Sujet Précédent Sujet Suivant

Rapport ZHPDIAG

xamal42155 Messages postés 9 Statut Membre -  
del-crosseur Messages postés 529 Statut Contributeur sécurité -
Bonjour,



Rapport de ZHPDiag v1.28.309 par Nicolas Coolman, Update du 10/01/2012
Run by alex at 11/01/2012 17:39:13
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.

---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 9.0.1 v9.0.1 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : Absent (Not found)
Windows ID Activation : Inconnue (Unknown)
Windows Licence : Inconnue (Unknown)
Software Protection Service (Protection logicielle) : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: AMD64 Family 16 Model 4 Stepping 3, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 7677 MB (78% free)
System Restore: Activé (Enable)
System drive C: has 41 GB (53%) free of 76 GB

---\\ Logged in mode
~ Computer Name: ALEX-PC
~ User Name: alex
~ All Users Names: HomeGroupUser$, alex, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\alex\AppData\Roaming\
~ %Desktop% : C:\Users\alex\Desktop\
~ %Favorites% : C:\Users\alex\Favorites\
~ %LocalAppData% : C:\Users\alex\AppData\Local\
~ %StartMenu% : C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 41 Go of 76 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 84 Go of 233 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 580 Go of 932 Go)
F:\ CD-ROM drive (Free 0 Go of 3 Go)
G:\ CD-ROM drive (Not Inserted)
H:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 1 Go)

---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s

---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.16/12/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.4EFC156290537BB9706D3A7A1A4B8733] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.16/12/2011 - 06:41:43.) -- C:\Windows\system32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows multi-utilisateurs.) (.12/04/2011 - 10:15:59.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.D5B031C308A409A0A576BFF4CF083D30] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.16/12/2011 - 03:34:03.) -- C:\Windows\system32\drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.16/12/2011 - 03:40:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.18/12/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/4
~ Mes Favoris (My Favorites) : 3/26
~ Mes Documents (My Documents) : 1/624
~ Mon Bureau (My Desktop) : 1/21
~ Menu demarrer (Programs) : 6/42
~ Scan Hidden Files in 00mn 00s

---\\ Processus lancés
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912] [PID.2680]
[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248552] [PID.2908]
[MD5.87893167C98FCEF5D14077511F219B75] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\javaw.exe [145184] [PID.1908]
[MD5.11CCA710674739E3DB8F7450A5B650B6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.3428]
[MD5.0619C9E7A3682C54BD226A831897CD06] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.3332]
[MD5.8CAF454179C2837B0342B790589ACF0F] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [2210304] [PID.2672]
[MD5.11A52CF7B265631DEEB24C6149309EFF] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64952] [PID.]
~ Scan Processes Running in 00mn 00s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 5.2.2.0.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
~ Scan Firefox Browser in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.facemoods.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (8.00.7600.16385 (win7_rtm.090713-1255)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s

---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s

---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\x64\3\E_IATIFCE.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3441451225-691038142-4230681200-1000\..\Run: [EPSON SX410 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\x64\3\E_IATIFCE.exe
O4 - HKUS\S-1-5-21-3441451225-691038142-4230681200-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - HKUS\S-1-5-21-3441451225-691038142-4230681200-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s

---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\alex\Desktop\Artisteer 3.lnk . (.ExtenSoft.) -- C:\Program Files (x86)\Artisteer 3\bin\Artisteer.exe
O4 - Global Startup: C:\Users\alex\Desktop\ASIO4ALL v2 Instruction Manual.lnk . (...) -- C:\Program Files (x86)\ASIO4ALL v2\ASIO4ALL v2 Instruction Manual.pdf
O4 - Global Startup: C:\Users\alex\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
O4 - Global Startup: C:\Users\alex\Desktop\FL Studio 10.lnk . (.Image-Line.) -- C:\Program Files (x86)\Image-Line\FL Studio 10\FL.exe
O4 - Global Startup: C:\Users\alex\Desktop\Glary Utilities.lnk . (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\Integrator.exe
O4 - Global Startup: C:\Users\alex\Desktop\JDownloader - Raccourci.lnk . (.AppWork UG (haftungsbeschränkt).) -- C:\Program Files (x86)\JDownloader\JDownloader.exe
O4 - Global Startup: C:\Users\alex\Desktop\Notepad++.lnk . (.Don HO don.h@free.fr.) -- C:\Program Files (x86)\Notepad++\notepad++.exe
O4 - Global Startup: C:\Users\alex\Desktop\WiiBackupManager_Win64 - Raccourci.lnk . (...) -- C:\Users\alex\Documents\26812-WiiBackupManager_Build78\WiiBackupManager_Win64.exe
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Artisteer 3.lnk . (.ExtenSoft.) -- C:\Program Files (x86)\Artisteer 3\bin\Artisteer.exe
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk . (.Mozilla Messaging.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
O4 - Global Startup: C:\Users\alex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk . (.Samsung.) -- C:\Program Files (x86)\Samsung\Kies\Kies.exe
~ Scan Global Startup in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
~ Scan Winsock in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{02D26526-FD6C-4A1A-BB21-567A6485E343}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{02D26526-FD6C-4A1A-BB21-567A6485E343}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS2\Services\Tcpip\..\{02D26526-FD6C-4A1A-BB21-567A6485E343}: DhcpNameServer = 212.27.40.241 212.27.40.240
~ Scan Domain in 00mn 00s

