim initializatio.) - C:\Windows\system32\nvinitx.dll
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: CyberLink Product - 2011/08/04 12:11:39 (CLKMSVC10_38F51D56) . (.CyberLink - CyberLink KM Service.) - C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 267.5.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: TiMiniService (TiMiniService) . (.Trend Micro Inc. - Titanium mini-service.) - C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.3ACABCA6A8DB71B7F19C8A7523AE1846] [APT] [ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
[MD5.47BBD40D59B4242866E5AB7CE1F4F493] [APT] [ASUS P4G] (.ASUS.) -- C:\Program Files\P4G\BatteryLife.exe
[MD5.937136835AEF6B4382D7DF6C5FC099EE] [APT] [ASUS Patch 10430001] (...) -- C:\Windows\AsPatch10430001.exe
[MD5.BC3DA234CDA880578526DAB028F40268] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
[MD5.5BB1F77C8AF725A15EC9366498D275BB] [APT] [ATKOSD2] (.ASUS.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
[MD5.AF67EA73906F7C70888C39F09BA81CB7] [APT] [DeviceDetector] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
~ Scan Scheduled Task in 00mn 05s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (ATKWMIACPIIO) . (.ASUS - ATK WMIACPI Utility.) - C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (tmtdi) . (.Trend Micro Inc. - Trend Micro TDI Driver (amd64-fre).) - C:\Windows\system32\DRIVERS\tmtdi.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS WebStorage - (.eCareme Technologies, Inc..) [HKLM] -- ASUS WebStorage
O42 - Logiciel: ASUS_Screensaver - (.Pas de propriétaire.) [HKLM] -- ASUS_Screensaver
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM] -- InstallShield_{878CADF7-5BD6-4A29-A6F4-AC51C0CE8068}
O42 - Logiciel: AsusVibe2.0 - (.ASUSTEK.) [HKLM] -- Asus Vibe2.0
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: Bookworm Deluxe - (.Oberon Media Inc..) [HKLM] -- Bookworm Deluxe
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Cooking Dash - (.Oberon Media Inc..) [HKLM] -- Cooking Dash
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaEspresso - (.CyberLink Corp..) [HKLM] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM] -- InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDVD 10 - (.CyberLink Corp..) [HKLM] -- {DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: ExpressGate Cloud - (.Asus.) [HKLM] -- InstallShield_{499DED08-6FA8-4749-8E94-8526CC9D1CA8}
O42 - Logiciel: Game Park Console - (.Oberon Media, Inc..) [HKLM] -- {E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Governor of Poker - (.Oberon Media Inc..) [HKLM] -- Governor of Poker
O42 - Logiciel: Hotel Dash Suite Success - (.Oberon Media Inc..) [HKLM] -- Hotel Dash Suite Success
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Jewel Quest 3 - (.Oberon Media Inc..) [HKLM] -- Jewel Quest 3
O42 - Logiciel: Luxor 3 - (.Oberon Media Inc..) [HKLM] -- Luxor 3
O42 - Logiciel: Mahjongg dimensions - (.Oberon Media Inc..) [HKLM] -- Mahjongg dimensions
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 5.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 5.0 (x86 fr)
O42 - Logiciel: NVIDIA Graphics Driver 267.54 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Plants vs Zombies - (.Oberon Media Inc..) [HKLM] -- Plants vs Zombies
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Trend Micro Titanium Internet Security - (.Trend Micro Inc..) [HKLM] -- {ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}
O42 - Logiciel: UpdatePCTuto 2.0 - (.PCtuto.) [HKLM] -- UpdatePCTuto_is1
O42 - Logiciel: Windows Live Essentials - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: World of Goo - (.Oberon Media Inc..) [HKLM] -- World of Goo
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\ATK0100]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avira]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\ECAREME]
[HKCU\Software\Elantech]
[HKCU\Software\Google]
[HKCU\Software\Intel]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\PCTuto]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\TrendMicro]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Wow6432Node]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AsLdr]
[HKLM\Software\Avira]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\CyberLink]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\ECAREME]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Lake]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Oberon Media]
[HKLM\Software\PCTuto]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\ScanSoft]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideACE]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Zeon]
