Sujet Précédent Sujet Suivant

Ecran bleu et uc a 100

sachadis Messages postés 14 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour, mon pc se comporte bizarement c'est 2 temps.ca ralenti subitement et le uc est a 100 quand je consulte le gestionnaire de tache et que j'arrette le programme qui consomme le plus de uc,un autre prend le relai.10 mn après ca revient a la normal et ca recommence une prochaine fois.et depuis quelque temps au demarrage ecran bleu et il faut utilisé la restauration pour pouvoir redemarrer.j'ai essayer spybot malwarebite mais rien.j'ai meme transferé mes données et reinstaller le système mais toujours pareil.j'ai un rapport de ZHPdiag mais je ne sais pas ce qui cloche.merci de bien vouloir me donner un coup de main

A voir également:

12 réponses

Réponse 1 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt

tu as reinstallé windows?

et cela persiste?

fais passer le rapport zhpdiag

et vérifie la ram et la teméprature du pc comme ceci
https://www.commentcamarche.net/informatique/composants/25371-tester-des-composants-de-pc-les-meilleurs-outils-gratuits/

et fais passer le message de l'ecran bleu
0
Réponse 2 / 12
sachadis Messages postés 14 Statut Membre
 
bonsoir et merci de me repondre.pour l'ecran bleu c'est en anglais et ca dit un probleme a été detecté lors du demarrage de windows et ca demande si c'est la premiere fois.quand je rallume ca me demande un restauration.j'ai essayé LinX et ca di finish without error.voici le rapport et encore merci
Rapport de ZHPDiag v1.28.266 par Nicolas Coolman, Update du 12/12/2011
Run by hermann at 19/12/2011 12:05:55
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
State : Problème connexion internet

---\\ Web Browser
MSIE: Internet Explorer v8.0.7600.16385
MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Ultimate Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : HYRR2
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1903 MB (47% free)
System Restore: Activé (Enable)
System drive C: has 61 GB (48%) free of 126 GB

---\\ Logged in mode
~ Computer Name: HERMANN-PC
~ User Name: hermann
~ All Users Names: hermann, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\hermann\AppData\Roaming\
~ %Desktop% : C:\Users\hermann\Desktop\
~ %Favorites% : C:\Users\hermann\Favorites\
~ %LocalAppData% : C:\Users\hermann\AppData\Local\
~ %StartMenu% : C:\Users\hermann\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 61 Go of 126 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 12 Go of 54 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 15 Go of 53 Go)
F:\ CD-ROM drive (Not Inserted)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.0DE149051671801AF50D4044C81D7FBD] - (.Microsoft Corporation - Explorateur Windows.) (.28/10/2009 - 18:38:49.) -- C:\Windows\Explorer.exe [2661376]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.13/07/2009 - 01:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 - 01:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
[MD5.0D874F3BC751CC2198AF2E6783FB8B35] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/07/2009 - 01:16:19.) -- C:\Windows\system32\wininet.dll [977920]
[MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.13/07/2009 - 01:14:45.) -- C:\Windows\system32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.13/07/2009 - 01:16:15.) -- C:\Windows\system32\sppcomapi.dll [193024]
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - (....) (.14/07/2009 - 08:39:06.) -- C:\Windows\system32\fr-FR\user32.dll.mui [19968]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/12/2011 - 02:35:40.) -- C:\Windows\system32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 01:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 23:11:15.) -- C:\Windows\system32\drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/07/2009 - 23:11:26.) -- C:\Windows\system32\drivers\Cdrom.sys [108544]
[MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.13/07/2009 - 23:14:17.) -- C:\Windows\system32\drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/07/2009 - 23:50:56.) -- C:\Windows\system32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.13/07/2009 - 23:11:24.) -- C:\Windows\system32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 23:54:29.) -- C:\Windows\system32\drivers\IpNat.sys [101888]
[MD5.F4A054BE78AF7F410129C4B64B07DC9B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.13/07/2009 - 23:14:26.) -- C:\Windows\system32\drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.13/07/2009 - 23:12:21.) -- C:\Windows\system32\drivers\netBT.sys [187904]
[MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.13/07/2009 - 01:20:44.) -- C:\Windows\system32\drivers\ntfs.sys [1210432]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.13/07/2009 - 23:45:35.) -- C:\Windows\system32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/07/2009 - 23:54:34.) -- C:\Windows\system32\drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 00:02:58.) -- C:\Windows\system32\drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 23:53:41.) -- C:\Windows\system32\drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.13/07/2009 - 23:12:11.) -- C:\Windows\system32\drivers\tdx.sys [74240]
[MD5.58DF9D2481A56EDDE167E51B334D44FD] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.13/07/2009 - 01:19:10.) -- C:\Windows\system32\drivers\volsnap.sys [245328]
~ Scan Generic Processes in 00mn 01s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Videos (My Videos) : 4/129
~ Mes Favoris (My Favorites) : 3/50
~ Mes Documents (My Documents) : 2/450
~ Mon Bureau (My Desktop) : 1/10
~ Menu demarrer (Programs) : 6/23
~ Scan Hidden Files in 00mn 00s

