Menu

Mon pc freeze [Fermé]

Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
- - Dernière réponse : kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
- 8 avril 2013 à 19:15
Bonjour,
j'ai un pc fixe et il freeze a n'importe quel moment j'ai ouvert le capot de la tour pour l'aération j'ai inversé les barettes de RAM je ne c'est pas quoi faire d'autre voici les information concernant mon pc : Ordinateur:
Type de système PC avec processeur x86 ACPI
Système d'exploitation Microsoft Windows 7 Professional
Service Pack du système [ TRIAL VERSION ]
Internet Explorer 9.0.8112.16421 (IE 9.0)
DirectX DirectX 11.0
Nom du système PCC
Nom de l'utilisateur kevin
Domaine de connexion [ TRIAL VERSION ]
Date / Heure 2012-12-17 / 19:01

Carte mère:
Type de processeur Intel Pentium 4 630, 3000 MHz (15 x 200)
Nom de la carte mère Asus P5LD2 SE (3 PCI, 2 PCI-E x1, 1 PCI-E x16, 4 DDR2 DIMM, Audio, Gigabit LAN)
Chipset de la carte mère Intel Lakeport i945P
Mémoire système [ TRIAL VERSION ]
DIMM1: MDT MDT 512M DDR2-53 256 Mo DDR2-533 DDR2 SDRAM (5-4-4-12 @ 266 MHz) (4-4-4-12 @ 266 MHz) (3-3-3-9 @ 200 MHz)
DIMM2: MDT MDT 1GB DDR2-66 [ TRIAL VERSION ]
DIMM3: Kingston 9905320-008.A00LF [ TRIAL VERSION ]
Type de Bios AMI (09/11/06)
Port de communication Port de communication (COM1)
Port de communication Port imprimante ECP (LPT1)

Moniteur:
Carte vidéo Radeon X300/X550/X1050 Series (Microsoft Corporation - WDDM) (128 Mo)
Carte vidéo Radeon X300/X550/X1050 Series (Microsoft Corporation - WDDM) (128 Mo)
Accélérateur 3D ATI Radeon X300/X550/X1050 (RV370)
Moniteur Asus VW192 [19" LCD] (89LMVD008099)

Multimédia:
Carte audio Analog Devices AD1986A @ Intel 82801GB ICH7 - High Definition Audio Controller [A-1]

Stockage:
Contrôleur IDE Intel(R) ICH7 Family Ultra ATA Storage Controllers - 27DF
Contrôleur IDE Intel(R) N10/ICH7 Family Serial ATA Storage Controller - 27C0
Lecteur de disquettes Lecteur de disquettes
Disque dur Hitachi HTS545050B9A300 USB Device (500 Go, 5400 RPM, SATA-II)
Disque dur Maxtor 6L080P0 ATA Device (80 Go, 7200 RPM, Ultra-ATA/133)
Lecteur optique HL-DT-ST DVD-ROM GDR8164B ATA Device (16x/52x DVD-ROM)
État des disques durs SMART OK

Partitions:
C: (NTFS) [ TRIAL VERSION ]
E: (FAT32) 465.5 Go (58.6 Go libre)
Taille totale [ TRIAL VERSION ]

Entrée:
Clavier Périphérique clavier PIH
Souris Souris HID

Réseau:
Adresse IP principale [ TRIAL VERSION ]
Adresse MAC principale 00-60-B3-6E-AE-13
Carte réseau Realtek PCIe GBE Family Controller
Carte réseau Sagem 802.11b USB Dongle (192. [ TRIAL VERSION ])

Périphériques:
Imprimante Canon MG3100 series Printer
Imprimante Fax
Imprimante Microsoft XPS Document Writer
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB2 Intel 82801GB ICH7 - Enhanced USB2 Controller [A-1]
Périphérique USB Périphérique d'entrée USB
Périphérique USB Périphérique d'entrée USB
Périphérique USB Périphérique de stockage de masse USB
Périphérique USB Sagem 802.11b USB Dongle

DMI:
Distributeur du Bios American Megatrends Inc.
Version du Bios 0405
Fabricant du système System manufacturer
Nom du système System Product Name
Version du système System Version
N° de série du système [ TRIAL VERSION ]
UUID du système [ TRIAL VERSION ]
Fabricant de la carte mère ASUSTeK Computer INC.
Nom de la carte mère P5LD2-SE
Version de la carte mère Rev 1.xx
N° de série de la carte mère [ TRIAL VERSION ]
Fabricant du châssis Chassis Manufacture
Version du châssis Chassis Version
N° de série du châssis [ TRIAL VERSION ]
Identifiant du châssis [ TRIAL VERSION ]
Type du châssis Desktop Case
Sockets mémoire (Total/Libres) 4 / 1


--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

B00 D00 F00: Intel 82945P Memory Controller Hub [A-2]

Offset 000: 86 80 70 27 06 00 90 20 02 00 00 06 00 00 00 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 78 81
Offset 030: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
Offset 040: 01 90 D1 FE 01 40 D1 FE 05 00 00 F0 01 80 D1 FE
Offset 050: 00 00 02 00 03 00 00 10 00 00 00 00 00 00 00 00
Offset 060: 00 30 D1 FE 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 10 11 11 00 00 33 33 00 FF 03 00 00 80 0A 38 00
Offset 0A0: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 20 01 00 00
Offset 0E0: 09 00 09 51 CA E1 9B 98 06 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D01 F00: Intel 82945P PCI Express Root Port [A-2]

Offset 000: 86 80 71 27 07 01 10 00 02 00 04 06 04 00 01 00
Offset 010: 00 00 00 00 00 00 00 00 00 04 04 00 E0 E0 00 20
Offset 020: F0 E7 F0 E7 01 E8 F1 EF 00 00 00 00 00 00 00 00
Offset 030: 00 00 00 00 88 00 00 00 00 00 00 00 10 01 1A 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02
Offset 080: 01 90 02 C8 00 00 00 00 0D 80 00 00 86 80 00 00
Offset 090: 05 A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 10 00 41 01 00 00 00 00 00 00 00 00 01 25 01 02
Offset 0B0: 40 00 01 11 80 25 00 00 C0 01 48 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 01 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1B F00: Intel 82801GB ICH7 - High Definition Audio Controller [A-1]

Offset 000: 86 80 D8 27 06 00 10 00 01 00 03 04 04 00 00 00
Offset 010: 04 80 DF E7 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 7F 81
Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 13 01 00 00
Offset 040: 03 00 00 03 07 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 01 60 42 C8 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 05 70 80 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 10 00 91 00 00 00 00 00 00 08 10 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1C F00: Intel 82801GB ICH7 - PCI Express Root Port 1 [A-1]

Offset 000: 86 80 D0 27 05 01 10 00 01 00 04 06 04 00 81 00
Offset 010: 00 00 00 00 00 00 00 00 00 03 03 00 D0 D0 00 20
Offset 020: F0 FF 00 00 F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 10 01 06 00
Offset 040: 10 80 41 01 C0 0F 00 00 00 00 10 00 11 2C 11 01
Offset 050: 40 00 01 10 60 05 08 00 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 0D A0 00 00 43 10 79 81 00 00 00 00 00 00 00 00
Offset 0A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00
Offset 0E0: 00 00 C7 00 06 07 08 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1C F03: Intel 82801GB ICH7 - PCI Express Root Port 4 [A-1]

Offset 000: 86 80 D6 27 07 01 10 00 01 00 04 06 04 00 81 00
Offset 010: 00 00 00 00 00 00 00 00 00 02 02 00 C0 C0 00 00
Offset 020: E0 E7 E0 E7 F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 13 04 06 00
Offset 040: 10 80 41 00 C0 0F 00 00 00 00 10 00 11 2C 11 04
Offset 050: 40 00 11 30 60 05 20 00 00 00 48 01 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 0D A0 00 00 43 10 79 81 00 00 00 00 00 00 00 00
Offset 0A0: 01 00 02 C8 00 01 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00
Offset 0E0: 00 00 C7 00 06 07 08 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1D F00: Intel 82801GB ICH7 - USB Universal Host Controller [A-1]

Offset 000: 86 80 C8 27 05 00 80 02 01 00 03 0C 00 00 80 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 01 80 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 14 01 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 20 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1D F01: Intel 82801GB ICH7 - USB Universal Host Controller [A-1]

Offset 000: 86 80 C9 27 05 00 80 02 01 00 03 0C 00 00 00 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 01 84 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 11 02 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 20 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1D F02: Intel 82801GB ICH7 - USB Universal Host Controller [A-1]

Offset 000: 86 80 CA 27 05 00 80 02 01 00 03 0C 00 00 00 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 01 88 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 12 03 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 20 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1D F03: Intel 82801GB ICH7 - USB Universal Host Controller [A-1]

Offset 000: 86 80 CB 27 05 00 80 02 01 00 03 0C 00 00 00 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 01 90 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 13 04 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 20 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1D F07: Intel 82801GB ICH7 - Enhanced USB2 Controller [A-1]

Offset 000: 86 80 CC 27 06 00 90 02 01 20 03 0C 00 00 00 00
Offset 010: 00 FC DF E7 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 14 01 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 01 58 C2 C9 00 00 00 00 0A 00 A0 20 00 00 00 00
Offset 060: 20 20 FF 01 00 00 00 00 01 00 00 00 00 20 00 C0
Offset 070: 00 00 DF 3F 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 AA FF 00 FF 00 FF 00 20 00 00 88
Offset 0E0: 00 00 00 00 DB B6 6D 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 80 00 09 88 85 40 00 86 0F 01 00 06 17 02 20

B00 D1E F00: Intel 82801GB I/O Controller Hub 7 (ICH7) [A-1]