[HKLM\Software\mozilla.org]
[HKLM\Software\syncables]
~ Scan Softwares in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 04/08/2011 - 21:01:12 - [1517829] ----D- C:\Program Files\ASUS
O43 - CFD: 01/09/2011 - 16:31:56 - [8580520] ----D- C:\Program Files\CCleaner
O43 - CFD: 04/08/2011 - 20:49:36 - [181048454] ----D- C:\Program Files\Common Files
O43 - CFD: 11/04/2011 - 14:04:48 - [91075092] ----D- C:\Program Files\DVD Maker
O43 - CFD: 04/08/2011 - 20:58:34 - [11876568] ----D- C:\Program Files\Elantech
O43 - CFD: 04/08/2011 - 20:56:56 - [5712394] ----D- C:\Program Files\Fresco Logic Inc
O43 - CFD: 13/04/2011 - 04:33:20 - [318960] ----D- C:\Program Files\Google
O43 - CFD: 04/08/2011 - 21:01:24 - [12214065] ----D- C:\Program Files\Intel
O43 - CFD: 30/08/2011 - 17:24:36 - [8496573] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 14/07/2009 - 09:45:56 - [155587122] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 04/08/2011 - 20:53:42 - [233969422] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 04/08/2011 - 21:05:40 - [13881659] ----D- C:\Program Files\P4G
O43 - CFD: 04/08/2011 - 20:59:14 - [18415536] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [59390633] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 13/04/2011 - 04:51:18 - [287585219] ----D- C:\Program Files\Trend Micro
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 11/04/2011 - 14:04:46 - [5159424] ----D- C:\Program Files\Windows Defender
O43 - CFD: 11/04/2011 - 14:04:46 - [10680440] ----D- C:\Program Files\Windows Journal
O43 - CFD: 13/04/2011 - 04:38:28 - [9758969] ----D- C:\Program Files\Windows Live
O43 - CFD: 11/04/2011 - 14:04:48 - [12603904] ----D- C:\Program Files\Windows Mail
O43 - CFD: 11/04/2011 - 14:04:48 - [9214381] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [15442100] ----D- C:\Program Files\Windows NT
O43 - CFD: 11/04/2011 - 14:04:46 - [6143768] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 22:09:10 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 11/04/2011 - 14:04:48 - [21952790] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 04/08/2011 - 20:49:36 - [15717214] ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 13/04/2011 - 04:36:48 - [149404839] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [621568] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 11/04/2011 - 14:04:46 - [15302131] ----D- C:\Program Files\Common Files\System
O43 - CFD: 04/08/2011 - 20:58:42 - [495] ----D- C:\ProgramData\AmUStor
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 01/09/2011 - 16:46:46 - [54326243] ----D- C:\ProgramData\Avira
O43 - CFD: 25/08/2011 - 17:23:08 - [4741987] ----D- C:\ProgramData\ChangeFolderView
O43 - CFD: 04/08/2011 - 21:14:34 - [34445] ----D- C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 13/04/2011 - 04:33:04 - [19852288] ----D- C:\ProgramData\Downloaded Installations
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 13/04/2011 - 04:33:06 - [3991858] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 25/08/2011 - 17:20:08 - [1098813] ----D- C:\ProgramData\FolderView
O43 - CFD: 13/04/2011 - 04:33:22 - [12707] ----D- C:\ProgramData\Google
O43 - CFD: 04/08/2011 - 20:51:10 - [1902] ----D- C:\ProgramData\Intel
O43 - CFD: 03/09/2011 - 12:45:00 - [7324202] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 25/08/2011 - 17:20:42 - [9246584743] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 13/04/2011 - 04:33:08 - [471] ----D- C:\ProgramData\Nuance
O43 - CFD: 04/08/2011 - 20:55:06 - [3226252] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 04/08/2011 - 20:53:14 - [775433] ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 13/04/2011 - 04:48:46 - [28941574] ----D- C:\ProgramData\OberonGameConsole
O43 - CFD: 04/08/2011 - 21:00:48 - [1862] ----D- C:\ProgramData\P4G
O43 - CFD: 13/04/2011 - 04:33:34 - [1516372] ----D- C:\ProgramData\Partner
O43 - CFD: 13/04/2011 - 04:33:06 - [1275444] ----D- C:\ProgramData\ScanSoft
O43 - CFD: 04/08/2011 - 20:59:16 - [8886] ----D- C:\ProgramData\SonicFocus
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 04/08/2011 - 21:14:14 - [323868] ----D- C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 01/09/2011 - 16:33:38 - [2117682] ----D- C:\ProgramData\Trend Micro
O43 - CFD: 01/09/2011 - 10:03:58 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Adobe
O43 - CFD: 25/08/2011 - 18:04:42 - [0] ----D- C:\Users\Quentin\AppData\Roaming\ASUS WebStorage