---\\ Processus lancés
[MD5.AF47A890B4EC09F3D8A356FA947DE54D] - (.TuneUp Software - TuneUp Utilities.) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe [671552] [PID.1672]
[MD5.90B3598C36FF7E4E252E85C93907DC26] - (.Uniblue Systems Limited - Uniblue RegistryBooster Monitor.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe [25472] [PID.2516]
[MD5.DDF6BC4546EF4FD3A434248D69910395] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [136216] [PID.2676]
[MD5.36D602F19419B84F31807EB438CD8A93] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [171032] [PID.2704]
[MD5.1754B50F15E856B90B6AF0C1ED183A85] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [170520] [PID.2716]
[MD5.91116B8AE59B0F0D2F0D7830C53DCDE2] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG9\avgtray.exe [2078048] [PID.2808]
[MD5.026423673B8563E9975BDA97ED6273C7] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449608] [PID.2896]
[MD5.B2B39A866E42937E4FA071B9E12EEA4C] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files\AVG Secure Search\vprot.exe [827232] [PID.2904]
[MD5.A30839DAD1F7EE78590480555161885B] - (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [120152] [PID.3256]
[MD5.9673485626808B1BB6B30D7F388A93FC] - (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Little transparency.exe [402263] [PID.3348]
[MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files\RocketDock\RocketDock.exe [495616] [PID.3364]
[MD5.8B83E6B0708CA97AEB87122B4D6B86AD] - (.Uniblue Systems Limited - Uniblue RegistryBooster.) -- C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe [53104] [PID.3856]
[MD5.B0DA80FF42A0819D162A86612896AAF2] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [47104] [PID.4536]
[MD5.9DE46C958C1E7D398040345380AB8B4C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210304] [PID.4872]
[MD5.031DD8DBD4B958B5765C8C111CB1EA03] - (.AVG Technologies CZ, s.r.o. - AVG Cache Server.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe [1101152] [PID.]
[MD5.5654DB4719A3C52684A20C1CA443BF8F] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG9\avgrsx.exe [515424] [PID.]
[MD5.737A5253008BE7F12ACEDD6876F24B4B] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe [725344] [PID.]
[MD5.C4D15594DB5BE042D3346EA58DF87D89] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe [308136] [PID.]
[MD5.8DA40A59B87EC8362B4321FFABAA5935] - (.Teruten - FsUsbDevice.) -- C:\Windows\system32\FsUsbExService.Exe [222568] [PID.]
[MD5.0580287AC58CA0A59C453BE09F92C0DC] - (.TuneUp Software - TuneUp Utilities Service.) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [1523008] [PID.]
[MD5.8A603DABD6A7FA5F31E2B6E562E0EBDF] - (.Pas de propriétaire - ToolbarU Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe [855904] [PID.]
[MD5.4728D3BC556D677591797D600C47467C] - (.AVG Technologies CZ, s.r.o. - AVG Network scanner Service.) -- C:\Program Files\AVG\AVG9\avgnsx.exe [621920] [PID.]
[MD5.41A4C781D2286208D397D72099304133] - (.Microsoft Corporation - Programme d'installation pour les modules W.) -- C:\Windows\servicing\TrustedInstaller.exe [204800] [PID.]
[MD5.94E920BE59B9AB65D95E582DBAA136AC] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [366152] [PID.]
[MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3179520] [PID.]
~ Scan Processes Running in 00mn 02s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\hermann\AppData\Roaming\Mozilla\Firefox\Profiles\pygc3b2r.default\prefs.js
M3 - MFPP: Plugins - [hermann] -- C:\Users\hermann\AppData\Roaming\Mozilla\Firefox\Profiles\pygc3b2r.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\avg-secure-search.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.2.1] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\System32\npdeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.2.1] - (.Oracle Corporation - Next Generation Java Plug-in 10.2.1 for Mozilla browsers.) -- C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2852] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.46] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1662] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.46] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nprpjplug.dll
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = https://isearch.avg.com/
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (...) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.Pas de propriétaire - AVG Secure Search.) -- C:\Program Files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (...) -- (.not file.)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.Pas de propriétaire - AVG Secure Search.) -- C:\Program Files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll
~ Scan Toolbar in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe
O4 - HKLM\..\Run: [AVG9_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKLM\..\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files\AVG Secure Search\vprot.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [RegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files\Uniblue\RegistryBooster\launcher.exe
O4 - HKCU\..\Run: [ie9installer] . (.Microsoft Corporation - Programme d'installation Windows Internet E.) -- C:\Users\hermann\AppData\Local\Temp\iesetup-win7-x86.exe
O4 - HKUS\S-1-5-18\..\Run: [Welcome Center] . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll
O4 - HKUS\S-1-5-18\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-18\..\Run: [Welcome Center] . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll
O4 - HKUS\S-1-5-18\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [RegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files\Uniblue\RegistryBooster\launcher.exe
O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [ie9installer] . (.Microsoft Corporation - Programme d'installation Windows Internet E.) -- C:\Users\hermann\AppData\Local\Temp\iesetup-win7-x86.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\hermann\Desktop\Dragon Ball Z Budokai HR.lnk . (...) -- C:\Program Files\Dragon Ball Z Budokai HR\Dragon Ball Z Budokai HR.exe
O4 - Global Startup: C:\Users\hermann\Desktop\EVEREST Home Edition.lnk . (...) -- C:\Program Files\Lavalys\EVEREST Home Edition\everest.exe
O4 - Global Startup: C:\Users\hermann\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O4 - Global Startup: C:\Users\hermann\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\hermann\Desktop\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk . (.Gretech Corp..) -- C:\Program Files\GRETECH\GomPlayer\GOM.exe
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd..) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSGuide.exe
O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\Launcher.exe
~ Scan Global Startup in 00mn 00s

