.
Rapport
ZHPDiag
Je viens de transmettre un rapport ZHPDiag, probleme de lenteur et impossibilite de demarrer les applications, et
internet explorer aussi. Reste en page blanche sans reponse.
Merci a toux ceux qui pourront m aider a analyse ZHPDiag, et me donne la solution du problème. Lenteur et impossibilité de connexion a internet. Lenteur importante.
Merci de vos infos
~ Rapport de ZHPDiag v2015.6.4.54 - Nicolas Coolman (31/05/2015)
~ Lancé par Tony (09/08/2015 10:12:57)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Nouvelle version disponible
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17914 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 8Q2F3
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Ultimate, 32-bit Service Pack 1 (Build 7601)
---\\ Logiciels de protection du système
Windows Defender W7 (Activate)
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Reader XI
---\\ Informations sur le système
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2940 MB (45% free)
System Restore: Activé (Enable)
System drive C: has 44 GB (51%) free of 85 GB
---\\ Mode de connexion au système
~ Computer Name: PORTABLETONY
~ User Name: Tony
~ All Users Names: Tony, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Tony\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Tony\AppData\Roaming\
~ %Desktop% : C:\Users\Tony\Desktop\
~ %Favorites% : C:\Users\Tony\Favorites\
~ %LocalAppData% : C:\Users\Tony\AppData\Local\
~ %StartMenu% : C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 44 Go of 85 Go)
D: Hard drive, Flash drive, Thumb drive (Free 67 Go of 186 Go)
E: CD-ROM drive (Free 0 Go of 2 Go)
F: Hard drive, Flash drive, Thumb drive (Free 49 Go of 195 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 43 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 06:30:54.) -- C:\Windows\Explorer.exe [2616320]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.63B01F72FD727D5736DBEF54174D8F93] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.19/06/2015 - 18:15:43.) -- C:\Windows\System32\wininet.dll [1951232]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 02:39:27.) -- C:\Windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 13:21:24.) -- C:\Windows\System32\sppcomapi.dll [193536]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:36:07.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 09:38:10.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 09:42:32.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 10:59:29.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.01C5B803F6E1FDF8F16F0763DA9B997D] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.01/07/2015 - 20:18:29.) -- C:\Windows\system32\Drivers\MRxSmb.sys [124416]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 09:39:44.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:18:22.) -- C:\Windows\system32\Drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.B973FCFC50DC1434E1970A146F7E3885] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 11:24:46.) -- C:\Windows\system32\Drivers\rdpdr.sys [133632]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 09:39:17.) -- C:\Windows\system32\Drivers\tdx.sys [74752]
[MD5.F497F67932C6FA693D7DE2780631CFE7] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 13:30:16.) -- C:\Windows\system32\Drivers\volsnap.sys [245632]
~ Generic Processes: Scanned in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/4
~ Mes Favoris (My Favorites) : 1/72
~ Mes Documents (My Documents) : 2/11
~ Mon Bureau (My Desktop) : 3/794
~ Menu demarrer (Programs) : 1/32
~ Hidden Files: Scanned in 00mn 01s
---\\ Processus lancés
[MD5.27044650FA30414BEC7F9BEB7F937386] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [172064] [PID.2620]
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\system32\DllHost.exe [7168] [PID.196]
[MD5.A7B6589F92C9CB498CDBA42EBEB23EE4] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [815312] [PID.2404]
[MD5.06C2BB8F9089C3C091584F8AD5C1A01E] - (.Microsoft Corporation - Microsoft Outlook.) -- C:\Program Files\Microsoft Office\Office14\OUTLOOK.exe [16001192] [PID.3412]
[MD5.12E2FC1F74265881402DE856D01EFFFE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8214016] [PID.5060]
~ Processes Running: Scanned in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.51.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.51.2] - (.Oracle Corporation - Next Generation Java Plug-in 11.51.2 for Mozilla browsers.) -- C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@microsoft.com/SharePoint,version=14.0] - (.Microsoft Corporation - The plug-in allows you to open and edit files using Microsoft Office a.) -- C:\Program Files\Microsoft Office\Office14\NPSPWRAP.dll
P2 - FPN: [HKLM] [@Nero.com/KM] - (.Nero AG - Plug-in for detecting Nero Kwik Media..) -- C:\Program Files\Common Files\Nero\BrowserPlugin\npBrowserPlugin.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.12.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
P2 - FPN: [HKLM] [PDF Architect 2] - (.pdfforge GmbH - PDF Architect 2.) -- C:\Program Files\PDF Architect 2\np-previewer.dll
~ Firefox Browser: 8 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = http://www.google.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.pdfforge GmbH - PDF Architect 2.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll
~ BHO: 4 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [Tony]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 1 Scanned in 00mn 02s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKCU\..\Run: [FrameWorkService] Clé orpheline
O4 - HKCU\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2921974886-1332853579-3120648741-1001\..\Run: [FrameWorkService] Clé orpheline
O4 - HKUS\S-1-5-21-2921974886-1332853579-3120648741-1001\..\Run: [DAEMON Tools Ultra Agent] . (.Disc Soft Ltd - DAEMON Tools Ultra Agent.) -- C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office14\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{200FE21A-5978-4661-8B48-97D88A1FD3A4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{24673D66-E659-4DB8-AB19-24385824F09F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{200FE21A-5978-4661-8B48-97D88A1FD3A4}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{24673D66-E659-4DB8-AB19-24385824F09F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{24673D66-E659-4DB8-AB19-24385824F09F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: InterBase Guardian (InterBaseGuardian) . (...) - F:\BUILDER C++\bin\ibguard.exe (.not file.)
O23 - Service: C:\Program Files\Nero\Update\NASvc.exe (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: S7 HSP Service (s7hspsvx) . (...) - C:\Program Files\Siemens\Step7\s7bin\s7hspsvx.exe (.not file.)
O23 - Service: Usb PLC (UsbConnect) . (.Schneider Electric Industries SAS - USB PLC NT Service.) - C:\Windows\system32\UsbConnect.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Services: 6 Scanned in 00mn 03s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104]
[MD5.07605ABEB10FC533881C91F19DECF69A] [APT] [AutoKMS] (...) -- C:\WINDOWS\AutoKMS\AutoKMS.exe [1923584] =>Hacktool.AutoKMS
[MD5.00000000000000000000000000000000] [APT] [{1CBA7F52-D4F5-4F1B-9FBE-6E53721C410A}] (...) -- F:\BUILDER C++\ibuninst.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{204B464C-7928-4874-8809-AEB376E86B34}] (...) -- C:\Users\Tony\Desktop\Vega\Sony.Vegas.Pro.v13.0.310\Sony.Vegas.Pro.v13.0.310.x64.10TH.BIRTHDAY-DVT\vegaspro13.0.310_64bit.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{49177375-E6F7-44E7-9F8C-3EF0FDC45AE3}] (...) -- C:\Users\Tony\AppData\Roaming\mystartsearch\UninstallManager.exe (.not file.) [0] =>PUP.StartSearch
[MD5.00000000000000000000000000000000] [APT] [{4BCF5AF1-4909-498D-835D-B8EBA9C80809}] (...) -- C:\Program Files\EA Games\Need for Speed Most Wanted\NFS13.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{545E225A-9E90-4122-B003-06C42199824D}] (...) -- C:\Users\Tony\Desktop\Vega\Sony.Vegas.Pro.v13.0.310\Sony.Vegas.Pro.v13.0.310.x64.10TH.BIRTHDAY-DVT\vegaspro13.0.310_64bit.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{54ECB68B-95F7-4EF8-BDF6-F187B0745299}] (...) -- C:\Windows\system32\XWAYMgr.cpl (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{66A1259E-EAD6-4E31-8801-D8CD7C9EB241}] (...) -- C:\Users\Tony\Desktop\VEGAS\Sony Vegas Pro 10 Portable\Sony Vegas Pro 10.0a Build 387 Portable.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{672C5BF8-A5BF-4507-9A07-4A2870A74187}] (...) -- C:\PL7\PL7PRO44\exe\pl7pro.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{67CB2527-7B96-4603-B46D-0BC4085FDC85}] (...) -- C:\Users\Tony\Desktop\Vega\Sony.Vegas.Pro.v13.0.310\Sony.Vegas.Pro.v13.0.310.x64.10TH.BIRTHDAY-DVT\vegaspro13.0.310_64bit.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{95409EC9-92B9-4319-BCA9-63FC940C2523}] (...) -- C:\Users\Tony\Desktop\musique USB\Maman.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{AF8DC8DD-A76D-49EE-BCE0-DA7E40E6BEAC}] (...) -- C:\Users\Tony\Desktop\112æ\SVG10.0AUpByAndorria\Sony Vegas Pro 10.0a Portable.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{BE5041B8-104F-4549-8D90-FFE255BB3FAF}] (...) -- C:\Program Files\EA Games\Need for Speed Most Wanted\NFS13.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C3A5192E-77F7-42D9-93CA-DC2E5FC19769}] (...) -- C:\Users\Tony\Desktop\Vega\Sony.Vegas.Pro.v13.0.310\Sony.Vegas.Pro.v13.0.310.x64.10TH.BIRTHDAY-DVT\vegaspro13.0.310_64bit.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C52AC18B-7853-49DE-8908-B2642B6243E5}] (...) -- C:\Users\Tony\Desktop\Builder\Builder6-1\INSTALL\SETUP.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{EC0F086C-DD06-4309-9943-011941054B78}] (...) -- C:\Users\Tony\Desktop\Builder\Builder6-1\INSTALL.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{ECEE7A90-392B-4B65-8707-ACADD5FFB1A2}] (...) -- C:\Users\Tony\AppData\Roaming\sweet-page\UninstallManager.exe (.not file.) [0] =>PUP.SweetPage
[MD5.C20F5CD1265B5EFC757F41DFB9E347BB] [APT] [Nero Info] (.Nero AG.) -- C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe [3227472]
O39 - APT: AutoKMS - (...) -- C:\Windows\Tasks\AutoKMS.job [268] =>Hacktool.AutoKMS
O39 - APT: AutoKMS - (...) -- C:\Windows\System32\Tasks\AutoKMS [268] =>Hacktool.AutoKMS
~ Scheduled Task: 21 Scanned in 00mn 04s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\System32\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
O40 - ASIC: Macromedia Shockwave Flash - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 18.0 r0.) -- C:\Windows\system32\Macromed\Flash\Flash32_18_0_0_209.ocx
~ Active Setup: 12 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dpmconv) . (.SIEMENS AG - DPM Kernel Mode Driver.) - C:\Windows\System32\DRIVERS\dpmconv32.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vsnl2ada) . (.SIEMENS AG - FDLAda Kernel Mode Driver (x86).) - C:\Windows\System32\DRIVERS\vsnl2ada32.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 69 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {7B77622E-DE90-48EA-B2C7-227B1DE58A01}
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM] -- com.adobe.downloadassistant.AdobeDownloadAssistant