---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
~ Scan Protocole Additionnel in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\system32\atiesrxx.exe
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.exe
~ Scan Services in 00mn 00s

---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s

---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GlaryInitialize.job
[MD5.3793FDB99D37CDEA76D76C0EEE11E36D] [APT] [GlaryInitialize] (.Glarysoft Ltd.) -- C:\Program Files (x86)\Glary Utilities\initialize.exe
~ Scan Scheduled Task in 00mn 02s

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player.) -- C:\Windows\system32\wmp.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s

---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\system32\drivers\csc.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\system32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV64.SYS.) - C:\Users\alex\AppData\Local\Temp\SAS_SelfExtract\SASDIFSV64.sys
O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL64.SYS.) - C:\Users\alex\AppData\Local\Temp\SAS_SelfExtract\SASKUTIL64.sys
O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s

---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.22beta - (.Pas de propriétaire.) [HKLM] -- 7-Zip
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM] -- {0BD776F3-057D-4C11-020C-4FA9B13D04F9}
O42 - Logiciel: AMD Drag and Drop Transcoding - (.Advanced Micro Devices, Inc..) [HKLM] -- {4D533F05-A3F6-F8A9-F1F6-FA6812089D36}
O42 - Logiciel: AMD Media Foundation Decoders - (.Advanced Micro Devices, Inc..) [HKLM] -- {A6FE29A0-622B-2763-88AA-D1E084F77CD9}
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM] -- ASIO4ALL
O42 - Logiciel: Adobe Flash Player 11 ActiveX 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin 64-bit - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader X (10.1.1) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Artisteer 3 - (.Extensoft.) [HKLM] -- Artisteer 3
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM] -- {2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Désinstaller l'imprimante EPSON SX410 Series - (.SEIKO EPSON Corporation.) [HKLM] -- EPSON SX410 Series
O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner
O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: FL Studio 10 - (.Image-Line.) [HKLM] -- FL Studio 10
O42 - Logiciel: Free Devis Factures 2012 - (.JP Eldin.) [HKLM] -- {C2D5B90E-92FF-4A5D-93EF-BE1EBA3EBE85}
O42 - Logiciel: GIMP 2.6.11 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Glary Utilities Pro 2.40.0.1326 - (.Glarysoft Ltd.) [HKLM] -- Glary Utilities_is1
O42 - Logiciel: Hercules Link - (.Hercules.) [HKLM] -- {B1549CC1-EB81-4E7C-9C7C-8B97CD9FD37A}
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM] -- 5513-1208-7298-9440
O42 - Logiciel: JMicron JMB36X Driver - (.JMicron Technology Corp..) [HKLM] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}
O42 - Logiciel: Java(TM) 6 Update 22 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022FF}
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM] -- {812489B5-A2A9-474B-9BE7-55410E0E1DB4}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.60.0.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile FRA Language Pack - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {837b34e3-7c30-493c-8f6a-2b0f04e2912c}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
O42 - Logiciel: Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 - (.Microsoft Corporation.) [HKLM] -- {1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
O42 - Logiciel: Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 - (.Microsoft Corporation.) [HKLM] -- {196BB40D-1578-3D01-B289-BEFC77A11A1E}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox 9.0.1 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 9.0.1 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird (8.0) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird (8.0)
O42 - Logiciel: Notepad++ - (.Pas de propriétaire.) [HKLM] -- Notepad++
O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM] -- {05653DE1-6567-40C6-B930-39D399B64369}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: SPORE(TM) - (.Electronic Arts.) [HKLM] -- {9DF0196F-B6B8-4C3A-8790-DE42AA530101}
O42 - Logiciel: SPORE(TM) : Pack d'éléments étranges et mignons - (.Electronic Arts.) [HKLM] -- {C07F8D75-7A8D-400E-A8F9-A3F396B49BB1}
O42 - Logiciel: SPORE(TM) Aventures Galactiques - (.Electronic Arts.) [HKLM] -- {63CEA2E4-4FE7-4F2C-B388-C1313D24157C}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2572078
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Skype(TM) 5.5 - (.Skype Technologies S.A..) [HKLM] -- {AA59DDE4-B672-4621-A016-4C248204957A}
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523
O42 - Logiciel: VLC media player 1.1.11 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: server2go version 1.8.3 - (.Sarki.) [HKLM] -- {154831A8-CAC5-4A0B-AB9A-5940D5F6A3CF}_is1