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files\MICROS~4\Office12\EXCEL.exe
~ Scan IE Menu Contextuel in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ Scan IE Extra Buttons in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Scan Winsock in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG9\avgpp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
~ Scan Winlogon in 00mn 00s

---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Starter.) - C:\Windows\system32\avgrsstx.dll
~ Scan AppInit DLL in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AVG Free WatchDog (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: FsUsbExService (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\Windows\System32\FsUsbExService.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
O23 - Service: (vToolbarUpdater) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegistryBooster.job
[MD5.1E361F31E4C10AEFCAAE2643E01C26C4] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
[MD5.90B3598C36FF7E4E252E85C93907DC26] [APT] [RegistryBooster] (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
[MD5.2440B112C1E384F808D38A78D953C082] [APT] [TuneUpUtilities_Task_BkGndMaintenance2011] (.TuneUp Software.) -- C:\Program Files\TuneUp Utilities 2011\OneClick.exe
~ Scan Scheduled Task in 00mn 04s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Oracle Corporation - Java(TM) Deployment Library.) -- C:\Program Files\Java\jre7\bin\deploy.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r22.) -- C:\Windows\System32\Macromed\Flash\Flash10b.ocx
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\system32\Drivers\avgldx86.sys
O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\system32\Drivers\avgmfx86.sys
O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\system32\Drivers\avgtdix.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (MpKsl103f32f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl103f32f1.sys (.not file.)
O41 - Driver: (MpKsl15321329) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKsl15321329.sys (.not file.)
O41 - Driver: (MpKsl16908a0f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl16908a0f.sys (.not file.)
O41 - Driver: (MpKsl8013cc6b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl8013cc6b.sys (.not file.)
O41 - Driver: (MpKslb6f73680) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKslb6f73680.sys (.not file.)
O41 - Driver: (MpKslc21d96d5) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKslc21d96d5.sys (.not file.)
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: AVG Free 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A90000000001}
O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Dragon Ball Z Budokai HR - (.Pas de propriétaire.) [HKCU] -- Dragon Ball Z Budokai HR
O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1
O42 - Logiciel: GOM Player - (.Pas de propriétaire.) [HKLM] -- GOM Player
O42 - Logiciel: HashCheck Shell Extension (x86-32) - (.Kai Liu.) [HKLM] -- HashCheck Shell Extension
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Java(TM) 7 Update 2 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217002FF}
O42 - Logiciel: JavaFX 2.0.2 - (.Oracle Corporation.) [HKLM] -- {1111706F-666A-4037-7777-202328764D10}
O42 - Logiciel: K-Lite Mega Codec Pack 4.1.4 - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MetaTrader - Forex Place - (.MetaQuotes Software Corp..) [HKLM] -- MetaTrader - Forex Place
O42 - Logiciel: Micro Application - 36 Dictionnaires et Recueils de Correspondance - (.Pas de propriétaire.) [HKLM] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}
O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951550) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B243E9A5-ED77-4F1B-B338-2486FD82DC85}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951944) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{797AE457-BA17-4BBC-B501-25FB3A0103C7}
O42 - Logiciel: TuneUp Utilities 2011 - (.TuneUp Software.) [HKLM] -- TuneUp Utilities 2011
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- Uniblue RegistryBooster
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2596560) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2964DDE1-4925-4DF1-AF2C-0A36B3442228}
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player

