Index du Forum
Se connecter pour vérifier ses messages privés
ordi très lent
Aller à la page: 1, 2, 3  >

 
Poster un nouveau sujet   Répondre au sujet     Index du Forum » Protection système et Aide » Suis-je infecté ou Non? Que dois-je faire? » Mon PC est infecté » Aide à la désinfection Sujet précédent :: Sujet suivant  
ordi très lent
 MessagePosté le: Ven 24 Aoû - 07:49 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

PublicitéSupprimer les publicités ?
bonjour
me revoilà pour un problème sur l'ordi de ma fille, en effet celui ci est très long à chercher ou afficher une page sur facebook par exemple quand je clique sur jouer l'ordi met plus de 10 mn avant de commencer à afficher l'application et j'ai comme message délai d'attente expiré que faire
merci de ton aide




IM

ordi très lent
 MessagePosté le: Ven 24 Aoû - 08:11 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

j'ai fais un scann avec hzpdiag voici le rapport
Rapport de ZHPDiag v1.31.13 par Nicolas Coolman, Update du 31/07/2012
Run by Chrystelle at 24/08/2012 11:07:48
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site :  http://nicolascoolman.skyrock.com/
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : B9HD2
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3326 MB (58% free)
System Restore: Inconnu (Unknown)
System drive C: has 455 GB (78%) free of 581 GB

---\\ Logged in mode
~ Computer Name: COMPUTIE
~ User Name: Chrystelle
~ All Users Names: Chrystelle, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Chrystelle\AppData\Roaming\
~ %Desktop% : C:\Users\Chrystelle\Desktop\
~ %Favorites% : C:\Users\Chrystelle\Favorites\
~ %LocalAppData% : C:\Users\Chrystelle\AppData\Local\
~ %StartMenu% : C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 455 Go of 581 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Hard drive, Flash drive, Thumb drive (Free 568 Go of 596 Go)



---\\ Security Center & Tools Informations
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.03B4167CC1B30AC22DF413788AFADE97] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.28/06/2012 - 12:37:42.) -- C:\Windows\System32\wininet.dll [916992]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 07:32:49.) -- C:\Windows\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/04/2009 - 07:32:55.) -- C:\Windows\system32\Drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3
~ Mes musiques (My Musics) : 7/97
~ Mes Videos (My Videos) : 1/10
~ Mes Favoris (My Favorites) : 1/33
~ Mes Documents (My Documents) : 1/3400
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 0/33
~ Scan Hidden Files in 00mn 01s



---\\ Processus lancés
[MD5.58D9C70B01DBF2DEAEA787A1D7C869BB] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe   [1295656] [PID.3044]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe   [1008184] [PID.3244]
[MD5.85FB84AAE36E498F471CB76270D4B8F6] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe   [6246400] [PID.3260]
[MD5.E681281D9BFC9D45D3B72532717E5880] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [49152] [PID.3336]
[MD5.F0187E45268E86AAAA932CBD9087BEA8] - (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe   [30192] [PID.3380]
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe   [49152] [PID.3516]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe   [69120] [PID.3556]
[MD5.4EB0C6C3EF4D8885CF2B5D0062F31E44] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe   [1259376] [PID.3564]
[MD5.9F0BE235A0136EA9E94CF9BD037C30EC] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe   [348664] [PID.3600]
[MD5.34086F1DBB4065047EA3671CB70505CC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe   [421776] [PID.3608]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [254696] [PID.3620]
[MD5.E0E15F209360E4A97ABCC21A486B4AEE] - (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe   [59240] [PID.3696]
[MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe   [210520] [PID.3764]
[MD5.DC35217E5F49C2FE2D5EBC7CB52FEC65] - (.Pas de propriétaire - WlanCU MFC Application.) -- C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe   [434176] [PID.3836]
[MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe   [7424000] [PID.3928]
[MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin   [7418368] [PID.3980]
[MD5.25CA1677AAA3CDC99CD4FCF940886F3C] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [49152] [PID.3076]
[MD5.0CEF6926C814953F18C925AB46E2889C] - (.Pas de propriétaire - Philips CamSuite GUI module.) -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPGUI.dll   [815104] [PID.4268]
[MD5.BB3A22F3EED85A12CFB2DD60D9F9B52F] - (.Apple Inc. - distnoted.) -- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe   [13672] [PID.4980]
[MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe   [271960] [PID.5156]
[MD5.3F677172F23FC17283D9BCE4B42E3F65] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe   [913888] [PID.5648]
[MD5.A06AB1550658A19E871A6FD7FF1C2CDB] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files\Mozilla Firefox\plugin-container.exe   [16864] [PID.4560]
[MD5.DA98CA1EB259AC35D3F5F5C225BFC828] - (.Adobe Systems, Inc. - Adobe Flash Player 11.3 r300.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_271.exe   [1536712] [PID.5928]
[MD5.FCB13D9E3D55075C8FACA9CA3C55B263] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [3763200] [PID.1100]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Chrystelle\AppData\Roaming\Mozilla\Firefox\Profiles\gsamgv00.default\prefs.js
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Chrystelle - gsamgv00.default]  http://www.google.fr
M2 - MFEP: prefs.js [Chrystelle - gsamgv00.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Interpréteur de commandes Windows.) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKCU\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKCU\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Chrystelle\Desktop\DivX Movies.lnk . (...)  -- C:\Users\Chrystelle\Videos\DivX Movies
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\4Media iPod to PC Transfer.lnk . (...)  -- C:\Program Files\4Media\iPod to PC Transfer\iPodManager.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...)  -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.)  -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\hpwebreg_CN0B8393GN05HX.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\RtlNICDiagVistaStart.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\User_Feed_Synchronization-{C5DA1661-2ABD-4521-B98E-3DEE005CC2F2}.job
[MD5.2EFF6334A2BD29E404F6809C37658FCD] [APT] [hpwebreg_CN0B8393GN05HX] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\hpwebreg.exe
[MD5.445975B8DC52CADBB50051DAECEA1620] [APT] [PCDEventLauncher] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\sessionchecker.exe
[MD5.F9C5DF7F81FFCCDC3B1733CCA90A71CA] [APT] [PCDoctorBackgroundMonitorTask] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\uaclauncher.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40) (None)