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM] -- {E68EADA6-63A4-F6D3-FE12-968B879F7AD6}
O42 - Logiciel: Adobe Reader XI (11.0.12) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824147215}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM] -- {46F044A5-CE8B-4196-984E-5BD6525E361D}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Architecte Studio - (.Micro Application.) [HKLM] -- {C5E3D824-ADB0-4DFF-AD69-98557D6436ED}
O42 - Logiciel: DAEMON Tools Ultra - (.Disc Soft Ltd.) [HKLM] -- DAEMON Tools Ultra
O42 - Logiciel: DivX - (.DivXNetworks, Inc..) [HKLM] -- {7B63B2922B174135AFC0E1377DD81EC2}
O42 - Logiciel: DivX Player - (.DivXNetworks, Inc..) [HKLM] -- {8ADFC4160D694100B5B8A22DE9DCABD9}
O42 - Logiciel: Driver Manager - (.Schneider Electric.) [HKLM] -- {F1365987-E481-441D-9AFF-2915325128B6} =>PUP.DriverManager
O42 - Logiciel: EVEREST Ultimate Edition v4.50 - (.Lavalys, Inc..) [HKLM] -- EVEREST Ultimate Edition_is1
O42 - Logiciel: Fox Audio Converter v7.4.0.10 - (...) [HKLM] -- Fox Audio Converter_is1
O42 - Logiciel: Free PDF to Word Converter 5.1.0.383 - (.Smart Soft.) [HKLM] -- Free PDF to Word Converter_is1 =>PUP.PDFtoWordConverter
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM] -- {5756F356-10A2-4859-A782-B4CD4ECA6C85}
O42 - Logiciel: JPEG to PDF - (.jpegtopdf.com.) [HKLM] -- {7A2B6DE3-9303-46E8-9274-0112618AA7FD}_is1
O42 - Logiciel: Java 8 Update 51 - (.Oracle Corporation.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83218051F0}
O42 - Logiciel: Logiciel Intel® PROSet/Wireless - (.Intel Corporation.) [HKLM] -- {2a8eadd2-d3c0-4607-b34a-6a4775796740}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {5DF7AA5E-A1CB-11E0-A7D6-0013D3D69929}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {7032B400-11EC-11E0-A9BF-0013D3D69929}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {7FF7370F-4C53-11E1-B6FF-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {822CAAF0-7F67-11E1-AC94-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {C12C67CF-7C69-11E3-A0CE-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {C70CC6E1-CBFB-11E3-91EC-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {D880D80F-C0E2-11E1-8A91-F04DA23A5C58}
O42 - Logiciel: MSVCRT Redists - (.Sony Creative Software Inc..) [HKLM] -- {F2F7D8E1-03A2-11E1-AA2E-F04DA23A5C58}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser - (.Microsoft Corporation.) [HKLM] -- {196467F1-C11F-4F76-858B-5812ADC83B94}
O42 - Logiciel: Microsoft Money - (.Microsoft.) [HKLM] -- Money2005b
O42 - Logiciel: Microsoft Photo Premium 10 - (.Microsoft Corporation.) [HKLM] -- PictureItPrem_v10
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Nero 2014 - (.Nero AG.) [HKLM] -- {F384C1E1-3A16-4073-95C3-7271FE0ED4C2}
O42 - Logiciel: Nero Audio Pack 1 - (.Nero AG.) [HKLM] -- {A7A0BF2E-31CC-49E3-9913-52C503EB969D}
O42 - Logiciel: Nero Blu-ray Player - (.Nero AG.) [HKLM] -- {A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}
O42 - Logiciel: Nero Blu-ray Player Help (CHM) - (.Nero AG.) [HKLM] -- {36DA8969-4DCD-48FF-894A-6BD3936050C3}
O42 - Logiciel: Nero Burning Core - (.Nero AG.) [HKLM] -- {B166374C-105E-445E-8E5D-A86CA5742645}
O42 - Logiciel: Nero Burning ROM - (.Nero AG.) [HKLM] -- {F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}
O42 - Logiciel: Nero Burning ROM Help (CHM) - (.Nero AG.) [HKLM] -- {FA78CC15-9F90-443B-BA61-A66595F06432}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM] -- {CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Disc Menus Basic - (.Nero AG.) [HKLM] -- {E17BCB76-9924-4BD5-B6D6-50D3407B4E74}
O42 - Logiciel: Nero Disc to Device - (.Nero AG.) [HKLM] -- {C03E2FB3-250B-44A1-8B9E-61DFCD544133}
O42 - Logiciel: Nero Effects Basic - (.Nero AG.) [HKLM] -- {29F67D84-3A70-456E-806A-52301B02070B}
O42 - Logiciel: Nero Express - (.Nero AG.) [HKLM] -- {ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}
O42 - Logiciel: Nero Express Help (CHM) - (.Nero AG.) [HKLM] -- {4CA46F9F-174C-4766-9EA2-2325DF414B9E}
O42 - Logiciel: Nero Info - (.Nero AG.) [HKLM] -- {B791E0AB-87A9-41A4-8D98-D13C2E37D928}
O42 - Logiciel: Nero Kwik Themes Basic - (.Nero AG.) [HKLM] -- {1B6F5E51-575E-4693-BCA2-7543570D076D}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM] -- {D5115C78-2D22-4668-A5E2-6C87DED3ED1B}
O42 - Logiciel: Nero MediaHome - (.Nero AG.) [HKLM] -- {4DB136AF-389B-4A34-AE34-50123559D08E}
O42 - Logiciel: Nero MediaHome Help (CHM) - (.Nero AG.) [HKLM] -- {75CA8AAE-5346-4312-A9A8-5CF89955930F}
O42 - Logiciel: Nero PiP Effects Basic - (.Nero AG.) [HKLM] -- {ACE49D50-19CD-44A6-B192-46F985283B26}
O42 - Logiciel: Nero Recode - (.Nero AG.) [HKLM] -- {40E51513-D917-4563-84F6-4EF6ADD46E2F}
O42 - Logiciel: Nero Recode Help (CHM) - (.Nero AG.) [HKLM] -- {0CF7D22B-977C-43B2-9219-E03017FBAC6D}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM] -- {581DCE84-1948-4891-A4A7-A1222CC137C5}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM] -- {F69D4104-5394-4F7C-801C-D96DC92E7F69}
O42 - Logiciel: Nero SharedVideoCodecs - (.Nero AG.) [HKLM] -- {2432E589-6256-4513-B0BF-EFA8E325D5F0}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: Nero Video - (.Nero AG.) [HKLM] -- {511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}
O42 - Logiciel: Nero Video Help (CHM) - (.Nero AG.) [HKLM] -- {5446D3AF-B060-49B6-9535-F300E1532022}
O42 - Logiciel: PDF Architect 2 - (.pdfforge GmbH.) [HKLM] -- PDF Architect 2
O42 - Logiciel: PDF Architect 2 View Module - (.pdfforge GmbH.) [HKLM] -- {C960FF38-431D-429D-AD1F-FBD12A45B7C5}
O42 - Logiciel: PDFCreator - (.pdfforge.) [HKLM] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}
O42 - Logiciel: PL-2303 USB-to-Serial - (...) [HKLM] -- {ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM] -- {111EE7DF-FC45-40C7-98A7-753AC46B12FB}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: VLC media player 0.9.9 - (.VideoLAN Team.) [HKLM] -- VLC media player =>.VideoLAN
O42 - Logiciel: Vegas Movie Studio HD Platinum 11.0 - (.Sony.) [HKLM] -- {7EAC84DE-7F67-11E1-97EE-F04DA23A5C58}
O42 - Logiciel: WBFS Manager 3.0 - (.AlexDP.) [HKLM] -- WBFS Manager 3.0
O42 - Logiciel: WinRAR 5.11 (32-bit) - (.win.rar GmbH.) [HKLM] -- WinRAR archiver
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent =>P2P.BitTorrent
~ Logic: 26 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe Lightroom]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BitTorrent] =>P2P.BitTorrent
[HKCU\Software\Borland]
[HKCU\Software\CDDB]
[HKCU\Software\CapeSoft]
[HKCU\Software\Chromium]
[HKCU\Software\Classes]
[HKCU\Software\CoinisRevShare]
[HKCU\Software\Convar]
[HKCU\Software\DIMEGLIO]
[HKCU\Software\DirectShow]
[HKCU\Software\Disc Soft]
[HKCU\Software\DivXNetworks]
[HKCU\Software\EPSON Software Updater]
[HKCU\Software\EPSON]
[HKCU\Software\FLEXnet]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Lavalys]
[HKCU\Software\Macromedia]
[HKCU\Software\Media Crawler Org.] =>PUP.GigaClicks
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\PDF Architect 2]
[HKCU\Software\PDFCreator]
[HKCU\Software\PKWARE]
[HKCU\Software\Policies]
[HKCU\Software\RoyalTek]
[HKCU\Software\Schneider Electric]
[HKCU\Software\Siemens]
[HKCU\Software\Skype]
[HKCU\Software\Smart Soft]
[HKCU\Software\Sony Creative Software]
[HKCU\Software\TeleCharger]
[HKCU\Software\Toocharger]
[HKCU\Software\Trolltech]
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\WebApp]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\sysM32]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Agere]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Big Fish Games]
[HKLM\Software\Borland]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Disc Soft]
[HKLM\Software\DivXNetworks]
[HKLM\Software\EA Games]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\FDT]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LSI]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\MarcoLavoie]
[HKLM\Software\MediaCrawler]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Nero]
[HKLM\Software\ODBC]
[HKLM\Software\PDFCreator]
[HKLM\Software\PKWARE]
[HKLM\Software\Policies]
[HKLM\Software\Prolific Technology INC]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\S3R521]
[HKLM\Software\SafetySearch]
[HKLM\Software\Schneider Electric]
[HKLM\Software\Siemens]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Creative Software]
[HKLM\Software\TwonkyMedia]
[HKLM\Software\VST]
[HKLM\Software\Valve]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node]
~ Key Software: 210 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 13/08/2014 - 11:13:16 - [] ----D C:\Program Files\4 Elements
O43 - CFD: 14/07/2015 - 18:38:54 - [] ----D C:\Program Files\Adobe
O43 - CFD: 04/02/2015 - 17:09:02 - [] ----D C:\Program Files\Adobe Download Assistant
O43 - CFD: 28/07/2014 - 12:50:08 - [] ----D C:\Program Files\Apple Software Update =>.Apple Inc
O43 - CFD: 20/10/2014 - 21:18:24 - [] ----D C:\Program Files\Borland
O43 - CFD: 20/10/2014 - 21:01:12 - [] ----D C:\Program Files\Borland CBuilder6 Evaluation
O43 - CFD: 05/07/2014 - 16:31:48 - [] ----D C:\Program Files\Cisco
O43 - CFD: 19/07/2015 - 14:33:36 - [] ----D C:\Program Files\Common Files
O43 - CFD: 05/01/2015 - 11:33:01 - [] ----D C:\Program Files\Convar
O43 - CFD: 21/10/2014 - 21:14:52 - [] ----D C:\Program Files\DAEMON Tools Ultra
O43 - CFD: 23/02/2015 - 19:15:03 - [] ----D C:\Program Files\Danew
O43 - CFD: 06/07/2014 - 20:56:50 - [] ----D C:\Program Files\DivX
O43 - CFD: 05/07/2014 - 09:24:01 - [] ----D C:\Program Files\DVD Maker
O43 - CFD: 02/11/2014 - 19:57:28 - [] ----D C:\Program Files\EA Games
O43 - CFD: 05/08/2014 - 17:16:37 - [0] ----D C:\Program Files\epson
O43 - CFD: 04/07/2014 - 19:25:17 - [] -SH-D C:\Program Files\Fichiers communs
O43 - CFD: 30/08/2014 - 20:28:14 - [] ----D C:\Program Files\Fox Audio Converter
O43 - CFD: 03/03/2015 - 22:04:36 - [] ----D C:\Program Files\Free PDF to Word Converter =>PUP.PDFtoWordConverter
O43 - CFD: 23/02/2015 - 19:22:21 - [] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 05/07/2014 - 16:31:48 - [] ----D C:\Program Files\Intel
O43 - CFD: 19/07/2015 - 11:50:32 - [] ----D C:\Program Files\Internet Explorer
O43 - CFD: 19/07/2015 - 14:33:59 - [] ----D C:\Program Files\Java
O43 - CFD: 07/08/2014 - 12:26:24 - [] ----D C:\Program Files\JPEG to PDF
O43 - CFD: 20/03/2015 - 07:24:20 - [0] ----D C:\Program Files\LARP
O43 - CFD: 14/07/2014 - 10:43:56 - [] ----D C:\Program Files\Lavalys
O43 - CFD: 26/09/2014 - 19:09:28 - [] ----D C:\Program Files\Media Crawler
O43 - CFD: 29/11/2014 - 13:29:29 - [] ----D C:\Program Files\Micro Application
O43 - CFD: 06/07/2014 - 20:02:44 - [] ----D C:\Program Files\Microsoft Analysis Services
O43 - CFD: 14/07/2009 - 11:01:21 - [] ----D C:\Program Files\Microsoft Games
O43 - CFD: 05/07/2014 - 12:54:16 - [] ----D C:\Program Files\Microsoft Money 2005
O43 - CFD: 06/07/2014 - 20:05:06 - [] ----D C:\Program Files\Microsoft Office
O43 - CFD: 14/07/2014 - 11:11:32 - [] ----D C:\Program Files\Microsoft Picture It! 10
O43 - CFD: 14/04/2015 - 20:10:28 - [] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 05/07/2014 - 12:17:24 - [] ----D C:\Program Files\Microsoft Sync Framework
O43 - CFD: 05/07/2014 - 12:17:24 - [] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 05/07/2014 - 19:20:08 - [] ----D C:\Program Files\MSBuild
O43 - CFD: 09/02/2015 - 20:38:24 - [] ----D C:\Program Files\MSECache
O43 - CFD: 05/07/2014 - 13:47:40 - [] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 05/07/2014 - 14:09:42 - [] ----D C:\Program Files\Nero
O43 - CFD: 07/08/2014 - 13:18:43 - [] ----D C:\Program Files\PDF Architect 2
O43 - CFD: 05/04/2015 - 20:53:13 - [] ----D C:\Program Files\PDFCreator
O43 - CFD: 08/11/2014 - 21:05:26 - [] ----D C:\Program Files\Prosyst
O43 - CFD: 28/07/2014 - 12:51:35 - [] ----D C:\Program Files\QuickTime
O43 - CFD: 02/11/2014 - 12:52:30 - [] ----D C:\Program Files\RailSimulator.com
O43 - CFD: 16/03/2015 - 08:58:33 - [] ----D C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 06:52:30 - [] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 20/03/2015 - 07:06:27 - [] ----D C:\Program Files\Schneider Electric
O43 - CFD: 26/12/2014 - 09:56:02 - [] ----D C:\Program Files\Siemens
O43 - CFD: 27/02/2015 - 12:18:04 - [] ----D C:\Program Files\Sony
O43 - CFD: 05/01/2015 - 08:34:16 - [] ----D C:\Program Files\Stellar Phoenix Windows Data Recovery
O43 - CFD: 07/04/2015 - 14:54:56 - [] ----D C:\Program Files\Tetris 3000
O43 - CFD: 14/07/2009 - 06:53:23 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 06/07/2014 - 20:58:37 - [] ----D C:\Program Files\VideoLAN
O43 - CFD: 28/12/2014 - 10:10:30 - [] ----D C:\Program Files\WBFS
O43 - CFD: 05/07/2014 - 11:19:30 - [] ----D C:\Program Files\Windows Defender
O43 - CFD: 20/05/2015 - 11:23:27 - [] ----D C:\Program Files\Windows Journal
O43 - CFD: 05/07/2014 - 09:24:01 - [] ----D C:\Program Files\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/06/2015 - 07:38:33 - [] ----D C:\Program Files\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 04/07/2014 - 19:25:17 - [] ----D C:\Program Files\Windows NT
O43 - CFD: 05/07/2014 - 09:24:01 - [] ----D C:\Program Files\Windows Photo Viewer
O43 - CFD: 05/07/2014 - 09:24:01 - [] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 05/07/2014 - 09:24:01 - [] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 05/09/2014 - 20:23:00 - [] ----D C:\Program Files\WinRAR
O43 - CFD: 09/08/2015 - 10:12:29 - [] ----D C:\Program Files\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 05/10/2014 - 15:47:00 - [] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 04/02/2015 - 17:08:54 - [] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 28/07/2014 - 12:50:21 - [] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 20/10/2014 - 21:18:24 - [] ----D C:\Program Files\Common Files\Borland Shared
O43 - CFD: 28/08/2014 - 19:43:34 - [] ----D C:\Program Files\Common Files\DESIGNER
O43 - CFD: 05/08/2014 - 17:04:28 - [] ----D C:\Program Files\Common Files\EPSON
O43 - CFD: 06/04/2015 - 18:38:45 - [] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 05/07/2014 - 16:31:48 - [] ----D C:\Program Files\Common Files\Intel
O43 - CFD: 19/07/2015 - 14:33:36 - [] ----D C:\Program Files\Common Files\Java
O43 - CFD: 07/10/2014 - 19:00:30 - [] ----D C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 27/08/2014 - 21:24:42 - [] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 05/07/2014 - 14:11:07 - [] ----D C:\Program Files\Common Files\Nero
O43 - CFD: 20/03/2015 - 07:23:48 - [] ----D C:\Program Files\Common Files\Schneider Electric Shared
O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D C:\Program Files\Common Files\Services
O43 - CFD: 26/12/2014 - 09:56:38 - [] ----D C:\Program Files\Common Files\Siemens
O43 - CFD: 14/07/2009 - 04:37:05 - [] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 27/08/2014 - 21:29:15 - [] ----D C:\Program Files\Common Files\System
O43 - CFD: 04/02/2015 - 17:09:04 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 28/07/2014 - 12:50:08 - [] ----D C:\ProgramData\Apple
O43 - CFD: 28/07/2014 - 12:51:16 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 13/08/2014 - 17:16:22 - [] ----D C:\ProgramData\Big Fish
O43 - CFD: 04/07/2014 - 19:25:17 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 07/10/2014 - 18:43:55 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 21/10/2014 - 21:15:26 - [0] ----D C:\ProgramData\DAEMON Tools Ult
O43 - CFD: 21/10/2014 - 21:18:49 - [] ----D C:\ProgramData\DAEMON Tools Ultra
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 05/08/2014 - 17:16:27 - [] ----D C:\ProgramData\EPSON
O43 - CFD: 04/07/2014 - 19:25:17 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 11/10/2014 - 12:16:31 - [] ----D C:\ProgramData\FLEXnet
O43 - CFD: 07/10/2014 - 18:52:35 - [] ----D C:\ProgramData\InstallShield
O43 - CFD: 05/07/2014 - 16:31:48 - [] ----D C:\ProgramData\Intel
O43 - CFD: 04/07/2014 - 19:25:17 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 14/06/2015 - 18:59:33 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 18/10/2014 - 08:43:44 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 04/07/2014 - 19:25:17 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 05/07/2014 - 14:15:08 - [] ----D C:\ProgramData\Nero
O43 - CFD: 19/07/2015 - 14:34:21 - [] ----D C:\ProgramData\Oracle
O43 - CFD: 05/07/2014 - 16:30:08 - [] ----D C:\ProgramData\Package Cache
O43 - CFD: 07/08/2014 - 13:17:43 - [] ----D C:\ProgramData\PDF Architect 2
O43 - CFD: 17/11/2014 - 20:53:59 - [0] ----D C:\ProgramData\PKWARE
O43 - CFD: 13/08/2014 - 11:02:25 - [] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 05/07/2014 - 16:32:18 - [] ----D C:\ProgramData\Roaming
O43 - CFD: 18/10/2014 - 09:06:05 - [] ----D C:\ProgramData\Schneider Electric
O43 - CFD: 16/11/2014 - 11:22:33 - [] ----D C:\ProgramData\Siemens
O43 - CFD: 14/02/2015 - 18:06:48 - [] ----D C:\ProgramData\Skype
O43 - CFD: 03/03/2015 - 22:04:36 - [] ----D C:\ProgramData\Smart Soft
O43 - CFD: 24/10/2014 - 16:56:20 - [] ----D C:\ProgramData\Sony
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 05/07/2014 - 11:42:31 - [] ----D C:\ProgramData\Sun
O43 - CFD: 27/09/2014 - 09:56:55 - [0] ---AD C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 06:53:55 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 29/11/2014 - 10:04:32 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 04/07/2014 - 19:20:41 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 21/10/2014 - 21:13:13 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Ultra
O43 - CFD: 06/07/2014 - 20:56:51 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
O43 - CFD: 05/08/2014 - 17:16:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
O43 - CFD: 05/08/2014 - 17:14:50 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 04/07/2014 - 19:20:39 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 05/07/2014 - 16:31:55 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
O43 - CFD: 21/10/2014 - 18:10:42 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\InterBase
O43 - CFD: 14/05/2015 - 21:15:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
O43 - CFD: 07/08/2014 - 12:26:24 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JPEG to PDF
O43 - CFD: 14/07/2014 - 10:43:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavalys
O43 - CFD: 14/07/2009 - 06:42:30 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 29/11/2014 - 13:33:14 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Micro Application
O43 - CFD: 06/07/2014 - 20:05:36 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 14/07/2014 - 11:11:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Picture It! 10
O43 - CFD: 14/04/2015 - 20:10:32 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 05/07/2014 - 14:07:31 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
O43 - CFD: 07/08/2014 - 13:18:50 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
O43 - CFD: 07/08/2014 - 13:17:38 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
O43 - CFD: 15/11/2014 - 16:56:14 - [0] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QALITEL logigramme
O43 - CFD: 25/05/2015 - 16:53:59 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
O43 - CFD: 05/08/2015 - 08:44:46 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 14/07/2009 - 11:00:32 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 06/07/2014 - 20:58:58 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 05/09/2014 - 18:49:04 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 09/08/2015 - 10:12:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 10/07/2014 - 11:38:24 - [] ----D C:\Users\Tony\AppData\Roaming\.ascentia
O43 - CFD: 04/02/2015 - 17:08:20 - [] ----D C:\Users\Tony\AppData\Roaming\Adobe
O43 - CFD: 29/07/2014 - 07:54:01 - [] ----D C:\Users\Tony\AppData\Roaming\Apple Computer
O43 - CFD: 20/10/2014 - 20:42:48 - [] ----D C:\Users\Tony\AppData\Roaming\CodeBlocks
O43 - CFD: 04/02/2015 - 17:09:07 - [] ----D C:\Users\Tony\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
O43 - CFD: 05/04/2015 - 20:53:14 - [] ----D C:\Users\Tony\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 21/10/2014 - 21:15:26 - [0] ----D C:\Users\Tony\AppData\Roaming\DAEMON Tools Ult
O43 - CFD: 21/10/2014 - 21:17:50 - [] ----D C:\Users\Tony\AppData\Roaming\DAEMON Tools Ultra
O43 - CFD: 21/12/2014 - 12:54:58 - [] ----D C:\Users\Tony\AppData\Roaming\driver
O43 - CFD: 20/07/2014 - 14:38:41 - [] ----D C:\Users\Tony\AppData\Roaming\dvdcss
O43 - CFD: 07/10/2014 - 18:52:27 - [] ----D C:\Users\Tony\AppData\Roaming\FLEXnet
O43 - CFD: 09/10/2014 - 19:49:53 - [] ----D C:\Users\Tony\AppData\Roaming\Free PDF to Word Converter =>PUP.PDFtoWordConverter
O43 - CFD: 25/05/2015 - 11:40:25 - [] ----D C:\Users\Tony\AppData\Roaming\Help
O43 - CFD: 04/07/2014 - 19:25:59 - [] ----D C:\Users\Tony\AppData\Roaming\Identities
O43 - CFD: 10/10/2014 - 14:53:53 - [] ----D C:\Users\Tony\AppData\Roaming\InstallShield
O43 - CFD: 05/07/2014 - 16:32:34 - [] ----D C:\Users\Tony\AppData\Roaming\Intel
O43 - CFD: 05/07/2014 - 11:44:42 - [] ----D C:\Users\Tony\AppData\Roaming\Macromedia
O43 - CFD: 07/10/2014 - 18:52:27 - [] ----D C:\Users\Tony\AppData\Roaming\Macrovision
O43 - CFD: 14/07/2009 - 11:00:32 - [0] ----D C:\Users\Tony\AppData\Roaming\Media Center Programs
O43 - CFD: 14/06/2015 - 18:36:10 - [] -S--D C:\Users\Tony\AppData\Roaming\Microsoft
O43 - CFD: 30/08/2014 - 20:10:30 - [] ----D C:\Users\Tony\AppData\Roaming\Nero
O43 - CFD: 17/10/2014 - 06:21:25 - [] ----D C:\Users\Tony\AppData\Roaming\Oracle
O43 - CFD: 17/11/2014 - 20:53:59 - [0] ----D C:\Users\Tony\AppData\Roaming\PKWARE
O43 - CFD: 06/07/2014 - 16:39:10 - [0] ----D C:\Users\Tony\AppData\Roaming\Publish Providers
O43 - CFD: 06/04/2015 - 18:31:47 - [] ----D C:\Users\Tony\AppData\Roaming\Skype
O43 - CFD: 25/05/2015 - 16:52:58 - [] ----D C:\Users\Tony\AppData\Roaming\Sony
O43 - CFD: 21/06/2015 - 21:36:34 - [] ----D C:\Users\Tony\AppData\Roaming\Sony Creative Software Inc
O43 - CFD: 25/10/2014 - 21:12:49 - [] ----D C:\Users\Tony\AppData\Roaming\Steam
O43 - CFD: 27/07/2015 - 11:23:55 - [] ----D C:\Users\Tony\AppData\Roaming\uTorrent =>P2P.µTorrent
O43 - CFD: 06/07/2014 - 21:00:06 - [] ----D C:\Users\Tony\AppData\Roaming\vlc
O43 - CFD: 05/09/2014 - 18:49:50 - [] ----D C:\Users\Tony\AppData\Roaming\WinRAR
O43 - CFD: 09/08/2015 - 10:13:13 - [] ----D C:\Users\Tony\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 08/08/2015 - 21:55:07 - [] ----D C:\Users\Tony\AppData\Local\Adobe
O43 - CFD: 28/07/2014 - 12:50:10 - [] ----D C:\Users\Tony\AppData\Local\Apple
O43 - CFD: 08/08/2014 - 15:41:17 - [] ----D C:\Users\Tony\AppData\Local\Apple Computer
O43 - CFD: 04/07/2014 - 19:25:35 - [] -SH-D C:\Users\Tony\AppData\Local\Application Data
O43 - CFD: 15/07/2014 - 14:35:26 - [] ----D C:\Users\Tony\AppData\Local\Apps
O43 - CFD: 13/08/2014 - 17:09:09 - [] ----D C:\Users\Tony\AppData\Local\Big Fish
O43 - CFD: 23/10/2014 - 21:52:11 - [] ----D C:\Users\Tony\AppData\Local\Comodo
O43 - CFD: 28/03/2015 - 12:33:15 - [0] ----D C:\Users\Tony\AppData\Local\Deployment
O43 - CFD: 21/07/2015 - 20:42:47 - [] ----D C:\Users\Tony\AppData\Local\Diagnostics
O43 - CFD: 21/10/2014 - 21:18:06 - [] ----D C:\Users\Tony\AppData\Local\Disc_Soft_Ltd
O43 - CFD: 16/11/2014 - 11:19:34 - [] ----D C:\Users\Tony\AppData\Local\Downloaded Installations
O43 - CFD: 21/10/2014 - 19:40:45 - [0] ----D C:\Users\Tony\AppData\Local\ElevatedDiagnostics
O43 - CFD: 15/06/2015 - 07:53:19 - [0] -SH-D C:\Users\Tony\AppData\Local\EmieBrowserModeList
O43 - CFD: 15/06/2015 - 07:53:19 - [0] -SH-D C:\Users\Tony\AppData\Local\EmieSiteList
O43 - CFD: 15/06/2015 - 07:53:19 - [0] -SH-D C:\Users\Tony\AppData\Local\EmieUserList
O43 - CFD: 23/10/2014 - 21:52:11 - [] ----D C:\Users\Tony\AppData\Local\Google
O43 - CFD: 29/11/2014 - 17:02:09 - [] ----D C:\Users\Tony\AppData\Local\Help
O43 - CFD: 04/07/2014 - 19:25:35 - [] -SH-D C:\Users\Tony\AppData\Local\Historique
O43 - CFD: 14/06/2015 - 18:59:47 - [] ----D C:\Users\Tony\AppData\Local\Microsoft
O43 - CFD: 04/04/2015 - 09:17:13 - [] ----D C:\Users\Tony\AppData\Local\Microsoft Games
O43 - CFD: 06/04/2015 - 18:31:19 - [0] ----D C:\Users\Tony\AppData\Local\Microsoft Help
O43 - CFD: 07/08/2014 - 12:26:14 - [] ----D C:\Users\Tony\AppData\Local\Programs
O43 - CFD: 02/11/2014 - 11:39:52 - [] ----D C:\Users\Tony\AppData\Local\SKIDROW
O43 - CFD: 14/02/2015 - 17:43:14 - [] ----D C:\Users\Tony\AppData\Local\Skype
O43 - CFD: 24/10/2014 - 17:01:03 - [] ----D C:\Users\Tony\AppData\Local\Sony
O43 - CFD: 09/08/2015 - 10:12:32 - [] ----D C:\Users\Tony\AppData\Local\Temp
O43 - CFD: 04/07/2014 - 19:25:35 - [] -SH-D C:\Users\Tony\AppData\Local\Temporary Internet Files
O43 - CFD: 25/08/2014 - 11:08:29 - [0] ----D C:\Users\Tony\AppData\Local\Unity
O43 - CFD: 22/07/2014 - 12:43:33 - [] ----D C:\Users\Tony\AppData\Local\VirtualStore
O43 - CFD: 28/12/2014 - 09:42:18 - [] ----D C:\Users\Tony\AppData\Local\WBFSManager
O43 - CFD: 14/07/2009 - 06:42:04 - [] R---D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/03/2015 - 08:31:58 - [] R---D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 03/03/2015 - 22:04:36 - [] ----D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Free PDF to Word Converter =>PUP.PDFtoWordConverter
O43 - CFD: 14/07/2009 - 06:37:42 - [] R---D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 16/03/2015 - 08:31:58 - [] R---D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 28/12/2014 - 10:10:30 - [] ----D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
O43 - CFD: 05/09/2014 - 18:49:04 - [] ----D C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
~ Program Folder: 214 Scanned in 00mn 00s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.405397D21C1C65D03A0FB82AF8643F55] - 08/08/2015 - 18:09:35 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1667468]
O44 - LFC:[MD5.1384835E6A64940F046AC7F698B2680E] - 08/08/2015 - 18:09:35 ---A- . (...) -- C:\Windows\System32\perfc009.dat [121818]
O44 - LFC:[MD5.1BF9C8893EFA2EADF2F0CCBC82181DCC] - 08/08/2015 - 18:09:35 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [149868]
O44 - LFC:[MD5.BD93A9C054BF238ED6D60D9406B19ADD] - 08/08/2015 - 18:09:35 ---A- . (...) -- C:\Windows\System32\perfh009.dat [653946]
O44 - LFC:[MD5.3BF9D4A99CDCC3D45B9EAD2974ECD52C] - 08/08/2015 - 18:09:35 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [747376]
O44 - LFC:[MD5.9047816E768C1C746DD1E1E24957F27C] - 08/08/2015 - 20:55:38 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe [778416]
O44 - LFC:[MD5.60FC18C2F4A7A67843D69C82F90599BB] - 08/08/2015 - 20:55:38 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [142512]
O44 - LFC:[MD5.A761AB814100E18FB802712ED5EBA30E] - 08/08/2015 - 21:02:18 ---A- . (...) -- C:\Windows\PFRO.log [2042]
O44 - LFC:[MD5.365FEE24A11D1C9C93C18364CF380D9A] - 09/08/2015 - 08:08:04 ---A- . (...) -- C:\Windows\ntbtlog.txt [140012]
O44 - LFC:[MD5.1558DC8171651618F5D3F01B3E7E54DB] - 09/08/2015 - 08:10:11 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.8946C74BA96D14750041CABDE84B11C1] - 09/08/2015 - 08:10:13 ---A- . (...) -- C:\Windows\setupact.log [23620]
O44 - LFC:[MD5.51F4BAFACF0929C02C54B2A945270EE4] - 09/08/2015 - 08:23:46 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1496255]
~ Files: 12 Scanned in 00mn 05s
---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
~ ShellExecuteHooks: Scanned in 00mn 00s
---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 8 Scanned in 00mn 00s
---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d'extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (
Afficher la suite
9 août 2015 à 11:30
9 août 2015 à 11:49
http://pjjoint.malekal.com/files.php?id=20150809_m5i5n12c11s6
Encore merci pour tes infos