Navigateur qui fait planter le pc
Fermé
Bouchain.j
Messages postés
1
Date d'inscription
vendredi 14 septembre 2012
Statut
Membre
Dernière intervention
14 septembre 2012
-
14 sept. 2012 à 22:39
Utilisateur anonyme - 18 sept. 2012 à 23:04
Utilisateur anonyme - 18 sept. 2012 à 23:04
Bonjour,
Voila mon problème, depuis peu mes navigateur tous confondu (chrome/Firefox) plante après une page voir 2 ouverte ce qui engendre un freeze générale.
J'ai nettoyer le PC avec Ccleaner, Spybot, et un coup de rogueKiller mais cela n'a rien donné. En ce moment je passe un coup de Malwarebytes je posterais le rapport dès que je l'aurais.
Merci d'avance pour votre aide.
Bocuhain Jérémy.
Rapport de ZHPDiag v1.31.19 par Nicolas Coolman, Update du 06/09/2012
Run by Mom_Dad at 14/09/2012 21:58:02
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.
---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 15.0.1 v15.0.1 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4023 MB (56% free)
System Restore: Activé (Enable)
System drive C: has 90 GB (40%) free of 225 GB
---\\ Logged in mode
~ Computer Name: POPAMOMAN
~ User Name: Mom_Dad
~ All Users Names: UpdatusUser, Mom_Dad, Mcx1-POPAMOMAN, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Mom_Dad\AppData\Roaming\
~ %Desktop% : C:\Users\Mom_Dad\Desktop\
~ %Favorites% : C:\Users\Mom_Dad\Favorites\
~ %LocalAppData% : C:\Users\Mom_Dad\AppData\Local\
~ %StartMenu% : C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 90 Go of 225 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 932 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 226 Go of 226 Go)
F:\ CD-ROM drive (Free 0 Go of 1 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
L:\ Hard drive, Flash drive, Thumb drive (Free 335 Go of 466 Go)
M:\ Floppy drive, Flash card reader, USB Key (Free 2 Go of 4 Go)
N:\ CD-ROM drive (Not Inserted)
O:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
UAC deactivate by program
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.ADC0BAC148C957CF51B1F6F658A4FCA6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2012 - 08:06:53.) -- C:\Windows\System32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/941
~ Mes musiques (My Musics) : 0/249
~ Mes Videos (My Video) : 0/1
~ Mes Favoris (My Favorites) : 0/32
~ Mes Documents (My Documents) : 0/954
~ Mon Bureau (My Desktop) : 0/36816
~ Menu demarrer (Programs) : 0/101
~ Scan Hidden Files in 00mn 10s
---\\ Processus lancés
[MD5.E0D2F6BF46E6053193FAA3E294D657FF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamgui.exe [766536] [PID.2764]
[MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3500]
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912] [PID.3152]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480] [PID.4004]
[MD5.B40BFC90E536FD53189F82CF28CF0770] - (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe [3487128] [PID.3080]
[MD5.22107F2015729D8A8943BBE13B091BD0] - (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe [124416] [PID.3672]
[MD5.C98FF6C440E8967251F59C7919B505A1] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [37296] [PID.3752]
[MD5.20C4535969F2006F6082CDF146CD95C4] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4273976] [PID.3600]
[MD5.70CF4129C12FC061F0D4F9AEAE7DCAAE] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [947808] [PID.4144]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.4280]
[MD5.1A5E2ABF3277B8E3ECFC62A0CA352483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbam.exe [981656] [PID.4240]
[MD5.4CE0626245E0F0AC4970AF913FB6964A] - (...) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\ZHPDiag\ZHPDiag.exe [3764736] [PID.5100]
[MD5.67A95B9D129ED5399E7965CD09CF30E7] - (.Logitech Inc. - Logitech User mode UMVPF service.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848] [PID.]
[MD5.2F7C0F3E39C45E0127FB78B2F18A41F3] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808] [PID.]
[MD5.6D9FC1E7EA3C548F4D3455F0C3FEEF8C] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) -- c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [169312] [PID.]
[MD5.F401929EE0CC92BFE7F15161CA535383] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.]
[MD5.0DCF16B1449811EFA47AB52CAC84093C] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamscheduler.exe [399432] [PID.]
[MD5.9EAABA4D601004BEA4DAA6E146E19A96] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamservice.exe [676936] [PID.]
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160] [PID.]
[MD5.B5E6C4F280EBF0B16F74A5B415F2E0DF] - (.Pas de propriétaire - USB S3S4 Detection.) -- C:\OEM\USBDECTION\USBS3S4Detection.exe [76320] [PID.]
[MD5.CBA3F6EF1E70167DB376B4013F71A62B] - (.Pas de propriétaire - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [722528] [PID.]
[MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.]
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368] [PID.]
[MD5.E7818CD4FB51284C948D68A7A85A69B8] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504] [PID.]
~ Scan Processes Running in 00mn 02s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Mom_Dad\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://isearch.avg.com/
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Mom_Dad\AppData\Roaming\Mozilla\Firefox\Profiles\m1ip7dll.default\prefs.js
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Users\Mom_Dad\AppData\Roaming\Mozilla\Firefox\Profiles\m1ip7dll.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\avg-secure-search.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Mom_Dad - m1ip7dll.default] https://www.google.fr/?gws_rd=ssl
M2 - MFEP: prefs.js [Mom_Dad - m1ip7dll.default\avg@toolbar] [] AVG Security Toolbar v10.0.0.7 (.AVG Security Toolbar.)
