aide pour rapport zhp diag

aide pour rapport zhp diag - Win 7 - Windows & Software

Marsh Posté le 26-04-2013 à 16:17:15    

Voila mon ordi ram un peu pouvez regarder le rapport pour me dire ce qui ne vas pas ? merci d'avance  
 
Voici le rapport:
Rapport de ZHPDiag v2013.4.25.153 par Nicolas Coolman, Update du 25/04/2013
Run by Veillas at 26/04/2013 15:58:13
State : Version à jour.
WhiteList : Enable
High Elevated Privileges : OK
UAC : Activate by user
 
 
---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16540
GCIE: Google Chrome v26.0.1410.64 (Defaut)
 
---\\ Windows Product Information
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
 
---\\ System Protection
Bitdefender Internet Security 2013 v16.16.0.1349
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W7
 
---\\ System Optimizer
CCleaner v3.26
 
---\\ Software Update
Adobe Flash Player 11 ActiveX
Adobe Reader XI
Java 7 Update 17
Java 7 Update 21
 
---\\ System Information
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3071 MB (37% free)
System Restore: Activé (Enable)
System drive C: has 592 GB (85%) free of 689 GB
 
---\\ Logged in mode
~ Computer Name: BRYAN
~ User Name: Veillas
~ All Users Names: Veillas, UpdatusUser, HomeGroupUser$, ASPNET, Administrateur,  
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
 
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Veillas\AppData\Roaming\
~ %Desktop% : C:\Users\Veillas\Desktop\
~ %Favorites% : C:\Users\Veillas\Favorites\
~ %LocalAppData% : C:\Users\Veillas\AppData\Local\
~ %StartMenu% : C:\Users\Veillas\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
 
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 592 Go of 689 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 437 Go of 690 Go)
E:\ CD-ROM drive (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
K:\ CD-ROM drive (Not Inserted)
L:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
 
 
 
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s
 
 
 
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.753C0848AE7872A3F59663078A517293] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.21/02/2013 - 11:15:07.) -- C:\Windows\System32\wininet.dll [2240512]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
 
 
 
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/834
~ Mes musiques (My Musics) : 1/114
~ Mes Videos (My Videos) : 2/25
~ Mes Favoris (My Favorites) : 1/52
~ Mes Documents (My Documents) : 1/822
~ Mon Bureau (My Desktop) : 1/5
~ Menu demarrer (Programs) : 1/27
~ Hidden Files: Scanned in 00mn 02s
 
 
 
---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.1484]
[MD5.521BE0575EE9CBD360ECC57BDE9A0309] - (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe [491840] [PID.2408]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816] [PID.3748]
[MD5.5A78D672EAE975D40DE35CE6B650282B] - (.IObit - Advanced SystemCare 6 Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\Monitor.exe [703808] [PID.3712]
[MD5.5397E32E882C0148CEC13D9EACFB7157] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [222208] [PID.4832]
[MD5.F920FBB43C1CDB905044C91B9A3FD516] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18643560] [PID.5960]
[MD5.4E9592BB2C100E571F82640E59E9ECD5] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1312720] [PID.2336]
[MD5.F20715AC8D4D08D35E71026D104C739D] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7004160] [PID.5016]
[MD5.CBFAA333EBA2E402A0439A3A0E5413F3] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [465216] [PID.852]
[MD5.5A19667A580B1CE886EAF968B9743F45] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [383264] [PID.808]
[MD5.8AE99EBE30E8338907361018D9030835] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [821592] [PID.1836]
[MD5.34400005DE52842C4D6D4EE978B4D7CE] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [169312] [PID.1936]
[MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1708]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376] [PID.2076]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512] [PID.2116]
[MD5.E5C796B621F6FBA8616511063D7F0FFE] - (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688] [PID.2240]
[MD5.59726901C436C19CA51A6B008239CD9D] - (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [4474832] [PID.3552]
~ Processes Running: Scanned in 00mn 01s
 
 
 
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Veillas\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s
 
 
 
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://seeearch.com
~ IE Browser: 16 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
 
 
 
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
 
 
 
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 25
 
 
 
