Demande analyse rapport ZHPdiag Résolu/Fermé

Question

Bonjour, J'ai effectué un rapport, avec le logiciel zhpdiag, et je voulais savoir ce que signifie ce rapport : est-ce qu'il y a des risques pour mon ordinateur, est-ce qu'il est en bonne santé. Je ne m'y connais pas trop en informatique (enfin pas un pro) et j'aurais besoin de l'aide de quelqu'un qui sait analyser les rapports de ZHPdiag. Voici le rapport : Rapport de ZHPDiag v1.31.105 par Nicolas Coolman, Update du 25/06/2012 Run by Emerick at 10/07/2012 21:42:27 Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html Web site : http://nicolascoolman.skyrock.com/ State : Version à jour. ---\ Web Browser MSIE: Internet Explorer v ---\ Windows Product Information ~ Langage: Français Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : M8X2Q Windows License : OK ~ Windows Remaining Initializations Number : 2 Software Protection Service (Protection logicielle) : KO Windows Automatic Updates : OK Windows Activation Technologies : OK ---\ System Information ~ Processor: x86 Family 6 Model 37 Stepping 2, GenuineIntel ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 3245 MB (31% free) System Restore: Inconnu (Unknown) System drive C: has 67 GB (38%) free of 173 GB ---\ Logged in mode ~ Computer Name: EMERICK-MSI ~ User Name: Emerick ~ All Users Names: HomeGroupUser$, Emerick, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89 Logged in as Administrator ---\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Emerick\AppData\Roaming\ ~ %Desktop% : C:\Users\Emerick\Desktop\ ~ %Favorites% : C:\Users\Emerick\Favorites\ ~ %LocalAppData% : C:\Users\Emerick\AppData\Local\ ~ %StartMenu% : C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 67 Go of 173 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 113 Go of 115 Go) E:\ CD-ROM drive (Not Inserted) F:\ CD-ROM drive (Not Inserted) ---\ Security Center & Tools Informations [HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK ~ Scan Security Center in 00mn 00s ---\ Recherche particulière de fichiers génériques [MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320] [MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256] [MD5.1C191A4F0960F21B5D58C8A65BAF5427] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/05/2012 - 23:35:47.) -- C:\Windows\System32\wininet.dll [1129472] [MD5.6D13E1406F50C66E2A95D97F22C47560] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 13:17:54.) -- C:\Windows\System32\Winlogon.exe [286720] [MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536] [MD5.9EBBBA55060F786F0FCAA3893BFA2806] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:18:03.) -- C:\Windows\system32\Drivers\AFD.sys [338944] [MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584] [MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656] [MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544] [MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336] [MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544] [MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896] [MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888] [MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:17:22.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123904] [MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers etBT.sys [187904] [MD5.81189C3D7763838E55C397759D49007A] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 06:39:00.) -- C:\Windows\system32\Drivers tfs.sys [1211264] [MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360] [MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848] [MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168] [MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers dx.sys [74752] [MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632] ~ Scan Generic Processes in 00mn 03s ---\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/409 ~ Mes musiques (My Musics) : 17/2314 ~ Mes Videos (My Videos) : 1/70 ~ Mes Favoris (My Favorites) : 1/17 ~ Mes Documents (My Documents) : 1/101111 ~ Mon Bureau (My Desktop) : 2/102 ~ Menu demarrer (Programs) : 0/26 ~ Scan Hidden Files in 01mn 43s ---\ Processus lancés [MD5.C5EFE7DE1365533C366ED6FABD08200A] - (.Pas de propriétaire - MotoHelperAgent.) -- C:\Program Files\Motorola\MotoHelper\MotoHelperAgent.exe [681840] [PID.3000] [MD5.0AF833569632E378B12E77C1885B7DE1] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [166424] [PID.3248] [MD5.BD128AF4CAC2A691B41F85E3DEE110C0] - (.Intel Corporation - igfxsrvc Module.) -- C:\windows\system32\igfxsrvc.exe [268312] [PID.3256] [MD5.A5E5528A1C308ED677384D864826109A] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864] [PID.3280] [MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3328] [MD5.5CEE3E4C8503611B7C4229B828B8839E] - (.Micro-Star International Co., Ltd. - Pas de description.) -- C:\Program Files\System Control Manager\MGSysCtrl.exe [2396160] [PID.3344] [MD5.A7810B302294793DE88542AAE177D1B1] - (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [207424] [PID.3364] [MD5.F400694D7D2785F60133C20F7F2F4F7A] - (.ArcSoft Inc. - ArcSoft Connect Notifier.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac [309824] [PID.3472] [MD5.4405758C4569213F3CFAC20E495EDF4C] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [258512] [PID.3616] [MD5.C637FC4638A96165256B28D38DE7B953] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3644] [MD5.444EB38A256BE60F2013488C49D2AB3F] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421736] [PID.3684] [MD5.995BEB69AE5C50D354894354F5A6CD5A] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296] [PID.3772] [MD5.F34E7705751BB413283434697BF8E55D] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696] [PID.3824] [MD5.E0EA78B4B66D1D92511092BA090F5465] - (.TechSmith Corporation - Jing.) -- C:\Program Files\TechSmith\Jing\Jing.exe [2918224] [PID.3856] [MD5.67384147DD005E54D2C0A20408E28579] - (.Valve Corporation - Steam.) -- C:\Program Files\Steam\steam.exe [1242448] [PID.3872] [MD5.DA0A59FAA480EE4B7D4BD5CFDB703962] - (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe [718720] [PID.3892] [MD5.B54921381A950C8215FB363B485C432B] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [270336] [PID.3944] [MD5.4B9949208944C50B1A16FD1F05ED0A04] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [PID.4080] [MD5.8E18C83C6CFE2F02F8885D3A9DB363D7] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [PID.3816] [MD5.F16EEA6CCA9D8A7D1193AE80E43FBBC7] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [168960] [PID.4636] [MD5.8A9FACCB684500829F7D0BCC67B386CC] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.4796] [MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.4840] [MD5.D3C0837346C49095B8AF9EF54AD7E90A] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [913888] [PID.4372] [MD5.41623176FEF9DF3C113EAADADBB5FB42] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [16864] [PID.2880] [MD5.682E4FBE954535E60C5DC7D4A3445ACC] - (.Adobe Systems, Inc. - Adobe Flash Player 11.3 r300.) -- C:\windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe [1535176] [PID.3060] [MD5.EBEB28A2F901632EAC87EAA41D71B97B] - (.Sports Interactive - Football Manager 2012 12.2.2f259383.) -- c:\program files\steam\steamapps\common\football manager 2012\fm.exe [42875544] [PID.6008] [MD5.5DCE2CDA87D7BBC38031AA07F8B350CD] - (.Valve Corporation - gameoverlayui.exe (buildbot_winslave04_stea.) -- C:\Program Files\Steam\GameOverlayUI.exe [71464] [PID.1648] [MD5.BE955BAB4EFC2A28BE2692D102FFC85A] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [3838464] [PID.720] ~ Scan Processes Running in 00mn 02s ---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\prefs.js M3 - MFPP: Plugins - [Emerick] -- C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\searchplugins\daemon-search.xml M3 - MFPP: Plugins - [Emerick] -- C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\searchplugins\web-search.