ZONE ANTIMALWARE

Le forum de Nicolas Coolman a pour objectif de détecter et d'informer sur les nouvelles menaces malwares présentes sur le web. 

Vous avez des messages d'avertissement qui s'affichent, votre système est lent à démarrer, votre navigation est redirigée.
Ce sont peut-être les signes d'une infection. Vous avez fait une analyse de votre PC et vous ne savez pas analyser le rapport.
Dans cette section, vous pouvez désinfecter gratuitement votre ordinateur.
Des experts bénévoles vous assistent et vous conseillent tout le long de votre prise en charge.
Si vous sollicitez une aide dans ce forum, évitez de faire une demande similaire dans un autre site d'assistance.
 #7769  par snoupi
 
Fichier ZHPDiagRapport de ZHPDiag v2015.2.17.20 - Nicolas Coolman (17/02/2015)~ Lancé par Armand (17/02/2015 14:16:39)~ Facebook : https://www.facebook.com/nicolascoolman1~ Adresse du Forum http://forum.nicolascoolman.fr~ Traduit par Nicolas Coolman~ Etat de la version : Version à  jour.~ Liste blanche : Activée par le programme~ Elévation des Privilèges : OK~ User Account Control (UAC): Activate by user---\\ Navigateurs InternetMSIE: Internet Explorer v11.0.9600.17633MFIE: Mozilla Firefox 35.0.1 (Defaut)GCIE: Google Chrome v24.0.1312.57---\\ Informations sur les produits Windows~ Langage: Franà§aisWindows Server License Manager Script : OK~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channelWindows ID Activation : OK~ Windows Partial Key : R2P7TWindows License : OK~ Windows Remaining Initializations Number : 4Software Protection Service (Protection logicielle) : OKWindows Automatic Updates : OKWindows Activation Technologies : OKWindows 7 Professional, 64-bit Service Pack 1 (Build 7601)---\\ Logiciels de protection du systèmeBitdefender Total Security 2015 v18.20.0.1429Windows Defender W7 (Deactivate)---\\ Logiciels d'optimisation du systèmeCCleaner v5.02---\\ Logiciels de partage PeerToPeerPando Media Booster v2.6.0.9---\\ Surveillance de LogicielsAdobe Flash Player 16 NPAPIAdobe Reader XI---\\ Informations sur le système~ Processor: Intel64 Family 6 Model 30 Stepping 5, GenuineIntel~ Operating System: 64 BitsBoot mode: Normal (Normal boot)Total RAM: 8183 MB (64% free)System Restore: Activé (Enable)System drive C: has 389 GB (80%) free of 482 GB---\\ Mode de connexion au système~ Computer Name: GLADIATOR~ User Name: Armand~ All Users Names: HomeGroupUser$, Armand, Administrateur, ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89Logged in as Administrator---\\ Variables d'environnement~ System Unit : C:\~ %AppZHP% : C:\Users\Armand\AppData\Roaming\ZHP\~ %AppData% : C:\Users\Armand\AppData\Roaming\~ %Desktop% : C:\Users\Armand\Desktop\~ %Favorites% : C:\Users\Armand\Favorites\~ %LocalAppData% : C:\Users\Armand\AppData\Local\~ %StartMenu% : C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\~ %Windir% : C:\Windows\~ %System% : C:\Windows\System32\---\\ Enumération des unités disquesC: Hard drive, Flash drive, Thumb drive (Free 389 Go of 482 Go)D: Hard drive, Flash drive, Thumb drive (Free 425 Go of 450 Go)E: CD-ROM drive (Not Inserted)---\\ Etat du Centre de Sécurité Windows[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified~ Security Center: 44 Legitimates Filtered in 00mn 00s---\\ Recherche particulière de fichiers génériques[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808][MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024][MD5.9DFE41A69DF70AAB75CB5BA8C1109EA2] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.12/01/2015 - 02:27:32.) -- C:\Windows\System32\wininet.dll [2358272][MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168][MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448][MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152][MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128][MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160][MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456][MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400][MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368][MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472][MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224][MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208][MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\DriversetBT.sys [261632][MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Driverstfs.sys [1684928][MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280][MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536][MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/11/2010 - 12:06:41.