Ecran bleu et uc a 100

sachadis Messages postés 14 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour, mon pc se comporte bizarement c'est 2 temps.ca ralenti subitement et le uc est a 100 quand je consulte le gestionnaire de tache et que j'arrette le programme qui consomme le plus de uc,un autre prend le relai.10 mn après ca revient a la normal et ca recommence une prochaine fois.et depuis quelque temps au demarrage ecran bleu et il faut utilisé la restauration pour pouvoir redemarrer.j'ai essayer spybot malwarebite mais rien.j'ai meme transferé mes données et reinstaller le système mais toujours pareil.j'ai un rapport de ZHPdiag mais je ne sais pas ce qui cloche.merci de bien vouloir me donner un coup de main

12 réponses

  1. sachadis Messages postés 14 Statut Membre
     
    bonsoir et merci de me repondre.pour l'ecran bleu c'est en anglais et ca dit un probleme a été detecté lors du demarrage de windows et ca demande si c'est la premiere fois.quand je rallume ca me demande un restauration.j'ai essayé LinX et ca di finish without error.voici le rapport et encore merci
    Rapport de ZHPDiag v1.28.266 par Nicolas Coolman, Update du 12/12/2011
    Run by hermann at 19/12/2011 12:05:55
    Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
    State : Problème connexion internet

    ---\\ Web Browser
    MSIE: Internet Explorer v8.0.7600.16385
    MFIE: Mozilla Firefox v3.6.13 (fr) (Defaut)

    ---\\ Windows Product Information
    ~ Langage: Français
    Windows 7 Ultimate Edition, 32-bit (Build 7600)
    Windows Server License Manager Script : OK
    ~ Windows(R) 7, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : HYRR2
    Windows License : OK
    ~ Windows Remaining Initializations Number : 3
    Software Protection Service (Protection logicielle) : OK
    Windows Automatic Updates : OK
    Windows Activation Technologies : OK

    ---\\ System Information
    ~ Processor: x86 Family 6 Model 37 Stepping 2, GenuineIntel
    ~ Operating System: 32 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 1903 MB (47% free)
    System Restore: Activé (Enable)
    System drive C: has 61 GB (48%) free of 126 GB

    ---\\ Logged in mode
    ~ Computer Name: HERMANN-PC
    ~ User Name: hermann
    ~ All Users Names: hermann, Administrateur,
    ~ Unselected Option: O45,O61,O62,O65,O66,O82,O89
    Logged in as Administrator

    ---\\ Environnement Variables
    ~ System Unit : C:\
    ~ %AppData% : C:\Users\hermann\AppData\Roaming\
    ~ %Desktop% : C:\Users\hermann\Desktop\
    ~ %Favorites% : C:\Users\hermann\Favorites\
    ~ %LocalAppData% : C:\Users\hermann\AppData\Local\
    ~ %StartMenu% : C:\Users\hermann\AppData\Roaming\Microsoft\Windows\Start Menu\
    ~ %Windir% : C:\Windows\
    ~ %System% : C:\Windows\system32\

    ---\\ DOS/Devices
    C:\ Hard drive, Flash drive, Thumb drive (Free 61 Go of 126 Go)
    D:\ Hard drive, Flash drive, Thumb drive (Free 12 Go of 54 Go)
    E:\ Hard drive, Flash drive, Thumb drive (Free 15 Go of 53 Go)
    F:\ CD-ROM drive (Not Inserted)

    ---\\ Security Center & Tools Informations
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
    [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
    [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
    [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
    [HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
    ~ Scan Security Center in 00mn 00s

    ---\\ Recherche particulière de fichiers génériques
    [MD5.0DE149051671801AF50D4044C81D7FBD] - (.Microsoft Corporation - Explorateur Windows.) (.28/10/2009 - 18:38:49.) -- C:\Windows\Explorer.exe [2661376]
    [MD5.51138BEEA3E2C21EC44D0932C71762A8] - (....) (.13/07/2009 - 01:14:31.) -- C:\Windows\system32\rundll32.exe [44544]
    [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.13/07/2009 - 01:14:45.) -- C:\Windows\system32\Wininit.exe [96256]
    [MD5.0D874F3BC751CC2198AF2E6783FB8B35] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.13/07/2009 - 01:16:19.) -- C:\Windows\system32\wininet.dll [977920]
    [MD5.8EC6A4AB12B8F3759E21F8E3A388F2CF] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.13/07/2009 - 01:14:45.) -- C:\Windows\system32\Winlogon.exe [285696]
    [MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.13/07/2009 - 01:16:15.) -- C:\Windows\system32\sppcomapi.dll [193024]
    [MD5.D8714A5FB3141F8226D16861F20C5AC4] - (....) (.14/07/2009 - 08:39:06.) -- C:\Windows\system32\fr-FR\user32.dll.mui [19968]
    [MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/12/2011 - 02:35:40.) -- C:\Windows\system32\drivers\AFD.sys [338944]
    [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.13/07/2009 - 01:26:15.) -- C:\Windows\system32\drivers\atapi.sys [21584]
    [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/07/2009 - 23:11:15.) -- C:\Windows\system32\drivers\Cdfs.sys [70656]
    [MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/07/2009 - 23:11:26.) -- C:\Windows\system32\drivers\Cdrom.sys [108544]
    [MD5.8E09E52EE2E3CEB199EF3DD99CF9E3FB] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.13/07/2009 - 23:14:17.) -- C:\Windows\system32\drivers\DfsC.sys [78336]
    [MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.13/07/2009 - 23:50:56.) -- C:\Windows\system32\drivers\HDAudBus.sys [108544]
    [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.13/07/2009 - 23:11:24.) -- C:\Windows\system32\drivers\i8042prt.sys [80896]
    [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.13/07/2009 - 23:54:29.) -- C:\Windows\system32\drivers\IpNat.sys [101888]
    [MD5.F4A054BE78AF7F410129C4B64B07DC9B] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.13/07/2009 - 23:14:26.) -- C:\Windows\system32\drivers\MRxSmb.sys [123392]
    [MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.13/07/2009 - 23:12:21.) -- C:\Windows\system32\drivers\netBT.sys [187904]
    [MD5.3795DCD21F740EE799FB7223234215AF] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.13/07/2009 - 01:20:44.) -- C:\Windows\system32\drivers\ntfs.sys [1210432]
    [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.13/07/2009 - 23:45:35.) -- C:\Windows\system32\drivers\Parport.sys [79360]
    [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/07/2009 - 23:54:34.) -- C:\Windows\system32\drivers\Rasl2tp.sys [78848]
    [MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 00:02:58.) -- C:\Windows\system32\drivers\rdpdr.sys [133120]
    [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.13/07/2009 - 23:53:41.) -- C:\Windows\system32\drivers\smb.sys [71168]
    [MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.13/07/2009 - 23:12:11.) -- C:\Windows\system32\drivers\tdx.sys [74240]
    [MD5.58DF9D2481A56EDDE167E51B334D44FD] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.13/07/2009 - 01:19:10.) -- C:\Windows\system32\drivers\volsnap.sys [245328]
    ~ Scan Generic Processes in 00mn 01s