O43 - CFD: 01/09/2011 - 17:05:08 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Avira
O43 - CFD: 25/08/2011 - 17:20:30 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Identities
O43 - CFD: 01/09/2011 - 16:25:42 - [470] ----D- C:\Users\Quentin\AppData\Roaming\Macromedia
O43 - CFD: 03/09/2011 - 12:45:08 - [237871] ----D- C:\Users\Quentin\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\Quentin\AppData\Roaming\Media Center Programs
O43 - CFD: 03/09/2011 - 22:48:44 - [3812798] -S--D- C:\Users\Quentin\AppData\Roaming\Microsoft
O43 - CFD: 01/09/2011 - 16:28:20 - [13880634] ----D- C:\Users\Quentin\AppData\Roaming\Mozilla
O43 - CFD: 01/09/2011 - 16:27:38 - [2162059] ----D- C:\Users\Quentin\AppData\Roaming\PCtuto
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Application Data
O43 - CFD: 01/09/2011 - 10:03:36 - [60] ----D- C:\Users\Quentin\AppData\Local\Google
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Historique
O43 - CFD: 03/09/2011 - 23:26:58 - [29439519] ----D- C:\Users\Quentin\AppData\Local\Microsoft
O43 - CFD: 01/09/2011 - 16:28:10 - [40950579] ----D- C:\Users\Quentin\AppData\Local\Mozilla
O43 - CFD: 26/08/2011 - 14:24:08 - [40960] ----D- C:\Users\Quentin\AppData\Local\Power2Go
O43 - CFD: 04/09/2011 - 00:08:48 - [1262799] ----D- C:\Users\Quentin\AppData\Local\Temp
O43 - CFD: 25/08/2011 - 17:19:30 - [0] -SH-D- C:\Users\Quentin\AppData\Local\Temporary Internet Files
O43 - CFD: 25/08/2011 - 17:19:42 - [0] ----D- C:\Users\Quentin\AppData\Local\VirtualStore
O43 - CFD: 04/08/2011 - 20:58:42 - [3037097] ----D- C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 25/08/2011 - 18:16:52 - [546953692] ----D- C:\Program Files (x86)\ASUS
O43 - CFD: 01/09/2011 - 16:46:46 - [147502684] ----D- C:\Program Files (x86)\Avira
O43 - CFD: 04/08/2011 - 20:59:00 - [816601158] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 04/08/2011 - 21:14:22 - [1258970242] ----D- C:\Program Files (x86)\CyberLink
O43 - CFD: 13/04/2011 - 04:33:30 - [327715359] ----D- C:\Program Files (x86)\Google
O43 - CFD: 04/08/2011 - 21:14:40 - [91145019] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 04/08/2011 - 20:55:26 - [15707517] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 30/08/2011 - 17:24:38 - [7447989] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 03/09/2011 - 12:45:02 - [6966886] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 13/04/2011 - 04:47:22 - [18850185] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 13/04/2011 - 04:25:18 - [6423243] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 13/04/2011 - 04:34:48 - [38271979] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 13/04/2011 - 04:42:58 - [1829877] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 01/09/2011 - 16:28:06 - [34245106] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 13/04/2011 - 04:33:06 - [45049512] ----D- C:\Program Files (x86)\Nuance
O43 - CFD: 04/08/2011 - 20:53:52 - [6911704] ----D- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 03/09/2011 - 23:58:20 - [0] ----D- C:\Program Files (x86)\PCTuto
O43 - CFD: 04/08/2011 - 21:00:00 - [15796210] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [61735681] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 13/04/2011 - 04:49:30 - [169308348] ----D- C:\Program Files (x86)\syncables
O43 - CFD: 04/08/2011 - 20:59:24 - [0] --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/04/2011 - 14:04:46 - [1107456] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 13/04/2011 - 04:45:12 - [329907869] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 11/04/2011 - 14:04:46 - [12117504] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 11/04/2011 - 14:04:46 - [6056721] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [15012020] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 11/04/2011 - 14:04:46 - [5045512] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/02/2011 - 22:09:12 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 11/04/2011 - 14:04:46 - [16247603] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 04/09/2011 - 00:10:04 - [4013621] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 04/08/2011 - 21:01:06 - [3261625] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 04/08/2011 - 20:49:36 - [14245009] ----D- C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 13/04/2011 - 04:50:18 - [39347514] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/04/2011 - 04:48:02 - [354896] ----D- C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 04/08/2011 - 20:55:28 - [162236] ----D- C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 05:20:10 - [41116583] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 11/04/2011 - 14:04:46 - [13449715] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 13/04/2011 - 04:33:38 - [704660878] ----D- C:\Program Files (x86)\Common Files\Windows Live