---\\ HKCU & HKLM Software Keys
[HKCU\Software\AVG Secure Search]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Avg]
[HKCU\Software\AppDataLow\Software\AVG Security Toolbar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avg]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DivXNetworks]
[HKCU\Software\GNU]
[HKCU\Software\GRETECH]
[HKCU\Software\Gabest]
[HKCU\Software\Haali]
[HKCU\Software\HookNetwork]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\LAventure]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MetaQuotes Software]
[HKCU\Software\Mobileleader]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RocketDock]
[HKCU\Software\Samsung]
[HKCU\Software\TuneUp]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVG Secure Search]
[HKLM\Software\AVG Security Toolbar]
[HKLM\Software\Adobe]
[HKLM\Software\Avg]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Codec Tweak Tool]
[HKLM\Software\DivXNetworks]
[HKLM\Software\GNU]
[HKLM\Software\GRETECH]
[HKLM\Software\Gabest]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Intel]
[HKLM\Software\InterVideo]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\KLCodecPack]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MarkAny]
[HKLM\Software\Micro Application]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Oracle]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S3R521]
[HKLM\Software\Samsung]
[HKLM\Software\Sonic]
[HKLM\Software\TrendMicro]
[HKLM\Software\TuneUp]
[HKLM\Software\Uniblue]
[HKLM\Software\VideoLAN]
[HKLM\Software\mozilla.org]
[HKLM\Software\vLite]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 05/12/2011 - 18:08:38 - [225,396] ----D- C:\Program Files\Adobe
O43 - CFD: 05/12/2011 - 18:30:44 - [82,931] ----D- C:\Program Files\AVG
O43 - CFD: 12/12/2011 - 17:16:44 - [7,875] ----D- C:\Program Files\AVG Secure Search
O43 - CFD: 15/12/2011 - 17:33:16 - [0,086] ----D- C:\Program Files\BatteryBar
O43 - CFD: 13/12/2011 - 19:46:50 - [4,120] ----D- C:\Program Files\CCleaner
O43 - CFD: 13/12/2011 - 18:59:02 - [344,706] ----D- C:\Program Files\Common Files
O43 - CFD: 07/12/2011 - 19:37:40 - [575,565] ----D- C:\Program Files\Dragon Ball Z Budokai HR
O43 - CFD: 14/07/2009 - 09:01:32 - [79,371] ----D- C:\Program Files\DVD Maker
O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 05/12/2011 - 18:05:46 - [19,197] ----D- C:\Program Files\GRETECH
O43 - CFD: 05/12/2011 - 18:36:44 - [18,782] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 05/12/2011 - 12:37:54 - [3,566] ----D- C:\Program Files\Intel
O43 - CFD: 16/12/2011 - 15:57:56 - [4,264] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 13/12/2011 - 18:56:50 - [91,150] ----D- C:\Program Files\Java
O43 - CFD: 05/12/2011 - 12:01:12 - [44,573] ----D- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 06/12/2011 - 14:42:32 - [6,498] ----D- C:\Program Files\Lavalys
O43 - CFD: 09/12/2011 - 20:14:30 - [6,679] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 05/12/2011 - 18:36:22 - [0,211] ----D- C:\Program Files\MarkAny
O43 - CFD: 19/12/2011 - 10:54:28 - [5,992] ----D- C:\Program Files\MetaTrader - Forex Place
O43 - CFD: 05/12/2011 - 13:22:44 - [246,034] ----D- C:\Program Files\Micro Application