    ---\\ Etat des fichiers cachés (Caché/Total)
    ~ Mes Videos (My Videos) : 4/129
    ~ Mes Favoris (My Favorites) : 3/50
    ~ Mes Documents (My Documents) : 2/450
    ~ Mon Bureau (My Desktop) : 1/10
    ~ Menu demarrer (Programs) : 6/23
    ~ Scan Hidden Files in 00mn 00s

    ---\\ Processus lancés
    [MD5.AF47A890B4EC09F3D8A356FA947DE54D] - (.TuneUp Software - TuneUp Utilities.) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe [671552] [PID.1672]
    [MD5.90B3598C36FF7E4E252E85C93907DC26] - (.Uniblue Systems Limited - Uniblue RegistryBooster Monitor.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe [25472] [PID.2516]
    [MD5.DDF6BC4546EF4FD3A434248D69910395] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [136216] [PID.2676]
    [MD5.36D602F19419B84F31807EB438CD8A93] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [171032] [PID.2704]
    [MD5.1754B50F15E856B90B6AF0C1ED183A85] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [170520] [PID.2716]
    [MD5.91116B8AE59B0F0D2F0D7830C53DCDE2] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG9\avgtray.exe [2078048] [PID.2808]
    [MD5.026423673B8563E9975BDA97ED6273C7] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [449608] [PID.2896]
    [MD5.B2B39A866E42937E4FA071B9E12EEA4C] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files\AVG Secure Search\vprot.exe [827232] [PID.2904]
    [MD5.A30839DAD1F7EE78590480555161885B] - (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [120152] [PID.3256]
    [MD5.9673485626808B1BB6B30D7F388A93FC] - (...) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Little transparency.exe [402263] [PID.3348]
    [MD5.7DFCCC67990B6DE7F30F553A4E4612A4] - (...) -- C:\Program Files\RocketDock\RocketDock.exe [495616] [PID.3364]
    [MD5.8B83E6B0708CA97AEB87122B4D6B86AD] - (.Uniblue Systems Limited - Uniblue RegistryBooster.) -- C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe [53104] [PID.3856]
    [MD5.B0DA80FF42A0819D162A86612896AAF2] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [47104] [PID.4536]
    [MD5.9DE46C958C1E7D398040345380AB8B4C] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210304] [PID.4872]
    [MD5.031DD8DBD4B958B5765C8C111CB1EA03] - (.AVG Technologies CZ, s.r.o. - AVG Cache Server.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe [1101152] [PID.]
    [MD5.5654DB4719A3C52684A20C1CA443BF8F] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files\AVG\AVG9\avgrsx.exe [515424] [PID.]
    [MD5.737A5253008BE7F12ACEDD6876F24B4B] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe [725344] [PID.]
    [MD5.C4D15594DB5BE042D3346EA58DF87D89] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe [308136] [PID.]
    [MD5.8DA40A59B87EC8362B4321FFABAA5935] - (.Teruten - FsUsbDevice.) -- C:\Windows\system32\FsUsbExService.Exe [222568] [PID.]
    [MD5.0580287AC58CA0A59C453BE09F92C0DC] - (.TuneUp Software - TuneUp Utilities Service.) -- C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [1523008] [PID.]
    [MD5.8A603DABD6A7FA5F31E2B6E562E0EBDF] - (.Pas de propriétaire - ToolbarU Application.) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe [855904] [PID.]
    [MD5.4728D3BC556D677591797D600C47467C] - (.AVG Technologies CZ, s.r.o. - AVG Network scanner Service.) -- C:\Program Files\AVG\AVG9\avgnsx.exe [621920] [PID.]
    [MD5.41A4C781D2286208D397D72099304133] - (.Microsoft Corporation - Programme d'installation pour les modules W.) -- C:\Windows\servicing\TrustedInstaller.exe [204800] [PID.]
    [MD5.94E920BE59B9AB65D95E582DBAA136AC] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [366152] [PID.]
    [MD5.4C287F9069FEDBD791178876EE9DE536] - (.Microsoft Corporation - Service de la plateforme de protection logi.) -- C:\Windows\system32\sppsvc.exe [3179520] [PID.]
    ~ Scan Processes Running in 00mn 02s

    ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    C:\Users\hermann\AppData\Roaming\Mozilla\Firefox\Profiles\pygc3b2r.default\prefs.js
    M3 - MFPP: Plugins - [hermann] -- C:\Users\hermann\AppData\Roaming\Mozilla\Firefox\Profiles\pygc3b2r.default\searchplugins\bing.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\avg-secure-search.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
    M3 - MFPP: Plugins - [hermann] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
    P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
    P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
    P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
    P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
    P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.2.1] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\System32\npdeployJava1.dll
    P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.2.1] - (.Oracle Corporation - Next Generation Java Plug-in 10.2.1 for Mozilla browsers.) -- C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll
    P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
    P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.11.2852] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nppl3260.dll
    P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.46] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nppl3260.dll
    P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.1662] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nprpjplug.dll
    P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.46] - (.RealNetworks, Inc. - 6.0.12.46.) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nprpjplug.dll
    ~ Scan Firefox Browser in 00mn 00s

    ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
    R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
    R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
    R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
    R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
    R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
    R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = https://isearch.avg.com/
    R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
    R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (...) (No version) -- (.not file.)
    R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
    ~ Scan IE Browser in 00mn 00s

    ---\\ Internet Explorer, Proxy Management (R5)
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
    ~ Scan Proxy management in 00mn 00s

    ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
    F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
    F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
    ~ Scan Keys in 00mn 00s

    ---\\ Redirection du fichier Hosts (O1)
    ~ Le fichier hosts est sain (The hosts file is clean).
    ~ Scan Hosts File in 00mn 00s

    ---\\ Browser Helper Objects de navigateur (O2)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files\AVG\AVG9\avgssie.dll
    O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.Pas de propriétaire - AVG Secure Search.) -- C:\Program Files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll
    ~ Scan BHO in 00mn 00s

    ---\\ Internet Explorer Toolbars (O3)
    O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} . (...) -- (.not file.)
    O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.Pas de propriétaire - AVG Secure Search.) -- C:\Program Files\AVG Secure Search\9.0.0.18\AVG Secure Search_toolbar.dll
    ~ Scan Toolbar in 00mn 00s

    ---\\ Applications démarrées par registre & par dossier (O4)
    O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe
    O4 - HKLM\..\Run: [AVG9_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files\AVG\AVG9\avgtray.exe
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
    O4 - HKLM\..\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files\AVG Secure Search\vprot.exe
    O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKCU\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
    O4 - HKCU\..\Run: [RegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files\Uniblue\RegistryBooster\launcher.exe
    O4 - HKCU\..\Run: [ie9installer] . (.Microsoft Corporation - Programme d'installation Windows Internet E.) -- C:\Users\hermann\AppData\Local\Temp\iesetup-win7-x86.exe
    O4 - HKUS\S-1-5-18\..\Run: [Welcome Center] . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll
    O4 - HKUS\S-1-5-18\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-18\..\Run: [Welcome Center] . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll
    O4 - HKUS\S-1-5-18\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
    O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
    O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [AutoStartNPSAgent] . (.Samsung Electronics Co., Ltd. - NPSAgent.) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
    O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [RegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files\Uniblue\RegistryBooster\launcher.exe
    O4 - HKUS\S-1-5-21-1747757132-1889125086-1898458594-1000\..\Run: [ie9installer] . (.Microsoft Corporation - Programme d'installation Windows Internet E.) -- C:\Users\hermann\AppData\Local\Temp\iesetup-win7-x86.exe
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
    ~ Scan Application in 00mn 00s

    ---\\ Autres liens utilisateurs (O4)
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\hermann\Desktop\Dragon Ball Z Budokai HR.lnk . (...) -- C:\Program Files\Dragon Ball Z Budokai HR\Dragon Ball Z Budokai HR.exe
    O4 - Global Startup: C:\Users\hermann\Desktop\EVEREST Home Edition.lnk . (...) -- C:\Program Files\Lavalys\EVEREST Home Edition\everest.exe
    O4 - Global Startup: C:\Users\hermann\Desktop\HijackThis.lnk . (.Trend Micro Inc..) -- C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    O4 - Global Startup: C:\Users\hermann\Desktop\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\hermann\Desktop\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk . (.Gretech Corp..) -- C:\Program Files\GRETECH\GomPlayer\GOM.exe
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd..) -- C:\Program Files\Samsung\Samsung New PC Studio\NPSGuide.exe
    O4 - Global Startup: C:\Users\hermann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\Launcher.exe
    ~ Scan Global Startup in 00mn 00s

    ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
    O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\Program Files\MICROS~4\Office12\EXCEL.exe
    ~ Scan IE Menu Contextuel in 00mn 00s

    ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
    ~ Scan IE Extra Buttons in 00mn 00s

    ---\\ Winsock hijacker (Layered Service Provider) (O10)
    O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
    O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
    O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
    O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
    O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
    O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
    ~ Scan Winsock in 00mn 00s

    ---\\ Modification Domaine/Adresses DNS (O17)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CS1\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
    O17 - HKLM\System\CS2\Services\Tcpip\..\{50FA72A9-9D7A-4F4B-924A-9E97A1F1A289}: DhcpNameServer = 192.168.1.1
    ~ Scan Domain in 00mn 00s

    ---\\ Protocole additionnel (O18)
    O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
    O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
    O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
    O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
    O18 - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} . (.AVG Technologies CZ, s.r.o. - Safe Search pluggable protocol.) -- C:\Program Files\AVG\AVG9\avgpp.dll
    O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
    O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
    O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
    O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
    O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
    O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
    O18 - Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll
    O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
    O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
    O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
    O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
    O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    ~ Scan Protocole Additionnel in 00mn 00s

    ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\system32\igfxdev.dll
    ~ Scan Winlogon in 00mn 00s

    ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
    O20 - AppInit_DLLs: . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Starter.) - C:\Windows\system32\avgrsstx.dll
    ~ Scan AppInit DLL in 00mn 00s

    ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    ~ Scan SSODL in 00mn 00s

    ---\\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 - Service: AVG Free WatchDog (avg9wd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files\AVG\AVG9\avgwdsvc.exe
    O23 - Service: FsUsbExService (FsUsbExService) . (.Teruten - FsUsbDevice.) - C:\Windows\System32\FsUsbExService.exe
    O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
    O23 - Service: (vToolbarUpdater) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe
    ~ Scan Services in 00mn 00s

    ---\\ Enumération Active Desktop & MHTML Editor (O24)
    O24 - Default MHTML Editor: Last - .(...) - (.not file.)
    ~ Scan Desktop Component in 00mn 00s

    ---\\ BootExecute (O34)
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    ~ Scan Keys in 00mn 00s