~ Scan Program Folder in 00mn 11s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.03D0E8C0C65D607E48898E7C7F166E19] - 03/09/2011 - 22:44:06 ---A- . (...) -- C:\Windows\SysNative\AutoRunFilter.ini [2180]
O44 - LFC:[MD5.03D0E8C0C65D607E48898E7C7F166E19] - 03/09/2011 - 22:44:06 RSHAD . (...) -- C:\Windows\system32\AutoRunFilter.ini [2180]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 03/09/2011 - 22:43:50 ---A- . (...) -- C:\Windows\SysNative\acovcnt.exe [45056]
O44 - LFC:[MD5.6BCAF46E2B7FA9ACE92B4D39F3037C5C] - 03/09/2011 - 22:43:50 RSHAD . (...) -- C:\Windows\system32\acovcnt.exe [45056]
O44 - LFC:[MD5.A1AA99AC7740BABE75696625B3AEBEF5] - 03/09/2011 - 22:43:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.BCC69A0014DCA851B6BCF472D8F55755] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [8503202]
O44 - LFC:[MD5.B301ACCC7A22E5D673EDCF2B0A8CD974] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc001.dat [79916]
O44 - LFC:[MD5.3BCEE306F0A64AF67EEDE7934C57795A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc007.dat [129680]
O44 - LFC:[MD5.6857DA4E79C236A38C1B63C58B2359FB] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc008.dat [89672]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [107320]
O44 - LFC:[MD5.78617C0A0FC78EAB017B93F150C1D8E7] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00A.dat [137456]
O44 - LFC:[MD5.8B2A895E6E45A85D207F5640B31E2013] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [131436]
O44 - LFC:[MD5.CFBAF4DD523D0D09B42690593F0682C8] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc00D.dat [70026]
O44 - LFC:[MD5.3FC1EADC00F4BE8274F79FF4AED9C1CE] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc010.dat [127758]
O44 - LFC:[MD5.343443600AE83FE50DB6BB006B926D86] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc013.dat [133360]
O44 - LFC:[MD5.7C06FB1C3586EA0EBD2164EB2981BC4A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfc019.dat [132644]
O44 - LFC:[MD5.EDD4C0136B4B8B12C10164DE783083E5] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh001.dat [438430]
O44 - LFC:[MD5.9B25669B536276DF6531BA87FDFFF908] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh007.dat [644948]
O44 - LFC:[MD5.CA838308C56D1A238FB3709850C4D630] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh008.dat [552564]
O44 - LFC:[MD5.4622B9AA106C697D40BFACA3995CC35A] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [618602]
O44 - LFC:[MD5.68CCD3BBA7137BB8978DC15DEBB39EFC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00A.dat [695412]
O44 - LFC:[MD5.37AC9B800EA804446FFCB53CAD15F3EC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [706416]
O44 - LFC:[MD5.E8817ADC58D98116ED2A3D143638D770] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh00D.dat [358086]
O44 - LFC:[MD5.FA027D6F0CAF5F22C4CC48F295BCF6F3] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh010.dat [691422]
O44 - LFC:[MD5.6AA6AFA490AE6FCDB93B693DF2C89842] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh013.dat [692768]
O44 - LFC:[MD5.8EA88986425CB87FC7892590C0962250] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\perfh019.dat [678144]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfc0404.dat [107320]
O44 - LFC:[MD5.07C2B85018A0E1DF014DB40896304C10] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfc0816.dat [134338]
O44 - LFC:[MD5.3B36E2AAC02E7032363775A8D176EC62] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfh0404.dat [390160]
O44 - LFC:[MD5.8E4D720529736942F81264ED8F20A1CC] - 03/09/2011 - 21:17:07 ---A- . (...) -- C:\Windows\SysNative\prfh0816.dat [681496]
O44 - LFC:[MD5.BCC69A0014DCA851B6BCF472D8F55755] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\PerfStringBackup.INI [8503202]
O44 - LFC:[MD5.B301ACCC7A22E5D673EDCF2B0A8CD974] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc001.dat [79916]
O44 - LFC:[MD5.3BCEE306F0A64AF67EEDE7934C57795A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc007.dat [129680]
O44 - LFC:[MD5.6857DA4E79C236A38C1B63C58B2359FB] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc008.dat [89672]
O44 - LFC:[MD5.217C01EEBA456791337EB9FB56D2B3C1] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [107320]
O44 - LFC:[MD5.78617C0A0FC78EAB017B93F150C1D8E7] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00A.dat [137456]