Offset 000: 86 80 4E 24 07 01 10 00 E1 01 04 06 00 00 01 00
Offset 010: 00 00 00 00 00 00 00 00 00 01 01 20 B0 B0 80 22
Offset 020: F0 FF 00 00 F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 00 00 06 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 12 00 00
Offset 050: 0D 00 00 00 43 10 79 81 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1F F00: Intel 82801GB ICH7 - LPC Bridge [A-1]

Offset 000: 86 80 B8 27 07 00 10 02 01 00 01 06 00 00 80 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
Offset 040: 01 08 00 00 80 00 00 00 81 04 00 00 10 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 8B 85 83 8A D0 00 00 00 85 80 80 85 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 0F 14 00 00 00 00 91 02 04 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 20 02 00 00 29 00 00 00 13 00 00 00 00 03 00 00
Offset 0B0: 00 00 F0 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 33 22 11 00 67 45 00 00 C0 80 00 00 00 00 00 00
Offset 0E0: 09 00 0C 10 A8 00 24 00 00 00 00 00 00 00 00 00
Offset 0F0: 01 C0 D1 FE 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1F F01: Intel 82801GB ICH7 - ATA-100 IDE Controller [A-1]

Offset 000: 86 80 DF 27 05 00 80 02 01 8A 01 01 00 00 00 00
Offset 010: 01 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00
Offset 020: A1 FF 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00
Offset 040: 37 E3 00 80 0B 00 00 00 03 00 21 00 00 00 00 00
Offset 050: 00 00 00 00 30 10 00 00 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 03 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1F F02: Intel 82801GB ICH7 - SATA Controller [A-1]

Offset 000: 86 80 C0 27 05 00 B0 02 01 8F 01 01 00 00 00 00
Offset 010: 01 A8 00 00 01 A4 00 00 01 A0 00 00 01 98 00 00
Offset 020: 01 94 00 00 00 00 00 00 00 00 00 00 43 10 01 26
Offset 030: 00 00 00 00 70 00 00 00 00 00 00 00 17 02 00 00
Offset 040: 00 80 00 80 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 01 00 02 40 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 0F 00 80 01 00 40 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 05 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B00 D1F F03: Intel 82801GB ICH7 - SMBus Controller [A-1]

Offset 000: 86 80 DA 27 01 00 80 02 01 00 05 0C 00 00 00 00
Offset 010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 01 04 00 00 00 00 00 00 00 00 00 00 43 10 79 81
Offset 030: 00 00 00 00 00 00 00 00 00 00 00 00 05 02 00 00
Offset 040: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 86 0F 01 00 00 00 00 00

B02 D00 F00: Realtek RTL8168B/8111B PCI-E Gigabit Ethernet Adapter

Offset 000: EC 10 68 81 07 00 10 00 01 00 00 02 04 00 00 00
Offset 010: 01 C8 00 00 00 00 00 00 04 F0 EF E7 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 AA 81
Offset 030: 00 00 00 00 40 00 00 00 00 00 00 00 13 01 00 00
Offset 040: 01 48 C2 F7 00 01 00 00 03 50 00 00 00 00 00 00
Offset 050: 05 60 82 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 060: 10 84 01 00 C3 7F 00 00 10 58 10 00 11 FC 03 00
Offset 070: 40 00 11 10 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 09 00 4C 01 01 1C 02 00 FB FF FF 10
Offset 090: 08 30 00 00 2F E8 0A 00 F7 B1 05 00 BF 00 00 00
Offset 0A0: 02 28 FF 01 00 00 00 00 00 08 00 00 03 00 03 00
Offset 0B0: 00 40 00 00 FF 3F FF 3F FF FF 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B04 D00 F00: ATI Radeon X300/X550/X1050 (RV370) Video Adapter

Offset 000: 02 10 60 5B 07 04 10 00 00 00 00 03 04 00 80 00
Offset 010: 08 00 00 E8 01 E0 00 00 00 00 FE E7 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 83 00
Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 00 01 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 83 00
Offset 050: 01 58 02 06 00 00 00 00 10 80 01 00 60 02 2C 01
Offset 060: 10 08 00 00 01 1D 00 00 40 00 01 11 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 05 00 81 00 0C 30 E0 FE 00 00 00 00 B0 49 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B04 D00 F01: ATI Radeon X300/X550/X1050 (RV370) - Secondary Video Adapter

Offset 000: 02 10 70 5B 06 00 10 00 00 00 80 03 04 00 00 00
Offset 010: 00 00 FF E7 00 00 00 00 00 00 00 00 00 00 00 00
Offset 020: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 82 00
Offset 030: 00 00 00 00 50 00 00 00 00 00 00 00 FF 00 00 00
Offset 040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 050: 01 58 02 06 00 00 00 00 10 00 01 00 40 02 00 00
Offset 060: 00 00 00 00 01 1D 00 00 40 00 01 11 00 00 00 00
Offset 070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 090: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

PCI-8086-2770: Intel i945/955/975/E7230 MCHBAR

Offset 100: 10 10 20 30 00 00 00 00 04 33 00 00 3F 00 00 00
Offset 110: E8 28 50 98 11 56 48 01 5F 02 00 80 FF 01 FF 03
Offset 120: 06 0A 00 40 00 05 00 80 F0 11 00 00 00 00 00 00
Offset 130: C4 06 00 00 6D 06 1A 87 08 01 02 04 00 00 00 00
Offset 140: 00 00 00 00 00 00 00 00 01 02 05 05 0B 0A 00 7E
Offset 150: 1F 5E 20 7D 41 69 60 88 00 7E 22 00 00 00 00 00
Offset 160: 00 00 00 00 20 00 00 00 00 00 50 33 97 86 20 E0
Offset 170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 180: 40 40 40 40 00 00 00 00 03 00 00 00 07 00 00 00
Offset 190: E8 28 50 98 11 56 48 02 5F 02 00 80 FF 01 FF 03
Offset 1A0: 06 0A 00 40 00 05 00 A0 00 00 00 00 00 00 00 00

PCI-8086-2770: Intel i945/955/975/E7230 MCHBAR

Offset 200: 01 04 0F 00 00 00 00 00 04 08 01 02 00 00 00 00
Offset 210: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

PCI-8086-2770: Intel i945/955/975/E7230 MCHBAR

Offset C00: 12 00 00 00 01 01 01 01 00 00 00 00 00 00 00 00
Offset C10: 00 00 00 00 03 02 80 00 0F 0F 0F 0F 6A 06 33 33
Offset C20: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C30: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset CA0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset CB0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset CC0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset CD0: 00 00 00 00 00 00 00 00 00 00 00 FF 00 00 00 00
Offset CE0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset CF0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00


--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

C000:0000 U.............................IBM............... 761295520......
C000:0040 ??......J.......2006/02/23 11:30.....~...6 ........w..C.........
C000:0080 ..113-AA91102-100-AS BR#18880 CL#175968 ...(C) 1988-2003, ATI Te
C000:00C0 chnologies Inc. BK-ATI VER008.015.139.000. hy18880c.cfg v611 .V3
C000:0100 80PCIEDGD1UN..OEM VER.000.000...ASUS BIOS Version:5B60.8.15.139.
C000:0140 AS37....t.......t.. X\................C...'[.........y.p..x... .
C000:0180 ....$TVS................................".8.....................
C000:01C0 PCIR..'[........h.......ATI RV370. .S1....N.....................
C000:0200 .. .S1....N..........................y...1........p........ff?..
C000:0240 .k..............................................................
C000:0280 ................................................................
C000:02C0 ......................L ....0.....4.....0.....4.....0.p...4....@
C000:0300 0.....4.....0.....4.....0.....4.....0.....4.....0.....4.....0...
C000:0340 ..4.....0.....4......@............a.dA..........OD..P ....P'....
C000:0380 ....X ..........| ..........X'.........J.........J........0....@
C000:03C0 .A.....=..x.....|........................................... ...


------------------------------------------------------------------------------------------------------------------------

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

pouvais-vous m'aidez ? merci de votre aide.


Afficher la suite 

20/32 réponses

Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64
0
Merci
salut,
avec quoi t'as été nous pondre ces info x)
go www.ma-config.com/fr et t'as un lien pour partager toute ta config

sinon tu dois tourner sur un ancêtre (pentium 4, ram en DDR2, et j'ai pas vu de CG)

il freeze comment ? sur les programme ou juste en te baladant sur le bureau ?
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
les info vienne de AIDA64
config.com deja essayer
il freeze aléatoirement (aucun acces ni souris ni clavier et ni ctrl+alt+supp)
juste en me baladant sur le net sur le bureau ou en écoutant de la musique et en regardant en film il fait sa a n'importe quel moment !
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64
0
Merci
la config me semble limite pour seven, essaye de désactiver windows aero :
1) menu démarrer
2) clic droit poste de travail, propriétés
3) clic gauche sur l'indice de performances windows
4) dans la colone de gauche "ajuster les effets visuels"
5) et tu coche "ajuste affin d'obtenir les meilleur performances"
6) clique sur OK

alors oui c'est moche mais ca peut résoudre temporairement ton problème pour trouver une vraie solution (virus ou autre)