M2 - MFEP: prefs.js [Mom_Dad - m1ip7dll.default\personalization_sensor@genieo.com] [] My Personal Homepage v4.2.299 (.Genieo Innovation Ltd..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.5.0] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.5.0] - (.Oracle Corporation - Next Generation Java Plug-in 10.5.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKCU] [@nsroblox.roblox.com/launcher] - (. Roblox Corporation - Roblox Launcher Plugin.) -- C:\Users\Mom_Dad\AppData\Local\Roblox\Versions\version-14148f7d00f24d47\NPRobloxProxy.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 3.5.2f2.) -- C:\Users\Mom_Dad\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (.Ubisoft - Uplay PC Plugin.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://isearch.avg.com/
R3 - URLSearchHook: (no name) [64Bits] - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {51a86bb3-6602-4c85-92a5-130ee4864f13} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {51a86bb3-6602-4c85-92a5-130ee4864f13} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 03s
~ Nombre de lignes (Lines number): 15255
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} Clé orpheline
O2 - BHO: (no name) [64Bits] - {0538CF1C-8419-4800-ADBB-0C00C799FDA2} Clé orpheline
O2 - BHO: (no name) [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O2 - BHO: (no name) [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} Clé orpheline
O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: (no name) [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline
O2 - BHO: (no name) [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} Clé orpheline
O2 - BHO: (no name) [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} Clé orpheline
O2 - BHO: (no name) [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} Clé orpheline
O2 - BHO: (no name) [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) -- (.not file.)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (...) -- (.not file.)
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [OOTag] . (.Microsoft - OOTag.) -- C:\windows\oobeoffer\oobeoffer\ootag.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe
O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Wow6432Node\Run: [Packard Bell Photo Frame] . (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
O4 - HKLM\..\Wow6432Node\Run: [ROC_roc_dec12] . (...) -- C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
O4 - HKLM\..\Wow6432Node\Run: [ROC_ROC_JULY_P1] . (...) -- C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\DDS Converter 2.lnk . (...) -- D:\Need For Speed\DDS Converter 2\DDS Converter 2.exe (.not file.)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Sacred.lnk . (...) -- D:\Jeux\Sacred\Sacred.exe (.not file.)
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\.minecraft.lnk . (...) -- C:\Users\Mom_Dad\AppData\Roaming\.minecraft
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\AdventureCraft.lnk . (...) -- C:\Users\Mom_Dad\Desktop\[1.7.3] Zelda Adventure V0.9.5 - Adventurecraft\AdventureCraft\AdventureCraft.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\ANNO 2070 - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Combiner mod.lnk . (...) -- D:\Jeux\Company Of Hero\Combiner.BAT
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\DarkCrusade.lnk . (.THQ Canada Inc..) -- L:\Jeux\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Downloader.lnk . (.Metaboli.) -- C:\Users\Mom_Dad\Desktop\nath\Downloader.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Dungeon Defenders.lnk . (.Trendy Entertainment LLC.) -- D:\Jeux\DungeDefs\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Frozen Throne.lnk . (.Blizzard Entertainment.) -- D:\Warcraft III (+Image)\Warcraft III\Frozen Throne.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\HiJackThis.lnk . (.Trend Micro Inc..) -- C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\IronBrigade - Raccourci.lnk . (.Microsoft Game Studios.) -- C:\Program Files (x86)\Steam\SteamApps\common\ironbrigade\IronBrigade.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Launcher - Raccourci.lnk . (...) -- L:\World of Warcraft\Launcher.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Metaboli - Téléchargement de jeux vidéos.lnk . (...) -- C:\Program Files (x86)\Packard Bell\metaboli\MetaBoli.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Minecraft.lnk . (.AnjoCaido.) -- L:\Jeux\.minecraft\Minecraft.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\NHCmod v2.6.lnk . (...) -- D:\Jeux\Company Of Hero\NHCToV.BAT
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Skyrim.lnk . (.Bethesda Softworks.) -- L:\Jeux\Skyrim\TESV.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\SweetPcFix.url . (.Safer Networking Limited.) -- C:\Users\Mom_Dad\Desktop\SweetPcFix.url
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\w40k.lnk . (.Relic Entertainment Inc..) -- L:\Jeux\THQ\Dawn of War\W40k.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Wizard101.lnk . (...) -- C:\ProgramData\Wizard101(FR)\Wizard101.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\WorldOfTanks.lnk . (.Wargaming.net.) -- D:\Need For Speed\World_of_Tanks\WorldOfTanks.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\wot-xvm-proxy - Raccourci.lnk . (.https://code.google.com/archive/p/wot-xvm -- D:\Need For Speed\World_of_Tanks\wot-xvm-proxy.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\Desktop\DDS Converter 2.lnk . (...) -- D:\Need For Speed\DDS Converter 2\DDS Converter 2.exe (.not file.)
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\Desktop\Sacred.lnk . (...) -- D:\Jeux\Sacred\Sacred.exe (.not file.)