    ---\\ Tâches planifiées en automatique (O39)
    O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegistryBooster.job
    [MD5.1E361F31E4C10AEFCAAE2643E01C26C4] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
    [MD5.90B3598C36FF7E4E252E85C93907DC26] [APT] [RegistryBooster] (.Uniblue Systems Limited.) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
    [MD5.2440B112C1E384F808D38A78D953C082] [APT] [TuneUpUtilities_Task_BkGndMaintenance2011] (.TuneUp Software.) -- C:\Program Files\TuneUp Utilities 2011\OneClick.exe
    ~ Scan Scheduled Task in 00mn 04s

    ---\\ Composants installés (ActiveSetup Installed Components) (O40)
    O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
    O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
    O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Oracle Corporation - Java(TM) Deployment Library.) -- C:\Program Files\Java\jre7\bin\deploy.dll
    O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
    O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
    O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
    O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
    O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r22.) -- C:\Windows\System32\Macromed\Flash\Flash10b.ocx
    ~ Scan Active Setup in 00mn 00s

    ---\\ Pilotes lancés au démarrage (O41)
    O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
    O41 - Driver: (AvgLdx86) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\system32\Drivers\avgldx86.sys
    O41 - Driver: (AvgMfx86) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\system32\Drivers\avgmfx86.sys
    O41 - Driver: (AvgTdiX) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\system32\Drivers\avgtdix.sys
    O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
    O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
    O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
    O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
    O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
    O41 - Driver: (MpKsl103f32f1) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl103f32f1.sys (.not file.)
    O41 - Driver: (MpKsl15321329) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKsl15321329.sys (.not file.)
    O41 - Driver: (MpKsl16908a0f) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl16908a0f.sys (.not file.)
    O41 - Driver: (MpKsl8013cc6b) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4B901509-A95F-417C-AFAA-F11D64A912CD}\MpKsl8013cc6b.sys (.not file.)
    O41 - Driver: (MpKslb6f73680) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKslb6f73680.sys (.not file.)
    O41 - Driver: (MpKslc21d96d5) . (. - .) - C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7398AF44-C923-4B5C-BFA6-6A20EFD899A2}\MpKslc21d96d5.sys (.not file.)
    O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
    O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
    O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
    O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
    O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
    O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
    O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
    O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
    O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
    O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
    O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
    O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
    O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
    O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
    O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
    ~ Scan Drivers in 00mn 00s

    ---\\ Logiciels installés (O42)
    O42 - Logiciel: AVG Free 9.0 - (.AVG Technologies.) [HKLM] -- AVG9Uninstall
    O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
    O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
    O42 - Logiciel: Adobe Reader 9 - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-A90000000001}
    O42 - Logiciel: Archiveur WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
    O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
    O42 - Logiciel: Dragon Ball Z Budokai HR - (.Pas de propriétaire.) [HKCU] -- Dragon Ball Z Budokai HR
    O42 - Logiciel: EVEREST Home Edition v2.20 - (.Lavalys Inc.) [HKLM] -- EVEREST Home Edition_is1
    O42 - Logiciel: GOM Player - (.Pas de propriétaire.) [HKLM] -- GOM Player
    O42 - Logiciel: HashCheck Shell Extension (x86-32) - (.Kai Liu.) [HKLM] -- HashCheck Shell Extension
    O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
    O42 - Logiciel: Java(TM) 7 Update 2 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217002FF}
    O42 - Logiciel: JavaFX 2.0.2 - (.Oracle Corporation.) [HKLM] -- {1111706F-666A-4037-7777-202328764D10}
    O42 - Logiciel: K-Lite Mega Codec Pack 4.1.4 - (.Pas de propriétaire.) [HKLM] -- KLiteCodecPack_is1
    O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
    O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
    O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
    O42 - Logiciel: MetaTrader - Forex Place - (.MetaQuotes Software Corp..) [HKLM] -- MetaTrader - Forex Place
    O42 - Logiciel: Micro Application - 36 Dictionnaires et Recueils de Correspondance - (.Pas de propriétaire.) [HKLM] -- {B410328C-0E8C-4DD2-9DB4-DE7766D0DFE0}
    O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM] -- {A4526B5A-89C0-4F4B-9E6E-4F883374D5F9}
    O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
    O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}
    O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
    O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
    O42 - Logiciel: Mozilla Firefox (3.6.13) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.6.13)
    O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
    O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}
    O42 - Logiciel: Samsung New PC Studio - (.Samsung Electronics Co., Ltd..) [HKLM] -- {F193FC0E-9E18-40FC-A974-509A1BDD240A}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951550) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{B243E9A5-ED77-4F1B-B338-2486FD82DC85}
    O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB951944) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{797AE457-BA17-4BBC-B501-25FB3A0103C7}
    O42 - Logiciel: TuneUp Utilities 2011 - (.TuneUp Software.) [HKLM] -- TuneUp Utilities 2011
    O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- Uniblue RegistryBooster
    O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
    O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
    O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2596560) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{2964DDE1-4925-4DF1-AF2C-0A36B3442228}
    O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\AVG Secure Search]
    [HKCU\Software\Adobe]
    [HKCU\Software\AppDataLow\Avg]
    [HKCU\Software\AppDataLow\Software\AVG Security Toolbar]
    [HKCU\Software\AppDataLow\Software]
    [HKCU\Software\AppDataLow]
    [HKCU\Software\Avg]
    [HKCU\Software\Classes]
    [HKCU\Software\Clients]
    [HKCU\Software\DivXNetworks]
    [HKCU\Software\GNU]
    [HKCU\Software\GRETECH]
    [HKCU\Software\Gabest]
    [HKCU\Software\Haali]
    [HKCU\Software\HookNetwork]
    [HKCU\Software\Intel]
    [HKCU\Software\JavaSoft]
    [HKCU\Software\LAventure]
    [HKCU\Software\Lavalys]
    [HKCU\Software\Macromedia]
    [HKCU\Software\Malwarebytes' Anti-Malware]
    [HKCU\Software\MetaQuotes Software]
    [HKCU\Software\Mobileleader]
    [HKCU\Software\Netscape]
    [HKCU\Software\ODBC]
    [HKCU\Software\Piriform]
    [HKCU\Software\Policies]
    [HKCU\Software\RocketDock]
    [HKCU\Software\Samsung]
    [HKCU\Software\TuneUp]
    [HKCU\Software\WinRAR SFX]
    [HKCU\Software\WinRAR]
    [HKLM\Software\ATI Technologies]
    [HKLM\Software\AVG Secure Search]
    [HKLM\Software\AVG Security Toolbar]
    [HKLM\Software\Adobe]
    [HKLM\Software\Avg]
    [HKLM\Software\Classes]
    [HKLM\Software\Clients]
    [HKLM\Software\Codec Tweak Tool]
    [HKLM\Software\DivXNetworks]
    [HKLM\Software\GNU]
    [HKLM\Software\GRETECH]
    [HKLM\Software\Gabest]
    [HKLM\Software\Google]
    [HKLM\Software\HaaliMkx]
    [HKLM\Software\Intel]
    [HKLM\Software\InterVideo]
    [HKLM\Software\JavaSoft]
    [HKLM\Software\JreMetrics]
    [HKLM\Software\KLCodecPack]
    [HKLM\Software\Macromedia]
    [HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
    [HKLM\Software\Malwarebytes' Anti-Malware]
    [HKLM\Software\MarkAny]
    [HKLM\Software\Micro Application]
    [HKLM\Software\MimarSinan]
    [HKLM\Software\MozillaPlugins]
    [HKLM\Software\Mozilla]
    [HKLM\Software\ODBC]
    [HKLM\Software\Oracle]
    [HKLM\Software\Piriform]
    [HKLM\Software\Policies]
    [HKLM\Software\RealNetworks]
    [HKLM\Software\RegisteredApplications]
    [HKLM\Software\S3R521]
    [HKLM\Software\Samsung]
    [HKLM\Software\Sonic]
    [HKLM\Software\TrendMicro]
    [HKLM\Software\TuneUp]
    [HKLM\Software\Uniblue]
    [HKLM\Software\VideoLAN]
    [HKLM\Software\mozilla.org]
    [HKLM\Software\vLite]
    ~ Scan Softwares in 00mn 00s