c'est mieux ?
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
salut il a freezer voila je voulais te mettre au courant !
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
voila c'est fait merci je te tien au courant si sa freeze
et c'est c'est moche on dirait w98
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64
0
Merci
ouai mais ca bouffe moin de ressources niveau graphique
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
oui je me doute !
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
si quelqu'un autre a des conseil pour que sa freeze moins ou même une solution pour que sa ne freeze plus je suis preneur
Merci.
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
ca continue de freezer ?
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
oui sa a recommencer :(
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
ah ...
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64
0
Merci
On va voir si tu as un programme douteux, installe CCleaner, va dans l'onglet outils en bas à droite "enregistrer dans un fichier ..." en envoie nous ça.
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
profite en pour nettoyer ton disque (onglet "nettoyeur") tu peux modifier les cases cochées, ensuite tu clique "nettoyer" (ça ne supprimera pas tes données personnelles)
tu peux aussi en profiter pour faire une vérification des clés de registres (onglet "registre") tu fait "chercher les erreurs" puis "corriger les erreurs sélectionnées"
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
voila c'est fait !!!
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
est-ce que tu vois un truc douteux ???
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
7-Zip 9.20 17/12/2012
Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 12/12/2012 6,00 Mo 11.5.502.135
Adobe Flash Player 11 Plugin Adobe Systems Incorporated 12/12/2012 6,00 Mo 11.5.502.135
Adobe Reader XI - Français Adobe Systems Incorporated 02/12/2012 124 Mo 11.0.00
AIDA64 Extreme Edition v2.70 FinalWire Ltd. 17/12/2012 26,5 Mo 2.70
Apple Application Support Apple Inc. 02/12/2012 65,0 Mo 2.3.2
Apple Mobile Device Support Apple Inc. 02/12/2012 24,5 Mo 6.0.1.3
Apple Software Update Apple Inc. 02/12/2012 2,38 Mo 2.1.3.127
avast! Free Antivirus AVAST Software 01/12/2012 7.0.1474.0
Bonjour Apple Inc. 02/12/2012 1,02 Mo 3.0.0.10
Canon MG3100 series MP Drivers 10/12/2012
CCleaner Piriform 04/12/2012 3.25
District 187 02/12/2012
Google Chrome Google Inc. 01/12/2012 23.0.1271.97
iTunes Apple Inc. 02/12/2012 187 Mo 11.0.0.163
Java 7 Update 9 Oracle 01/12/2012 128 Mo 7.0.90
Logiciel d'archivage WinRAR 01/12/2012
LogMeIn LogMeIn, Inc. 01/12/2012 49,1 Mo 4.1.2600
Ma-Config.com Cybelsoft 01/12/2012 8,62 Mo 6.5.009
Microsoft .NET Framework 4 Client Profile Microsoft Corporation 01/12/2012 38,8 Mo 4.0.30319
Microsoft .NET Framework 4 Extended Microsoft Corporation 01/12/2012 51,9 Mo 4.0.30319
Microsoft Office Professional Plus 2007 Microsoft Corporation 01/12/2012 12.0.4518.1014
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 01/12/2012 596 Ko 9.0.30729.4148
Module linguistique Microsoft .NET Framework 4 Client Profile FRA Microsoft Corporation 01/12/2012 2,93 Mo 4.0.30319
Module linguistique Microsoft .NET Framework 4 Extended FRA Microsoft Corporation 01/12/2012 10,6 Mo 4.0.30319
Realtek High Definition Audio Driver Realtek Semiconductor Corp. 17/12/2012 6.0.1.6438
Steam Valve Corporation 01/12/2012 35,4 Mo 1.0.0.0
VLC media player 2.0.4 VideoLAN 06/12/2012 2.0.4
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
il a re-freezer malgrée le nettoyage du disque c'est desesperent :(
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64
0
Merci
Salut si le problème ne vient pas d'une surchauffe alors il peut venir de n'importe où.

Repasse sous Windows XP et si cela ne résous pas le problème ça peut être un problème au niveau de la tension des rams ou du processeur;
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
bonjour, et désolé de ne répondre que maintenant.
je suivrez tes conseil debut janvier car en ce moment ce n'est pas possible
Bon Noel et bonne fêtes de fin d'année
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
ok joyeux noel a toi aussi bonne année
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
re- bonjour je suis repasser sous xp j'ai vérifier la tension des ram et du processeur mais rien a faire en plus de sa j'ai le fameux "écran bleu " qui apparaît et fait redémarrer le pc aidez moi s'il vous plait !!!
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
0
Merci
j'ai changer de tour donc toujours les mêmes soucie donc nouveau rapport :

rapport AIDA64

--------[ AIDA64 Extreme Edition ]--------------------------------------------------------------------------------------

Version AIDA64 v2.80.2300/fr
Module de test 3.0.492-x32
Site web http://www.aida64.com/
Type de rapport Générateur de rapports [ TRIAL VERSION ]
Ordinateur PC
Générateur kev
Système d'exploitation Microsoft Windows 7 Professional 6.1.7600.17207 (Win7 RTM)
Date 2013-03-26
Heure 16:44


--------[ Résumé ]------------------------------------------------------------------------------------------------------

Ordinateur:
Type de système PC avec processeur x86 ACPI
Système d'exploitation Microsoft Windows 7 Professional
Service Pack du système [ TRIAL VERSION ]
Internet Explorer 9.0.8112.16421 (IE 9.0)
DirectX DirectX 11.0
Nom du système PC
Nom de l'utilisateur kev
Domaine de connexion [ TRIAL VERSION ]
Date / Heure 2013-03-26 / 16:44

Carte mère:
Type de processeur DualCore Intel Core 2 Duo E7500, 2933 MHz (11 x 267)
Nom de la carte mère Dell Vostro 230
Chipset de la carte mère Intel Eaglelake G41
Mémoire système [ TRIAL VERSION ]
DIMM1: Nanya NT2GC64B8HC0NF-CG 2 Go DDR3-1333 DDR3 SDRAM (9-9-9-24 @ 666 MHz) (8-8-8-22 @ 609 MHz) (7-7-7-20 @ 533 MHz) (6-6-6-17 @ 457 MHz)
DIMM3: Nanya NT2GC64B8HC0NF-CG [ TRIAL VERSION ]
Type de Bios AMI (12/18/09)
Port de communication Port de communication (COM1)

Moniteur:
Carte vidéo Jeu de puces Express Intel(R) G41 (Microsoft Corporation - WDDM 1.1) (1325468 Ko)
Accélérateur 3D Intel GMA X4500
Moniteur Asus VW192 [19" LCD] (89LMVD008099)

Multimédia:
Carte audio Realtek ALC662 @ Intel 82801GB ICH7 - High Definition Audio Controller [A-1]

Stockage:
Contrôleur IDE Contrôleur de stockage Serial ATA Intel(R) 82801GB/GR/GH (famille ICH7) - 27C0
Disque dur Hitachi HTS545050B9A300 USB Device (500 Go, 5400 RPM, SATA-II)
Disque dur ST3320418AS ATA Device (320 Go, 7200 RPM, SATA-II)
Lecteur optique TSSTcorp DVD+-RW TS-H653G ATA Device
État des disques durs SMART OK

Partitions:
C: (NTFS) [ TRIAL VERSION ]
E: (FAT32) 465.5 Go (44.5 Go libre)
Taille totale [ TRIAL VERSION ]

Entrée:
Clavier Périphérique clavier PIH
Souris Souris HID

Réseau:
Adresse IP principale [ TRIAL VERSION ]
Adresse MAC principale 00-60-B3-6E-AE-13
Carte réseau Sagem 802.11b USB Dongle (192. [ TRIAL VERSION ])

Périphériques:
Imprimante Fax
Imprimante Microsoft XPS Document Writer
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB1 Intel 82801GB ICH7 - USB Universal Host Controller [A-1]
Contrôleur USB2 Intel 82801GB ICH7 - Enhanced USB2 Controller [A-1]
Périphérique USB Périphérique d'entrée USB
Périphérique USB Périphérique d'entrée USB
Périphérique USB Périphérique de stockage de masse USB
Périphérique USB Sagem 802.11b USB Dongle

DMI:
Distributeur du Bios Dell Inc.
Version du Bios 1.0.0
Fabricant du système Dell Inc.
Nom du système Vostro 230
Version du système 00
N° de série du système [ TRIAL VERSION ]
UUID du système [ TRIAL VERSION ]
Fabricant de la carte mère Dell Inc.
Nom de la carte mère 07N90W
Version de la carte mère A00
N° de série de la carte mère [ TRIAL VERSION ]
Fabricant du châssis Dell Inc.
Version du châssis Not Specified
N° de série du châssis [ TRIAL VERSION ]
Identifiant du châssis [ TRIAL VERSION ]
Type du châssis Desktop Case


--------[ Nom du système ]----------------------------------------------------------------------------------------------

Commentaire associé à l'ordinateur Logique
Nom NetBIOS Logique PC
Nom d'hôte DNS Logique PC
Nom de domaine DNS Logique
Nom complet DNS Logique PC
Nom NetBIOS Physique PC
Nom d'hôte DNS Physique PC
Nom de domaine DNS Physique
Nom complet DNS Physique PC


--------[ DMI ]---------------------------------------------------------------------------------------------------------

[ BIOS ]

Propriétés du Bios:
Vendeur Dell Inc.
Version 1.0.0
Date de sortie 12/18/2009
Taille 1024 Ko
Périphériques de démarrage Floppy Disk, Hard Disk, CD-ROM, ATAPI ZIP
Fonctions disponibles Flash BIOS, Shadow BIOS, Selectable Boot, EDD, BBS
Standards respectés DMI, APM, ACPI, ESCD, PnP
Possibilités d'expansion ISA, PCI, USB

[ Système ]

Propriétés système:
Fabricant Dell Inc.
Produit Vostro 230
Version 00
N° de série [ TRIAL VERSION ]
SKU# 0
Famille 0
Identifiant unique universel [ TRIAL VERSION ]
Type de démarrage Bouton marche/arrêt

[ Carte mère ]

Propriétés de la carte mère:
Fabricant Dell Inc.
Produit 07N90W
Version A00
N° de série [ TRIAL VERSION ]