O43 - CFD: 14/07/2009 - 09:01:22 - [140,965] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 05/12/2011 - 18:02:50 - [534,569] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 10/12/2011 - 12:14:28 - [36,633] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 05/12/2011 - 18:02:48 - [0,014] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 05/12/2011 - 18:01:00 - [1,323] ----D- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 05/12/2011 - 18:03:00 - [3,032] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 05/12/2011 - 18:02:34 - [7,774] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 05/12/2011 - 12:48:12 - [28,790] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 05/12/2011 - 18:02:52 - [0,025] ----D- C:\Program Files\MSBuild
O43 - CFD: 08/12/2011 - 12:30:30 - [0] ----D- C:\Program Files\MSXML 4.0
O43 - CFD: 13/12/2011 - 18:58:20 - [29,153] ----D- C:\Program Files\Oracle
O43 - CFD: 14/07/2009 - 04:52:32 - [36,809] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 28/10/2009 - 01:35:16 - [14,776] ----D- C:\Program Files\RocketDock
O43 - CFD: 05/12/2011 - 18:37:40 - [252,986] ----D- C:\Program Files\Samsung
O43 - CFD: 09/12/2011 - 21:27:22 - [0,383] ----D- C:\Program Files\Trend Micro
O43 - CFD: 06/12/2011 - 14:59:00 - [57,753] ----D- C:\Program Files\TuneUp Utilities 2011
O43 - CFD: 13/12/2011 - 19:51:04 - [18,150] ----D- C:\Program Files\Uniblue
O43 - CFD: 14/07/2009 - 04:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 05/12/2011 - 18:05:02 - [74,952] ----D- C:\Program Files\VideoLAN
O43 - CFD: 14/07/2009 - 08:39:40 - [2,909] ----D- C:\Program Files\Windows Defender
O43 - CFD: 14/07/2009 - 09:01:30 - [6,689] ----D- C:\Program Files\Windows Journal
O43 - CFD: 14/07/2009 - 08:39:40 - [5,951] ----D- C:\Program Files\Windows Mail
O43 - CFD: 14/07/2009 - 08:39:40 - [6,333] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 05/12/2011 - 12:00:00 - [4,790] ----D- C:\Program Files\Windows NT
O43 - CFD: 14/07/2009 - 08:39:40 - [4,213] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 19/12/2011 - 10:54:28 - [0,181] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 14/07/2009 - 08:39:40 - [102,833] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 05/12/2011 - 12:10:58 - [3,452] ----D- C:\Program Files\WinRAR
O43 - CFD: 19/12/2011 - 12:06:08 - [9,123] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 05/12/2011 - 18:08:46 - [4,387] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 19/12/2011 - 10:54:28 - [3,503] ----D- C:\Program Files\Common Files\AVG Secure Search
O43 - CFD: 05/12/2011 - 18:02:48 - [0,089] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 05/12/2011 - 13:22:18 - [1,658] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 05/12/2011 - 12:37:54 - [12,658] ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 13/12/2011 - 18:59:02 - [1,181] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 15/12/2011 - 15:22:46 - [240,096] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 02:37:06 - [0,003] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 02:37:06 - [39,200] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 16/12/2011 - 18:54:24 - [41,931] ----D- C:\Program Files\Common Files\System
O43 - CFD: 13/12/2011 - 16:38:44 - [0,001] ----D- C:\ProgramData\Adobe
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 13/12/2011 - 16:39:30 - [0,193] ----D- C:\ProgramData\AVG Secure Search
O43 - CFD: 06/12/2011 - 08:39:48 - [2,302] ----D- C:\ProgramData\AVG Security Toolbar
O43 - CFD: 05/12/2011 - 18:30:44 - [285,772] ----D- C:\ProgramData\avg9
O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 06/12/2011 - 13:48:02 - [0,000] --H-D- C:\ProgramData\Common Files
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 05/12/2011 - 18:06:48 - [0] ----D- C:\ProgramData\GRETECH
O43 - CFD: 09/12/2011 - 20:14:28 - [7,187] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 07/12/2011 - 15:44:00 - [6,690] ----D- C:\ProgramData\MetaQuotes
O43 - CFD: 08/12/2011 - 18:07:04 - [124,329] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 10/12/2011 - 10:42:38 - [0,061] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 05/12/2011 - 12:01:10 - [0] ----D- C:\ProgramData\Real
O43 - CFD: 05/12/2011 - 18:37:28 - [0,246] ----D- C:\ProgramData\Samsung
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 13/12/2011 - 18:59:06 - [0,000] ----D- C:\ProgramData\Sun
O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 06/12/2011 - 14:59:10 - [4,349] ----D- C:\ProgramData\TuneUp Software
O43 - CFD: 05/12/2011 - 18:06:26 - [17,622] -SH-D- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
O43 - CFD: 13/12/2011 - 19:51:04 - [8,185] --H-D- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
O43 - CFD: 05/12/2011 - 20:17:20 - [0,701] ----D- C:\Users\hermann\AppData\Roaming\Adobe
O43 - CFD: 06/12/2011 - 20:58:06 - [0,011] ----D- C:\Users\hermann\AppData\Roaming\BatteryBar
O43 - CFD: 05/12/2011 - 13:31:12 - [0] ----D- C:\Users\hermann\AppData\Roaming\DivX
O43 - CFD: 17/12/2011 - 14:25:04 - [0,000] ----D- C:\Users\hermann\AppData\Roaming\dvdcss
O43 - CFD: 05/12/2011 - 18:06:38 - [0] ----D- C:\Users\hermann\AppData\Roaming\GRETECH
O43 - CFD: 05/12/2011 - 12:03:10 - [0] ----D- C:\Users\hermann\AppData\Roaming\Identities
O43 - CFD: 05/12/2011 - 18:38:50 - [0,002] ----D- C:\Users\hermann\AppData\Roaming\Macromedia
O43 - CFD: 09/12/2011 - 20:14:36 - [0,005] ----D- C:\Users\hermann\AppData\Roaming\Malwarebytes
O43 - CFD: 14/07/2009 - 09:00:34 - [0] ----D- C:\Users\hermann\AppData\Roaming\Media Center Programs
O43 - CFD: 05/12/2011 - 13:31:12 - [0,000] ----D- C:\Users\hermann\AppData\Roaming\Media Player Classic
O43 - CFD: 10/12/2011 - 18:24:54 - [3,511] -S--D- C:\Users\hermann\AppData\Roaming\Microsoft
O43 - CFD: 05/12/2011 - 12:48:28 - [0,594] ----D- C:\Users\hermann\AppData\Roaming\Mozilla
O43 - CFD: 05/12/2011 - 18:37:06 - [1,761] ----D- C:\Users\hermann\AppData\Roaming\Samsung
O43 - CFD: 18/12/2011 - 23:33:32 - [0,310] ----D- C:\Users\hermann\AppData\Roaming\TuneUp Software
O43 - CFD: 13/12/2011 - 19:51:10 - [0,307] ----D- C:\Users\hermann\AppData\Roaming\Uniblue
O43 - CFD: 19/12/2011 - 10:54:28 - [0,508] ----D- C:\Users\hermann\AppData\Roaming\vlc
O43 - CFD: 06/12/2011 - 12:52:10 - [12,553] ----D- C:\Users\hermann\AppData\Local\Adobe
O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Application Data
O43 - CFD: 06/12/2011 - 14:59:42 - [0,034] ----D- C:\Users\hermann\AppData\Local\AVG Security Toolbar
O43 - CFD: 05/12/2011 - 18:34:52 - [128,025] ----D- C:\Users\hermann\AppData\Local\Downloaded Installations
O43 - CFD: 08/12/2011 - 14:17:48 - [0,148] ----D- C:\Users\hermann\AppData\Local\ElevatedDiagnostics
O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Historique
O43 - CFD: 13/12/2011 - 16:04:48 - [132,506] ----D- C:\Users\hermann\AppData\Local\Microsoft
O43 - CFD: 05/12/2011 - 18:00:34 - [0] ----D- C:\Users\hermann\AppData\Local\Microsoft Help
O43 - CFD: 05/12/2011 - 12:48:16 - [22,137] ----D- C:\Users\hermann\AppData\Local\Mozilla
O43 - CFD: 13/12/2011 - 19:50:32 - [0] ----D- C:\Users\hermann\AppData\Local\PackageAware
O43 - CFD: 19/12/2011 - 11:56:46 - [7,440] ----D- C:\Users\hermann\AppData\Local\Temp
O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Temporary Internet Files
O43 - CFD: 17/12/2011 - 13:45:30 - [59,168] ----D- C:\Users\hermann\AppData\Local\VirtualStore
~ Scan Program Folder in 00mn 15s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D4F45DB53A4948B5FEA43C31B861C06A] - 19/12/2011 - 12:06:11 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1048562]
O44 - LFC:[MD5.A04653BAF1DE60E7D5AE95471EF29BEB] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1532276]
O44 - LFC:[MD5.E3459D52E6351251156326CF85165B09] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfc009.dat [104412]
O44 - LFC:[MD5.BF5BF1B7D15A7DF316D49C39E83FBC77] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [128562]
O44 - LFC:[MD5.62F9CB2F65D0B784F05CE9CEC0A5B787] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfh009.dat [610094]
O44 - LFC:[MD5.EE4D22BA2AEA993E182F4C263D9C7E9D] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [697760]
O44 - LFC:[MD5.242C4989F81C699E1CBDAB2DD4EEA252] - 19/12/2011 - 11:57:20 ---A- . (...) -- C:\Windows\IE9_main.log [28761]
O44 - LFC:[MD5.EFB85C85A21FE082790CCF5BFC72DECC] - 19/12/2011 - 11:56:12 ---A- . (...) -- C:\Windows\setupact.log [2060]
O44 - LFC:[MD5.36E9A8432110CC8024A5E323B80DA166] - 19/12/2011 - 11:56:07 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.4B2E1D7C79A8F7B5E7321639E8AAD36B] - 18/12/2011 - 23:05:16 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 16/12/2011 - 19:56:39 ---A- . (...) -- C:\Windows\epplauncher.mif [1912]
O44 - LFC:[MD5.D668CFFB6B3C1EC015107DC5D26F2156] - 16/12/2011 - 19:00:51 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [318744]
O44 - LFC:[MD5.7D643BB2B21B22621D76BE185AE9F7F8] - 16/12/2011 - 16:41:57 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\system32\atmfd.dll [294912]
O44 - LFC:[MD5.D592AAA377748FC50E34D731F0D0D7B8] - 16/12/2011 - 16:41:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\system32\atmlib.dll [34304]
O44 - LFC:[MD5.0AF7946AD9B2E82058C6421EEC960FCF] - 16/12/2011 - 16:40:23 ---A- . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\system32\ir32_32.dll [197632]
O44 - LFC:[MD5.17A4BE67FB6B9219A802F39C263AC8AC] - 16/12/2011 - 16:40:23 ---A- . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll [82944]
O44 - LFC:[MD5.2856E60B567AAA607E21E10D165B641C] - 16/12/2011 - 07:50:16 ---A- . (...) -- C:\Windows\PFRO.log [304]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/12/2011 - 11:59:53 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.0E13AC887BFC49E1E2AE672D94E629C2] - 13/12/2011 - 18:57:27 ---A- . (.Oracle Corporation -
0
Réponse 3 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
il faut le message exact de l'ecran bleu

et le rapport zhpdiag il faut l'heberger sinon il manque la moitiée
0
Réponse 4 / 12
sachadis Messages postés 14 Statut Membre
 
pour le message de l'ecran bleu ca n'apparait pas a tous les demarrage.et je soppose qu'on ne peut pas faire de copier coller.donc je le recopie?le rapport est heberger là: https://www.luanagames.com/index.fr.html
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
pas grand chose comme infection

mets à jour avg avec la version 2012

colle un rapport avec malwarebyte que tu as et nod 32 en ligne ici: antivirus en ligne

et il faut absolument le message de l'ecran bleu

(fais une photo et heberge la si besoin)
0
Réponse 6 / 12
sachadis Messages postés 14 Statut Membre
 
j'essai d'installer nod 32 mais ca met error inattentue 2002.voici le message de l'ecran bleu:
A problem has been detected and windows has been shut down to prevent damage to your computer
If this is the first time you've seenthis stop error screen restart your computer.if this screnn apears again ,follow these steps:
Check to be sure you have adequate disk space.if a drivers identified in the stop message,disable the driver or check with the manufactirer for drivers updates.try changing video adapters.
Check with you hardware vendor for any bios update.disable BIOS memory options such as caching or shadowing.if you need to use safe mode to remove or disable components,restart your computer,press F8 to select advanced startup options,and thenselect safe mode.
technical information
***stop: oxcoooooo7E (0x0000005,0x82DB445,0x80786790,0x80786370)
et le rapport de mawarebit:
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 8365

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

14/12/2011 13:55:11
mbam-log-2011-12-14 (13-55-11).txt

Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
Elément(s) analysé(s): 264205
Temps écoulé: 54 minute(s), 3 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
avec tuneup j'avais fais une analyse et ca disais que les periphériques MpKsl103f32f1 Mpksl15321329 MpKsl16908a0f ne sont pas a jours mait j'arrive pas atrouvé leurs mise a jour.
0
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
sinon utilise un autre antivirus en ligne comme norton secuser...
0
Réponse 7 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
teste ta ram avec memtest pour voir et dis nous si des erreurs sont trouvées

et mets à jour les pilotes en t'aidant de www.touslesdrivers.com

sinon tu as mis un nouveau logiciel ou pilote avant que l'écran bleu apparaisse?

colle un rapport avec le logiciel whocrashed
0
Réponse 8 / 12
sachadis Messages postés 14 Statut Membre
 
j'ai telecharger memtest mais j'arrive pas a l'executer.vous pouvez pas me conseiller un autre logiciel?je suis entrain de mettre les pilotes a jour.j'ai pas souvenance d'avoir mis un nouveau pilote avant que ca commence.c'etait plutot ce qui m'a semblé etre un virus,qui bloquait mon ecran.animal hunting ca s'appelait.et apparament whocrashed n'a rien trouvé.le dossier minidump est vide.et ca dit:
Crash Dump Analysis
--------------------------------------------------------------------------------

Crash dump directory: C:\Windows\Minidump

Crash dumps are enabled on your computer.

No valid crash dumps have been found on your computer
0
Réponse 9 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.

télécharge combofix (par sUBs) ici :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

et enregistre le sur le bureau.

déconnecte toi d'internet et ferme toutes tes applications.

désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)

double-clique sur combofix.exe et suis les instructions

à la fin, il va produire un rapport C:\ComboFix.txt

réactive ton parefeu, ton antivirus, la garde de ton antispyware

copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.

Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

Tu as un tutoriel complet ici :

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
0
Réponse 10 / 12
sachadis Messages postés 14 Statut Membre
 
ma version de windows ne me permet pas de desactiver les comptes d'utilisateur je peut seulement supprimer ou modifier.c'est la meme chose pour les antivirus.c'est seulement le par feu que je peut desactiver.est ce que je peu lancer combofix dans ces conditions?
0
Réponse 11 / 12
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
oui lance
0
Réponse 12 / 12
sachadis Messages postés 14 Statut Membre
 
voici le rapport de combofix : https://www.luanagames.com/index.fr.html
0

Discussions similaires

Carte bancaire dans machine à laver
Nicolas -
kusanagi79 -

5 réponses
Carte bleu passé a la machine à laver
Fi -
Jmichel -

8 réponses
Machine à laver CB
Imane -
fabul -

2 réponses