Sujet Précédent Sujet Suivant

Pc lent certainement infecté, aidez moi merci

Résolu/Fermé
eloelo1 Messages postés 14 Date d'inscription mercredi 12 novembre 2014 Statut Membre Dernière intervention 13 novembre 2014 - 12 nov. 2014 à 19:30
 Utilisateur anonyme - 13 nov. 2014 à 11:57
Depuis quelque temps mon pc devient lent et affiche pleins de pub, il change mon moteur de recherche
Ce qui complique énormément MES recherches si vous avez des idées ...

Merci beaucoup
A voir également:

24 réponses

Précédent
  • 1
  • 2
Réponse 21 / 24
eloelo1 Messages postés 14 Date d'inscription mercredi 12 novembre 2014 Statut Membre Dernière intervention 13 novembre 2014
13 nov. 2014 à 11:52
Rapport de ZHPDiag v2014.11.10.162 - Nicolas Coolman (10/11/2014)
~ Lancé par PC (13/11/2014 11:11:08)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 30.0 (Defaut)
GCIE: Google Chrome v38.0.2125.111

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Business, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Windows Operating System - Vista, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : 72BTQ
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2021
Malwarebytes Anti-Malware version 2.0.3.1025

---\\ Logiciels d'optimisation du système
CCleaner v4.19

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1991 MB (21% free)
System Restore: Activé (Enable)
System drive C: has 119 GB (63%) free of 186 GB

---\\ Mode de connexion au système
~ Computer Name: PC-DE-PC
~ User Name: PC
~ All Users Names: PC, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\PC\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\PC\AppData\Roaming\
~ %Desktop% : C:\Users\PC\Desktop\
~ %Favorites% : C:\Users\PC\Favorites\
~ %LocalAppData% : C:\Users\PC\AppData\Local\
~ %StartMenu% : C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 119 Go of 186 Go)
D: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowHelp: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyDocs: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyGames: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyMusic: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyPics: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowPrinters: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSetProgramAccessAndDefaults: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowControlPanel: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowNetConn: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 42 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 14:19:56.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:24:09.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.B6260FAA9ACF8AC13312C739B23BD0BE] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.27/10/2014 - 19:59:06.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 14:20:12.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.F5272A105F59A7B3B345D9D6D87DA7AD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:53:22.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 14:19:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:24:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 14:19:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 14:19:27.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:44.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:51.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 14:20:15.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:25:21.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.943B18305EAE3935598A9B4A3D560B4C] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.11/04/2009 - 14:19:26.) -- C:\Windows\system32\Drivers\rdpdr.sys [248320]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 14:20:15.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 14:20:12.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 06s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 1/81
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/19
~ Mes Documents (My Documents) : 1/145
~ Mon Bureau (My Desktop) : 1/1023
~ Menu demarrer (Programs) : 1/27
~ Hidden Files: Scanned in 00mn 13s