Fabricant de la carte mère:
Nom de l'entreprise Dell Computer Corporation
Information sur le produit http://www.dell.com
Télécharger le Bios http://support.dell.com
Mise à jour du pilote http://www.aida64.com/driver-updates
Mises à jour du Bios http://www.aida64.com/bios-updates

[ Châssis ]

Propriétés du châssis:
Fabricant Dell Inc.
Version Non spécifié
N° de série [ TRIAL VERSION ]
Étiquette [ TRIAL VERSION ]
Type du châssis Boîtier standard
État au démarrage En sûreté
État de l'alimentation En sûreté
Conditions de température En sûreté
Conditions de sécurité Aucun(e)

[ Processeurs / Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz ]

Propriétés du processeur:
Fabricant Intel
Version Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
Horloge externe 266 MHz
Vitesse d'horloge maximale 2933 MHz
Vitesse d'horloge courante 2933 MHz
Type Central Processor
Voltage 1.3 V
État Activé
Mise à jour Socket LGA775
Identifiant du socket CPU 1
Unités HTT / CMP 1 / 2

Fabricant du processeur:
Nom de l'entreprise Intel Corporation
Information sur le produit http://ark.intel.com/search.aspx?q=Intel Core 2 Duo E7500
Mise à jour du pilote http://www.aida64.com/driver-updates

[ Caches / L1-Cache ]

Propriétés du cache:
Type Interne
État Activé
Mode d'opération Write-Back
Associativité 8-way Set-Associative
Taille maximale 64 Ko
Taille installée 64 Ko
Correction d'erreurs Parity
Identifiant du socket L1-Cache

[ Caches / L2-Cache ]

Propriétés du cache:
Type Interne
État Activé
Mode d'opération Write-Back
Taille maximale 3072 Ko
Taille installée 3072 Ko
Correction d'erreurs Single-bit ECC
Identifiant du socket L2-Cache

[ Périphériques mémoire / DIMM0 ]

Propriétés du périphérique mémoire:
Forme DIMM
Type DDR3
Type détaillé Synchronous
Taille 2048 Mo
Vitesse 1333 MHz
Taille totale 64 bits
Largeur de données 64 bits
Emplacement du périphérique DIMM0
Fabricant Nanya
N° de série 8BFA2C64
Étiquette 0D1017
N° du type de composant NT2GC64B8HC0NF-CG

[ Périphériques mémoire / DIMM1 ]

Propriétés du périphérique mémoire:
Forme DIMM
Type DDR3
Type détaillé Synchronous
Taille 2048 Mo
Vitesse 1333 MHz
Taille totale 64 bits
Largeur de données 64 bits
Emplacement du périphérique DIMM1
Fabricant Nanya
N° de série 60F52C61
Étiquette 0D1017
N° du type de composant NT2GC64B8HC0NF-CG

[ Slots système / PCIEX16 ]

Propriétés du slot système:
Identifiant du slot PCIEX16
Type PCI-E x16
Usage Vide
Largeur du bus de données x16
Longueur Court

[ Slots système / PCI1 ]

Propriétés du slot système:
Identifiant du slot PCI1
Type PCI
Usage Vide
Largeur du bus de données 32-bit
Longueur Court

[ Slots système / PCI2 ]

Propriétés du slot système:
Identifiant du slot PCI2
Type PCI
Usage Vide
Largeur du bus de données 32-bit
Longueur Court

[ Slots système / PCIEX1 ]

Propriétés du slot système:
Identifiant du slot PCIEX1
Type PCI-E x1
Usage Vide
Largeur du bus de données x1
Longueur Court

[ Divers ]

Divers:
OEM String www.dell.com


--------[ Overclock ]---------------------------------------------------------------------------------------------------

Propriétés du processeur:
Type de processeur DualCore Intel Core 2 Duo E7500
Alias du processeur Wolfdale-3M
Stepping du processeur R0
Engineering Sample Non
(CPUID) Nom du processeur Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
(CPUID) Révision 0001067Ah
CPU VID 1.1000 V

Vitesse CPU:
Vitesse d'horloge du processeur 1583.9 MHz (original: [ TRIAL VERSION ] MHz)
Multiplieur CPU 6x
CPU FSB 264.0 MHz (original: 266 MHz)
Bus mémoire 528.0 MHz
Rapport DRAM:FSB 16:8

Cache CPU:
Cache de code de niveau 1 32 Ko per core
Cache de données de niveau 1 [ TRIAL VERSION ]
Cache de niveau 2 3 Mo (On-Die, ECC, ASC, Full-Speed)

Propriétés de la carte mère:
Identifiant de la carte mère 64-0100-009999-00101111-121809-Eaglelake$1AAAA000_BIOS DATE: 12/18/09 16:16:08 VER: 08.00.15
Nom de la carte mère Dell Vostro 230

Propriétés du chipset:
Chipset de la carte mère Intel Eaglelake G41
Performances mémoire 7-7-7-20 (CL-RCD-RP-RAS)
Command Rate (CR) [ TRIAL VERSION ]
DIMM1: Nanya NT2GC64B8HC0NF-CG 2 Go DDR3-1333 DDR3 SDRAM (9-9-9-24 @ 666 MHz) (8-8-8-22 @ 609 MHz) (7-7-7-20 @ 533 MHz) (6-6-6-17 @ 457 MHz)
DIMM3: Nanya NT2GC64B8HC0NF-CG [ TRIAL VERSION ]

Propriétés du Bios:
Date du Bios système 12/18/09
Date du Bios vidéo 08/19/09
Version du Bios 1.0.0

Propriétés du processeur graphique:
Carte vidéo Intel G41 Chipset - Integrated Graphics 0 [A-3]
Nom de code Eaglelake-G (Integrated 8086 / 2E32, Rev 03)


--------[ Économie d'énergie ]------------------------------------------------------------------------------------------

Gestion de l'économie d'énergie:
Source de courant actuelle Courant de secteur alternatif
État de la batterie Aucune batterie
Temps d'utilisation de la batterie pleine Inconnu
Temps d'utilisation restant Inconnu


--------[ Ordinateur portable ]-----------------------------------------------------------------------------------------

Centrino (Carmel) Compatibilité Plate-forme:
Processeur: Intel Pentium M (Banias/Dothan) Non (Intel Core 2 Duo E7500)
Chipset: Intel i855GM/PM Non (Intel Eaglelake G41)
WLAN: Intel PRO/Wireless Non
Système: Centrino Compatible Non

Centrino (Sonoma) Compatibilité Plate-forme:
Processeur: Intel Pentium M (Dothan) Non (Intel Core 2 Duo E7500)
Chipset: Intel i915GM/PM Non (Intel Eaglelake G41)
WLAN: Intel PRO/Wireless 2200/2915 Non
Système: Centrino Compatible Non

Centrino (Napa) Compatibilité Plate-forme:
Processeur: Intel Core (Yonah) / Core 2 (Merom) Non (Intel Core 2 Duo E7500)
Chipset: Intel i945GM/PM Non (Intel Eaglelake G41)
WLAN: Intel PRO/Wireless 3945/3965 Non
Système: Centrino Compatible Non

Centrino (Santa Rosa) Compatibilité Plate-forme:
Processeur: Intel Core 2 (Merom/Penryn) Non (Intel Core 2 Duo E7500)
Chipset: Intel GM965/PM965 Non (Intel Eaglelake G41)
WLAN: Intel Wireless WiFi Link 4965 Non
Système: Centrino Compatible Non

Centrino 2 (Montevina) Compatibilité Plate-forme:
Processeur: Intel Core 2 (Penryn) Non (Intel Core 2 Duo E7500)
Chipset: Mobile Intel 4 Series Non (Intel Eaglelake G41)
WLAN: Intel WiFi Link 5000 Series Non
Système: Centrino 2 Compatible Non

Centrino (Calpella) Compatibilité Plate-forme:
Processeur: Intel Core i3/i5/i7 (Arrandale/Clarksfield)Non (Intel Core 2 Duo E7500)
Chipset: Mobile Intel 5 Series Non (Intel Eaglelake G41)
WLAN: Intel Centrino Advanced-N / Ultimate-N / Wireless-NNon
Système: Centrino Compatible Non

Centrino (Huron River) Compatibilité Plate-forme:
Processeur: Intel Core i3/i5/i7 (Sandy Bridge-MB) Non (Intel Core 2 Duo E7500)
Chipset: Mobile Intel 6 Series Non (Intel Eaglelake G41)
WLAN: Intel Centrino Advanced-N / Ultimate-N / Wireless-NNon
Système: Centrino Compatible Non

Centrino (Chief River) Compatibilité Plate-forme:
Processeur: Intel Core i3/i5/i7 (Ivy Bridge-MB) Non (Intel Core 2 Duo E7500)
Chipset: Mobile Intel 7 Series Non (Intel Eaglelake G41)
WLAN: Intel Centrino Advanced-N / Ultimate-N / Wireless-NNon
Système: Centrino Compatible Non


--------[ Sonde ]-------------------------------------------------------------------------------------------------------

Propriétés de la sonde:
Type de la sonde ITE IT8720F (ISA A10h)
Intrusion dans le châssis détectée Oui

Températures:
Carte mère 22 °C (72 °F)
Processeur 25 °C (77 °F)
CPU 1 / coeur 1 39 °C (102 °F)
CPU 1 / coeur 2 37 °C (99 °F)
Aux 29 °C (84 °F)
ST3320418AS [ TRIAL VERSION ]
Hitachi HTS545050B9A300 [ TRIAL VERSION ]

Ventilateurs:
Processeur 1658 RPM
Châssis 836 RPM

Valeurs de voltage:
Noyau CPU 1.088 V
+2.5 V 1.104 V
+3.3 V 2.832 V
+5 V 5.107 V
+12 V [ TRIAL VERSION ]
Mise en veille +5 V 5.027 V
Batterie VBAT 3.120 V
Debug Info F 0197 0327 0000 0000 0000
Debug Info T 29 22 25
Debug Info V 44 45 B1 BE D3 86 86 BB C3


--------[ Processeur ]--------------------------------------------------------------------------------------------------

Propriétés du processeur:
Type de processeur DualCore Intel Core 2 Duo E7500, 2933 MHz (11 x 267)
Alias du processeur Wolfdale-3M
Stepping du processeur R0
Jeu d'instructions x86, x86-64, MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1
Vitesse d'horloge originelle [ TRIAL VERSION ]
Coefficient processeur Min / Max 6x / 11x
Engineering Sample Non
Cache de code de niveau 1 32 Ko per core
Cache de données de niveau 1 [ TRIAL VERSION ]
Cache de niveau 2 3 Mo (On-Die, ECC, ASC, Full-Speed)

Informations physiques:
Forme du composant 775 Contact FC-LGA8
Taille du composant 37.5 mm x 37.5 mm
Transistors [ TRIAL VERSION ] million(s)
Technologie utilisée 45 nm, CMOS, Cu, High-K + Metal Gate
Taille interne [ TRIAL VERSION ] mm2
Voltage au coeur 1.100 - 1.288 V
Voltage d'entrée/sortie 1.100 - 1.288 V
Puissance typique 65 W @ 2.93 GHz
Puissance maximale 91.9 W @ 2.93 GHz

Fabricant du processeur:
Nom de l'entreprise Intel Corporation
Information sur le produit http://ark.intel.com/search.aspx?q=Intel Core 2 Duo E7500
Mise à jour du pilote http://www.aida64.com/driver-updates

Multi CPU:
Identifiant de la carte mère Intel Eaglelake
CPU #1 Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz, 2926 MHz
CPU #2 Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz, 2926 MHz

Utilisation du processeur:
CPU 1 / coeur 1 0 %
CPU 1 / coeur 2 0 %


--------[ CPUID ]-------------------------------------------------------------------------------------------------------

(CPUID) Propriétés:
(CPUID) Fabricant GenuineIntel
(CPUID) Nom du processeur Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz
(CPUID) Révision 0001067Ah
(IA) Identifiant de la marque 00h (Inconnu)
Identifiant de la plate-forme 2Fh / MC 01h (LGA775)
Version du Microcode A07
Unités HTT / CMP 0 / 2
Température Tjmax 100 °C (212 °F)
CPU Thermal Design Power 65 W

Jeu d'instructions:
Extensions 64 bits x86 (AMD64, Intel64) Géré
AMD 3DNow! Non géré
AMD 3DNow! Professional Non géré
AMD 3DNowPrefetch Non géré
AMD Enhanced 3DNow! Non géré
AMD Extended MMX Non géré
AMD FMA4 Non géré
AMD MisAligned SSE Non géré
AMD SSE4A Non géré
AMD XOP Non géré
Cyrix Extended MMX Non géré
Enhanced REP MOVSB/STOSB Non géré
Float-16 Conversion Instructions Non géré
IA-64 Non géré
IA BMI1 Non géré
IA BMI2 Non géré
IA MMX Géré
IA SSE Géré
IA SSE2 Géré
IA SSE3 Géré
IA Supplemental SSE3 Géré
IA SSE4.1 Géré
IA SSE4.2 Non géré
IA AVX Non géré
IA AVX2 Non géré
IA FMA Non géré
IA AES Extensions Non géré
VIA Alternate Instruction Set Non géré
Instruction ADCX / ADOX Non géré
Instruction CLFLUSH Géré
Instruction CMPXCHG8B Géré
Instruction CMPXCHG16B Géré
Instruction Conditional Move Géré
Instruction INVPCID Non géré
Instruction LZCNT Non géré
Instruction MONITOR / MWAIT Géré
Instruction MOVBE Non géré
Instruction PCLMULQDQ Non géré
Instruction POPCNT Non géré
Instruction RDFSBASE / RDGSBASE / WRFSBASE / WRGSBASENon géré
Instruction RDRAND Non géré
Instruction RDSEED Non géré
Instruction RDTSCP Non géré
Instruction SKINIT / STGI Non géré
Instruction SYSCALL / SYSRET Non géré
Instruction SYSENTER / SYSEXIT Géré
Trailing Bit Manipulation Instructions Non géré
Instruction VIA FEMMS Non géré

Fonctions de sécurité:
Advanced Cryptography Engine (ACE) Non géré
Advanced Cryptography Engine 2 (ACE2) Non géré
Prévention d'exécution des données (DEP, NX, EDB) Géré
Hardware Random Number Generator (RNG) Non géré
Hardware Random Number Generator 2 (RNG2) Non géré
PadLock Hash Engine (PHE) Non géré
PadLock Hash Engine 2 (PHE2) Non géré
PadLock Montgomery Multiplier (PMM) Non géré
PadLock Montgomery Multiplier 2 (PMM2) Non géré
N° de série duprocesseur (PSN) Non géré

Fonctionnalités de gestion de l'énergie:
Application Power Management (APM) Non géré
Automatic Clock Control Géré
Core C6 State (CC6) Non géré
Digital Thermometer Géré
Dynamic FSB Frequency Switching Non géré
Enhanced Halt State (C1E) Géré, Activé
Enhanced SpeedStep Technology (EIST, ESS) Géré, Activé
Frequency ID Control Non géré
Hardware P-State Control Non géré
LongRun Non géré
LongRun Table Interface Non géré
Overstress Non géré
Package C6 State (PC6) Non géré
Parallax Non géré
PowerSaver 1.0 Non géré
PowerSaver 2.0 Non géré
PowerSaver 3.0 Non géré
Processor Duty Cycle Control Géré
Software Thermal Control Non géré
Diode de température Non géré
Thermal Monitor 1 Géré
Thermal Monitor 2 Géré
Thermal Monitor 3 Non géré
Thermal Monitoring Non géré
Thermal Trip Non géré
Voltage ID Control Non géré

Fonctionnalités de virtualisation:
Extended Page Table (EPT) Non géré
Hypervisor Non présent
Instruction INVEPT Non géré
Instruction INVVPID Non géré
Nested Paging (NPT, RVI) Non géré
Secure Virtual Machine (SVM, Pacifica) Non géré
Virtual Machine Extensions (VMX, Vanderpool) Géré
Virtual Processor ID (VPID) Non géré

(CPUID) Fonctionnalités:
1 GB Page Size Non géré
36-bit Page Size Extension Géré
Address Region Registers (ARR) Non géré
Core Performance Boost (CPB) Non géré
CPL Qualified Debug Store Géré
Debug Trace Store Géré
Debugging Extension Géré
Direct Cache Access Non géré
Dynamic Acceleration Technology (IDA) Non géré
Fast Save & Restore Géré
Hardware Lock Elision (HLE) Non géré
Hyper-Threading Technology (HTT) Non géré
Instruction Based Sampling Non géré
Invariant Time Stamp Counter Géré
L1 Context ID Non géré
Lightweight Profiling Non géré
Local APIC On Chip Géré
Machine Check Architecture (MCA) Géré
Machine Check Exception (MCE) Géré
Memory Configuration Registers (MCR) Non géré
Memory Type Range Registers (MTRR) Géré
Model Specific Registers (MSR) Géré
Page Attribute Table (PAT) Géré
Page Global Extension Géré
Page Size Extension (PSE) Géré
Pending Break Event Géré
Physical Address Extension (PAE) Géré
Restricted Transactional Memory (RTM) Non géré
Safer Mode Extensions (SMX) Non géré
Self-Snoop Géré
Supervisor Mode Access Prevention (SMAP) Non géré
Supervisor Mode Execution Protection (SMEP) Non géré
Time Stamp Counter (TSC) Géré
Turbo Boost Non géré
Virtual Mode Extension Géré
Watchdog Timer Non géré
x2APIC Non géré
XGETBV / XSETBV OS Enabled Géré
XSAVE / XRSTOR / XSETBV / XGETBV Extended States Géré

CPUID Registers (CPU #1):
CPUID 00000000 0000000D-756E6547-6C65746E-49656E69
CPUID 00000001 0001067A-00020800-0C08E3BD-BFEBFBFF
CPUID 00000002 05B0B101-005657F0-00000000-2CB43048
CPUID 00000003 00000000-00000000-00000000-00000000
CPUID 00000004 04000121-01C0003F-0000003F-00000001
CPUID 00000004 04000122-01C0003F-0000003F-00000001
CPUID 00000004 04004143-02C0003F-00000FFF-00000001
CPUID 00000005 00000040-00000040-00000003-00022220
CPUID 00000006 00000001-00000002-00000003-00000000
CPUID 00000007 00000000-00000000-00000000-00000000
CPUID 00000008 00000400-00000000-00000000-00000000
CPUID 00000009 00000000-00000000-00000000-00000000
CPUID 0000000A 07280202-00000000-00000000-00000503
CPUID 0000000C 00000000-00000000-00000000-00000000
CPUID 0000000D 00000003-00000240-00000240-00000000
CPUID 80000000 80000008-00000000-00000000-00000000
CPUID 80000001 00000000-00000000-00000001-20100000
CPUID 80000002 65746E49-2952286C-726F4320-4D542865
CPUID 80000003 44203229-43206F75-20205550-45202020
CPUID 80000004 30303537-20402020-33392E32-007A4847
CPUID 80000005 00000000-00000000-00000000-00000000
CPUID 80000006 00000000-00000000-0C006040-00000000
CPUID 80000007 00000000-00000000-00000000-00000000
CPUID 80000008 00003024-00000000-00000000-00000000