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\AMD]
[HKCU\Software\ATI]
[HKCU\Software\Addictive Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DAZ]
[HKCU\Software\DT Soft]
[HKCU\Software\EPSON]
[HKCU\Software\Extensoft]
[HKCU\Software\GlarySoft]
[HKCU\Software\Hercules]
[HKCU\Software\Image-Line]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Namo]
[HKCU\Software\Netscape]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Samsung]
[HKCU\Software\Skype]
[HKCU\Software\SoftVoice]
[HKCU\Software\Symantec]
[HKCU\Software\Trolltech]
[HKCU\Software\Wow6432Node]
[HKCU\Software\cybelsoft]
[HKCU\Software\ej-technologies]
[HKLM\Software\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Adobe]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DT Soft]
[HKLM\Software\EA Games]
[HKLM\Software\EPSON]
[HKLM\Software\Electronic Arts]
[HKLM\Software\GlarySoft]
[HKLM\Software\Google]
[HKLM\Software\Hercules]
[HKLM\Software\Image-Line]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Namo]
[HKLM\Software\ODBC]
[HKLM\Software\OpenOffice.org]
[HKLM\Software\Outsim]
[HKLM\Software\Piriform]
[HKLM\Software\PixArt]
[HKLM\Software\Policies]
[HKLM\Software\Propellerhead Software]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\Skype]
[HKLM\Software\SoftVoice]
[HKLM\Software\Sonic]
[HKLM\Software\VST]
[HKLM\Software\VideoLAN]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01/01/2010 - 09:12:28 - [26,149] ----D- C:\Program Files\ATI
O43 - CFD: 01/01/2010 - 09:13:22 - [5,104] ----D- C:\Program Files\ATI Technologies
O43 - CFD: 10/01/2012 - 17:37:42 - [8,481] ----D- C:\Program Files\CCleaner
O43 - CFD: 01/01/2010 - 09:13:30 - [61,859] ----D- C:\Program Files\Common Files
O43 - CFD: 10/01/2012 - 13:00:16 - [0] ----D- C:\Program Files\DAZ 3D
O43 - CFD: 12/04/2011 - 10:28:32 - [86,076] ----D- C:\Program Files\DVD Maker
O43 - CFD: 01/01/2010 - 03:58:26 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 16/12/2011 - 22:37:32 - [4,941] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 16/12/2011 - 22:30:40 - [9,624] ----D- C:\Program Files\ma-config.com
O43 - CFD: 14/07/2009 - 06:32:40 - [0,025] ----D- C:\Program Files\MSBuild
O43 - CFD: 14/07/2009 - 06:32:40 - [35,109] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 14/07/2009 - 06:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 12/04/2011 - 10:16:38 - [3,853] ----D- C:\Program Files\Windows Defender
O43 - CFD: 12/04/2011 - 10:28:30 - [8,797] ----D- C:\Program Files\Windows Journal
O43 - CFD: 12/04/2011 - 10:16:38 - [6,359] ----D- C:\Program Files\Windows Mail
O43 - CFD: 12/04/2011 - 10:16:38 - [7,331] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 01/01/2010 - 03:58:26 - [12,043] ----D- C:\Program Files\Windows NT
O43 - CFD: 12/04/2011 - 10:16:38 - [5,261] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:36 - [0,233] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 12/04/2011 - 10:16:38 - [6,718] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 01/01/2010 - 09:13:30 - [0,393] ----D- C:\Program Files\Common Files\ATI Technologies
O43 - CFD: 01/01/2010 - 09:12:42 - [49,253] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [0,581] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 16/12/2011 - 22:37:34 - [11,629] ----D- C:\Program Files\Common Files\System
O43 - CFD: 16/12/2011 - 21:34:28 - [135,222] ----D- C:\ProgramData\Adobe
O43 - CFD: 01/01/2010 - 09:13:16 - [0,001] ----D- C:\ProgramData\AMD
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 01/01/2010 - 09:16:30 - [0,000] ----D- C:\ProgramData\ATI
O43 - CFD: 01/01/2010 - 03:58:26 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 04/01/2012 - 21:04:00 - [0,001] ----D- C:\ProgramData\DAEMON Tools Lite
O43 - CFD: 05/01/2012 - 16:05:26 - [8,434] ----D- C:\ProgramData\DAZ 3D
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 16/12/2011 - 22:36:24 - [8,289] ----D- C:\ProgramData\EPSON
O43 - CFD: 01/01/2010 - 03:58:26 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 08/01/2012 - 14:55:08 - [0,775] ----D- C:\ProgramData\Free Devis Factures