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/09/2009 - 00:06:40 - [11,754] ----D C:\Program Files\4Media
O43 - CFD: 11/08/2012 - 11:38:49 - [2,450] ----D C:\Program Files\AC3Filter
O43 - CFD: 12/08/2012 - 12:58:05 - [113,097] ----D C:\Program Files\Adobe
O43 - CFD: 29/11/2009 - 16:40:35 - [0] ----D C:\Program Files\Alwil Software
O43 - CFD: 15/01/2012 - 15:52:03 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 20/12/2008 - 11:21:06 - [82,339] ----D C:\Program Files\ATI Technologies
O43 - CFD: 20/09/2009 - 14:46:45 - [0,001] ----D C:\Program Files\Atlantis
O43 - CFD: 26/05/2012 - 11:50:17 - [186,611] ----D C:\Program Files\Avira
O43 - CFD: 15/01/2012 - 15:23:02 - [1,442] ----D C:\Program Files\Belkin
O43 - CFD: 15/01/2012 - 16:43:13 - [0,586] ----D C:\Program Files\Bonjour
O43 - CFD: 20/12/2008 - 11:29:30 - [3,389] ----D C:\Program Files\Citrix
O43 - CFD: 14/08/2012 - 18:26:08 - [746,796] ----D C:\Program Files\Common Files
O43 - CFD: 20/12/2008 - 11:35:42 - [13,000] ----D C:\Program Files\Dell
O43 - CFD: 23/08/2012 - 13:25:39 - [165,965] ----D C:\Program Files\Dell Support Center
O43 - CFD: 03/09/2009 - 21:46:13 - [0,758] ----D C:\Program Files\DIFX
O43 - CFD: 14/06/2012 - 12:01:14 - [97,507] ----D C:\Program Files\DivX
O43 - CFD: 10/07/2012 - 23:02:40 - [0,077] ----D C:\Program Files\EA GAMES
O43 - CFD: 11/07/2012 - 18:33:03 - [364,440] ----D C:\Program Files\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 24/05/2012 - 21:37:53 - [399,843] ----D C:\Program Files\Google
O43 - CFD: 20/06/2012 - 14:56:37 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:02 - [142,671] ----D C:\Program Files\HP
O43 - CFD: 13/03/2012 - 19:16:32 - [0,352] ----D C:\Program Files\HP Photo Creations
O43 - CFD: 10/07/2012 - 23:02:40 - [153,007] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/12/2008 - 11:19:38 - [0] ----D C:\Program Files\Intel
O43 - CFD: 15/08/2012 - 18:31:46 - [5,609] ----D C:\Program Files\Internet Explorer
O43 - CFD: 18/06/2012 - 11:43:43 - [2,259] ----D C:\Program Files\iPod
O43 - CFD: 18/06/2012 - 11:45:38 - [149,103] ----D C:\Program Files\iTunes
O43 - CFD: 16/01/2012 - 18:03:53 - [165,771] ----D C:\Program Files\Java
O43 - CFD: 20/09/2009 - 14:53:30 - [15,892] ----D C:\Program Files\JRE
O43 - CFD: 24/05/2012 - 18:19:01 - [0,216] ----D C:\Program Files\Microsoft
O43 - CFD: 02/11/2006 - 14:37:34 - [89,117] ----D C:\Program Files\Microsoft Games
O43 - CFD: 20/12/2008 - 11:24:51 - [52,514] ----D C:\Program Files\Microsoft Office
O43 - CFD: 12/08/2012 - 12:48:17 - [40,838] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 15/01/2012 - 19:28:32 - [137,975] ----D C:\Program Files\Microsoft Works
O43 - CFD: 04/06/2009 - 13:05:02 - [0,934] ----D C:\Program Files\Microsoft WSE
O43 - CFD: 21/01/2012 - 16:56:51 - [0,015] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 15/01/2012 - 20:56:49 - [94,740] ----D C:\Program Files\Movie Maker
O43 - CFD: 11/08/2012 - 15:25:23 - [37,711] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 11/08/2012 - 15:25:26 - [0,195] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 02/11/2006 - 14:37:34 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 26/02/2012 - 11:21:15 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 20/09/2009 - 14:53:29 - [367,412] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/01/2012 - 15:10:01 - [24,521] ----D C:\Program Files\Philips
O43 - CFD: 24/05/2012 - 18:23:24 - [72,431] ----D C:\Program Files\QuickTime
O43 - CFD: 20/12/2008 - 11:19:10 - [0,417] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:34 - [36,906] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 20/12/2008 - 11:27:22 - [17,818] ----D C:\Program Files\Roxio
O43 - CFD: 24/05/2012 - 18:30:24 - [102,605] ----D C:\Program Files\Safari
O43 - CFD: 24/02/2009 - 18:25:09 - [5,213] ----D C:\Program Files\TRENDnet
O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 19/09/2009 - 10:12:30 - [22,420] ----D C:\Program Files\Utilitaire de configuration iPhone
O43 - CFD: 21/05/2010 - 14:31:47 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 21/05/2010 - 14:31:44 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 21/05/2010 - 14:31:38 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 20/06/2012 - 09:07:26 - [6,757] ----D C:\Program Files\Windows Journal
O43 - CFD: 03/09/2009 - 13:48:53 - [78,223] ----D C:\Program Files\Windows Live
O43 - CFD: 03/09/2009 - 13:49:10 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 18/06/2012 - 18:15:30 - [8,694] ----D C:\Program Files\Windows Mail
O43 - CFD: 15/01/2012 - 20:56:58 - [4,290] ----D C:\Program Files\Windows Media Player
O43 - CFD: 24/02/2009 - 18:11:44 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 21/05/2010 - 14:31:42 - [12,902] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 12/06/2010 - 23:38:28 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 21/05/2010 - 14:31:45 - [6,225] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 24/08/2012 - 11:08:02 - [12,789] ----D C:\Program Files\ZHPDiag
O43 - CFD: 12/08/2012 - 12:58:10 - [3,722] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 23/01/2010 - 12:48:46 - [30,670] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 18/06/2012 - 11:43:42 - [146,859] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 15/01/2012 - 15:29:37 - [0,000] ----D C:\Program Files\Common Files\ArcSoft
O43 - CFD: 11/03/2012 - 13:17:08 - [23,581] ----D C:\Program Files\Common Files\DivX Shared
O43 - CFD: 16/02/2012 - 15:21:22 - [0,436] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:05 - [2,065] ----D C:\Program Files\Common Files\HP
O43 - CFD: 20/12/2008 - 11:25:16 - [4,815] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 16/02/2012 - 23:34:34 - [37,320] ----D C:\Program Files\Common Files\Java
O43 - CFD: 24/02/2009 - 21:39:45 - [0,421] ----D C:\Program Files\Common Files\logishrd
O43 - CFD: 03/09/2009 - 13:49:15 - [261,434] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 11/03/2012 - 13:17:10 - [4,736] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 20/12/2008 - 11:26:20 - [30,710] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 20/12/2008 - 11:26:20 - [1,038] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 03/09/2009 - 21:45:26 - [118,877] ----D C:\Program Files\Common Files\SPC630NC
O43 - CFD: 02/11/2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 20/12/2008 - 11:27:21 - [0,700] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 15/01/2012 - 20:56:29 - [8,333] ----D C:\Program Files\Common Files\System
O43 - CFD: 03/09/2009 - 13:34:06 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 24/02/2009 - 20:27:19 - [31,879] -SH-D C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 21/08/2012 - 12:50:09 - [262,312] ----D C:\ProgramData\Adobe
O43 - CFD: 15/01/2012 - 17:33:35 - [229,876] ----D C:\ProgramData\Apple
O43 - CFD: 27/02/2009 - 02:16:27 - [295,616] ----D C:\ProgramData\Apple Computer
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 04/09/2009 - 22:44:46 - [0,006] ----D C:\ProgramData\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/05/2012 - 11:50:17 - [73,477] ----D C:\ProgramData\Avira
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 11/08/2012 - 11:37:59 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 24/05/2012 - 13:08:26 - [2,276] ----D C:\ProgramData\Dell
O43 - CFD: 14/06/2012 - 12:02:05 - [4,568] ----D C:\ProgramData\DivX
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 23/01/2010 - 12:58:00 - [21,200] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 24/05/2012 - 18:16:40 - [1,833] ----D C:\ProgramData\Google
O43 - CFD: 16/02/2012 - 15:15:52 - [0,321] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 20/06/2012 - 14:58:57 - [62,812] ----D C:\ProgramData\HP
O43 - CFD: 13/03/2012 - 19:26:42 - [2,487] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 11/08/2012 - 12:49:35 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 16/02/2012 - 15:22:16 - [0] ----D C:\ProgramData\HPSSUPPLY
O43 - CFD: 20/12/2008 - 11:25:18 - [0,000] ----D C:\ProgramData\InstallShield
O43 - CFD: 12/08/2012 - 21:59:32 - [0,032] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 18/06/2012 - 18:01:45 - [0,009] ----D C:\ProgramData\McAfee
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/05/2012 - 18:19:01 - [5,305] -S--D C:\ProgramData\Microsoft
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 11/08/2012 - 15:25:24 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 20/12/2008 - 11:34:32 - [0,001] ----D C:\ProgramData\PC-Doctor
O43 - CFD: 23/08/2012 - 13:25:35 - [3,231] ----D C:\ProgramData\PC-Doctor for Windows
O43 - CFD: 23/08/2012 - 14:03:08 - [39,525] ----D C:\ProgramData\PCDr
O43 - CFD: 15/01/2012 - 15:10:00 - [3,224] ----D C:\ProgramData\Philips
O43 - CFD: 11/08/2012 - 11:29:13 - [0,102] ----D C:\ProgramData\River Past G5
O43 - CFD: 15/07/2012 - 13:02:22 - [0] ----D C:\ProgramData\Roxio
O43 - CFD: 20/12/2008 - 11:26:23 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 16/01/2012 - 18:04:14 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 20/12/2008 - 11:27:25 - [5,070] ----D C:\ProgramData\Uninstall
O43 - CFD: 16/02/2012 - 15:33:33 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 15/01/2012 - 17:36:01 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 24/02/2009 - 20:22:02 - [0,215] ----D C:\ProgramData\WLInstaller
O43 - CFD: 14/03/2009 - 00:43:39 - [0,003] ----D C:\ProgramData\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
O43 - CFD: 15/01/2012 - 17:43:26 - [0] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 19/09/2009 - 10:09:40 - [0,002] ----D C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
O43 - CFD: 30/05/2009 - 23:27:07 - [0,002] ----D C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
O43 - CFD: 21/08/2012 - 12:49:14 - [1,274] ----D C:\Users\Chrystelle\AppData\Roaming\Adobe
O43 - CFD: 24/03/2012 - 11:10:03 - [117,875] ----D C:\Users\Chrystelle\AppData\Roaming\Apple Computer
O43 - CFD: 03/09/2009 - 21:52:52 - [0,000] ----D C:\Users\Chrystelle\AppData\Roaming\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\ATI
O43 - CFD: 26/05/2012 - 11:55:48 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Avira
O43 - CFD: 24/05/2012 - 13:13:43 - [0,041] ----D C:\Users\Chrystelle\AppData\Roaming\Dell
O43 - CFD: 24/03/2012 - 12:02:27 - [0,163] ----D C:\Users\Chrystelle\AppData\Roaming\DivX
O43 - CFD: 11/03/2012 - 13:03:38 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\GetRightToGo
O43 - CFD: 25/02/2009 - 01:52:19 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Google
O43 - CFD: 18/06/2012 - 19:28:58 - [0,045] ----D C:\Users\Chrystelle\AppData\Roaming\HP
O43 - CFD: 07/07/2012 - 10:16:42 - [0,009] ----D C:\Users\Chrystelle\AppData\Roaming\HpUpdate
O43 - CFD: 24/02/2009 - 18:17:32 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Identities
O43 - CFD: 19/06/2012 - 09:26:17 - [0,489] ----D C:\Users\Chrystelle\AppData\Roaming\Image Zone Express
O43 - CFD: 10/01/2010 - 22:52:35 - [43,057] ----D C:\Users\Chrystelle\AppData\Roaming\LimeWire
O43 - CFD: 24/02/2009 - 20:29:58 - [1,877] ----D C:\Users\Chrystelle\AppData\Roaming\Macromedia
O43 - CFD: 12/08/2012 - 21:59:42 - [0,010] ----D C:\Users\Chrystelle\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Media Center Programs
O43 - CFD: 12/08/2012 - 12:03:47 - [8,272] -S--D C:\Users\Chrystelle\AppData\Roaming\Microsoft
O43 - CFD: 18/01/2010 - 17:03:48 - [13,954] ----D C:\Users\Chrystelle\AppData\Roaming\Mozilla
O43 - CFD: 20/09/2009 - 14:55:04 - [2,192] ----D C:\Users\Chrystelle\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/05/2012 - 12:10:18 - [44,079] ----D C:\Users\Chrystelle\AppData\Roaming\PCDr
O43 - CFD: 19/06/2012 - 09:26:17 - [0,003] ----D C:\Users\Chrystelle\AppData\Roaming\Printer Info Cache
O43 - CFD: 11/08/2012 - 11:29:13 - [0,034] ----D C:\Users\Chrystelle\AppData\Roaming\River Past G5
O43 - CFD: 15/07/2012 - 13:02:21 - [0,001] ----D C:\Users\Chrystelle\AppData\Roaming\Roxio
O43 - CFD: 09/09/2009 - 22:47:14 - [0,013] ----D C:\Users\Chrystelle\AppData\Roaming\Template
O43 - CFD: 12/08/2012 - 12:57:50 - [58,927] ----D C:\Users\Chrystelle\AppData\Local\Adobe
O43 - CFD: 27/02/2009 - 02:15:11 - [0] ----D C:\Users\Chrystelle\AppData\Local\Apple
O43 - CFD: 29/11/2009 - 18:47:11 - [75,432] ----D C:\Users\Chrystelle\AppData\Local\Apple Computer
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Application Data
O43 - CFD: 03/09/2009 - 21:48:06 - [0] ----D C:\Users\Chrystelle\AppData\Local\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,038] ----D C:\Users\Chrystelle\AppData\Local\ATI
O43 - CFD: 11/03/2012 - 13:46:03 - [0,000] ----D C:\Users\Chrystelle\AppData\Local\DDMSettings
O43 - CFD: 11/07/2012 - 18:45:45 - [0,020] ----D C:\Users\Chrystelle\AppData\Local\Electronic Arts
O43 - CFD: 20/06/2012 - 08:37:53 - [0] ----D C:\Users\Chrystelle\AppData\Local\ElevatedDiagnostics
O43 - CFD: 24/05/2012 - 18:16:40 - [393,162] ----D C:\Users\Chrystelle\AppData\Local\Google
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Historique
O43 - CFD: 13/03/2012 - 19:13:50 - [0,036] ----D C:\Users\Chrystelle\AppData\Local\HP
O43 - CFD: 12/08/2012 - 12:03:47 - [0] ----D C:\Users\Chrystelle\AppData\Local\Macromedia
O43 - CFD: 12/08/2012 - 12:03:47 - [910,064] ----D C:\Users\Chrystelle\AppData\Local\Microsoft
O43 - CFD: 25/02/2009 - 20:01:45 - [0,634] ----D C:\Users\Chrystelle\AppData\Local\Microsoft Games
O43 - CFD: 18/01/2010 - 17:03:48 - [57,567] ----D C:\Users\Chrystelle\AppData\Local\Mozilla
O43 - CFD: 11/08/2012 - 14:06:04 - [0,002] ----D C:\Users\Chrystelle\AppData\Local\Stardock_Corporation
O43 - CFD: 24/08/2012 - 11:07:02 - [16,279] ----D C:\Users\Chrystelle\AppData\Local\Temp
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Temporary Internet Files
O43 - CFD: 11/06/2010 - 11:24:05 - [4,051] ----D C:\Users\Chrystelle\AppData\Local\VirtualStore
O43 - CFD: 20/09/2009 - 00:25:30 - [0,004] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4Media
O43 - CFD: 20/08/2012 - 11:44:56 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AC3Filter
O43 - CFD: 21/01/2008 - 04:42:46 - [0,015] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/02/2009 - 18:17:46 - [0,000] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/02/2009 - 18:18:29 - [0,005] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Desktop
O43 - CFD: 26/07/2012 - 11:35:48 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 21/01/2008 - 04:42:46 - [0,001] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/08/2012 - 18:31:21 - [0,003] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 24/02/2009 - 19:06:02 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TRENDnet
~ Scan Program Folder in 00mn 11s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.6D2DCE2B6ECEB547A919415DF86C64DF] - 24/08/2012 - 08:10:49 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1675251]
O44 - LFC:[MD5.AE0D97CF6EE764CB8C40804DC2C6B21A] - 24/08/2012 - 08:01:02 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.818D091A1F48400062F33AEB194949C4] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [426184]
O44 - LFC:[MD5.4154A3678BCF729F6C6AB2297A92F939] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [70344]
O44 - LFC:[MD5.2E714D7461A91144EF3797AB1AD9A23E] - 15/08/2012 - 17:34:18 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [291136]
O44 - LFC:[MD5.7D967A682D4694DF7FA57D63A2DB01FE] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys   [137928]
O44 - LFC:[MD5.D5541F0AFB767E85FC412FC609D96A74] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys   [83392]
O44 - LFC:[MD5.F1A10D5728C6A8DB4BCAC182E9C0D2E7] - 13/08/2012 - 01:35:40 ---A- . (...) -- C:\Windows\PFRO.log   [54976]
~ Scan Files in 00mn 42s



---\\ Contrôle du Safe Boot (CSB) (O49) (None)

---\\ MountPoints2 Shell Key (O51) (None)

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422968]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Scan Drivers in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68) (None)

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {70D46D94-BF1E-45ED-B567-48701376298E} - (Google Desktop) - http://127.0.0.1:4664/search&s=2pysF--2MS9pDa96MTbvwvm2QXk?q={searchTer…
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83) (None)

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.BAC1FFFA5C7881D54AABB8635728AF58] [SPRF][16/08/2012] (...) -- C:\Users\Chrystelle\AppData\Local\d3d9caps.dat   [680]
[MD5.BFD203827AB373DE4650A8898DCD7E6A] [SPRF][18/08/2004] (.Macromedia, Inc. - Macromedia Flash Player 6.0  r21.) -- C:\Users\Chrystelle\AppData\Local\Temp\First15.exe   [1453843]
[MD5.263D4044F13EC7F8E4A76FABDD853CC7] [SPRF][16/08/2012] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\ICReinstall_VideoConverterSetup.exe   [1144592]
[MD5.5B2DA96D90C95228239806D40B720BD2] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6.reg   [340]
[MD5.1410ADCB69C267916EE702E2A443E93F] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6Install.exe   [23040]
[MD5.4D6F38D3CDA2D0BA502BC1C499A622CF] [SPRF][18/08/2004] (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6VFW.dll   [442368]
[MD5.407E3AD05C7260151F1E9DE0E8191612] [SPRF][15/06/2012] (...) -- C:\Users\Chrystelle\AppData\Roaming\wklnhst.dat   [826]
[MD5.8CE7705CB43B03BB7970B04087C7758F] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll   [29616]
[MD5.01E2ECA759056F23C73A035FDABB2D6D] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe   [201648]
[MD5.0C135B4FEFF52ED92CF08BB3F0A75A90] [SPRF][11/09/2006] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll   [484272]
~ Scan Files in 00mn 08s



End of the scan (479 lines in 01mn 29s)(0)

y a t il quelque chose qui cloche?




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 07:31 (2012) Répondre en citant  
Message
  nenette58
Administrateurs WSI
Administrateurs WSI


Hors ligne

Inscrit le: 01 Nov 2008
Messages: 3 843
Niveau Général Informatique:
Estimation Protection:
Navigateur: FireFox
Féminin Cancer (21juin-23juil) 狗 Chien
Point(s): 4 310
Moyenne de points: 1,12
Version Pack: Gratuite
Autre: MalwareBytes+Zemana

Bonjour Mollet

Rien d'infectieux dans ce rapport. Les ralentissements sont uniquement sur le web ou est-ce un état général du pc ?


Nul n'a autant besoin d'un sourire que celui qui n'en a pas à donner.





ordi très lent
 MessagePosté le: Sam 25 Aoû - 07:40 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

uniquement sur le web sur facebook uniquement




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 15:24 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

bonjour Nenette
voilà j'ai fais un scan avec avira antivir de free et voilà ce qu'il a trouvé


Avira Free Antivirus
Date de création du fichier de rapport : samedi 25 août 2012  17:31

La recherche porte sur 4166737 souches de virus.