CPUID Registers (CPU #2):
CPUID 00000000 0000000D-756E6547-6C65746E-49656E69
CPUID 00000001 0001067A-01020800-0C08E3BD-BFEBFBFF
CPUID 00000002 05B0B101-005657F0-00000000-2CB43048
CPUID 00000003 00000000-00000000-00000000-00000000
CPUID 00000004 04000121-01C0003F-0000003F-00000001
CPUID 00000004 04000122-01C0003F-0000003F-00000001
CPUID 00000004 04004143-02C0003F-00000FFF-00000001
CPUID 00000005 00000040-00000040-00000003-00022220
CPUID 00000006 00000001-00000002-00000003-00000000
CPUID 00000007 00000000-00000000-00000000-00000000
CPUID 00000008 00000400-00000000-00000000-00000000
CPUID 00000009 00000000-00000000-00000000-00000000
CPUID 0000000A 07280202-00000000-00000000-00000503
CPUID 0000000C 00000000-00000000-00000000-00000000
CPUID 0000000D 00000003-00000240-00000240-00000000
CPUID 80000000 80000008-00000000-00000000-00000000
CPUID 80000001 00000000-00000000-00000001-20100000
CPUID 80000002 65746E49-2952286C-726F4320-4D542865
CPUID 80000003 44203229-43206F75-20205550-45202020
CPUID 80000004 30303537-20402020-33392E32-007A4847
CPUID 80000005 00000000-00000000-00000000-00000000
CPUID 80000006 00000000-00000000-0C006040-00000000
CPUID 80000007 00000000-00000000-00000000-00000000
CPUID 80000008 00003024-00000000-00000000-00000000

MSR Registers:
MSR 00000017 0400-0000-A984-8B25 [PlatID = 0]
MSR 0000001B 0000-0000-FEE0-0900
MSR 0000002A 0000-0000-42C8-0000
MSR 0000008B 0000-0A07-0000-0000
MSR 000000CD 0000-0000-8000-0800
MSR 000000CE 0016-0B25-4646-0712
MSR 000000E7 0000-00AE-6B7F-18E3
MSR 000000E8 0000-00A2-E59D-1002
MSR 000000EE 0000-0000-8679-0300
MSR 0000011E 0000-0000-BE70-2119
MSR 00000198 0616-0B25-0600-0B25
MSR 00000199 0000-0000-0000-0B25
MSR 0000019A 0000-0000-0000-0002
MSR 0000019B 0000-0000-0000-0000
MSR 0000019C 0000-0000-883D-0000
MSR 0000019D 0000-0000-0000-0616
MSR 000001A0 0000-0040-6A97-2489
MSR 00000480 005A-0800-0000-000D
MSR 00000481 0000-003F-0000-0016
MSR 00000482 F7F9-FFFE-0401-E172
MSR 00000483 0003-FFFF-0003-6DFF
MSR 00000484 0000-3FFF-0000-11FF
MSR 00000485 0000-0000-0004-03C0
MSR 00000486 0000-0000-8000-0021
MSR 00000487 0000-0000-FFFF-FFFF
MSR 00000488 0000-0000-0000-2000
MSR 00000489 0000-0000-0004-27FF
MSR 0000048A 0000-0000-0000-002C
MSR 0000048B 0000-0041-0000-0000


--------[ Carte mère ]--------------------------------------------------------------------------------------------------

Propriétés de la carte mère:
Identifiant de la carte mère 64-0100-009999-00101111-121809-Eaglelake$1AAAA000_BIOS DATE: 12/18/09 16:16:08 VER: 08.00.15
Nom de la carte mère Dell Vostro 230

Propriétés du bus principal:
Type du bus Intel AGTL+
Largeur du bus 64 bits
Fréquence réelle 267 MHz (QDR)
Fréquence effective 1067 MHz
Bande passante 8532 Mo/s

Propriétés du bus mémoire:
Type du bus Dual DDR3 SDRAM
Largeur du bus 128 bits
Rapport DRAM:FSB 16:8
Fréquence réelle 533 MHz (DDR)
Fréquence effective 1067 MHz
Bande passante [ TRIAL VERSION ] Mo/s

Propriétés du bus chipset:
Type du bus Intel Direct Media Interface

Fabricant de la carte mère:
Nom de l'entreprise Dell Computer Corporation
Information sur le produit http://www.dell.com
Télécharger le Bios http://support.dell.com
Mise à jour du pilote http://www.aida64.com/driver-updates
Mises à jour du Bios http://www.aida64.com/bios-updates


--------[ Mémoire ]-----------------------------------------------------------------------------------------------------

Mémoire physique:
Total [ TRIAL VERSION ]
Utilisé [ TRIAL VERSION ]
Disponible 2247 Mo
Utilisation [ TRIAL VERSION ]

Zone de swap:
Total 6072 Mo
Utilisé 964 Mo
Disponible 5108 Mo
Utilisation 16 %

Mémoire virtuelle:
Total 9109 Mo
Utilisé 1754 Mo
Disponible 7355 Mo
Utilisation 19 %

Fichier de pagination:
Fichier de pagination C:\pagefile.sys
Taille courante 3036 Mo
Utilisation courante / maximale 125 Mo / 128 Mo
Utilisation 4 %

Physical Address Extension (PAE):
Supporté par le système d'exploitation Oui
Supporté par le processeur Oui
Active Oui


--------[ SPD ]---------------------------------------------------------------------------------------------------------

[ DIMM1: Nanya NT2GC64B8HC0NF-CG ]

Propriétés du module mémoire:
Nom du module Nanya NT2GC64B8HC0NF-CG
N° de série 8BFA2C64h (1680669323)
Date de fabrication Semaine 17 / 2010
Taille du module 2 Go (2 ranks, 8 banks)
Type du module Unbuffered DIMM
Type de mémoire DDR3 SDRAM
Vitesse de mémoire DDR3-1333 (667 MHz)
Largeur du module 64 bit
Voltage du module 1.5 V
Méthode de détection d'erreurs Aucun(e)
Fabricant de la DRAM Nanya

Performances mémoire:
@ 666 MHz 9-9-9-24 (CL-RCD-RP-RAS) / 33-74-4-10-5-5-20 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 609 MHz 8-8-8-22 (CL-RCD-RP-RAS) / 30-68-4-10-5-5-19 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 533 MHz 7-7-7-20 (CL-RCD-RP-RAS) / 27-59-4-8-4-4-16 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 457 MHz 6-6-6-17 (CL-RCD-RP-RAS) / 23-51-3-7-4-4-14 (RC-RFC-RRD-WR-WTR-RTP-FAW)

Fonctionnalités du module mémoire:
Auto Self Refresh Géré
Extended Temperature Range Géré
Extended Temperature Refresh Rate Non géré
On-Die Thermal Sensor Readout Non géré

Fabricant du module mémoire:
Nom de l'entreprise Nanya Technology Corp.
Information sur le produit http://www.nanya.com/index.aspx

[ DIMM3: [ TRIAL VERSION ] ]

Propriétés du module mémoire:
Nom du module [ TRIAL VERSION ]
N° de série 60F52C61h (1630336352)
Date de fabrication Semaine 17 / 2010
Taille du module 2 Go (2 ranks, 8 banks)
Type du module [ TRIAL VERSION ]
Type de mémoire DDR3 SDRAM
Vitesse de mémoire DDR3-1333 (667 MHz)
Largeur du module 64 bit
Voltage du module 1.5 V
Méthode de détection d'erreurs Aucun(e)
Fabricant de la DRAM Nanya

Performances mémoire:
@ 666 MHz 9-9-9-24 (CL-RCD-RP-RAS) / 33-74-4-10-5-5-20 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 609 MHz 8-8-8-22 (CL-RCD-RP-RAS) / 30-68-4-10-5-5-19 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 533 MHz 7-7-7-20 (CL-RCD-RP-RAS) / 27-59-4-8-4-4-16 (RC-RFC-RRD-WR-WTR-RTP-FAW)
@ 457 MHz 6-6-6-17 (CL-RCD-RP-RAS) / 23-51-3-7-4-4-14 (RC-RFC-RRD-WR-WTR-RTP-FAW)

Fonctionnalités du module mémoire:
Auto Self Refresh Géré
Extended Temperature Range Géré
Extended Temperature Refresh Rate Non géré
On-Die Thermal Sensor Readout Non géré

Fabricant du module mémoire:
Nom de l'entreprise Nanya Technology Corp.
Information sur le produit http://www.nanya.com/index.aspx


--------[ Chipset ]-----------------------------------------------------------------------------------------------------

[ North Bridge: Intel Eaglelake G41 ]

Propriétés du chipset North Bridge:
North Bridge Intel Eaglelake G41
Révision / Stepping 03 / A3
Forme du composant 1254 Pin FC-BGA
Taille du composant 34 mm x 34 mm
Technologie utilisée 65 nm
Voltage au coeur 1.125 V
TDP 25 W
In-Order Queue Depth 12

Contrôleur mémoire:
Type Dual Channel (128 bits)
Mode actif Dual Channel (128 bits)

Performances mémoire:
CAS Latency (CL) 7T
RAS To CAS Delay (tRCD) 7T
RAS Precharge (tRP) 7T
RAS Active Time (tRAS) 20T
Row Refresh Cycle Time (tRFC) 60T
Command Rate (CR) 1T
RAS To RAS Delay (tRRD) 4T
Write Recovery Time (tWR) 18T
Read To Read Delay (tRTR) Same Rank: 4T, Different Rank: 9T
Read To Write Delay (tRTW) 8T
Write To Read Delay (tWTR) Same Rank: 14T, Different Rank: 8T
Write To Write Delay (tWTW) Same Rank: 4T, Different Rank: 7T
Read To Precharge Delay (tRTP) 6T
Write To Precharge Delay (tWTP) 18T
Precharge To Precharge Delay (tPTP) 1T
Refresh Period (tREF) 4171T
DRAM Read ODT 3T
DRAM Write ODT 7T
MCH Read ODT 8T
Performance Level 5
Read Delay Phase Adjust Neutral
DIMM1 Clock Fine Delay 2T
DIMM2 Clock Fine Delay 6T
DIMM3 Clock Fine Delay 2T
DIMM4 Clock Fine Delay 1T

Correction d'erreurs:
ECC Non géré
ChipKill ECC Non géré
RAID Non géré
ECC Scrubbing Non géré

Slots mémoire:
Slot DRAM nº1 2 Go (DDR3-1333 DDR3 SDRAM)
Slot DRAM nº2 2 Go (DDR3-1333 DDR3 SDRAM)

Contrôleur graphique intégré:
Type du contrôleur graphique Intel GMA X4500
État du contrôleur graphique Activé
Taille du frame buffer graphique 32 Mo

Fabricant du chipset:
Nom de l'entreprise Intel Corporation
Information sur le produit http://www.intel.com/products/chipsets
Télécharger le pilote http://support.intel.com/support/chipsets
Mises à jour du Bios http://www.aida64.com/bios-updates
Mise à jour du pilote http://www.aida64.com/driver-updates

[ South Bridge: [ TRIAL VERSION ] ]

Propriétés du chipset South Bridge:
South Bridge [ TRIAL VERSION ]
Révision / Stepping E1 / A1
Forme du composant 652 Pin mBGA
Taille du composant 31 mm x 31 mm
Technologie utilisée 130 nm
Voltage au coeur 1.05 V
TDP 3.3 W

High Definition Audio:
Nom du codec Realtek ALC662
Identifiant du codec 10EC0662h / 1028043Eh
Révision du codec 1001h
Type du codec Audio

Contrôleur PCI Express:
PCI-E 1.0 x1 port #1 Vide
PCI-E 1.0 x1 port #3 Utilisé @ x1 (Broadcom NetLink BCM57788 PCI-E Gigabit Ethernet Controller)

Fabricant du chipset:
Nom de l'entreprise Intel Corporation
Information sur le produit http://www.intel.com/products/chipsets
Télécharger le pilote http://support.intel.com/support/chipsets
Mises à jour du Bios http://www.aida64.com/bios-updates
Mise à jour du pilote http://www.aida64.com/driver-updates


--------[ BIOS ]--------------------------------------------------------------------------------------------------------

Propriétés du Bios:
Type de Bios AMI
Version du Bios 1.0.0
Date du Bios système 12/18/09
Date du Bios vidéo 08/19/09

Fabricant du Bios:
Nom de l'entreprise American Megatrends Inc.
Information sur le produit http://www.ami.com/amibios
Mises à jour du Bios http://www.aida64.com/bios-updates


--------[ ACPI ]--------------------------------------------------------------------------------------------------------

[ APIC: Multiple APIC Description Table ]

Propriétés de la table ACPI:
Signature ACPI APIC
Table de description Multiple APIC Description Table
Adresse Mémoire BDD30390h
Longueur de la table 108 octets
OEM ID DELL
OEM Table ID APIC1616
OEM Revision 20091218h
Creator ID MSFT
Creator Revision 00000097h
Local APIC Address FEE00000h

Processor Local APIC:
ACPI Processor ID 01h
APIC ID 00h
État Activé

Processor Local APIC:
ACPI Processor ID 02h
APIC ID 01h
État Activé

Processor Local APIC:
ACPI Processor ID 03h
APIC ID 82h
État Désactivé(e)

Processor Local APIC:
ACPI Processor ID 04h
APIC ID 83h
État Désactivé(e)

I/O APIC:
I/O APIC ID 02h
I/O APIC Address FEC00000h
Global System Interrupt Base 00000000h

Interrupt Source Override:
Bus ISA
Source IRQ0
Global System Interrupt 00000002h
Polarité Conforms to the specifications of the bus
Trigger Mode Conforms to the specifications of the bus

Interrupt Source Override:
Bus ISA
Source
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
help me !!!
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
Si tu as changé l'OS et que ca freeze encore c'est certainement une cause matérielle. Il faut tester les composants un à un ... Si tu as un deuxième disque dur dispo, installe Windows dessus, si ca ne freeze pas c'est que ton HDD est defectueux sinon c'est autre chose.
C'est ca ton PC ? http://www.dell.com/sn/entreprise/p/vostro-230/pd
Le plus facile a changer c'est le HDD, la RAM et la carte graphique. Pour ton processeur, ca va être dur de trouver du LGA 775 ...
A ce que je vois tu n'as pas de carte graphique, il te suffit d'en mettre une c'est un port PCIe x16
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
Il y a 3 moi j'avais vu que c'était un pentium4 avec 2Go RAM en DDR2 mais là je vois 4G en DDR3 et un intel core2duo ... O_o
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
oui j'ai changer de tour c'est bien une dell vostro 230 je n'ai qu'un DDE je ne connaît pas tout les termes informatique tels que : HDD, LGA 775, port PCle x16 etc ... peut tu m'expliquer stp ?!
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
que me conseille tu de faire pour arreté les freeze definitivement ?
0
Merci
J'ai pas tout lue ton poste mais fait ce que je te conseil quand même .Les mise à jours Windows update c'est toujours en premier .

Check si tu as un max de processus ouvert dans gestionnaire de tache et ferme des processus et vérifie ton Uc utilisé et la mémoire depuis le gestionnaire dans l'onglet performance.

Mise à jours Windows update à l'ouverture pc est conseillé aussi désinstalle des application et scan avec AVG free 30 jours(trojan et rootkit scan) et norton power eraser et essaye Advanced SystemCare il fait un excellent boulot .

Les rootkits cache les virus de scan d'antivirus et d'antimalware .AVG va t'arranger ça .
Installe pas deux anti virus en même temps .Installes les et désinstalles les après installe un autre (gratuitement) et garde celui que tu préfères.

Advanced SystemCare est compatible avec tous .
Norton Power eraser va eradiquer les fichiers non de confiance et supprimera tous les problèmes de programme illégal et virus si tu en as sans savoir etc .

Essaye et poste un nouveau message pour me dire que tu ram MieuX .

Réponse ne sont pas gratuite mais combien coûte chaque réponse ?
ILLOGISME est UNE CORRUPTION .
Profil bloqué -
Des fois les gens non pas une fusée à exploiter mais une rabbit .

Il suffit donc de fermer des processus et d'utiliser sont pc intelligemment
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
je vais faire ce que tu ma dit je te tiens au courant prochainement
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
avast c'est bien ou pas comme antivirus ???
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
bon bin il a freezer donc voila
0
Merci
Bonjour,

ne fais pas ce que Mensup te dis.

Norton -> poubelle
Advanced chepakoi -> poubelle

Je commence à croire qu'une infection se cache dans ton ordinateur.

Nous allons réaliser un diagnostic de ton PC :

-> Télécharge ZHPDiag (de Nicolas Coolman)

Si le premier lien ne fonctionne pas, essai celui-ci.

-> Enregistre le sur ton Bureau.

Une fois le téléchargement achevé,

-> Installe et lance ZHPDiag.exe en tant qu'administrateur (clique droit -> exécuter en tant qu'administrateur).

-> Clique sur le tournevis puis sur "Tous" pour cocher toutes les cases des options.

-> Clique sur la loupe pour lancer l'analyse.

/!\ Durant ce laps de temps, n'utilise pas ton ordinateur ! /!\

A la fin de l'analyse,

-> Pour me transmettre ton rapport utilise le site CJoint et copie/colle le lien obtenu en échange.

@+

kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
désolé j'ai mal lu donc voici le rapport :

Rapport de ZHPDiag v2013.3.27.98 par Nicolas Coolman, Update du 27/03/2013
Run by kev at 28/03/2013 23:24:47
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 v18.0
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 733WD
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3036 MB (46% free)
System Restore: Activé (Enable)
System drive C: has 271 GB (90%) free of 298 GB

---\\ Logged in mode
~ Computer Name: PC
~ User Name: kev
~ All Users Names: kev, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\kev\AppData\Roaming\
~ %Desktop% : C:\Users\kev\Desktop\
~ %Favorites% : C:\Users\kev\Favorites\
~ %LocalAppData% : C:\Users\kev\AppData\Local\
~ %StartMenu% : C:\Users\kev\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 271 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ Hard drive, Flash drive, Thumb drive (Free 75 Go of 466 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 06:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.03728C624D05C2F157BBD46F6B7F6EA0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/03/2013 - 23:15:49.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.28/10/2009 - 07:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 00:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5126C5402C730C2A953275D8497A4715] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 18:21:56.) -- C:\Windows\system32\Drivers\ntfs.sys [1210736]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 17:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/7
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/4
~ Mon Bureau (My Desktop) : 1/12
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.2856]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.2864]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.2884]
[MD5.C822B889D1F09173D11121651C250AF0] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.3008]
[MD5.967137445813F7D7F0B7978901265DD2] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [175128] [PID.3024]
[MD5.62524206B1ACA15FFBD53C84EF409C66] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [166424] [PID.3064]
[MD5.700B177369494AB2860EDCE71CA39244] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [268312] [PID.3124]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.4508]
[MD5.997528143F87B012E12E545DD32852F5] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6121984] [PID.3804]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\kev\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\kev\AppData\Roaming\Mozilla\Firefox\Profiles\urd1asam.default\prefs.js
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [kev - urd1asam.default\{1CB94A15-4515-4A88-A296-36DDCA34AF50}] [] RechercherWeb Toolbar v1.0.0 (.WebResultado Toolbar.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: TBSB01555 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
~ BHO: Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: France Toolbar - [HKLM]{8FFA7469-654F-423E-84FE-6A583CB1C284} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: DDE KEVIN (E) - Raccourci.lnk . (...) -- E:\
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
~ IE Control Panel: 1 Legitimates Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 109.0.66.10 109.0.66.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
~ Services: 6 Legitimates Scanned in 00mn 03s