    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 05/12/2011 - 18:08:38 - [225,396] ----D- C:\Program Files\Adobe
    O43 - CFD: 05/12/2011 - 18:30:44 - [82,931] ----D- C:\Program Files\AVG
    O43 - CFD: 12/12/2011 - 17:16:44 - [7,875] ----D- C:\Program Files\AVG Secure Search
    O43 - CFD: 15/12/2011 - 17:33:16 - [0,086] ----D- C:\Program Files\BatteryBar
    O43 - CFD: 13/12/2011 - 19:46:50 - [4,120] ----D- C:\Program Files\CCleaner
    O43 - CFD: 13/12/2011 - 18:59:02 - [344,706] ----D- C:\Program Files\Common Files
    O43 - CFD: 07/12/2011 - 19:37:40 - [575,565] ----D- C:\Program Files\Dragon Ball Z Budokai HR
    O43 - CFD: 14/07/2009 - 09:01:32 - [79,371] ----D- C:\Program Files\DVD Maker
    O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\Program Files\Fichiers communs
    O43 - CFD: 05/12/2011 - 18:05:46 - [19,197] ----D- C:\Program Files\GRETECH
    O43 - CFD: 05/12/2011 - 18:36:44 - [18,782] --H-D- C:\Program Files\InstallShield Installation Information
    O43 - CFD: 05/12/2011 - 12:37:54 - [3,566] ----D- C:\Program Files\Intel
    O43 - CFD: 16/12/2011 - 15:57:56 - [4,264] ----D- C:\Program Files\Internet Explorer
    O43 - CFD: 13/12/2011 - 18:56:50 - [91,150] ----D- C:\Program Files\Java
    O43 - CFD: 05/12/2011 - 12:01:12 - [44,573] ----D- C:\Program Files\K-Lite Codec Pack
    O43 - CFD: 06/12/2011 - 14:42:32 - [6,498] ----D- C:\Program Files\Lavalys
    O43 - CFD: 09/12/2011 - 20:14:30 - [6,679] ----D- C:\Program Files\Malwarebytes' Anti-Malware
    O43 - CFD: 05/12/2011 - 18:36:22 - [0,211] ----D- C:\Program Files\MarkAny
    O43 - CFD: 19/12/2011 - 10:54:28 - [5,992] ----D- C:\Program Files\MetaTrader - Forex Place
    O43 - CFD: 05/12/2011 - 13:22:44 - [246,034] ----D- C:\Program Files\Micro Application
    O43 - CFD: 14/07/2009 - 09:01:22 - [140,965] ----D- C:\Program Files\Microsoft Games
    O43 - CFD: 05/12/2011 - 18:02:50 - [534,569] ----D- C:\Program Files\Microsoft Office
    O43 - CFD: 10/12/2011 - 12:14:28 - [36,633] ----D- C:\Program Files\Microsoft Silverlight
    O43 - CFD: 05/12/2011 - 18:02:48 - [0,014] ----D- C:\Program Files\Microsoft Visual Studio
    O43 - CFD: 05/12/2011 - 18:01:00 - [1,323] ----D- C:\Program Files\Microsoft Visual Studio 8
    O43 - CFD: 05/12/2011 - 18:03:00 - [3,032] ----D- C:\Program Files\Microsoft Works
    O43 - CFD: 05/12/2011 - 18:02:34 - [7,774] ----D- C:\Program Files\Microsoft.NET
    O43 - CFD: 05/12/2011 - 12:48:12 - [28,790] ----D- C:\Program Files\Mozilla Firefox
    O43 - CFD: 05/12/2011 - 18:02:52 - [0,025] ----D- C:\Program Files\MSBuild
    O43 - CFD: 08/12/2011 - 12:30:30 - [0] ----D- C:\Program Files\MSXML 4.0
    O43 - CFD: 13/12/2011 - 18:58:20 - [29,153] ----D- C:\Program Files\Oracle
    O43 - CFD: 14/07/2009 - 04:52:32 - [36,809] ----D- C:\Program Files\Reference Assemblies
    O43 - CFD: 28/10/2009 - 01:35:16 - [14,776] ----D- C:\Program Files\RocketDock
    O43 - CFD: 05/12/2011 - 18:37:40 - [252,986] ----D- C:\Program Files\Samsung
    O43 - CFD: 09/12/2011 - 21:27:22 - [0,383] ----D- C:\Program Files\Trend Micro
    O43 - CFD: 06/12/2011 - 14:59:00 - [57,753] ----D- C:\Program Files\TuneUp Utilities 2011
    O43 - CFD: 13/12/2011 - 19:51:04 - [18,150] ----D- C:\Program Files\Uniblue
    O43 - CFD: 14/07/2009 - 04:53:24 - [0] --H-D- C:\Program Files\Uninstall Information
    O43 - CFD: 05/12/2011 - 18:05:02 - [74,952] ----D- C:\Program Files\VideoLAN
    O43 - CFD: 14/07/2009 - 08:39:40 - [2,909] ----D- C:\Program Files\Windows Defender
    O43 - CFD: 14/07/2009 - 09:01:30 - [6,689] ----D- C:\Program Files\Windows Journal
    O43 - CFD: 14/07/2009 - 08:39:40 - [5,951] ----D- C:\Program Files\Windows Mail
    O43 - CFD: 14/07/2009 - 08:39:40 - [6,333] ----D- C:\Program Files\Windows Media Player
    O43 - CFD: 05/12/2011 - 12:00:00 - [4,790] ----D- C:\Program Files\Windows NT
    O43 - CFD: 14/07/2009 - 08:39:40 - [4,213] ----D- C:\Program Files\Windows Photo Viewer
    O43 - CFD: 19/12/2011 - 10:54:28 - [0,181] ----D- C:\Program Files\Windows Portable Devices
    O43 - CFD: 14/07/2009 - 08:39:40 - [102,833] ----D- C:\Program Files\Windows Sidebar
    O43 - CFD: 05/12/2011 - 12:10:58 - [3,452] ----D- C:\Program Files\WinRAR
    O43 - CFD: 19/12/2011 - 12:06:08 - [9,123] ----D- C:\Program Files\ZHPDiag
    O43 - CFD: 05/12/2011 - 18:08:46 - [4,387] ----D- C:\Program Files\Common Files\Adobe
    O43 - CFD: 19/12/2011 - 10:54:28 - [3,503] ----D- C:\Program Files\Common Files\AVG Secure Search
    O43 - CFD: 05/12/2011 - 18:02:48 - [0,089] ----D- C:\Program Files\Common Files\DESIGNER
    O43 - CFD: 05/12/2011 - 13:22:18 - [1,658] ----D- C:\Program Files\Common Files\InstallShield
    O43 - CFD: 05/12/2011 - 12:37:54 - [12,658] ----D- C:\Program Files\Common Files\Intel
    O43 - CFD: 13/12/2011 - 18:59:02 - [1,181] ----D- C:\Program Files\Common Files\Java
    O43 - CFD: 15/12/2011 - 15:22:46 - [240,096] ----D- C:\Program Files\Common Files\microsoft shared
    O43 - CFD: 14/07/2009 - 02:37:06 - [0,003] ----D- C:\Program Files\Common Files\Services