Le programme fonctionne en version intégrale illimitée.
Les services en ligne sont disponibles.

Détenteur de la licence : Avira AntiVir Personal - Free Antivirus
Numéro de série         : 0000149996-ADJIE-0000001
Plateforme              : Windows Vista (TM) Home Premium
Version de Windows      : (Service Pack 2)  [6.0.6002]
Mode Boot               : Démarré normalement
Identifiant             : Chrystelle
Nom de l'ordinateur     : COMPUTIE

Informations de version :
BUILD.DAT               : 12.0.0.348           Bytes  23/07/2012 15:03:00
AVSCAN.EXE              : 12.3.0.33     468472 Bytes  13/08/2012 17:50:18
AVSCAN.DLL              : 12.3.0.15      65488 Bytes  13/08/2012 17:50:18
LUKE.DLL                : 12.3.0.15      68304 Bytes  13/08/2012 17:50:18
AVSCPLR.DLL             : 12.3.0.14      97032 Bytes  26/05/2012 09:53:36
AVREG.DLL               : 12.3.0.17     232200 Bytes  26/05/2012 09:53:36
VBASE000.VDF            : 7.10.0.0    19875328 Bytes  06/11/2009 07:05:36
VBASE001.VDF            : 7.11.0.0    13342208 Bytes  14/12/2010 13:04:02
VBASE002.VDF            : 7.11.19.170 14374912 Bytes  20/12/2011 13:04:09
VBASE003.VDF            : 7.11.21.238  4472832 Bytes  01/02/2012 09:52:08
VBASE004.VDF            : 7.11.26.44   4329472 Bytes  28/03/2012 09:52:36
VBASE005.VDF            : 7.11.34.116  4034048 Bytes  29/06/2012 20:22:17
VBASE006.VDF            : 7.11.34.117     2048 Bytes  29/06/2012 20:22:17
VBASE007.VDF            : 7.11.34.118     2048 Bytes  29/06/2012 20:22:17
VBASE008.VDF            : 7.11.34.119     2048 Bytes  29/06/2012 20:22:17
VBASE009.VDF            : 7.11.34.120     2048 Bytes  29/06/2012 20:22:17
VBASE010.VDF            : 7.11.34.121     2048 Bytes  29/06/2012 20:22:17
VBASE011.VDF            : 7.11.34.122     2048 Bytes  29/06/2012 20:22:17
VBASE012.VDF            : 7.11.34.123     2048 Bytes  29/06/2012 20:22:17
VBASE013.VDF            : 7.11.34.124     2048 Bytes  29/06/2012 20:22:17
VBASE014.VDF            : 7.11.38.18   2554880 Bytes  30/07/2012 15:34:50
VBASE015.VDF            : 7.11.38.70    556032 Bytes  31/07/2012 15:34:51
VBASE016.VDF            : 7.11.38.143   171008 Bytes  02/08/2012 15:34:52
VBASE017.VDF            : 7.11.38.221   178176 Bytes  06/08/2012 15:34:53
VBASE018.VDF            : 7.11.39.37    168448 Bytes  08/08/2012 15:34:58
VBASE019.VDF            : 7.11.39.89    131072 Bytes  09/08/2012 15:34:58
VBASE020.VDF            : 7.11.39.145   142336 Bytes  11/08/2012 09:28:36
VBASE021.VDF            : 7.11.39.207   165888 Bytes  14/08/2012 17:48:53
VBASE022.VDF            : 7.11.40.9     156160 Bytes  16/08/2012 17:48:55
VBASE023.VDF            : 7.11.40.49    133120 Bytes  17/08/2012 09:25:12
VBASE024.VDF            : 7.11.40.95    156160 Bytes  20/08/2012 09:25:15
VBASE025.VDF            : 7.11.40.155   181760 Bytes  22/08/2012 15:11:30
VBASE026.VDF            : 7.11.40.205   203264 Bytes  23/08/2012 15:05:57
VBASE027.VDF            : 7.11.40.206     2048 Bytes  23/08/2012 15:06:08
VBASE028.VDF            : 7.11.40.207     2048 Bytes  23/08/2012 15:06:08
VBASE029.VDF            : 7.11.40.208     2048 Bytes  23/08/2012 15:06:08
VBASE030.VDF            : 7.11.40.209     2048 Bytes  23/08/2012 15:06:22
VBASE031.VDF            : 7.11.40.250    96256 Bytes  25/08/2012 15:06:24
Version du moteur       : 8.2.10.146
AEVDF.DLL               : 8.1.2.10      102772 Bytes  11/07/2012 08:54:10
AESCRIPT.DLL            : 8.1.4.46      455034 Bytes  25/08/2012 15:07:03
AESCN.DLL               : 8.1.8.2       131444 Bytes  26/05/2012 09:53:34
AESBX.DLL               : 8.2.5.12      606578 Bytes  15/06/2012 08:45:06
AERDL.DLL               : 8.1.9.15      639348 Bytes  15/02/2012 13:03:25
AEPACK.DLL              : 8.3.0.32      811382 Bytes  25/08/2012 15:07:03
AEOFFICE.DLL            : 8.1.2.42      201083 Bytes  19/07/2012 15:46:19
AEHEUR.DLL              : 8.1.4.92     5177718 Bytes  25/08/2012 15:07:01
AEHELP.DLL              : 8.1.23.2      258422 Bytes  04/07/2012 20:22:20
AEGEN.DLL               : 8.1.5.36      434549 Bytes  25/08/2012 15:06:28
AEEXP.DLL               : 8.1.0.80       86389 Bytes  25/08/2012 15:07:25
AEEMU.DLL               : 8.1.3.2       393587 Bytes  11/07/2012 08:54:09
AECORE.DLL              : 8.1.27.4      201078 Bytes  11/08/2012 11:01:00
AEBB.DLL                : 8.1.1.0        53618 Bytes  15/02/2012 13:03:20
AVWINLL.DLL             : 12.3.0.15      27344 Bytes  13/08/2012 17:50:18
AVPREF.DLL              : 12.3.0.15      51920 Bytes  13/08/2012 17:50:18
AVREP.DLL               : 12.3.0.15     179208 Bytes  26/05/2012 09:53:36
AVARKT.DLL              : 12.3.0.15     211408 Bytes  13/08/2012 17:50:18
AVEVTLOG.DLL            : 12.3.0.15     169168 Bytes  13/08/2012 17:50:18
SQLITE3.DLL             : 3.7.0.1       398288 Bytes  13/08/2012 17:50:18
AVSMTP.DLL              : 12.3.0.32      63992 Bytes  13/08/2012 17:50:18
NETNT.DLL               : 12.3.0.15      17104 Bytes  13/08/2012 17:50:18
RCIMAGE.DLL             : 12.1.0.13    4449488 Bytes  15/02/2012 13:04:25
RCTEXT.DLL              : 12.3.0.31     101368 Bytes  13/08/2012 17:50:18

Configuration pour la recherche actuelle :
Nom de la tâche...............................: Disques durs locaux
Fichier de configuration......................: C:\Program Files\Avira\AntiVir Desktop\alldiscs.avp
Documentation.................................: par défaut
Action principale.............................: interactif
Action secondaire.............................: ignorer
Recherche sur les secteurs d'amorçage maître..: marche
Recherche sur les secteurs d'amorçage.........: marche
Secteurs d'amorçage...........................: C:, D:, J:,
Recherche dans les programmes actifs..........: marche
Recherche en cours sur l'enregistrement.......: marche
Recherche de Rootkits.........................: arrêt
Contrôle d'intégrité de fichiers système......: arrêt
Fichier mode de recherche.....................: Sélection de fichiers intelligente
Recherche sur les archives....................: marche
Limiter la profondeur de récursivité..........: 20
Archive Smart Extensions......................: marche
Heuristique de macrovirus.....................: marche
Heuristique fichier...........................: intégral
Catégories de dangers divergentes.............: +APPL,+GAME,+JOKE,+PCK,+SPR,

Début de la recherche : samedi 25 août 2012  17:31

La recherche sur les secteurs d'amorçage maître commence :
Secteur d'amorçage maître HD0
    [INFO]      Aucun virus trouvé !
    [INFO]      Veuillez relancer la recherche avec les droits d'administrateur
Secteur d'amorçage maître HD1
    [INFO]      Aucun virus trouvé !
    [INFO]      Veuillez relancer la recherche avec les droits d'administrateur
Secteur d'amorçage maître HD2
    [INFO]      Aucun virus trouvé !
Secteur d'amorçage maître HD3
    [INFO]      Aucun virus trouvé !
Secteur d'amorçage maître HD4
    [INFO]      Aucun virus trouvé !
Secteur d'amorçage maître HD5
    [INFO]      Aucun virus trouvé !

La recherche sur les secteurs d'amorçage commence :
Secteur d'amorçage 'C:\'
    [INFO]      Aucun virus trouvé !
    [INFO]      Veuillez relancer la recherche avec les droits d'administrateur
Secteur d'amorçage 'D:\'
    [INFO]      Aucun virus trouvé !
    [INFO]      Veuillez relancer la recherche avec les droits d'administrateur
Secteur d'amorçage 'J:\'
    [INFO]      Aucun virus trouvé !
    [INFO]      Veuillez relancer la recherche avec les droits d'administrateur

La recherche sur les processus démarrés commence :
Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés
Processus de recherche 'distnoted.exe' - '1' module(s) sont contrôlés
Processus de recherche 'CCC.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqSTE08.exe' - '1' module(s) sont contrôlés
Processus de recherche 'unsecapp.exe' - '1' module(s) sont contrôlés
Processus de recherche 'soffice.bin' - '1' module(s) sont contrôlés
Processus de recherche 'soffice.exe' - '1' module(s) sont contrôlés
Processus de recherche 'MOM.exe' - '1' module(s) sont contrôlés
Processus de recherche 'WlanCU.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqtra08.exe' - '1' module(s) sont contrôlés
Processus de recherche 'wmpnscfg.exe' - '1' module(s) sont contrôlés
Processus de recherche 'ubd.exe' - '1' module(s) sont contrôlés
Processus de recherche 'jusched.exe' - '1' module(s) sont contrôlés
Processus de recherche 'iTunesHelper.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés
Processus de recherche 'DivXUpdate.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpwuSchd2.exe' - '1' module(s) sont contrôlés
Processus de recherche 'GoogleDesktop.exe' - '1' module(s) sont contrôlés
Processus de recherche 'RtHDVCpl.exe' - '1' module(s) sont contrôlés
Processus de recherche 'MSASCui.exe' - '1' module(s) sont contrôlés
Processus de recherche 'conime.exe' - '1' module(s) sont contrôlés
Processus de recherche 'DellDock.exe' - '1' module(s) sont contrôlés
Processus de recherche 'Explorer.EXE' - '1' module(s) sont contrôlés
Processus de recherche 'Dwm.exe' - '1' module(s) sont contrôlés
Processus de recherche 'taskeng.exe' - '1' module(s) sont contrôlés
Processus de recherche 'ACPGUI.dll' - '1' module(s) sont contrôlés

La recherche sur les renvois aux fichiers exécutables (registre) commence :
Le registre a été contrôlé ( '1957' fichiers).


La recherche sur les fichiers sélectionnés commence :

Recherche débutant dans 'C:\' <OS>
C:\Users\Chrystelle\AppData\Local\Temp\ICReinstall_VideoConverterSetup.exe
  [RESULTAT]  Contient le modèle de détection du logiciel publicitaire ADWARE/InstallCore.Gen
C:\Users\Chrystelle\Downloads\avira_free_antivirus_fr.exe
  [AVERTISSEMENT] Le fichier est protégé par mot de passe
C:\Users\Chrystelle\Downloads\install_flashplayer11x32_mssd_aih.exe
  [AVERTISSEMENT] Le fichier est protégé par mot de passe
C:\Users\Chrystelle\Downloads\VideoConverterSetup.exe
  [RESULTAT]  Contient le modèle de détection du logiciel publicitaire ADWARE/InstallCore.Gen
Recherche débutant dans 'D:\' <RECOVERY>
Recherche débutant dans 'J:\' <Elements>

Début de la désinfection :
C:\Users\Chrystelle\Downloads\VideoConverterSetup.exe
  [RESULTAT]  Contient le modèle de détection du logiciel publicitaire ADWARE/InstallCore.Gen
  [REMARQUE]  Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '55f558e6.qua' !
C:\Users\Chrystelle\AppData\Local\Temp\ICReinstall_VideoConverterSetup.exe
  [RESULTAT]  Contient le modèle de détection du logiciel publicitaire ADWARE/InstallCore.Gen
  [REMARQUE]  Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4d74771b.qua' !