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Emerick] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml M0 - MFSP: prefs.js [Emerick - z5m59l11.default] https://www.google.fr/?gws_rd=ssl M2 - MFEP: prefs.js [Emerick - z5m59l11.default\cacaoweb@cacaoweb.org] [] cacaoweb v1.0.26 (.http://www.cacaoweb.org/ M2 - MFEP: prefs.js [Emerick - z5m59l11.default\ietab@ip.cn] [] IE Tab Plus v2.0.0.0 (.quaful@msn.com.) M2 - MFEP: prefs.js [Emerick - z5m59l11.default\NPCamfrogWeb@camfrogweb.com] [] Camfrog Web Plugin for Mozilla Firefox v2,0,18,111 (.Camshare Inc..) P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins p-mswmp.dll P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.3.) -- C:\Program Files\Mozilla Firefox\Plugins ppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins pqtplugin7.dll P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 3.1.4.8140.) -- C:\Users\Emerick\AppData\Roaming\Mozilla\plugins pgoogletalk.dll P2 - FPN: [HKCU] [@talk.google.com/O3DPlugin] - (.Pas de propriétaire - Google Talk Plugin Video Accelerator version:0.1.44.16.) -- C:\Users\Emerick\AppData\Roaming\Mozilla\plugins pgtpo3dautoplugin.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Emerick\AppData\Local\Google\Update\1.3.21.111 pGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Emerick\AppData\Local\Google\Update\1.3.21.111 pGoogleUpdate3.dll ~ Scan Firefox Browser in 00mn 00s ---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.) R3 - URLSearchHook: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} . (.Google Inc. - Google Update.) (No version) -- (.not file.) ~ Scan IE Browser in 00mn 00s ---\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 192.168.*.* R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Scan Proxy management in 00mn 00s ---\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Scan Hosts File in 00mn 07s ~ Nombre de lignes (Lines number): 15027 ---\ Applications démarrées par registre & par dossier (O4) O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Emerick\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe O4 - HKCU\..\Run: [fsm] Clé orpheline O4 - HKCU\..\Run: [Jing] . (.TechSmith Corporation - Jing.) -- C:\Program Files\TechSmith\Jing\Jing.exe O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe O4 - HKCU\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe O4 - HKCU\..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (.not file.) O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Emerick\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [fsm] Clé orpheline O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [Jing] . (.TechSmith Corporation - Jing.) -- C:\Program Files\TechSmith\Jing\Jing.exe O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [Steam] . (.Valve Corporation - Steam.) -- C:\Program Files\Steam\Steam.exe O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [OfficeSyncProcess] . (.Microsoft Corporation - Microsoft Office Document Cache.) -- C:\Program Files\Microsoft Office\Office14\MSOSYNC.exe O4 - HKUS\S-1-5-21-2604619469-2833773030-2790806098-1000\..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (.not file.) ~ Scan Application in 00mn 00s ---\ Autres liens utilisateurs (O4) O4 - Global Startup: C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Emerick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe O4 - Global Startup: C:\Users\Emerick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe O4 - Global Startup: C:\Users\Emerick\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk . (.Vuze Inc..) -- C:\Program Files\Vuze\Azureus.exe ~ Scan Global Startup in 00mn 00s ---\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: &Envoyer à OneNote . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Excel.) -- C:\Program Files\MICROS~2\Office14\EXCEL.exe ~ Scan IE Menu Contextuel in 00mn 00s ---\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Scan Desktop Component in 00mn 00s ---\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2604619469-2833773030-2790806098-1000Core.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2604619469-2833773030-2790806098-1000UA.job O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Svlgdfyag.job [MD5.5447AF432CDA61159ADDE218C468FFD9] [APT] [AdobeAAMUpdater-1.0-Emerick-msi-Emerick] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2604619469-2833773030-2790806098-1000Core] (.Google Inc..) -- C:\Users\Emerick\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2604619469-2833773030-2790806098-1000UA] (.Google Inc..) -- C:\Users\Emerick\AppData\Local\Google\Update\GoogleUpdate.exe [MD5.1AA23094CE90784854FB1F25BE645AFA] [APT] [{2CFDC798-782D-4167-B303-6499ABCBD514}] (.Skype Technologies S.A..) -- C:\Program Files\Skype\Phone\Skype.exe [MD5.00000000000000000000000000000000] [APT] [{5067ED58-B686-44AD-97F8-8317985CFA42}] (...) -- C:\Program Files\Widestream6\WideStream.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{62FC2285-1307-40C2-9BBD-FD9EBCC9EB70}] (...) -- C:\Users\Emerick\Desktop\Activate.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{97A36460-1FFB-4040-8345-12124E5C026C}] (...) -- C:\Users\Emerick\Documents\SETUP.exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{98D5DC58-E2FE-4EC9-9C8D-BAA93FDEE6A2}] (...) -- C:\Users\Emerick\Downloads\avira_antivir_personal_free(2).exe (.not file.) [MD5.00000000000000000000000000000000] [APT] [{F3BAE98F-F8C8-4CD5-843A-A3337E50F43F}] (...) -- E:\setup.exe (.not file.) [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe ~ Scan Scheduled Task in 00mn 07s ---\ Composants installés (ActiveSetup Installed Components) (O40) (None) ---\ Logiciels installés (O42) O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKCU] -- PhotoFiltre ---\ HKCU & HKLM Software Keys [HKCU\Software\7-Zip] [HKCU\Software\AMD] [HKCU\Software\ATI] [HKCU\Software\Adobe] [HKCU\Software\AppDataLow\Software\Adobe] [HKCU\Software\AppDataLow\Software\Conduit] [HKCU\Software\AppDataLow\Software\Macromedia] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software\Monitored] [HKCU\Software\AppDataLow\Software\PriceGong] [HKCU\Software\AppDataLow\Software\Smartbar] [HKCU\Software\AppDataLow\Software\Softonic_France] [HKCU\Software\AppDataLow\Software\settings] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow\Toolbar] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\ArcSoft] [HKCU\Software\Avira] [HKCU\Software\Azureus] [HKCU\Software\CDDB] [HKCU\Software\CMI SERVICES] [HKCU\Software\CamfrogWeb] [HKCU\Software\Camfrog] [HKCU\Software\Canneverbe Limited] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Conduit] [HKCU\Software\DT Soft] [HKCU\Software\El Conjugador] [HKCU\Software\ElConjugador] [HKCU\Software\G&G Software] [HKCU\Software\Google] [HKCU\Software\Green Eclipse] [HKCU\Software\HP] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IM Providers] [HKCU\Software\Informer Technologies, Inc.] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\MSI] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Motorola Inc.] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Netscape] [HKCU\Software\Nico Mak Computing] [HKCU\Software\ODBC] [HKCU\Software\OfferBox] [HKCU\Software\PC SOFT] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Realtek] [HKCU\Software\Safer Networking Limited] [HKCU\Software\SkypeApps] [HKCU\Software\Skype] [HKCU\Software\Smart Projects] [HKCU\Software\Softonic] [HKCU\Software\Spointer] [HKCU\Software\TechSmith] [HKCU\Software\Teorex] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Valve] [HKCU\Software\VirtualDub.org] [HKCU\Software\WideStream] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\WinZip Computing] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\cacaoweb] [HKCU\Software\cybelsoft] [HKCU\Software\ej-technologies] [HKCU\Software\freeTVRadio] [HKCU\Software\jeiaakun] [HKLM\Software\7-Zip] [HKLM\Software\AMD] [HKLM\Software\ATI Technologies] [HKLM\Software\ATI] [HKLM\Software\Adobe] [HKLM\Software\AppDataLow] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Apple Inc.] [HKLM\Software\ArcSoft] [HKLM\Software\Avira] [HKLM\Software\Azureus] [HKLM\Software\Bunndle] [HKLM\Software\Canneverbe Limited] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\Conduit] [HKLM\Software\DT Soft] [HKLM\Software\El Conjugador] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\HP] [HKLM\Software\Hewlett-Packard] [HKLM\Software\ICE] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\Khronos] [HKLM\Software\MSI] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\Micro-Star International Co., Ltd.] [HKLM\Software\Motorola] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\Nico Mak Computing] [HKLM\Software\ODBC] [HKLM\Software\OfferBox] [HKLM\Software\Oracle] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\SecureDigitalServices] [HKLM\Software\Skype] [HKLM\Software\Softonic_France] [HKLM\Software\Sonic] [HKLM\Software\Sports Interactive Ltd] [HKLM\Software\Symantec] [HKLM\Software\TechSmith] [HKLM\Software\Total Immersion] [HKLM\Software\Valve] [HKLM\Software\VideoLAN] [HKLM\Software\Volatile] [HKLM\Software\Waves Audio] [HKLM\Software\WinRAR] [HKLM\Software\Windows] [HKLM\Software\X-AVCSD] [HKLM\Software\cybelsoft] [HKLM\Software\ej-technologies] [HKLM\Software\jeiaakun] [HKLM\Software\magnet] [HKLM\Software\mozilla.org] ~ Scan Softwares in 00mn 00s ---\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 22/06/2011 - 11:58:38 - [3,348] ----D C:\Program Files\7-Zip O43 - CFD: 26/09/2011 - 21:33:10 - [161,176] ----D C:\Program Files\Adobe O43 - CFD: 06/07/2012 - 00:35:59 - [1,711] ----D C:\Program Files\AMD APP O43 - CFD: 06/07/2012 - 00:36:03 - [0,389] ----D C:\Program Files\AMD AVT O43 - CFD: 27/06/2011 - 12:08:07 - [2,201] ----D C:\Program Files\Apple Software Update O43 - CFD: 20/02/2010 - 17:45:10 - [181,260] ----D C:\Program Files\ArcSoft O43 - CFD: 20/02/2010 - 17:19:11 - [20,209] ----D C:\Program Files\ATI O43 - CFD: 06/07/2012 - 00:35:13 - [61,106] ----D C:\Program Files\ATI Technologies O43 - CFD: 17/12/2011 - 14:53:42 - [176,492] ----D C:\Program Files\Avira O43 - CFD: 09/07/2012 - 17:04:09 - [4,684] ----D C:\Program Files\CCleaner O43 - CFD: 01/08/2011 - 22:11:21 - [16,518] ----D C:\Program Files\CDBurnerXP O43 - CFD: 04/08/2011 - 01:13:27 - [0,032] ----D C:\Program Files\CFWebAdvancedU O43 - CFD: 08/11/2011 - 00:37:08 - [11,067] ----D C:\Program Files\CFWebAdvancedU2 O43 - CFD: 20/12/2010 - 11:58:44 - [3,722] ----D C:\Program Files\Club-Internet O43 - CFD: 19/02/2012 - 18:14:34 - [2,649] ----D C:\Program Files\Coeur à Tout V1.4 (Démo) O43 - CFD: 06/07/2012 - 21:29:44 - [715,366] ----D C:\Program Files\Common Files O43 - CFD: 14/06/2010 - 17:03:36 - [0,609] ----D C:\Program Files\Conduit O43 - CFD: 14/06/2010 - 18:13:11 - [11,127] ----D C:\Program Files\DAEMON Tools Lite O43 - CFD: 14/06/2010 - 18:13:11 - [1,859] ----D C:\Program Files\DAEMON Tools Toolbar O43 - CFD: 20/02/2010 - 17:24:25 - [0,759] ----D C:\Program Files\DIFX O43 - CFD: 10/06/2011 - 11:01:53 - [79,371] ----D C:\Program Files\DVD Maker O43 - CFD: 13/12/2010 - 17:55:22 - [2,722] ----D C:\Program Files\Free PDF to Word Doc Converter O43 - CFD: 03/05/2012 - 16:47:36 - [67,825] ----D C:\Program Files\Google O43 - CFD: 13/05/2012 - 19:35:29 - [1,884] ----D C:\Program Files\Hewlett-Packard O43 - CFD: 19/12/2011 - 12:29:49 - [273,487] ----D C:\Program Files\HP O43 - CFD: 23/06/2011 - 10:29:39 - [6,027] ----D C:\Program Files\Inpaint O43 - CFD: 29/07/2011 - 01:09:53 - [30,172] --H-D C:\Program Files\InstallShield Installation Information O43 - CFD: 20/02/2010 - 17:27:45 - [85,985] ----D C:\Program Files\Intel O43 - CFD: 15/06/2012 - 09:18:15 - [6,190] ----D C:\Program Files\Internet Explorer O43 - CFD: 23/12/2011 - 18:41:05 - [1,925] ----D C:\Program Files\iPod O43 - CFD: 23/12/2011 - 18:41:37 - [143,953] ----D C:\Program Files\iTunes O43 - CFD: 06/07/2012 - 21:25:45 - [178,353] ----D C:\Program Files\Java O43 - CFD: 05/07/2012 - 23:34:12 - [7,803] ----D C:\Program Files\ma-config.com O43 - CFD: 19/04/2012 - 12:47:10 - [11,568] ----D C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD: 08/01/2012 - 02:10:48 - [21,650] ----D C:\Program Files\Microsoft O43 - CFD: 14/11/2011 - 11:34:17 - [38,002] ----D C:\Program Files\Microsoft Analysis Services O43 - CFD: 20/02/2010 - 17:27:17 - [140,966] ----D C:\Program Files\Microsoft Games O43 - CFD: 14/11/2011 - 11:40:47 - [1002,719] ----D C:\Program Files\Microsoft Office O43 - CFD: 12/05/2012 - 10:29:10 - [36,641] ----D C:\Program Files\Microsoft Silverlight O43 - CFD: 14/11/2011 - 11:40:45 - [3,467] ----D C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD: 14/06/2010 - 15:50:29 - [2,198] ----D C:\Program Files\Microsoft Sync Framework O43 - CFD: 14/11/2011 - 11:41:19 - [0,312] ----D C:\Program Files\Microsoft Synchronization Services O43 - CFD: 14/06/2010 - 20:41:52 - [1,314] ----D C:\Program Files\Microsoft Visual Studio 8 O43 - CFD: 14/11/2011 - 11:39:21 - [137,975] ----D C:\Program Files\Microsoft Works O43 - CFD: 14/11/2011 - 11:40:45 - [7,789] ----D C:\Program Files\Microsoft.NET O43 - CFD: 31/03/2012 - 16:50:23 - [2,718] ----D C:\Program Files\Motorola O43 - CFD: 19/06/2012 - 10:08:31 - [39,942] ----D C:\Program Files\Mozilla Firefox O43 - CFD: 19/06/2012 - 22:41:48 - [0,195] ----D C:\Program Files\Mozilla Maintenance Service O43 - CFD: 14/11/2011 - 11:42:13 - [0,025] ----D C:\Program Files\MSBuild O43 - CFD: 20/02/2010 - 17:48:37 - [35,903] ----D C:\Program Files\msi O43 - CFD: 25/02/2011 - 10:03:03 - [0] ----D C:\Program Files\MSXML 4.0 O43 - CFD: 31/08/2010 - 14:59:22 - [0] ----D C:\Program Files\NirSoft O43 - CFD: 06/07/2012 - 21:26:29 - [33,205] ----D C:\Program Files\Oracle O43 - CFD: 29/06/2011 - 11:44:20 - [3,528] ----D C:\Program Files\PhotoFiltre O43 - CFD: 29/06/2010 - 12:39:40 - [0,328] ----D C:\Program Files\Planning Manager O43 - CFD: 06/07/2012 - 22:07:44 - [72,431] ----D C:\Program Files\QuickTime O43 - CFD: 06/07/2012 - 17:18:40 - [20,557] ----D C:\Program Files\Realtek O43 - CFD: 14/07/2009 - 06:52:30 - [37,349] ----D C:\Program Files\Reference Assemblies O43 - CFD: 29/11/2010 - 19:06:22 - [26,899] R---D C:\Program Files\Skype O43 - CFD: 22/07/2010 - 18:32:56 - [2,807] ----D C:\Program Files\Softonic_France O43 - CFD: 15/05/2011 - 19:57:23 - [3,371] ----D C:\Program Files\Software Informer O43 - CFD: 22/10/2011 - 17:25:53 - [393,074] ----D C:\Program Files\Sports Interactive O43 - CFD: 10/07/2012 - 19:04:02 - [4,372] ----D C:\Program Files\Spybot - Search & Destroy O43 - CFD: 10/07/2012 - 19:10:47 - [-1277,885] ----D C:\Program Files\Steam O43 - CFD: 20/02/2010 - 17:37:01 - [5,420] ----D C:\Program Files\System Control Manager O43 - CFD: 07/10/2011 - 11:16:47 - [11,143] ----D C:\Program Files\TechSmith O43 - CFD: 30/04/2012 - 18:45:43 - [0] --H-D C:\Program Files\Temp O43 - CFD: 01/11/2010 - 16:44:43 - [7,291] ----D C:\Program Files\Total Immersion O43 - CFD: 14/07/2009 - 06:53:23 - [0] --H-D C:\Program Files\Uninstall Information O43 - CFD: 08/10/2010 - 22:21:39 - [78,572] ----D C:\Program Files\VideoLAN O43 - CFD: 17/10/2010 - 16:20:14 - [17,913] ----D C:\Program Files\Vuze O43 - CFD: 10/06/2011 - 11:01:46 - [2,909] ----D C:\Program Files\Windows Defender O43 - CFD: 12/05/2012 - 10:28:22 - [6,689] ----D C:\Program Files\Windows Journal O43 - CFD: 19/03/2012 - 22:04:23 - [140,909] ----D C:\Program Files\Windows Live O43 - CFD: 14/06/2010 - 15:48:36 - [0,234] ----D C:\Program Files\Windows Live SkyDrive O43 - CFD: 10/06/2011 - 11:01:54 - [5,895] ----D C:\Program Files\Windows Mail O43 - CFD: 10/06/2011 - 11:01:52 - [6,298] ----D C:\Program Files\Windows Media Player O43 - CFD: 14/07/2009 - 06:52:30 - [11,632] ----D C:\Program Files\Windows NT O43 - CFD: 10/06/2011 - 11:01:52 - [4,213] ----D C:\Program Files\Windows Photo Viewer O43 - CFD: 10/06/2011 - 11:01:52 - [0,181] ----D C:\Program Files\Windows Portable Devices O43 - CFD: 10/06/2011 - 11:01:54 - [7,807] ----D C:\Program Files\Windows Sidebar O43 - CFD: 14/06/2010 - 18:10:25 - [3,707] ----D C:\Program Files\WinRAR O43 - CFD: 20/02/2010 - 17:39:00 - [3,255] ----D C:\Program Files\WinRAR 3.61 Multi O43 - CFD: 06/07/2012 - 11:45:16 - [107,579] ----D C:\Program Files\WinZip O43 - CFD: 15/06/2010 - 13:15:01 - [0,000] --H-D C:\Program Files\Zero G Registry O43 - CFD: 10/07/2012 - 21:44:25 - [13,692] ----D C:\Program Files\ZHPDiag O43 - CFD: 26/09/2011 - 21:36:46 - [83,948] ----D C:\Program Files\Common Files\Adobe O43 - CFD: 20/09/2010 - 17:22:20 - [30,670] ----D C:\Program Files\Common Files\Adobe AIR O43 - CFD: 23/12/2011 - 18:41:05 - [104,466] ----D C:\Program Files\Common Files\Apple O43 - CFD: 20/02/2010 - 17:45:20 - [12,571] ----D C:\Program Files\Common Files\ArcSoft O43 - CFD: 06/07/2012 - 00:35:53 - [2,699] ----D C:\Program Files\Common Files\ATI Technologies O43 - CFD: 14/11/2011 - 11:41:18 - [0,095] ----D C:\Program Files\Common Files\DESIGNER O43 - CFD: 23/02/2011 - 20:15:18 - [0,507] ----D C:\Program Files\Common Files\Hewlett-Packard O43 - CFD: 23/02/2011 - 20:15:31 - [5,403] ----D C:\Program Files\Common Files\HP O43 - CFD: 14/06/2010 - 17:03:56 - [77,798] ----D C:\Program Files\Common Files\i4j_jres O43 - CFD: 20/02/2010 - 17:39:43 - [3,045] ----D C:\Program Files\Common Files\InstallShield O43 - CFD: 06/07/2012 - 21:29:44 - [1,181] ----D C:\Program Files\Common Files\Java O43 - CFD: 14/11/2011 - 11:48:56 - [306,444] ----D C:\Program Files\Common Files\microsoft shared O43 - CFD: 31/03/2012 - 16:50:40 - [3,571] ----D C:\Program Files\Common Files\Motorola Shared O43 - CFD: 29/06/2010 - 12:13:53 - [24,086] ----D C:\Program Files\Common Files\PC SOFT O43 - CFD: 20/02/2010 - 17:17:37 - [0,159] ----D C:\Program Files\Common Files\postureAgent O43 - CFD: 14/07/2009 - 04:37:05 - [0,003] ----D C:\Program Files\Common Files\Services O43 - CFD: 29/11/2010 - 19:05:30 - [2,064] ----D C:\Program Files\Common Files\Skype O43 - CFD: 14/07/2009 - 04:37:05 - [39,200] ----D C:\Program Files\Common Files\SpeechEngines O43 - CFD: 05/06/2012 - 16:44:26 - [0,505] ----D C:\Program Files\Common Files\Steam O43 - CFD: 16/11/2011 - 19:45:35 - [16,953] ----D C:\Program Files\Common Files\System O43 - CFD: 14/06/2010 - 15:47:16 - [0] ----D C:\Program Files\Common Files\Windows Live O43 - CFD: 26/09/2011 - 21:36:40 - [164,402] ----D C:\ProgramData\Adobe O43 - CFD: 06/07/2012 - 00:36:06 - [0,834] ----D C:\ProgramData\AMD O43 - CFD: 23/12/2011 - 18:38:59 - [141,973] ----D C:\ProgramData\Apple O43 - CFD: 26/06/2010 - 18:51:58 - [68,205] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Application Data O43 - CFD: 05/12/2010 - 21:03:03 - [1,751] --H-D C:\ProgramData\ArcSoft O43 - CFD: 06/07/2012 - 00:36:09 - [0,000] ----D C:\ProgramData\ATI O43 - CFD: 17/12/2011 - 14:53:42 - [127,501] ----D C:\ProgramData\Avira O43 - CFD: 01/08/2011 - 22:11:26 - [0] ----D C:\ProgramData\Canneverbe Limited O43 - CFD: 14/06/2010 - 18:11:42 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Documents O43 - CFD: 08/06/2012 - 12:37:59 - [0] ----D C:\ProgramData\El Conjugador O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Favorites O43 - CFD: 07/08/2010 - 11:25:22 - [0,179] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 23/02/2011 - 20:20:27 - [19,934] ----D C:\ProgramData\HP O43 - CFD: 23/02/2011 - 20:16:10 - [0,009] ----D C:\ProgramData\HP Product Assistant O43 - CFD: 05/07/2012 - 23:34:04 - [2,683] ----D C:\ProgramData\ma-config.com O43 - CFD: 24/06/2011 - 14:21:32 - [16,682] ----D C:\ProgramData\Malwarebytes O43 - CFD: 21/10/2010 - 17:38:15 - [0] ----D C:\ProgramData\McAfee O43 - CFD: 08/01/2012 - 02:10:58 - [55,663] -S--D C:\ProgramData\Microsoft O43 - CFD: 13/06/2012 - 19:30:45 - [0,139] ----D C:\ProgramData\Microsoft Help O43 - CFD: 03/05/2012 - 13:55:37 - [0,007] ----D C:\ProgramData\Mozilla O43 - CFD: 14/06/2010 - 20:56:41 - [0,012] ----D C:\ProgramData\Norton O43 - CFD: 20/02/2010 - 17:37:42 - [6,351] ----D C:\ProgramData\NortonInstaller O43 - CFD: 20/09/2010 - 17:38:36 - [0,002] ----D C:\ProgramData egid.1986-12.com.adobe O43 - CFD: 29/11/2010 - 19:05:28 - [20,450] ----D C:\ProgramData\Skype O43 - CFD: 15/06/2010 - 13:24:47 - [0,131] ----D C:\ProgramData\Sports Interactive O43 - CFD: 10/07/2012 - 18:01:16 - [0,039] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Start Menu O43 - CFD: 21/07/2010 - 11:05:27 - [0,000] ----D C:\ProgramData\Sun O43 - CFD: 14/07/2009 - 06:53:55 - [0] --H-D C:\ProgramData\Templates O43 - CFD: 23/02/2011 - 20:20:20 - [0,000] ----D C:\ProgramData\WEBREG O43 - CFD: 07/07/2012 - 11:19:22 - [2,302] ----D C:\ProgramData\WinZip O43 - CFD: 26/06/2010 - 18:52:22 - [0] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} O43 - CFD: 18/04/2011 - 18:56:48 - [27,633] ----D C:\Users\Emerick\AppData\Roaming\Adobe O43 - CFD: 15/01/2012 - 15:09:07 - [0,348] ----D C:\Users\Emerick\AppData\Roaming\Apple Computer O43 - CFD: 01/07/2011 - 15:24:41 - [11,638] ----D C:\Users\Emerick\AppData\Roaming\ArcSoft O43 - CFD: 14/06/2010 - 15:53:24 - [0] ----D C:\Users\Emerick\AppData\Roaming\ATI O43 - CFD: 17/12/2011 - 14:59:14 - [0] ----D C:\Users\Emerick\AppData\Roaming\Avira O43 - CFD: 09/07/2012 - 17:06:05 - [2,104] ----D C:\Users\Emerick\AppData\Roaming\Azureus O43 - CFD: 19/04/2012 - 17:50:34 - [412,498] ----D C:\Users\Emerick\AppData\Roaming\cacaoweb O43 - CFD: 30/06/2012 - 19:34:23 - [7,328] ----D C:\Users\Emerick\AppData\Roaming\Camfrog Web O43 - CFD: 01/08/2011 - 22:11:26 - [0,001] ----D C:\Users\Emerick\AppData\Roaming\Canneverbe Limited O43 - CFD: 03/05/2012 - 11:51:36 - [0] ----D C:\Users\Emerick\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 08/06/2012 - 12:37:59 - [0] ----D C:\Users\Emerick\AppData\Roaming\El Conjugador O43 - CFD: 13/09/2010 - 21:27:37 - [0,001] ----D C:\Users\Emerick\AppData\Roaming\freeTVRadio O43 - CFD: 03/10/2011 - 09:35:13 - [0] ----D C:\Users\Emerick\AppData\Roaming\GetRightToGo O43 - CFD: 29/06/2011 - 12:00:36 - [0,000] ----D C:\Users\Emerick\AppData\Roaming\gtk-2.0 O43 - CFD: 09/11/2011 - 18:02:43 - [0,127] ----D C:\Users\Emerick\AppData\Roaming\HP O43 - CFD: 20/05/2012 - 20:22:32 - [0,011] ----D C:\Users\Emerick\AppData\Roaming\HpUpdate O43 - CFD: 14/06/2010 - 15:53:08 - [0] ----D C:\Users\Emerick\AppData\Roaming\Identities O43 - CFD: 14/06/2010 - 16:12:35 - [0,003] ----D C:\Users\Emerick\AppData\Roaming\Macromedia O43 - CFD: 24/06/2011 - 14:21:45 - [2,885] ----D C:\Users\Emerick\AppData\Roaming\Malwarebytes O43 - CFD: 20/02/2010 - 17:27:17 - [0] ----D C:\Users\Emerick\AppData\Roaming\Media Center Programs O43 - CFD: 24/02/2012 - 18:14:19 - [12,295] -S--D C:\Users\Emerick\AppData\Roaming\Microsoft O43 - CFD: 25/06/2012 - 21:57:28 - [59,063] ----D C:\Users\Emerick\AppData\Roaming\Mozilla O43 - CFD: 22/11/2010 - 19:33:37 - [0,001] ----D C:\Users\Emerick\AppData\Roaming\OfferBox O43 - CFD: 29/06/2011 - 11:50:26 - [0,000] ----D C:\Users\Emerick\AppData\Roaming\PhotoFiltre O43 - CFD: 03/03/2011 - 12:09:41 - [2,286] ----D C:\Users\Emerick\AppData\Roaming\Skype O43 - CFD: 06/12/2010 - 20:27:57 - [0,008] ----D C:\Users\Emerick\AppData\Roaming\skypePM O43 - CFD: 15/05/2011 - 20:00:41 - [7,434] ----D C:\Users\Emerick\AppData\Roaming\Software Informer O43 - CFD: 21/10/2011 - 19:55:08 - [247,932] ----D C:\Users\Emerick\AppData\Roaming\Sports Interactive O43 - CFD: 29/12/2010 - 10:37:21 - [0,013] ----D C:\Users\Emerick\AppData\Roaming\Template O43 - CFD: 01/11/2010 - 16:45:19 - [29,164] ----D C:\Users\Emerick\AppData\Roaming\Total Immersion O43 - CFD: 20/06/2012 - 21:22:19 - [1,589] ----D C:\Users\Emerick\AppData\Roaming\vlc O43 - CFD: 18/11/2010 - 22:00:29 - [0,001] ----D C:\Users\Emerick\AppData\Roaming\widestream O43 - CFD: 14/06/2010 - 18:26:13 - [0,000] ----D C:\Users\Emerick\AppData\Roaming\WinRAR O43 - CFD: 18/04/2011 - 15:43:40 - [184,636] ----D C:\Users\Emerick\AppData\Local\Adobe O43 - CFD: 26/06/2010 - 18:44:56 - [0] ----D C:\Users\Emerick\AppData\Local\Apple O43 - CFD: 17/10/2011 - 21:16:40 - [4,413] ----D C:\Users\Emerick\AppData\Local\Apple Computer O43 - CFD: 14/06/2010 - 15:42:45 - [0] ----D C:\Users\Emerick\AppData\Local\Application Data O43 - CFD: 18/11/2010 - 22:05:58 - [0] ----D C:\Users\Emerick\AppData\Local\Apps O43 - CFD: 14/06/2010 - 15:53:33 - [0,001] ----D C:\Users\Emerick\AppData\Local\ArcSoft O43 - CFD: 14/06/2010 - 15:53:24 - [0,057] ----D C:\Users\Emerick\AppData\Local\ATI O43 - CFD: 21/10/2011 - 19:59:09 - [0] ----D C:\Users\Emerick\AppData\Local\Chromium O43 - CFD: 10/07/2012 - 18:02:29 - [0] ----D C:\Users\Emerick\AppData\Local\Conduit O43 - CFD: 06/07/2012 - 11:43:58 - [1,614] ----D C:\Users\Emerick\AppData\Local\CRE O43 - CFD: 18/11/2010 - 22:06:02 - [0] ----D C:\Users\Emerick\AppData\Local\Deployment O43 - CFD: 10/07/2012 - 17:44:24 - [4,431] ----D C:\Users\Emerick\AppData\Local\Diagnostics O43 - CFD: 08/06/2012 - 12:37:59 - [0] ----D C:\Users\Emerick\AppData\Local\El Conjugador O43 - CFD: 10/07/2012 - 17:44:54 - [0] ----D C:\Users\Emerick\AppData\Local\ElevatedDiagnostics O43 - CFD: 22/11/2010 - 19:29:05 - [0,427] ----D C:\Users\Emerick\AppData\Local\freetvradio Air O43 - CFD: 06/07/2012 - 11:43:58 - [23,860] ----D C:\Users\Emerick\AppData\Local\Google O43 - CFD: 14/06/2010 - 15:42:45 - [0] ----D C:\Users\Emerick\AppData\Local\Historique O43 - CFD: 01/07/2011 - 15:23:48 - [0,325] ----D C:\Users\Emerick\AppData\Local\HP O43 - CFD: 24/06/2012 - 21:07:19 - [0] ----D C:\Users\Emerick\AppData\Local\Macromedia O43 - CFD: 30/04/2012 - 18:34:19 - [993,743] ----D C:\Users\Emerick\AppData\Local\Microsoft O43 - CFD: 11/06/2011 - 00:29:23 - [0,744] ----D C:\Users\Emerick\AppData\Local\Microsoft Games O43 - CFD: 28/11/2011 - 12:21:30 - [1,978] ----D C:\Users\Emerick\AppData\Local\Microsoft Help O43 - CFD: 14/06/2010 - 16:50:29 - [103,640] ----D C:\Users\Emerick\AppData\Local\Mozilla O43 - CFD: 06/11/2010 - 23:04:51 - [0] ----D C:\Users\Emerick\AppData\Local\Sports Interactive O43 - CFD: 07/10/2011 - 11:17:02 - [33,209] ----D C:\Users\Emerick\AppData\Local\TechSmith O43 - CFD: 10/07/2012 - 19:53:36 - [7,855] ----D C:\Users\Emerick\AppData\Local\Temp O43 - CFD: 14/06/2010 - 15:42:45 - [0] ----D C:\Users\Emerick\AppData\Local\Temporary Internet Files O43 - CFD: 10/08/2010 - 19:44:57 - [0,767] ----D C:\Users\Emerick\AppData\Local\VirtualStore O43 - CFD: 29/06/2010 - 12:13:32 - [0,000] ----D C:\Users\Emerick\AppData\Local\WDSetup O43 - CFD: 19/11/2010 - 14:49:25 - [0,141] ----D C:\Users\Emerick\AppData\Local\widestream6 Air O43 - CFD: 05/11/2010 - 09:31:36 - [0] ----D C:\Users\Emerick\AppData\Local\Windows Live O43 - CFD: 06/07/2012 - 11:45:18 - [0,250] ----D C:\Users\Emerick\AppData\Local\WinZip O43 - CFD: 14/07/2009 - 06:42:04 - [0,014] R---D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 17/02/2012 - 09:54:13 - [0,000] R---D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 19/02/2012 - 18:14:20 - [0] ----D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Coeur à Tout V1.4 (Démo) O43 - CFD: 14/07/2009 - 06:37:42 - [0,001] R---D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 29/06/2011 - 11:44:20 - [0] ----D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre O43 - CFD: 10/07/2012 - 18:27:09 - [0] R---D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 21/10/2011 - 19:40:18 - [0,001] ----D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 01/11/2010 - 16:44:44 - [0,002] ----D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Immersion O43 - CFD: 14/06/2010 - 18:10:25 - [0,003] ----D C:\Users\Emerick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ~ Scan Program Folder in 00mn 31s ---\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.751DC59B0D9B77C31E754A7B3B373223] - 10/07/2012 - 20:13:58 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1126738] O44 - LFC:[MD5.692EC648CC7AE28CC45D5BA96EAAA830] - 10/07/2012 - 20:13:40 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.9982DE5B241F4776F71698EB4D4FC7E9] - 10/07/2012 - 18:04:17 ---A- . (...) -- C:\Windows\setupact.log [168] O44 - LFC:[MD5.34EF4B38F5EE5B1BEB21710524673AAC] - 10/07/2012 - 18:04:04 ---A- . (...) -- C:\Windows\PFRO.log [324] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 10/07/2012 - 08:44:57 ---A- . (...) -- C:\Windows\setuperr.log [0] O44 - LFC:[MD5.B080681DEED56DD7F8DA173A27185D0A] - 09/07/2012 - 12:53:09 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1549700] O44 - LFC:[MD5.D27CCF1E6C29F5CD7F6A022185640B8D] - 09/07/2012 - 12:53:09 ---A- . (...) -- C:\Windows\System32\perfc009.dat [106416] O44 - LFC:[MD5.B1A276075B7F3B9731C4AA8359BAEE15] - 09/07/2012 - 12:53:09 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [130782] O44 - LFC:[MD5.32A24E4A385913BD374245B42C52BCBC] - 09/07/2012 - 12:53:09 ---A- . (...) -- C:\Windows\System32\perfh009.dat [616036] O44 - LFC:[MD5.7E19DE4A3228A89427289404FEA7ABED] - 09/07/2012 - 12:53:09 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [704508] O44 - LFC:[MD5.F73DEDFCA6252B8431C1FFD3661809AB] - 06/07/2012 - 20:26:12 ---A- . (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Windows\System32\javaws.exe [227720] O44 - LFC:[MD5.7A1E2AF50DDCDD49C114C1099DBEF6E1] - 06/07/2012 - 20:26:12 ---A- . (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(T.) -- C:\Windows\System32 pDeployJava1.dll [772504] O44 - LFC:[MD5.62BC16D94E8FD4751CF9A5A12AFC6163] - 06/07/2012 - 20:25:47 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\java.exe [174064] O44 - LFC:[MD5.892A789EB58FCEA322E86B239D641668] - 06/07/2012 - 20:25:47 ---A- . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Windows\System32\javaw.exe [174064] O44 - LFC:[MD5.B9D0028390A7BEEBD16CF956955D5C29] - 06/07/2012 - 16:18:40 ---A- . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.20 32-bit Dr.) -- C:\Windows\System32\Drivers\Rt86win7.sys [543336] O44 - LFC:[MD5.D235BAC9889B01047ABF6305BC372D73] - 06/07/2012 - 16:18:40 ---A- . (.Realtek Semiconductor Corporation - About Page.) -- C:\Windows\System32\RtNicProp32.dll [80488] O44 - LFC:[MD5.6908E4844C4D770F24120986922434E7] - 05/07/2012 - 23:34:06 ---A- . (...) -- C:\Windows\System32\CCCInstall_201207060034062751.log [16738] O44 - LFC:[MD5.AFCEE5019BBD61BAD791127CA4060686] - 23/06/2012 - 23:32:26 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe [426184] O44 - LFC:[MD5.DBD17494F0BAD9B99EE249AC830F5772] - 23/06/2012 - 23:32:26 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [70344] O44 - LFC:[MD5.CF074B736849F7B98F86E4F944778932] - 15/06/2012 - 08:20:11 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [3779304] ~ Scan Files in 01mn 22s ---\ Contrôle du Safe Boot (CSB) (O49) (None) ---\ MountPoints2 Shell Key (O51) O51 - MPSK:{11d6050d-7b1d-11e1-8abb-4061861e429e}\AutoRun\command. (...) -- H:\setup.exe (.not file.) O51 - MPSK:{3769ade3-c0be-11df-9358-4061861e429e}\AutoRun\command. (...) -- H:\LaunchU3.exe (.not file.) O51 - MPSK:{57b380dd-9423-11df-9252-4061861e429e}\AutoRun\command. (...) -- G:\autorun.exe (.not file.) O51 - MPSK:{eab18c23-77cf-11df-b64e-4061861e429e}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.) ~ Scan Keys in 00mn 00s ---\ ShareTools MSconfig StartupReg (O53) (None) ---\ Liste des Drivers Système (O58) O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976] O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029] ~ Scan Drivers in 00mn 00s ---\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe ~ Scan Keys in 00mn 00s ---\ Start Menu Internet (O68) (None) ---\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8 ~ Scan Keys in 00mn 00s ---\ Recherche des services démarrés par Svchost (O83) (None) ---\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.089A270B7770F4966E6605CB92062762] [SPRF][29/11/2010] (...) -- C:\ProgramData\ezsidmv.dat [56] [MD5.3D45F0ADF444C9239497923162027417] [SPRF][15/05/2012] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Emerick\AppData\Local\Temp buTor.dll [4401448] [MD5.00E220222110A2355391758C1041CDC7] [SPRF][10/07/2012] (...) -- C:\Users\Emerick\AppData\Local\Temp\utt2617.tmp.bat [53] [MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][29/12/2010] (...) -- C:\Users\Emerick\AppData\Roaming\wklnhst.dat [0] ~ Scan Files in 00mn 00s ---\ Scan Additionnel (O88) Database Version : 9170 - (25/06/2012) Clés trouvées (Keys found) : 11 Valeurs trouvées (Values found) : 1 Dossiers trouvés (Folders found) : 18 Fichiers trouvés (Files found) : 1 [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCU\Software\cacaoweb] =>PUP.CacaoWeb [HKCU\Software\freetvradio] =>Adware.SPointer [HKCU\Software\OfferBox] =>PUP.OfferBox [HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong [HKCU\Software\AppDataLow\Software\Softonic_France] =>Toolbar.Conduit [HKCU\Software\Spointer] =>Adware.SPointer [HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit [HKCU\Software\WideStream] =>Adware.SPointer [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{32099aac-c132-4136-9e9a-4e364a424e17} =>Toolbar.Agent C:\Program Files\Conduit =>Toolbar.Conduit C:\Program Files\DAEMON Tools Toolbar =>Toolbar.Agent C:\Program Files\Softonic_France =>Toolbar.Conduit C:\Users\Emerick\AppData\Roaming\cacaoweb =>PUP.CacaoWeb C:\Users\Emerick\AppData\Roaming\freeTVRadio =>Adware.SPointer C:\Users\Emerick\AppData\Roaming\OfferBox =>PUP.OfferBox C:\Users\Emerick\AppData\Roaming\Widestream =>Adware.SPointer C:\Users\Emerick\AppData\Local\Conduit =>Toolbar.Conduit C:\Users\Emerick\AppData\Local\freetvradio Air =>Adware.SPointer C:\Users\Emerick\AppData\Local\widestream6 Air =>Adware.SPointer C:\Users\Emerick\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon C:\Users\Emerick\AppData\LocalLow\Conduit =>Toolbar.Conduit C:\Users\Emerick\AppData\LocalLow\PriceGong =>Adware.PriceGong C:\Users\Emerick\AppData\LocalLow\Softonic_France =>Toolbar.Conduit C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\Extensions\cacaoweb@cacaoweb.org =>PUP.CacaoWeb C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\SearchPlugins\web-search.xml =>Adware.DoubleD ~ Scan Additionnel in 00mn 06s End of the scan (740 lines in 04mn 21s)(0) En vous remerciant par avance Configuration: Windows 7 / Firefox 13.0.1