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
~ Scan Global Startup in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- c:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: viprotocol [64Bits] - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DokanMounter (DokanMounter) . (...) - C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 275.3.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) . (.Pas de propriétaire - OberonGameConsoleService.) - C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: USBS3S4Detection (USBS3S4Detection) . (.Pas de propriétaire - USB S3S4 Detection.) - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: (vToolbarUpdater12.2.6) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000UA.job
[MD5.A9D3B95E8466BD58EEB8A1154654E162] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.5A7E85100ACB28FBA8A81181A06C52D7] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000Core] (.Google Inc..) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000UA] (.Google Inc..) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.013414E136AC76598B19552DC31DE718] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe
[MD5.00000000000000000000000000000000] [APT] [{14F73D3C-0516-420B-8634-2478EB30E36F}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{2831CE79-4DDC-4259-B14B-EBC799FE25E8}] (...) -- C:\Program Files (x86)\Lasermedia\Forestia\FORESTIA.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{3B6F5508-16FB-4E55-8ECE-24860FFE1DE7}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{3EACC33E-4AD2-4310-84B8-420238552014}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{47CBEF0E-6A5C-42D2-8770-1382843B57C4}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4E77F744-01BA-4E1C-8B53-2AD944682748}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{538E9AC0-5BB4-4712-9293-4F3170D7FFA3}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{53DBF21C-0579-4315-8CC8-C1FC9D58E379}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{55C37745-FA9D-42E3-B9D4-4455173A3FD7}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{5E6EFCD5-DC2E-4DC6-A312-01746067BE14}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{61715590-68B1-4D90-8BCA-807CA27E648D}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{73ED916C-6015-432E-A46D-B3C8A5FF21A5}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{74682748-A489-4AF7-88F7-B0C525A7763A}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{7CC6AA54-75CC-4A09-BA02-56A3B6990E33}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{856D5902-F700-451D-9573-9C169ADB248C}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{873B4508-2CFC-46E2-A5B9-B75F323B6018}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{8BCEF30A-A72B-477B-A47F-1708C0235741}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.02B84956FF0A8A5BF730FC78A654D846] [APT] [{91B8269A-1760-445E-8EA6-3EE1331A5CE4}] (.A.I.SOFT,INC..) -- C:\Users\Mom_Dad\Downloads\DCP-J315W-inst-A2-fr.exe
[MD5.00000000000000000000000000000000] [APT] [{9A54049F-2CE0-4BA5-AAF2-516579CA8A32}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.7985D220E10D4CFEEDBC755F2762CB4E] [APT] [{9C8BD6B3-9DEA-4706-B505-0DAB900079C1}] (...) -- C:\ProgramData\Wizard101(FR)\Wizard101.exe
[MD5.00000000000000000000000000000000] [APT] [{A10E070E-0F4F-40A1-A258-6837F7CBBF34}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{ADCC6806-28CF-459C-9A74-3CA7865E7FE9}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B88906BA-4869-4CC2-99FE-1395FEF771D2}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C40E560D-D41C-49C6-B950-04761160BC5E}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CA727022-4A29-4D23-BE07-89C972E27640}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CAFF8C75-23DE-43EB-8C32-24EF6425C6E3}] (...) -- F:\FPC\SETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{D7A4E948-9F33-4167-9105-8E7F602B9053}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E58DF4CE-7839-4168-A234-B31FE59FC3B0}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E890C78A-0EE5-447D-A374-7862D88CD1C0}] (...) -- D:\Jeux\limbo\unl-limb\Launcher.exe (.not file.)
[MD5.1027DF7F909776789D9D1C2C30410166] [APT] [{FD07EDD5-95EE-4670-B029-6506733E91F5}] (...) -- D:\Jeux\OOo_3.3.0_Win_x86_install-wJRE_fr.exe
[MD5.00000000000000000000000000000000] [APT] [{FD934270-5554-44EF-A069-7126E65A384C}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.4530F5804CB7CD386C6705705769E73C] [APT] [MixPadReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\MixPad\MixPad.exe
[MD5.7E6C671FC2A3250E817A68CFC8E4EBE4] [APT] [prismShakeIcon] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\Prism\Prism.exe
[MD5.766062CBE869015F977250E6AFDC94A8] [APT] [SwitchReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\Switch\Switch.exe
[MD5.17B304A398CB95E36D68C2A6121796B1] [APT] [WavePadReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\WavePad\WavePad.exe
~ Scan Scheduled Task in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: ANNO 2070 - (.Ubisoft.) [HKLM] -- {B48E264C-C8CD-4617-B0BE-46E977BAD694}
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM] -- AVG Secure Search
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Photoshop Elements 7
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- {5511C07D-A83C-45AD-92B6-42DF99729A3C}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
O42 - Logiciel: Adobe Reader 9.5.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM] -- GFWL_{4D530FA3-9B89-4186-98B7-F51000008100}
O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM] -- {4D530FA3-9B89-4186-98B7-F51000008100}
O42 - Logiciel: Age of Mythology Gold - (.Microsoft.) [HKLM] -- Age of Mythology Expansion Pack 1.0
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {122ADF8C-DDA1-480C-9936-C88F2825B265}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: Atlantis Evolution - (.Pas de propriétaire.) [HKLM] -- BFG-Atlantis Evolution
O42 - Logiciel: AviSynth 2.5 - (.Pas de propriétaire.) [HKLM] -- AviSynth
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM] -- BFGC
O42 - Logiciel: Brother MFL-Pro Suite DCP-J315W - (.Brother Industries, Ltd..) [HKLM] -- {FB83EAC4-E3F6-4666-B45B-44522F2344B6}
O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}
O42 - Logiciel: Chronicles of Mystery: L' arbre de vie - (.Pas de propriétaire.) [HKLM] -- BFG-Chronicles of Mystery - L' arbre de vie
O42 - Logiciel: Company of Heroes - (.THQ Inc..) [HKLM] -- {51D718D1-DA81-4FAD-919F-5C1CE3C33379}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dark Heritage: Les Gardiens de l'Espoir Edition Collector - (.Pas de propriétaire.) [HKLM] -- BFG-Dark Heritage - Les Gardiens de l'Espoir Edition Collector
O42 - Logiciel: Dawn of War - Soulstorm - (.THQ.) [HKLM] -- {20533183-D42D-4261-A125-956736FBEA8C}
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM] -- Diablo III
O42 - Logiciel: Dictionnaire Auzou - (.Pas de propriétaire.) [HKLM] -- NSIS_auzou_dea
O42 - Logiciel: Dokan Library 0.6.0 - (.Pas de propriétaire.) [HKLM] -- DokanLibrary
O42 - Logiciel: Downloader - (.Pas de propriétaire.) [HKLM] -- Downloader
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: Earth 2160 - (.Zuxxez Entertainment AG.) [HKLM] -- Earth 2160
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: First Class Flurry - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115208410}
O42 - Logiciel: Forestia - (.Pas de propriétaire.) [HKLM] -- Forestia
O42 - Logiciel: Freelancer - (.Pas de propriétaire.) [HKLM] -- Freelancer 1.0
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM] -- Identity Card
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager
O42 - Logiciel: Internet Explorer Toolbar 4.6 by SweetPacks - (.SweetIM Technologies Ltd..) [HKLM] -- {774C0434-9948-4DEE-A14E-69CDD316E36C}
O42 - Logiciel: Iron Brigade - (.Pas de propriétaire.) [HKLM] -- Steam App 115120
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM] -- 5513-1208-7298-9440
O42 - Logiciel: JMicron JMB36X Driver - (.JMicron Technology Corp..) [HKLM] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}
O42 - Logiciel: Java 7 Update 7 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: Java(TM) 6 Update 22 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022F0}
O42 - Logiciel: Java(TM) 6 Update 29 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216026FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: LEGO Universe - (.LEGO Software.) [HKLM] -- NetDevil_LEGO_Universe_is1
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- LogMeIn Hamachi
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- {B8ABD8C7-991E-4A70-B5A3-20C6FC680680}
O42 - Logiciel: Love Chronicles: La Rose et l'Epée Edition Collector - (.Pas de propriétaire.) [HKLM] -- BFG-Love Chronicles - La Rose et l'Epee Edition Collector
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.0.1400 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaCoder 0.8.14 - (.Broad Intelligence.) [HKLM] -- MediaCoder
O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}
O42 - Logiciel: Metaboli - (.Packard Bell.) [HKLM] -- Metaboli
O42 - Logiciel: Metaboli Player - (.Pas de propriétaire.) [HKLM] -- Metaboli Player
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_OMUI.fr-fr_{CF3C20A6-47B7-48DA-95C1-6FBB5
Voila mon problème, depuis peu mes navigateur tous confondu (chrome/Firefox) plante après une page voir 2 ouverte ce qui engendre un freeze générale.
J'ai nettoyer le PC avec Ccleaner, Spybot, et un coup de rogueKiller mais cela n'a rien donné. En ce moment je passe un coup de Malwarebytes je posterais le rapport dès que je l'aurais.
Merci d'avance pour votre aide.
Bocuhain Jérémy.
Rapport de ZHPDiag v1.31.19 par Nicolas Coolman, Update du 06/09/2012
Run by Mom_Dad at 14/09/2012 21:58:02
Web site : http://nicolascoolman.skyrock.com/
State : Version à jour.
---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 15.0.1 v15.0.1 (Defaut)
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4023 MB (56% free)
System Restore: Activé (Enable)
System drive C: has 90 GB (40%) free of 225 GB
---\\ Logged in mode
~ Computer Name: POPAMOMAN
~ User Name: Mom_Dad
~ All Users Names: UpdatusUser, Mom_Dad, Mcx1-POPAMOMAN, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Mom_Dad\AppData\Roaming\
~ %Desktop% : C:\Users\Mom_Dad\Desktop\
~ %Favorites% : C:\Users\Mom_Dad\Favorites\
~ %LocalAppData% : C:\Users\Mom_Dad\AppData\Local\
~ %StartMenu% : C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 90 Go of 225 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 142 Go of 932 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 226 Go of 226 Go)
F:\ CD-ROM drive (Free 0 Go of 1 Go)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
L:\ Hard drive, Flash drive, Thumb drive (Free 335 Go of 466 Go)
M:\ Floppy drive, Flash card reader, USB Key (Free 2 Go of 4 Go)
N:\ CD-ROM drive (Not Inserted)
O:\ CD-ROM drive (Not Inserted)
---\\ Security Center & Tools Informations
UAC deactivate by program
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.ADC0BAC148C957CF51B1F6F658A4FCA6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/06/2012 - 08:06:53.) -- C:\Windows\System32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/03/2011 - 07:41:34.) -- C:\Windows\system32\Drivers\ntfs.sys [1659776]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Scan Generic Processes in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 0/941
~ Mes musiques (My Musics) : 0/249
~ Mes Videos (My Video) : 0/1
~ Mes Favoris (My Favorites) : 0/32
~ Mes Documents (My Documents) : 0/954
~ Mon Bureau (My Desktop) : 0/36816
~ Menu demarrer (Programs) : 0/101
~ Scan Hidden Files in 00mn 10s
---\\ Processus lancés
[MD5.E0D2F6BF46E6053193FAA3E294D657FF] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamgui.exe [766536] [PID.2764]
[MD5.D1930CA970D4250D891F432419E3D6C9] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.3500]
[MD5.CEA0461AAE4B8B6216F164501B1B5A10] - (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [4910912] [PID.3152]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480] [PID.4004]
[MD5.B40BFC90E536FD53189F82CF28CF0770] - (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe [3487128] [PID.3080]
[MD5.22107F2015729D8A8943BBE13B091BD0] - (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe [124416] [PID.3672]
[MD5.C98FF6C440E8967251F59C7919B505A1] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe [37296] [PID.3752]
[MD5.20C4535969F2006F6082CDF146CD95C4] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4273976] [PID.3600]
[MD5.70CF4129C12FC061F0D4F9AEAE7DCAAE] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [947808] [PID.4144]
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.4280]
[MD5.1A5E2ABF3277B8E3ECFC62A0CA352483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbam.exe [981656] [PID.4240]
[MD5.4CE0626245E0F0AC4970AF913FB6964A] - (...) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\ZHPDiag\ZHPDiag.exe [3764736] [PID.5100]
[MD5.67A95B9D129ED5399E7965CD09CF30E7] - (.Logitech Inc. - Logitech User mode UMVPF service.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848] [PID.]
[MD5.2F7C0F3E39C45E0127FB78B2F18A41F3] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44808] [PID.]
[MD5.6D9FC1E7EA3C548F4D3455F0C3FEEF8C] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) -- c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [169312] [PID.]
[MD5.F401929EE0CC92BFE7F15161CA535383] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.]
[MD5.0DCF16B1449811EFA47AB52CAC84093C] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamscheduler.exe [399432] [PID.]
[MD5.9EAABA4D601004BEA4DAA6E146E19A96] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamservice.exe [676936] [PID.]
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160] [PID.]
[MD5.B5E6C4F280EBF0B16F74A5B415F2E0DF] - (.Pas de propriétaire - USB S3S4 Detection.) -- C:\OEM\USBDECTION\USBS3S4Detection.exe [76320] [PID.]
[MD5.CBA3F6EF1E70167DB376B4013F71A62B] - (.Pas de propriétaire - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe [722528] [PID.]
[MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.]
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368] [PID.]
[MD5.E7818CD4FB51284C948D68A7A85A69B8] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504] [PID.]
~ Scan Processes Running in 00mn 02s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Mom_Dad\AppData\Local\Google\Chrome\User Data\Default\Preferences
G0 - GCSP: Preference [User Data\Default][HomePage] https://isearch.avg.com/
G1 - GCS: Preference [User Data\Default] None
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Mom_Dad\AppData\Roaming\Mozilla\Firefox\Profiles\m1ip7dll.default\prefs.js
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Users\Mom_Dad\AppData\Roaming\Mozilla\Firefox\Profiles\m1ip7dll.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\avg-secure-search.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Mom_Dad] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Mom_Dad - m1ip7dll.default] https://www.google.fr/?gws_rd=ssl
M2 - MFEP: prefs.js [Mom_Dad - m1ip7dll.default\avg@toolbar] [] AVG Security Toolbar v10.0.0.7 (.AVG Security Toolbar.)
M2 - MFEP: prefs.js [Mom_Dad - m1ip7dll.default\personalization_sensor@genieo.com] [] My Personal Homepage v4.2.299 (.Genieo Innovation Ltd..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_271.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.5.0] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.5.0] - (.Oracle Corporation - Next Generation Java Plug-in 10.5.0 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKCU] [@nsroblox.roblox.com/launcher] - (. Roblox Corporation - Roblox Launcher Plugin.) -- C:\Users\Mom_Dad\AppData\Local\Roblox\Versions\version-14148f7d00f24d47\NPRobloxProxy.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 3.5.2f2.) -- C:\Users\Mom_Dad\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (.Ubisoft - Uplay PC Plugin.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
~ Scan Firefox Browser in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://isearch.avg.com/
R3 - URLSearchHook: (no name) [64Bits] - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {51a86bb3-6602-4c85-92a5-130ee4864f13} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R3 - URLSearchHook: (no name) [64Bits] - {51a86bb3-6602-4c85-92a5-130ee4864f13} . (.Ubisoft - Uplay PC Plugin.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 03s
~ Nombre de lignes (Lines number): 15255
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: (no name) [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} Clé orpheline
O2 - BHO: (no name) [64Bits] - {0538CF1C-8419-4800-ADBB-0C00C799FDA2} Clé orpheline
O2 - BHO: (no name) [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} Clé orpheline
O2 - BHO: (no name) [64Bits] - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Clé orpheline
O2 - BHO: (no name) [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} Clé orpheline
O2 - BHO: (no name) [64Bits] - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} Clé orpheline
O2 - BHO: (no name) [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} Clé orpheline
O2 - BHO: (no name) [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} Clé orpheline
O2 - BHO: (no name) [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} Clé orpheline
O2 - BHO: (no name) [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} Clé orpheline
O2 - BHO: (no name) [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} Clé orpheline
O2 - BHO: (no name) [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} Clé orpheline
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} . (...) -- (.not file.)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (...) -- (.not file.)
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [OOTag] . (.Microsoft - OOTag.) -- C:\windows\oobeoffer\oobeoffer\ootag.exe
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe
O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Wow6432Node\Run: [Packard Bell Photo Frame] . (.IOI - ButtonMonitor.) -- C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe
O4 - HKLM\..\Wow6432Node\Run: [ROC_roc_dec12] . (...) -- C:\Program Files (x86)\AVG Secure Search\ROC_roc_dec12.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
O4 - HKLM\..\Wow6432Node\Run: [ROC_ROC_JULY_P1] . (...) -- C:\Program Files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [DAEMON Tools Lite] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2112320117-3079256994-2166246999-1002-2112320117-3079256994-2166246999-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\IDM\Internet Download Manager\IDMan.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\DDS Converter 2.lnk . (...) -- D:\Need For Speed\DDS Converter 2\DDS Converter 2.exe (.not file.)