Fin de la recherche : samedi 25 août 2012  18:21
Temps nécessaire: 42:56 Minute(s)

La recherche a été effectuée intégralement

  28076 Les répertoires ont été contrôlés
 433212 Des fichiers ont été contrôlés
      2 Des virus ou programmes indésirables ont été trouvés
      0 Des fichiers ont été classés comme suspects
      0 Des fichiers ont été supprimés
      0 Des virus ou programmes indésirables ont été réparés
      2 Les fichiers ont été déplacés dans la quarantaine
      0 Les fichiers ont été renommés
      0 Impossible de scanner des fichiers
 433210 Fichiers non infectés
   2394 Les archives ont été contrôlées
      2 Avertissements
      2 Consignes

merci de ton aide




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 15:58 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

et un autre scann avec zhpdiag
Rapport de ZHPDiag v1.31.13 par Nicolas Coolman, Update du 31/07/2012
Run by Chrystelle at 25/08/2012 18:35:56
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site :  http://nicolascoolman.skyrock.com/
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : B9HD2
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3326 MB (65% free)
System Restore: Inconnu (Unknown)
System drive C: has 454 GB (78%) free of 581 GB

---\\ Logged in mode
~ Computer Name: COMPUTIE
~ User Name: Chrystelle
~ All Users Names: Chrystelle, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Chrystelle\AppData\Roaming\
~ %Desktop% : C:\Users\Chrystelle\Desktop\
~ %Favorites% : C:\Users\Chrystelle\Favorites\
~ %LocalAppData% : C:\Users\Chrystelle\AppData\Local\
~ %StartMenu% : C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 454 Go of 581 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Hard drive, Flash drive, Thumb drive (Free 568 Go of 596 Go)



---\\ Security Center & Tools Informations
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.03B4167CC1B30AC22DF413788AFADE97] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.28/06/2012 - 12:37:42.) -- C:\Windows\System32\wininet.dll [916992]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 07:32:49.) -- C:\Windows\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/04/2009 - 07:32:55.) -- C:\Windows\system32\Drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3
~ Mes musiques (My Musics) : 7/97
~ Mes Videos (My Videos) : 1/10
~ Mes Favoris (My Favorites) : 1/33
~ Mes Documents (My Documents) : 1/3400
~ Mon Bureau (My Desktop) : 1/3
~ Menu demarrer (Programs) : 0/33
~ Scan Hidden Files in 00mn 04s



---\\ Processus lancés
[MD5.58D9C70B01DBF2DEAEA787A1D7C869BB] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe   [1295656] [PID.2540]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe   [1008184] [PID.3096]
[MD5.85FB84AAE36E498F471CB76270D4B8F6] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe   [6246400] [PID.3136]
[MD5.F0187E45268E86AAAA932CBD9087BEA8] - (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe   [30192] [PID.3216]
[MD5.E681281D9BFC9D45D3B72532717E5880] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [49152] [PID.3236]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe   [69120] [PID.3376]
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe   [49152] [PID.3384]
[MD5.4EB0C6C3EF4D8885CF2B5D0062F31E44] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe   [1259376] [PID.3400]
[MD5.9F0BE235A0136EA9E94CF9BD037C30EC] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe   [348664] [PID.3456]
[MD5.34086F1DBB4065047EA3671CB70505CC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe   [421776] [PID.3496]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [254696] [PID.3576]
[MD5.E0E15F209360E4A97ABCC21A486B4AEE] - (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe   [59240] [PID.3636]
[MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe   [210520] [PID.3724]
[MD5.DC35217E5F49C2FE2D5EBC7CB52FEC65] - (.Pas de propriétaire - WlanCU MFC Application.) -- C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe   [434176] [PID.3852]
[MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe   [7424000] [PID.3996]
[MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin   [7418368] [PID.4020]
[MD5.25CA1677AAA3CDC99CD4FCF940886F3C] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [49152] [PID.2192]
[MD5.0CEF6926C814953F18C925AB46E2889C] - (.Pas de propriétaire - Philips CamSuite GUI module.) -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPGUI.dll   [815104] [PID.4416]
[MD5.BB3A22F3EED85A12CFB2DD60D9F9B52F] - (.Apple Inc. - distnoted.) -- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe   [13672] [PID.4440]
[MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe   [271960] [PID.5196]
[MD5.FCB13D9E3D55075C8FACA9CA3C55B263] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [3763200] [PID.3928]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Premier utilisateur" v. ()
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Chrystelle\AppData\Roaming\Mozilla\Firefox\Profiles\gsamgv00.default\prefs.js
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Chrystelle - gsamgv00.default]  http://www.google.fr
M2 - MFEP: prefs.js [Chrystelle - gsamgv00.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Interpréteur de commandes Windows.) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKCU\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKCU\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Chrystelle\Desktop\DivX Movies.lnk . (...)  -- C:\Users\Chrystelle\Videos\DivX Movies
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\4Media iPod to PC Transfer.lnk . (...)  -- C:\Program Files\4Media\iPod to PC Transfer\iPodManager.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...)  -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.)  -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\hpwebreg_CN0B8393GN05HX.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\RtlNICDiagVistaStart.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\User_Feed_Synchronization-{C5DA1661-2ABD-4521-B98E-3DEE005CC2F2}.job
[MD5.2EFF6334A2BD29E404F6809C37658FCD] [APT] [hpwebreg_CN0B8393GN05HX] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\hpwebreg.exe
[MD5.445975B8DC52CADBB50051DAECEA1620] [APT] [PCDEventLauncher] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\sessionchecker.exe
[MD5.F9C5DF7F81FFCCDC3B1733CCA90A71CA] [APT] [PCDoctorBackgroundMonitorTask] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\uaclauncher.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40) (None)