O43 - CFD: 16/12/2011 - 22:30:40 - [1,230] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 10/01/2012 - 13:05:22 - [0,001] ----D- C:\ProgramData\Macromedia
O43 - CFD: 11/01/2012 - 14:33:44 - [6,957] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 01/01/2010 - 03:58:26 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 16/12/2011 - 22:28:36 - [196,572] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 01/01/2010 - 03:58:26 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 10/01/2012 - 13:56:42 - [6,828] ----D- C:\ProgramData\Samsung
O43 - CFD: 21/12/2011 - 16:01:16 - [17,984] ----D- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 16/12/2011 - 21:48:20 - [0,000] ----D- C:\ProgramData\Sun
O43 - CFD: 11/01/2012 - 13:31:42 - [0] ----D- C:\ProgramData\SUPERAntiSpyware.com
O43 - CFD: 27/12/2011 - 12:35:54 - [0,665] ----D- C:\ProgramData\Symantec
O43 - CFD: 01/01/2012 - 17:27:32 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 16/12/2011 - 20:22:56 - [1,627] ----D- C:\Users\alex\AppData\Roaming\Adobe
O43 - CFD: 27/12/2011 - 11:49:30 - [0,000] ----D- C:\Users\alex\AppData\Roaming\Apple Computer
O43 - CFD: 27/12/2011 - 11:49:32 - [5,514] ----D- C:\Users\alex\AppData\Roaming\Artisteer
O43 - CFD: 01/01/2010 - 09:16:30 - [0] ----D- C:\Users\alex\AppData\Roaming\ATI
O43 - CFD: 05/01/2012 - 16:18:18 - [0,014] ----D- C:\Users\alex\AppData\Roaming\BlamGames
O43 - CFD: 10/01/2012 - 17:38:24 - [0] ----D- C:\Users\alex\AppData\Roaming\DAEMON Tools Lite
O43 - CFD: 05/01/2012 - 16:04:46 - [4,601] ----D- C:\Users\alex\AppData\Roaming\DAZ 3D
O43 - CFD: 02/01/2012 - 12:35:48 - [0,185] ----D- C:\Users\alex\AppData\Roaming\ERS Game Studios
O43 - CFD: 30/12/2011 - 21:46:34 - [0,012] ----D- C:\Users\alex\AppData\Roaming\GlarySoft
O43 - CFD: 11/01/2012 - 10:54:20 - [0,000] ----D- C:\Users\alex\AppData\Roaming\gtk-2.0
O43 - CFD: 01/01/2010 - 03:58:50 - [0] ----D- C:\Users\alex\AppData\Roaming\Identities
O43 - CFD: 01/01/2010 - 09:31:42 - [0] ----D- C:\Users\alex\AppData\Roaming\InstallShield
O43 - CFD: 05/01/2012 - 16:14:48 - [0,003] ----D- C:\Users\alex\AppData\Roaming\Macromedia
O43 - CFD: 01/01/2012 - 19:36:52 - [0,043] ----D- C:\Users\alex\AppData\Roaming\MagicIndie
O43 - CFD: 11/01/2012 - 14:33:52 - [6,915] ----D- C:\Users\alex\AppData\Roaming\Malwarebytes
O43 - CFD: 12/04/2011 - 10:28:10 - [0] ----D- C:\Users\alex\AppData\Roaming\Media Center Programs
O43 - CFD: 10/01/2012 - 14:03:50 - [0,725] -S--D- C:\Users\alex\AppData\Roaming\Microsoft
O43 - CFD: 01/01/2010 - 08:18:34 - [19,567] ----D- C:\Users\alex\AppData\Roaming\Mozilla
O43 - CFD: 16/12/2011 - 20:43:34 - [0,239] ----D- C:\Users\alex\AppData\Roaming\Notepad++
O43 - CFD: 16/12/2011 - 22:05:52 - [1,657] ----D- C:\Users\alex\AppData\Roaming\OpenOffice.org
O43 - CFD: 10/01/2012 - 13:55:42 - [8,690] ----D- C:\Users\alex\AppData\Roaming\Samsung
O43 - CFD: 11/01/2012 - 15:09:30 - [2,023] ----D- C:\Users\alex\AppData\Roaming\Skype
O43 - CFD: 04/01/2012 - 21:18:24 - [159,273] ----D- C:\Users\alex\AppData\Roaming\SPORE
O43 - CFD: 11/01/2012 - 13:31:42 - [0] ----D- C:\Users\alex\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 01/01/2010 - 09:37:30 - [304,586] ----D- C:\Users\alex\AppData\Roaming\Thunderbird
O43 - CFD: 22/12/2011 - 13:17:40 - [0,001] ----D- C:\Users\alex\AppData\Roaming\vlc
O43 - CFD: 20/12/2011 - 14:37:38 - [0] ----D- C:\Users\alex\AppData\Roaming\WinRAR
O43 - CFD: 01/01/2012 - 17:15:50 - [0,007] ----D- C:\Users\alex\AppData\Roaming\YoudaGames
O43 - CFD: 10/01/2012 - 12:58:04 - [65,911] ----D- C:\Users\alex\AppData\Local\Adobe
O43 - CFD: 01/01/2010 - 09:16:42 - [0,000] ----D- C:\Users\alex\AppData\Local\AMD
O43 - CFD: 27/12/2011 - 11:49:30 - [0] ----D- C:\Users\alex\AppData\Local\Apple Computer
O43 - CFD: 01/01/2010 - 03:58:40 - [0] -SH-D- C:\Users\alex\AppData\Local\Application Data
O43 - CFD: 01/01/2010 - 09:16:30 - [0,066] ----D- C:\Users\alex\AppData\Local\ATI
O43 - CFD: 16/12/2011 - 22:51:44 - [0,023] ----D- C:\Users\alex\AppData\Local\Cooliris
O43 - CFD: 10/01/2012 - 13:54:54 - [70,011] ----D- C:\Users\alex\AppData\Local\Downloaded Installations