g3n-h@ckm@n · Answer

salut

Télécharge et enregistre ADWcleaner sur ton bureau :

ADWCleaner (Merci à Xplode)

Lance le,

(Pour vista et seven => clic droit "executer en tant qu'administrateur")

clique sur suppression et poste son rapport.

biboum47 · Answer

# AdwCleaner v1.702 - Rapport créé le 16/07/2012 à 11:36:54
# Mis à jour le 13/07/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (32 bits)
# Nom d'utilisateur : Emerick - EMERICK-MSI
# Exécuté depuis : C:\Users\Emerick\Downloads\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\Emerick\AppData\Local\Conduit
Dossier Supprimé : C:\Users\Emerick\AppData\Local\freetvradio Air
Dossier Supprimé : C:\Users\Emerick\AppData\Local\Google\Chrome\User Data\Default\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib
Dossier Supprimé : C:\Users\Emerick\AppData\Local\widestream6 Air
Dossier Supprimé : C:\Users\Emerick\AppData\LocalLow\BabylonToolbar
Dossier Supprimé : C:\Users\Emerick\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\Emerick\AppData\LocalLow\PriceGong
Dossier Supprimé : C:\Users\Emerick\AppData\Roaming\cacaoweb
Dossier Supprimé : C:\Users\Emerick\AppData\Roaming\freeTVRadio
Dossier Supprimé : C:\Users\Emerick\AppData\Roaming\OfferBox
Dossier Supprimé : C:\Users\Emerick\AppData\Roaming\widestream
Dossier Supprimé : C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\extensions\cacaoweb@cacaoweb.org
Dossier Supprimé : C:\Users\Emerick\Documents\widestream
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\DAEMON Tools Toolbar
Fichier Supprimé : C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\searchplugins\web-search.xml