    O43 - CFD: 14/07/2009 - 02:37:06 - [39,200] ----D- C:\Program Files\Common Files\SpeechEngines
    O43 - CFD: 16/12/2011 - 18:54:24 - [41,931] ----D- C:\Program Files\Common Files\System
    O43 - CFD: 13/12/2011 - 16:38:44 - [0,001] ----D- C:\ProgramData\Adobe
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Application Data
    O43 - CFD: 13/12/2011 - 16:39:30 - [0,193] ----D- C:\ProgramData\AVG Secure Search
    O43 - CFD: 06/12/2011 - 08:39:48 - [2,302] ----D- C:\ProgramData\AVG Security Toolbar
    O43 - CFD: 05/12/2011 - 18:30:44 - [285,772] ----D- C:\ProgramData\avg9
    O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Bureau
    O43 - CFD: 06/12/2011 - 13:48:02 - [0,000] --H-D- C:\ProgramData\Common Files
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Desktop
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Documents
    O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Favoris
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Favorites
    O43 - CFD: 05/12/2011 - 18:06:48 - [0] ----D- C:\ProgramData\GRETECH
    O43 - CFD: 09/12/2011 - 20:14:28 - [7,187] ----D- C:\ProgramData\Malwarebytes
    O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Menu Démarrer
    O43 - CFD: 07/12/2011 - 15:44:00 - [6,690] ----D- C:\ProgramData\MetaQuotes
    O43 - CFD: 08/12/2011 - 18:07:04 - [124,329] -S--D- C:\ProgramData\Microsoft
    O43 - CFD: 10/12/2011 - 10:42:38 - [0,061] ----D- C:\ProgramData\Microsoft Help
    O43 - CFD: 05/12/2011 - 12:00:00 - [0] -SH-D- C:\ProgramData\Modèles
    O43 - CFD: 05/12/2011 - 12:01:10 - [0] ----D- C:\ProgramData\Real
    O43 - CFD: 05/12/2011 - 18:37:28 - [0,246] ----D- C:\ProgramData\Samsung
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Start Menu
    O43 - CFD: 13/12/2011 - 18:59:06 - [0,000] ----D- C:\ProgramData\Sun
    O43 - CFD: 14/07/2009 - 04:53:56 - [0] -SH-D- C:\ProgramData\Templates
    O43 - CFD: 06/12/2011 - 14:59:10 - [4,349] ----D- C:\ProgramData\TuneUp Software
    O43 - CFD: 05/12/2011 - 18:06:26 - [17,622] -SH-D- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    O43 - CFD: 13/12/2011 - 19:51:04 - [8,185] --H-D- C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
    O43 - CFD: 05/12/2011 - 20:17:20 - [0,701] ----D- C:\Users\hermann\AppData\Roaming\Adobe
    O43 - CFD: 06/12/2011 - 20:58:06 - [0,011] ----D- C:\Users\hermann\AppData\Roaming\BatteryBar
    O43 - CFD: 05/12/2011 - 13:31:12 - [0] ----D- C:\Users\hermann\AppData\Roaming\DivX
    O43 - CFD: 17/12/2011 - 14:25:04 - [0,000] ----D- C:\Users\hermann\AppData\Roaming\dvdcss
    O43 - CFD: 05/12/2011 - 18:06:38 - [0] ----D- C:\Users\hermann\AppData\Roaming\GRETECH
    O43 - CFD: 05/12/2011 - 12:03:10 - [0] ----D- C:\Users\hermann\AppData\Roaming\Identities
    O43 - CFD: 05/12/2011 - 18:38:50 - [0,002] ----D- C:\Users\hermann\AppData\Roaming\Macromedia
    O43 - CFD: 09/12/2011 - 20:14:36 - [0,005] ----D- C:\Users\hermann\AppData\Roaming\Malwarebytes
    O43 - CFD: 14/07/2009 - 09:00:34 - [0] ----D- C:\Users\hermann\AppData\Roaming\Media Center Programs
    O43 - CFD: 05/12/2011 - 13:31:12 - [0,000] ----D- C:\Users\hermann\AppData\Roaming\Media Player Classic
    O43 - CFD: 10/12/2011 - 18:24:54 - [3,511] -S--D- C:\Users\hermann\AppData\Roaming\Microsoft
    O43 - CFD: 05/12/2011 - 12:48:28 - [0,594] ----D- C:\Users\hermann\AppData\Roaming\Mozilla
    O43 - CFD: 05/12/2011 - 18:37:06 - [1,761] ----D- C:\Users\hermann\AppData\Roaming\Samsung
    O43 - CFD: 18/12/2011 - 23:33:32 - [0,310] ----D- C:\Users\hermann\AppData\Roaming\TuneUp Software
    O43 - CFD: 13/12/2011 - 19:51:10 - [0,307] ----D- C:\Users\hermann\AppData\Roaming\Uniblue
    O43 - CFD: 19/12/2011 - 10:54:28 - [0,508] ----D- C:\Users\hermann\AppData\Roaming\vlc
    O43 - CFD: 06/12/2011 - 12:52:10 - [12,553] ----D- C:\Users\hermann\AppData\Local\Adobe
    O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Application Data
    O43 - CFD: 06/12/2011 - 14:59:42 - [0,034] ----D- C:\Users\hermann\AppData\Local\AVG Security Toolbar
    O43 - CFD: 05/12/2011 - 18:34:52 - [128,025] ----D- C:\Users\hermann\AppData\Local\Downloaded Installations
    O43 - CFD: 08/12/2011 - 14:17:48 - [0,148] ----D- C:\Users\hermann\AppData\Local\ElevatedDiagnostics
    O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Historique
    O43 - CFD: 13/12/2011 - 16:04:48 - [132,506] ----D- C:\Users\hermann\AppData\Local\Microsoft
    O43 - CFD: 05/12/2011 - 18:00:34 - [0] ----D- C:\Users\hermann\AppData\Local\Microsoft Help
    O43 - CFD: 05/12/2011 - 12:48:16 - [22,137] ----D- C:\Users\hermann\AppData\Local\Mozilla
    O43 - CFD: 13/12/2011 - 19:50:32 - [0] ----D- C:\Users\hermann\AppData\Local\PackageAware
    O43 - CFD: 19/12/2011 - 11:56:46 - [7,440] ----D- C:\Users\hermann\AppData\Local\Temp
    O43 - CFD: 05/12/2011 - 12:03:00 - [0] -SH-D- C:\Users\hermann\AppData\Local\Temporary Internet Files
    O43 - CFD: 17/12/2011 - 13:45:30 - [59,168] ----D- C:\Users\hermann\AppData\Local\VirtualStore
    ~ Scan Program Folder in 00mn 15s

    ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 - LFC:[MD5.D4F45DB53A4948B5FEA43C31B861C06A] - 19/12/2011 - 12:06:11 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1048562]
    O44 - LFC:[MD5.A04653BAF1DE60E7D5AE95471EF29BEB] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1532276]
    O44 - LFC:[MD5.E3459D52E6351251156326CF85165B09] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfc009.dat [104412]
    O44 - LFC:[MD5.BF5BF1B7D15A7DF316D49C39E83FBC77] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [128562]
    O44 - LFC:[MD5.62F9CB2F65D0B784F05CE9CEC0A5B787] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfh009.dat [610094]
    O44 - LFC:[MD5.EE4D22BA2AEA993E182F4C263D9C7E9D] - 19/12/2011 - 12:03:09 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [697760]
    O44 - LFC:[MD5.242C4989F81C699E1CBDAB2DD4EEA252] - 19/12/2011 - 11:57:20 ---A- . (...) -- C:\Windows\IE9_main.log [28761]
    O44 - LFC:[MD5.EFB85C85A21FE082790CCF5BFC72DECC] - 19/12/2011 - 11:56:12 ---A- . (...) -- C:\Windows\setupact.log [2060]
    O44 - LFC:[MD5.36E9A8432110CC8024A5E323B80DA166] - 19/12/2011 - 11:56:07 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
    O44 - LFC:[MD5.4B2E1D7C79A8F7B5E7321639E8AAD36B] - 18/12/2011 - 23:05:16 ---A- . (...) -- C:\PhysicalDisk0_MBR.bin [512]
    O44 - LFC:[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - 16/12/2011 - 19:56:39 ---A- . (...) -- C:\Windows\epplauncher.mif [1912]
    O44 - LFC:[MD5.D668CFFB6B3C1EC015107DC5D26F2156] - 16/12/2011 - 19:00:51 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [318744]
    O44 - LFC:[MD5.7D643BB2B21B22621D76BE185AE9F7F8] - 16/12/2011 - 16:41:57 ---A- . (.Adobe Systems Incorporated - Windows NT OpenType/Type 1 Font Driver.) -- C:\Windows\system32\atmfd.dll [294912]
    O44 - LFC:[MD5.D592AAA377748FC50E34D731F0D0D7B8] - 16/12/2011 - 16:41:56 ---A- . (.Adobe Systems - Windows NT OpenType/Type 1 API Library..) -- C:\Windows\system32\atmlib.dll [34304]
    O44 - LFC:[MD5.0AF7946AD9B2E82058C6421EEC960FCF] - 16/12/2011 - 16:40:23 ---A- . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\system32\ir32_32.dll [197632]
    O44 - LFC:[MD5.17A4BE67FB6B9219A802F39C263AC8AC] - 16/12/2011 - 16:40:23 ---A- . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll [82944]
    O44 - LFC:[MD5.2856E60B567AAA607E21E10D165B641C] - 16/12/2011 - 07:50:16 ---A- . (...) -- C:\Windows\PFRO.log [304]
    O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/12/2011 - 11:59:53 ---A- . (...) -- C:\Windows\setuperr.log [0]
    O44 - LFC:[MD5.0E13AC887BFC49E1E2AE672D94E629C2] - 13/12/2011 - 18:57:27 ---A- . (.Oracle Corporation -
    0
  2. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    il faut le message exact de l'ecran bleu