O43 - CFD: 01/01/2010 - 03:58:40 - [0] -SH-D- C:\Users\alex\AppData\Local\Historique
O43 - CFD: 05/01/2012 - 16:14:46 - [5,361] ----D- C:\Users\alex\AppData\Local\Macromedia
O43 - CFD: 22/12/2011 - 16:06:36 - [27,491] ----D- C:\Users\alex\AppData\Local\Microsoft
O43 - CFD: 01/01/2010 - 08:18:16 - [157,162] ----D- C:\Users\alex\AppData\Local\Mozilla
O43 - CFD: 10/01/2012 - 17:02:38 - [0,008] ----D- C:\Users\alex\AppData\Local\Samsung
O43 - CFD: 11/01/2012 - 17:37:30 - [124,275] ----D- C:\Users\alex\AppData\Local\Temp
O43 - CFD: 01/01/2010 - 03:58:40 - [0] -SH-D- C:\Users\alex\AppData\Local\Temporary Internet Files
O43 - CFD: 01/01/2010 - 09:37:30 - [5,879] ----D- C:\Users\alex\AppData\Local\Thunderbird
O43 - CFD: 09/01/2012 - 18:19:12 - [3,114] ----D- C:\Users\alex\AppData\Local\VirtualStore
O43 - CFD: 16/12/2011 - 21:26:02 - [3,440] ----D- C:\Program Files (x86)\7-Zip
O43 - CFD: 16/12/2011 - 20:21:00 - [111,647] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 01/01/2010 - 09:13:40 - [2,324] ----D- C:\Program Files (x86)\AMD APP
O43 - CFD: 19/12/2011 - 11:22:28 - [126,697] ----D- C:\Program Files (x86)\Artisteer 3
O43 - CFD: 05/01/2012 - 16:17:32 - [0,508] ----D- C:\Program Files (x86)\ASIO4ALL v2
O43 - CFD: 01/01/2010 - 09:12:44 - [40,804] ----D- C:\Program Files (x86)\ATI Technologies
O43 - CFD: 10/01/2012 - 13:05:12 - [128,043] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 04/01/2012 - 21:04:18 - [24,459] ----D- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD: 05/01/2012 - 16:04:18 - [0,002] ----D- C:\Program Files (x86)\DAZ 3D
O43 - CFD: 04/01/2012 - 21:16:22 - [1838,493] ----D- C:\Program Files (x86)\Electronic Arts
O43 - CFD: 16/12/2011 - 22:36:52 - [7,179] ----D- C:\Program Files (x86)\epson
O43 - CFD: 08/01/2012 - 14:40:44 - [10,301] ----D- C:\Program Files (x86)\Free Devis Factures
O43 - CFD: 11/01/2012 - 10:40:22 - [107,900] ----D- C:\Program Files (x86)\GIMP-2.0
O43 - CFD: 30/12/2011 - 21:45:26 - [18,793] ----D- C:\Program Files (x86)\Glary Utilities
O43 - CFD: 01/01/2010 - 09:31:50 - [3,051] ----D- C:\Program Files (x86)\Hercules
O43 - CFD: 05/01/2012 - 16:17:22 - [531,973] ----D- C:\Program Files (x86)\Image-Line
O43 - CFD: 10/01/2012 - 13:55:54 - [392,797] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 16/12/2011 - 22:37:32 - [4,381] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 16/12/2011 - 21:48:10 - [86,481] ----D- C:\Program Files (x86)\Java
O43 - CFD: 11/01/2012 - 10:45:34 - [55,308] ----D- C:\Program Files (x86)\JDownloader
O43 - CFD: 09/01/2012 - 18:08:12 - [15,945] ----D- C:\Program Files (x86)\Lavalys
O43 - CFD: 11/01/2012 - 14:33:46 - [11,391] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 10/01/2012 - 13:56:20 - [2,447] ----D- C:\Program Files (x86)\MarkAny
O43 - CFD: 28/12/2011 - 21:14:16 - [0,015] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 09/01/2012 - 12:15:42 - [37,827] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 01/01/2010 - 09:37:26 - [38,260] ----D- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD: 14/07/2009 - 06:32:40 - [0,025] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 10/01/2012 - 13:06:50 - [4,384] ----D- C:\Program Files (x86)\Namo
O43 - CFD: 16/12/2011 - 20:43:30 - [10,917] ----D- C:\Program Files (x86)\Notepad++
O43 - CFD: 16/12/2011 - 21:48:26 - [353,458] ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 05/01/2012 - 16:17:12 - [3,453] ----D- C:\Program Files (x86)\Outsim
O43 - CFD: 01/01/2010 - 09:29:10 - [2,672] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:40 - [37,345] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 10/01/2012 - 13:56:48 - [191,144] ----D- C:\Program Files (x86)\Samsung
O43 - CFD: 21/12/2011 - 16:01:16 - [16,555] R---D- C:\Program Files (x86)\Skype
O43 - CFD: 27/12/2011 - 12:35:54 - [1,887] ----D- C:\Program Files (x86)\Symantec
O43 - CFD: 14/07/2009 - 05:57:08 - [0] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 21/12/2011 - 18:40:50 - [80,793] ----D- C:\Program Files (x86)\VideoLAN
O43 - CFD: 05/01/2012 - 16:17:24 - [1,781] ----D- C:\Program Files (x86)\VstPlugins