***** [Registre] *****

[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2542115
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2719315
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2851639
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\cacaoweb
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\freeTVRadio
Clé Supprimée : HKCU\Software\Offerbox
Clé Supprimée : HKCU\Software\Softonic
Clé Supprimée : HKCU\Software\Spointer
Clé Supprimée : HKCU\Software\WideStream
Clé Supprimée : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Clé Supprimée : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\DT Soft
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DAEMON Tools Toolbar
Clé Supprimée : HKLM\SOFTWARE\Offerbox

***** [Registre - GUID] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]

***** [Navigateurs] *****

-\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

-\ Mozilla Firefox v13.0.1 (fr)

Nom du profil : default 
Fichier : C:\Users\Emerick\AppData\Roaming\Mozilla\Firefox\Profiles\z5m59l11.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [4123 octets] - [16/07/2012 11:34:12]
AdwCleaner[S1].txt - [4102 octets] - [16/07/2012 11:36:54]

########## EOF - C:\AdwCleaner[S1].txt - [4230 octets] ##########

g3n-h@ckm@n · Answer

Attention : cet outil peut etre détecté à tort comme virus

tous les processus "non vitaux de windows" vont être coupés , enregistre ton travail.

Désactive toutes tes protections si possible , antivirus , sandbox , etc....

telecharge et enregistre Pre_Scan sur ton bureau :

http://forums-fec.be/gen-hackman/Pre_Scan.exe
http://general-changelog-team.fr/fr/downloads/viewdownload/41-outils-de-gen-hackman/52-pre-scan

Avertissement :Il y aura une extinction du bureau pendant le scan --> pas de panique.

une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition de "Pre_scan_la_date_et_l'heure.txt" sur le bureau.

si l'outil est relancé plusieurs fois , il te proposera un menu et qu'aucune option n'est demandée, lance l'option "Kill"

si l'outil est bloqué par l'infection utilise cette version avec extension .pif :

http://forums-fec.be/gen-hackman/Pre_Scan.pif

si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"

Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler

Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan


NE LE POSTE PAS SUR LE FORUM !!! (il est trop long)

Heberge le rapport sur http://pjjoint.malekal.com puis donne le lien obtenu en echange sur le forum où tu te fais aider

biboum47 · Answer

Un fenêtre defogger est apparu. Je clique sur disable ou re-enable

g3n-h@ckm@n · Answer

tu fais ce que le logiciel t'a conseillé donc "disable"

biboum47 · Answer

et voici le lien : https://pjjoint.malekal.com/files.php?id=20120716_c5m6m7z13d12

g3n-h@ckm@n · Answer

merci d utiliser des logiciels microsoft originaux

à titre info :

https://www.commentcamarche.net/faq/2981-j-utilise-une-version-piratee-de-windows

biboum47 · Answer

Je ne pense pas que ce soit une version piratée. Peux-tu me dire si mon ordinateur a un problème majeur ou autre, suivant les résultats du rapport

g3n-h@ckm@n · Answer

dans ce cas pourquoi Pre_Scan a detruit le serveur virtuel qui fait croire à microsoft que ton windows est légitime ?

biboum47 · Answer

J'ai acheté mon ordinateur dans un magasin et je n'ai pas de version pirate.

g3n-h@ckm@n · Answer

re

desinstalle tout ce qui a attrait à Softonic
desinstalle VuzeRemote toolbar
desinstalle tout Java sauf la 7 update 5

=======


@: à L'attention de ceux qui utilisent les switchs de Pre_script :
n'utiliser que les switchs proposés sur la page correspondante :
https://gen-hackman.kanak.fr/

================================

Clique sur ce lien : https://www.cjoint.com/?BGqsoTHj1q4

Selectionne tout le texte qui s'y trouve CTRL+A puis CTRL+C ou clic droit/copier

Relance Pre_scan puis choisis l'option "Script"

une page va s'ouvrir

logiquement le texte que tu as sélectionné s'y trouve déjà , donc tu fermes et le programme va travailler.

sinon colle-le (clic droit/coller ou ctrl+V) dans la page vierge.

puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte

des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille 

poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail

biboum47 · Answer

C'est bon c'est fait

g3n-h@ckm@n · Answer

essaie de lire les instructions jusqu'au bout stp

g3n-h@ckm@n · Answer

fufufuuff ^^^........

possible de l'avoir entier ?

g3n-h@ckm@n · Answer

refais un script avec juste ca ?

List::
C:\Users\Emerick\AppData\Local\{570965D5-910F-43FC-87EA-D5EF719A2ABA}
C:\Users\Emerick\AppData\Local\{F88F3B5C-08DF-4134-95F3-92947E89BCFA}

g3n-h@ckm@n · Answer

d'autant plus bizarres qu ils soient vides !!!

verifie qu il n y ait bien rien dedans ?

g3n-h@ckm@n · Answer

heu...et ?

biboum47 · Answer

Dans ces dossiers il n'y a rien

g3n-h@ckm@n · Answer

fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


&#9654 Télécharge ici :

Malwarebytes  

&#9654 Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

&#9654 Lance Malwarebyte's .

Fais un examen dit "Complet" .

&#9654 Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
&#9654 à la fin tu cliques sur "résultat" .
&#9654 Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

&#9654 Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


&#9654 Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

biboum47 · Answer

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Version de la base de données: v2012.07.17.08

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Emerick :: EMERICK-MSI [administrateur]

19/07/2012 14:03:16
mbam-log-2012-07-19 (14-03-16).txt

Type d'examen: Examen complet (C:\|D:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 447930
Temps écoulé: 4 heure(s), 34 minute(s), 3 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)

g3n-h@ckm@n · Answer

encore des soucis ?

g3n-h@ckm@n · Answer

pas fini on fait le menage alors ^^

https://gen-hackman.kanak.fr/#1037

biboum47 · Answer

Total space cleaned: 81.45 KBTotal space cleaned: 81.45 KB

biboum47 · Answer

J'ai fait la suppression avec delfix aussi

g3n-h@ckm@n · Answer

formidable ! :)

biboum47 · Answer

Juste une question, j'ai fait une vérification des erreurs sur le disque C et mon ordi a planté. Ecran bleu "the system shut down". Ensuite, mon ordinateur s'est rallumé normalement.
Aussi, quand je débranche le cable d'alimentation lorsque a batterie est pleine, pourquoi mon ordinateur s'éteint il tout seul?

g3n-h@ckm@n · Answer

faudrait le message complet de l ecran bleu....

g3n-h@ckm@n · Answer

Télécharge ici : Blue screen View
Décompresse l'archive sur ton Bureau.
Double clique sur le fichier BlueScreenView.exe pour le lancer. (Clic droit Executer en tant qu'administrateur sous Vista/Seven)

A la fin du scan, , clique sur Edit puis Select All.
Puis Go File et Save Selected Items.
Sauve le rapport sous BSOD.txt.
Ouvre BSOD.txt dans le Bloc-notes, copie son contenu et poste le dans ta réponse.

biboum47 · Answer

rien du tout dans le logiciel. Aucun scan a faire donc

g3n-h@ckm@n · Answer

ben refais une verif et si ca le refait , note tout ou prends une photo
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

Demande analyse rapport ZHPdiag

30 réponses

Discussions similaires