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/09/2009 - 00:06:40 - [11,754] ----D C:\Program Files\4Media
O43 - CFD: 11/08/2012 - 11:38:49 - [2,450] ----D C:\Program Files\AC3Filter
O43 - CFD: 12/08/2012 - 12:58:05 - [113,097] ----D C:\Program Files\Adobe
O43 - CFD: 29/11/2009 - 16:40:35 - [0] ----D C:\Program Files\Alwil Software
O43 - CFD: 15/01/2012 - 15:52:03 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 20/12/2008 - 11:21:06 - [82,339] ----D C:\Program Files\ATI Technologies
O43 - CFD: 20/09/2009 - 14:46:45 - [0,001] ----D C:\Program Files\Atlantis
O43 - CFD: 26/05/2012 - 11:50:17 - [186,907] ----D C:\Program Files\Avira
O43 - CFD: 15/01/2012 - 15:23:02 - [1,442] ----D C:\Program Files\Belkin
O43 - CFD: 15/01/2012 - 16:43:13 - [0,586] ----D C:\Program Files\Bonjour
O43 - CFD: 20/12/2008 - 11:29:30 - [3,389] ----D C:\Program Files\Citrix
O43 - CFD: 14/08/2012 - 18:26:08 - [746,796] ----D C:\Program Files\Common Files
O43 - CFD: 20/12/2008 - 11:35:42 - [13,000] ----D C:\Program Files\Dell
O43 - CFD: 23/08/2012 - 13:25:39 - [165,965] ----D C:\Program Files\Dell Support Center
O43 - CFD: 03/09/2009 - 21:46:13 - [0,758] ----D C:\Program Files\DIFX
O43 - CFD: 14/06/2012 - 12:01:14 - [97,507] ----D C:\Program Files\DivX
O43 - CFD: 10/07/2012 - 23:02:40 - [0,077] ----D C:\Program Files\EA GAMES
O43 - CFD: 11/07/2012 - 18:33:03 - [364,440] ----D C:\Program Files\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 24/05/2012 - 21:37:53 - [399,843] ----D C:\Program Files\Google
O43 - CFD: 20/06/2012 - 14:56:37 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:02 - [142,671] ----D C:\Program Files\HP
O43 - CFD: 13/03/2012 - 19:16:32 - [0,352] ----D C:\Program Files\HP Photo Creations
O43 - CFD: 10/07/2012 - 23:02:40 - [153,007] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/12/2008 - 11:19:38 - [0] ----D C:\Program Files\Intel
O43 - CFD: 15/08/2012 - 18:31:46 - [5,609] ----D C:\Program Files\Internet Explorer
O43 - CFD: 18/06/2012 - 11:43:43 - [2,259] ----D C:\Program Files\iPod
O43 - CFD: 18/06/2012 - 11:45:38 - [149,103] ----D C:\Program Files\iTunes
O43 - CFD: 16/01/2012 - 18:03:53 - [165,771] ----D C:\Program Files\Java
O43 - CFD: 20/09/2009 - 14:53:30 - [15,892] ----D C:\Program Files\JRE
O43 - CFD: 24/05/2012 - 18:19:01 - [0,216] ----D C:\Program Files\Microsoft
O43 - CFD: 02/11/2006 - 14:37:34 - [89,117] ----D C:\Program Files\Microsoft Games
O43 - CFD: 20/12/2008 - 11:24:51 - [52,514] ----D C:\Program Files\Microsoft Office
O43 - CFD: 12/08/2012 - 12:48:17 - [40,838] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 15/01/2012 - 19:28:32 - [137,975] ----D C:\Program Files\Microsoft Works
O43 - CFD: 04/06/2009 - 13:05:02 - [0,934] ----D C:\Program Files\Microsoft WSE
O43 - CFD: 21/01/2012 - 16:56:51 - [0,015] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 15/01/2012 - 20:56:49 - [94,740] ----D C:\Program Files\Movie Maker
O43 - CFD: 11/08/2012 - 15:25:23 - [37,711] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 11/08/2012 - 15:25:26 - [0,195] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 02/11/2006 - 14:37:34 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 26/02/2012 - 11:21:15 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 20/09/2009 - 14:53:29 - [367,412] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/01/2012 - 15:10:01 - [24,521] ----D C:\Program Files\Philips
O43 - CFD: 24/05/2012 - 18:23:24 - [72,431] ----D C:\Program Files\QuickTime
O43 - CFD: 20/12/2008 - 11:19:10 - [0,417] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:34 - [36,906] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 20/12/2008 - 11:27:22 - [17,818] ----D C:\Program Files\Roxio
O43 - CFD: 24/05/2012 - 18:30:24 - [102,605] ----D C:\Program Files\Safari
O43 - CFD: 24/02/2009 - 18:25:09 - [5,213] ----D C:\Program Files\TRENDnet
O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 19/09/2009 - 10:12:30 - [22,420] ----D C:\Program Files\Utilitaire de configuration iPhone
O43 - CFD: 21/05/2010 - 14:31:47 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 21/05/2010 - 14:31:44 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 21/05/2010 - 14:31:38 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 20/06/2012 - 09:07:26 - [6,757] ----D C:\Program Files\Windows Journal
O43 - CFD: 03/09/2009 - 13:48:53 - [78,223] ----D C:\Program Files\Windows Live
O43 - CFD: 03/09/2009 - 13:49:10 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 18/06/2012 - 18:15:30 - [8,694] ----D C:\Program Files\Windows Mail
O43 - CFD: 15/01/2012 - 20:56:58 - [4,290] ----D C:\Program Files\Windows Media Player
O43 - CFD: 24/02/2009 - 18:11:44 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 21/05/2010 - 14:31:42 - [12,902] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 12/06/2010 - 23:38:28 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 21/05/2010 - 14:31:45 - [6,225] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 25/08/2012 - 18:36:13 - [12,789] ----D C:\Program Files\ZHPDiag
O43 - CFD: 12/08/2012 - 12:58:10 - [3,722] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 23/01/2010 - 12:48:46 - [30,670] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 18/06/2012 - 11:43:42 - [146,859] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 15/01/2012 - 15:29:37 - [0,000] ----D C:\Program Files\Common Files\ArcSoft
O43 - CFD: 11/03/2012 - 13:17:08 - [23,581] ----D C:\Program Files\Common Files\DivX Shared
O43 - CFD: 16/02/2012 - 15:21:22 - [0,436] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:05 - [2,065] ----D C:\Program Files\Common Files\HP
O43 - CFD: 20/12/2008 - 11:25:16 - [4,815] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 16/02/2012 - 23:34:34 - [37,320] ----D C:\Program Files\Common Files\Java
O43 - CFD: 24/02/2009 - 21:39:45 - [0,421] ----D C:\Program Files\Common Files\logishrd
O43 - CFD: 03/09/2009 - 13:49:15 - [261,434] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 11/03/2012 - 13:17:10 - [4,736] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 20/12/2008 - 11:26:20 - [30,710] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 20/12/2008 - 11:26:20 - [1,038] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 03/09/2009 - 21:45:26 - [118,877] ----D C:\Program Files\Common Files\SPC630NC
O43 - CFD: 02/11/2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 20/12/2008 - 11:27:21 - [0,700] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 15/01/2012 - 20:56:29 - [8,333] ----D C:\Program Files\Common Files\System
O43 - CFD: 03/09/2009 - 13:34:06 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 24/02/2009 - 20:27:19 - [31,879] -SH-D C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 21/08/2012 - 12:50:09 - [262,312] ----D C:\ProgramData\Adobe
O43 - CFD: 15/01/2012 - 17:33:35 - [229,876] ----D C:\ProgramData\Apple
O43 - CFD: 27/02/2009 - 02:16:27 - [295,616] ----D C:\ProgramData\Apple Computer
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 04/09/2009 - 22:44:46 - [0,006] ----D C:\ProgramData\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/05/2012 - 11:50:17 - [73,699] ----D C:\ProgramData\Avira
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 11/08/2012 - 11:37:59 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 24/05/2012 - 13:08:26 - [2,276] ----D C:\ProgramData\Dell
O43 - CFD: 14/06/2012 - 12:02:05 - [4,568] ----D C:\ProgramData\DivX
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 23/01/2010 - 12:58:00 - [21,200] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 24/05/2012 - 18:16:40 - [1,833] ----D C:\ProgramData\Google
O43 - CFD: 16/02/2012 - 15:15:52 - [0,321] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 20/06/2012 - 14:58:57 - [62,812] ----D C:\ProgramData\HP
O43 - CFD: 13/03/2012 - 19:26:42 - [2,487] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 11/08/2012 - 12:49:35 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 16/02/2012 - 15:22:16 - [0] ----D C:\ProgramData\HPSSUPPLY
O43 - CFD: 20/12/2008 - 11:25:18 - [0,000] ----D C:\ProgramData\InstallShield
O43 - CFD: 12/08/2012 - 21:59:32 - [0,032] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 18/06/2012 - 18:01:45 - [0,009] ----D C:\ProgramData\McAfee
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/05/2012 - 18:19:01 - [5,305] -S--D C:\ProgramData\Microsoft
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 11/08/2012 - 15:25:24 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 20/12/2008 - 11:34:32 - [0,001] ----D C:\ProgramData\PC-Doctor
O43 - CFD: 23/08/2012 - 13:25:35 - [3,231] ----D C:\ProgramData\PC-Doctor for Windows
O43 - CFD: 23/08/2012 - 14:03:08 - [39,905] ----D C:\ProgramData\PCDr
O43 - CFD: 15/01/2012 - 15:10:00 - [3,224] ----D C:\ProgramData\Philips
O43 - CFD: 11/08/2012 - 11:29:13 - [0,102] ----D C:\ProgramData\River Past G5
O43 - CFD: 15/07/2012 - 13:02:22 - [0] ----D C:\ProgramData\Roxio
O43 - CFD: 20/12/2008 - 11:26:23 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 16/01/2012 - 18:04:14 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 20/12/2008 - 11:27:25 - [5,070] ----D C:\ProgramData\Uninstall
O43 - CFD: 16/02/2012 - 15:33:33 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 15/01/2012 - 17:36:01 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 24/02/2009 - 20:22:02 - [0,215] ----D C:\ProgramData\WLInstaller
O43 - CFD: 14/03/2009 - 00:43:39 - [0,003] ----D C:\ProgramData\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
O43 - CFD: 15/01/2012 - 17:43:26 - [0] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 19/09/2009 - 10:09:40 - [0,002] ----D C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
O43 - CFD: 30/05/2009 - 23:27:07 - [0,002] ----D C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
O43 - CFD: 21/08/2012 - 12:49:14 - [1,274] ----D C:\Users\Chrystelle\AppData\Roaming\Adobe
O43 - CFD: 24/03/2012 - 11:10:03 - [117,878] ----D C:\Users\Chrystelle\AppData\Roaming\Apple Computer
O43 - CFD: 03/09/2009 - 21:52:52 - [0,000] ----D C:\Users\Chrystelle\AppData\Roaming\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\ATI
O43 - CFD: 26/05/2012 - 11:55:48 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Avira
O43 - CFD: 24/05/2012 - 13:13:43 - [0,041] ----D C:\Users\Chrystelle\AppData\Roaming\Dell
O43 - CFD: 24/03/2012 - 12:02:27 - [0,163] ----D C:\Users\Chrystelle\AppData\Roaming\DivX
O43 - CFD: 11/03/2012 - 13:03:38 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\GetRightToGo
O43 - CFD: 25/02/2009 - 01:52:19 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Google
O43 - CFD: 18/06/2012 - 19:28:58 - [0,045] ----D C:\Users\Chrystelle\AppData\Roaming\HP
O43 - CFD: 07/07/2012 - 10:16:42 - [0,009] ----D C:\Users\Chrystelle\AppData\Roaming\HpUpdate
O43 - CFD: 24/02/2009 - 18:17:32 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Identities
O43 - CFD: 19/06/2012 - 09:26:17 - [0,489] ----D C:\Users\Chrystelle\AppData\Roaming\Image Zone Express
O43 - CFD: 10/01/2010 - 22:52:35 - [43,057] ----D C:\Users\Chrystelle\AppData\Roaming\LimeWire
O43 - CFD: 24/02/2009 - 20:29:58 - [1,877] ----D C:\Users\Chrystelle\AppData\Roaming\Macromedia
O43 - CFD: 12/08/2012 - 21:59:42 - [0,010] ----D C:\Users\Chrystelle\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Media Center Programs
O43 - CFD: 12/08/2012 - 12:03:47 - [8,273] -S--D C:\Users\Chrystelle\AppData\Roaming\Microsoft
O43 - CFD: 18/01/2010 - 17:03:48 - [13,904] ----D C:\Users\Chrystelle\AppData\Roaming\Mozilla
O43 - CFD: 20/09/2009 - 14:55:04 - [2,192] ----D C:\Users\Chrystelle\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/05/2012 - 12:10:18 - [44,077] ----D C:\Users\Chrystelle\AppData\Roaming\PCDr
O43 - CFD: 19/06/2012 - 09:26:17 - [0,003] ----D C:\Users\Chrystelle\AppData\Roaming\Printer Info Cache
O43 - CFD: 11/08/2012 - 11:29:13 - [0,034] ----D C:\Users\Chrystelle\AppData\Roaming\River Past G5
O43 - CFD: 15/07/2012 - 13:02:21 - [0,001] ----D C:\Users\Chrystelle\AppData\Roaming\Roxio
O43 - CFD: 09/09/2009 - 22:47:14 - [0,013] ----D C:\Users\Chrystelle\AppData\Roaming\Template
O43 - CFD: 12/08/2012 - 12:57:50 - [58,927] ----D C:\Users\Chrystelle\AppData\Local\Adobe
O43 - CFD: 27/02/2009 - 02:15:11 - [0] ----D C:\Users\Chrystelle\AppData\Local\Apple
O43 - CFD: 29/11/2009 - 18:47:11 - [75,432] ----D C:\Users\Chrystelle\AppData\Local\Apple Computer
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Application Data
O43 - CFD: 03/09/2009 - 21:48:06 - [0] ----D C:\Users\Chrystelle\AppData\Local\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,038] ----D C:\Users\Chrystelle\AppData\Local\ATI
O43 - CFD: 11/03/2012 - 13:46:03 - [0,000] ----D C:\Users\Chrystelle\AppData\Local\DDMSettings
O43 - CFD: 11/07/2012 - 18:45:45 - [0,020] ----D C:\Users\Chrystelle\AppData\Local\Electronic Arts
O43 - CFD: 20/06/2012 - 08:37:53 - [0] ----D C:\Users\Chrystelle\AppData\Local\ElevatedDiagnostics
O43 - CFD: 24/05/2012 - 18:16:40 - [385,087] ----D C:\Users\Chrystelle\AppData\Local\Google
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Historique
O43 - CFD: 13/03/2012 - 19:13:50 - [0,036] ----D C:\Users\Chrystelle\AppData\Local\HP
O43 - CFD: 12/08/2012 - 12:03:47 - [0] ----D C:\Users\Chrystelle\AppData\Local\Macromedia
O43 - CFD: 12/08/2012 - 12:03:47 - [912,784] ----D C:\Users\Chrystelle\AppData\Local\Microsoft
O43 - CFD: 25/02/2009 - 20:01:45 - [0,634] ----D C:\Users\Chrystelle\AppData\Local\Microsoft Games
O43 - CFD: 18/01/2010 - 17:03:48 - [57,565] ----D C:\Users\Chrystelle\AppData\Local\Mozilla
O43 - CFD: 11/08/2012 - 14:06:04 - [0,002] ----D C:\Users\Chrystelle\AppData\Local\Stardock_Corporation
O43 - CFD: 25/08/2012 - 18:30:57 - [15,393] ----D C:\Users\Chrystelle\AppData\Local\Temp
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Temporary Internet Files
O43 - CFD: 11/06/2010 - 11:24:05 - [4,051] ----D C:\Users\Chrystelle\AppData\Local\VirtualStore
O43 - CFD: 20/09/2009 - 00:25:30 - [0,004] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4Media
O43 - CFD: 20/08/2012 - 11:44:56 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AC3Filter
O43 - CFD: 21/01/2008 - 04:42:46 - [0,015] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/02/2009 - 18:17:46 - [0,000] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/02/2009 - 18:18:29 - [0,005] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Desktop
O43 - CFD: 26/07/2012 - 11:35:48 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 21/01/2008 - 04:42:46 - [0,001] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/08/2012 - 18:31:21 - [0,003] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 24/02/2009 - 19:06:02 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TRENDnet
~ Scan Program Folder in 00mn 21s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.18AD50042141B16F9A259C50C3A25E11] - 25/08/2012 - 17:29:35 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.0E00D290360F1C1DFAAC209198E6A8A1] - 25/08/2012 - 17:26:50 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1708457]
O44 - LFC:[MD5.818D091A1F48400062F33AEB194949C4] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [426184]
O44 - LFC:[MD5.4154A3678BCF729F6C6AB2297A92F939] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [70344]
O44 - LFC:[MD5.2E714D7461A91144EF3797AB1AD9A23E] - 15/08/2012 - 17:34:18 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [291136]
O44 - LFC:[MD5.7D967A682D4694DF7FA57D63A2DB01FE] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys   [137928]
O44 - LFC:[MD5.D5541F0AFB767E85FC412FC609D96A74] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys   [83392]
O44 - LFC:[MD5.F1A10D5728C6A8DB4BCAC182E9C0D2E7] - 13/08/2012 - 01:35:40 ---A- . (...) -- C:\Windows\PFRO.log   [54976]
~ Scan Files in 00mn 52s



---\\ Contrôle du Safe Boot (CSB) (O49) (None)

---\\ MountPoints2 Shell Key (O51) (None)

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422968]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Scan Drivers in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68) (None)

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {70D46D94-BF1E-45ED-B567-48701376298E} - (Google Desktop) - http://127.0.0.1:4664/search&s=2pysF--2MS9pDa96MTbvwvm2QXk?q={searchTer…
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83) (None)

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.BAC1FFFA5C7881D54AABB8635728AF58] [SPRF][16/08/2012] (...) -- C:\Users\Chrystelle\AppData\Local\d3d9caps.dat   [680]
[MD5.BFD203827AB373DE4650A8898DCD7E6A] [SPRF][18/08/2004] (.Macromedia, Inc. - Macromedia Flash Player 6.0  r21.) -- C:\Users\Chrystelle\AppData\Local\Temp\First15.exe   [1453843]
[MD5.5B2DA96D90C95228239806D40B720BD2] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6.reg   [340]
[MD5.1410ADCB69C267916EE702E2A443E93F] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6Install.exe   [23040]
[MD5.4D6F38D3CDA2D0BA502BC1C499A622CF] [SPRF][18/08/2004] (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6VFW.dll   [442368]
[MD5.407E3AD05C7260151F1E9DE0E8191612] [SPRF][15/06/2012] (...) -- C:\Users\Chrystelle\AppData\Roaming\wklnhst.dat   [826]
[MD5.8CE7705CB43B03BB7970B04087C7758F] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll   [29616]
[MD5.01E2ECA759056F23C73A035FDABB2D6D] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe   [201648]
[MD5.0C135B4FEFF52ED92CF08BB3F0A75A90] [SPRF][11/09/2006] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll   [484272]
~ Scan Files in 00mn 10s



End of the scan (476 lines in 01mn 56s)(0)




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 17:24 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

voilà j'ai regardé la définition e adware installcore.gen  sur avira antivir free j'ai eu comme réponse que c'était un malware et qu'il pouvait modifier le registre est ce vrai ? si oui que faire merci de ton aide




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 17:46 (2012) Répondre en citant  
Message
  nenette58
Administrateurs WSI
Administrateurs WSI


Hors ligne

Inscrit le: 01 Nov 2008
Messages: 3 843
Niveau Général Informatique:
Estimation Protection:
Navigateur: FireFox
Féminin Cancer (21juin-23juil) 狗 Chien
Point(s): 4 310
Moyenne de points: 1,12
Version Pack: Gratuite
Autre: MalwareBytes+Zemana

Bizarre cette détection d'Avira, il n'y a rien dans le rapport de ZHPDiag ?! Mais on va en avoir le cœur net Okay

Peux-tu refaire un rapport ZHPDiag, mais en cochant toutes les options => cliquer sur le tournevis (en haut, à droite)



Cliquer sur "Tous"




Nul n'a autant besoin d'un sourire que celui qui n'en a pas à donner.





ordi très lent
 MessagePosté le: Sam 25 Aoû - 18:51 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

Rapport de ZHPDiag v1.31.13 par Nicolas Coolman, Update du 31/07/2012
Run by Chrystelle at 25/08/2012 21:45:45
Web site :  http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site :  http://nicolascoolman.skyrock.com/
State : Version à jour.