O43 - CFD: 12/04/2011 - 10:16:38 - [0,500] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 10:16:38 - [5,895] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 12/04/2011 - 10:16:38 - [4,791] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 06:32:40 - [11,632] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 10:16:38 - [4,213] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:40 - [0,181] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 10:16:38 - [5,717] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 11/01/2012 - 17:39:22 - [10,093] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 10/01/2012 - 17:01:28 - [54,319] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 01/01/2010 - 09:13:30 - [0,324] ----D- C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 05/01/2012 - 16:07:42 - [0,000] ----D- C:\Program Files (x86)\Common Files\DAZ
O43 - CFD: 05/01/2012 - 16:12:20 - [5,743] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 16/12/2011 - 21:48:20 - [1,185] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 01/01/2010 - 09:32:02 - [17,498] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - 04:20:10 - [0,003] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:10 - [39,200] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/12/2011 - 22:37:34 - [9,771] ----D- C:\Program Files (x86)\Common Files\System
~ Scan Program Folder in 00mn 04s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.6EE2482767DB8046CF502A4525C2C228] - 11/01/2012 - 17:16:02 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1048457]
O44 - LFC:[MD5.A74788E4E376F2FFB020A93AB84D78FE] - 11/01/2012 - 15:15:33 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.F9B6A9657FA34AECBEC9E1B18AF96128] - 11/01/2012 - 15:15:33 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106190]
O44 - LFC:[MD5.5461F76B5828ECB91D4D8AD68A519131] - 11/01/2012 - 15:15:33 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130548]
O44 - LFC:[MD5.848FBCCD07969B237AA3EDBF6660AEB5] - 11/01/2012 - 15:15:33 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [615810]
O44 - LFC:[MD5.2389D5539B60D939C6607E61DCBA27C5] - 11/01/2012 - 15:15:33 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704242]
O44 - LFC:[MD5.A74788E4E376F2FFB020A93AB84D78FE] - 11/01/2012 - 15:15:33 RSHAD . (...) -- C:\Windows\system32\PerfStringBackup.INI [1549700]
O44 - LFC:[MD5.F9B6A9657FA34AECBEC9E1B18AF96128] - 11/01/2012 - 15:15:33 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [106190]
O44 - LFC:[MD5.5461F76B5828ECB91D4D8AD68A519131] - 11/01/2012 - 15:15:33 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [130548]
O44 - LFC:[MD5.848FBCCD07969B237AA3EDBF6660AEB5] - 11/01/2012 - 15:15:33 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [615810]
O44 - LFC:[MD5.2389D5539B60D939C6607E61DCBA27C5] - 11/01/2012 - 15:15:33 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat [704242]
O44 - LFC:[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - 11/01/2012 - 15:08:40 ---A- . (...) -- C:\Windows\setupact.log [56]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 11/01/2012 - 15:08:40 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.6A11957F12B38767CB91267B72DCD1CC] - 11/01/2012 - 15:08:39 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.0693D59796EE30C165B875193172B983] - 11/01/2012 - 15:08:32 ---A- . (...) -- C:\Windows\PFRO.log [1556]
O44 - LFC:[MD5.79DA94B35371B9E7104460C7693DCB2C] - 11/01/2012 - 14:33:42 RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [23152]
O44 - LFC:[MD5.5D013F35A46C970D787BF17B109D5520] - 10/01/2012 - 17:01:07 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [292872]
O44 - LFC:[MD5.5D013F35A46C970D787BF17B109D5520] - 10/01/2012 - 17:01:07 RSHAD . (...) -- C:\Windows\system32\FNTCACHE.DAT [292872]
O44 - LFC:[MD5.10ACAF0FA85C9E6D87A0C6A356A67B39] - 10/01/2012 - 16:59:55 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16656]
O44 - LFC:[MD5.10ACAF0FA85C9E6D87A0C6A356A67B39] - 10/01/2012 - 16:59:55 --HA- . (...) -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16656]