---\\ Processus lancés
[MD5.F89773DFA9B8C95A3AC2AF1E7D99E483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.2480]
[MD5.5183322D039A66569D27FD00987390E6] - (.Lenovo Group Limited - On screen display message generator for Thi.) -- C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe [69568] [PID.3932]
[MD5.5E350C463EE596321C79CF23ADA56E7A] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [267800] [PID.3416]
[MD5.C2AB0CBB7945F7A112CD1F5434155013] - (.Lenovo Group Limited - On screen display drawer.) -- C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe [331256] [PID.2064]
[MD5.B88CAE2C2D5EE79FE6A061A7F2111791] - (.Lenovo Group Limited - ThinkPad UltraZoom.) -- C:\Program Files\Lenovo\Zoom\TpScrex.exe [138680] [PID.1620]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.3180]
[MD5.13FF0C420AECEB92FB0AD83A9A11A977] - (.Lenovo Group Ltd. - ThinkPad EasyEject Support Application.) -- C:\Program Files\ThinkPad\Utilities\EZEJMNAP.exe [256576] [PID.4068]
[MD5.350F7DF10048FCF058F1501CBC5090A4] - (.Lenovo - ThinkVantage Access Connections AC Tray Mo.) -- C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [433248] [PID.3740]
[MD5.9B64F9B85535E6BD2C552BF539E7B20A] - (.Lenovo - ThinkVantage Access Connections Wireless LA.) -- C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe [195680] [PID.800]
[MD5.C5F3092232E61C003D204F02A92BD70B] - (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe [338216] [PID.3900]
[MD5.2C1B1E9174D94E9F6EE3CF373ABAB7DD] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [137752] [PID.1128]
[MD5.87D78CF6365BDDACBE9D34B60FE0E23B] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [171032] [PID.1920]
[MD5.89D3DE5E2C77DCD99C56F0E46310AEA0] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [172568] [PID.1204]
[MD5.26B558B2D31C7425B455B00E562EAD93] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\avastui.exe [4085896] [PID.4152]
[MD5.8AE3273EC161CC98573F0E095CF0C790] - (.Sonix - CameraMonitor Application.) -- C:\Windows\vsnp2uvc.exe [569344] [PID.4256]
[MD5.291ABF2CA4DFECB1C1F71623E072C3EE] - (.Pas de propriétaire - tsnp2uvc Microsoft.) -- C:\Windows\tsnp2uvc.exe [237568] [PID.4340]
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe [49152] [PID.4440]
[MD5.9D4A0ECBF734E2EECDD5B473A2D705FE] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe [20922016] [PID.5012]
[MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [210520] [PID.5460]
[MD5.EB8E27A3C1EA82711BC4037D53EE5122] - (.Dropbox, Inc. - Dropbox.) -- C:\Users\PC\AppData\Roaming\Dropbox\bin\Dropbox.exe [36414624] [PID.4164]
[MD5.D87E0BF2E8BB7E5C49E79F32F8FEAFC4] - (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe [4826904] [PID.4788]
[MD5.66A4A7C7802E0968E07647999FFC87E2] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [854344] [PID.4356]
[MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [271960] [PID.4880]
[MD5.158A3FE93DC82C0EACBFA9D65383850A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8125440] [PID.3056]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.5208]
[MD5.2895C7C082446BA833CAD0ADDE06EAED] - (.Lenovo. - ThinkPad Power Management Service.) -- C:\Windows\system32\ibmpmsvc.exe [39248] [PID.996]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1432]
[MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\AvastSvc.exe [50344] [PID.1796]
[MD5.23C3A0680042C0D1DE1F360F8B62BC57] - (.Microsoft Corporation - Infrastructure d'extensibilité pour les ser.) -- C:\Windows\system32\WLANExt.exe [74240] [PID.1808]
[MD5.033DD7279A4082EFF7152EDC9DF8FEBC] - (.Lenovo - ThinkVantage Access Connections Profile Man.) -- C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe [134240] [PID.716]
[MD5.6D8A2EE4244630B290A837E79C0F37A1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.2268]
[MD5.09D4503CBB6ADB3A54E7C7A75090B728] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [968504] [PID.2468]
[MD5.6987DC1DD7A7159752DFB1F6AABAE062] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [481552] [PID.2628]
[MD5.E31CA4DB55E4539A8B1135E8B0F39CD3] - (.SFR - SFR.DashBoard.Service.) -- C:\Program Files\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe [21424] [PID.2660]
[MD5.5B62F45C87CC0FB176C5358EEA6CFB4C] - (.Lenovo Group Limited - On screen display Fn+Fx handler.) -- C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [125504] [PID.3048]
[MD5.E727C5382CE1CEA6F8B2544CC0141702] - (.Lenovo - ThinkVantage Access Connections Main Servic.) -- C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe [273504] [PID.3232]
[MD5.9D6A019DEA917F305AF23209FEDD5F16] - (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe [870672] [PID.3288]
[MD5.AF2B31F71D685E8C5EAAA680B57D3773] - (.Lenovo Group Limited - ThinkPad Message Client Loader.) -- C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [116216] [PID.3548]
[MD5.D868AF31C25516E941905E2B6A0086AC] - (.Lenovo - ThinkVantage Access Connections Service GUI.) -- C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe [367712] [PID.4568]
[MD5.97D9D6A04E3AD9B6C626B9931DB78DBA] - (.Microsoft Corporation - Programme d'installation de modules Windows.) -- C:\Windows\servicing\TrustedInstaller.exe [39424] [PID.4812]
~ Processes Running: Scanned in 00mn 31s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Scanned in 00mn 27s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7etoh7aw.default\prefs.js
M3 - MFPP: Plugins - [PC] -- C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7etoh7aw.default\searchplugins\bing-avast.xml
M3 - MFPP: Plugins - [PC] -- C:\Users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\7etoh7aw.default\searchplugins\yahoo-avast.xml
M0 - MFSP: prefs.js [PC - 7etoh7aw.default] https://www.google.com/?gws_rd=ssl
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.3] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.5] - (.VideoLAN - VLC media player Web Plugin 2.1.3.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\PC\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
~ Firefox Browser: 9 Scanned in 00mn 01s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Skype Limited - Facebook Video Calling Plugin.) (No version) -- (.not file.)
~ IE Browser: 9 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (20)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\aswWebRepIE.dll
O2 - BHO: (no name) - {b608cc98-54de-4775-96c9-097de398500c} Clé orpheline
~ BHO: 4 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [SmartAudio] . (.Pas de propriétaire - SAIICpl MFC Application.) -- C:\Program Files\CONEXANT\SAII\SAIICpl.exe
O4 - HKLM\..\Run: [EZEJMNAP] . (.Lenovo Group Ltd. - ThinkPad EasyEject Support Application.) -- C:\Program Files\ThinkPad\Utilities\EZEJMNAP.exe
O4 - HKLM\..\Run: [ACTray] . (.Lenovo - ThinkVantage Access Connections AC Tray Mo.) -- C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWlIcon] . (.Lenovo - ThinkVantage Access Connections Wireless LA.) -- C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe
O4 - HKLM\..\Run: [TpShocks] . (.Lenovo. - ThinkVantage Active Protection System.) -- C:\Windows\System32\TpShocks.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\AvastUI.exe
O4 - HKLM\..\Run: [snp2uvc] . (.Sonix - CameraMonitor Application.) -- C:\Windows\vsnp2uvc.exe
O4 - HKLM\..\Run: [tsnp2uvc] . (.Pas de propriétaire - tsnp2uvc Microsoft.) -- C:\Windows\tsnp2uvc.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\PC\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [pricefountainw.exe] C:\Users\PC\AppData\Local\PriceFountain\pricefountainw.exe (.not file.)
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-21-660369743-2379004909-110754686-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-660369743-2379004909-110754686-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\PC\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-660369743-2379004909-110754686-1000\..\Run: [pricefountainw.exe] C:\Users\PC\AppData\Local\PriceFountain\pricefountainw.exe (.not file.)
O4 - HKUS\S-1-5-21-660369743-2379004909-110754686-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe =>.Piriform Ltd
~ Application: Scanned in 00mn 03s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\OFFICE11\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{B26D4C26-B13B-4AB0-B9E9-51DD4B622375}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E4AF8C40-0F44-45EE-9696-B5CFF681BA9D}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B26D4C26-B13B-4AB0-B9E9-51DD4B622375}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E4AF8C40-0F44-45EE-9696-B5CFF681BA9D}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E4AF8C40-0F44-45EE-9696-B5CFF681BA9D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{E4AF8C40-0F44-45EE-9696-B5CFF681BA9D}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) . (.Lenovo - ThinkVantage Access Connections Profile Man.) - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) . (.Lenovo - ThinkVantage Access Connections Main Servic.) - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\AvastSvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Lenovo PM Service (IBMPMSVC) . (.Lenovo. - ThinkPad Power Management Service.) - C:\Windows\System32\ibmpmsvc.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) . (.Lenovo Group Limited - Microphone Mute Controll Service for ThinkP.) - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: (SFR.DashBoard.Service) . (.SFR - SFR.DashBoard.Service.) - C:\Program Files\SFR\Gestionnaire de Connexion\SFR.DashBoard.Service.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Lenovo Hotkey Client Loader (TPHKLOAD) . (.Lenovo Group Limited - ThinkPad Message Client Loader.) - C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
O23 - Service: Incrustation (TPHKSVC) . (.Lenovo Group Limited - On screen display Fn+Fx handler.) - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
~ Services: 14 Scanned in 00mn 21s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\AvastEmUpdate.exe [808448]
[MD5.D87E0BF2E8BB7E5C49E79F32F8FEAFC4] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4826904]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core] (.Facebook Inc..) -- C:\Users\PC\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA] (.Facebook Inc..) -- C:\Users\PC\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core.job [894]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core [894]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA - (.Facebook Inc..) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA.job [916]
O39 - APT: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA - (.Facebook Inc..) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA [916]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1052]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1056]
~ Scheduled Task: 13 Scanned in 00mn 23s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe
~ Active Setup: 12 Scanned in 00mn 02s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (AswRdr) . (.AVAST Software - avast! TDI Redirect Driver.) - C:\Windows\system32\drivers\aswRdr.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (aswTdi) . (.AVAST Software - avast! TDI Filter Driver.) - C:\Windows\system32\drivers\aswTdi.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (lenovo.smi) . (.Lenovo Group Limited - SMI Driver for Lenovo system.) - C:\Windows\System32\DRIVERS\smiif32.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
~ Drivers: 92 Scanned in 00mn 05s



---\\ Logiciels installés (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Conexant 20561 SmartAudio HD - (.Conexant.) [HKLM] -- CNXT_AUDIO_HDA
O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKCU] -- Dropbox
O42 - Logiciel: Facebook Video Calling 3.1.0.521 - (.Skype Limited.) [HKLM] -- {2091F234-EB58-4B80-8C96-8EB78C808CF7}
O42 - Logiciel: Funny Photo Maker 2.4.2 - (.Funny-Photo-Maker.com.) [HKLM] -- Funny Photo Maker_is1
O42 - Logiciel: Gestionnaire de Connexion SFR 3.2 - (.SFR.) [HKLM] -- {FC48747D-095F-4CF6-B54E-37D4F4738A15}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: HP Customer Participation Program 8.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Imaging Device Functions 8.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP OCR Software 8.0 - (.HP.) [HKLM] -- HPOCR
O42 - Logiciel: HP Officejet Pro All-In-One Series - (.HP.) [HKLM] -- {868EA922-5675-4E91-BDA6-BBD0F923C5EF} =>.Hewlett-Packard Co
O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} =>.Hewlett-Packard Co
O42 - Logiciel: HP Solution Center 8.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {8C6027FD-53DC-446D-BB75-CACD7028A134}
O42 - Logiciel: HPSSupply - (.Nom de votre société.) [HKLM] -- {EB75DE50-5754-4F6F-875D-126EDF8E4CB3}
O42 - Logiciel: Incrustation - (...) [HKLM] -- OnScreenDisplay
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Network Connections Drivers - (.Intel.) [HKLM] -- PROSet
O42 - Logiciel: Lenovo Patch Utility - (.Lenovo Group Limited.) [HKLM] -- {AD32F5E9-6BDD-480A-8B7B-95571D04691C}
O42 - Logiciel: Lenovo Power Management Driver - (...) [HKLM] -- Power Management Driver
O42 - Logiciel: Lenovo System Interface Driver - (...) [HKLM] -- LENOVO.SMIIF
O42 - Logiciel: Logiciel Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {C8005A7B-9638-41DD-B83B-AF277754E211}
O42 - Logiciel: MPM - (.Hewlett-Packard.) [HKLM] -- {8F968232-15C6-4872-84C2-9FCDAA1AEAB6}
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.3.1025 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Mozilla Firefox 30.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 30.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: PhotoFiltre 7 - (...) [HKCU] -- PhotoFiltre 7
O42 - Logiciel: Skype(TM) 6.14 - (.Skype Technologies S.A..) [HKLM] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Système de protection active ThinkVantage - (.Lenovo.) [HKLM] -- {46A84694-59EC-48F0-964C-7E76E9F8A2ED}
O42 - Logiciel: ThinkPad FullScreen Magnifier - (...) [HKLM] -- ThinkPad FullScreen Magnifier
O42 - Logiciel: ThinkVantage Access Connections - (.Lenovo.) [HKLM] -- {4D828D53-4443-45C6-86DE-23B1562107FE}
O42 - Logiciel: USB Video Device - (.Sonix.) [HKLM] -- {399C37FB-08AF-493B-BFED-20FBD85EDF7F}
O42 - Logiciel: Update for PriceFountain - (.Update for PriceFountain.) [HKCU] -- Price Fountain
O42 - Logiciel: Utilitaire ThinkPad EasyEject - (...) [HKLM] -- {1297C681-92D7-40EF-93BF-03F66EC5105C}
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: Woonoz SKY 3.4c - (.Woonoz SAs.) [HKLM] -- Woonoz SKY 3.4c
O42 - Logiciel: avast! Free Antivirus v9.0.2021 - (.AVAST Software.) [HKLM] -- avast
~ Logic: 38 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\AnvSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Avast Software]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Conexant]
[HKCU\Software\Facebook]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IBM]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lenovo]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OneKit]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PrcFountain]
[HKCU\Software\Reg]
[HKCU\Software\SFR]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\ej-technologies]
[HKLM\Software\AVAST Software]
[HKLM\Software\AdwCleaner]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CnxtCoinst]
[HKLM\Software\Conexant]
[HKLM\Software\Dropbox]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IBM]
[HKLM\Software\ICE]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Lenovo]
[HKLM\Software\Macserlen]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Preclick]
[HKLM\Software\Reg]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SFR]
[HKLM\Software\Skype]
[HKLM\Software\Sonix]
[HKLM\Software\UIU]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WOW6432Node]
[HKLM\Software\ej-technologies]
[HKLM\Software\mozilla.org]
~ Key Software: 150 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 26/04/2014 - 07:56:15 - [] ----D C:\Program Files\AnvSoft
O43 - CFD: 11/11/2014 - 21:32:28 - [] ----D C:\Program Files\AVAST Software
O43 - CFD: 02/11/2014 - 16:29:55 - [] ----D C:\Program Files\CCleaner
O43 - CFD: 20/08/2013 - 16:16:55 - [] ----D C:\Program Files\Cisco
O43 - CFD: 01/11/2014 - 13:55:23 - [] ----D C:\Program Files\Common Files
O43 - CFD: 20/08/2013 - 16:07:36 - [] ----D C:\Program Files\CONEXANT
O43 - CFD: 26/04/2014 - 13:23:05 - [] ----D C:\Program Files\Dropbox
O43 - CFD: 20/08/2013 - 14:33:16 - [] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 25/04/2014 - 19:15:25 - [] ----D C:\Program Files\Google
O43 - CFD: 01/11/2014 - 13:54:01 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 01/11/2014 - 14:02:17 - [] ----D C:\Program Files\HP
O43 - CFD: 26/04/2014 - 18:09:34 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 25/04/2014 - 19:53:06 - [] ----D C:\Program Files\Intel
O43 - CFD: 12/11/2014 - 18:14:52 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 20/08/2013 - 16:18:33 - [] ----D C:\Program Files\Lenovo
O43 - CFD: 12/11/2014 - 22:31:06 - [] ----D C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 26/04/2014 - 09:30:41 - [] ----D C:\Program Files\Microsoft Office
O43 - CFD: 26/04/2014 - 10:09:28 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 26/04/2014 - 12:46:09 - [] ----D C:\Program Files\Movie Maker
O43 - CFD: 21/07/2014 - 10:40:26 - [] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 13/07/2014 - 18:34:52 - [] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 02/11/2006 - 13:37:40 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 02/11/2014 - 16:39:33 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 26/04/2014 - 09:12:30 - [] ----D C:\Program Files\PhotoFiltre 7
O43 - CFD: 02/11/2006 - 13:37:40 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 07/07/2014 - 20:50:25 - [] ----D C:\Program Files\SFR
O43 - CFD: 04/05/2014 - 14:40:34 - [] R---D C:\Program Files\Skype
O43 - CFD: 20/08/2013 - 16:44:42 - [] ----D C:\Program Files\ThinkPad
O43 - CFD: 02/11/2006 - 14:01:28 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 25/04/2014 - 19:36:00 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 11/04/2009 - 14:24:49 - [] ----D C:\Program Files\Windows Calendar
O43 - CFD: 11/04/2009 - 14:24:48 - [] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 11/04/2009 - 14:24:45 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 09/07/2014 - 23:52:23 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 26/04/2014 - 12:46:14 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 26/04/2014 - 12:46:14 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 20/08/2013 - 14:33:16 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 11/04/2009 - 14:24:47 - [] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 26/04/2014 - 08:00:04 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 11/04/2009 - 14:24:49 - [] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 10/11/2014 - 17:34:24 - [] ----D C:\Program Files\Woonoz
O43 - CFD: 12/11/2014 - 20:29:00 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 26/04/2014 - 09:30:39 - [] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 01/11/2014 - 13:54:02 - [] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 01/11/2014 - 14:00:56 - [] ----D C:\Program Files\Common Files\HP
O43 - CFD: 20/08/2013 - 16:12:30 - [] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 20/08/2013 - 16:16:53 - [] ----D C:\Program Files\Common Files\Intel
O43 - CFD: 20/08/2013 - 16:18:35 - [] ----D C:\Program Files\Common Files\Lenovo
O43 - CFD: 26/04/2014 - 09:31:22 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 02/11/2006 - 12:18:33 - [] ----D C:\Program Files\Common Files\Services
O43 - CFD: 04/05/2014 - 14:40:34 - [] ----D C:\Program Files\Common Files\Skype
O43 - CFD: 26/04/2014 - 18:09:38 - [] ----D C:\Program Files\Common Files\SNP2UVC
O43 - CFD: 02/11/2006 - 12:18:33 - [] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 26/04/2014 - 12:45:57 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/04/2014 - 12:59:42 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 12/11/2014 - 18:18:49 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 20/08/2013 - 14:33:15 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 23/09/2014 - 18:10:54 - [] ----D C:\ProgramData\Conexant
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 20/08/2013 - 14:33:15 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 01/11/2014 - 13:44:29 - [] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 01/11/2014 - 14:11:32 - [] ----D C:\ProgramData\HP
O43 - CFD: 01/11/2014 - 14:02:17 - [0] ----D C:\ProgramData\HPSSUPPLY
O43 - CFD: 20/08/2013 - 16:16:52 - [] ----D C:\ProgramData\Intel
O43 - CFD: 12/11/2014 - 22:31:02 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 20/08/2013 - 14:33:15 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 26/04/2014 - 10:09:25 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/08/2013 - 14:33:16 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 13/07/2014 - 18:34:50 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 04/05/2014 - 14:40:30 - [] ----D C:\ProgramData\Skype
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 02/11/2006 - 14:02:24 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 26/04/2014 - 07:56:29 - [] ----D C:\Users\PC\AppData\Roaming\AnvSoft
O43 - CFD: 26/04/2014 - 13:07:48 - [] ----D C:\Users\PC\AppData\Roaming\AVAST Software
O43 - CFD: 28/10/2014 - 09:28:43 - [0] ----D C:\Users\PC\AppData\Roaming\BRT
O43 - CFD: 13/11/2014 - 11:10:56 - [] ----D C:\Users\PC\AppData\Roaming\Dropbox
O43 - CFD: 01/11/2014 - 14:09:53 - [] ----D C:\Users\PC\AppData\Roaming\HP
O43 - CFD: 20/08/2013 - 14:35:10 - [] ----D C:\Users\PC\AppData\Roaming\Identities
O43 - CFD: 26/04/2014 - 18:09:10 - [] ----D C:\Users\PC\AppData\Roaming\InstallShield
O43 - CFD: 20/08/2013 - 16:17:41 - [] ----D C:\Users\PC\AppData\Roaming\Intel
O43 - CFD: 15/08/2014 - 20:25:56 - [] -S--D C:\Users\PC\AppData\Roaming\Microsoft
O43 - CFD: 11/11/2014 - 21:08:22 - [] ----D C:\Users\PC\AppData\Roaming\Mozilla
O43 - CFD: 26/04/2014 - 09:12:41 - [] ----D C:\Users\PC\AppData\Roaming\PhotoFiltre 7
O43 - CFD: 13/11/2014 - 11:09:25 - [] ----D C:\Users\PC\AppData\Roaming\Skype
O43 - CFD: 18/09/2014 - 05:31:43 - [] ----D C:\Users\PC\AppData\Roaming\vlc
O43 - CFD: 13/11/2014 - 11:13:58 - [] ----D C:\Users\PC\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 20/08/2013 - 14:35:06 - [] -SH-D C:\Users\PC\AppData\Local\Application Data
O43 - CFD: 23/09/2014 - 18:10:51 - [] ----D C:\Users\PC\AppData\Local\Conexant
O43 - CFD: 14/05/2014 - 20:49:17 - [] ----D C:\Users\PC\AppData\Local\Facebook
O43 - CFD: 12/11/2014 - 08:47:59 - [] ----D C:\Users\PC\AppData\Local\Google
O43 - CFD: 20/08/2013 - 14:35:06 - [] -SH-D C:\Users\PC\AppData\Local\Historique
O43 - CFD: 04/05/2014 - 14:40:52 - [] ----D C:\Users\PC\AppData\Local\Microsoft
O43 - CFD: 13/07/2014 - 18:34:59 - [] ----D C:\Users\PC\AppData\Local\Mozilla
O43 - CFD: 07/07/2014 - 20:53:05 - [] ----D C:\Users\PC\AppData\Local\SFR
O43 - CFD: 04/05/2014 - 14:40:58 - [] ----D C:\Users\PC\AppData\Local\Skype
O43 - CFD: 13/11/2014 - 11:12:45 - [] ----D C:\Users\PC\AppData\Local\Temp
O43 - CFD: 20/08/2013 - 14:35:06 - [] -SH-D C:\Users\PC\AppData\Local\Temporary Internet Files
O43 - CFD: 28/04/2014 - 19:09:14 - [] ----D C:\Users\PC\AppData\Local\VirtualStore
O43 - CFD: 21/01/2008 - 03:43:27 - [] R---D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 20/08/2013 - 14:35:18 - [] R---D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 19/09/2014 - 03:36:26 - [] ----D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
O43 - CFD: 21/01/2008 - 03:43:27 - [] R---D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/04/2014 - 09:12:30 - [0] ----D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre 7
O43 - CFD: 12/11/2014 - 19:44:49 - [] R---D C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Program Folder: 107 Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F00AA02110EDBCC52A3303E0EDC0147C] - 01/11/2014 - 13:37:43 ---A- . (.Hewlett-Packard - Hewlett-Packard WIA minidriver..) -- C:\Windows\System32\hpwwiax2.dll [675840]
O44 - LFC:[MD5.C8F4FFFAC6D0890F914A287749181316] - 01/11/2014 - 13:37:43 ---A- . (.Hewlett-Packard - Preload Driver CoInstaller.) -- C:\Windows\System32\hppldcoi.dll [364544]
O44 - LFC:[MD5.C49380516777F5802205FFEAE505F843] - 01/11/2014 - 13:37:43 ---A- . (.Hewlett-Packard Co. - HP AiO Scan Driver - hpwtiop2.) -- C:\Windows\System32\hpwtiop2.dll [892928]
O44 - LFC:[MD5.AB8EC24792CCEEB92E2D372FC98F159D] - 01/11/2014 - 13:37:43 ---A- . (.Hewlett-Packard Co. - HP Scan VendorSetup/Co-Installer.) -- C:\Windows\System32\hpovst11.dll [294912]
O44 - LFC:[MD5.D199B1ADFFB14070E8C4DA9E879EDBEE] - 01/11/2014 - 13:37:43 ---A- . (.Microsoft Corporation - Driver Install Frameworks for API library m.) -- C:\Windows\System32\difxapi.dll [309760]
O44 - LFC:[MD5.195A250167FBA93B3AEAC87227AF61EF] - 01/11/2014 - 13:40:24 ---A- . (.Hewlett-Packard Company - LanguageMonitor.) -- C:\Windows\System32\hpz3l4x6.dll [118272]
O44 - LFC:[MD5.1DCEDC5E0C2B39F99BA9A7F2CF39BF30] - 01/11/2014 - 13:40:28 ---A- . (.Hewlett-Packard - HP Installer Coinstaller.) -- C:\Windows\System32\hpzids01.dll [258048]
O44 - LFC:[MD5.FF3C7FEFD1E40D90C6C9EB653693ACBB] - 01/11/2014 - 14:06:07 ---A- . (...) -- C:\Windows\hpwins05.dat [167256]
O44 - LFC:[MD5.4CF044C2E3A7CF2D3ED3F884B3F8FD06] - 05/11/2014 - 23:17:13 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1613512]
O44 - LFC:[MD5.AE5213480B39C7F06EAB82DC19DDC032] - 05/11/2014 - 23:17:13 ---A- . (...) -- C:\Windows\System32\perfc009.dat [119278]
O44 - LFC:[MD5.A11179338C9C21792F5FF4CC94C00466] - 05/11/2014 - 23:17:14 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [145518]
O44 - LFC:[MD5.6259EA0C03E85A5BC046D622C65A9826] - 05/11/2014 - 23:17:14 ---A- . (...) -- C:\Windows\System32\perfh009.dat [633712]
O44 - LFC:[MD5.968350F0081E3DB57555D5ACD3407B24] - 05/11/2014 - 23:17:14 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [721688]
O44 - LFC:[MD5.997FEB9CFC39F9909B1FDA0A708EE6B3] - 11/11/2014 - 14:52:33 ---A- . (...) -- C:\Windows\win.ini [669]
O44 - LFC:[MD5.5BDCC7129C2F0A25F8A8FF6A3BDD9896] - 12/11/2014 - 12:22:01 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll [12366848]
O44 - LFC:[MD5.0484379BFC58E440EF432D2C80CF0912] - 12/11/2014 - 12:22:02 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript9.dll [1810944]
O44 - LFC:[MD5.9F702DD4CE7AC7C5FD3D8E10D012AC06] - 12/11/2014 - 12:22:03 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [73216]
O44 - LFC:[MD5.3A98C11FD14209D9D3A0B4E2943B302C] - 12/11/2014 - 12:22:08 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [9739776]
O44 - LFC:[MD5.B6260FAA9ACF8AC13312C739B23BD0BE] - 12/11/2014 - 12:22:09 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1129472]
O44 - LFC:[MD5.5C4AE6F46A4307CC5885FF000EEF3A5D] - 12/11/2014 - 12:22:09 ---A- . (.Microsoft Corporation - Internet Shortcut Shell Extension DLL.) -- C:\Windows\System32\url.dll [231936]
O44 - LFC:[MD5.4AF7834C2D41512749BE5FB46CF6EF37] - 12/11/2014 - 12:22:09 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2382848]
O44 - LFC:[MD5.AB9015D5B288898E7298BE0DC93BFF0E] - 12/11/2014 - 12:22:09 ---A- . (.Microsoft Corporation - Moteur de l'interface utilisateur d'Interne.) -- C:\Windows\System32\ieui.dll [176640]
O44 - LFC:[MD5.C94AEBE5CCA3F390E7CBC64D2FF30CDF] - 12/11/2014 - 12:22:09 ---A- . (.Microsoft Corporation - Outil d'installation sans assistance d'IE 7.) -- C:\Windows\System32\ieUnatt.exe [142848]
O44 - LFC:[MD5.D07699ACF5301E45006AFD7566769E1B] - 12/11/2014 - 12:22:10 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [607744]
O44 - LFC:[MD5.08E805C724637412C73A57E50212DBEC] - 12/11/2014 - 12:22:10 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [1427968]
O44 - LFC:[MD5.BE27559260267DD7431F9E01F0BF87B6] - 12/11/2014 - 12:22:10 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [1802752]
O44 - LFC:[MD5.27FA9CA22666E0AFB03F4433A4CEA5B7] - 12/11/2014 - 12:22:11 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1139712]
O44 - LFC:[MD5.DE0269B69861CD68EC8D29AD4A01894E] - 12/11/2014 - 12:22:11 ---A- . (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) -- C:\Windows\System32\mshta.exe [11776]
O44 - LFC:[MD5.556F78D100D031073A7A01992B74E98E] - 12/11/2014 - 12:22:11 ---A- . (.Microsoft Corporation - Microsoft (R) JScript.) -- C:\Windows\System32\jscript.dll [717824]
O44 - LFC:[MD5.ECED64B195BF217D5CFD65698BC9727D] - 12/11/2014 - 12:22:12 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [65536]
O44 - LFC:[MD5.F832CFAFA6015E21B33A583C7B2CA19A] - 12/11/2014 - 12:22:12 ---A- . (.Microsoft Corporation - Microsoft Feeds Synchronization.) -- C:\Windows\System32\msfeedssync.exe [10752]
O44 - LFC:[MD5.565188FD523603C94FD7619E14FB7E32] - 12/11/2014 - 12:22:12 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [421376]
O44 - LFC:[MD5.2A60B15FFD6EEDFBA73728593171AA19] - 12/11/2014 - 12:22:12 ---A- . (.Microsoft Corporation - Synchronisation en arrière-plan des flux Mi.) -- C:\Windows\System32\msfeedsbs.dll [41472]
O44 - LFC:[MD5.2833F623494FC1EFC0EAC4401CBBF2F2] - 12/11/2014 - 17:07:08 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [2054656]
O44 - LFC:[MD5.AA358EDD2C78B233CCB9A1FF600EB653] - 12/11/2014 - 17:07:37 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\mrt.exe [100445232]
O44 - LFC:[MD5.2908C2D90B78FDC24326B7854079E44E] - 12/11/2014 - 17:11:53 ---A- . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\oleaut32.dll [564224]
O44 - LFC:[MD5.BE377621E2D2B483F8EF447079E55585] - 12/11/2014 - 17:12:10 ---A- . (.Microsoft Corporation - Audio Engine.) -- C:\Windows\System32\AudioEng.dll [396800]
O44 - LFC:[MD5.56B73070DB745E192307EB7AB6C55CD5] - 12/11/2014 - 17:12:10 ---A- . (.Microsoft Corporation - Audio Ks Endpoint.) -- C:\Windows\System32\AUDIOKSE.dll [274432]
O44 - LFC:[MD5.A0344CD5E3F552340AB226E864E1710B] - 12/11/2014 - 17:12:10 ---A- . (.Microsoft Corporation - Media Foundation Crash Dump Encryption DLL.) -- C:\Windows\System32\EncDump.dll [170496]
O44 - LFC:[MD5.8E98A99187FF17FC1D48E6FAFFD870BE] - 12/11/2014 - 17:12:11 ---A- . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [316928]
O44 - LFC:[MD5.FD7A26BF790751B527E632BD9346DDFD] - 12/11/2014 - 17:13:25 ---A- . (.Microsoft Corporation - Microsoft IME.) -- C:\Windows\System32\IMJP10K.DLL [729600]
O44 - LFC:[MD5.BC4C024BDC8B676CC58BCE1D5BA7BC04] - 12/11/2014 - 17:13:47 ---A- . (.Microsoft Corporation - Gestionnaire de liaisons d'objets2.) -- C:\Windows\System32\packager.dll [67072]
O44 - LFC:[MD5.C0D56D9E570D8C294D1D9B2B32D4C857] - 12/11/2014 - 17:14:08 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [278528]
O44 - LFC:[MD5.37A4DF3BCA563FB7537B881AE91BA9C4] - 12/11/2014 - 17:14:44 ---A- . (.Microsoft Corporation - MSXML 3.0 SP10.) -- C:\Windows\System32\msxml3.dll [1249280]
O44 - LFC:[MD5.06A9049BA8B9F20D755CF03FD12E8AFD] - 12/11/2014 - 17:14:44 ---A- . (.Microsoft Corporation - XML Resources.) -- C:\Windows\System32\msxml3r.dll [2048]
O44 - LFC:[MD5.0C96812AAEDA38C89DC6C3F0AE7B6930] - 12/11/2014 - 17:15:05 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1259008]
O44 - LFC:[MD5.DBD84E59D631569EC3E756EF144E8431] - 12/11/2014 - 17:15:06 ---A- . (.Microsoft Corporation - Gestionnaire des connexions distantes Termi.) -- C:\Windows\System32\termsrv.dll [449536]
O44 - LFC:[MD5.15F315B53C69930BF907D9A0FFCB6206] - 12/11/2014 - 17:15:09 ---A- . (.Microsoft Corporation - DLL du schéma d'audit de sécurité.) -- C:\Windows\System32\adtschema.dll [619520]
O44 - LFC:[MD5.51992CC4DF2DB150950C6CB505556B9A] - 12/11/2014 - 17:15:11 ---A- . (.Microsoft Corporation - DLL des
0
Réponse 22 / 24
Utilisateur anonyme
13 nov. 2014 à 11:54
Re

ce n'est pas ce qui est demandé !!
0
Réponse 23 / 24
eloelo1 Messages postés 14 Date d'inscription mercredi 12 novembre 2014 Statut Membre Dernière intervention 13 novembre 2014
13 nov. 2014 à 11:55
Rapport de ZHPFix 2014.10.24.12 par Nicolas Coolman, Update du 24/10/2014
Fichier d'export Registre :
Run by PC at 13/11/2014 11:54:29
High Elevated Privileges : OK
Windows Vista Business Edition, 32-bit Service Pack 2 (Build 6002)

Corbeille vidée (00mn 03s)
Dossier Prefetcher vidé
Réparation des raccourcis navigateur

========== Clés du Registre ==========
SUPPRIMÉ: CLSID BHO: {b608cc98-54de-4775-96c9-097de398500c}

========== Valeurs du Registre ==========
SUPPRIMÉ RunValue: pricefountainw.exe
Aucune Valeur Standard Profile: FirewallRaz :
Aucune Valeur Domain Profile: FirewallRaz :
SUPPRIMÉ: FirewallRaz (Public) : {FAA0416C-4921-41AF-B5BF-BED041291972}
SUPPRIMÉ: FirewallRaz (Public) : {F912D7A5-B4C7-40DC-9ABA-863577815F89}

========== Dossiers ==========
Aucun dossiers CLSID Local utilisateur vide

========== Fichiers ==========
SUPPRIMÉS Temporaires Windows (99) (4 558 242 octets)

========== Tache planifiée ==========
SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000Core
SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-660369743-2379004909-110754686-1000UA


========== Récapitulatif ==========
1 : Clés du Registre
5 : Valeurs du Registre
1 : Dossiers
1 : Fichiers
2 : Tache planifiée


End of clean in 00mn 11s

========== Chemin de fichier rapport ==========
C:\Users\PC\AppData\Roaming\ZHP\ZHPFix[R1].txt - 13/11/2014 11:54:33 [1347]
0
Réponse 24 / 24
Utilisateur anonyme
13 nov. 2014 à 11:57
Re

Configure maintenant tes programmes car certains démarrent avec Windows et cela n'est pas vraiment nécessaire.
exemple :Skype ;Dropbox

@+
0