---\\ Web Browser
MSIE: Internet Explorer v

---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : B9HD2
Windows License : OK
Windows Automatic Updates : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 7, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3326 MB (53% free)
System Restore: Inconnu (Unknown)
System drive C: has 452 GB (77%) free of 581 GB

---\\ Logged in mode
~ Computer Name: COMPUTIE
~ User Name: Chrystelle
~ All Users Names: Chrystelle, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Chrystelle\AppData\Roaming\
~ %Desktop% : C:\Users\Chrystelle\Desktop\
~ %Favorites% : C:\Users\Chrystelle\Favorites\
~ %LocalAppData% : C:\Users\Chrystelle\AppData\Local\
~ %StartMenu% : C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 452 Go of 581 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 10 Go of 15 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Hard drive, Flash drive, Thumb drive (Free 568 Go of 596 Go)



---\\ Security Center & Tools Informations
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.03B4167CC1B30AC22DF413788AFADE97] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.28/06/2012 - 12:37:42.) -- C:\Windows\System32\wininet.dll [916992]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 07:32:49.) -- C:\Windows\system32\Drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/04/2009 - 07:32:55.) -- C:\Windows\system32\Drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/3
~ Mes musiques (My Musics) : 7/97
~ Mes Videos (My Videos) : 1/10
~ Mes Favoris (My Favorites) : 1/33
~ Mes Documents (My Documents) : 1/3400
~ Mon Bureau (My Desktop) : 1/3
~ Menu demarrer (Programs) : 0/33
~ Scan Hidden Files in 00mn 00s



---\\ Processus lancés
[MD5.58D9C70B01DBF2DEAEA787A1D7C869BB] - (.Stardock Corporation - Dell Dock.) -- C:\Program Files\Dell\DellDock\DellDock.exe   [1295656] [PID.2540]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe   [1008184] [PID.3096]
[MD5.85FB84AAE36E498F471CB76270D4B8F6] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe   [6246400] [PID.3136]
[MD5.F0187E45268E86AAAA932CBD9087BEA8] - (.Google - Google Desktop.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe   [30192] [PID.3216]
[MD5.E681281D9BFC9D45D3B72532717E5880] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe   [49152] [PID.3236]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe   [69120] [PID.3376]
[MD5.B93C4070F24E46B0097648C276B5039E] - (.Hewlett-Packard Co. - Hewlett-Packard Product Assistant.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe   [49152] [PID.3384]
[MD5.4EB0C6C3EF4D8885CF2B5D0062F31E44] - (.Pas de propriétaire - DivX Update.) -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe   [1259376] [PID.3400]
[MD5.9F0BE235A0136EA9E94CF9BD037C30EC] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe   [348664] [PID.3456]
[MD5.34086F1DBB4065047EA3671CB70505CC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe   [421776] [PID.3496]
[MD5.98A078F838A70F84E1BD490D7C7675F4] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe   [254696] [PID.3576]
[MD5.E0E15F209360E4A97ABCC21A486B4AEE] - (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe   [59240] [PID.3636]
[MD5.1BA45CDEF852381DA4A95D056DDB4B48] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe   [210520] [PID.3724]
[MD5.DC35217E5F49C2FE2D5EBC7CB52FEC65] - (.Pas de propriétaire - WlanCU MFC Application.) -- C:\Program Files\TRENDnet\TEW-424UB\WlanCU.exe   [434176] [PID.3852]
[MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe   [7424000] [PID.3996]
[MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin   [7418368] [PID.4020]
[MD5.25CA1677AAA3CDC99CD4FCF940886F3C] - (.ATI Technologies Inc. - Catalyst Control Centre: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe   [49152] [PID.2192]
[MD5.0CEF6926C814953F18C925AB46E2889C] - (.Pas de propriétaire - Philips CamSuite GUI module.) -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPGUI.dll   [815104] [PID.4416]
[MD5.BB3A22F3EED85A12CFB2DD60D9F9B52F] - (.Apple Inc. - distnoted.) -- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe   [13672] [PID.4440]
[MD5.85E7BB8A103644085C5C665481022E56] - (.Hewlett-Packard Co. - HP CUE Status.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe   [271960] [PID.5196]
[MD5.3F677172F23FC17283D9BCE4B42E3F65] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe   [913888] [PID.5284]
[MD5.FCB13D9E3D55075C8FACA9CA3C55B263] - (...) -- C:\Program Files\ZHPDiag\ZHPDiag.exe   [3763200] [PID.4412]
~ Scan Processes Running in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Premier utilisateur" v. ()
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
C:\Users\Chrystelle\AppData\Roaming\Mozilla\Firefox\Profiles\gsamgv00.default\prefs.js
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [Chrystelle] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M0 - MFSP: prefs.js [Chrystelle - gsamgv00.default]  http://www.google.fr
M2 - MFEP: prefs.js [Chrystelle - gsamgv00.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.2.1 (.Microsoft.)
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Interpréteur de commandes Windows.) (No version) -- (.not file.)
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKCU\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKCU\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (.not file.)
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [MobileDocuments] . (.Apple Inc. - ubd.exe.) -- C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
O4 - HKUS\S-1-5-21-2377154152-2923938475-3745986388-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Application de configuration du service Par.) -- C:\Program Files\Windows Media Player\WMPNSCFG.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - Global Startup: C:\Users\Chrystelle\Desktop\DivX Movies.lnk . (...)  -- C:\Users\Chrystelle\Videos\DivX Movies
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\4Media iPod to PC Transfer.lnk . (...)  -- C:\Program Files\4Media\iPod to PC Transfer\iPodManager.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk . (...)  -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..)  -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.)  -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\Chrystelle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.)  -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\hpwebreg_CN0B8393GN05HX.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\RtlNICDiagVistaStart.job
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\User_Feed_Synchronization-{C5DA1661-2ABD-4521-B98E-3DEE005CC2F2}.job
[MD5.2EFF6334A2BD29E404F6809C37658FCD] [APT] [hpwebreg_CN0B8393GN05HX] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\hpwebreg.exe
[MD5.445975B8DC52CADBB50051DAECEA1620] [APT] [PCDEventLauncher] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\sessionchecker.exe
[MD5.F9C5DF7F81FFCCDC3B1733CCA90A71CA] [APT] [PCDoctorBackgroundMonitorTask] (.PC-Doctor, Inc..) -- C:\Program Files\Dell Support Center\uaclauncher.exe
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
~ Scan Scheduled Task in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40) (None)

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/09/2009 - 00:06:40 - [11,754] ----D C:\Program Files\4Media
O43 - CFD: 11/08/2012 - 11:38:49 - [2,450] ----D C:\Program Files\AC3Filter
O43 - CFD: 12/08/2012 - 12:58:05 - [113,097] ----D C:\Program Files\Adobe
O43 - CFD: 29/11/2009 - 16:40:35 - [0] ----D C:\Program Files\Alwil Software
O43 - CFD: 15/01/2012 - 15:52:03 - [2,316] ----D C:\Program Files\Apple Software Update
O43 - CFD: 20/12/2008 - 11:21:06 - [82,339] ----D C:\Program Files\ATI Technologies
O43 - CFD: 20/09/2009 - 14:46:45 - [0,001] ----D C:\Program Files\Atlantis
O43 - CFD: 26/05/2012 - 11:50:17 - [186,907] ----D C:\Program Files\Avira
O43 - CFD: 15/01/2012 - 15:23:02 - [1,442] ----D C:\Program Files\Belkin
O43 - CFD: 15/01/2012 - 16:43:13 - [0,586] ----D C:\Program Files\Bonjour
O43 - CFD: 20/12/2008 - 11:29:30 - [3,389] ----D C:\Program Files\Citrix
O43 - CFD: 14/08/2012 - 18:26:08 - [746,796] ----D C:\Program Files\Common Files
O43 - CFD: 20/12/2008 - 11:35:42 - [13,000] ----D C:\Program Files\Dell
O43 - CFD: 23/08/2012 - 13:25:39 - [165,965] ----D C:\Program Files\Dell Support Center
O43 - CFD: 03/09/2009 - 21:46:13 - [0,758] ----D C:\Program Files\DIFX
O43 - CFD: 14/06/2012 - 12:01:14 - [97,507] ----D C:\Program Files\DivX
O43 - CFD: 10/07/2012 - 23:02:40 - [0,077] ----D C:\Program Files\EA GAMES
O43 - CFD: 11/07/2012 - 18:33:03 - [364,440] ----D C:\Program Files\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] R---D C:\Program Files\Fichiers communs
O43 - CFD: 24/05/2012 - 21:37:53 - [399,843] ----D C:\Program Files\Google
O43 - CFD: 20/06/2012 - 14:56:37 - [0] ----D C:\Program Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:02 - [142,671] ----D C:\Program Files\HP
O43 - CFD: 13/03/2012 - 19:16:32 - [0,352] ----D C:\Program Files\HP Photo Creations
O43 - CFD: 10/07/2012 - 23:02:40 - [153,007] --H-D C:\Program Files\InstallShield Installation Information
O43 - CFD: 20/12/2008 - 11:19:38 - [0] ----D C:\Program Files\Intel
O43 - CFD: 15/08/2012 - 18:31:46 - [5,609] ----D C:\Program Files\Internet Explorer
O43 - CFD: 18/06/2012 - 11:43:43 - [2,259] ----D C:\Program Files\iPod
O43 - CFD: 18/06/2012 - 11:45:38 - [149,103] ----D C:\Program Files\iTunes
O43 - CFD: 16/01/2012 - 18:03:53 - [165,771] ----D C:\Program Files\Java
O43 - CFD: 20/09/2009 - 14:53:30 - [15,892] ----D C:\Program Files\JRE
O43 - CFD: 24/05/2012 - 18:19:01 - [0,216] ----D C:\Program Files\Microsoft
O43 - CFD: 02/11/2006 - 14:37:34 - [89,117] ----D C:\Program Files\Microsoft Games
O43 - CFD: 20/12/2008 - 11:24:51 - [52,514] ----D C:\Program Files\Microsoft Office
O43 - CFD: 12/08/2012 - 12:48:17 - [40,838] ----D C:\Program Files\Microsoft Silverlight
O43 - CFD: 15/01/2012 - 19:28:32 - [137,975] ----D C:\Program Files\Microsoft Works
O43 - CFD: 04/06/2009 - 13:05:02 - [0,934] ----D C:\Program Files\Microsoft WSE
O43 - CFD: 21/01/2012 - 16:56:51 - [0,015] ----D C:\Program Files\Microsoft.NET
O43 - CFD: 15/01/2012 - 20:56:49 - [94,740] ----D C:\Program Files\Movie Maker
O43 - CFD: 11/08/2012 - 15:25:23 - [37,711] ----D C:\Program Files\Mozilla Firefox
O43 - CFD: 11/08/2012 - 15:25:26 - [0,195] ----D C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 02/11/2006 - 14:37:34 - [0,025] ----D C:\Program Files\MSBuild
O43 - CFD: 26/02/2012 - 11:21:15 - [0] ----D C:\Program Files\MSXML 4.0
O43 - CFD: 20/09/2009 - 14:53:29 - [367,412] ----D C:\Program Files\OpenOffice.org 3
O43 - CFD: 15/01/2012 - 15:10:01 - [24,521] ----D C:\Program Files\Philips
O43 - CFD: 24/05/2012 - 18:23:24 - [72,431] ----D C:\Program Files\QuickTime
O43 - CFD: 20/12/2008 - 11:19:10 - [0,417] ----D C:\Program Files\Realtek
O43 - CFD: 02/11/2006 - 14:37:34 - [36,906] ----D C:\Program Files\Reference Assemblies
O43 - CFD: 20/12/2008 - 11:27:22 - [17,818] ----D C:\Program Files\Roxio
O43 - CFD: 24/05/2012 - 18:30:24 - [102,605] ----D C:\Program Files\Safari
O43 - CFD: 24/02/2009 - 18:25:09 - [5,213] ----D C:\Program Files\TRENDnet
O43 - CFD: 02/11/2006 - 15:01:55 - [0] --H-D C:\Program Files\Uninstall Information
O43 - CFD: 19/09/2009 - 10:12:30 - [22,420] ----D C:\Program Files\Utilitaire de configuration iPhone
O43 - CFD: 21/05/2010 - 14:31:47 - [0,970] ----D C:\Program Files\Windows Calendar
O43 - CFD: 21/05/2010 - 14:31:44 - [2,610] ----D C:\Program Files\Windows Collaboration
O43 - CFD: 21/05/2010 - 14:31:38 - [4,283] ----D C:\Program Files\Windows Defender
O43 - CFD: 20/06/2012 - 09:07:26 - [6,757] ----D C:\Program Files\Windows Journal
O43 - CFD: 03/09/2009 - 13:48:53 - [78,223] ----D C:\Program Files\Windows Live
O43 - CFD: 03/09/2009 - 13:49:10 - [0,234] ----D C:\Program Files\Windows Live SkyDrive
O43 - CFD: 18/06/2012 - 18:15:30 - [8,694] ----D C:\Program Files\Windows Mail
O43 - CFD: 15/01/2012 - 20:56:58 - [4,290] ----D C:\Program Files\Windows Media Player
O43 - CFD: 24/02/2009 - 18:11:44 - [7,589] ----D C:\Program Files\Windows NT
O43 - CFD: 21/05/2010 - 14:31:42 - [12,902] ----D C:\Program Files\Windows Photo Gallery
O43 - CFD: 12/06/2010 - 23:38:28 - [0,128] ----D C:\Program Files\Windows Portable Devices
O43 - CFD: 21/05/2010 - 14:31:45 - [6,225] ----D C:\Program Files\Windows Sidebar
O43 - CFD: 25/08/2012 - 21:45:57 - [12,789] ----D C:\Program Files\ZHPDiag
O43 - CFD: 12/08/2012 - 12:58:10 - [3,722] ----D C:\Program Files\Common Files\Adobe
O43 - CFD: 23/01/2010 - 12:48:46 - [30,670] ----D C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 18/06/2012 - 11:43:42 - [146,859] ----D C:\Program Files\Common Files\Apple
O43 - CFD: 15/01/2012 - 15:29:37 - [0,000] ----D C:\Program Files\Common Files\ArcSoft
O43 - CFD: 11/03/2012 - 13:17:08 - [23,581] ----D C:\Program Files\Common Files\DivX Shared
O43 - CFD: 16/02/2012 - 15:21:22 - [0,436] ----D C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 18/06/2012 - 17:45:05 - [2,065] ----D C:\Program Files\Common Files\HP
O43 - CFD: 20/12/2008 - 11:25:16 - [4,815] ----D C:\Program Files\Common Files\InstallShield
O43 - CFD: 16/02/2012 - 23:34:34 - [37,320] ----D C:\Program Files\Common Files\Java
O43 - CFD: 24/02/2009 - 21:39:45 - [0,421] ----D C:\Program Files\Common Files\logishrd
O43 - CFD: 03/09/2009 - 13:49:15 - [261,434] ----D C:\Program Files\Common Files\microsoft shared
O43 - CFD: 11/03/2012 - 13:17:10 - [4,736] ----D C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 20/12/2008 - 11:26:20 - [30,710] ----D C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 02/11/2006 - 13:18:33 - [0,003] ----D C:\Program Files\Common Files\Services
O43 - CFD: 20/12/2008 - 11:26:20 - [1,038] ----D C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 03/09/2009 - 21:45:26 - [118,877] ----D C:\Program Files\Common Files\SPC630NC
O43 - CFD: 02/11/2006 - 13:18:33 - [39,198] ----D C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 20/12/2008 - 11:27:21 - [0,700] ----D C:\Program Files\Common Files\SureThing Shared
O43 - CFD: 15/01/2012 - 20:56:29 - [8,333] ----D C:\Program Files\Common Files\System
O43 - CFD: 03/09/2009 - 13:34:06 - [0] ----D C:\Program Files\Common Files\Windows Live
O43 - CFD: 24/02/2009 - 20:27:19 - [31,879] -SH-D C:\Program Files\Common Files\WindowsLiveInstaller
O43 - CFD: 21/08/2012 - 12:50:09 - [262,312] ----D C:\ProgramData\Adobe
O43 - CFD: 15/01/2012 - 17:33:35 - [229,876] ----D C:\ProgramData\Apple
O43 - CFD: 27/02/2009 - 02:16:27 - [295,616] ----D C:\ProgramData\Apple Computer
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Application Data
O43 - CFD: 04/09/2009 - 22:44:46 - [0,006] ----D C:\ProgramData\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,000] ----D C:\ProgramData\ATI
O43 - CFD: 26/05/2012 - 11:50:17 - [73,774] ----D C:\ProgramData\Avira
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Bureau
O43 - CFD: 11/08/2012 - 11:37:59 - [0,000] --H-D C:\ProgramData\Common Files
O43 - CFD: 24/05/2012 - 13:08:26 - [2,276] ----D C:\ProgramData\Dell
O43 - CFD: 14/06/2012 - 12:02:05 - [4,568] ----D C:\ProgramData\DivX
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Documents
O43 - CFD: 23/01/2010 - 12:58:00 - [21,200] ----D C:\ProgramData\Electronic Arts
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Favoris
O43 - CFD: 24/05/2012 - 18:16:40 - [1,833] ----D C:\ProgramData\Google
O43 - CFD: 16/02/2012 - 15:15:52 - [0,321] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 20/06/2012 - 14:58:57 - [62,812] ----D C:\ProgramData\HP
O43 - CFD: 13/03/2012 - 19:26:42 - [2,487] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 11/08/2012 - 12:49:35 - [0,009] ----D C:\ProgramData\HP Product Assistant
O43 - CFD: 16/02/2012 - 15:22:16 - [0] ----D C:\ProgramData\HPSSUPPLY
O43 - CFD: 20/12/2008 - 11:25:18 - [0,000] ----D C:\ProgramData\InstallShield
O43 - CFD: 12/08/2012 - 21:59:32 - [0,032] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 18/06/2012 - 18:01:45 - [0,009] ----D C:\ProgramData\McAfee
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Menu Démarrer
O43 - CFD: 24/05/2012 - 18:19:01 - [5,305] -S--D C:\ProgramData\Microsoft
O43 - CFD: 24/02/2009 - 18:11:44 - [0] --H-D C:\ProgramData\Modèles
O43 - CFD: 11/08/2012 - 15:25:24 - [0,000] ----D C:\ProgramData\Mozilla
O43 - CFD: 20/12/2008 - 11:34:32 - [0,001] ----D C:\ProgramData\PC-Doctor
O43 - CFD: 23/08/2012 - 13:25:35 - [3,231] ----D C:\ProgramData\PC-Doctor for Windows
O43 - CFD: 23/08/2012 - 14:03:08 - [39,905] ----D C:\ProgramData\PCDr
O43 - CFD: 15/01/2012 - 15:10:00 - [3,224] ----D C:\ProgramData\Philips
O43 - CFD: 11/08/2012 - 11:29:13 - [0,102] ----D C:\ProgramData\River Past G5
O43 - CFD: 15/07/2012 - 13:02:22 - [0] ----D C:\ProgramData\Roxio
O43 - CFD: 20/12/2008 - 11:26:23 - [0,001] ----D C:\ProgramData\Sonic
O43 - CFD: 16/01/2012 - 18:04:14 - [0,000] ----D C:\ProgramData\Sun
O43 - CFD: 20/12/2008 - 11:27:25 - [5,070] ----D C:\ProgramData\Uninstall
O43 - CFD: 16/02/2012 - 15:33:33 - [0,000] ----D C:\ProgramData\WEBREG
O43 - CFD: 15/01/2012 - 17:36:01 - [0] ----D C:\ProgramData\WindowsSearch
O43 - CFD: 24/02/2009 - 20:22:02 - [0,215] ----D C:\ProgramData\WLInstaller
O43 - CFD: 14/03/2009 - 00:43:39 - [0,003] ----D C:\ProgramData\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
O43 - CFD: 15/01/2012 - 17:43:26 - [0] ----D C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
O43 - CFD: 19/09/2009 - 10:09:40 - [0,002] ----D C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
O43 - CFD: 30/05/2009 - 23:27:07 - [0,002] ----D C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
O43 - CFD: 21/08/2012 - 12:49:14 - [1,274] ----D C:\Users\Chrystelle\AppData\Roaming\Adobe
O43 - CFD: 24/03/2012 - 11:10:03 - [117,878] ----D C:\Users\Chrystelle\AppData\Roaming\Apple Computer
O43 - CFD: 03/09/2009 - 21:52:52 - [0,000] ----D C:\Users\Chrystelle\AppData\Roaming\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\ATI
O43 - CFD: 26/05/2012 - 11:55:48 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Avira
O43 - CFD: 24/05/2012 - 13:13:43 - [0,041] ----D C:\Users\Chrystelle\AppData\Roaming\Dell
O43 - CFD: 24/03/2012 - 12:02:27 - [0,163] ----D C:\Users\Chrystelle\AppData\Roaming\DivX
O43 - CFD: 11/03/2012 - 13:03:38 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\GetRightToGo
O43 - CFD: 25/02/2009 - 01:52:19 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Google
O43 - CFD: 18/06/2012 - 19:28:58 - [0,045] ----D C:\Users\Chrystelle\AppData\Roaming\HP
O43 - CFD: 07/07/2012 - 10:16:42 - [0,009] ----D C:\Users\Chrystelle\AppData\Roaming\HpUpdate
O43 - CFD: 24/02/2009 - 18:17:32 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Identities
O43 - CFD: 19/06/2012 - 09:26:17 - [0,489] ----D C:\Users\Chrystelle\AppData\Roaming\Image Zone Express
O43 - CFD: 10/01/2010 - 22:52:35 - [43,057] ----D C:\Users\Chrystelle\AppData\Roaming\LimeWire
O43 - CFD: 24/02/2009 - 20:29:58 - [1,877] ----D C:\Users\Chrystelle\AppData\Roaming\Macromedia
O43 - CFD: 12/08/2012 - 21:59:42 - [0,010] ----D C:\Users\Chrystelle\AppData\Roaming\Malwarebytes
O43 - CFD: 02/11/2006 - 14:37:34 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Media Center Programs
O43 - CFD: 12/08/2012 - 12:03:47 - [8,273] -S--D C:\Users\Chrystelle\AppData\Roaming\Microsoft
O43 - CFD: 18/01/2010 - 17:03:48 - [14,436] ----D C:\Users\Chrystelle\AppData\Roaming\Mozilla
O43 - CFD: 20/09/2009 - 14:55:04 - [2,192] ----D C:\Users\Chrystelle\AppData\Roaming\OpenOffice.org
O43 - CFD: 24/05/2012 - 12:10:18 - [44,077] ----D C:\Users\Chrystelle\AppData\Roaming\PCDr
O43 - CFD: 19/06/2012 - 09:26:17 - [0,003] ----D C:\Users\Chrystelle\AppData\Roaming\Printer Info Cache
O43 - CFD: 11/08/2012 - 11:29:13 - [0,034] ----D C:\Users\Chrystelle\AppData\Roaming\River Past G5
O43 - CFD: 15/07/2012 - 13:02:21 - [0,001] ----D C:\Users\Chrystelle\AppData\Roaming\Roxio
O43 - CFD: 09/09/2009 - 22:47:14 - [0,013] ----D C:\Users\Chrystelle\AppData\Roaming\Template
O43 - CFD: 12/08/2012 - 12:57:50 - [58,927] ----D C:\Users\Chrystelle\AppData\Local\Adobe
O43 - CFD: 27/02/2009 - 02:15:11 - [0] ----D C:\Users\Chrystelle\AppData\Local\Apple
O43 - CFD: 29/11/2009 - 18:47:11 - [75,432] ----D C:\Users\Chrystelle\AppData\Local\Apple Computer
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Application Data
O43 - CFD: 03/09/2009 - 21:48:06 - [0] ----D C:\Users\Chrystelle\AppData\Local\ArcSoft
O43 - CFD: 24/02/2009 - 18:18:25 - [0,038] ----D C:\Users\Chrystelle\AppData\Local\ATI
O43 - CFD: 11/03/2012 - 13:46:03 - [0,000] ----D C:\Users\Chrystelle\AppData\Local\DDMSettings
O43 - CFD: 11/07/2012 - 18:45:45 - [0,020] ----D C:\Users\Chrystelle\AppData\Local\Electronic Arts
O43 - CFD: 20/06/2012 - 08:37:53 - [0] ----D C:\Users\Chrystelle\AppData\Local\ElevatedDiagnostics
O43 - CFD: 24/05/2012 - 18:16:40 - [385,087] ----D C:\Users\Chrystelle\AppData\Local\Google
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Historique
O43 - CFD: 13/03/2012 - 19:13:50 - [0,036] ----D C:\Users\Chrystelle\AppData\Local\HP
O43 - CFD: 12/08/2012 - 12:03:47 - [0] ----D C:\Users\Chrystelle\AppData\Local\Macromedia
O43 - CFD: 12/08/2012 - 12:03:47 - [912,790] ----D C:\Users\Chrystelle\AppData\Local\Microsoft
O43 - CFD: 25/02/2009 - 20:01:45 - [0,634] ----D C:\Users\Chrystelle\AppData\Local\Microsoft Games
O43 - CFD: 18/01/2010 - 17:03:48 - [56,632] ----D C:\Users\Chrystelle\AppData\Local\Mozilla
O43 - CFD: 11/08/2012 - 14:06:04 - [0,002] ----D C:\Users\Chrystelle\AppData\Local\Stardock_Corporation
O43 - CFD: 25/08/2012 - 21:45:35 - [15,393] ----D C:\Users\Chrystelle\AppData\Local\Temp
O43 - CFD: 24/02/2009 - 18:15:08 - [0] ----D C:\Users\Chrystelle\AppData\Local\Temporary Internet Files
O43 - CFD: 11/06/2010 - 11:24:05 - [4,051] ----D C:\Users\Chrystelle\AppData\Local\VirtualStore
O43 - CFD: 20/09/2009 - 00:25:30 - [0,004] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\4Media
O43 - CFD: 20/08/2012 - 11:44:56 - [0] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AC3Filter
O43 - CFD: 21/01/2008 - 04:42:46 - [0,015] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 24/02/2009 - 18:17:46 - [0,000] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 24/02/2009 - 18:18:29 - [0,005] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Desktop
O43 - CFD: 26/07/2012 - 11:35:48 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 21/01/2008 - 04:42:46 - [0,001] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 15/08/2012 - 18:31:21 - [0,003] R---D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 24/02/2009 - 19:06:02 - [0,002] ----D C:\Users\Chrystelle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TRENDnet
~ Scan Program Folder in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.18AD50042141B16F9A259C50C3A25E11] - 25/08/2012 - 17:29:35 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.0A2AEC70F909A399BA243D31CE3AA844] - 25/08/2012 - 17:26:50 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1712137]
O44 - LFC:[MD5.818D091A1F48400062F33AEB194949C4] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerApp.exe   [426184]
O44 - LFC:[MD5.4154A3678BCF729F6C6AB2297A92F939] - 15/08/2012 - 18:32:15 ---A- . (.Adobe Systems Incorporated - Adobe Flash Player Control Panel Applet.) -- C:\Windows\System32\FlashPlayerCPLApp.cpl   [70344]
O44 - LFC:[MD5.2E714D7461A91144EF3797AB1AD9A23E] - 15/08/2012 - 17:34:18 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT   [291136]
O44 - LFC:[MD5.7D967A682D4694DF7FA57D63A2DB01FE] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys   [137928]
O44 - LFC:[MD5.D5541F0AFB767E85FC412FC609D96A74] - 13/08/2012 - 18:50:18 ---A- . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys   [83392]
O44 - LFC:[MD5.F1A10D5728C6A8DB4BCAC182E9C0D2E7] - 13/08/2012 - 01:35:40 ---A- . (...) -- C:\Windows\PFRO.log   [54976]
~ Scan Files in 00mn 01s



---\\ Contrôle du Safe Boot (CSB) (O49) (None)

---\\ MountPoints2 Shell Key (O51) (None)

---\\ ShareTools MSconfig StartupReg (O53) (None)

---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.04F0FCAC69C7C71A3AC4EB97FAFC8303] - 21/01/2008 - 03:23:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [422968]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
~ Scan Drivers in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC:Last File Created 22/08/2012 - 18:08:04 ---A- C:\Users\Chrystelle\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-2012-08-22 (17-20-04).txt   [2244]
O61 - LFC:Last File Created 23/08/2012 - 12:18:40 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\81678aff-c87d-4a18-b7e1-cfcff6d6ae06\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:18:43 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\791c0394-4205-4536-9687-48a936a62bed\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:18:44 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\fd1c65a8-067a-4ed2-9196-eef461922408\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:18:47 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\f6b18823-c6d2-42d2-9482-8c088447067d\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:18:48 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\ed051532-3eda-48e9-97fc-bf00d9defef6\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:18:49 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\20b542fc-eb81-4aab-bae2-d1f380fbab48\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:12 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\dd37db06-4f22-4535-bfb4-9b63da07cbc8\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:13 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\8b2c3998-99f5-43e8-bb2d-b053771eb30d\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:13 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\9b4762b3-3b27-4675-924a-7b16098ad00e\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:18 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\e6fea90e-f46e-4659-95f8-0bcaa0474cd8\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:22 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\1dbe9df3-ea93-4316-aea8-f491bcc37a77\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:19:23 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Rules\c9c57691-801d-4c41-a2df-bd92201021f5\appupdaterrules_dell\appupdaterrules_dell.zip   [59018]
O61 - LFC:Last File Created 23/08/2012 - 12:22:26 ---A- C:\Users\Chrystelle\AppData\Roaming\PCDr\Update\Binaries\full_dsc_6032_47_32_01.exe   [37220520]
O61 - LFC:Last File Created 23/08/2012 - 17:37:34 ---A- C:\Users\Chrystelle\AppData\Local\Temp\plugtmp-1\plugin-7fb0c6682ff9ed94be9aa2844067cee2.asc   [5240]
O61 - LFC:Last File Created 24/08/2012 - 10:05:58 ---A- C:\Users\Chrystelle\Downloads\ZHPDiag2(1).exe   [4600348]
O61 - LFC:Last File Created 24/08/2012 - 20:27:13 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Google Profile.ico   [150798]
O61 - LFC:Last File Created 24/08/2012 - 20:27:23 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings   [8]
O61 - LFC:Last File Created 24/08/2012 - 20:27:24 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor   [194560]
O61 - LFC:Last File Created 24/08/2012 - 20:27:24 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal   [16384]
O61 - LFC:Last File Created 24/08/2012 - 20:27:26 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Web Data   [126976]
O61 - LFC:Last File Created 24/08/2012 - 20:27:26 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal   [16384]
O61 - LFC:Last File Created 24/08/2012 - 20:27:28 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0   [1335296]
O61 - LFC:Last File Created 24/08/2012 - 20:27:28 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1   [16621568]
O61 - LFC:Last File Created 24/08/2012 - 20:27:28 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Current Session   [159]
O61 - LFC:Last File Created 24/08/2012 - 20:27:28 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache   [56133]
O61 - LFC:Last File Created 24/08/2012 - 20:27:28 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Local State   [5807]
O61 - LFC:Last File Created 24/08/2012 - 20:27:29 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Preferences   [1615]
O61 - LFC:Last File Created 24/08/2012 - 20:27:30 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Cookies   [449536]
O61 - LFC:Last File Created 24/08/2012 - 20:27:30 ---A- C:\Users\Chrystelle\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal   [16384]
O61 - LFC:Last File Created 25/08/2012 - 15:46:48 ---A- C:\Users\Chrystelle\AppData\Local\Google\Google Desktop\2b087409b122\sites.txt   [2366]
O61 - LFC:Last File Created 25/08/2012 - 16:18:01 ---A- C:\Users\Chrystelle\AppData\Roaming\Microsoft\HTML Help\hh.dat   [8926]
O61 - LFC:Last File Created 25/08/2012 - 17:29:52 ---A- C:\Users\Chrystelle\AppData\Local\ATI\ACE\Manifest.Bin   [14799]
O61 - LFC:Last File Created 25/08/2012 - 17:29:52 ---A- C:\Users\Chrystelle\AppData\Local\ATI\ACE\Manifest.xml   [13605]
O61 - LFC:Last File Created 25/08/2012 - 17:30:05 ---A- C:\Users\Chrystelle\AppData\Roaming\Apple Computer\Preferences\com.apple.ubd.plist   [228]
O61 - LFC:Last File Created 25/08/2012 - 17:30:05 ---A- C:\Users\Chrystelle\AppData\Roaming\Apple Computer\Ubiquity\peer-D82D242F-5F16-4617-AB60-831D104CA84F-v23\config   [32]
O61 - LFC:Last File Created 25/08/2012 - 17:30:09 ---A- C:\Users\Chrystelle\AppData\Local\ATI\ACE\Profiles.xml   [11902]
O61 - LFC:Last File Created 25/08/2012 - 17:30:14 ---A- C:\Users\Chrystelle\AppData\Roaming\OpenOffice.org\3\.lock   [142]
O61 - LFC:Last File Created 25/08/2012 - 17:30:14 ---A- C:\Users\Chrystelle\AppData\Roaming\OpenOffice.org\3\user\registry\data\org\openoffice\Office\Common.xcu   [2587]
O61 - LFC:Last File Created 25/08/2012 - 17:30:17 ---A- C:\Users\Chrystelle\AppData\Roaming\Apple Computer\Ubiquity\peer-D82D242F-5F16-4617-AB60-831D104CA84F-v23\item-info.db   [163840]
O61 - LFC:Last File Created 25/08/2012 - 17:30:17 ---A- C:\Users\Chrystelle\AppData\Roaming\Apple Computer\Ubiquity\peer-D82D242F-5F16-4617-AB60-831D104CA84F-v23\item-info.db-journal   [37448]
O61 - LFC:Last File Created 25/08/2012 - 17:30:46 ---A- C:\Users\Chrystelle\AppData\Roaming\HP\CRMLogs\BrandAuthentication.htm   [4776]
O61 - LFC:Last File Created 25/08/2012 - 17:38:29 ---A- C:\Users\Chrystelle\Documents\ZHPDiag.Txt   [37977]
O61 - LFC:Last File Created 25/08/2012 - 19:03:31 ---A- C:\Users\Chrystelle\AppData\Local\Temp\Chrystelle.bmp   [31832]
O61 - LFC:Last File Created 25/08/2012 - 20:44:48 ---A- C:\Users\Chrystelle\AppData\Local\Google\Google Desktop\2b087409b122\uinfo.dat   [430080]
O61 - LFC:Last File Created 30/12/1899 - 12:16:45 -SHA- C:\Users\Chrystelle\AppData\Local\Temp\Cookies\index.dat   [16384]
O61 - LFC:Last File Created 30/12/1899 - 12:16:45 -SHA- C:\Users\Chrystelle\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\index.dat   [32768]
O61 - LFC:Last File Created 30/12/1899 - 12:16:45 -SHA- C:\Users\Chrystelle\AppData\Local\Temp\History\History.IE5\index.dat   [16384]
O61 - LFC:Last File Created 30/12/1899 - 21:07:13 --HA- C:\Users\Chrystelle\AppData\Local\IconCache.db   [2573197]
~ Scan Files in 01mn 14s



---\\ Liste des fichiers non signés (O65) (None)

---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.com> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.exe> <>[HKU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68) (None)

---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {70D46D94-BF1E-45ED-B567-48701376298E} - (Google Desktop) - http://127.0.0.1:4664/search&s=2pysF--2MS9pDa96MTbvwvm2QXk?q={searchTer…
~ Scan Keys in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83) (None)

---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.BAC1FFFA5C7881D54AABB8635728AF58] [SPRF][16/08/2012] (...) -- C:\Users\Chrystelle\AppData\Local\d3d9caps.dat   [680]
[MD5.BFD203827AB373DE4650A8898DCD7E6A] [SPRF][18/08/2004] (.Macromedia, Inc. - Macromedia Flash Player 6.0  r21.) -- C:\Users\Chrystelle\AppData\Local\Temp\First15.exe   [1453843]
[MD5.5B2DA96D90C95228239806D40B720BD2] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6.reg   [340]
[MD5.1410ADCB69C267916EE702E2A443E93F] [SPRF][18/08/2004] (...) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6Install.exe   [23040]
[MD5.4D6F38D3CDA2D0BA502BC1C499A622CF] [SPRF][18/08/2004] (.On2.com - VP6 VIDEO FOR WINDOWS CODEC.) -- C:\Users\Chrystelle\AppData\Local\Temp\VP6VFW.dll   [442368]
[MD5.407E3AD05C7260151F1E9DE0E8191612] [SPRF][15/06/2012] (...) -- C:\Users\Chrystelle\AppData\Roaming\wklnhst.dat   [826]
[MD5.8CE7705CB43B03BB7970B04087C7758F] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll   [29616]
[MD5.01E2ECA759056F23C73A035FDABB2D6D] [SPRF][30/06/2006] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe   [201648]
[MD5.0C135B4FEFF52ED92CF08BB3F0A75A90] [SPRF][11/09/2006] (.Macrovision Corporation - Macrovision Software Manager Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll   [484272]
~ Scan Files in 00mn 10s



---\\ Recherche détournement de DNS routeur (O89) (None)

---\\ Recherche Master Boot Record Infection (MBR)(O80) (None)

---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) (None)

End of the scan (539 lines in 03mn 29s)(0)

c un scan normal car lorsque je veux faire comme indiquer ci dessus cela ne fonctionne pas ça ne se met pas en route, je vais reessayer




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 18:52 (2012) Répondre en citant  
Message
  nenette58
Administrateurs WSI
Administrateurs WSI


Hors ligne

Inscrit le: 01 Nov 2008
Messages: 3 843
Niveau Général Informatique:
Estimation Protection:
Navigateur: FireFox
Féminin Cancer (21juin-23juil) 狗 Chien
Point(s): 4 310
Moyenne de points: 1,12
Version Pack: Gratuite
Autre: MalwareBytes+Zemana

Essaie en faisant un clic droit sur l'icône de ZHPDiag => Exécuter en tant qu'administrateur Okay


Nul n'a autant besoin d'un sourire que celui qui n'en a pas à donner.





ordi très lent
 MessagePosté le: Sam 25 Aoû - 19:06 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

j'ai essayé ça marche pas




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 19:09 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

j'ai bien comme indiqué sur le modèle que tu as mis mais quand je clique sur tous rien ne se met en route




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 19:10 (2012) Répondre en citant  
Message
  nenette58
Administrateurs WSI
Administrateurs WSI


Hors ligne

Inscrit le: 01 Nov 2008
Messages: 3 843
Niveau Général Informatique:
Estimation Protection:
Navigateur: FireFox
Féminin Cancer (21juin-23juil) 狗 Chien
Point(s): 4 310
Moyenne de points: 1,12
Version Pack: Gratuite
Autre: MalwareBytes+Zemana

Les cases se cochent toutes, non ? Ensuite, il ne reste qu'à lancer le scan normalement Okay


Nul n'a autant besoin d'un sourire que celui qui n'en a pas à donner.





ordi très lent
 MessagePosté le: Sam 25 Aoû - 19:14 (2012) Répondre en citant  
Message
  mollet
Pilier du Forum
Pilier du Forum


Hors ligne

Inscrit le: 24 Jan 2010
Messages: 854
Niveau Général Informatique:
Navigateur: FireFox
Féminin Balance (23sep-22oct)
Point(s): 841
Moyenne de points: 0,98

oui mais je dois cliquer sur tous pour que cela se met en route ou sur la loupe




IM

ordi très lent
 MessagePosté le: Sam 25 Aoû - 19:22 (2012) Répondre en citant  
Message
  nenette58
Administrateurs WSI
Administrateurs WSI


Hors ligne

Inscrit le: 01 Nov 2008
Messages: 3 843
Niveau Général Informatique:
Estimation Protection:
Navigateur: FireFox
Féminin Cancer (21juin-23juil) 狗 Chien
Point(s): 4 310
Moyenne de points: 1,12
Version Pack: Gratuite
Autre: MalwareBytes+Zemana

Tu cliques sur tous pour cocher les cases, puis sur la loupe pour lancer le scan


Nul n'a autant besoin d'un sourire que celui qui n'en a pas à donner.





ordi très lent
 MessagePosté le: Aujourd’hui à 05:48 (2017)  
Message
  Contenu Sponsorisé







Poster un nouveau sujet   Répondre au sujet     Index du Forum » Aide à la désinfection

Page 1 sur 3
Toutes les heures sont au format GMT - 1 Heure
Aller à la page: 1, 2, 3  >

Montrer les messages depuis:

  

Sauter vers:  

Portail | Index | Creer un forum | Forum gratuit d’entraide | Annuaire des forums gratuits | Signaler une violation | Conditions générales d'utilisation
Powered by phpBB © 2001, 2017 phpBB Group Traduction par : phpBB-fr.com