O44 - LFC:[MD5.10ACAF0FA85C9E6D87A0C6A356A67B39] - 10/01/2012 - 16:59:55 RSHAD . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [16656]
O44 - LFC:[MD5.10ACAF0FA85C9E6D87A0C6A356A67B39] - 10/01/2012 - 16:59:55 RSHAD . (...) -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [16656]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/01/2012 - 13:59:45 RSHAD . (...) -- C:\Windows\system32\drivers\Msft_Kernel_ssadadb_01005.Wdf [0]
O44 - LFC:[MD5.4DE0D5D747A73797C95A97DCCE5018B5] - 10/01/2012 - 13:57:01 RSHAD . (.Google Inc - ADB Interface.) -- C:\Windows\system32\drivers\ssadadb.sys [36328]
O44 - LFC:[MD5.D52282225D5BD73A9CBF420699D1A0FE] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Composite Device Driver.) -- C:\Windows\system32\drivers\ssadbus.sys [157160]
O44 - LFC:[MD5.5EB7DA2F72B90C8398DF9D7A82E43FCB] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Diagnostic Serial Port.) -- C:\Windows\system32\drivers\ssadserd.sys [145384]
O44 - LFC:[MD5.F7936AC6E8437E10E1AE488CE21F3086] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Modem Filter Driver.) -- C:\Windows\system32\drivers\ssadmdfl.sys [16872]
O44 - LFC:[MD5.1FE033372A58C67B3ECCA903FC637B36] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - SAMSUNG Android USB Modem.) -- C:\Windows\system32\drivers\ssadmdm.sys [177128]
O44 - LFC:[MD5.D0E91F71A20088C2A9124A937BD28072] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcm.sys [13288]
O44 - LFC:[MD5.D0E91F71A20088C2A9124A937BD28072] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadcmnt.sys [13288]
O44 - LFC:[MD5.2DD76CF449A2988B4EA42DE74EB8A4CA] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwh.sys [13800]
O44 - LFC:[MD5.2DD76CF449A2988B4EA42DE74EB8A4CA] - 10/01/2012 - 13:57:01 RSHAD . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\system32\drivers\ssadwhnt.sys [13800]
O44 - LFC:[MD5.D3D64CF7B2BCEAA34A270F45A3FFFB36] - 04/01/2012 - 21:04:16 RSHAD . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) -- C:\Windows\system32\drivers\dtsoftbus01.sys [270912]
O44 - LFC:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 18/12/2011 - 12:29:07 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O44 - LFC:[MD5.540DAF1CEA6094886D72126FD7C33048] - 18/12/2011 - 12:29:07 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O44 - LFC:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 18/12/2011 - 12:29:07 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O44 - LFC:[MD5.0A92CB65770442ED0DC44834632F66AD] - 18/12/2011 - 12:29:07 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O44 - LFC:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 18/12/2011 - 12:29:07 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O44 - LFC:[MD5.720FDCD053F10C27C5C783EBA28D2961] - 16/12/2011 - 22:36:50 ---A- . (.Seiko Epson Corporation - Epson WIA Module.) -- C:\Windows\SysNative\esxwiaud.dll [459776]
O44 - LFC:[MD5.720FDCD053F10C27C5C783EBA28D2961] - 16/12/2011 - 22:36:50 RSHAD . (.Seiko Epson Corporation - Epson WIA Module.) -- C:\Windows\system32\esxwiaud.dll [459776]
O44 - LFC:[MD5.DDCAC2477FF82BCDD8782C3982B5BA06] - 16/12/2011 - 22:35:39 ---A- . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\SysNative\E_ILMFCE.DLL [108032]
O44 - LFC:[MD5.DDCAC2477FF82BCDD8782C3982B5BA06] - 16/12/2011 - 22:35:39 RSHAD . (.SEIKO EPSON CORPORATION - EPSON Bi-directional Monitor AMD64.) -- C:\Windows\system32\E_ILMFCE.DLL [108032]
O44 - LFC:[MD5.BAC5074667751F72A9CE48CDC31BAC48] - 16/12/2011 - 22:35:38 ---A- . (.SEIKO EPSON CORP. - E_GCINST.) -- C:\Windows\SysNative\E_GCINST.DLL [10752]
O44 - LFC:[MD5.9891511E620B74DAC5FC6376667F10BE] - 16/12/2011 - 22:35:38 ---A- . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\SysNative\E_IBCBFCE.DLL [81408]
O44 - LFC:[MD5.BAC5074667751F72A9CE48CDC31BAC48] - 16/12/2011 - 22:35:38 RSHAD . (.SEIKO EPSON CORP. - E_GCINST.) -- C:\Windows\system32\E_GCINST.DLL [10752]
O44 - LFC:[MD5.9891511E620B74DAC5FC6376667F10BE] - 16/12/2011 - 22:35:38 RSHAD . (.SEIKO EPSON CORPORATION - ECBTEGB AMD64.) -- C:\Windows\system32\E_IBCBFCE.DLL [81408]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 16/12/2011 - 22:28:35