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe  
O4 - HKLM\..\Run: [Bdagent] . (.Bitdefender - Bitdefender Agent.) -- C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe  
O4 - HKLM\..\Run: [IntelliType Pro] . (.Microsoft Corporation - IType.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe  
O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe  
O4 - HKCU\..\Run: [Advanced SystemCare 6] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe  
O4 - HKCU\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe  
O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe  
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe  
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)  
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (.not file.)  
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  
O4 - HKUS\S-1-5-21-2952957205-509000101-3102697038-1000\..\Run: [Advanced SystemCare 6] . (.IObit - ASCTray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe  
O4 - HKUS\S-1-5-21-2952957205-509000101-3102697038-1000\..\Run: [AlcoholAutomount] . (.Alcohol Soft Development Team - Alcohol Virtual Drive Auto-mount Service.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe  
~ Application: Scanned in 00mn 00s
 
 
 
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Eteindre.lnk . (.Microsoft Corporation - Outil d’arrêt et d’annotation Windows.) -- C:\Windows\System32\shutdown.exe  
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  
O4 - GS\TaskBar: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe  
O4 - GS\TaskBar: Welcome Center.lnk . (.Acer Incorporated - Welcome Center.) -- C:\Program Files (x86)\Packard Bell\Welcome Center\OEMWelcomeCenter.exe  
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe  
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe  
O4 - GS\Programs: Songr.lnk . (.Xamasoft - Songr.) -- C:\Users\Veillas\AppData\Local\Songr\Songr.exe  
O4 - GS\QuickLaunch: FlashFXP.lnk . (.OpenSight Software, LLC - FlashFXP.) -- C:\Program Files (x86)\FlashFXP 4\FlashFXP.exe  
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe  
O4 - GS\QuickLaunch: Pages Annuaire.lnk - Clé orpheline
O4 - GS\QuickLaunch: Samsung New PC Studio.lnk . (.Samsung Electronics Co., Ltd. - New PC Studio.) -- C:\Program Files (x86)\Samsung\Samsung New PC Studio\NPSGuide.exe  
O4 - GS\QuickLaunch: WildTangent Games App - packardbell.lnk . (.WildTangent - WildTangent Games App.) -- C:\Program Files (x86)\WildTangent Games\App\GameConsole-wt.exe  
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe  
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe  
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe  
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe  
O4 - GS\Desktop: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) -- C:\Program Files (x86)\Audacity\audacity.exe  
O4 - GS\Desktop: KaraFun Studio.lnk . (.RECISIO - KaraFun Studio.) -- C:\Program Files (x86)\KaraFun Studio\KaraFunStudio.exe  
O4 - GS\Desktop: Microsoft Money.lnk . (.Microsoft(R) Corporation - Microsoft Money.) -- C:\Program Files (x86)\Microsoft Money 2005\MNYCoreFiles\msmoney.exe  
O4 - GS\Desktop: Songr.lnk . (.Xamasoft - Songr.) -- C:\Users\Veillas\AppData\Local\Songr\Songr.exe  
O4 - GS\Desktop: Liste d'achats2.lnk . (...) -- C:\Program Files (x86)\listac\listac.exe
~ Global Startup: Scanned in 00mn 01s
 
 
 
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -- C:\Program Files\Microsoft Office\Office15\lync.exe (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
~ IE Extra Buttons: Scanned in 00mn 00s
 
 
 
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{38B28E95-3CF4-4EB1-B03E-520A81B95CA6}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{38B28E95-3CF4-4EB1-B03E-520A81B95CA6}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{38B28E95-3CF4-4EB1-B03E-520A81B95CA6}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
~ Domain: Scanned in 00mn 00s
 
 
 
---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --  
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
 
 
 
---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Express Files Updater] (...) -- C:\Program Files (x86)\ExpressFiles\EFupdater.exe (.not file.) [0] =>Adware.ExpressFiles
[MD5.00000000000000000000000000000000] [APT] [GoforFilesUpdate] (...) -- C:\Program Files (x86)\GoforFiles\GFFUpdater.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{05C689EF-ED9E-4F09-A7F0-05ABB072F6A1}] (...) -- C:\Users\Veillas\Downloads\karall_editor\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{D45EAC58-5FDF-417B-8567-36AF2D50768C}] (...) -- C:\Users\Veillas\Desktop\VMNavigation_Driver_Vista.exe (.not file.) [0]
~ Scheduled Task: 16 Legitimates Filtered in 00mn 04s
 
 
 
---\\ Logiciels installés (O42)
O42 - Logiciel: Allway Sync version 12.1.1 - (.Botkind Inc.) [HKLM][64Bits] -- Allway Sync_is1
O42 - Logiciel: BirdieSync 2.4.0.0 - (.Callicia.) [HKLM][64Bits] -- BirdieSync
O42 - Logiciel: KaraWin Pro - (...) [HKLM][64Bits] -- {BED079C3-CA6E-4EFB-80EC-28A4BC772869}
O42 - Logiciel: LISTAC la version 2.01 du 23/03/04 - (.Freeware.) [HKLM][64Bits] -- MA LISTE D'ACHATS v2.0_is1
O42 - Logiciel: MP3 Karaoke 6.1.9 - (.Accmeware Corporation.) [HKLM][64Bits] -- 119C21A0-FA78-44AE-91B0-C02E39E1829D_is1
O42 - Logiciel: UST Pro Drivers for Win2k/XP - (.Vahid Shahabi.) [HKLM][64Bits] -- UST Pro Drivers for Win2k/XP
~ Logic: 157 Legitimates Filtered in 00mn 00s
 
 
 
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\BearShare] =>PUP.BearShare
[HKCU\Software\Callicia]
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\Doblon]
[HKCU\Software\ExpressFiles] =>Adware.ExpressFiles
[HKCU\Software\GoforFiles]
[HKCU\Software\IM]
[HKCU\Software\ImInstaller]
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\InstallCore] =>PUP.InstallCore
[HKCU\Software\Karawin]
[HKCU\Software\MANAGE PCB]
[HKCU\Software\MediaFinder] =>PUP.MediaFinder
[HKCU\Software\MightyUninstaller]
[HKCU\Software\NS TEAM]
[HKCU\Software\Passware]
[HKCU\Software\Softonic]
[HKCU\Software\StartSearch] =>PUP.StartSearch
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\SyncApp]
[HKCU\Software\cooolsoft]
[HKLM\Software\Web Assistant]
[HKLM\Software\Wow6432Node\Callicia]
[HKLM\Software\Wow6432Node\ExpressFiles] =>Adware.ExpressFiles
[HKLM\Software\Wow6432Node\GoforFiles]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\IncrediMail]
[HKLM\Software\Wow6432Node\MANAGE PCB]
[HKLM\Software\Wow6432Node\PandeGroup]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Web Assistant]
[HKLM\Software\Wow6432Node\Z3X]
~ Key Software: 245 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/01/2013 - 20:25:12 - [24,833] ----D C:\Program Files (x86)\Allway Sync
O43 - CFD: 15/01/2013 - 20:25:12 - [41,366] ----D C:\Program Files (x86)\BirdieSync
O43 - CFD: 28/01/2012 - 23:54:27 - [0] ----D C:\Program Files (x86)\ExpressFiles =>Adware.ExpressFiles
O43 - CFD: 03/07/2012 - 08:12:31 - [0,005] ----D C:\Program Files (x86)\Iminent =>Adware.IMBooster
O43 - CFD: 20/04/2013 - 18:30:08 - [0,001] ----D C:\Program Files (x86)\Karaoke5
O43 - CFD: 20/04/2013 - 09:43:18 - [5,738] ----D C:\Program Files (x86)\Karasoft
O43 - CFD: 15/01/2013 - 20:25:20 - [1,581] ----D C:\Program Files (x86)\listac
O43 - CFD: 20/04/2013 - 14:01:01 - [4,595] ----D C:\Program Files (x86)\MP3 Karaoke
O43 - CFD: 15/01/2013 - 20:25:22 - [0,757] ----D C:\Program Files (x86)\UST Pro
O43 - CFD: 20/07/2011 - 14:42:13 - [0,003] ----D C:\ProgramData\834e0000-83f0-4c05-8dd6-26469e1025a5
O43 - CFD: 13/06/2012 - 14:09:56 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 27/05/2012 - 12:25:37 - [0,001] ----D C:\ProgramData\Sync App Settings
O43 - CFD: 19/02/2013 - 10:49:51 - [14,370] --H-D C:\ProgramData\{9F4D944D-1F9E-43C3-A5A8-C5216DB6BEB4}
O43 - CFD: 28/06/2012 - 10:57:27 - [3,978] --H-D C:\ProgramData\~0
O43 - CFD: 13/06/2012 - 14:09:56 - [0,013] ----D C:\Users\Veillas\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 27/05/2012 - 16:05:34 - [0,012] ----D C:\Users\Veillas\AppData\Roaming\BirdieSync
O43 - CFD: 05/02/2013 - 19:01:17 - [0,001] ----D C:\Users\Veillas\AppData\Roaming\GoforFiles
O43 - CFD: 09/08/2012 - 13:10:54 - [0,013] ----D C:\Users\Veillas\AppData\Roaming\Media Finder =>PUP.MediaFinder
O43 - CFD: 20/04/2013 - 14:01:04 - [0,000] ----D C:\Users\Veillas\AppData\Roaming\MP3 Karaoke
O43 - CFD: 27/05/2012 - 12:26:49 - [0,104] ----D C:\Users\Veillas\AppData\Roaming\Sync App Settings
~ 569 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 890 Legitimates Filtered in 00mn 29s
 
 
 
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.824CD9CE5460D4D4A96DC0BBAA6004AE] - 25/04/2013 - 21:31:07 ---A- . (...) -- C:\bdlog.txt [649851]
O44 - LFC:[MD5.193179BD8687212686C8509517595B5D] - 20/04/2013 - 13:11:32 ---A- . (...) -- C:\Windows\ST6UNST.001 [1237]
O44 - LFC:[MD5.193179BD8687212686C8509517595B5D] - 20/04/2013 - 13:11:02 ---A- . (...) -- C:\Windows\ST6UNST.000 [1237]
O44 - LFC:[MD5.AB988D8EE35B68058F22B462C70D0536] - 20/04/2013 - 13:10:54 ----- . (...) -- C:\Windows\KarAll_Editor.CAB [2928864]
O44 - LFC:[MD5.B15593B6D7542ABB90BFA1467CA10EE7] - 17/04/2013 - 19:09:14 ---A- . (...) -- C:\Windows\wininit.ini [1170]
~ Files: 55 Legitimates Filtered in 00mn 44s
 
 
 
---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\BirdieSync [Key] . (...) -- C:\Program Files (x86)\BirdieSync\BirdieSync.exe
~ SMSR Keys: 14 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.762878ABC54FDB92549DF363557BE1D3] - 06/05/2003 - 16:37:54 ---A- . (.Schlumberger - e-gate USB Smart Card Driver.) -- C:\Windows\SysWOW64\drivers\egate.sys [13056]
~ Drivers: Scanned in 00mn 00s
 
 
 
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
 
 
 
---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 05/01/2012 - C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys (FileMonitor) .(.IObit - IMF File MiniFilter Driver.) - LEGACY_FILEMONITOR
O64 - Services: CurCS - 05/07/2012 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys (RegFilter) .(.IObit.com - Registry Filter.) - LEGACY_REGFILTER
O64 - Services: CurCS - 05/07/2012 - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys (UrlFilter) .(.IObit.com - URL Filter.) - LEGACY_URLFILTER
~ Legacy: 81 Legitimates Filtered in 00mn 00s
 
 
 
---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 19 Legitimates Filtered in 00mn 00s
 
 
 
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
 
 
 
---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com =>Toolbar.Babylon
O69 - SBI: SearchScopes [HKCU] {159a5700-4f1e-4528-9e59-ac5fadd4e8f1} - (YouGoo) - http://www.yougoo.fr
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} [DefaultScope] - (Search Results) - http://dts.search-results.com
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredibar.com =>Adware.IncrediBar
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - http://search.sweetim.com =>PUP.SweetIM
~ Keys: Scanned in 00mn 00s
 
 
 
---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.97A5CE76CA997E0D1316641C6B46D299] [SPRF][04/01/2013] (...) -- C:\ProgramData\1357298092.bdinstall.bin [444788]
[MD5.0F318AC9F692208DB7EDC382F5A1CBAF] [SPRF][04/01/2013] (...) -- C:\ProgramData\bdinstall.bin [154245]
[MD5.421FBF8118FDC7729DE3E9B0865900ED] [SPRF][12/10/2011] (...) -- C:\Users\Veillas\AppData\Local\fusioncache.dat [95]
[MD5.A55B82103A202C20717F45C201EC4553] [SPRF][22/04/2013] (.Terra Informatica Software, Inc., British C - HTMLayout - embeddable HTML rendering and layout component.) -- C:\Users\Veillas\AppData\Local\Temp\htmlayout.dll [936960]
~ Files: Scanned in 00mn 00s
 
 
 
---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "{B6F1CAF3-3739-4AC4-B9E4-2195D312C20E}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\BirdieSync\BirdieSync.exe
O87 - FAEL: "{9A540B81-1E83-4D58-B8CD-EB8BAF43A4D2}" | In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\BirdieSync\BirdieSync.exe
~ Firewall: 209 Legitimates Filtered in 00mn 01s
 
 
 
---\\ Scan Additionnel (O88)
Database Version : v2.11716 - (25/04/2013)
Clés trouvées (Keys found) : 39
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 10
Fichiers trouvés (Files found) : 0
 
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{CDB982ED-F9D6-4E3B-B94B-96F705D35AD1}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\MediaFinder] =>PUP.MediaFinder
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\StartSearch] =>Hijacker.Agent
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASAPI32] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASMANCS] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder] =>PUP.MediaFinder
[HKCU\Software\Classes\MF] =>PUP.MediaFinder
[HKLM\Software\Classes\MF] =>PUP.MediaFinder
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32] =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS] =>Adware.GamePlayLabs
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASAPI32] =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASMANCS] =>Adware.Boxore
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
C:\Program Files (x86)\Iminent =>Adware.IMBooster
C:\Program Files (x86)\Software =>Adware.Boxore
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Software =>Adware.Boxore
C:\Users\Veillas\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Veillas\AppData\Roaming\media finder =>PUP.MediaFinder
C:\Users\Veillas\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com =>PUP.MediaFinder
C:\Users\Veillas\AppData\Local\Software =>Adware.Boxore
C:\Users\Veillas\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\Veillas\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
~ Additionnel Scan: 257975 Items scanned in 00mn 26s
 
 
 
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Disabled 09/10/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SR - | Disabled 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Disabled 12/04/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 15/01/2013 465216 | (AdvancedSystemCareService6) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
SS - | Disabled 05/01/2012 75624 | (AxAutoMntSrv) . (.Alcohol Soft Development Team.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
SR - | Auto 08/04/2013 69392 | (BdDesktopParental) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
SS - | Disabled 25/03/2011 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Disabled 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - | Disabled 08/01/2010 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
SS - | Disabled 15/01/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Disabled 15/01/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 09/01/2012 821592 | (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SS - | Disabled 15/01/2010 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Disabled 18/01/2013 884512 | (NVSvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Disabled 03/12/2012 1259880 | (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
SS - | Disabled 22/04/2012 720936 | (ServiceLayer) . (.Nokia.) - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
SS - | Disabled 01/03/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Disabled 423424 | (srsfah1) . (...) - C:\Program Files (x86)\simlock remote client\fah\fah1.exe
SR - | Disabled 23/12/2009 370688 | (StarWindServiceAE) . (.StarWind Software.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
SR - | Disabled 18/01/2013 383264 | (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
SS - | Disabled 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 08/04/2013 68856 | (UPDATESRV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
SR - | Auto 08/04/2013 1646792 | (VSSERV) . (.Bitdefender.) - C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 01s
 
 
 
~ 1859 Legitimates filtered by white list
End of the scan (531 lines in 02mn 29s)(0)


---------------
bryan
Reply

Marsh Posté le 26-04-2013 à 16:17:15   

Reply

Marsh Posté le 26-04-2013 à 16:42:31    

Voila ton CPU est dans cette fourchette : de 1.4GHz a 3GHz et de 1 a 4 core...  (Intel64 Family 6 Model 23 Stepping 10 n est pas un  suffisant comme donnée)

 

peut tu me donner le nom exacte de ton processeur?

 

ensuite tu est en 64bit donc tu peut mettre plus que 3.25Gb de RAM Donc , si tu as la possibilité, ajoute une barette de RAM

 

3GB peut saverer un peut limite lors de l execution de gros programmes ou de jeu (si tu n utilise pas ce genre de programme sa ne sert a rien d'ajouter de la memoire vive)

 

ah et tu  al'air d'avoir plusieurs antivirus ( IObit malware et bitdefenter) en avoir plusieurs ne sert pas beaucoup... desinstalle en un ;) ) NB : les antivirus peuvent ralentir le pc

 

et desinstalles ces programmes

 

O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com =>   Toolbar.Babylon
O69 - SBI: SearchScopes [HKCU] {159a5700-4f1e-4528-9e59-ac5fadd4e8f1} - (YouGoo) - http://www.yougoo.fr                                                  YouGoo
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} [DefaultScope] - (Search Results) - http://dts.search-results.com   dts.search-results
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredibar.com =>                   Adware.IncrediBar
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} - (SweetIM Search) - http://search.sweetim.com =>                   PUP.SweetIM

 

Salutations


Message édité par WestixySuisse le 26-04-2013 à 16:51:07
Reply

Marsh Posté le 26-04-2013 à 18:38:38    

Bonjour,
 

  • Télécharge et lance AdwCleaner (d'Xplode), choisis l'option "Suppression" et poste le rapport.

Reply

Marsh Posté le 26-04-2013 à 18:41:17    

voir les règles de la section

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed