> Tous les forums > Forum Sécurité
 Virus connexion internet ?
Ajouter un message à la discussion
Page : [1] 
Page 1 sur 1
antique pc
  Posté le 21/09/2011 @ 15:47 
Aller en bas de la page 
Petit astucien

Bonjour.

Ma carte Ethernet ne fonctionne soudain plus. Je me suis alors relié à ma box en wi-fi.

Mais a chaque rallumage, le matin, plus de réseau ni de détection de mon PC par la box. Je dois supprimer le logiciel de ma carte réseau, redémarrer et, avec le CD d'origine, réinstaller le pilote. Et cela remarche...jusqu'à ce que le PC soit éteint le soir puis rallumé le matin. C'est usant.

Je soupçonne un virus, sabotant ma carte réseau, supprimé par la désinstallation du pilote, mais contenu dans un processus qui se relance lors du démarrage.

L'observateur d'évènements m'indique que :" votre fichier de Registre est toujours utilisé par d'autres applications ou services".

Par ailleurs, mon PC est devenu plus lent et le pointeur de la souris se fige souvent quelques secondes.

Ma config :

AMD Athlon 64 X2 Dual Core Processor 5000+ 2,60 Ghz

Mémoire 2 GO

Vista familial premium 32 bits Pack 2

Navigateur : Mozilla Firefox 6.0 .2

Neufbox

carte Ethernet dans la carte mère : GIGABYTE séris S M68M-S2P x.x

Carte PCI/AGP Marvell Technology NETGEAR WG311v3 54Mbps Wireless PCI Adapter #2

Je vous remercie à l'avance de votre aide, si vous pensez à une piste.

Publicité
pear
 Posté le 21/09/2011 à 16:09 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Astucien

Bonjour,

A ce stade on ne peut exclure une carte réseau défectueuse ni in problème de la box.

On va voir si un intrus est en cause.

Téléchargez ZhpDiag de Coolman
Décompresser le fichier ZHPDiag.fix sur le bureau
puis double-cliquer sur le fichier ZHPDiag.exe pour installer l'outil
Sur le bureau ,il y aura 3 icônesimage
Sous XP, double clic sur ZhpDiag
Sous Vista/7, faire un clic droit et Exécuter en tant qu'administrateur
image
Clic sur la Loupe pour lancer le scan
En cas de blocage sur O80, cliquez sur le tournevis pour le décocher
Postez le rapport ZhpDiag.txt qui apparait sur le bureau

Pour cela,Cliquer sur image Insérer un rapport,en bas de page,à gauche et cliquer sur Parcourir pour trouver le rapport sur votre bureau

Pour les rapports qui sont courts (ex. Malwarebytes, AD-R, USBFix, etc.), copiez/collez sur votre sujet

antique pc
 Posté le 21/09/2011 à 17:07 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien


Bonjour pear.

Merci de bien vouloir aider.

une erreur 500 interne au serveur apparaissant, je scinde le message, à tous hasards.




Rapport de ZHPDiag v1.28.1350 par Nicolas Coolman, Update du 20/09/2011
Run by moi at 21/09/2011 16:33:42
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 6.0.2 v6.0.2 (Defaut)

---\\ Windows Product Information
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : WWR8X
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 15 Model 67 Stepping 3, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2046 MB (50% free)
System Restore: Activé (Enable)
System drive C: has 72 GB (32%) free of 225 GB

---\\ Logged in mode
~ Computer Name: moi
~ User Name: moi
~ All Users Names: UpdatusUser, moi.xx.yy.zz, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\moi\AppData\Roaming\
~ %Desktop% : C:\Users\moi\Desktop\
~ %Favorites% : C:\Users\moi\Favorites\
~ %LocalAppData% : C:\Users\moi\AppData\Local\
~ %StartMenu% : C:\Users\moi\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 72 Go of 225 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 51 Go of 59 Go)
E:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoDispScrSavPage: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.08/08/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (....) (.02/11/2006 - 10:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.24/03/2008 - 08:33:37.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.2C7332C222D1FE1FC57D622699A8C001] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/08/2011 - 03:48:26.) -- C:\Windows\system32\wininet.dll [1126912]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.08/08/2009 - 07:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.08/08/2009 - 07:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.08/08/2009 - 07:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
[MD5.95F5FF73B076576C41740F1A842B9B57] - (....) (.24/03/2008 - 08:34:10.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 10/2731
~ Mes musiques (My Musics) : 2/17
~ Mes Videos (My Videos) : 2/9
~ Mes Favoris (My Favorites) : 2/22
~ Mes Documents (My Documents) : 24/4815
~ Mon Bureau (My Desktop) : 4/320
~ Menu demarrer (Programs) : 7/54
~ Scan Hidden Files in 00mn 05s



---\\ Processus lancés
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.3864]
[MD5.C456658AF90F42BE3CDF1048F9CDB5CA] - (.Microsoft Corporation - Notifications du contrôle parental Windows.) -- C:\Windows\System32\wpcumi.exe [176128] [PID.4000]
[MD5.9D5E8B45BD348DF0882C69EED0E83111] - (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768] [PID.3760]
[MD5.869513CA8428F231C7CAC62A6F9B974A] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe [274608] [PID.2120]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [254696] [PID.2228]
[MD5.95A7E88A5F4EF79C605413F00A945CD3] - (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [346320] [PID.1028]
[MD5.9E63CE05416587923091B61AF2F012D6] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7703072] [PID.284]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.3304]
[MD5.390679F7A217A5E73D756276C40AE887] - (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480] [PID.3692]
[MD5.CFCB4F1C6DBE8A5DC0B8DBF058E2586A] - (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe [976192] [PID.3712]
[MD5.CD2E92C54EF2331E6437087163F0EC20] - (.Pas de propriétaire - NetgearCUv2 MFC Application.) -- C:\Program Files\NETGEAR\WG311v3\WG311v3.exe [1691648] [PID.3516]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.4020]
[MD5.47C1DE0A890613FFCFF1D67648EEDF90] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920] [PID.3192]
[MD5.B26A2F3CD6459548DB6891D138080876] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2121216] [PID.4664]
[MD5.7C732AFF202DCD06C3D262966D71604C] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 275.3.) -- C:\Windows\system32\nvvsvc.exe [615528] [PID.]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.]
[MD5.3D36332478EF0026439D8AD4471E800C] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [839272] [PID.]
[MD5.A5BCBAF0477C4869B67E0195AEA4A9CD] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360] [PID.]
[MD5.3CCE4AFA4AACDB28E01A148394212186] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480] [PID.]
[MD5.F29D375926E36E3A56AF4805C7749302] - (.DeviceVM, Inc. - Browser Configuration Utility Auto-recovery.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [219360] [PID.]
[MD5.A508E32CA8E593AFC0980D184D805114] - (...) -- C:\Program Files\GIGABYTE\G.O.M\GCSVR.EXE [16384] [PID.]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [322120] [PID.]
[MD5.CDE000884FD7BAF0C1FDFE029B0891DE] - (.Avira GmbH - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76968] [PID.]
[MD5.26BA81BA48C3D9FB292B4B60FDE849F2] - (.Microsoft Corporation - Service SNMP.) -- C:\Windows\System32\snmp.exe [47616] [PID.]
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368] [PID.]
[MD5.2A7AF088B95D3A0B01A5C4BF49388A0B] - (.Microsoft Corporation - IAS Host.) -- C:\Windows\system32\iashost.exe [17408] [PID.]
[MD5.262D2FBF211A88DCB84249DF0F6EF6E7] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504] [PID.]
[MD5.5DAF7081A4BB112FA3F1915819330A3E] - (...) -- C:\Program Files\ZHPDiag\pv.exe [61440] [PID.]
~ Scan Processes Running in 00mn 01s

antique pc
 Posté le 21/09/2011 à 17:08 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\gyou5gan.default\prefs.js
C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\gyou5gan.default\user.js
M3 - MFPP: Plugins - [alain] -- C:\Users\alain\AppData\Roaming\Mozilla\Firefox\Profiles\gyou5gan.default\searchplugins\googlefr.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [alain] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [alain - gyou5gan.default] http://www.google.com
M2 - MFEP: prefs.js [alain - gyou5gan.default\trustme@gness.com] [] Distrust v (.Itamar Kerbel.)
M2 - MFEP: prefs.js [alain - gyou5gan.default\waybackbutton@lazar.kovacevic] [] 404 : File is Not Found ? Now it will be! v1.3 (.Lazar Kovacevic.)
M2 - MFEP: prefs.js [alain - gyou5gan.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
M2 - MFEP: prefs.js [alain - gyou5gan.default\{5384767E-00D9-40E9-B72F-9CC39D655D6F}] [] EPUBReader v1.4.1.0 (.Michael Volz.)
M2 - MFEP: prefs.js [alain - gyou5gan.default\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}] [dwhelper] DownloadHelper v4.9.5 (.Michel Gutierrez.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Program Files\Mozilla Firefox\Plugins\np32dsw.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFFICE.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 12.0.1.609.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.0.) -- C:\Windows\system32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_26 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60531.0.) -- c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3508.1109] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=12.0.1.609] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- c:\program files\real\realplayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=12.0.1.609] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- c:\program files\real\realplayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprphtml5videoshim;version=12.0.1.609] - (.RealNetworks, Inc. - RealPlayer(tm) HTML5VideoShim Plug-In.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=12.0.1.609] - (.RealNetworks, Inc. - 12.0.1.609.) -- c:\program files\real\realplayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc;version=0.8.6c] - (.VideoLAN Team - Version 0.8.6c, copyright 1996-2006 The VideoLAN Team<br><a href="http.) -- C:\Program Files\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://ie.search.msn.com
R1 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} . (.DeviceVM, Inc. - Browser Configuration Utility Address Bar S.) (1.1.11.0) -- C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\system32\ieframe.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 03s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} . (.SFR - Aide à la navigation SFR.) -- C:\Program Files\Neuf\Kit\SFRNavErrorHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [WPCUMI] . (.Microsoft Corporation - Notifications du contrôle parental Windows.) -- C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files\real\realplayer\Update\realsched.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [BCU] . (.DeviceVM, Inc. - Browser Configuration Utility.) -- C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [CollaborationHost] . (.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe
O4 - HKCU\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [CollaborationHost] . (.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propriétés de la connexion SFR.) -- C:\Program Files\Neuf\Kit\9props.exe
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [ISUSPM Startup] . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isusp
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\alain\Desktop\Corbeille - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\alain\Desktop\First Steps.lnk . (.Fujitsu Siemens Computers.) -- C:\9onlineADSL\MANUAL\FirstSteps\FirstSteps.exe
O4 - Global Startup: C:\Users\alain\Desktop\Revo Uninstaller.lnk . (.VS Revo Group.) -- C:\Program Files\VS Revo Group\Revo Uninstaller\revouninstaller.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WinMail.exe - Raccourci.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\alain\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WORD.lnk . (.Microsoft Corporation.) -- C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
~ Scan Global Startup in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBro
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (...) -- C:\PROGRA~1\MICROS~2\OFFICE11\REFBARH.ICO
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Scan Winsock in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Microsoft XML Parser for Java - (Microsoft XML Parser for Java) - (.not file.) - C:\Windows\Java\classes\xmldso.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} ("Ma-Config.com control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_5_1_4_0.cab
~ Scan Objets ActiveX in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{74306480-E9CC-414E-9C19-466025B35FDE}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CCS\Services\Tcpip\..\{C6E9FF9C-C7AB-4715-BE37-4F2E03040307}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{DD8B7F8F-CFC3-4ED1-8983-C99530B3FDA2}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{74306480-E9CC-414E-9C19-466025B35FDE}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS1\Services\Tcpip\..\{C6E9FF9C-C7AB-4715-BE37-4F2E03040307}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{74306480-E9CC-414E-9C19-466025B35FDE}: DhcpNameServer = 212.27.40.241 212.27.40.240
O17 - HKLM\System\CS3\Services\Tcpip\..\{C6E9FF9C-C7AB-4715-BE37-4F2E03040307}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{DD8B7F8F-CFC3-4ED1-8983-C99530B3FDA2}: DhcpNameServer = 192.168.1.1
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ Scan SSODL in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s

antique pc
 Posté le 21/09/2011 à 17:09 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Browser Configuration Utility Service (BCUService) . (.DeviceVM, Inc. - Browser Configuration Utility Auto-recovery.) - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: COM Service (COM Service) . (...) - C:\Program Files\GIGABYTE\G.O.M\GCSVR.exe
O23 - Service: Google Update Service (gupdate1c9857c1b0697c8) (gupdate1c9857c1b0697c8) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 275.3.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(.Microsoft Corporation - Microsoft Office Word.) - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.exe
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.626A24ED1228580B9518C01930936DF9] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeLogonTaskS-1-5-21-3482576520-1368502519-3057683841-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeLogonTaskS-1-5-21-3482576520-1368502519-3057683841-1002] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeLogonTaskS-1-5-21-3482576520-1368502519-3057683841-1003] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeLogonTaskS-1-5-21-3482576520-1368502519-3057683841-1004] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-3482576520-1368502519-3057683841-1000] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-3482576520-1368502519-3057683841-1002] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-3482576520-1368502519-3057683841-1003] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-3482576520-1368502519-3057683841-1004] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.BDEE1AEE61C63AB26A8A4F6B760B7388] [APT] [RealUpgradeScheduledTaskS-1-5-21-3482576520-1368502519-3057683841-1005] (.RealNetworks, Inc..) -- C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
[MD5.00000000000000000000000000000000] [APT] [{49063926-1E03-4138-841B-C275CFB21A4D}] (...) -- C:\Program Files\QuickTime\QTSystem\QuickTime.cpl" -c @0é0x706c676e (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{718D3D0B-53AB-4F01-91F2-461322E291FB}] (...) -- C:\Windows\system32\gsi.cpl (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{EF1DBC51-AEC0-4FF0-A279-840CBD95F68C}] (...) -- C:\Users\alain\Desktop\alain\Pilote_ECI_Telecom_ADSL_USB_-Pack_Wanadoo-_1[1].11.0007.5E_FT5a_XP\setup.exe (.not file.)
~ Scan Scheduled Task in 00mn 03s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avgio) . (.Avira GmbH - Avira AntiVir Support for Minifilter.) - C:\Program Files\Avira\AntiVir Desktop\avgio.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: (kbdclass) . (.Microsoft Corporation - Pilote de la classe Clavier.) - C:\Windows\system32\DRIVERS\kbdclass.sys
O41 - Driver: (kbdhid) . (.Microsoft Corporation - Pilote de filtre clavier HID.) - C:\Windows\system32\DRIVERS\kbdhid.sys
O41 - Driver: (mouclass) . (.Microsoft Corporation - Pilote de la classe Souris.) - C:\Windows\system32\DRIVERS\mouclass.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: (netbt) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (PSched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: (RasAcd) . (.Microsoft Corporation - RAS Automatic Connection Driver.) - C:\Windows\system32\DRIVERS\rasacd.sys
O41 - Driver: (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: (RDPENCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (Smb) . (.Microsoft Corporation - SMB Transport driver.) - C:\Windows\system32\DRIVERS\smb.sys
O41 - Driver: (ssmdrv) . (.Avira GmbH - AVIRA SnapShot Driver.) - C:\Windows\system32\DRIVERS\ssmdrv.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Terminal Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Winsock2 IFS Layer.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Scan Drivers in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 4.58 beta - (.Pas de propriétaire.) [HKLM] -- 7-Zip
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Shockwave Player 11 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: B-Association - (.Pas de propriétaire.) [HKLM] -- B-Association
O42 - Logiciel: Browser Configuration Utility - (.DeviceVM.) [HKLM] -- {5B363E1D-8C36-4458-BAE4-D5081999E094}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: CamStudio 2.0 Fr - (.Pas de propriétaire.) [HKLM] -- CamStudio 2.0 Fr_is1
O42 - Logiciel: CamStudio Lossless Codec v1.4 - (.(c) 2003 RenderSoft Software, Modifications Copyright © 2008 Jake P..) [HKLM] -- CamStudio Lossless Codec_is1
O42 - Logiciel: ConvertHelper 2.2 - (.DownloadHelper.) [HKLM] -- {27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1
O42 - Logiciel: DMIView B8.0717.01 - (.Gigabyte.) [HKLM] -- {3EE1008C-11A1-4F4F-8DB7-27573924DE78}
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: Easy Tune 6 B09.0817.2 - (.GIGABYTE.) [HKLM] -- InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}
O42 - Logiciel: File Shredder 2.0 - (.WipeSoft.) [HKLM] -- File Shredder_is1
O42 - Logiciel: G.O.M - (.Pas de propriétaire.) [HKLM] -- G.O.M
O42 - Logiciel: Grafouillette version 4.0.0 - (.La Limace Folle.) [HKLM] -- Grafouillette_is1
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595
O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.2.1300 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Mises à jour NVIDIA 1.3.5 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: Module linguistique Microsoft .NET Framework 3.5 SP1- fra - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 Language Pack SP1 - fra
O42 - Logiciel: Mozilla Firefox 6.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.2 (x86 fr)
O42 - Logiciel: Mozilla Thunderbird (2.0.0.6) - (.Mozilla.) [HKLM] -- Mozilla Thunderbird (2.0.0.6)
O42 - Logiciel: NETGEAR WG311v3 PCI Adapter - (.NETGEAR.) [HKLM] -- InstallShield_{70014586-7BBA-4A92-A610-CDC896C48F8F}
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: NVIDIA Pilote graphique 275.33 - (.NVIDIA Corporation.) [HKLM] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: PhotoFiltre - (.Pas de propriétaire.) [HKLM] -- PhotoFiltre
O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva
O42 - Logiciel: Revo Uninstaller 1.88 - (.VS Revo Group.) [HKLM] -- Revo Uninstaller
O42 - Logiciel: SFR - Kit de connexion - (.SFR.) [HKLM] -- SFR_Kit
O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906
O42 - Logiciel: Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB2416473
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2539636
O42 - Logiciel: SpamBayes 1.0.4 - (.Pas de propriétaire.) [HKLM] -- SpamBayes_is1
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: SpywareBlaster 4.4 - (.Javacool Software LLC.) [HKLM] -- SpywareBlaster_is1
O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2468871) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871
O42 - Logiciel: Update for Microsoft .NET Framework 4 Client Profile (KB2533523) - (.Microsoft Corporation.) [HKLM] -- {3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523
O42 - Logiciel: VideoLAN VLC media player 0.8.6c - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: eMule - (.Pas de propriétaire.) [HKLM] -- eMule

---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Avira]
[HKCU\Software\B-Association]
[HKCU\Software\BVRP Software]
[HKCU\Software\COMACC]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Delphree]
[HKCU\Software\DeviceVM]
[HKCU\Software\DownloadCenter]
[HKCU\Software\Gigabyte]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallShield]
[HKCU\Software\JavaSoft]
[HKCU\Software\LSoft Technologies]
[HKCU\Software\Lavasoft]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Modern UI Test]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\NVIDIA nvCpl Container]
[HKCU\Software\Netscape]
[HKCU\Software\Neuf]
[HKCU\Software\ODBC]
[HKCU\Software\OpenXML-ODF Translator]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Rapidtyping]
[HKCU\Software\RealNetworks]
[HKCU\Software\Realtek]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Shredder]
[HKCU\Software\StockholmInteractive]
[HKCU\Software\Trend Micro]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\VSRevoGroup]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\ahead]
[HKCU\Software\cybelsoft]
[HKCU\Software\eMule]
[HKCU\Software\keyhole.com]
[HKLM\Software\ACE Compression Software]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Audible]
[HKLM\Software\Avira]
[HKLM\Software\BVRP Software]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Creative Tech]
[HKLM\Software\DeviceVM]
[HKLM\Software\DownloadHelper]
[HKLM\Software\Fujitsu Siemens Computers]
[HKLM\Software\Fujitsu Siemens]
[HKLM\Software\Gigabyte]
[HKLM\Software\Google]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Khronos]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Marvell]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NETGEAR]
[HKLM\Software\NOS]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nero]
[HKLM\Software\Neuf]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RealNetworks]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Sonic]
[HKLM\Software\SpywareBlaster]
[HKLM\Software\Symantec]
[HKLM\Software\TrendMicro]
[HKLM\Software\VideoLAN]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Windows]
[HKLM\Software\X-AVCSD]
[HKLM\Software\Xing Technology Corp.]
[HKLM\Software\ahead]
[HKLM\Software\cybelsoft]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 01/07/2008 - 12:18:02 - [2913914] ----D- C:\Program Files\7-Zip
O43 - CFD: 20/02/2010 - 15:45:46 - [213188589] ----D- C:\Program Files\Adobe
O43 - CFD: 07/05/2010 - 12:03:52 - [0] ----D- C:\Program Files\AMD
O43 - CFD: 02/03/2008 - 19:26:42 - [2199758] ----D- C:\Program Files\Apple Software Update
O43 - CFD: 15/05/2009 - 10:32:10 - [208894961] ----D- C:\Program Files\Avira
O43 - CFD: 06/07/2009 - 18:10:44 - [8228969] ----D- C:\Program Files\B-Association
O43 - CFD: 06/05/2010 - 19:36:40 - [1658213] ----D- C:\Program Files\BBC iPlayer Desktop
O43 - CFD: 10/05/2010 - 10:03:02 - [8387123] ----D- C:\Program Files\CamStudio
O43 - CFD: 15/08/2011 - 14:49:36 - [6857549] ----D- C:\Program Files\CCleaner
O43 - CFD: 19/09/2011 - 17:11:48 - [976509404] ----D- C:\Program Files\Common Files
O43 - CFD: 20/03/2011 - 20:51:00 - [30845622] ----D- C:\Program Files\ConvertHelper
O43 - CFD: 19/02/2011 - 11:52:40 - [3882032] ----D- C:\Program Files\Defraggler
O43 - CFD: 13/09/2011 - 10:17:34 - [1219831] --H-D- C:\Program Files\DeviceVM
O43 - CFD: 09/11/2007 - 16:16:58 - [11209377] ----D- C:\Program Files\eMule
O43 - CFD: 06/10/2007 - 18:21:22 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 21/05/2010 - 01:18:22 - [2165980] ----D- C:\Program Files\File Shredder
O43 - CFD: 13/09/2011 - 11:30:32 - [29151828] ----D- C:\Program Files\GIGABYTE
O43 - CFD: 07/07/2011 - 07:47:28 - [92130795] ----D- C:\Program Files\Google
O43 - CFD: 21/09/2011 - 09:50:32 - [13143348] --H-D- C:\Program Files\InstallShield Installation Information
O43 - CFD: 15/08/2011 - 19:58:56 - [11165997] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 23/06/2011 - 10:09:28 - [90783831] ----D- C:\Program Files\Java
O43 - CFD: 03/01/2011 - 12:53:12 - [716948] ----D- C:\Program Files\JavaRa
O43 - CFD: 03/09/2008 - 19:53:02 - [2590288] ----D- C:\Program Files\La Limace Folle
O43 - CFD: 19/09/2011 - 17:12:06 - [3961973] ----D- C:\Program Files\Logitech
O43 - CFD: 15/08/2011 - 14:23:42 - [6511189] ----D- C:\Program Files\ma-config.com
O43 - CFD: 20/09/2011 - 13:07:24 - [7173284] ----D- C:\Program Files\Malwarebytes' Anti-Malware
O43 - CFD: 06/10/2007 - 18:26:28 - [22588297] ----D- C:\Program Files\MB application
O43 - CFD: 08/05/2010 - 00:36:24 - [59775] ----D- C:\Program Files\Microsoft ATS
O43 - CFD: 04/08/2010 - 17:47:58 - [800662] ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2
O43 - CFD: 02/11/2006 - 14:37:36 - [93446071] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 01/07/2011 - 12:26:02 - [240359582] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/06/2011 - 13:40:58 - [38411899] ----D- C:\Program Files\Microsoft Silverlight
O43 - CFD: 30/07/2010 - 11:21:18 - [1829877] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 10/10/2007 - 23:01:28 - [14904] ----D- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 10/10/2007 - 23:09:22 - [4368271] ----D- C:\Program Files\Microsoft Works
O43 - CFD: 25/06/2010 - 14:36:10 - [146787] ----D- C:\Program Files\Microsoft.NET
O43 - CFD: 22/08/2010 - 21:50:38 - [99342446] ----D- C:\Program Files\Movie Maker
O43 - CFD: 07/09/2011 - 16:55:44 - [45977355] ----D- C:\Program Files\Mozilla Firefox
O43 - CFD: 26/03/2008 - 18:34:52 - [25231050] ----D- C:\Program Files\Mozilla Thunderbird
O43 - CFD: 02/11/2006 - 14:37:36 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 25/04/2009 - 18:19:16 - [69486600] ----D- C:\Program Files\MSECache
O43 - CFD: 01/01/2006 - 01:35:58 - [275740630] ----D- C:\Program Files\Nero
O43 - CFD: 21/09/2011 - 09:50:18 - [2592291] ----D- C:\Program Files\NETGEAR
O43 - CFD: 06/10/2007 - 18:37:40 - [14912306] ----D- C:\Program Files\Neuf
O43 - CFD: 30/07/2010 - 15:15:42 - [69838] ----D- C:\Program Files\NirSoft
O43 - CFD: 13/01/2009 - 01:20:48 - [0] ----D- C:\Program Files\NOS
O43 - CFD: 01/07/2011 - 12:33:18 - [435143679] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 19/07/2011 - 22:23:18 - [19944795] ----D- C:\Program Files\OpenXML-ODF Translator
O43 - CFD: 11/11/2009 - 21:47:26 - [3553163] ----D- C:\Program Files\PhotoFiltre
O43 - CFD: 02/03/2008 - 19:28:02 - [80483714] ----D- C:\Program Files\QuickTime
O43 - CFD: 13/10/2008 - 18:47:24 - [6032811] ----D- C:\Program Files\RapidTyping
O43 - CFD: 18/11/2010 - 20:42:12 - [91796936] ----D- C:\Program Files\Real
O43 - CFD: 07/05/2010 - 18:13:48 - [14520133] ----D- C:\Program Files\Realtek
O43 - CFD: 24/08/2011 - 12:01:32 - [2103600] ----D- C:\Program Files\Recuva
O43 - CFD: 02/11/2006 - 14:37:36 - [38694657] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 22/04/2008 - 22:35:06 - [9748539] ----D- C:\Program Files\SpamBayes
O43 - CFD: 15/02/2011 - 19:28:46 - [88093843] ----D- C:\Program Files\Spybot - Search & Destroy
O43 - CFD: 20/09/2011 - 13:05:16 - [5634580] ----D- C:\Program Files\SpywareBlaster
O43 - CFD: 13/09/2011 - 10:30:46 - [0] --H-D- C:\Program Files\Temp
O43 - CFD: 15/06/2010 - 11:21:54 - [1199318] ----D- C:\Program Files\trend micro
O43 - CFD: 21/10/2008 - 10:36:42 - [73728] ----D- C:\Program Files\UDPixel
O43 - CFD: 02/11/2006 - 15:01:56 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 06/10/2007 - 17:50:30 - [33612600] ----D- C:\Program Files\VLC
O43 - CFD: 18/05/2010 - 16:25:14 - [6545331] ----D- C:\Program Files\VS Revo Group
O43 - CFD: 29/01/2010 - 16:46:38 - [3545] ----D- C:\Program Files\WhoCrashed
O43 - CFD: 06/10/2009 - 17:10:32 - [1016832] ----D- C:\Program Files\Windows Calendar
O43 - CFD: 06/10/2009 - 17:10:30 - [2737152] ----D- C:\Program Files\Windows Collaboration
O43 - CFD: 06/10/2009 - 17:10:24 - [4490624] ----D- C:\Program Files\Windows Defender
O43 - CFD: 06/10/2009 - 17:10:28 - [7084664] ----D- C:\Program Files\Windows Journal
O43 - CFD: 30/03/2011 - 13:09:50 - [155184538] ----D- C:\Program Files\Windows Live
O43 - CFD: 15/09/2011 - 02:16:10 - [9116344] ----D- C:\Program Files\Windows Mail
O43 - CFD: 13/10/2010 - 12:31:58 - [4498121] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 06/10/2007 - 18:21:22 - [7957544] ----D- C:\Program Files\Windows NT
O43 - CFD: 06/10/2009 - 17:10:28 - [13528738] ----D- C:\Program Files\Windows Photo Gallery
O43 - CFD: 04/11/2009 - 19:19:34 - [134144] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 06/10/2009 - 17:10:30 - [6527558] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 21/09/2011 - 16:34:12 - [5471079] ----D- C:\Program Files\ZHPDiag
O43 - CFD: 10/10/2010 - 22:07:16 - [6247934] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 06/05/2010 - 19:36:36 - [32158176] ----D- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 01/01/2006 - 01:36:56 - [93207770] ----D- C:\Program Files\Common Files\Ahead
O43 - CFD: 10/10/2007 - 23:01:46 - [86016] ----D- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 01/01/2006 - 01:44:38 - [692142] ----D- C:\Program Files\Common Files\Fujitsu Siemens Computers
O43 - CFD: 13/09/2011 - 11:30:32 - [10715196] ----D- C:\Program Files\Common Files\InstallShield
O43 - CFD: 23/06/2011 - 10:10:52 - [45752368] ----D- C:\Program Files\Common Files\Java
O43 - CFD: 19/09/2011 - 17:13:22 - [3254703] ----D- C:\Program Files\Common Files\Logishrd
O43 - CFD: 15/06/2011 - 13:42:04 - [488811502] ----D- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 18/11/2010 - 20:36:34 - [5033111] ----D- C:\Program Files\Common Files\Real
O43 - CFD: 02/11/2006 - 13:18:34 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 02/11/2006 - 13:18:34 - [41101735] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 08/10/2007 - 23:13:50 - [0] ----D- C:\Program Files\Common Files\SWF Studio
O43 - CFD: 06/10/2007 - 18:01:14 - [459016] ----D- C:\Program Files\Common Files\Symantec Shared
O43 - CFD: 21/10/2010 - 10:35:44 - [27055382] ----D- C:\Program Files\Common Files\System
O43 - CFD: 30/07/2010 - 11:09:50 - [221579395] ----D- C:\Program Files\Common Files\Windows Live
O43 - CFD: 21/11/2007 - 19:02:10 - [352256] ----D- C:\Program Files\Common Files\xing shared
O43 - CFD: 10/10/2010 - 22:07:16 - [6103291] ----D- C:\ProgramData\Adobe
O43 - CFD: 02/03/2008 - 19:26:42 - [2066944] ----D- C:\ProgramData\Apple
O43 - CFD: 14/10/2009 - 08:57:02 - [29434082] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 15/05/2009 - 10:32:10 - [57762468] ----D- C:\ProgramData\Avira
O43 - CFD: 06/10/2007 - 18:21:22 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 09/11/2007 - 16:17:24 - [0] ----D- C:\ProgramData\eMule
O43 - CFD: 06/10/2007 - 18:21:22 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 13/09/2011 - 11:30:38 - [478] ----D- C:\ProgramData\InstallShield
O43 - CFD: 16/07/2008 - 21:46:38 - [16589225] ----D- C:\ProgramData\Lavasoft
O43 - CFD: 19/09/2011 - 17:14:46 - [3345063] ----D- C:\ProgramData\Logishrd
O43 - CFD: 15/08/2011 - 14:23:42 - [1394299] ----D- C:\ProgramData\ma-config.com
O43 - CFD: 13/01/2009 - 18:25:54 - [17210552] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 06/10/2007 - 18:21:22 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 15/08/2011 - 14:15:30 - [513368565] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 06/10/2007 - 18:21:22 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 01/01/2006 - 01:35:58 - [2839479] ----D- C:\ProgramData\Nero
O43 - CFD: 31/08/2011 - 23:18:04 - [155] ----D- C:\ProgramData\Norton
O43 - CFD: 31/08/2011 - 23:09:30 - [5873453] ----D- C:\ProgramData\NortonInstaller
O43 - CFD: 13/01/2009 - 01:20:50 - [0] ----D- C:\ProgramData\NOS
O43 - CFD: 13/09/2011 - 10:22:08 - [603392] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 14/09/2010 - 12:51:44 - [608137] ----D- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 20/05/2010 - 11:50:38 - [1388400] ----D- C:\ProgramData\Real
O43 - CFD: 19/09/2011 - 21:37:40 - [136295455] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 02/11/2006 - 15:02:04 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 09/05/2010 - 23:46:48 - [329] ----D- C:\ProgramData\Sun
O43 - CFD: 31/08/2011 - 23:18:04 - [2346] ----D- C:\ProgramData\Symantec
O43 - CFD: 20/09/2011 - 13:05:24 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 02/11/2006 - 15:02:06 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 04/03/2008 - 15:23:40 - [14134] ----D- C:\ProgramData\WLInstaller
O43 - CFD: 10/05/2010 - 03:39:40 - [9068903] ----D- C:\Users\moi\AppData\Roaming\Adobe
O43 - CFD: 09/03/2008 - 20:50:24 - [43062] ----D- C:\Users\moi\AppData\Roaming\Ahead
O43 - CFD: 03/11/2010 - 23:36:22 - [0] ----D- C:\Users\moi\AppData\Roaming\Avira
O43 - CFD: 15/10/2007 - 22:08:38 - [26518997] ----D- C:\Users\moi\AppData\Roaming\Google
O43 - CFD: 30/07/2010 - 13:00:04 - [5927] ----D- C:\Users\moi\AppData\Roaming\Grafouillette
O43 - CFD: 06/10/2007 - 18:25:06 - [0] ----D- C:\Users\moi\AppData\Roaming\Identities
O43 - CFD: 19/09/2011 - 17:13:24 - [352] ----D- C:\Users\moi\AppData\Roaming\Leadertech
O43 - CFD: 19/09/2011 - 17:10:56 - [129572] ----D- C:\Users\moi\AppData\Roaming\Logishrd
O43 - CFD: 19/09/2011 - 17:14:44 - [10386] ----D- C:\Users\moi\AppData\Roaming\Logitech
O43 - CFD: 15/10/2007 - 17:52:08 - [42112] ----D- C:\Users\moi\AppData\Roaming\Macromedia
O43 - CFD: 13/01/2009 - 18:26:00 - [78612] ----D- C:\Users\moi\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:36 - [0] ----D- C:\Users\moi\AppData\Roaming\Media Center Programs
O43 - CFD: 19/05/2011 - 09:59:32 - [133011024] -S--D- C:\Users\moi\AppData\Roaming\Microsoft
O43 - CFD: 03/07/2008 - 23:32:06 - [35127232] ----D- C:\Users\moi\AppData\Roaming\Mozilla
O43 - CFD: 14/10/2007 - 18:32:18 - [0] ----D- C:\Users\moi\AppData\Roaming\PeerNetworking
O43 - CFD: 30/07/2010 - 13:00:06 - [1179] ----D- C:\Users\moi\AppData\Roaming\RapidTyping
O43 - CFD: 20/03/2011 - 03:53:54 - [3336537] ----D- C:\Users\moi\AppData\Roaming\Real
O43 - CFD: 22/04/2008 - 22:35:16 - [49249] ----D- C:\Users\moi\AppData\Roaming\SpamBayes
O43 - CFD: 30/07/2010 - 13:00:06 - [374152] ----D- C:\Users\moi\AppData\Roaming\Thunderbird
O43 - CFD: 07/04/2010 - 21:10:18 - [0] ----D- C:\Users\moi\AppData\Roaming\U3
O43 - CFD: 08/10/2007 - 23:52:54 - [366810] ----D- C:\Users\moi\AppData\Roaming\vlc
O43 - CFD: 07/05/2010 - 00:43:04 - [0] ----D- C:\Users\moi\AppData\Roaming\WinBatch
O43 - CFD: 27/05/2011 - 23:28:44 - [0] ----D- C:\Users\moi\AppData\Roaming\Windows Live Writer
O43 - CFD: 31/08/2010 - 17:41:50 - [0] ----D- C:\Users\moi\AppData\Local\.stunnixws
O43 - CFD: 10/10/2010 - 22:06:44 - [801614] ----D- C:\Users\moi\AppData\Local\Adobe
O43 - CFD: 28/03/2008 - 16:47:26 - [1950597] ----D- C:\Users\moi\AppData\Local\Ahead
O43 - CFD: 02/03/2008 - 19:26:44 - [0] ----D- C:\Users\moi\AppData\Local\Apple
O43 - CFD: 02/03/2008 - 19:30:58 - [0] ----D- C:\Users\moi\AppData\Local\Apple Computer
O43 - CFD: 06/10/2007 - 18:24:48 - [0] -SH-D- C:\Users\moi\AppData\Local\Application Data
O43 - CFD: 11/10/2007 - 22:08:08 - [0] ----D- C:\Users\moi\AppData\Local\Apps
O43 - CFD: 08/05/2010 - 00:39:36 - [2385535] ----D- C:\Users\moi\AppData\Local\ElevatedDiagnostics
O43 - CFD: 09/11/2007 - 16:16:56 - [61999] ----D- C:\Users\moi\AppData\Local\eMule
O43 - CFD: 02/02/2009 - 23:23:48 - [88561] ----D- C:\Users\moi\AppData\Local\Google
O43 - CFD: 06/10/2007 - 18:24:48 - [0] -SH-D- C:\Users\moi\AppData\Local\Historique
O43 - CFD: 27/05/2011 - 23:28:24 - [1622534885] ----D- C:\Users\moi\AppData\Local\Microsoft
O43 - CFD: 10/08/2011 - 22:06:44 - [46778] ----D- C:\Users\moi\AppData\Local\MigWiz
O43 - CFD: 06/10/2007 - 17:45:10 - [54327583] ----D- C:\Users\moi\AppData\Local\Mozilla
O43 - CFD: 18/11/2010 - 20:44:26 - [0] ----D- C:\Users\moi\AppData\Local\Real
O43 - CFD: 21/09/2011 - 16:32:54 - [468993] ----D- C:\Users\moi\AppData\Local\Temp
O43 - CFD: 06/10/2007 - 18:24:48 - [0] -SH-D- C:\Users\moi\AppData\Local\Temporary Internet Files
O43 - CFD: 06/10/2007 - 17:48:18 - [2267227] ----D- C:\Users\moi\AppData\Local\Thunderbird
O43 - CFD: 16/10/2007 - 15:27:46 - [2933413] ----D- C:\Users\moi\AppData\Local\VirtualStore
O43 - CFD: 10/08/2011 - 14:35:08 - [139264] ----D- C:\Users\moi\AppData\Local\Windows Live
O43 - CFD: 27/05/2011 - 23:28:52 - [372494] ----D- C:\Users\moi\AppData\Local\Windows Live Writer
O43 - CFD: 27/04/2011 - 17:19:36 - [0] ----D- C:\Users\moi\AppData\Local\{0DEF0E16-AED5-4DA5-AF28-9E10368FACB7}
O43 - CFD: 11/05/2011 - 16:00:54 - [0] ----D- C:\Users\moi\AppData\Local\{2AB379AF-97BF-4E76-A0C7-39E4AE6D0D61}
O43 - CFD: 09/05/2011 - 16:19:48 - [0] ----D- C:\Users\moi\AppData\Local\{49807123-699B-4353-8BC2-4AB8112371E9}
O43 - CFD: 25/05/2011 - 12:28:08 - [0] ----D- C:\Users\moi\AppData\Local\{49BBA995-F976-40FD-927B-E4D75C4951F6}
O43 - CFD: 27/05/2011 - 23:29:04 - [0] ----D- C:\Users\moi\AppData\Local\{6398B7B9-CB16-4D8F-BB89-EDE1BE9851EE}
O43 - CFD: 18/05/2011 - 14:47:14 - [0] ----D- C:\Users\moi\AppData\Local\{AEDFC1C6-57A0-4563-AD24-75CC8FFACD16}
~ Scan Program Folder in 00mn 04s

antique pc
 Posté le 21/09/2011 à 17:10 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien


---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.C171E008576D42293A83952C2ACDC9CD] - 21/09/2011 - 09:33:36 ---A- . (...) -- C:\Windows\WindowsUpdate.log [153710]
O44 - LFC:[MD5.5F39D138BCC8592BA9B7A587A0F0C66E] - 21/09/2011 - 08:53:24 ---A- . (...) -- C:\service.log [40]
O44 - LFC:[MD5.2E86DD1CF497E8E0E849239635D9F8D2] - 21/09/2011 - 08:53:04 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.029C11ACC4B00775C583940C7B9D460C] - 20/09/2011 - 10:16:48 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1495948]
O44 - LFC:[MD5.A29BDBF69BA7507D010302466856D23E] - 20/09/2011 - 10:16:48 ---A- . (...) -- C:\Windows\system32\perfc009.dat [103872]
O44 - LFC:[MD5.5724E6AE90EFD4C65AA44B1D73AC581B] - 20/09/2011 - 10:16:48 ---A- . (...) -- C:\Windows\system32\perfc00C.dat [126420]
O44 - LFC:[MD5.C2FC1A01F916B60051649251BBE7AC0B] - 20/09/2011 - 10:16:48 ---A- . (...) -- C:\Windows\system32\perfh009.dat [595798]
O44 - LFC:[MD5.7DB8D293E49E91805AAB287C328FEED1] - 20/09/2011 - 10:16:48 ---A- . (...) -- C:\Windows\system32\perfh00C.dat [678804]
O44 - LFC:[MD5.1179698199B25FA1318CBEDBE1071CBE] - 19/09/2011 - 16:13:13 ---A- . (...) -- C:\Windows\LDPINST.LOG [8134]
O44 - LFC:[MD5.70FF42294446270A532AC78A24DC5903] - 19/09/2011 - 16:13:13 ---A- . (...) -- C:\Windows\setupact.log [34]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 19/09/2011 - 16:13:13 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.3C10E3A75FF02FB7F692C4DF6BBEFEBD] - 19/09/2011 - 16:13:08 ---A- . (...) -- C:\Windows\LkmdfCoInst.log [339]
O44 - LFC:[MD5.B412A5393E9BF796D97B12E0BDD1E12A] - 15/09/2011 - 09:43:38 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\system32\FlashPlayerCPLApp.cpl [404640]
O44 - LFC:[MD5.FBB3FB8272B66E4233BE2453F3A56325] - 15/09/2011 - 01:16:35 ---A- . (...) -- C:\Windows\win.ini [240]
O44 - LFC:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 13/09/2011 - 15:09:32 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [138192]
O44 - LFC:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 13/09/2011 - 15:09:32 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [66616]
O44 - LFC:[MD5.3AF0AE042AFE486B22644CD3FBEBF2E2] - 13/09/2011 - 10:47:26 ---A- . (.Windows (R) 2000 DDK provider - GIGABYTE Tools.) -- C:\Windows\etdrv.sys [17488]
O44 - LFC:[MD5.689A8EEF2A2D62B28A0A578A6196531C] - 13/09/2011 - 10:45:37 ---A- . (...) -- C:\Windows\system32\drivers\GVTDrv.sys [24944]
O44 - LFC:[MD5.D556CB79967E92B5CC69686D16C1D846] - 13/09/2011 - 10:45:31 ---A- . (.Windows (R) 2000 DDK provider - GIGABYTE Tools.) -- C:\Windows\gdrv.sys [17488]
O44 - LFC:[MD5.7B1DE0647CED400FAB968A051742D11E] - 13/09/2011 - 10:30:31 ---A- . (.InstallShield Software Corporation - InstallShield Update Service Update Manager.) -- C:\Windows\system32\ISUSPM.cpl [73728]
O44 - LFC:[MD5.A8ED0188CA6580088F760D25D83E557E] - 13/09/2011 - 10:29:04 ---A- . (...) -- C:\Windows\GSetup.ini [10]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/09/2011 - 10:20:44 ---A- . (...) -- C:\Windows\_INS33IS._MP [0]
O44 - LFC:[MD5.4E0417AAC3122B7322DAE8698A5222A8] - 13/09/2011 - 10:20:32 ---A- . (.Pas de propriétaire - USetup MFC Application.) -- C:\Windows\system32\usetup.exe [20480]
O44 - LFC:[MD5.86F76EE0F1C65DCA0958F66C6E0B324A] - 13/09/2011 - 10:16:52 ---A- . (...) -- C:\Windows\_delis32.ini [268]
O44 - LFC:[MD5.DD0D2AADD8A34D70E6F6B936DF2F03BD] - 13/09/2011 - 09:27:24 ---A- . (.Waves Audio Ltd. - General Library for Plug-Ins.) -- C:\Windows\system32\WavesLib.dll [1784352]
O44 - LFC:[MD5.D175A215DF2ECC0D3B3AFBDFFEAE4087] - 13/09/2011 - 09:27:22 ---A- . (.SRS Labs, Inc. - COM object implementing SRS Headphone 360.) -- C:\Windows\system32\SRSHP360.dll [167936]
O44 - LFC:[MD5.BA21C4B843B4B1DD787A660E17589F4D] - 13/09/2011 - 09:27:22 ---A- . (.SRS Labs, Inc. - TruSurround HD and HD4 COM object for Windo.) -- C:\Windows\system32\SRSTSHD.dll [185776]
O44 - LFC:[MD5.E5639080A7FFA5F03642F4D4CDB1E9CE] - 13/09/2011 - 09:27:22 ---A- . (.SRS Labs, Inc. - TruSurroundXT Module.) -- C:\Windows\system32\SRSTSXT.dll [339968]
O44 - LFC:[MD5.E067361E60FCAE24790B88135895F3C8] - 13/09/2011 - 09:27:22 ---A- . (.SRS Labs, Inc. - WOW HD COM object for Windows.) -- C:\Windows\system32\SRSWOW.dll [135168]
O44 - LFC:[MD5.23480F37E97EA1A5AE1D7FB2D2977249] - 13/09/2011 - 09:27:21 ---A- . (.Realtek Semiconductor Corp. - Realtek APO API.) -- C:\Windows\system32\RtkApoApi.dll [326176]
O44 - LFC:[MD5.8929C64CA840752BED60315ACC3ED447] - 13/09/2011 - 09:27:21 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Coinstaller.) -- C:\Windows\system32\RtkCoInst.dll [52256]
O44 - LFC:[MD5.CC68D15F30EBFD2EC788C3CB90748478] - 13/09/2011 - 09:27:21 ---A- . (.Realtek Semiconductor Corp. - Realtek LFX/GFX DSP UI component for Window.) -- C:\Windows\system32\RtkPgExt.dll [1265696]
O44 - LFC:[MD5.F78659597309A6D647FD8F1B0C907DAA] - 13/09/2011 - 09:27:18 ---A- . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\Windows\system32\RTSndMgr.cpl [551456]
O44 - LFC:[MD5.B29E79C67F3779E70BA187E31B639EBC] - 13/09/2011 - 09:27:17 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2745760]
O44 - LFC:[MD5.0FE8E6440F9CFD5F32BB0BDDE4347A55] - 13/09/2011 - 09:27:16 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x86.) -- C:\Windows\system32\RP3DAA32.dll [290304]
O44 - LFC:[MD5.7E2B73200E4169AED13F955A62FC8D47] - 13/09/2011 - 09:27:16 ---A- . (.Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x86.) -- C:\Windows\system32\RP3DHT32.dll [290304]
O44 - LFC:[MD5.7458B8F9AC005CA29BCD6C133B2E4DF4] - 13/09/2011 - 09:27:16 ---A- . (.Waves Audio Ltd. - Pas de description.) -- C:\Windows\system32\MaxxAudioEQ.dll [1933312]
O44 - LFC:[MD5.26AE7FE6953D584D349A91A72849A771] - 13/09/2011 - 09:27:15 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\system32\MaxxAudioAPO.dll [126976]
O44 - LFC:[MD5.A9E5D24FB8AC7AE548BACD085CB0D583] - 13/09/2011 - 09:27:15 ---A- . (.Waves Audio Ltd. - MaxxAudio APO.) -- C:\Windows\system32\MaxxAudioAPO20.dll [159744]
O44 - LFC:[MD5.C8D30EA2E09EB35B2741CA2F7A93249E] - 13/09/2011 - 09:27:13 ---A- . (.Andrea Electronics Corporation - Capture Noise Filters (32-bit).) -- C:\Windows\system32\AERTACap.dll [142848]
O44 - LFC:[MD5.6DFB7FB4BF8BC0EFBD2786261E732888] - 13/09/2011 - 09:27:13 ---A- . (.Andrea Electronics Corporation - Render Noise Filters (32-bit).) -- C:\Windows\system32\AERTARen.dll [125952]
O44 - LFC:[MD5.DBCB0D820534FF5E5A8738A2125304C0] - 13/09/2011 - 09:27:13 ---A- . (.Fortemedia Corporation - Fortemedia SAMSoft sAPO.) -- C:\Windows\system32\FMAPO.dll [266240]
O44 - LFC:[MD5.BB0880BB3D46FF7054F98D2A643CD055] - 13/09/2011 - 09:27:04 R---- . (.Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) -- C:\Windows\RtlExUpd.dll [831488]
O44 - LFC:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 31/08/2011 - 16:00:50 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [22216]
O44 - LFC:[MD5.DBA91CD5A3A68302967C03213E52BDE8] - 31/08/2011 - 13:02:19 --HA- . (...) -- C:\Windows\QTFont.qfn [54156]
O44 - LFC:[MD5.C2EF11AB2768C2E15DCC26E4F1B40787] - 24/08/2011 - 12:41:56 ---A- . (...) -- C:\Windows\system32\FNTCACHE.DAT [259416]
O44 - LFC:[MD5.B06A2FFC4503DFF01BAD161F37FFE0F9] - 24/08/2011 - 10:53:28 ---A- . (...) -- C:\Windows\ODBC.INI [382]
~ Scan Files in 01mn 10s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Volume Manager Extension Driver.) -- C:\Windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{6dc06e6f-c719-11e0-836f-0026f2b0d161}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.)
O51 - MPSK:{f41a3afc-3a00-11de-8f52-003005de23e6}\AutoRun\command. (...) -- L:\LaunchU3.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\system32\iccvid.dll
O52 - TDSD: \Drivers32\"vidc.CSCD"="camcodec.dll" . (.RenderSoft Software - CamStudio lossless video codec.) -- C:\Windows\system32\camcodec.dll
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\EasyTuneVI [Key] . (.Pas de propriétaire - ETcall MFC Application.) -- C:\Program Files\GIGABYTE\ET6\ETcall.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TS Single Sign On Security Package.) -- C:\Windows\system32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=2
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKCU\...\Policies\System] - "LogonHoursAction"=2
O55 - MWPS:[HKCU\...\Policies\System] - "DontDisplayLogonHoursWarnings"=1
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "BindDirectlyToPropertySetStorage"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2EDC5BBAC6C651ECE337BDE8ED97C9FB] - 02/11/2006 - 10:51:38 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [420968]
O58 - SDL:[MD5.B84088CA3CDCA97DA44A984C6CE1CCAD] - 02/11/2006 - 10:51:32 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [297576]
O58 - SDL:[MD5.7880C67BCCC27C86FD05AA2AFB5EA469] - 02/11/2006 - 10:50:35 ---A- . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\system32\drivers\adpu160m.sys [98408]
O58 - SDL:[MD5.9AE713F8E30EFC2ABCCD84904333DF4D] - 02/11/2006 - 10:51:00 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\system32\drivers\adpu320.sys [147048]
O58 - SDL:[MD5.90395B64600EBB4552E26E178C94B2E4] - 02/11/2006 - 10:49:20 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [14952]
O58 - SDL:[MD5.5F673180268BB1FDB69C99B6619FE379] - 02/11/2006 - 10:50:09 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [67688]
O58 - SDL:[MD5.957F7540B5E7F602E44648C7DE5A1C05] - 02/11/2006 - 10:50:10 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [67688]
O58 - SDL:[MD5.1E4114685DE1FFA9675E09C6A1FB3F4B] - 15/05/2009 - 15:09:32 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [66616]
O58 - SDL:[MD5.0F78D3DAE6DEDD99AE54C9491C62ADF2] - 15/05/2009 - 15:09:32 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [138192]
O58 - SDL:[MD5.9F9ACC7F7CCDE8A15C282D3F88B43309] - 02/11/2006 - 09:24:45 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [13568]
O58 - SDL:[MD5.56801AD62213A41F6497F96DEE83755A] - 02/11/2006 - 09:24:46 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [5248]
O58 - SDL:[MD5.B304E75CFF293029EDDF094246747113] - 02/11/2006 - 09:25:24 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [71808]
O58 - SDL:[MD5.203F0B1E73ADADBBB7B7B1FABD901F6B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [62336]
O58 - SDL:[MD5.BD456606156BA17E60A04E18016AE54B] - 02/11/2006 - 09:24:44 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:[MD5.AF72ED54503F717A43268B3CC5FAEC2E] - 02/11/2006 - 09:24:47 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [11904]
O58 - SDL:[MD5.45201046C776FFDAF3FC8A0029C581C8] - 02/11/2006 - 10:49:28 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [16488]
O58 - SDL:[MD5.AE1FDF7BF7BB6C6A70F67699D880592A] - 02/11/2006 - 10:50:11 ---A- . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\system32\drivers\djsvs.sys [71272]
O58 - SDL:[MD5.F88FB26547FD2CE6D0A5AF2985892C48] - 02/11/2006 - 08:30:54 ---A- . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserialized driver.) -- C:\Windows\system32\drivers\E1G60I32.sys [117760]
O58 - SDL:[MD5.E8F3F21A71720C84BCF423B80028359F] - 02/11/2006 - 10:51:34 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [316520]
O58 - SDL:[MD5.689A8EEF2A2D62B28A0A578A6196531C] - 07/05/2010 - 10:45:37 ---A- . (...) -- C:\Windows\system32\drivers\GVTDrv.sys [24944]
O58 - SDL:[MD5.DF353B401001246853763C4B7AAA6F50] - 02/11/2006 - 10:50:10 ---A- . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\system32\drivers\HpCISSs.sys [37480]
O58 - SDL:[MD5.C957BF4B5D80B46C5017BF0101E6C906] - 02/11/2006 - 10:51:25 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\system32\drivers\iaStorV.sys [232040]
O58 - SDL:[MD5.2D077BF86E843F901D8DB709C95B49A5] - 02/11/2006 - 10:50:17 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [41576]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\system32\drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\system32\drivers\iteraid.sys [35944]
O58 - SDL:[MD5.A2262FB9F28935E862B4DB46438C80D2] - 02/11/2006 - 10:50:04 ---A- . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [65640]
O58 - SDL:[MD5.30D73327D390F72A62F32C103DAF1D6D] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [65640]
O58 - SDL:[MD5.E1E36FEFD45849A95F1AB81DE0159FE3] - 02/11/2006 - 10:50:10 ---A- . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [65640]
O58 - SDL:[MD5.69A6268D7F81E53D568AB4E7E991CAF3] - 23/04/2009 - 16:00:50 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [22216]
O58 - SDL:[MD5.D153B14FC6598EAE8422A2037553ADCE] - 02/11/2006 - 10:49:53 ---A- . (.LSI Logic Corporation - MEGASAS RAID Controller Driver for Windows Vista/Longhorn for x.) -- C:\Windows\system32\drivers\megasas.sys [28776]
O58 - SDL:[MD5.4FBBB70D30FD20EC51F80061703B001E] - 02/11/2006 - 10:49:59 ---A- . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows Vista/Longhorn for.) -- C:\Windows\system32\drivers\Mraid35x.sys [33384]
O58 - SDL:[MD5.02B74BA962232EA2A1771AA522143EAA] - 21/09/2011 - 16:14:24 ---A- . (.Marvell Semiconductor, Inc - ExtSta NDIS 6.0 driver.) -- C:\Windows\system32\drivers\MRVW13B.sys [256512]
O58 - SDL:[MD5.2E7FB731D4790A1BC6270ACCEFACB36E] - 02/11/2006 - 10:50:19 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [45160]
O58 - SDL:[MD5.E875C093AEC0C978A90F30C9E0DFBB72] - 02/11/2006 - 08:36:50 ---A- . (.N-trig Innovative Technologies - Pilote intégré de digitalisateur de tablette N-trig.) -- C:\Windows\system32\drivers\ntrigdigi.sys [20608]
O58 - SDL:[MD5.847B1755F7757F825305A1FFE6DAC3E9] - 21/05/2011 - 05:01:00 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 275.33.) -- C:\Windows\system32\drivers\nvlddmkm.sys [10589800]
O58 - SDL:[MD5.1657F3FBD9061526C14FF37E79306F98] - 02/11/2006 - 08:30:56 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvm60x32.sys [429056]
O58 - SDL:[MD5.1EFEC38A852AB35883BFFF3427B92B3F] - 12/08/2010 - 12:07:50 ---A- . (.NVIDIA Corporation - NVIDIA MCP Networking Function Driver..) -- C:\Windows\system32\drivers\nvmfdx32.sys [292712]
O58 - SDL:[MD5.4A5FCAB82D9BF6AF8A023A66802FE9E9] - 05/01/2007 - 20:59:42 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [35920]
O58 - SDL:[MD5.032EF66DD96692AD3A9D36160F467F67] - 15/08/2011 - 10:32:54 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor32.sys [212000]
O58 - SDL:[MD5.CCDAC889326317792480C0A67156A1EC] - 02/11/2006 - 10:51:45 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [900712]
O58 - SDL:[MD5.81A7E5C076E59995D54BC1ED3A16E60B] - 02/11/2006 - 10:50:35 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [106088]
O58 - SDL:[MD5.B29E79C67F3779E70BA187E31B639EBC] - 13/09/2011 - 10:42:00 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHDA.sys [2745760]
O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 02/11/2006 - 07:37:21 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [20480]
O58 - SDL:[MD5.15E6A5A0650B500F63F33C5C0FD021ED] - 01/01/2006 - 11:18:22 ---A- . (.Silicon Integrated Systems Corp. - SiS163 USB Wireless LAN Adapter Driver.) -- C:\Windows\system32\drivers\sis163u.sys [217600]
O58 - SDL:[MD5.DF843C528C4F69D12CE41CE462E973A7] - 02/11/2006 - 10:50:16 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [71784]
O58 - SDL:[MD5.A36EE93698802CD899F98BFD553D8185] - 15/10/2007 - 15:28:02 ---A- . (.Avira GmbH - AVIRA SnapShot Driver.) -- C:\Windows\system32\drivers\ssmdrv.sys [28520]
O58 - SDL:[MD5.192AA3AC01DF071B541094F251DEED10] - 02/11/2006 - 10:50:05 ---A- . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\system32\drivers\symc8xx.sys [35944]
O58 - SDL:[MD5.8C8EB8C76736EBAF3B13B633B2E64125] - 02/11/2006 - 10:49:56 ---A- . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_hi.sys [31848]
O58 - SDL:[MD5.8072AF52B5FD103BBBA387A1E49F62CB] - 02/11/2006 - 10:50:03 ---A- . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\system32\drivers\sym_u3.sys [34920]
O58 - SDL:[MD5.3CD4EA35A6221B85DCC25DAA46313F8D] - 02/11/2006 - 10:51:25 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\system32\drivers\uliahci.sys [235112]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\system32\drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 02/11/2006 - 10:50:45 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\system32\drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.FD2E3175FCADA350C7AB4521DCA187EC] - 02/11/2006 - 10:49:30 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17512]
O58 - SDL:[MD5.D984439746D42B30FC65A4C3546C6829] - 02/11/2006 - 10:50:41 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) -- C:\Windows\system32\drivers\vsmraid.sys [112232]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\system32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\system32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\system32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\system32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\system32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\system32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\system32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\system32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\system32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\system32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\system32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\system32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\system32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\system32\NTIO804.SYS [34672]
~ Scan Drivers in 00mn 02s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: HijackThis 2.0.2 - (.TrendMicro.) [HKLM] -- HijackThis
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: RSIT - (.random/random.)
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 13/02/2009 - C:\Program Files\Avira\AntiVir Desktop\avgio.sys - avgio(avgio) .(.Avira GmbH - Avira AntiVir Support for Minifilter.) - LEGACY_AVGIO
O64 - Services: CurCS - 13/09/2011 - C:\Windows\system32\DRIVERS\avgntflt.sys - avgntflt(avgntflt) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 13/09/2011 - C:\Windows\system32\DRIVERS\avipbb.sys - avipbb(avipbb) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB
O64 - Services: CurCS - 02/07/2011 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys - driverhardwarev2(driverhardwarev2) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2
O64 - Services: CurCS - 13/09/2011 - C:\Windows\etdrv.sys - etdrv(etdrv) .(.Windows (R) 2000 DDK provider - GIGABYTE Tools.) - LEGACY_ETDRV
O64 - Services: CurCS - 13/09/2011 - C:\Windows\gdrv.sys - gdrv(gdrv) .(.Windows (R) 2000 DDK provider - GIGABYTE Tools.) - LEGACY_GDRV
O64 - Services: CurCS - 02/02/2009 - C:\Program Files\Google\Update\GoogleUpdate.exe - Service Google Update (gupdatem)(gupdatem) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATEM
O64 - Services: CurCS - 13/09/2011 - C:\Windows\system32\Drivers\GVTDrv.sys - GVTDrv (GVTDrv) .(...) - LEGACY_GVTDRV
O64 - Services: CurCS - 26/02/2007 - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe - NMIndexingService(NMIndexingService) .(.Nero AG - Nero Home.) - LEGACY_NMINDEXINGSERVICE
O64 - Services: CurCS - 05/01/2007 - C:\Windows\system32\DRIVERS\nvstor.sys - nvstor(nvstor) .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR
O64 - Services: CurCS - 17/06/2010 - C:\Windows\system32\DRIVERS\ssmdrv.sys - ssmdrv(ssmdrv) .(.Avira GmbH - AVIRA SnapShot Driver.) - LEGACY_SSMDRV
O64 - Services: CurCS - 02/11/2006 - C:\Windows\system32\drivers\vsmraid.sys - vsmraid(vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR X86-32.) - LEGACY_VSMRAID
~ Scan Services in 00mn 02s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft (R) Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0470345E-3B34-4a60-8C00-BD203A468CF9} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {319251C8-3C22-48f2-8991-6E1496DE85EC} - (Yahoo) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {38E34CD3-10DD-4aef-B0E3-D2E77697D318} [DefaultScope] - (Bing) - http://www.bing.com
~ Scan Keys in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.E98E3CCFDAD657052A480C751B06D51E] [SPRF][22/11/2007] (...) -- C:\Users\moi\Desktop\bloquer_les_pubs_Microsoft.bat [442]
[MD5.84DEE6FB3C928021E963C6C3CB35C9BE] [SPRF][26/03/2008] (...) -- C:\Users\moi\Desktop\Shockwave_Installer_Slim.exe [4585912]
[MD5.47077F9B6DABBA3D420AF88118091652] [SPRF][22/04/2008] (.Pas de propriétaire - SpamBayes Setup.) -- C:\Users\moi\Desktop\spambayes-1.0.4.exe [3025816]
[MD5.D930C6056C47759CBDD749C06B95C866] [SPRF][09/11/2007] (...) -- C:\Program Files\eMule0.48a-Installer.exe [3858985]
[MD5.72CAB2AD4D3E2822E4B3268383D67338] [SPRF][10/03/2007] (...) -- C:\Program Files\ffmpeg.exe [2640384]
[MD5.5A6C645DDC6CADD88BBE516E7CFCA89C] [SPRF][14/04/2007] (.Neuf - Kit de connexion Neuf.) -- C:\Program Files\kit.exe [9107480]
[MD5.CE931021E18F385F519E945A8A10548E] [SPRF][21/03/2007] (.Open Source Software community project - POSIX Threads for Windows32 Library.) -- C:\Program Files\pthreadGC2.dll [60273]
[MD5.237969915F26D87AAC7B6E5003C69068] [SPRF][12/01/2009] (...) -- C:\Program Files\RSIT.exe [781851]
[MD5.04CC62A865083F3A1475A9F091B2C821] [SPRF][03/08/2008] (...) -- C:\Program Files\VDownloader.exe [2083080]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][26/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.3F4413DCD8D3BBABF08F68F25E6D60E1] [SPRF][17/02/2005] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [401408]
~ Scan Files in 00mn 01s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{7D21B0A6-CDBF-49DD-8CFA-1D815B2EB647}C:\program files\real\realplayer\realplay.exe" | In - Public - P6 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "UDP Query User{A7802872-91B5-4729-80C3-CCA0777085DC}C:\program files\real\realplayer\realplay.exe" | In - Public - P17 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "TCP Query User{445A40BC-52E5-4C2C-99D6-278F9A1FF93D}C:\program files\mozilla firefox\firefox.exe" | In - Public - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{8D28F452-9A43-41B6-8DAB-940F9CC03246}C:\program files\mozilla firefox\firefox.exe" | In - Public - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{853D47E1-6A1A-4177-8033-0DDCDC508F37}C:\program files\emule\emule.exe" | In - Public - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "UDP Query User{8F86DA92-66CF-4C8B-9FF0-3364FF8AFA5A}C:\program files\emule\emule.exe" | In - Public - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "TCP Query User{051241A0-D054-4DE6-9CC7-6E0E5CE03084}C:\program files\real\realplayer\recordingmanager.exe" | In - Public - P6 - TRUE | .(.RealNetworks, Inc..) -- C:\program files\real\realplayer\recordingmanager.exe
O87 - FAEL: "UDP Query User{990DAF4A-2775-4257-A089-A1A293A6B4B8}C:\program files\real\realplayer\recordingmanager.exe" | In - Public - P17 - TRUE | .(.RealNetworks, Inc..) -- C:\program files\real\realplayer\recordingmanager.exe
O87 - FAEL: "TCP Query User{57E3D3FF-8A1F-4C80-8B69-EEB37DDFBF88}C:\program files\mozilla firefox\firefox.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{554CC32A-5AA2-4809-91D0-5A66B1411410}C:\program files\mozilla firefox\firefox.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{4BB2C002-9BD4-4AB2-9C4E-2459FD623B30}C:\program files\emule\emule.exe" | In - Private - P6 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "UDP Query User{4DBEF19A-3775-4BF0-9D42-1957C0236821}C:\program files\emule\emule.exe" | In - Private - P17 - TRUE | .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "TCP Query User{1E93CF78-E719-42C7-A9B1-A5673789C23E}C:\program files\spambayes\bin\sb_tray.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files\spambayes\bin\sb_tray.exe
O87 - FAEL: "UDP Query User{AD47FC81-EF7B-4820-A1BD-BA2C087EE148}C:\program files\spambayes\bin\sb_tray.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files\spambayes\bin\sb_tray.exe
O87 - FAEL: "TCP Query User{CCC51E70-7204-4672-A277-4725503A9F62}C:\program files\real\realplayer\realplay.exe" | In - Private - P6 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "UDP Query User{3F9DBD6C-8381-4A78-ADA3-A4EF2E16F33D}C:\program files\real\realplayer\realplay.exe" | In - Private - P17 - TRUE | .(.RealNetworks, Inc. - RealPlayer.) -- C:\program files\real\realplayer\realplay.exe
O87 - FAEL: "TCP Query User{325AA153-2070-43F8-92C3-389DA1E9C1F5}C:\program files\spambayes\bin\sb_tray.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files\spambayes\bin\sb_tray.exe
O87 - FAEL: "UDP Query User{16639066-9516-48B9-9FB9-358E53FB902B}C:\program files\spambayes\bin\sb_tray.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files\spambayes\bin\sb_tray.exe
O87 - FAEL: "{39EF2D4D-3FD9-468E-8B17-38D1C3CF0EDF}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{9212CED0-CFEB-46B8-B435-890AA0346419}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "TCP Query User{1448763B-8BF5-42BA-8156-6EF8268D9426}C:\program files\gigabyte\et6\updexe.exe" | In - Private - P6 - TRUE | .(.GIGABYTE - Exe File.) -- C:\program files\gigabyte\et6\updexe.exe
O87 - FAEL: "UDP Query User{9A7EA836-FFCE-4396-9B86-1D47CB41E472}C:\program files\gigabyte\et6\updexe.exe" | In - Private - P17 - TRUE | .(.GIGABYTE - Exe File.) -- C:\program files\gigabyte\et6\updexe.exe
O87 - FAEL: "TCP Query User{A248D8C2-C152-4A34-9438-5C6CDAD54D78}C:\program files\google\google earth\plugin\geplugin.exe" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe
O87 - FAEL: "UDP Query User{1BF6FC24-81D2-4121-A867-8AC097F62F87}C:\program files\google\google earth\plugin\geplugin.exe" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\plugin\geplugin.exe
O87 - FAEL: "TCP Query User{2F14C0A9-A60C-48CD-B875-08A94F24201D}C:\program files\google\google earth\client\googleearth.exe" | In - Public - P6 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\client\googleearth.exe
O87 - FAEL: "UDP Query User{4109F517-316A-46E7-94C9-5AAC80A768E6}C:\program files\google\google earth\client\googleearth.exe" | In - Public - P17 - TRUE | .(.Google - Google Earth.) -- C:\program files\google\google earth\client\googleearth.exe
O87 - FAEL: "{B46F2D0E-BD9B-4D24-816D-C83D10EA4DAC}" | In - Public - P6 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "{CAB060A3-842B-45AE-A910-3146CAD3443D}" | In - Public - P17 - FALSE | .(.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O87 - FAEL: "TCP Query User{87E1DB9E-26ED-45A0-8F6D-B6A880ADB934}F:\new folder .exe" |In - Public - P6 - TRUE | .(...) -- F:\new folder .exe (.not file.)
O87 - FAEL: "UDP Query User{BA62D4C9-DE0A-4266-852F-446D0B2D7DDA}F:\new folder .exe" |In - Public - P17 - TRUE | .(...) -- F:\new folder .exe (.not file.)
O87 - FAEL: "{F1C09744-C824-435B-9ED4-A0950BF4282F}" | In - Public - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
O87 - FAEL: "{3ABA8B7A-27DC-4562-A402-16C07B6DE716}" | In - Public - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\maconfservice.exe
~ Scan Firewall in 00mn 01s



---\\ Scan Additionnel (O88)
Database Version : 8634 - (20/09/2011)
Clés trouvées (Keys found) : 2
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 0
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\.bk1] =>Adware.VirtualGirl
[HKLM\Software\Classes\.bk2] =>Adware.VirtualGirl
~ Scan Additionnel in 00mn 07s



---\\ Recherche détournement de DNS routeur (O89)
Serveur : neufbox
Address: 192.168.1.1
Nom : www.l.google.com
Addresses: 74.125.39.105
74.125.39.106
74.125.39.104
74.125.39.147
74.125.39.103
74.125.39.99
Aliases: www.google.fr
www.google.com
~ Scan DNS in 00mn 02s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 15/05/2009 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 15/05/2009 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 13/09/2011 219360 | (BCUService) . (.DeviceVM, Inc..) - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
SR - | Auto 16384 | (COM Service) . (...) - C:\Program Files\GIGABYTE\G.O.M\GCSVR.exe
SS - | Auto 02/02/2009 133104 | (gupdate1c9857c1b0697c8) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 02/02/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 07/05/2010 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Demand 15/08/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SS - | Demand 01/01/2006 267824 | (NMIndexingService) . (.Nero AG.) - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
SR - | Auto 14/09/2010 615528 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SR - | Auto 01/07/2011 2214504 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
SR - | Auto 20/05/2010 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
SR - | Auto 24/03/2008 21504 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\system32\svchost.exe
~ Scan Services in 00mn 03s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
~ Scan MBR in 00mn 06s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by alain at 21/09/2011 16:36:04

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 08s



End of the scan (1181 lines in 02mn 21s)(0)

Ouf !!!

pear
 Posté le 21/09/2011 à 17:34 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Astucien

Spybot, totalement obsolète( comme aussi Ad_Aware) va être désinstallé.Vous pourrez utiliser Mbam pour le remplacer.
Auparavant, vous devez faire ceci, avant de lancer Zhpfix:

Pour désactiver TeaTimer qui ne sert à rien et peut faire échouer une désinfection:!
Sous Vista, exécuter avec privilèges Administrateur
Afficher d'abord le Mode Avancé dans SpyBot
->Options Avancées :
- >menu Mode, Mode Avancé.
Une colonne de menus apparaît dans la partie gauche :
- >cliquer sur Outils,
- >cliquer sur Résident,
Dans Résident :
- >décocher Résident "TeaTimer" pour le désactiver.
Effacer le contenu du dossier Snapshots(le contenu de snapshots, pas le fichier snapshots) , sous XP :
C:\Documents and Settings\All Users\Application Data\Spybot - Search &Destroy\Snapshots
Et sous Vista :
C:\ProgramData\Spybot - Search & Destroy\Snapshots



Cliquer sur l'icône Zhpfix qui est sur votre bureau
Sous Vista/7 clic-droit, "Exécuter En tant qu'Administrateur
Copiez/Collez les lignes vertes dans le cadre ci dessous:

EmptyTemp
O44 - LFC:[MD5.86F76EE0F1C65DCA0958F66C6E0B324A] - 13/09/2011 - 10:16:52 ---A- . (...) -- C:\Windows\_delis32.ini [268] => Infection Diverse (AGENT-GZ.Troj)
O87 - FAEL: "TCP Query User{87E1DB9E-26ED-45A0-8F6D-B6A880ADB934}F:\new folder .exe" |In - Public - P6 - TRUE | .(...) -- F:\new folder .exe (.not file.) => Infection Vundo (Possible)
O87 - FAEL: "UDP Query User{BA62D4C9-DE0A-4266-852F-446D0B2D7DDA}F:\new folder .exe" |In - Public - P17 - TRUE | .(...) -- F:\new folder .exe (.not file.) => Infection Vundo (Possible)
[HKLM\Software\Classes\.bk1] => Infection PUP (Adware.VirtualGirl)
[HKLM\Software\Classes\.bk2] => Infection PUP (Adware.VirtualGirl)
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe => Safer Net Working®Spybot S&D
O4 - HKUS\S-1-5-21-3482576520-1368502519-3057683841-1007-3482576520-1368502519-3057683841-1000\..\Run: [SpybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe => Safer Net Working®Spybot S&D
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe => Spybot®Search & Destroy
[MD5.00000000000000000000000000000000] [APT] [{718D3D0B-53AB-4F01-91F2-461322E291FB}] (...) -- C:\Windows\system32\gsi.cpl (.not file.) => Fichier absent
[MD5.00000000000000000000000000000000] [APT] [{EF1DBC51-AEC0-4FF0-A279-840CBD95F68C}] (...) -- C:\Users\alain\Desktop\alain\Pilote_ECI_Telecom_ADSL_USB_-Pack_Wanadoo-_1[1].11.0007.5E_FT5a_XP\setup.exe (.not file.) => Fichier absent
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 => Safer Networking Limited Spybot - S&D
O43 - CFD: 15/02/2011 - 19:28:46 - [88093843] ----D- C:\Program Files\Spybot - Search & Destroy => Spybot - Search & Destroy
O43 - CFD: 19/09/2011 - 21:37:40 - [136295455] ----D- C:\ProgramData\Spybot - Search & Destroy => Spybot - Search & Destroy
O43 - CFD: 31/08/2010 - 17:41:50 - [0] ----D- C:\Users\moi\AppData\Local\.stunnixws => Empty Folder not necessary
O43 - CFD: 27/04/2011 - 17:19:36 - [0] ----D- C:\Users\moi\AppData\Local\{0DEF0E16-AED5-4DA5-AF28-9E10368FACB7} => Empty Folder not necessary
O43 - CFD: 11/05/2011 - 16:00:54 - [0] ----D- C:\Users\moi\AppData\Local\{2AB379AF-97BF-4E76-A0C7-39E4AE6D0D61} => Empty Folder not necessary
O43 - CFD: 09/05/2011 - 16:19:48 - [0] ----D- C:\Users\moi\AppData\Local\{49807123-699B-4353-8BC2-4AB8112371E9} => Empty Folder not necessary
O43 - CFD: 25/05/2011 - 12:28:08 - [0] ----D- C:\Users\moi\AppData\Local\{49BBA995-F976-40FD-927B-E4D75C4951F6} => Empty Folder not necessary
O43 - CFD: 27/05/2011 - 23:29:04 - [0] ----D- C:\Users\moi\AppData\Local\{6398B7B9-CB16-4D8F-BB89-EDE1BE9851EE} => Empty Folder not necessary
O43 - CFD: 18/05/2011 - 14:47:14 - [0] ----D- C:\Users\moi\AppData\Local\{AEDFC1C6-57A0-4563-AD24-75CC8FFACD16} => Empty Folder not necessary
O44 - LFC:[MD5.5F39D138BCC8592BA9B7A587A0F0C66E] - 21/09/2011 - 08:53:24 ---A- . (...) -- C:\service.log [40] => Fichier de rapport
SR - | Auto 20/05/2010 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe => Spybot®Search & Destroy


Cliquez ensuite sur le H- image
Cliquer sur "OK", ce qui fait apparaître un carré à gauche de chaque ligne.
image
Cliquer sur "Tous" puis sur "Nettoyer" .
Redémarrer pour achever le nettoyage.
Un rapport apparait:
image
Si le rapport n'apparait pas,cliquer surimage
Copier-coller le rapport de suppression dans la prochaine réponse.

antique pc
 Posté le 21/09/2011 à 18:16 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien

Bonsoit pear.

Une question. J'ai DEUX dossiers Snapshots.

D'abord un "Snapshots" comprenant 3 fichiers :

Layered Service Providers

System startup

Uninstall info

Et un dossier "Snapshots 2" contenant 70 fichiers du genre "Reg-BHO-Global.reg"

Type : "inscription dans le registre".

Faut-il effacer le contenu des deux ?

Merci.

pear
 Posté le 21/09/2011 à 18:51 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Astucien

Oui , le contenu, pas les fichiers snapshosts

Publicité
antique pc
 Posté le 21/09/2011 à 20:38 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien

Bonsoir pear.

Rapport joint.

J'ai supprimé les fichiers des DEUX dossiers Snapshots.

Spybot a "fait des siennes" pour se désinstaller.

Rapport de ZHPFix 1.12.3361 par Nicolas Coolman, Update du 06/09/2011

Fichier d'export Registre :

Run by moi at 21/09/2011 20:23:00

Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)

Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html

========== Logiciel(s) ==========

ABSENT Software Key: {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1

========== Clé(s) du Registre ==========

ABSENT Key: HKLM\Software\Classes\.bk1

ABSENT Key: HKLM\Software\Classes\.bk2

ABSENT Key: Service: SBSDWSCService

========== Valeur(s) du Registre ==========

ABSENT TCP Query User{87E1DB9E-26ED-45A0-8F6D-B6A880ADB934}F:/new folder .exe

ABSENT UDP Query User{BA62D4C9-DE0A-4266-852F-446D0B2D7DDA}F:/new folder .exe

ABSENT RunValue: SpybotSD TeaTimer

========== Dossier(s) ==========

SUPPRIME Temporaires Windows: : 4

SUPPRIME Folder: C:\Program Files\Spybot - Search & Destroy

ABSENT C:\ProgramData\Spybot - Search & Destroy

SUPPRIME Folder: C:\Users\moi\AppData\Local\.stunnixws

SUPPRIME Folder: C:\Users\moi\AppData\Local\{0DEF0E16-AED5-4DA5-AF28-9E10368FACB7}

SUPPRIME Folder: C:\Users\moi\AppData\Local\{2AB379AF-97BF-4E76-A0C7-39E4AE6D0D61}

SUPPRIME Folder: C:\Users\moi\AppData\Local\{49807123-699B-4353-8BC2-4AB8112371E9}

SUPPRIME Folder: C:\Users\moi\AppData\Local\{49BBA995-F976-40FD-927B-E4D75C4951F6}

SUPPRIME Folder: C:\Users\moi\AppData\Local\{6398B7B9-CB16-4D8F-BB89-EDE1BE9851EE}

SUPPRIME Folder: C:\Users\moi\AppData\Local\{AEDFC1C6-57A0-4563-AD24-75CC8FFACD16}

========== Fichier(s) ==========

SUPPRIME Temporaires Windows: : 3

ABSENT File: c:\windows\_delis32.ini

ABSENT File: c:\program files\spybot - search & destroy\teatimer.exe

ABSENT File: c:\program files\spybot - search & destroy\sdwinsec.exe

SUPPRIME File: c:\service.log

========== Tache planifiée ==========

ABSENT Task: {718D3D0B-53AB-4F01-91F2-461322E291FB}

ABSENT Task: {EF1DBC51-AEC0-4FF0-A279-840CBD95F68C}

========== Récapitulatif ==========

3 : Clé(s) du Registre

3 : Valeur(s) du Registre

10 : Dossier(s)

5 : Fichier(s)

1 : Logiciel(s)

2 : Tache planifiée

End of clean in 00mn 03s

========== Chemin de fichier rapport ==========

C:\ZHP\ZHPFix[R1].txt - 21/09/2011 18:25:23 [2288]

C:\ZHP\ZHPFix[R2].txt - 21/09/2011 20:23:00 [2262]

pear
 Posté le 21/09/2011 à 21:09 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Astucien

Bien.

Encore quelque chose ?

antique pc
 Posté le 22/09/2011 à 00:13 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien

Hélas oui.

A présent, je n'arrive même plus à réinstaller les drivers de ma carte wi-fi.

A la fin de la réinstallation, il m'indique :

(Error Code : 105) Update driver Failed : error(2)

Je n'ai donc plus de connexion à Internet.

J'ai du trouver un autre PC pour me connecter au site.

Je n'ai donc plus, maintenant, ni connection Ethernet, ni wi-fi.

"Quelque chose" ne veut vraiment pas que je puisse me connecter.

antique pc
 Posté le 22/09/2011 à 01:03 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien

Ouf !

J'ai essayé de tenter une restauration à hier matin, donc AVANT nos

manipulations. Et cela a marché.

Je peux donc me reconnecter à Internet.

Mais, évidemment, en recommençant à chaque session la même désinstallation,

rédémarrage, puis installation du pilote de la carte wi-fi.

En Ethernet, part contre, toujours rien.

Faut-il retélécharger ZHPDiag et refaire l'analyse avec?

Merci encore de ce que vous faites.

Je vais me coucher. A demain.

pear
 Posté le 22/09/2011 à 10:23 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
  Astucien

Bonjour,

Très clairement, vous avez un ou plusiers problèmes matériels qu'il vous faut corriger.

Je vous conseille de demander de l'aide sur "Internet & Réseaux " de ce site.

Une fois ces problèmes règlés, et puisque vous avez fait une restauration et donc ainsi réinstallé ce que nous avions supprimé,vous devrez revenir ici .

antique pc
 Posté le 22/09/2011 à 11:07 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petit astucien

Bonjour pear.

Merci encore de l'aide.

Je vais procèder comme vous me l'indiquez et reviendrai

ensuite vers vous.

Page : [1] 
Page 1 sur 1

Vous devez être connecté pour participer à la discussion.
Cliquez ici pour vous identifier.

Vous n'avez pas de compte ? Créez-en un gratuitement !
Recevoir PC Astuces par e-mail


La Lettre quotidienne +226 000 inscrits
Avec l'actu, des logiciels, des applis, des astuces, des bons plans, ...

Les bonnes affaires
Une fois par semaine, un récap des meilleurs offres.

Les fonds d'écran
De jolies photos pour personnaliser votre bureau. Une fois par semaine.

Les nouveaux Bons Plans
Des notifications pour ne pas rater les bons plans publiés sur le site.

Les bons plans du moment PC Astuces

Tous les Bons Plans
389,99 €NAS Western Digital My Cloud EX2 Ultra + 2 disques durs WD Red 6 To (12 To) à 389,99 €
Valable jusqu'au 07 Août

Amazon fait une promotion sur le NAS à 2 baies Western Digital My Cloud EX2 Ultra accompagné de 2 disques durs Western Digital Red de 6 To (soit un total de 12 To) qui passe à 389,99 € au lieu de 540 €. Avec My Cloud EX2 Ultra, vous pourrez synchroniser votre contenu sur tous vos ordinateurs, partager vos fichiers et documents en toute simplicité et profiter de multiples options de sauvegarde afin de créer votre propre système personnalisé.


> Voir l'offre
24,86 €Souris Logitech M330 Silent Plus à 24,86 €
Valable jusqu'au 07 Août

Amazon fait une promotion sur la souris Logitech M330 Silent Plus qui passe à 24,86 €. On trouve cette souris sans fil et très silencieuse (clic sans bruit) ailleurs à partir de 32 €.


> Voir l'offre
270,11 €Mini PC T-BAO TBOOK MN27 (Ryzen 7 2700U, 8Go RAM, 256Go SSD NVME) à 270,11 € avec le code Bg9cEb85
Valable jusqu'au 07 Août

Banggood propose actuellement le mini PC T-BAO TBOOK MN27 à 270,11 € avec le code promo Bg9cEb85. Ce mini PC au format NUC d'Intel possède un processeur Ryzen 7 2700U avec chip graphique Vega 10, 8 Go de RAM DDR4 et un SSD NVME de 256 Go. Il dispose d'une connectique complète : un emplacement 2,5 pouces libre (pour ajouter un disque dur ou un SSD supplémentaire, le WiFi5, le bluetooth 4.1, 4 ports USB 3.0, 2 ports USB 2.0, un port HDMI 2.0, un DisplayPort, un port Ethernet Gigabit et tourne sous Windows 10 que vous pourrez mettre en français. Ce mini PC fait 12,8 x 12,8 x 5 cm et pèse 1,2 kg. Il est livré avec une alimentation européenne. Branchez ce mini PC sur une TV ou un écran et vous avez un ordinateur discret et performant.

L'expédition se fait depuis un entrepôt en République Tchèque. Il n'y a donc pas de risque de douane.


> Voir l'offre

Sujets relatifs
PC ralenti, problème de connexion internet: virus?
Connexion internet lente-Possible virus
virus qui bloque ma connexion internet
PC et connexion internet très ralentis: virus?
virus et connexion internet
Virus ? pb de connexion internet
Virus response lab + connexion internet impossbile
Un virus bloque ma connexion internet
plus de connexion avec internet VIRUS?
perte connexion internet wifi, virus
Plus de sujets relatifs à Virus connexion internet ?
 > Tous les forums > Forum Sécurité