5 réponses

Réponse 1 / 5
del-crosseur Messages postés 529 Statut Contributeur sécurité 49
 
Bonsoir

Pourquoi se rapport ? Quel est le soucis du pc ?
De plus votre rapport et trop long donc incomplet sur le forum...

* Va sur le site https://www.cjoint.com/

* Clique sur le bouton Parcourir et sélectionne le dernier rapport ZHPDiag.txt qui est sur ton bureau.
* Clique ensuite sur "Créer le lien Cjoint" pour déposer le fichier
* Patiente puis copie/colle dans ta réponse le lien qui apparait

@ ++

0
Réponse 2 / 5
xamal42155 Messages postés 9 Statut Membre
 
bonjour

mon pc ram au démarrage et à s'éteindre aussi.

j'ai fais le lien cjoint : https://www.cjoint.com/?BAmj43wbxnH

merci d'avance
0
Réponse 3 / 5
del-crosseur Messages postés 529 Statut Contributeur sécurité 49
 
Bonsoir

Sa ne m'étonne pas:

C:\Users\alex\Downloads\Artisteer 3.0 with keygen\Artisteer.3.0.0.33215.exe => Crack, KeyGen, Keymaker - Possible Malware
C:\Users\alex\Downloads\Artisteer 3.0 with keygen\keygen_Artisteer_3.0.exe => Crack, KeyGen, Keymaker - Possible Malware
C:\Users\alex\Downloads\Artisteer_3.0_with_keygen.rar => Crack, KeyGen, Keymaker - Possible Malware
C:\Users\alex\Downloads\Artisteer 3.0 with keygen\Artisteer.3.0.0.33215.exe => Crack, KeyGen, Keymaker - Possible Malware
C:\Users\alex\Downloads\Artisteer 3.0 with keygen\keygen_Artisteer_3.0.exe => Crack, KeyGen, Keymaker - Possible Malware
C:\Users\alex\Downloads\Artisteer_3.0_with_keygen.rar => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\czdnzbq.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\data\ExtraContent\GUI\ExtraScreen\screensaver\Alley - Haunted Legends The Bronze Horseman.EXE => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\data\ExtraContent\GUI\ExtraScreen\screensaver\brewery - Haunted Legends The Bronze Horseman.EXE => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\data\ExtraContent\GUI\ExtraScreen\screensaver\tavern - Haunted Legends The Bronze Horseman.EXE => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\Haunted_Legends_The_Bronze_Horseman.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\keygen et instructions\1009.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\keygen et instructions.zip => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\Uninstall.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalier de Bronze Edition Collector keygen et instructions\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\czdnzbq.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalier de Bronze Edition Collector keygen et instructions\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\Haunted_Legends_The_Bronze_Horseman.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalier de Bronze Edition Collector keygen et instructions\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\keygen et instructions.zip => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalier de Bronze Edition Collector keygen et instructions\Haunted Legends Le Cavalie de Bronze Edition Collector + keygen et instructions\Uninstall.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Haunted Legends Le Cavalier de Bronze Edition Collector keygen et instructions.zip => Crack, KeyGen, Keymaker - Possible Malware
D:\hdd\Lost Souls Le Portrait Ensorcele Edition Collector\keygen 999 BigFish\Keygen 999.exe => Crack, KeyGen, Keymaker - Possible Malware
D:\sauvergadecle\sauvegarde2\sauvegardeclé\ggg\wda\._Keygen_vodamail.pro.45059.exe => Crack, KeyGen, Keymaker - Possible Malware

Vous faite une collection peut être ?
A lire ceci concernant les Cracks & KeyGens !
--> https://forum.malekal.com/viewtopic.php?t=893&start=
A vous de voir ...

De plus , vous disposez d'une Version de Windows non officielle = Illégale
C'est exacte ?

@ ++

0
Réponse 4 / 5
xamal42155 Messages postés 9 Statut Membre
 
ok, si je comprend bien , faut que j'efface tout ce qu'il y a sur la liste ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 5
del-crosseur Messages postés 529 Statut Contributeur sécurité 49
 
Salut

Tout à fait...

Vous disposez d'une version non officiel de Windows , dans se cas je suis dans l'obligation d'interrompre la désinfection .

Merci de votre compréhension ! ;)

0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
a quoi sert vraiment ce logiciel ZHPDIAG
Utilisateur anonyme -
Utilisateur anonyme -

7 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses