Sujet Précédent Sujet Suivant

Je suis infecter aider SVP

Fermé
hayet05 Messages postés 45 Date d'inscription jeudi 14 novembre 2013 Statut Membre Dernière intervention 20 juillet 2015 - Modifié par irongege le 25/01/2015 à 21:12
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 - 26 janv. 2015 à 20:41
Bonjour

Voila depuis hier mon pc et très lent rein ne s'ouvert , j'ai fait un analyse a OTL et j'ai met sur votre page malekal mais il ma pas donner la procédure de désinfection svp aider moi ,voila le rapport de OTL
OTL logfile created on: 25/01/2015 14:14:13 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\HASSANIN\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,87 Gb Total Physical Memory | 1,07 Gb Available Physical Memory | 37,11% Memory free [Attention - Mémoire libre insuffisante - désinstaller les programmes inutiles]
5,96 Gb Paging File | 3,85 Gb Available in Paging File | 64,68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,78 Gb Total Space | 49,46 Gb Free Space | 33,02% Space Free | Partition Type: NTFS
Drive D: | 11,46 Gb Total Space | 1,60 Gb Free Space | 14,00% Space Free | Partition Type: NTFS
Drive E: | 1,79 Gb Total Space | 1,22 Gb Free Space | 68,20% Space Free | Partition Type: NTFS
Drive F: | 135,06 Gb Total Space | 20,12 Gb Free Space | 14,89% Space Free | Partition Type: NTFS
Drive H: | 931,51 Gb Total Space | 354,79 Gb Free Space | 38,09% Space Free | Partition Type: NTFS

Computer Name: PC-DE-HASSANIN | User Name: HASSANIN | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

<FONT COLOR=E56717]>========== Processes (SafeList) ==========</FONT>

PRC - [2015/01/25 14:11:54 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\HASSANIN\Downloads\OTL.exe
PRC - [2015/01/25 01:40:27 | 001,880,752 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe
PRC - [2015/01/14 08:47:21 | 000,338,032 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014/12/03 19:06:08 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/11/13 11:56:38 | 000,230,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe
PRC - [2014/10/29 09:43:04 | 000,101,192 | ---- | M] (Google) -- C:\Users\HASSANIN\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2014/07/25 09:42:26 | 000,311,616 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
PRC - [2014/07/25 09:42:20 | 001,562,264 | ---- | M] (Samsung) -- C:\Program Files\Samsung\Kies\Kies.exe
PRC - [2014/05/22 19:53:24 | 001,666,432 | ---- | M] (Simply Super Software) -- C:\Program Files\Trojan Remover\Trjscan.exe
PRC - [2014/03/21 02:57:38 | 000,368,640 | ---- | M] () -- C:\Program Files\Serviio\bin\ServiioConsole.exe
PRC - [2014/03/21 02:57:36 | 000,327,680 | ---- | M] () -- C:\Program Files\Serviio\bin\ServiioService.exe
PRC - [2014/02/25 11:59:45 | 000,157,432 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\TPSrv.exe
PRC - [2014/01/27 17:00:00 | 000,564,072 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZQKPICK32.EXE
PRC - [2013/09/30 15:52:56 | 001,062,880 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\ApVxdWin.exe
PRC - [2013/07/04 07:39:16 | 000,108,512 | ---- | M] (Panda Security) -- C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe
PRC - [2013/03/10 05:56:43 | 017,199,104 | ---- | M] (Salaat Time - www.salaattime.com) -- C:\Program Files\Salaat Time\SalaatTime.exe
PRC - [2012/11/19 17:11:38 | 000,177,440 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PsCtrls.exe
PRC - [2012/09/21 07:25:02 | 000,202,016 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PavFnSvr.exe
PRC - [2011/10/18 12:43:48 | 000,112,128 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PavBckPT.exe
PRC - [2011/10/18 12:43:48 | 000,091,648 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\SRVLOAD.EXE
PRC - [2011/04/13 11:44:10 | 000,313,664 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\pavsrvx86.exe
PRC - [2011/03/07 14:27:06 | 000,225,088 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\AVENGINE.EXE
PRC - [2010/12/14 22:47:22 | 000,603,736 | ---- | M] (PacketVideo) -- C:\Program Files\Serveur Media\twonkymediaserverconfig.exe
PRC - [2010/12/14 22:47:22 | 000,501,336 | ---- | M] (PacketVideo) -- C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe
PRC - [2010/12/14 22:47:20 | 001,451,608 | ---- | M] () -- C:\Program Files\Serveur Media\TwonkyMediaServer.exe
PRC - [2010/08/16 13:54:46 | 000,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PskSvc.exe
PRC - [2009/11/26 16:03:56 | 000,226,560 | ---- | M] (Panda Security International) -- c:\program files\panda security\panda global protection 2014\firewall\PSHOST.EXE
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009/01/09 11:10:44 | 000,196,608 | ---- | M] (CyberLink) -- C:\Program Files\Cyberlink\PowerCinema\Kernel\CLML\CLMLSvc.exe
PRC - [2009/01/09 11:10:32 | 000,148,712 | ---- | M] (CyberLink Corp.) -- C:\Program Files\Cyberlink\PowerCinema\PCMAgent.exe
PRC - [2008/11/20 09:47:28 | 000,062,768 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Odometer\hpsysdrv.exe
PRC - [2008/06/19 11:59:50 | 000,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\psimsvc.exe
PRC - [2008/02/04 16:26:48 | 000,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
PRC - [2008/01/21 03:33:00 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007/06/01 10:21:30 | 001,209,904 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007/06/01 10:21:08 | 000,153,136 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [1999/03/24 16:57:10 | 000,043,520 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe


<FONT COLOR=E56717]>========== Modules (No Company Name) ==========</FONT>

MOD - [2015/01/25 01:40:26 | 016,844,976 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_16_0_0_296.dll
MOD - [2015/01/14 08:47:20 | 003,925,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014/12/21 09:30:08 | 014,993,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\04fbc79d0fd8ef7beb4df41de59f7580\Kies.Theme.ni.dll
MOD - [2014/12/21 09:29:40 | 000,064,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\3808eebd611c48c69d205aba5fdaabe2\Kies.Common.AllShare.ni.dll
MOD - [2014/12/21 09:29:05 | 002,199,040 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common23b84511#\4492e4393358a4f0715b59cda1030187\Kies.Common.Multimedia.ni.dll
MOD - [2014/12/21 09:28:59 | 000,186,368 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Commonc65c5a95#\6f89b5b53fe8ec7cdda041b8a8fd99f4\Kies.Common.DeviceServiceLib.Interface.ni.dll
MOD - [2014/12/21 09:28:34 | 000,316,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\52dbac1ba52cf2fcbc63a82d7d1ebe9e\Kies.Common.Util.ni.dll
MOD - [2014/12/21 09:28:32 | 001,745,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\bac1ca606d0d4d34098d0da4421f11fd\Kies.Locale.ni.dll
MOD - [2014/12/21 09:28:31 | 000,081,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\e8b2465977dafc28af412e4ae0caf712\Kies.MVVM.ni.dll
MOD - [2014/12/21 09:28:30 | 001,865,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\595f727940c4532edbacd5cb1943335e\Kies.UI.ni.dll
MOD - [2014/12/21 09:28:26 | 001,331,712 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\4fa77b9f8d70bd33f11018c16a360d79\Kies.Interface.ni.dll
MOD - [2014/12/21 09:28:24 | 002,140,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\79010ace6e3f86f3635f82bae70fd0ba\Kies.ni.exe
MOD - [2014/12/20 22:48:42 | 000,236,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\6815ff93472d008087880a6462931188\ASF_cSharpAPI.ni.dll
MOD - [2014/11/14 07:31:17 | 000,774,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\525d2a189e395c60a20cded4d2bfea76\System.Runtime.Remoting.ni.dll
MOD - [2014/11/13 03:11:52 | 000,805,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\11650ce4aad4575fc146aa66a575bcb7\System.Runtime.Remoting.ni.dll
MOD - [2014/10/17 02:52:38 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\738c8aa4347b36988f555005a63cb9a0\System.Management.ni.dll
MOD - [2014/10/17 02:51:12 | 011,908,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\57bed17a3ad0ad3bbe717287d4cb1625\System.Web.ni.dll
MOD - [2014/10/17 02:50:48 | 000,978,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\a98a13deac020eca5e7dcb5ebb2b7414\System.Configuration.ni.dll
MOD - [2014/10/17 02:49:10 | 005,465,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\a224433c0fb9281862f36823e86822fc\System.Xml.ni.dll
MOD - [2014/10/17 02:48:33 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\f32d5986039f142f6e4f412de7c8901c\System.Windows.Forms.ni.dll
MOD - [2014/10/17 02:48:16 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\65897bde93bce2462330f19ef677477d\System.Drawing.ni.dll
MOD - [2014/10/17 02:47:53 | 006,649,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\f2891e518259752c8b6551fafe69f6ed\System.Data.ni.dll
MOD - [2014/10/17 02:47:39 | 000,224,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a5469323b634b6452ddbf8319dd0d122\PresentationFramework.Classic.ni.dll
MOD - [2014/10/17 02:47:36 | 014,330,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\870a0ce4f0940059bb0858c5e5cd19db\PresentationFramework.ni.dll
MOD - [2014/10/17 02:47:09 | 012,218,368 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\2db99aceabca8d99ccb49aca3c47cef3\PresentationCore.ni.dll
MOD - [2014/10/17 02:46:49 | 003,325,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c549fec3db8f66c2d113f332c1662033\WindowsBase.ni.dll
MOD - [2014/10/17 02:46:36 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\cf2c94955471d68d3708b1fbf613ae46\System.ni.dll
MOD - [2014/10/17 02:20:41 | 018,813,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll
MOD - [2014/10/17 02:20:22 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll
MOD - [2014/10/17 02:20:02 | 011,025,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll
MOD - [2014/10/17 02:19:40 | 003,950,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll
MOD - [2014/10/17 02:18:39 | 007,668,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll
MOD - [2014/10/17 02:18:36 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll
MOD - [2014/10/17 02:18:20 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll
MOD - [2014/10/17 02:18:16 | 000,223,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\902843918d037f5f3511d679bf1e2216\System.ServiceProcess.ni.dll
MOD - [2014/10/17 02:18:14 | 010,100,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll
MOD - [2014/09/12 02:46:15 | 000,187,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\63e5806620257cc4e26ff972be137826\UIAutomationTypes.ni.dll
MOD - [2014/09/12 02:39:52 | 011,496,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\3444fbefcbd532181c499150ace644a4\mscorlib.ni.dll
MOD - [2014/05/08 00:42:38 | 002,958,848 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2014/03/21 02:57:38 | 000,368,640 | ---- | M] () -- C:\Program Files\Serviio\bin\ServiioConsole.exe
MOD - [2014/02/14 03:03:49 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
MOD - [2011/03/04 12:02:54 | 007,745,536 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2011/03/04 12:02:52 | 000,135,168 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2011/03/04 12:02:50 | 002,121,728 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
MOD - [2009/05/11 09:43:23 | 000,098,304 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
MOD - [2009/04/04 01:23:44 | 000,061,440 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
MOD - [2009/04/04 01:23:42 | 000,131,072 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
MOD - [2009/04/04 01:23:40 | 000,040,960 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\MessagingServer.dll
MOD - [2009/04/04 01:23:38 | 000,036,864 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\MessagingClients.dll
MOD - [2009/04/04 01:23:38 | 000,007,680 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\RemotingClient.dll
MOD - [2009/04/04 01:23:38 | 000,005,632 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\MessagingInterface.dll
MOD - [2009/04/04 01:23:36 | 000,028,672 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\MessagingMessages.dll
MOD - [2009/04/04 01:23:34 | 000,028,672 | ---- | M] () -- C:\Program Files\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
MOD - [2009/03/30 05:42:26 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll
MOD - [2009/03/30 05:42:26 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_fr_b77a5c561934e089\System.resources.dll
MOD - [2009/02/25 02:16:59 | 000,245,760 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_fr_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2009/02/25 02:16:59 | 000,110,592 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_fr_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2009/01/09 11:10:46 | 000,868,352 | ---- | M] () -- C:\Program Files\Cyberlink\PowerCinema\Kernel\CLML\CLMediaLibrary.dll
MOD - [2009/01/09 11:10:42 | 000,007,680 | ---- | M] () -- c:\Program Files\CyberLink\PowerCinema\Kernel\CLML\CLMLSvcPS.dll
MOD - [2007/02/14 12:55:12 | 000,165,424 | ---- | M] () -- C:\Program Files\Panda Security\Panda Global Protection 2014\MiniCrypto.dll
MOD - [2006/12/10 20:51:08 | 000,077,824 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
MOD - [2006/12/10 20:51:08 | 000,065,536 | R--- | M] () -- C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll
MOD - [2004/05/19 10:33:12 | 000,507,904 | ---- | M] () -- C:\Program Files\Panda Security\Panda Global Protection 2014\libxml2.dll
MOD - [1999/03/24 16:57:10 | 000,043,520 | ---- | M] () -- C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe


<FONT COLOR=E56717]>========== Services (SafeList) ==========</FONT>

SRV - [2015/01/25 01:40:28 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/01/14 08:47:20 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/12/03 19:06:08 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/03/21 02:57:36 | 000,327,680 | ---- | M] () [Auto | Running] -- C:\Program Files\Serviio\bin\ServiioService.exe -- (Serviio)
SRV - [2014/02/25 11:59:45 | 000,157,432 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\TPSrv.exe -- (TPSrv)
SRV - [2013/03/01 02:48:58 | 000,118,520 | ---- | M] (Riverbed Technology, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2012/11/19 17:11:38 | 000,177,440 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\PsCtrls.exe -- (Panda Software Controller)
SRV - [2012/09/21 07:25:02 | 000,202,016 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\PavFnSvr.exe -- (PAVFNSVR)
SRV - [2011/04/13 11:44:10 | 000,313,664 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\pavsrvx86.exe -- (PAVSRV)
SRV - [2010/12/14 22:47:22 | 000,501,336 | ---- | M] (PacketVideo) [Auto | Running] -- C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe -- (Serveur Média)
SRV - [2010/08/16 13:54:46 | 000,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\PskSvc.exe -- (PskSvcRetail)
SRV - [2009/11/26 16:03:56 | 000,226,560 | ---- | M] (Panda Security International) [Auto | Running] -- c:\program files\panda security\panda global protection 2014\firewall\PSHOST.EXE -- (PSHost)
SRV - [2009/01/04 11:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)
SRV - [2008/12/09 03:51:08 | 000,242,424 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008/06/19 11:59:50 | 000,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2014\psimsvc.exe -- (PSIMSVC)
SRV - [2008/02/04 16:26:48 | 000,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe -- (PavPrSrv)
SRV - [2008/01/21 03:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)


<FONT COLOR=E56717]>========== Driver Services (SafeList) ==========</FONT>

DRV - File not found [Kernel | On_Demand | Running] -- C:\Windows\system32\PavTPK.sys -- (PavTPK.sys)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2014/06/16 07:01:38 | 000,184,192 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2014/06/16 07:01:38 | 000,089,856 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2014/06/16 07:01:30 | 000,153,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2014/06/16 07:01:30 | 000,136,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2014/06/16 07:01:30 | 000,130,248 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2014/06/16 07:01:30 | 000,017,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2014/05/07 18:11:41 | 000,013,880 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\COMFiltr.sys -- (ComFiltr)
DRV - [2013/06/12 14:53:22 | 000,166,984 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PavProc.sys -- (PavProc)
DRV - [2013/03/01 02:48:42 | 000,036,600 | ---- | M] (Riverbed Technology, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2012/03/26 17:57:30 | 000,059,656 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\amm8660.sys -- (AmFSM)
DRV - [2011/02/21 13:38:32 | 000,037,448 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\ShlDrv51.sys -- (ShldDrv)
DRV - [2011/01/31 15:41:28 | 000,083,528 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\APPFLT.SYS -- (APPFLT)
DRV - [2010/09/09 15:23:00 | 000,193,864 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\idsflt.sys -- (IDSFLT)
DRV - [2010/09/01 10:09:14 | 000,201,032 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\neti1644.sys -- (NETIMFLT01060044)
DRV - [2010/06/22 17:13:00 | 000,026,696 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\pavboot.sys -- (pavboot)
DRV - [2009/09/25 13:54:08 | 000,046,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\wnmflt.sys -- (WNMFLT)
DRV - [2009/09/25 13:54:06 | 000,159,112 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | System | Running] -- C:\Windows\System32\drivers\NETFLTDI.SYS -- (NETFLTDI)
DRV - [2009/09/25 13:54:04 | 000,022,024 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\fnetmon.sys -- (FNETMON)
DRV - [2009/09/25 13:54:02 | 000,053,256 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\dsaflt.sys -- (DSAFLT)
DRV - [2009/04/22 13:46:42 | 003,482,112 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2009/03/08 23:51:00 | 007,764,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009/02/08 22:42:42 | 000,099,968 | ---- | M] (Guillemot Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hxctlflt.sys -- (hxctlflt)
DRV - [2009/02/02 19:59:28 | 000,020,848 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- c:\program files\pc-doctor for windows\pcdsrvc.pkms -- (PCDSRVC{4F253FFC-7957E8FC-06000000}_0)
DRV - [2008/11/12 18:02:46 | 000,133,152 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2008/11/12 18:02:18 | 000,146,464 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2008/08/01 13:51:14 | 001,052,704 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2008/05/22 10:39:34 | 000,015,360 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)


<FONT COLOR=E56717]>========== Standard Registry (SafeList) ==========</FONT>


<FONT COLOR=E56717]>========== Internet Explorer ==========</FONT>

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = auto:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&FORM=IE8SRC [Pays US - 204.79.197.200]
IE - HKLM\..\SearchScopes\{74E404C7-7331-48F9-ABCA-05923022275C}: URL = https://fr.search.yahoo.com/web{searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 [Pays - ]


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: ProxyEnable = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: ProxyEnable = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = auto:blank
IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: URL = https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src=IE-SearchBox&FORM=IE8SRC [Pays US - 204.79.197.200]
IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\..\SearchScopes\{74E404C7-7331-48F9-ABCA-05923022275C}: URL = https://fr.search.yahoo.com/web{searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 [Pays - ]
IE - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: ProxyEnable = 0

<FONT COLOR=E56717]>========== FireFox ==========</FONT>

FF - prefs.js..browser.search.highlightCount: 0
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.param.yahoo-fr: moz2-ytff-
FF - prefs.js..browser.search.param.yahoo-fr-cjkt: moz2-ytff-
FF - prefs.js..browser.search.searchengine.desc: this is my first firefox searchEngine
FF - prefs.js..browser.search.searchengine.ptid: nsbfr
FF - prefs.js..browser.search.searchengine.uid: 395049983_1052451_0C5F6A39
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: https://www.google.fr/?gfe_rd=cr&ei=Dpu7VLCTFZaCaNPAgtAF&gws_rd=ssl [Pays US - 216.58.211.99]
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0
FF - prefs.js..network.proxy.no_proxies_on:
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@citrixonline.com/appdetectorplugin: C:\Users\HASSANIN\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\HASSANIN\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\HASSANIN\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\HASSANIN\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\HASSANIN\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\LWAPlugin15.8: C:\Users\HASSANIN\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 35.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 35.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2013/11/19 14:59:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Extensions
[2010/08/30 19:47:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Extensions\maxtv4@labs.max-tv.be
[2015/01/22 22:11:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Firefox\Profiles\316j4hzt.default\extensions
[2013/11/26 09:11:04 | 000,000,000 | ---D | M] (WOT) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Firefox\Profiles\316j4hzt.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2014/06/22 15:12:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Firefox\Profiles\9p9l3x85.default\extensions
[2014/05/02 16:42:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\Firefox\Profiles\9p9l3x85.default\extensions\staged
[2014/10/31 13:11:51 | 000,009,139 | ---- | M] () (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\firefox\profiles\316j4hzt.default\extensions\info@youtube-mp3.org.xpi
[2012/02/05 11:31:13 | 000,020,591 | ---- | M] () (No name found) -- C:\Users\HASSANIN\AppData\Roaming\mozilla\firefox\profiles\316j4hzt.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}.xpi
[2010/10/26 15:41:00 | 000,003,436 | ---- | M] () -- C:\Users\HASSANIN\AppData\Roaming\mozilla\firefox\profiles\316j4hzt.default\searchplugins\bing.xml
[2012/11/16 09:53:22 | 000,001,130 | ---- | M] () -- C:\Users\HASSANIN\AppData\Roaming\mozilla\firefox\profiles\316j4hzt.default\searchplugins\orange.xml
[2015/01/14 08:47:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2015/01/14 08:47:21 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

<FONT COLOR=E56717]>========== Chrome ==========</FONT>

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\HASSANIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\HASSANIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\

O1 HOSTS File: ([2006/09/18 22:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost [Pays US - 127.0.0.1]
O1 - Hosts: ::1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE (Panda Security, S.L.)
O4 - HKLM..\Run: [CLMLServer] c:\Program Files\Cyberlink\PowerCinema\Kernel\CLML\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe (Hewlett-Packard)
O4 - HKLM..\Run: [hpsysdrv] c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe (Hewlett-Packard)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [PCMAgent] c:\Program Files\CyberLink\PowerCinema\PCMAgent.exe (CyberLink Corp.)
O4 - HKLM..\Run: [SCANINICIO] C:\Program Files\Panda Security\Panda Global Protection 2014\Inicio.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe (Simply Super Software)
O4 - HKLM..\Run: [UpdateLBPShortCut] c:\Program Files\CyberLink\Label\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] c:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] c:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000..\Run: [SalaatTime] C:\Program Files\Salaat Time\SalaatTime.exe (Salaat Time - www.salaattime.com)
O4 - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000..\Run: [user] wscript.exe //B C:\Users\HASSANIN\AppData\Roaming\user.vbs File not found
O4 - HKU\S-1-5-21-4063774554-4158981153-2877707243-1000..\RunOnce: [Adobe Speed Launcher] 1422191337 File not found
O4 - Startup: C:\Users\HASSANIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Serviio.lnk = C:\Program Files\Serviio\bin\ServiioConsole.exe ()
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1 [Pays US - 192.168.1.1]
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DF2A5878-0BC3-41A2-B1A7-7436FC71F203}: DhcpNameServer = 192.168.1.1 192.168.1.1 [Pays US - 192.168.1.1]
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avldr: DllName - (avldr.dll) - C:\Windows\System32\avldr.dll (On-Access Anti-Malware Scanner Sync)
O24 - Desktop WallPaper: C:\Users\HASSANIN\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\HASSANIN\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2013/11/25 13:32:09 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013/11/25 13:32:09 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013/11/25 13:32:10 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2013/11/25 13:32:10 | 000,000,000 | RHSD | M] - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2008/12/15 08:01:46 | 000,000,113 | ---- | M] () - H:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- %1 %*
O35 - HKLM\..exefile [open] -- %1 %*
O37 - HKLM\...com [@ = comfile] -- %1 %*
O37 - HKLM\...exe [@ = exefile] -- %1 %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

<FONT COLOR=E56717]>========== Files/Folders - Created Within 30 Days ==========</FONT>

[2015/01/23 13:34:06 | 000,000,000 | ---D | C] -- C:\Users\HASSANIN\Documents\Gmail(1)
[2015/01/18 15:11:13 | 000,000,000 | ---D | C] -- C:\Users\HASSANIN\Documents\Simply Super Software
[2015/01/18 15:11:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
[2015/01/18 15:10:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover
[2015/01/18 15:09:54 | 000,605,968 | ---- | C] (Igor Pavlov) -- C:\Windows\System32\ztv7z.dll
[2015/01/18 15:09:54 | 000,077,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ztvcabinet.dll
[2015/01/18 15:09:45 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2015/01/18 15:09:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Simply Super Software
[2015/01/18 13:17:45 | 000,000,000 | ---D | C] -- C:\Program Files\Ad-Remover
[2015/01/18 11:22:02 | 000,000,000 | ---D | C] -- C:\Program Files\d1b81cd8-4577-4c0c-a805-a21f0b7cb52d
[2015/01/15 03:01:10 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2015/01/14 08:47:07 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/12/29 18:40:54 | 000,000,000 | ---D | C] -- C:\Users\HASSANIN\AppData\Roaming\PeerNetworking
[2014/12/28 20:41:22 | 000,000,000 | ---D | C] -- C:\Users\HASSANIN\Desktop\dossier hayet

<FONT COLOR=E56717]>========== Files - Modified Within 30 Days ==========</FONT>

[2015/01/25 14:40:15 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/01/25 14:16:05 | 000,001,090 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA.job
[2015/01/25 14:12:04 | 000,001,132 | ---- | M] () -- C:\Windows\System32\drivers\APPFLTR.CFG.bck
[2015/01/25 14:12:04 | 000,001,132 | ---- | M] () -- C:\Windows\System32\drivers\APPFLTR.CFG
[2015/01/25 14:12:04 | 000,000,252 | ---- | M] () -- C:\Windows\System32\drivers\etc\IdsFlt.cfg.bck
[2015/01/25 14:12:04 | 000,000,252 | ---- | M] () -- C:\Windows\System32\drivers\etc\IdsFlt.cfg
[2015/01/25 14:12:04 | 000,000,068 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetLoc.wlt.bck
[2015/01/25 14:12:04 | 000,000,068 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetLoc.wlt
[2015/01/25 14:12:04 | 000,000,068 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetFlt.cfg.bck
[2015/01/25 14:12:04 | 000,000,068 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetFlt.cfg
[2015/01/25 14:12:04 | 000,000,056 | ---- | M] () -- C:\Windows\System32\drivers\etc\WnmFlt.cfg.bck
[2015/01/25 14:12:04 | 000,000,056 | ---- | M] () -- C:\Windows\System32\drivers\etc\WnmFlt.cfg
[2015/01/25 14:12:04 | 000,000,056 | ---- | M] () -- C:\Windows\System32\drivers\etc\DsaFlt.cfg.bck
[2015/01/25 14:12:04 | 000,000,056 | ---- | M] () -- C:\Windows\System32\drivers\etc\DsaFlt.cfg
[2015/01/25 14:08:32 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/01/25 14:08:31 | 000,001,698 | ---- | M] () -- C:\Windows\tasks\GSJDWPCD.job
[2015/01/25 14:08:31 | 000,001,350 | ---- | M] () -- C:\Windows\tasks\XSVXMI.job
[2015/01/25 14:01:00 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/01/25 13:51:34 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetAR.wlt.bck
[2015/01/25 13:51:34 | 000,000,064 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetAR.wlt
[2015/01/25 13:51:32 | 000,000,120 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetAdapt.cfg.bck
[2015/01/25 13:51:32 | 000,000,120 | ---- | M] () -- C:\Windows\System32\drivers\etc\NetAdapt.cfg
[2015/01/25 13:51:13 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2015/01/25 13:51:13 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2015/01/25 13:51:08 | 000,000,314 | ---- | M] () -- C:\Windows\tasks\WebReg Photosmart C3100 series.job
[2015/01/25 13:51:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/01/25 13:50:59 | 3085,373,440 | -HS- | M] () -- C:\hiberfil.sys
[2015/01/25 13:21:47 | 000,000,942 | ---- | M] () -- C:\Users\Public\Desktop\Trojan Remover.lnk
[2015/01/25 13:16:41 | 000,001,038 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core.job
[2015/01/25 12:35:57 | 000,721,478 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2015/01/25 12:35:57 | 000,633,514 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/01/25 12:35:57 | 000,145,312 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2015/01/25 12:35:57 | 000,119,080 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/01/25 12:19:23 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2015/01/25 01:40:28 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/01/25 01:40:27 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015/01/24 22:30:41 | 000,198,656 | ---- | M] () -- C:\Users\HASSANIN\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2015/01/23 13:40:29 | 000,146,346 | ---- | M] () -- C:\Windows\hpoins18.dat
[2015/01/18 16:48:23 | 000,000,680 | ---- | M] () -- C:\Users\HASSANIN\AppData\Local\d3d9caps.dat
[2015/01/18 13:17:48 | 000,001,682 | ---- | M] () -- C:\Users\HASSANIN\Desktop\AD-R.lnk
[2015/01/18 13:14:36 | 000,000,905 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015/01/18 11:53:57 | 000,001,865 | ---- | M] () -- C:\Users\HASSANIN\Desktop\chrome.lnk
[2015/01/18 11:53:54 | 000,001,999 | ---- | M] () -- C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/01/18 11:53:54 | 000,000,949 | ---- | M] () -- C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2015/01/18 11:53:54 | 000,000,876 | ---- | M] () -- C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2015/01/18 11:34:15 | 000,001,682 | ---- | M] () -- C:\Windows\System32\${LOGFILE}
[2015/01/17 00:00:03 | 000,000,500 | ---- | M] () -- C:\Windows\tasks\Nettoyage de base.job
[2015/01/17 00:00:02 | 000,000,500 | ---- | M] () -- C:\Windows\tasks\Nettoyage de base1.job
[2015/01/15 07:51:59 | 000,155,540 | ---- | M] () -- C:\Windows\System32\drivers\APPFCONT.DAT.bck
[2015/01/15 07:51:59 | 000,155,540 | ---- | M] () -- C:\Windows\System32\drivers\APPFCONT.DAT
[2015/01/06 04:36:02 | 000,249,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2015/01/01 10:37:29 | 000,431,504 | ---- | M] () -- C:\Users\HASSANIN\Desktop\Garderie Yvann 12 2014.tif
[2014/12/31 10:41:15 | 000,000,552 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2014/12/29 18:40:55 | 000,024,206 | ---- | M] () -- C:\Users\HASSANIN\AppData\Roaming\UserTile.png

<FONT COLOR=E56717]>========== Files Created - No Company Name ==========</FONT>

[2015/01/23 13:40:17 | 000,000,314 | ---- | C] () -- C:\Windows\tasks\WebReg Photosmart C3100 series.job
[2015/01/18 15:10:02 | 000,000,942 | ---- | C] () -- C:\Users\Public\Desktop\Trojan Remover.lnk
[2015/01/18 15:09:54 | 000,185,616 | ---- | C] () -- C:\Windows\System32\ztvunrar39.dll
[2015/01/18 15:09:54 | 000,169,744 | ---- | C] () -- C:\Windows\System32\ztvunrar36.dll
[2015/01/18 15:09:54 | 000,153,088 | ---- | C] () -- C:\Windows\System32\UNRAR3.dll
[2015/01/18 15:09:54 | 000,077,312 | ---- | C] () -- C:\Windows\System32\ztvunace26.dll
[2015/01/18 15:09:54 | 000,075,264 | ---- | C] () -- C:\Windows\System32\unacev2.dll
[2015/01/18 13:17:48 | 000,001,682 | ---- | C] () -- C:\Users\HASSANIN\Desktop\AD-R.lnk
[2015/01/18 11:36:46 | 000,001,865 | ---- | C] () -- C:\Users\HASSANIN\Desktop\chrome.lnk
[2015/01/18 11:22:51 | 000,001,350 | ---- | C] () -- C:\Windows\tasks\XSVXMI.job
[2015/01/18 11:21:52 | 000,001,698 | ---- | C] () -- C:\Windows\tasks\GSJDWPCD.job
[2015/01/18 11:16:44 | 000,001,682 | ---- | C] () -- C:\Windows\System32\${LOGFILE}
[2015/01/01 10:37:27 | 000,431,504 | ---- | C] () -- C:\Users\HASSANIN\Desktop\Garderie Yvann 12 2014.tif
[2014/12/29 18:40:55 | 000,024,206 | ---- | C] () -- C:\Users\HASSANIN\AppData\Roaming\UserTile.png
[2014/09/01 09:18:44 | 000,002,086 | ---- | C] () -- C:\Users\HASSANIN\AppData\Roaming\XSVXMI
[2014/09/01 09:18:44 | 000,001,248 | ---- | C] () -- C:\Users\HASSANIN\AppData\Roaming\GSJDWPCD
[2014/07/14 16:18:03 | 000,000,680 | ---- | C] () -- C:\Users\HASSANIN\AppData\Local\d3d9caps.dat
[2014/06/05 09:49:16 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2014/05/07 18:11:32 | 000,000,262 | ---- | C] () -- C:\Windows\System32\PavCPL.dat
[2014/05/07 17:56:56 | 000,013,880 | ---- | C] () -- C:\Windows\System32\drivers\COMFiltr.sys
[2014/05/07 17:54:56 | 000,155,540 | ---- | C] () -- C:\Windows\System32\drivers\APPFCONT.DAT.bck
[2014/05/07 17:54:56 | 000,155,540 | ---- | C] () -- C:\Windows\System32\drivers\APPFCONT.DAT
[2014/04/30 19:47:48 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2014/04/30 19:47:48 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2014/04/30 19:47:48 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2014/04/30 19:47:48 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2014/04/30 19:47:46 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2014/03/24 14:09:18 | 000,146,346 | ---- | C] () -- C:\Windows\hpoins18.dat.temp
[2014/03/24 14:09:18 | 000,006,600 | ---- | C] () -- C:\Windows\hpomdl18.dat.temp
[2013/12/18 17:35:02 | 000,000,000 | ---- | C] () -- C:\Windows\winfile.ini
[2013/12/01 14:55:56 | 000,210,944 | ---- | C] () -- C:\Windows\System32\Msvcrt10.dll
[2013/12/01 14:55:53 | 000,016,384 | ---- | C] () -- C:\Windows\System32\PdfPorts.dll
[2013/11/30 13:32:33 | 000,146,346 | ---- | C] () -- C:\Windows\hpoins18.dat
[2013/11/26 19:59:23 | 000,000,048 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2013/11/20 21:00:52 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2013/11/20 21:00:52 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2013/11/19 15:01:47 | 000,198,656 | ---- | C] () -- C:\Users\HASSANIN\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/03/01 02:47:36 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll

<FONT COLOR=E56717]>========== ZeroAccess Check ==========</FONT>

[2006/11/02 13:51:16 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
= %SystemRoot%\system32\shell32.dll -- [2014/03/25 14:26:04 | 011,587,584 | ---- | M] (Microsoft Corporation)
ThreadingModel = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
= %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
ThreadingModel = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
= %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
ThreadingModel = Both

<FONT COLOR=E56717]>========== Files - Unicode (All) ==========</FONT>
[2014/05/25 17:02:31 | 000,000,252 | ---- | M] ()(C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\????? ??????? ????? ????? ??? ????????? - YouTube.URL) -- C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\????? ??????? ????? ????? ??? ????????? - YouTube.URL
[2014/05/25 17:02:31 | 000,000,252 | ---- | C] ()(C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\????? ??????? ????? ????? ??? ????????? - YouTube.URL) -- C:\Users\HASSANIN\Application Data\Microsoft\Internet Explorer\Quick Launch\????? ??????? ????? ????? ??? ????????? - YouTube.URL
[2014/02/05 21:47:19 | 001,947,555 | ---- | C] ()(C:\Users\HASSANIN\Desktop\?????? ?????? ??????? ????? ?????? ????????.pdf) -- C:\Users\HASSANIN\Desktop\?????? ?????? ??????? ????? ?????? ????????.pdf
[2013/12/12 21:07:06 | 001,947,555 | ---- | M] ()(C:\Users\HASSANIN\Desktop\?????? ?????? ??????? ????? ?????? ????????.pdf) -- C:\Users\HASSANIN\Desktop\?????? ?????? ??????? ????? ?????? ????????.pdf

<FONT COLOR=E56717]>========== Alternate Data Streams ==========</FONT>

@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:AD022376

8 réponses

Réponse 1 / 8
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 1 616
25 janv. 2015 à 21:31
bonjour, postes moi plus un zhpdiag qui pour moi est plus facile à lire , merci

On va faire un diagnostic de ton PC pour plus de renseignements ==>

- Télécharge ZHPDiag sur ton bureau : https://nicolascoolman.eu
- Laisse-toi guider lors de l'installation.
- Ouvre ZHPDiag (icône parchemin) puis clique sur COMPLET.
- puis patiente le temps du scan.
- Héberge le rapport ZHPDiag.txt présent sur ton bureau sur le site ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse :
https://www.cjoint.com/


0
Réponse 2 / 8
hayet05 Messages postés 45 Date d'inscription jeudi 14 novembre 2013 Statut Membre Dernière intervention 20 juillet 2015
25 janv. 2015 à 21:46
Voila le rapport de ZHPDiag

Merci


~ Rapport de ZHPDiag v2015.1.24.9 - Nicolas Coolman (24/01/2015)
~ Lancé par HASSANIN (25/01/2015 21:34:21)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 35.0 (Defaut)
GCIE: Google Chrome v40.0.2214.91

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Home Basic, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 44MV3
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.4.1028
Panda Cloud Cleaner v1.0.104
Kaspersky Security Scan v12.0.1.881

---\\ Logiciels d'optimisation du système
CCleaner v4.07

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 16 NPAPI
Adobe Reader X
Java 7 Update 71

---\\ Informations sur le système
~ Processor: x86 Family 16 Model 2 Stepping 3, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2941 MB (37% free)
System Restore: Activé (Enable)
System drive C: has 52 GB (34%) free of 150 GB

---\\ Mode de connexion au système
~ Computer Name: PC-DE-HASSANIN
~ User Name: HASSANIN
~ All Users Names: Hayet, HASSANIN, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\HASSANIN\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\HASSANIN\AppData\Roaming\
~ %Desktop% : C:\Users\HASSANIN\Desktop\
~ %Favorites% : C:\Users\HASSANIN\Favorites\
~ %LocalAppData% : C:\Users\HASSANIN\AppData\Local\
~ %StartMenu% : C:\Users\HASSANIN\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 52 Go of 150 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 11 Go)
E: Hard drive, Flash drive, Thumb drive (Free 1 Go of 2 Go)
F: Hard drive, Flash drive, Thumb drive (Free 20 Go of 135 Go)
G: CD-ROM drive (Not Inserted)
H: Hard drive, Flash drive, Thumb drive (Free 355 Go of 932 Go)
I: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 42 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:33:13.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.AA680F0065A505118BDD9181BCE7C83D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.24/11/2014 - 21:35:25.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.F5272A105F59A7B3B345D9D6D87DA7AD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:53:22.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.2D9C903DC76A66813D350A562DE40ED9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.21/01/2008 - 03:32:21.) -- C:\Windows\system32\Drivers\atapi.sys [21560]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:33:23.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:32:45.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:34:06.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:34:44.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:32:22.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 03s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/8
~ Mes musiques (My Musics) : 1/2
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/23
~ Mes Documents (My Documents) : 1/54
~ Mon Bureau (My Desktop) : 2/7915
~ Menu demarrer (Programs) : 1/38
~ Hidden Files: Scanned in 00mn 44s



---\\ Processus lancés
[MD5.E196DF9B4DA221A263B6EC7F0CFCD542] - (.Panda Security - Internet resident proxy.) -- C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe [108512] [PID.268]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.4376]
[MD5.554A50B5310E702029D3A675459108FF] - (.Hewlett-Packard - hpsysdrv.) -- C:\Program Files\Hewlett-Packard\HP Odometer\hpsysdrv.exe [62768] [PID.4492]
[MD5.4B555106290BD117334E9A08761C035A] - (...) -- ystem32\rundll32.exe [0] [PID.1772]
[MD5.5DD88D743665BCA0D70922EC49850190] - (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- C:\Program Files\Cyberlink\PowerCinema\PCMAgent.exe [148712] [PID.5560]
[MD5.FD009568BE3B8118ED48F03642859CDD] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files\Cyberlink\PowerCinema\Kernel\CLML\CLMLSvc.exe [196608] [PID.5716]
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe [49152] [PID.5760]
[MD5.863020614D27D74CFC4194C598DEAD40] - (.Panda Security, S.L. - Panda permanent protection.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\ApVxdWin.exe [1062880] [PID.4108]
[MD5.14D6542607ACD4B2D1DDB1A36E0D8813] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744] [PID.4436]
[MD5.F8A3337DE768B126B061F1B7CD38A436] - (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616] [PID.4872]
[MD5.D87CE788F5200D479DDC82A0506114B7] - (.Salaat Time - www.salaattime.com - Salaat Time is a multi-function Islamic fre.) -- C:\Program Files\Salaat Time\SalaatTime.exe [17199104] [PID.4564]
[MD5.4C8942B8721813E5C8874D47112DCF73] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2741616] [PID.4620]
[MD5.ECE648CDC3A09421E996DFFDA76F5C53] - (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [153136] [PID.4752]
[MD5.2F85D5E63A1ECE08085D32C1B615BBFD] - (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe [1562264] [PID.1292]
[MD5.FD5CC2461987BA223501C3EC60FBFD2E] - (...) -- C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe [43520] [PID.1168]
[MD5.C11645E219C8C9113A8D9E0500ED25E5] - (.PacketVideo - TwonkyMedia Tray Application.) -- C:\Program Files\Serveur Media\twonkymediaserverconfig.exe [603736] [PID.5292]
[MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [210520] [PID.2468]
[MD5.BE2007C4584BB6284DF717AFB37DB79A] - (.WinZip Computing, S.L. - WinZip Quick Pick.) -- C:\Program Files\WinZip\WZQKPICK32.exe [564072] [PID.4204]
[MD5.32C26797AB646074A2BB562F9D10ADB5] - (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.exe [97680] [PID.5552]
[MD5.04C198299E83CFA49014013A38E1C0FF] - (...) -- C:\Program Files\Serviio\bin\ServiioConsole.exe [368640] [PID.5556]
[MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [271960] [PID.4320]
[MD5.B920AAF7ABEA489AC415DD38AD7B76CD] - (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe [1209904] [PID.5336]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.4660]
[MD5.22A5AB0A62CFE32AA790C007E5BBBA63] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [338032] [PID.2420]
[MD5.30D24D69CAE9712D980410924102D376] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe [243312] [PID.6620]
[MD5.786840D3A66E08C99B617BEA4E30B5C0] - (.Adobe Systems, Inc. - Adobe Flash Player 16.0 r0.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe [1880752] [PID.7700]
[MD5.74D1E004483998E076FBBC0DE9B59763] - (.Panda Security, S.L. - PavBckPT Aplicación.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PavBckPT.exe [112128] [PID.7832]
[MD5.EFB2614E9142FA4427CE82EE6DC0CA7B] - (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe [202080] [PID.7376]
[MD5.F121427856DF656EB3D410A6E10E2EF6] - (.Google - Hangouts Plugin.) -- C:\Users\HASSANIN\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe [101192] [PID.7660]
[MD5.B2C418B16792E227BF6D18C7261ABCD9] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8161792] [PID.7076]
[MD5.F531F9B76E3E2595049F145160D280DE] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 182.1.) -- C:\Windows\system32\nvvsvc.exe [207392] [PID.1036]
[MD5.341457B79B3FC31A80C346C767045879] - (.Panda Security, S.L. - Anti-malware protection support executable.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PskSvc.exe [28992] [PID.1232]
[MD5.23EE4E711AAF7CAB3B325D44F0DD04A6] - (.Panda Security, S.L. - TPSrv Application.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\TPSrv.exe [157432] [PID.1268]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1964]
[MD5.4C72FDD915D62EAEF149BD9C73AB9CF4] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.976]
[MD5.C34411A244029F1C08687F7C752C4563] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.988]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.1896]
[MD5.54F00466439F749EDDF29CBA0BC1A28A] - (.Panda Security, S.L. - Panda Software Controler.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PsCtrls.exe [177440] [PID.2628]
[MD5.F458128A5321BB48DF7B3D8E279F6393] - (.Panda Security, S.L. - Panda Function Service.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PavFnSvr.exe [202016] [PID.3660]
[MD5.2AE3F6B23448443BBEF5DE207159213B] - (.Panda Security, S.L. - Panda Process Protection Service.) -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe [62768] [PID.3112]
[MD5.4D8C2645A12FDDF9CD4A68DDE8496BEF] - (.Panda Security, S.L. - Enhanced On-Access Anti-Malware Service.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\pavsrvx86.exe [313664] [PID.3284]
[MD5.532053E8E3BB8FA7166AB4E7685FDDCC] - (.Panda Security International - Panda Host Service.) -- c:\program files\panda security\panda global protection 2014\firewall\PSHOST.exe [226560] [PID.2892]
[MD5.196C450F2779D0B462C444DA4906EA7F] - (.Panda Security S.L. - Panda Interface Manager Service.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\psimsvc.exe [108288] [PID.2444]
[MD5.3120A421ED14B0186675E295219D441C] - (.PacketVideo - TwonkyMedia Server watchdog.) -- C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe [501336] [PID.2940]
[MD5.8175C24B7852613A33323EFC9054979A] - (...) -- C:\Program Files\Serviio\bin\ServiioService.exe [327680] [PID.2248]
[MD5.2748912E0E656AE1FB74C4BFDF7BC470] - (...) -- C:\Program Files\Serveur Media\TwonkyMediaServer.exe [1451608] [PID.3312]
[MD5.AA9EF0B395097F24D289F64445B2FD2E] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208] [PID.1220]
[MD5.CB8C1CC4F46FBAC78150754D77460C73] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.25.11\GoogleCrashHandler.exe [230792] [PID.3496]
[MD5.060DAF68493AD7ADF104413E5A62AFA8] - (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [271920] [PID.4596]
[MD5.C7FBDD1ED42F82BFA35167A5C9803EA3] - (.Microsoft Corporation - PresentationFontCache.exe.) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904] [PID.5688]
[MD5.D4106AC79DA6DF822AD3BFCD09802F5D] - (.Panda Security, S.L. - Panda AntiSpam Trainer.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\SRVLOAD.exe [91648] [PID.2516]
[MD5.CC85A36EB009F45A53FF5344CCEFD58E] - (.Panda Security, S.L. - Enhanced On-Access Anti-Malware Protection.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\AVENGINE.exe [225088] [PID.7852]
~ Processes Running: Scanned in 00mn 09s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\HASSANIN\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Scanned in 00mn 05s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\HASSANIN\AppData\Roaming\Mozilla\Firefox\Profiles\316j4hzt.default\prefs.js
C:\Users\HASSANIN\AppData\Roaming\Mozilla\Firefox\Profiles\9p9l3x85.default\prefs.js
M3 - MFPP: Plugins - [HASSANIN] -- C:\Users\HASSANIN\AppData\Roaming\Mozilla\Firefox\Profiles\316j4hzt.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [HASSANIN] -- C:\Users\HASSANIN\AppData\Roaming\Mozilla\Firefox\Profiles\316j4hzt.default\searchplugins\orange.xml
M0 - MFSP: prefs.js [HASSANIN - 316j4hzt.default] https://www.google.fr/?gws_rd=ssl
M2 - MFEP: prefs.js [HASSANIN - 316j4hzt.default\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}] [WOT] WOT v20131118 (..)
M2 - MFEP: Extension [HASSANIN - 316j4hzt.default] {20a82645-c095-46ed-80e3-08825760534b}.xpi
M2 - MFEP: Extension [HASSANIN - 9p9l3x85.default] {20a82645-c095-46ed-80e3-08825760534b}.xpi
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll =>.Google Inc
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.71.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.71.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.71.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3555.0308] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.1.1] - (.VideoLAN - VLC media player Web Plugin 2.1.0.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll =>.VideoLAN
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.13.) -- C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKCU] [@citrixonline.com/appdetectorplugin] - (.Citrix Online - Citrix Online App Detector Plugin.) -- C:\Users\HASSANIN\AppData\Local\Citrix\Plugins\104\npappdetector.dll
P2 - FPN: [HKCU] [@talk.google.com/GoogleTalkPlugin] - (.Google - Version 5.38.6.0.) -- C:\Users\HASSANIN\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
P2 - FPN: [HKCU] [@talk.google.com/O1DPlugin] - (.Google - Version 5.38.6.0.) -- C:\Users\HASSANIN\AppData\Roaming\Mozilla\plugins\npo1d.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\HASSANIN\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\HASSANIN\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [LWAPlugin15.8] - (.Microsoft Corporation - Microsoft Lync Web App Plug-in.) -- C:\Users\HASSANIN\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll
~ Firefox Browser: 25 Scanned in 00mn 04s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Microsoft Lync Web App Plug-in.) (No version) -- (.not file.)
~ IE Browser: 10 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (20)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
~ BHO: 8 Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [hpsysdrv] . (.Hewlett-Packard - hpsysdrv.) -- c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll =>.NVIDIA Corporation
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll
O4 - HKLM\..\Run: [HP Health Check Scheduler] . (.Hewlett-Packard - HP Health Check Scheduler.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [UpdateP2GoShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [UpdatePDIRShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [UpdatePSTShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe
O4 - HKLM\..\Run: [PCMAgent] . (.CyberLink Corp. - CyberLink PowerCinema Resident Program.) -- c:\Program Files\CyberLink\PowerCinema\PCMAgent.exe
O4 - HKLM\..\Run: [CLMLServer] . (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files\Cyberlink\PowerCinema\Kernel\CLML\CLMLSvc.exe
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Nero AG - NeroCheck.) -- C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [APVXDWIN] . (.Panda Security, S.L. - Panda permanent protection.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\APVXDWIN.exe
O4 - HKLM\..\Run: [SCANINICIO] . (.Panda Security, S.L. - Inicio Programado.) -- C:\Program Files\Panda Security\Panda Global Protection 2014\Inicio.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Run: [KiesTrayAgent] . (.Samsung Electronics Co., Ltd. - Kies TrayAgent Application.) -- C:\Program Files\Samsung\Kies\KiesTrayAgent.exe =>.Samsung Electronics Co
O4 - HKLM\..\Run: [TrojanScanner] . (.Simply Super Software - Trojan Scanner.) -- C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\HASSANIN\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKCU\..\Run: [SalaatTime] . (.Salaat Time - www.salaattime.com - Salaat Time is a multi-function Islamic fre.) -- C:\Program Files\Salaat Time\SalaatTime.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKCU\..\Run: [user] . (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKCU\..\Run: [KSS] . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\HASSANIN\AppData\Local\Google\Update\GoogleUpdate.exe =>.Google Inc
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [SalaatTime] . (.Salaat Time - www.salaattime.com - Salaat Time is a multi-function Islamic fre.) -- C:\Program Files\Salaat Time\SalaatTime.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [user] . (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] . (.Nero AG - Nero Home.) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [KiesPreload] . (.Samsung - Kies.) -- C:\Program Files\Samsung\Kies\Kies.exe
O4 - HKUS\S-1-5-21-4063774554-4158981153-2877707243-1000\..\Run: [KSS] . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) -- C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
~ Application: Scanned in 00mn 04s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} . (.Microsoft Corporation - Windows Live Messenger Companion core resources.) -- C:\Program Files\Windows Live\Companion\companionres.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DF2A5878-0BC3-41A2-B1A7-7436FC71F203}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DF2A5878-0BC3-41A2-B1A7-7436FC71F203}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{DF2A5878-0BC3-41A2-B1A7-7436FC71F203}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: avldr . (.On-Access Anti-Malware Scanner Sync - On-Access Anti-Malware Scanner Sync.) -- C:\Windows\System32\avldr.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ SSODL: 1 Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: Kaspersky Security Scan Service (KSS) . (.Kaspersky Lab ZAO - Kaspersky Security Scan.) - C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 182.1.) - C:\Windows\System32\nvvsvc.exe
O23 - Service: Panda Software Controller (Panda Software Controller) . (.Panda Security, S.L. - Panda Software Controler.) - C:\Program Files\Panda Security\Panda Global Protection 2014\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) . (.Panda Security, S.L. - Panda Function Service.) - C:\Program Files\Panda Security\Panda Global Protection 2014\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) . (.Panda Security, S.L. - Panda Process Protection Service.) - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) . (.Panda Security, S.L. - Enhanced On-Access Anti-Malware Service.) - C:\Program Files\Panda Security\Panda Global Protection 2014\pavsrvx86.exe
O23 - Service: Panda Host Service (PSHost) . (.Panda Security International - Panda Host Service.) - c:\program files\panda security\panda global protection 2014\firewall\PSHOST.exe
O23 - Service: Panda IManager Service (PSIMSVC) . (.Panda Security S.L. - Panda Interface Manager Service.) - C:\Program Files\Panda Security\Panda Global Protection 2014\psimsvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) . (.Panda Security, S.L. - Anti-malware protection support executable.) - C:\Program Files\Panda Security\Panda Global Protection 2014\PskSvc.exe
O23 - Service: Serveur Média (Serveur Média) . (.PacketVideo - TwonkyMedia Server watchdog.) - C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe
O23 - Service: Serviio (Serviio) . (...) - C:\Program Files\Serviio\bin\ServiioService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Panda TPSrv (TPSrv) . (.Panda Security, S.L. - TPSrv Application.) - C:\Program Files\Panda Security\Panda Global Protection 2014\TPSrv.exe
~ Services: 17 Scanned in 00mn 22s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\Office12\WINWORD.exe
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.A2A9C100FE1BE20A76C0B80D4CA44103] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.3E6442B01E44B3AA31807FEF5235DC54] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [3919640]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core] (.Google Inc..) -- C:\Users\HASSANIN\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA] (.Google Inc..) -- C:\Users\HASSANIN\AppData\Local\Google\Update\GoogleUpdate.exe [116648]
[MD5.00000000000000000000000000000000] [APT] [GSJDWPCD] (...) -- C:\Users\HASSANIN\AppData\Roaming\GSJDWPCD.exe (.not file.) [0]
[MD5.0C8A70BC3BAAF7BF69DCA495C1E1AB79] [APT] [HP Health Check] (.Hewlett-Packard.) -- c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75016]
[MD5.1C0C72595E2D612F24DE10752B95DCB1] [APT] [Nettoyage de base] (.Panda Security, S.L..) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PlaTasks.exe [223200]
[MD5.1C0C72595E2D612F24DE10752B95DCB1] [APT] [Nettoyage de base1] (.Panda Security, S.L..) -- C:\Program Files\Panda Security\Panda Global Protection 2014\PlaTasks.exe [223200]
[MD5.2A81A0E089783C72528BB8AC1F06969F] [APT] [PCDRScheduledMaintenance] (.PC-Doctor, Inc..) -- C:\Program Files\PC-Doctor for Windows\pcdr5cuiw32.exe [2955760]
[MD5.C1028CBDF27FCF0AA6D39DF121D0B134] [APT] [RecoveryCD] (...) -- C:\Program Files\Hewlett-Packard\HP TCS\RemEngine.exe [25656]
[MD5.C1028CBDF27FCF0AA6D39DF121D0B134] [APT] [Registration] (...) -- C:\Program Files\Hewlett-Packard\HP TCS\RemEngine.exe [25656]
[MD5.4A8015E48FBE9A1D7F01DFADB8842B57] [APT] [WebReg Photosmart C3100 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\Digital Imaging\bin\hpqwrg.exe [693848]
[MD5.00000000000000000000000000000000] [APT] [XSVXMI] (...) -- C:\Users\HASSANIN\AppData\Roaming\XSVXMI.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{15A4ABA6-56EB-437A-8C39-7B065DB0760F}] (...) -- F:\Hassanin\Mes documents\Mes Programmes\SkypeSetup3.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{41CED368-F25E-433F-B7B3-2632F7822A23}] (...) -- C:\Users\HASSANIN\Downloads\SkypeSetup [1].exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{52281608-838D-4D89-AD36-5028C045A75C}] (...) -- G:\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6B4A83B8-741D-43A3-9E79-5D33BAAE0C57}] (...) -- C:\Users\HASSANIN\Downloads\Winzip 8\winzip80.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{F3754242-8F0C-4EE9-8C35-6CE6965FBFEE}] (...) -- G:\hpzsetup.exe (.not file.) [0]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1052]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1052]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1056]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1056]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core.job [1038]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000Core [1038]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA.job [1090]
O39 - APT: GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4063774554-4158981153-2877707243-1000UA [1090]
O39 - APT: GSJDWPCD - (...) -- C:\Windows\Tasks\GSJDWPCD.job [1698]
O39 - APT: GSJDWPCD - (...) -- C:\Windows\System32\Tasks\GSJDWPCD [1698]
O39 - APT: Nettoyage de base - (.Panda Security, S.L..) -- C:\Windows\Tasks\Nettoyage de base.job [500]
O39 - APT: Nettoyage de base - (.Panda Security, S.L..) -- C:\Windows\System32\Tasks\Nettoyage de base [500]
O39 - APT: Nettoyage de base1 - (.Panda Security, S.L..) -- C:\Windows\Tasks\Nettoyage de base1.job [500]
O39 - APT: Nettoyage de base1 - (.Panda Security, S.L..) -- C:\Windows\System32\Tasks\Nettoyage de base1 [500]
O39 - APT: PCDRScheduledMaintenance - (.PC-Doctor, Inc..) -- C:\Windows\Tasks\PCDRScheduledMaintenance.job [552]
O39 - APT: PCDRScheduledMaintenance - (.PC-Doctor, Inc..) -- C:\Windows\System32\Tasks\PCDRScheduledMaintenance [552]
O39 - APT: WebReg Photosmart C3100 series - (.Hewlett-Packard Co..) -- C:\Windows\Tasks\WebReg Photosmart C3100 series.job [314]
O39 - APT: WebReg Photosmart C3100 series - (.Hewlett-Packard Co..) -- C:\Windows\System32\Tasks\WebReg Photosmart C3100 series [314]
O39 - APT: XSVXMI - (...) -- C:\Windows\Tasks\XSVXMI.job [1350]
O39 - APT: XSVXMI - (...) -- C:\Windows\System32\Tasks\XSVXMI [1350]
~ Scheduled Task: 36 Scanned in 00mn 12s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Internet Explorer - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\system32\ie4uinit.exe
O40 - ASIC: Browser Customizations - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d'IEAK.) -- C:\Windows\system32\iedkcs32.dll
O40 - ASIC: LightScribe Control Panel - {10880D85-AAD9-4558-ABDC-2AB1552D831F} . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Common Files\LightScribe\LSRunOnce.exe
O40 - ASIC: Microsoft Windows Media Player 11.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows Mail 7 - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} . (.Google Inc. - Google Chrome Installer.) -- C:\Program Files\Google\Chrome\Application\40.0.2214.91\Installer\chrmstp.exe
O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11CF-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r12.) -- C:\Windows\system32\Macromed\Flash\Flash10a.ocx
~ Active Setup: 14 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (APPFLT) . (.Panda Security, S.L. - Panda APPFLT.) - C:\Windows\system32\Drivers\APPFLT.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: (DSAFLT) . (.Panda Security, S.L. - Pas de description.) - C:\Windows\system32\Drivers\DSAFLT.sys
O41 - Driver: (FNETMON) . (.Panda Security, S.L. - Panda FNetMon.) - C:\Windows\system32\Drivers\fnetmon.sys
O41 - Driver: (i8042prt) . (.Microsoft Corporation - Pilote de port i8042.) - C:\Windows\System32\DRIVERS\i8042prt.sys
O41 - Driver: (IDSFLT) . (.Panda Security, S.L. - Intrusion Detection System.) - C:\Windows\system32\Drivers\IDSFLT.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\System32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\System32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\System32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: (NETFLTDI) . (.Panda Security, S.L. - Panda TDI Filter.) - C:\Windows\system32\Drivers\NETFLTDI.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\System32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: (ShldDrv) . (.Panda Security, S.L. - PandaShield driver.) - C:\Windows\System32\DRIVERS\ShlDrv51.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\System32\DRIVERS\smb.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WNMFLT) . (.Panda Security, S.L. - Pas de description.) - C:\Windows\system32\Drivers\WNMFLT.sys
~ Drivers: 81 Scanned in 00mn 02s



---\\ Logiciels installés (O42)
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
O42 - Logiciel: ActiveCheck component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {254C37AA-6B72-4300-84F6-98A82419187E}
O42 - Logiciel: Adobe Acrobat 4.0 - (...) [HKLM] -- Adobe Acrobat 4.0
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Reader X (10.1.13) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AA1000000001}
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM] -- Audacity_is1
O42 - Logiciel: Avira SearchFree Toolbar v12.6.0.1898 - (.APN, LLC.) [HKLM] -- {41564952-412D-5637-00A7-A758B70C0600} =>Toolbar.Avira
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CDBurnerXP - (.Canneverbe Limited.) [HKLM] -- {CD543E5E-A025-48BD-AF47-8A67F99C973C}
O42 - Logiciel: Citrix Online Launcher - (.Citrix.) [HKLM] -- {3D5F07C3-1B93-47F8-9F8A-DE8E47BF1669}
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink DVD Suite Deluxe - (.CyberLink Corp..) [HKLM] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: CyberLink PowerCinema - (.CyberLink Corp..) [HKLM] -- InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: CyberLink PowerCinema - (.CyberLink Corp..) [HKLM] -- {2637C347-9DAD-11D6-9EA2-00055D0CA761}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: GG-Shutdown planner version 1.3 - (.Gilles GOUDELIN.) [HKLM] -- {938DC26B-E601-467B-A7AA-63672E2ABA96}_is1
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Google Talk Plugin - (.Google.) [HKLM] -- {0C5C1177-94C5-3EFB-A8BE-3F6AF1AF887F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}
O42 - Logiciel: HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {0295F89F-F698-4101-9A7D-49F407EC2D82}
O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM] -- {73A43E42-3658-4DD9-8551-FACDA3632538}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM] -- {B84739A3-F943-47E4-95D8-96381EF5AC48}
O42 - Logiciel: HP Customer Participation Program 8.0 - (.HP.) [HKLM] -- HPExtendedCapabilities
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM] -- WildTangent hp Master Uninstall =>.WildTangent
O42 - Logiciel: HP Imaging Device Functions 8.0 - (.HP.) [HKLM] -- HP Imaging Device Functions
O42 - Logiciel: HP OCR Software 8.0 - (.HP.) [HKLM] -- HPOCR
O42 - Logiciel: HP Photosmart Essential - (.HP.) [HKLM] -- {EB21A812-671B-4D08-B974-2A347F0D8F70} =>.Hewlett-Packard Co
O42 - Logiciel: HP Photosmart.All-In-One Driver Software 8.0 .A - (.HP.) [HKLM] -- {282E5AB2-8E47-4571-B6FA-6B512555B557} =>.Hewlett-Packard Co
O42 - Logiciel: HP Recovery Manager RSS - (.Hewlet Packard Company.) [HKLM] -- {A0640EC2-B97E-4FC1-AD14-227C9E386BB4}
O42 - Logiciel: HP Solution Center 8.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools
O42 - Logiciel: HP Total Care Setup - (.Hewlett-Packard.) [HKLM] -- {784BEA84-FA66-4B19-BB80-7B545F248AC6}
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {47F36D92-E58E-456D-B73C-3382737E4C42}
O42 - Logiciel: HPAsset component for HP Active Support Library - (.Hewlett-Packard.) [HKLM] -- {669D4A35-146B-4314-89F1-1AC3D7B88367}
O42 - Logiciel: HPSSupply - (.Nom de votre société.) [HKLM] -- {EB75DE50-5754-4F6F-875D-126EDF8E4CB3}
O42 - Logiciel: Java 7 Update 71 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F03217071FF}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Kaspersky Security Scan - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C4}
O42 - Logiciel: Kaspersky Security Scan - (.Kaspersky Lab.) [HKLM] -- {D1282694-0693-41A8-ABC1-6D1FFC1F65C4}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: Le Cloud d'Orange - Transfert de fichiers - (.Orange-France.) [HKCU] -- Le Cloud d'Orange - Transfert de fichiers
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM] -- {E0E55FC1-C53D-4F8D-B14B-B59C312747C8}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSXML 4.0 SP2 (KB927978) - (.Microsoft Corporation.) [HKLM] -- {37477865-A3F1-4772-AD43-AAFC6BCFF99F}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.4.1028 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft Lync Web App Plug-in - (.Microsoft Corporation.) [HKLM] -- {93D65BAD-7EE0-4B50-BA80-FA2485746A21}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {3B160861-7250-451E-B5EE-8B92BF30A710}
O42 - Logiciel: Mozilla Firefox 35.0 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 35.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MyFreeCodec - (...) [HKCU] -- MyFreeCodec
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Nero 7 Essentials - (.Nero AG.) [HKLM] -- {66EBD70F-A42C-475F-AEDF-277378151036}
O42 - Logiciel: Nero Burning ROM 15.0.0.3600 - (.Nero AG.) [HKLM] -- Nero Burning ROM 15.0.0.3600
O42 - Logiciel: Orange Player - (.video-a-la-demande.orange.fr.) [HKCU] -- 3056849027.video-a-la-demande.orange.fr
O42 - Logiciel: Orange Player Communicator - (.video-a-la-demande.orange.fr.) [HKCU] -- 3082282313.video-a-la-demande.orange.fr
O42 - Logiciel: Outils de diagnostic du matériel - (.PC-Doctor, Inc..) [HKLM] -- PC-Doctor for Windows
O42 - Logiciel: Panda Cloud Cleaner - (.Panda Security.) [HKLM] -- {92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1
O42 - Logiciel: Panda Global Protection 2014 - (.Panda Security.) [HKLM] -- {81A25967-DB85-4B48-A8A7-D25AC191DEE4}
O42 - Logiciel: Password Depot 7 - Panda Secure Vault Edition - (.AceBIT GmbH.) [HKLM] -- {A6144BFB-45FB-4DDB-BC4F-AB10E9FF0395}_is1
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: Python 2.6 pywin32-212 - (.Python Software Foundation.) [HKLM] -- pywin32-py2.6
O42 - Logiciel: Python 2.6.1 - (.Python Software Foundation.) [HKLM] -- {9CC89170-000B-457D-91F1-53691F85B223}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SAMSUNG USB Driver for Mobile Phones - (.SAMSUNG Electronics Co., Ltd..) [HKLM] -- {D0795B21-0CDA-4a92-AB9E-6E92D8111E44}
O42 - Logiciel: Salaat Time 2.7 - (.Salaat Time - www.salaattime.com.) [HKLM] -- {F993F285-0F98-4E13-9421-41DB36806EE3}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- InstallShield_{758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Samsung Kies - (.Samsung Electronics Co., Ltd..) [HKLM] -- {758C8301-2696-4855-AF45-534B1200980A}
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}
O42 - Logiciel: Serveur Média - (.PacketVideo.) [HKLM] -- TwonkyMediaServeur Média
O42 - Logiciel: Serviio - (...) [HKLM] -- Serviio
O42 - Logiciel: Skype(TM) 6.21 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Trojan Remover 6.9.1 - (.Simply Super Software.) [HKLM] -- Trojan Remover_is1
O42 - Logiciel: VLC media player 2.1.1 - (.VideoLAN.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: VideoPad Video Editor - (.NCH Software.) [HKLM] -- VideoPad
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM] -- WinPcapInst
O42 - Logiciel: WinRAR archiver - (...) [HKLM] -- WinRAR archiver
O42 - Logiciel: WinZip 18.0 - (.WinZip Computing, S.L. .) [HKLM] -- {CD95F661-A5C4-44F5-A6AA-ECDD91C240E0}
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
~ Logic: 86 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASProtect]
[HKCU\Software\AceBIT]
[HKCU\Software\Ad-Remover]
[HKCU\Software\Adobe]
[HKCU\Software\Ahead]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow]
[HKCU\Software\Audacity]
[HKCU\Software\Canneverbe Limited]
[HKCU\Software\Citrix]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Dnldstr_Aggregator]
[HKCU\Software\GG-Shutdown planner]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Softwar
0
Réponse 3 / 8
hayet05 Messages postés 45 Date d'inscription jeudi 14 novembre 2013 Statut Membre Dernière intervention 20 juillet 2015
25 janv. 2015 à 21:48
et voila j'ai crée le lien

Le lien a été créé: http://cjoint.com/?EAzv5AVvqKM
0
Réponse 4 / 8
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 1 616
25 janv. 2015 à 22:02
OK ! tu fais se qui suit , merci

1) passes adwcleaner


Désactive ton antivirus le temps du téléchargement et de l'utilisation.

- Télécharge AdwCleaner (d'Xplode) sur ton bureau.

- Lance le, clique sur Scanner puis patiente le temps du scan.

- Une fois le scan fini, clique sur Nettoyer. Le PC sera redémarré automatiquement et le rapport apparaître à la fin du redémarrage : poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S??].txt

Un tutoriel sur AdwCleaner est disponible ici : http://www.forum-entraide-informatique.com/support/adwcleaner-tutoriel-t875.html

Canned speech issu de FEI : https://www.forum-entraide-informatique.com/



2) passes adsfix


Désactive ton antivirus le temps du téléchargement et de l'utilisation.

Télécharge AdsFix sur ton bureau.

https://www.sosvirus.net/telecharger/adsfix/

Note : Enregistrer votre travail avant de continuer !

Lance AdsFix

Pour un pc assez infecté , il peut mettre plusieurs secondes à se charger

Inscrit ton pays

Vas sur options et cliques sur débloquer la suppression

Clique sur Nettoyer

Note : Patiente le temps du scan

Laisse travailler l'outil même s'il te parait bloqué, des fois plus de 2 heures pour faire le nettoyage

Si l'outil détecte un proxy que tu ne connais pas clic sur : "Supprimer le proxy"

Héberge le rapport C:\AdsFix_date_heure.txt sur https://www.cjoint.com/ puis donne le lien obtenu.




3) donnes des nouvelles de ton pc et postes un nouveau zhpdiag en cliquant sur COMPLET
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
hayet05 Messages postés 45 Date d'inscription jeudi 14 novembre 2013 Statut Membre Dernière intervention 20 juillet 2015
25 janv. 2015 à 22:36
J'ai installe AdwCleaner et voila le rapport mais l'autre il a pas voulu il me dit que panda n'est pas déactive alors que moi je les fait




# AdwCleaner v4.109 - Rapport créé le 25/01/2015 à 22:17:56
# Mis à jour le 24/01/2015 par Xplode
# Database : 2015-01-25.1 [Live]
# Système d'exploitation : Windows Vista (TM) Home Basic Service Pack 2 (32 bits)
# Nom d'utilisateur : HASSANIN - PC-DE-HASSANIN
# Exécuté depuis : C:\Users\HASSANIN\Downloads\adwcleaner_4.109.exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****


***** [ Tâches planifiées ] *****


***** [ Raccourcis ] *****


***** [ Registre ] *****


***** [ Navigateurs ] *****

-\\ Internet Explorer v9.0.8112.16599


-\\ Mozilla Firefox v35.0 (x86 fr)


-\\ Google Chrome v40.0.2214.91


*************************

AdwCleaner[R0].txt - [1901 octets] - [09/12/2013 17:52:12]
AdwCleaner[R10].txt - [2233 octets] - [07/03/2014 10:30:53]
AdwCleaner[R11].txt - [6248 octets] - [02/05/2014 14:57:40]
AdwCleaner[R12].txt - [2218 octets] - [02/05/2014 20:05:42]
AdwCleaner[R13].txt - [3372 octets] - [24/08/2014 13:09:12]
AdwCleaner[R14].txt - [14657 octets] - [18/01/2015 13:26:53]
AdwCleaner[R15].txt - [2409 octets] - [18/01/2015 13:52:04]
AdwCleaner[R16].txt - [2530 octets] - [19/01/2015 13:40:20]
AdwCleaner[R17].txt - [2652 octets] - [25/01/2015 13:31:56]
AdwCleaner[R18].txt - [2774 octets] - [25/01/2015 22:13:16]
AdwCleaner[R1].txt - [7597 octets] - [10/12/2013 17:28:43]
AdwCleaner[R2].txt - [6811 octets] - [08/01/2014 08:11:36]
AdwCleaner[R3].txt - [17057 octets] - [13/01/2014 14:52:09]
AdwCleaner[R4].txt - [17057 octets] - [13/01/2014 15:47:18]
AdwCleaner[R5].txt - [16598 octets] - [13/01/2014 21:42:46]
AdwCleaner[R6].txt - [16598 octets] - [14/01/2014 07:32:50]
AdwCleaner[R7].txt - [17044 octets] - [14/01/2014 12:30:03]
AdwCleaner[R8].txt - [5027 octets] - [14/01/2014 12:50:30]
AdwCleaner[R9].txt - [2663 octets] - [26/01/2014 09:43:18]
AdwCleaner[S0].txt - [1523 octets] - [09/12/2013 17:58:50]
AdwCleaner[S10].txt - [2486 octets] - [19/01/2015 13:46:11]
AdwCleaner[S11].txt - [2608 octets] - [25/01/2015 13:46:49]
AdwCleaner[S12].txt - [2047 octets] - [25/01/2015 22:17:56]
AdwCleaner[S1].txt - [7674 octets] - [10/12/2013 17:30:05]
AdwCleaner[S2].txt - [6422 octets] - [08/01/2014 08:21:46]
AdwCleaner[S3].txt - [5121 octets] - [14/01/2014 12:51:33]
AdwCleaner[S4].txt - [2671 octets] - [26/01/2014 09:45:34]
AdwCleaner[S5].txt - [2233 octets] - [07/03/2014 10:32:23]
AdwCleaner[S6].txt - [6094 octets] - [02/05/2014 16:42:15]
AdwCleaner[S7].txt - [3341 octets] - [24/08/2014 13:11:39]
AdwCleaner[S8].txt - [14906 octets] - [18/01/2015 13:36:44]
AdwCleaner[S9].txt - [2363 octets] - [18/01/2015 14:00:36]

########## EOF - C:\AdwCleaner\AdwCleaner[S12].txt - [2649 octets] ##########
0
Réponse 6 / 8
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 1 616
26 janv. 2015 à 08:15
fais adsfix dans se cas en mode sans échec avec prise en charge du réseau

tu sais comment faire ??
0
Réponse 7 / 8
hayet05 Messages postés 45 Date d'inscription jeudi 14 novembre 2013 Statut Membre Dernière intervention 20 juillet 2015
26 janv. 2015 à 14:28
Bonjour j'ai essayer de faire comme vous m'avez dit mais j'arrive pas
j'ai un analyse avec hijackthis et ZHPDiag

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 13:58:14, on 26/01/2015
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16599)

FIREFOX: 35.0 (x86 fr)
Boot mode: Normal

Running processes:
C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2014\WebProxy.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Panda Security\Panda Global Protection 2014\ApVxdWin.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
C:\Program Files\Salaat Time\SalaatTime.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
C:\Program Files\Serveur Media\twonkymediaserverconfig.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK32.EXE
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Serviio\bin\ServiioConsole.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Panda Security\Panda Global Protection 2014\PavBckPT.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Users\HASSANIN\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_16_0_0_296.exe
C:\Users\HASSANIN\Downloads\HijackThis.exe
C:\Windows\system32\WerCon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = auto:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Global Protection 2014\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Global Protection 2014\Inicio.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [HPADVISOR] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW,SYSTRAY
O4 - HKCU\..\Run: [Google Update] "C:\Users\HASSANIN\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SalaatTime] C:\Program Files\Salaat Time\SalaatTime.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [user] wscript.exe //B "C:\Users\HASSANIN\AppData\Roaming\user.vbs"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KSS] "C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
O4 - HKCU\..\RunOnce: [Adobe Speed Launcher] 1422276359
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Startup: Serviio.lnk = C:\Program Files\Serviio\bin\ServiioConsole.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe
O4 - Global Startup: Agent Serveur Média.lnk = C:\Program Files\Serveur Media\twonkymediaserverconfig.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK32.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Easybits Shared Services for Windows (ezSharedSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Kaspersky Security Scan Service (KSS) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2014\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files\Panda Security\Panda Global Protection 2014\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2014\pavsrvx86.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files\panda security\panda global protection 2014\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Global Protection 2014\psimsvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2014\PskSvc.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Riverbed Technology, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Serveur Média - PacketVideo - C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe
O23 - Service: Serviio - Unknown owner - C:\Program Files\Serviio\bin\ServiioService.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2014\TPSrv.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Windows Defender (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100 (WPFFontCache_v0400) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
0
Réponse 8 / 8
jacques.gache Messages postés 33453 Date d'inscription mardi 13 novembre 2007 Statut Contributeur sécurité Dernière intervention 25 janvier 2016 1 616
26 janv. 2015 à 20:41
il est ou le problème pour le mode sans échec avec prise en charge du réseau ??

et puis pour poster un zhpdiag toujours l'héberger sur cjoint ou autre !!car sinon il est pas complet!!

pour le mode sans échec si tu sais pas faire il fallait le dire !!

pour démarrer en mode sans échec tu fais comme cela !!

si ton pc est un pc fixe "tour" il faut un clavier filaire car les sans fils sont pas détecté par le bios avant le démarrage de windows donc pas de F8 possible!!

.Cliques sur Démarrer
.Cliques sur Arrêter
.Sélectionnes Redémarrer et au redémarrage
.Appuis sur la touche F8 ou F5 celons les marques de pc sans discontinuer "1 appuis seconde" dès qu'un écran de texte apparaît puis disparaît
.Utilises les touches de direction pour sélectionner mode sans échec avec prise en charge du réseau
.puis appuis sur ENTRÉE
.Il faudra choisir ta session habituelle, pas le compte "Administrateur" ou une autre
une fois démarré ne t'inquiète pas si les couleurs et les icônes ne sont pas comme d'habitude
0

Discussions similaires

comment trouver une personne qui peut m'aider
blizzar -
N0iZe -

1 réponse
ERREUR 0x80070643
StellaChris -
brucine -

1 réponse
Probleme upload images avec Wordpress
Monrag -
Maxmared -

15 réponses
Je cherche quelqu'un pour m'aider à faire une intro youtube.
albasse42 -
Squiiikman -

2 réponses
Supprimer l'Assistant Google sur Android.
NickelPLL -
Nathan -

12 réponses