O4 - Global Startup: C:\Users\UpdatusUser\Desktop\Sacred.lnk . (...) -- D:\Jeux\Sacred\Sacred.exe (.not file.)
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\.minecraft.lnk . (...) -- C:\Users\Mom_Dad\AppData\Roaming\.minecraft
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\AdventureCraft.lnk . (...) -- C:\Users\Mom_Dad\Desktop\[1.7.3] Zelda Adventure V0.9.5 - Adventurecraft\AdventureCraft\AdventureCraft.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\ANNO 2070 - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Combiner mod.lnk . (...) -- D:\Jeux\Company Of Hero\Combiner.BAT
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\DarkCrusade.lnk . (.THQ Canada Inc..) -- L:\Jeux\THQ\Dawn of War - Dark Crusade\DarkCrusade.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Downloader.lnk . (.Metaboli.) -- C:\Users\Mom_Dad\Desktop\nath\Downloader.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Dungeon Defenders.lnk . (.Trendy Entertainment LLC.) -- D:\Jeux\DungeDefs\Dungeon Defenders\Binaries\Win32\DungeonDefenders.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\EVEREST Ultimate Edition.lnk . (.Lavalys, Inc..) -- C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Frozen Throne.lnk . (.Blizzard Entertainment.) -- D:\Warcraft III (+Image)\Warcraft III\Frozen Throne.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\HiJackThis.lnk . (.Trend Micro Inc..) -- C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\IronBrigade - Raccourci.lnk . (.Microsoft Game Studios.) -- C:\Program Files (x86)\Steam\SteamApps\common\ironbrigade\IronBrigade.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Launcher - Raccourci.lnk . (...) -- L:\World of Warcraft\Launcher.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Metaboli - Téléchargement de jeux vidéos.lnk . (...) -- C:\Program Files (x86)\Packard Bell\metaboli\MetaBoli.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Minecraft.lnk . (.AnjoCaido.) -- L:\Jeux\.minecraft\Minecraft.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\NHCmod v2.6.lnk . (...) -- D:\Jeux\Company Of Hero\NHCToV.BAT
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Skyrim.lnk . (.Bethesda Softworks.) -- L:\Jeux\Skyrim\TESV.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\SweetPcFix.url . (.Safer Networking Limited.) -- C:\Users\Mom_Dad\Desktop\SweetPcFix.url
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\w40k.lnk . (.Relic Entertainment Inc..) -- L:\Jeux\THQ\Dawn of War\W40k.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\Wizard101.lnk . (...) -- C:\ProgramData\Wizard101(FR)\Wizard101.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\WorldOfTanks.lnk . (.Wargaming.net.) -- D:\Need For Speed\World_of_Tanks\WorldOfTanks.exe
O4 - Global Startup: C:\Users\Mom_Dad\Desktop\wot-xvm-proxy - Raccourci.lnk . (.https://code.google.com/archive/p/wot-xvm -- D:\Need For Speed\World_of_Tanks\wot-xvm-proxy.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Mom_Dad\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\Desktop\DDS Converter 2.lnk . (...) -- D:\Need For Speed\DDS Converter 2\DDS Converter 2.exe (.not file.)
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\Desktop\Sacred.lnk . (...) -- D:\Jeux\Sacred\Sacred.exe (.not file.)
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Earth 2160.lnk . (.Reality Pump.) -- D:\Need For Speed\Earth 2160\Earth2160_START.exe
O4 - Global Startup: C:\Users\Mcx1-POPAMOMAN\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\FreeArc.lnk . (...) -- C:\Users\Mom_Dad\Downloads\Compressed\arm2_o_a_patch.mul8.cr.baz_arc\FreeArc\bin\FreeArc.exe (.not file.)
~ Scan Global Startup in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ Scan IE Control Panel in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{310603E6-CE02-40B8-9261-5C7785E8B3DF}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- c:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype4com [64Bits] - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: viprotocol [64Bits] - {B658800C-F66E-4EF3-AB85-6C0C227862A9} . (...) -- C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.6\ViProtocol.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) . (.Adobe Systems Incorporated - Adobe Photoshop Elements 7.0 (component).) - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DokanMounter (DokanMounter) . (...) - C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) . (.LogMeIn Inc. - Hamachi Client Tunneling Engine.) - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Users\Mom_Dad\Desktop\Sauver Le soldat Pacarberl\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 275.3.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) . (.Pas de propriétaire - OberonGameConsoleService.) - C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: (UMVPFSrv) . (.Logitech Inc. - Logitech User mode UMVPF service.) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: USBS3S4Detection (USBS3S4Detection) . (.Pas de propriétaire - USB S3S4 Detection.) - C:\OEM\USBDECTION\USBS3S4Detection.exe
O23 - Service: (vToolbarUpdater12.2.6) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
~ Scan Services in 00mn 00s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000Core.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000UA.job
[MD5.A9D3B95E8466BD58EEB8A1154654E162] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.5A7E85100ACB28FBA8A81181A06C52D7] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000Core] (.Google Inc..) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-2112320117-3079256994-2166246999-1000UA] (.Google Inc..) -- C:\Users\Mom_Dad\AppData\Local\Google\Update\GoogleUpdate.exe
[MD5.013414E136AC76598B19552DC31DE718] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe
[MD5.00000000000000000000000000000000] [APT] [{14F73D3C-0516-420B-8634-2478EB30E36F}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{2831CE79-4DDC-4259-B14B-EBC799FE25E8}] (...) -- C:\Program Files (x86)\Lasermedia\Forestia\FORESTIA.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{3B6F5508-16FB-4E55-8ECE-24860FFE1DE7}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{3EACC33E-4AD2-4310-84B8-420238552014}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{47CBEF0E-6A5C-42D2-8770-1382843B57C4}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{4E77F744-01BA-4E1C-8B53-2AD944682748}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{538E9AC0-5BB4-4712-9293-4F3170D7FFA3}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{53DBF21C-0579-4315-8CC8-C1FC9D58E379}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{55C37745-FA9D-42E3-B9D4-4455173A3FD7}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{5E6EFCD5-DC2E-4DC6-A312-01746067BE14}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{61715590-68B1-4D90-8BCA-807CA27E648D}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{73ED916C-6015-432E-A46D-B3C8A5FF21A5}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{74682748-A489-4AF7-88F7-B0C525A7763A}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{7CC6AA54-75CC-4A09-BA02-56A3B6990E33}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{856D5902-F700-451D-9573-9C169ADB248C}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{873B4508-2CFC-46E2-A5B9-B75F323B6018}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{8BCEF30A-A72B-477B-A47F-1708C0235741}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.02B84956FF0A8A5BF730FC78A654D846] [APT] [{91B8269A-1760-445E-8EA6-3EE1331A5CE4}] (.A.I.SOFT,INC..) -- C:\Users\Mom_Dad\Downloads\DCP-J315W-inst-A2-fr.exe
[MD5.00000000000000000000000000000000] [APT] [{9A54049F-2CE0-4BA5-AAF2-516579CA8A32}] (...) -- D:\Jeux\Limbo\limbo.exe (.not file.)
[MD5.7985D220E10D4CFEEDBC755F2762CB4E] [APT] [{9C8BD6B3-9DEA-4706-B505-0DAB900079C1}] (...) -- C:\ProgramData\Wizard101(FR)\Wizard101.exe
[MD5.00000000000000000000000000000000] [APT] [{A10E070E-0F4F-40A1-A258-6837F7CBBF34}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{ADCC6806-28CF-459C-9A74-3CA7865E7FE9}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{B88906BA-4869-4CC2-99FE-1395FEF771D2}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{C40E560D-D41C-49C6-B950-04761160BC5E}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CA727022-4A29-4D23-BE07-89C972E27640}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{CAFF8C75-23DE-43EB-8C32-24EF6425C6E3}] (...) -- F:\FPC\SETUP.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{D7A4E948-9F33-4167-9105-8E7F602B9053}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E58DF4CE-7839-4168-A234-B31FE59FC3B0}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{E890C78A-0EE5-447D-A374-7862D88CD1C0}] (...) -- D:\Jeux\limbo\unl-limb\Launcher.exe (.not file.)
[MD5.1027DF7F909776789D9D1C2C30410166] [APT] [{FD07EDD5-95EE-4670-B029-6506733E91F5}] (...) -- D:\Jeux\OOo_3.3.0_Win_x86_install-wJRE_fr.exe
[MD5.00000000000000000000000000000000] [APT] [{FD934270-5554-44EF-A069-7126E65A384C}] (...) -- D:\Jeux\limbo\unl-limb\limbo.exe (.not file.)
[MD5.4530F5804CB7CD386C6705705769E73C] [APT] [MixPadReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\MixPad\MixPad.exe
[MD5.7E6C671FC2A3250E817A68CFC8E4EBE4] [APT] [prismShakeIcon] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\Prism\Prism.exe
[MD5.766062CBE869015F977250E6AFDC94A8] [APT] [SwitchReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\Switch\Switch.exe
[MD5.17B304A398CB95E36D68C2A6121796B1] [APT] [WavePadReminder] (.NCH Software.) -- C:\Program Files (x86)\NCH Software\WavePad\WavePad.exe
~ Scan Scheduled Task in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\System32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Scan Active Setup in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\Drivers\aswrdr2.sys
O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx64.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.DT Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: ANNO 2070 - (.Ubisoft.) [HKLM] -- {B48E264C-C8CD-4617-B0BE-46E977BAD694}
O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM] -- AVG Secure Search
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Photoshop Elements 7
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- {5511C07D-A83C-45AD-92B6-42DF99729A3C}
O42 - Logiciel: Adobe Photoshop Elements 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
O42 - Logiciel: Adobe Reader 9.5.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Advertising Center - (.Nero AG.) [HKLM] -- {b2ec4a38-b545-4a00-8214-13fe0e915e6d}
O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM] -- GFWL_{4D530FA3-9B89-4186-98B7-F51000008100}
O42 - Logiciel: Age of Empires Online - (.Microsoft Studios.) [HKLM] -- {4D530FA3-9B89-4186-98B7-F51000008100}
O42 - Logiciel: Age of Mythology Gold - (.Microsoft.) [HKLM] -- Age of Mythology Expansion Pack 1.0
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {122ADF8C-DDA1-480C-9936-C88F2825B265}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}
O42 - Logiciel: Atlantis Evolution - (.Pas de propriétaire.) [HKLM] -- BFG-Atlantis Evolution
O42 - Logiciel: AviSynth 2.5 - (.Pas de propriétaire.) [HKLM] -- AviSynth
O42 - Logiciel: Big Fish Games: Game Manager - (.Pas de propriétaire.) [HKLM] -- BFGC
O42 - Logiciel: Brother MFL-Pro Suite DCP-J315W - (.Brother Industries, Ltd..) [HKLM] -- {FB83EAC4-E3F6-4666-B45B-44522F2344B6}
O42 - Logiciel: Chicken Invaders 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}
O42 - Logiciel: Chronicles of Mystery: L' arbre de vie - (.Pas de propriétaire.) [HKLM] -- BFG-Chronicles of Mystery - L' arbre de vie
O42 - Logiciel: Company of Heroes - (.THQ Inc..) [HKLM] -- {51D718D1-DA81-4FAD-919F-5C1CE3C33379}
O42 - Logiciel: DAEMON Tools Lite - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Lite
O42 - Logiciel: Dark Heritage: Les Gardiens de l'Espoir Edition Collector - (.Pas de propriétaire.) [HKLM] -- BFG-Dark Heritage - Les Gardiens de l'Espoir Edition Collector
O42 - Logiciel: Dawn of War - Soulstorm - (.THQ.) [HKLM] -- {20533183-D42D-4261-A125-956736FBEA8C}
O42 - Logiciel: Diablo III - (.Blizzard Entertainment.) [HKLM] -- Diablo III
O42 - Logiciel: Dictionnaire Auzou - (.Pas de propriétaire.) [HKLM] -- NSIS_auzou_dea
O42 - Logiciel: Dokan Library 0.6.0 - (.Pas de propriétaire.) [HKLM] -- DokanLibrary
O42 - Logiciel: Downloader - (.Pas de propriétaire.) [HKLM] -- Downloader
O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}
O42 - Logiciel: EVEREST Ultimate Edition v5.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: Earth 2160 - (.Zuxxez Entertainment AG.) [HKLM] -- Earth 2160
O42 - Logiciel: Farm Frenzy 2 - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}
O42 - Logiciel: First Class Flurry - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-115208410}
O42 - Logiciel: Forestia - (.Pas de propriétaire.) [HKLM] -- Forestia
O42 - Logiciel: Freelancer - (.Pas de propriétaire.) [HKLM] -- Freelancer 1.0
O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Granny In Paradise - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110551697}
O42 - Logiciel: Heroes of Hellas - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM] -- Identity Card
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3
O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31}
O42 - Logiciel: Internet Download Manager - (.Pas de propriétaire.) [HKLM] -- Internet Download Manager
O42 - Logiciel: Internet Explorer Toolbar 4.6 by SweetPacks - (.SweetIM Technologies Ltd..) [HKLM] -- {774C0434-9948-4DEE-A14E-69CDD316E36C}
O42 - Logiciel: Iron Brigade - (.Pas de propriétaire.) [HKLM] -- Steam App 115120
O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM] -- 5513-1208-7298-9440
O42 - Logiciel: JMicron JMB36X Driver - (.JMicron Technology Corp..) [HKLM] -- {3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}
O42 - Logiciel: Java 7 Update 7 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF}
O42 - Logiciel: Java(TM) 6 Update 22 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216022F0}
O42 - Logiciel: Java(TM) 6 Update 29 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216026FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5}
O42 - Logiciel: LEGO Universe - (.LEGO Software.) [HKLM] -- NetDevil_LEGO_Universe_is1
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- LogMeIn Hamachi
O42 - Logiciel: LogMeIn Hamachi - (.LogMeIn, Inc..) [HKLM] -- {B8ABD8C7-991E-4A70-B5A3-20C6FC680680}
O42 - Logiciel: Love Chronicles: La Rose et l'Epée Edition Collector - (.Pas de propriétaire.) [HKLM] -- BFG-Love Chronicles - La Rose et l'Epee Edition Collector
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.0.1400 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: MediaCoder 0.8.14 - (.Broad Intelligence.) [HKLM] -- MediaCoder
O42 - Logiciel: Merriam Websters Spell Jam - (.Oberon Media.) [HKLM] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}
O42 - Logiciel: Metaboli - (.Packard Bell.) [HKLM] -- Metaboli
O42 - Logiciel: Metaboli Player - (.Pas de propriétaire.) [HKLM] -- Metaboli Player
O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
O42 - Logiciel: Microsoft Games for Windows - LIVE Redistributable - (.Microsoft Corporation.) [HKLM] -- {832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}
O42 - Logiciel: Microsoft Games for Windows Marketplace - (.Microsoft Corporation.) [HKLM] -- {4CB0307C-565E-4441-86BE-0DF2E4FB828C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 3 (SP3) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_OMUI.fr-fr_{CF3C20A6-47B7-48DA-95C1-6FBB5
A voir également:
- Navigateur qui fait planter le pc
- Pc qui rame - Guide
- Test performance pc - Guide
- Reinitialiser pc - Guide
- Pc qui freeze - Guide
- Whatsapp pc - Télécharger - Messagerie
2 réponses
jmwurth
Messages postés
2933
Date d'inscription
dimanche 13 août 2006
Statut
Membre
Dernière intervention
23 juin 2013
854
17 sept. 2012 à 09:27
17 sept. 2012 à 09:27
Bonjour
Il semble qu'Internet Explorer soit toujours ouvert ainsi que Firefox
Il semble qu'Internet Explorer soit toujours ouvert ainsi que Firefox
Utilisateur anonyme
17 sept. 2012 à 09:50
17 sept. 2012 à 09:50
salut desinstalle java 6 update 22
====
Télécharge et enregistre ADWcleaner sur ton bureau :
ADWCleaner (Merci à Xplode)
Lance le,
(Pour vista et seven => clic droit "executer en tant qu'administrateur")
clique sur suppression et poste son rapport.
====
Télécharge et enregistre ADWcleaner sur ton bureau :
ADWCleaner (Merci à Xplode)
Lance le,
(Pour vista et seven => clic droit "executer en tant qu'administrateur")
clique sur suppression et poste son rapport.