    et le rapport zhpdiag il faut l'heberger sinon il manque la moitiée
    0
  3. sachadis Messages postés 14 Statut Membre
     
    pour le message de l'ecran bleu ca n'apparait pas a tous les demarrage.et je soppose qu'on ne peut pas faire de copier coller.donc je le recopie?le rapport est heberger là: https://www.luanagames.com/index.fr.html
    0
  4. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  5. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    pas grand chose comme infection

    mets à jour avg avec la version 2012

    colle un rapport avec malwarebyte que tu as et nod 32 en ligne ici: antivirus en ligne

    et il faut absolument le message de l'ecran bleu

    (fais une photo et heberge la si besoin)
    0
  6. sachadis Messages postés 14 Statut Membre
     
    j'essai d'installer nod 32 mais ca met error inattentue 2002.voici le message de l'ecran bleu:
    A problem has been detected and windows has been shut down to prevent damage to your computer
    If this is the first time you've seenthis stop error screen restart your computer.if this screnn apears again ,follow these steps:
    Check to be sure you have adequate disk space.if a drivers identified in the stop message,disable the driver or check with the manufactirer for drivers updates.try changing video adapters.
    Check with you hardware vendor for any bios update.disable BIOS memory options such as caching or shadowing.if you need to use safe mode to remove or disable components,restart your computer,press F8 to select advanced startup options,and thenselect safe mode.
    technical information
    ***stop: oxcoooooo7E (0x0000005,0x82DB445,0x80786790,0x80786370)
    et le rapport de mawarebit:
    Malwarebytes' Anti-Malware 1.51.2.1300
    www.malwarebytes.org

    Version de la base de données: 8365

    Windows 6.1.7600
    Internet Explorer 8.0.7600.16385

    14/12/2011 13:55:11
    mbam-log-2011-12-14 (13-55-11).txt

    Type d'examen: Examen complet (C:\|D:\|E:\|F:\|)
    Elément(s) analysé(s): 264205
    Temps écoulé: 54 minute(s), 3 seconde(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 0
    Valeur(s) du Registre infectée(s): 0
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 0

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Valeur(s) du Registre infectée(s):
    (Aucun élément nuisible détecté)

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    (Aucun élément nuisible détecté)
    avec tuneup j'avais fais une analyse et ca disais que les periphériques MpKsl103f32f1 Mpksl15321329 MpKsl16908a0f ne sont pas a jours mait j'arrive pas atrouvé leurs mise a jour.
    0
    1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
       
      sinon utilise un autre antivirus en ligne comme norton secuser...
      0
  7. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    teste ta ram avec memtest pour voir et dis nous si des erreurs sont trouvées

    et mets à jour les pilotes en t'aidant de www.touslesdrivers.com

    sinon tu as mis un nouveau logiciel ou pilote avant que l'écran bleu apparaisse?

    colle un rapport avec le logiciel whocrashed
    0
  8. sachadis Messages postés 14 Statut Membre
     
    j'ai telecharger memtest mais j'arrive pas a l'executer.vous pouvez pas me conseiller un autre logiciel?je suis entrain de mettre les pilotes a jour.j'ai pas souvenance d'avoir mis un nouveau pilote avant que ca commence.c'etait plutot ce qui m'a semblé etre un virus,qui bloquait mon ecran.animal hunting ca s'appelait.et apparament whocrashed n'a rien trouvé.le dossier minidump est vide.et ca dit:
    Crash Dump Analysis
    --------------------------------------------------------------------------------

    Crash dump directory: C:\Windows\Minidump

    Crash dumps are enabled on your computer.

    No valid crash dumps have been found on your computer
    0
  9. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):

    - Va dans démarrer puis panneau de configuration
    - Double Clique sur l'icône "Comptes d'utilisateurs"
    - Clique ensuite sur désactiver et valide.

    télécharge combofix (par sUBs) ici :

    http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    et enregistre le sur le bureau.

    déconnecte toi d'internet et ferme toutes tes applications.

    désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)

    double-clique sur combofix.exe et suis les instructions

    à la fin, il va produire un rapport C:\ComboFix.txt

    réactive ton parefeu, ton antivirus, la garde de ton antispyware

    copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.

    Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

    Tu as un tutoriel complet ici :

    https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
    0
  10. sachadis Messages postés 14 Statut Membre
     
    ma version de windows ne me permet pas de desactiver les comptes d'utilisateur je peut seulement supprimer ou modifier.c'est la meme chose pour les antivirus.c'est seulement le par feu que je peut desactiver.est ce que je peu lancer combofix dans ces conditions?
    0
  11. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    oui lance
    0