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888][MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184][MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296][MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]~ Generic Processes: Scanned in 00mn 00s---\\ Etat des fichiers cachés (Caché/Total)~ Mes images (My Pictures) : 3/459~ Mes musiques (My Musics) : 1/8~ Mes Favoris (My Favorites) : 1/27~ Mes Documents (My Documents) : 2/1306~ Mon Bureau (My Desktop) : 1/133~ Menu demarrer (Programs) : 1/63~ Hidden Files: Scanned in 00mn 00s---\\ Processus lancés[MD5.651E4A7AAC51C4DA44CE282A13CFB1B9] - (.IBM Corp. - RapportService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe [2623768] [PID.2652][MD5.D3F0452392C45081D8866A92C86D1C7C] - (.Flexera Software, Inc. - FLEXnet Connect Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [324976] [PID.4980][MD5.CAF03357DE72F8F19FA099581A685C1A] - (.Apple Computer, Inc. - QuickTime Task.) -- D:\Program Files (x86)\QuickTime\qttask.exe [282624] [PID.5020][MD5.265B49EF94A5AA713192EE97A7D248B5] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [338032] [PID.6400][MD5.78AC6802617A2D4B11602B5567FC84FD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8174080] [PID.6760][MD5.3087F0E56E57BB37EFA299372C22417C] - (.IBM Corp. - RapportMgmtService.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [1919256] [PID.1212][MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.2208][MD5.BC8A3EC1BAE3D18256C09DDE1082D0F3] - (.Samsung - AllShareFrameworkDMS.) -- C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe [755080] [PID.2536][MD5.2E6F4A8D74358D7C9AFF101AA25CDC42] - (.OLYMPUS IMAGING CORP. - DM1Servis Module.) -- C:\Program Files (x86)\Olympus\DeviceDetector\DM1Service.exe [69632] [PID.2760][MD5.859EB508AFD5E26298B6B902D46F6535] - (.Gladinet, INC - Gladinet Cloud Suite.) -- C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [29552] [PID.2824][MD5.F02A533F517EB38333CB12A9E8963773] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176] [PID.2936][MD5.397D14958D6C9C2B365469A857B2AC4E] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe [230792] [PID.3040][MD5.A06EFD4965F8A3F97A8C9A291D032678] - (.Pas de propriétaire - Inkjet Printer/Scanner/Fax Extended Servey.) -- C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exe [116104] [PID.2428][MD5.C34411A244029F1C08687F7C752C4563] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.3016][MD5.E1095A89EB4BFCA2AB2F4E1F2BA56612] - (.Logitech Inc. - Logitech LVPrS64H Module..) -- C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe [125464] [PID.2572][MD5.543A4EF0923BF70D126625B034EF25AF] - (.Protexis Inc. - PsiService PsiService.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [189728] [PID.3552][MD5.2BFDFE9D19AE4A0CDD07291545D0C2A7] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568] [PID.3596][MD5.E5112D7A79869DEC5DB4EC4CDEE1BABC] - (.RealNetworks, Inc. - RealPlayer Cloud Service.) -- c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe [1141848] [PID.3620][MD5.2DF2235DB8AF585BA5F2E11911BF08D2] - (...) -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552] [PID.3668][MD5.C0C121B537DA3AD87481C0502CACE462] - (.TeamViewer GmbH - TeamViewer 10.) -- C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5426448] [PID.3864][MD5.B83D5071B32A70BEBDB3330BFA7ACB80] - (.Pas de propriétaire - WD File Management Engine.) -- C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [1066896] [PID.4140]~ Processes Running: Scanned in 00mn 00s---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)C:\Users\Armand\AppData\Local\Google\Chrome\User Data\Default\Preferences---\\ Liste des dossiers d'extension Google Chrome~ Google Lines Browser: 3 Legitimates Filtered in 00mn 00s---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)C:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\dsl4s4cx.default\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\fs0l51id.default-1398757347796\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\jklab7zy.default-1369544006918\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\k07mowzz.default-1369411014478\prefs.jsC:\Users\Armand\AppData\Roaming\Mozilla\Firefox\Profiles\pvy3imj8.default-1407131731860\prefs.jsM2 - MFEP: Extension [Armand - dsl4s4cx.default] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - fs0l51id.default-1398757347796] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - jklab7zy.default-1369544006918] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - k07mowzz.default-1369411014478] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpiM2 - MFEP: Extension [Armand - pvy3imj8.default-1407131731860] {c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi~ Firefox Browser: 26 Legitimates Filtered in 00mn 00s---\\ Internet Explorer, Proxy Management (R5)R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no keyR5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dllR5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0~ Proxy management: Scanned in 00mn 00s---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programsF2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,F2 - REG:system.ini: Shell=C:\Windows\explorer.exeF2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe~ Keys: Scanned in 00mn 00s---\\ Hosts file redirection (O1)~ Le fichier hôte est sain (The hosts file is clean) (22)~ Hosts File: Scanned in 00mn 00s---\\ Internet Explorer Toolbars (O3)O3 - Toolbar: Canon Easy-WebPrint EX - [HKLM]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} . (.CANON INC. - Easy-WebPrint EX.) -- C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dllO3 - Toolbar: Bitdefender Wallet - [HKLM]{1DAC0C53-7D23-4AB3-856A-B04D98CD982A} . (.Bitdefender - Bitdefender Password Manager Internet Explo.) -- C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll~ Toolbar: Scanned in 00mn 00s---\\ Applications lancées au démarrage du système (O4)O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe O4 - HKLM\..\Run: [CanonSolutionMenu] . (.CANON INC. - CNSLMAIN.) -- C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor CorpO4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe O4 - HKCU\..\Run: [KiesAirMessage] Clé orphelineO4 - HKCU\..\Run: [KiesPDLR] Clé orphelineO4 - HKCU\..\Run: [KiesPreload] Clé orphelineO4 - HKCU\..\Run: [KiesTrayAgent] Clé orphelineO4 - HKCU\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Wallet Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe O4 - HKLM\..\Wow6432Node\Run: [JMB36X IDE Setup] . (...) -- C:\Windows\RaidTool\xInsIDE.exe O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, IncO4 - HKLM\..\Wow6432Node\Run: [ISUSPM] . (.Flexera Software, Inc. - FLEXnet Connect Software Manager.) -- C:\ProgramData\FLEXnet\Connect\11\isuspm.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- D:\Program Files (x86)\QuickTime\qttask.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft CorporationO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesAirMessage] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesPDLR] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesPreload] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [KiesTrayAgent] Clé orphelineO4 - HKUS\S-1-5-21-3551958322-364041293-615380820-1001\..\Run: [Bitdefender Wallet Agent] . (.Bitdefender - Bitdefender Wallet Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe ~ Application: Scanned in 00mn 00s---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)O9 - Extra button: &Envoyer à  OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll =>.Microsoft CorporationO9 - Extra button: Lync Click to Call [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\lync.exe (.not file.)O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll =>.Microsoft CorporationO9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.icoO9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\OLIEResource.dll,-101 [64Bits] - {A95fe080-8f5d-11d2-a20b-00aa003c157a} . (.Evernote Corp., 305 Walnut Street, Redwood - Evernote Clipper for Microsoft Internet Explorer.) -- C:\Program Files (x86)\Evernote\Evernote\EvernoteIEx64.dllO9 - Extra button: @btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- D:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico~ IE Extra Buttons: Scanned in 00mn 00s---\\ Site dans la Zone de confiance d'Internet Explorer (O15)O15 - Trusted Zone: [HKCU\...\Domains] http.mcafee.com~ IE Zone Confiance: Scanned in 00mn 00s---\\ Modification Domaine/Adresses DNS (O17)O17 - HKLM\System\CCS\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CS1\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CS2\Services\Tcpip\..\{7D7F8311-28DD-4AA4-8794-3DB4B00FAAB1}: DhcpNameServer = 192.168.0.254O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254~ Domain: Scanned in 00mn 00s---\\ Protocole additionnel (O18)O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft CorporationO18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation~ Protocole Additionnel: Scanned in 00mn 00s---\\ Liste des services NT non Microsoft et non désactivés (O23)O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe~ Services: 25 Legitimates Filtered in 00mn 12s---\\ Tà¢ches planifiées en automatique (O39)[MD5.B600D97663C45F072F5E6E38936EAF7C] [APT] [{2E175F33-09F8-4D6C-86E3-D7A0CA70F3D6}] (.Waldata.) -- D:\WALDATA\MILLENIUM\PLATINIUM.exe [17007616][MD5.00000000000000000000000000000000] [APT] [{311A0720-7548-48D3-834F-257561F53003}] (...) -- F:\WALDATA\MILLENIUM\platinium.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{5151EBA2-83EE-4471-B3D7-80D73B6CD96D}] (...) -- C:\Users\Armand\Downloads\DriverDetective.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{5A35F43E-091D-4379-8BD0-A2BD286ECEB2}] (...) -- E:\install.exe (.not file.) [0][MD5.00000000000000000000000000000000] [APT] [{9A22F837-ED69-4E99-A87D-FED1CDB84DDE}] (...) -- E:\Setup.exe (.not file.) [0]O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]O39 - APT: - (..) -- C:\Windows\System32\Tasks\AppleSoftwareUpdate [298]O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1064]O39 - APT: - (..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1068]~ Scheduled Task: 25 Legitimates Filtered in 00mn 04s---\\ Pilotes lancés au démarrage du système (O41)O41 - Driver: (ncdevice) . (.NT Kernel Resources - NDISRD helper driver.) - C:\Windows\System32\DRIVERScdevice.sys~ Drivers: 81 Legitimates Filtered in 00mn 00s---\\ HKCU & HKLM Software Keys[HKCU\Software\CleanerProConfig][HKCU\Software\CleanerProLanguage][HKCU\Software\Clubic][HKCU\Software\Internet Controller][HKCU\Software\Pando Networks][HKCU\Software\_GI][HKLM\Software\Wow6432Node\Internet Controller][HKLM\Software\Wow6432Node\Pando Networks]~ Key Software: 422 Legitimates Filtered in 00mn 00s---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)O43 - CFD: 27/04/2013 - 17:16:56 - [] ----D C:\Program Files (x86)\Pando NetworksO43 - CFD: 25/01/2014 - 16:12:46 - [] ----D C:\Program Files (x86)\WinPortraitO43 - CFD: 13/02/2015 - 14:46:43 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development KitO43 - CFD: 14/07/2009 - 16:35:18 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PCO43 - CFD: 05/12/2014 - 07:17:01 - [0] ----D C:\Users\Armand\AppData\Roaming\EncryptStickO43 - CFD: 12/11/2014 - 19:34:47 - [] -SH-D C:\Users\Armand\AppData\Local\EmieBrowserModeListO43 - CFD: 26/05/2013 - 12:48:40 - [] ----D C:\Users\Armand\AppData\Local\frey.aO43 - CFD: 26/08/2013 - 10:30:55 - [] ----D C:\Users\Armand\AppData\Local\NGPRO43 - CFD: 12/01/2014 - 17:19:25 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto BackupO43 - CFD: 12/12/2013 - 14:58:01 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Highwave360 v1.2O43 - CFD: 16/07/2014 - 10:52:06 - [] ----D C:\Users\Armand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WaldataO43 - CFD: 06/12/2014 - 07:52:12 - [] --H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\BdBkpFolder~ Program Folder: 368 Legitimates Filtered in 00mn 00s---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-bz11 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-im11.gz [49563064]O44 - LFC:[MD5.F0BE0939B8EFC827FD343CFACC5603F7] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-cf11 [684]O44 - LFC:[MD5.5A411F853FF2C055FECB5A897689DAA6] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11 [253404]O44 - LFC:[MD5.C7CE0CC0CA93A7CAC826DE66DE700ED4] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11.mbr [9216]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-bz12 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-im12.gz [49563064]O44 - LFC:[MD5.E39A7AD37A18256C8DB9B402263B085A] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-cf12 [684]O44 - LFC:[MD5.50711CF19B0E2822FA0863F727672B2E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12 [253404]O44 - LFC:[MD5.8A8AB443802D5FD8C16F3570415CB12E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12.mbr [9216]O44 - LFC:[MD5.531121E7ED50084B493A69F8F8A7A927] - 13/02/2015 - 14:38:43 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-bz13 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-im13.gz [49563064]O44 - LFC:[MD5.1E4C1EB5629C73C10005B4F85C90D882] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-cf13 [684]O44 - LFC:[MD5.D4E00D1198A8DF5A2741684DE3953C79] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13 [253404]O44 - LFC:[MD5.735176BCF8EDA5031ABC77DE45BE702E] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13.mbr [9216]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 15/02/2015 - 14:41:09 --HA- . (...) -- C:\bdr-im14.gz [49563064]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 15/02/2015 - 14:41:10 --HA- . (...) -- C:\bdr-bz14 [3271472]O44 - LFC:[MD5.9309E0E4E98392A95A72B6D1DCCAE14C] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-cf14 [684]O44 - LFC:[MD5.F5C785FFE8EC0B83B386817E0BB58FB2] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14 [253404]O44 - LFC:[MD5.4CAE6BBA4178F118E61246180BC6F039] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14.mbr [9216]O44 - LFC:[MD5.4E8F2BB3A5A87E75C35533723B50E685] - 15/02/2015 - 14:58:46 ---A- . (...) -- C:\Windows\System32\user_gensett.xml [385]O44 - LFC:[MD5.85FD3EBBD78C1AE02FE006C17E354E47] - 17/02/2015 - 10:38:56 ---A- . (...) -- C:\bdlog.txt [1122513]~ Files: 111 Legitimates Filtered in 00mn 18s---\\ Contrôle du Safe Boot (CSB) (O49)O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\CleanHlp.sys . (...) -- C:\Windows\System32\Drivers\CleanHlp.sys (.not file.)O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\CleanHlp.sys . (...) -- C:\Windows\System32\Drivers\CleanHlp.sys (.not file.)~ CSB: 15 Legitimates Filtered in 00mn 00s---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)O52 - TDSD: \Drivers32\"msacm.ac3filter"="ac3filter64.acm" . (.Pas de propriétaire - ac3filter.) -- C:\Windows\System32\ac3filter64.acm~ TDSD: 4 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre StartupReg (SMSR) (O53)O53 - SMSR:HKLM\...\startupreg\vspdfprsrv.exe [Key] . (...) -- C:\Program Files\Avanquest\Expert PDF 9 Professional\vspdfprsrv.exe~ SMSR Keys: 11 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1~ MWPS: 17 Legitimates Filtered in 00mn 00s---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s---\\ Liste des pilotes du système (SDL) (O58)O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]O58 - SDL:11/04/2012 - 16:40:28 ---A- . (.AnchorFree Inc. - Hotspot Shield Routing Driver.) -- C:\Windows\System32\Drivers\hssdrv.sys [56832]O58 - SDL:07/10/2009 - 00:45:50 ---A- . (...) -- C:\Windows\System32\Drivers\LVPr2M64.sys [30232]O58 - SDL:22/05/2014 - 18:05:06 ---A- . (.NT Kernel Resources - NDISRD helper driver.) -- C:\Windows\System32\Driverscdevice.sys [41248]O58 - SDL:16/06/2014 - 07:01:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [110336]O58 - SDL:16/06/2014 - 07:01:38 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]O58 - SDL:26/03/2012 - 22:45:14 ---A- . (.AnchorFree Inc - TAP-Win32 Virtual Network Driver.) -- C:\Windows\System32\Drivers\taphss.sys [37888]O58 - SDL:13/02/2015 - 14:38:43 ---A- . (...) -- C:\Windows\System32\Drivers\TrueSight.sys [37624]O58 - SDL:05/06/2002 - 17:07:00 ----- . (.B.H.A Co.,Ltd. - B.H.A Storage Helper Driver (WindowsNT5.x).) -- C:\Windows\SysWOW64\drivers\bsstor.sys [9344]O58 - SDL:20/09/2003 - 07:45:48 ---A- . (.Padus, Inc. - Padus(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\pfc.sys [21248]O58 - SDL:05/02/2013 - 09:54:40 ---A- . (...) -- C:\Windows\SysWOW64\FsUsbExDisk.Sys [37344]~ Drivers: 84 Legitimates Filtered in 00mn 01s---\\ Liste des outils de désinfection (LATC) (O63)O63 - Logiciel: ZHPDiag 2015 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman~ ADS: Scanned in 00mn 00s---\\ Liste les services legacy du registre (LALS) (O64)O64 - Services: CurCS - 22/05/2014 - C:\Windows\System32\DRIVERScdevice.sys (ncdevice) .(.NT Kernel Resources - NDISRD helper driver.) - LEGACY_NCDEVICE~ Legacy: 101 Legitimates Filtered in 00mn 00s---\\ Menu de démarrage Internet (SMI) (O68)O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exeO68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exeO68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe~ Keys: Scanned in 00mn 00s---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.comO69 - SBI: SearchScopes [HKCU] {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} - (Bing) - http://www.bing.com~ Keys: Scanned in 00mn 00s---\\ Recherche particulière à  la racine du système (SPRF) (O84)[MD5.A9155082208F1EA98F496B41BE6F0D4E] [SPRF][15/02/2015] (...) -- C:\ProgramData\1424007539.bdinstall.bin [909620][MD5.B5277369D5FAD8DA064BA42664F45DE1] [SPRF][12/04/2011] (...) -- C:\ProgramData\ezsidmv.dat [56]~ Files: 2 Legitimates Filtered in 00mn 00s---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)SS - | Demand 19/03/2014 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exeSS - | Demand 05/02/2015 267440 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exeSS - | Demand 09/12/2014 78144 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exeSS - | Auto 12/04/2011 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeSS - | Demand 12/04/2011 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exeSS - | Demand 19/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exeSS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeSS - | Demand 27/01/2015 114800 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exeSS - | Auto 13/07/2012 769432 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exeSS - | Disabled 08/07/2013 94624 | (SafeBox) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exeSS - | Auto 02/03/2012 25504 | (SamsungAllShareV2.0) . (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exeSS - | Demand 02/03/2012 27584 | (SimpleSlideShowServer) . (.Samsung Electronics Co., Ltd..) - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exeSS - | Auto 11/12/2014 315496 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exeSS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exeSR - | Auto 19/12/2014 81088 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exeSR - | Auto 21/12/2013 404360 | (AllShare Framework DMS) . (.Samsung.) - C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exeSR - | Auto 12/10/2011 204288 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exeSR - | Auto 10/10/2006 69632 | (DM1Service) . (.OLYMPUS IMAGING CORP..) - C:\Program Files (x86)\Olympus\DeviceDetector\DM1Service.exeSR - | Auto 26/07/2011 29552 | (GladFileMonSvc) . (.Gladinet, INC.) - C:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exeSR - | Auto 10/02/2009 116104 | (IJPLMSVC) . (...) - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.exeSR - | Auto 04/03/2011 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exeSR - | Auto 07/10/2009 191000 | (LVPrcS64) . (.Logitech Inc..) - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exeSR - | Auto 09/06/2013 2635600 | (MaConfigAgent) . (.CybelSoft.) - C:\Program Files\ma-config.com\MaConfigAgent.exeSR - | Auto 10/03/2010 189728 | (PSI_SVC_2) . (.Protexis Inc..) - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exeSR - | Auto 22/12/2014 1919256 | (RapportMgmtService) . (.IBM Corp..) - C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exeSR - | Auto 06/04/2014 39568 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exeSR - | Auto 21/04/2014 1141848 | (RealPlayer Cloud Service) . (.RealNetworks, Inc..) - c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exeSR - | Auto 07/04/2014 23552 | (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exeSR - | Auto 29/09/2014 616288 | (Samsung Link Service) . (.Copyright 2013 SAMSUNG.) - C:\Program Files\Samsung\Samsung Link\Samsung Link.exeSR - | Auto 15/12/2014 5426448 | (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exeSR - | Auto 27/10/2014 67320 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exeSR - | Auto 15/12/2014 1545376 | (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exeSR - | Auto 09/03/2011 288768 | (WDDMService) . (.WDC.) - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exeSR - | Auto 09/03/2011 1066896 | (WDFME) . (...) - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exeSR - | Auto 09/03/2011 491920 | (WDSC) . (...) - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exeSR - | Auto 22/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft CorporationSR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe~ Services: Scanned in 00mn 09s---\\ Scan Additionnel (O88)Database Version : 13008 - (17/02/2015)Clés trouvées (Keys found) : 0Valeurs trouvées (Values found) : 0Dossiers trouvés (Folders found) : 0Fichiers trouvés (Files found) : 0~ Additionnel Scan: 431811 Items scanned in 00mn 39s---\\ Informations complémentaires sur les modules~ http://nicolascoolman.fr/r5-internet-ex ... ment-iepm/ =>.Internet Explorer, Proxy Management (R5)~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)~ http://nicolascoolman.fr/o4-application ... -registre/ =>.Applications lancées au démarrage du système (O4)~ AMI: 3 Legitimates Filtered in 00mn 00s~ 1275 Legitimates filtered by white listEnd of the scan (494 lines in 02mn 04s)(0.11)
 #7772  par Australien
 
hellomerci Amargos, je n'avais pas vu. ;) donc je confirme :- rien de malveillant dans le rapport ZHPDiag.- les fichiers dans la capture d'image de l'autre sujet concerne pour la quasi totalité BitDefender.O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-bz11 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 06/02/2015 - 13:34:15 --HA- . (...) -- C:\bdr-im11.gz [49563064]O44 - LFC:[MD5.F0BE0939B8EFC827FD343CFACC5603F7] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-cf11 [684]O44 - LFC:[MD5.5A411F853FF2C055FECB5A897689DAA6] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11 [253404]O44 - LFC:[MD5.C7CE0CC0CA93A7CAC826DE66DE700ED4] - 06/02/2015 - 13:36:32 --HA- . (...) -- C:\bdr-ld11.mbr [9216]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-bz12 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 07/02/2015 - 06:00:32 --HA- . (...) -- C:\bdr-im12.gz [49563064]O44 - LFC:[MD5.E39A7AD37A18256C8DB9B402263B085A] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-cf12 [684]O44 - LFC:[MD5.50711CF19B0E2822FA0863F727672B2E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12 [253404]O44 - LFC:[MD5.8A8AB443802D5FD8C16F3570415CB12E] - 07/02/2015 - 06:09:54 --HA- . (...) -- C:\bdr-ld12.mbr [9216]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-bz13 [3271472]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 13/02/2015 - 14:50:50 --HA- . (...) -- C:\bdr-im13.gz [49563064]O44 - LFC:[MD5.1E4C1EB5629C73C10005B4F85C90D882] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-cf13 [684]O44 - LFC:[MD5.D4E00D1198A8DF5A2741684DE3953C79] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13 [253404]O44 - LFC:[MD5.735176BCF8EDA5031ABC77DE45BE702E] - 13/02/2015 - 15:06:29 --HA- . (...) -- C:\bdr-ld13.mbr [9216]O44 - LFC:[MD5.91DECAE7268AD708B276EE9A3DFEB4FC] - 15/02/2015 - 14:41:09 --HA- . (...) -- C:\bdr-im14.gz [49563064]O44 - LFC:[MD5.C7FD70F69C7792256EED17FBDD83484F] - 15/02/2015 - 14:41:10 --HA- . (...) -- C:\bdr-bz14 [3271472]O44 - LFC:[MD5.9309E0E4E98392A95A72B6D1DCCAE14C] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-cf14 [684]O44 - LFC:[MD5.F5C785FFE8EC0B83B386817E0BB58FB2] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14 [253404]O44 - LFC:[MD5.4CAE6BBA4178F118E61246180BC6F039] - 15/02/2015 - 14:58:23 --HA- . (...) -- C:\bdr-ld14.mbr [9216]O44 - LFC:[MD5.85FD3EBBD78C1AE02FE006C17E354E47] - 17/02/2015 - 10:38:56 ---A- . (...) -- C:\bdlog.txt [1122513]les soucis rencontrés ne proviennent pas d'une cause infectieuse.Australien
Sujets similaires Statistiques Dernier message
Lancement du nouveau programme Microsoft Defender Bounty.
par NicolasCoolman  dans : Les nouvelles
0 Réponses
3679 Vues
par NicolasCoolman
Google s’oriente vers le blocage des cookies tiers dans Chrome
par NicolasCoolman  dans : Les nouvelles
0 Réponses
2538 Vues
par NicolasCoolman
fichier ZATP aux lieu de mkv
par jaja1948  dans : Analyse de rapports et Désinfection.
21 Réponses
1061 Vues
par ab_web
ASSISTANCE - Comment envoyer un fichier ?
par PAPOUGNET  dans : Analyse de rapports et Désinfection.
10 Réponses
2821 Vues
par El Magnifico
Changer le nom de propriétaire dans un fichier pdf
par rafii  dans : Support Windows
2 Réponses
1004 Vues
par Token