O44 - LFC:[MD5.8B2A895E6E45A85D207F5640B31E2013] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [131436]
O44 - LFC:[MD5.CFBAF4DD523D0D09B42690593F0682C8] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc00D.dat [70026]
O44 - LFC:[MD5.3FC1EADC00F4BE8274F79FF4AED9C1CE] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc010.dat [127758]
O44 - LFC:[MD5.343443600AE83FE50DB6BB006B926D86] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc013.dat [133360]
O44 - LFC:[MD5.7C06FB1C3586EA0EBD2164EB2981BC4A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfc019.dat [132644]
O44 - LFC:[MD5.EDD4C0136B4B8B12C10164DE783083E5] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh001.dat [438430]
O44 - LFC:[MD5.9B25669B536276DF6531BA87FDFFF908] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh007.dat [644948]
O44 - LFC:[MD5.CA838308C56D1A238FB3709850C4D630] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh008.dat [552564]
O44 - LFC:[MD5.4622B9AA106C697D40BFACA3995CC35A] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [618602]
O44 - LFC:[MD5.68CCD3BBA7137BB8978DC15DEBB39EFC] - 03/09/2011 - 21:17:07 RSHAD . (...) -- C:\
A voir également:
- Problème avec un virus
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
- Faux message virus ordinateur - Accueil - Arnaque
- Virus mcafee - Accueil - Piratage
- Tinyurl.com virus - Forum Virus
1 réponse
2011N2
Messages postés
13352
Date d'inscription
samedi 29 janvier 2011
Statut
Contributeur sécurité
Dernière intervention
24 décembre 2016
917
4 sept. 2011 à 00:34
4 sept. 2011 à 00:34
Salut,
Bienvenue sur Comment Ça Marche. On va essayer de résoudre ton problème ensemble. Voici quelques régles ==>
-Ici, les helpers sont volontaires, et nous avons également une vie de famille, du travail, comme tout le monde. En conséquences, sois patient en attendant tes réponses de la part du helper.
-Suis la procédure jusqu'au bout, sinon ça ne servira à rien.
-Ne panique pas, n'hésite pas à poser des questions si tu as des doutes, car c'est beaucoup mieux que de planter ton PC si tu ne sais pas quoi faire.
-Avant d'effectuer des manipulations, lis la procédure jusqu'au bout, afin de ne pas faire d'erreur.
-Lors de la désinfection, désactive ton antivirus, afin que la désinfection puisse s'effectuer normalement.
-Si tu es sous Vista/7, éxécute un programme toujours en faisant un clic droit puis ==> Éxécuter en tant qu'administrateur
-Si tu crack (Emule, BiTorrent, etc...) arrête tout de suite, c'est une source d'infection, et la désinfection sera donc inutile.
-N'ouvre pas d'autres sujets pour le même problème (que ce soit sur ce forum ou sur un autre).
Si tu es prêt, c'est partit ==>
Ton rapport n'est pas complet :
=> Héberge le rapport ZHPDiag.txt sur un des sites ci-dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/
ou
http://www.cijoint.fr/
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
http://pjjoint.malekal.com/
ou :
https://www.casimages.com/
Si tu as besoin d'aide, ou quelque chose n'est pas clair, n'hésite pas à poser la question.
@+
Gabriel.
Bienvenue sur Comment Ça Marche. On va essayer de résoudre ton problème ensemble. Voici quelques régles ==>
-Ici, les helpers sont volontaires, et nous avons également une vie de famille, du travail, comme tout le monde. En conséquences, sois patient en attendant tes réponses de la part du helper.
-Suis la procédure jusqu'au bout, sinon ça ne servira à rien.
-Ne panique pas, n'hésite pas à poser des questions si tu as des doutes, car c'est beaucoup mieux que de planter ton PC si tu ne sais pas quoi faire.
-Avant d'effectuer des manipulations, lis la procédure jusqu'au bout, afin de ne pas faire d'erreur.
-Lors de la désinfection, désactive ton antivirus, afin que la désinfection puisse s'effectuer normalement.
-Si tu es sous Vista/7, éxécute un programme toujours en faisant un clic droit puis ==> Éxécuter en tant qu'administrateur
-Si tu crack (Emule, BiTorrent, etc...) arrête tout de suite, c'est une source d'infection, et la désinfection sera donc inutile.
-N'ouvre pas d'autres sujets pour le même problème (que ce soit sur ce forum ou sur un autre).
Si tu es prêt, c'est partit ==>
Ton rapport n'est pas complet :
=> Héberge le rapport ZHPDiag.txt sur un des sites ci-dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/
ou
http://www.cijoint.fr/
ou :
http://ww38.toofiles.com/fr/documents-upload.html
ou :
http://pjjoint.malekal.com/
ou :
https://www.casimages.com/
Si tu as besoin d'aide, ou quelque chose n'est pas clair, n'hésite pas à poser la question.
@+
Gabriel.