---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
O34 - HKLM BootExecute: (aswBoot.exe /A:"*" /L:"1036" /heur:80 /RA:ask /pup /archives /IA:0 /KBD:2 /dir:"C:\Program Files\AVAST Software\Avast") - File not found
~ BEX: 2 Legitimates Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1046]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1050]
[MD5.EA856F4A46320389D1899B2CAA7BF40F] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [253656]
[MD5.AB3C4A3667AEAD147F175721D8719B78] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [250248]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [116648]
[MD5.00000000000000000000000000000000] [APT] [{A9D1B370-BC06-4C18-A965-8C2E938A7953}] (...) -- E:\Downloads\RegCleaner.exe (.not file.) [0]
~ Scheduled Task: Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
~ Active Setup: 12 Legitimates Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (aswFW) . (.AVAST Software - avast! Filtering TDI driver.) - C:\Windows\system32\drivers\aswFW.sys
~ Drivers: 69 Legitimates Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.02) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Avast Packages - (...) [HKCU] -- Avast Packages
O42 - Logiciel: DriverAgent by eSupport.com - (...) [HKLM] -- DriverAgent.exe
O42 - Logiciel: France Toolbar - (.France Toolbar.) [HKLM] -- France Toolbar
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM] -- PPÖúÊÖ PC°æ
O42 - Logiciel: avast! Internet Security v8.0.1483.0 - (.AVAST Software.) [HKLM] -- avast
~ Logic: 38 Legitimates Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\BabylonToolbar]
[HKCU\Software\DataMngr]
[HKCU\Software\InstallCore]
[HKCU\Software\a53d9dbe534e443]
[HKCU\Software\eSupport.com]
[HKLM\Software\Babylon]
[HKLM\Software\Boxore]
[HKLM\Software\DataMngr]
~ Key Software: 78 Legitimates Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/03/2013 - 16:36:20 - [4,198] ----D C:\Program Files\France Toolbar
O43 - CFD: 24/03/2013 - 17:57:34 - [10,271] ----D C:\Program Files\PPÖúÊÖ
O43 - CFD: 23/03/2013 - 16:59:01 - [0] ----D C:\Program Files\Software
O43 - CFD: 23/03/2013 - 16:27:59 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 23/03/2013 - 16:59:01 - [0] ----D C:\ProgramData\Software
O43 - CFD: 23/03/2013 - 16:27:59 - [0,009] ----D C:\Users\kev\AppData\Roaming\Babylon
O43 - CFD: 24/03/2013 - 17:57:32 - [0] ----D C:\Users\kev\AppData\Roaming\ihelper
O43 - CFD: 26/03/2013 - 16:42:16 - [0,620] ----D C:\Users\kev\AppData\Local\eSupport.com
O43 - CFD: 23/03/2013 - 16:27:59 - [0] ----D C:\Users\kev\AppData\Local\Software
~ Program Folder: 96 Legitimates Scanned in 00mn 03s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E8E79DC1A2D87A942768079D988A329E] - 26/03/2013 - 18:15:52 ---A- . (.Intel(R) Corporation - Intel(R) TVWizard.) -- C:\Windows\System32\TVWSetup.exe [8198680]
O44 - LFC:[MD5.651554E483712B708EDE864D0CA1AA73] - 26/03/2013 - 16:42:01 ---A- . (.Phoenix Technologies - DriverAgent Direct I/O for 32-bit Windows.) -- C:\Windows\System32\Drivers\DrvAgent32.sys [23456]
O44 - LFC:[MD5.FA4B5940B31853ADE67A73026884C8C9] - 23/03/2013 - 23:37:20 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 23/03/2013 - 23:15:49 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.01C47C2ECED034EF6F8C1552A97CFF00] - 23/03/2013 - 17:24:13 ---A- . (...) -- C:\Windows\System32\config.nt [2577]
O44 - LFC:[MD5.0AF7946AD9B2E82058C6421EEC960FCF] - 23/03/2013 - 16:48:02 ---A- . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\System32\ir32_32.dll [197632]
O44 - LFC:[MD5.17A4BE67FB6B9219A802F39C263AC8AC] - 23/03/2013 - 16:48:02 ---A- . (.Radius Inc. - Codec Cinepak®.) -- C:\Windows\System32\iccvid.dll [82944]
O44 - LFC:[MD5.87E3DC1CA13FB122E3A5A4E82C9D47FD] - 23/03/2013 - 16:42:08 ---A- . (.Microsoft - Système de classification COB-AU.) -- C:\Windows\System32\cob-au.rs [40960]
O44 - LFC:[MD5.F172CBC9CA6C8EF360019FAE1070DC76] - 23/03/2013 - 16:42:08 ---A- . (.Microsoft - Système de classification DJCTQ.) -- C:\Windows\System32\djctq.rs [15360]
O44 - LFC:[MD5.D738761869873D9DE0274B912C3324D0] - 23/03/2013 - 16:42:08 ---A- . (.Microsoft - Système de classification FPB.) -- C:\Windows\System32\fpb.rs [46592]
O44 - LFC:[MD5.9B1A0EB5F77468EBBBE5058EC8399854] - 23/03/2013 - 16:42:08 ---A- . (.Microsoft - Système de classification OFLC-NZ.) -- C:\Windows\System32\oflc-nz.rs [45568]
O44 - LFC:[MD5.4E7AFE8E2C72CFBD47228379CC82F661] - 17/03/2013 - 11:49:42 ---A- . (.Z-Com - Wireless LAN Card NDIS 5.1 Driver.) -- C:\Windows\System32\Drivers\WLANUSB.sys [644096]
O44 - LFC:[MD5.657A61979F40D67CA29716149766FFA7] - 07/03/2013 - 00:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [49248]
O44 - LFC:[MD5.EDB0C9BA44B748E420CCA989FD8B826E] - 07/03/2013 - 00:33:24 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [164736]
O44 - LFC:[MD5.7B948E3657BEA62E437BC46CA6EF6012] - 07/03/2013 - 00:11:20 ---A- . (.ALWIL Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdis.sys [12112]
O44 - LFC:[MD5.2E5F7B5D25063C07A39A87D1B1295E35] - 30/11/2012 - 00:21:20 ---A- . (...) -- C:\Windows\System32\locale.nls [420032]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:57:50 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [3]
O44 - LFC:[MD5.933222B19FF3E7EA5F65517EA1F7D57E] - 02/06/2012 - 15:34:21 ---A- . (...) -- C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [3]
O44 - LFC:[MD5.4777284DED1F17C6ADC78FB198550D08] - 06/11/2009 - 16:08:48 ---A- . (...) -- C:\Windows\System32\iglhxs32.vp [47412]
O44 - LFC:[MD5.5036CDB9D5950549ABB2397E610B48B1] - 06/11/2009 - 15:43:16 ---A- . (...) -- C:\Windows\System32\igcompkrng500.bin [439336]
O44 - LFC:[MD5.1BDDEFFD72259E1E9F388C0FC5ED0A9F] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igfcg500m.bin [92284]
O44 - LFC:[MD5.B7CE3863C74EB5DA2F2158432616C9C1] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igkrng500.bin [982224]
O44 - LFC:[MD5.1FB5A3F6EF2C80D0377F539CF592C8A6] - 06/11/2009 - 14:57:42 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-CN.resources [101113]
O44 - LFC:[MD5.5F8736A7478CB5D6DBCBA81E7A5D1ED9] - 06/11/2009 - 14:57:42 ---A- . (...) -- C:\Windows\System32\Gfxres.zh-TW.resources [102229]
O44 - LFC:[MD5.14D16733E9BFE9FCDA114F821D666E3E] - 06/11/2009 - 14:57:40 ---A- . (...) -- C:\Windows\System32\Gfxres.th-TH.resources [187765]
O44 - LFC:[MD5.FCBA6230AAF141D21B1F170A6C40740A] - 06/11/2009 - 14:57:40 ---A- . (...) -- C:\Windows\System32\Gfxres.tr-TR.resources [119326]
O44 - LFC:[MD5.9B7B43257ED01ED1CE3DF44C151883D9] - 06/11/2009 - 14:57:38 ---A- . (...) -- C:\Windows\System32\Gfxres.sv-SE.resources [117526]
O44 - LFC:[MD5.7D8ACC3BBFD31CCF4D54DEC6A14C7E5E] - 06/11/2009 - 14:57:36 ---A- . (...) -- C:\Windows\System32\Gfxres.sk-SK.resources [116230]
O44 - LFC:[MD5.2F48BF3A4C85390D783BF8CE53D5C338] - 06/11/2009 - 14:57:36 ---A- . (...) -- C:\Windows\System32\Gfxres.sl-SI.resources [112529]
O44 - LFC:[MD5.C0A4D8BC3BCA1E032AF8CA7076004F03] - 06/11/2009 - 14:57:34 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-PT.resources [117229]
O44 - LFC:[MD5.3D5D759135DC72C1FA3CB6A9A85E6890] - 06/11/2009 - 14:57:34 ---A- . (...) -- C:\Windows\System32\Gfxres.ru-RU.resources [163583]
O44 - LFC:[MD5.54AB3D614D6A42780555D2E2C62C69E3] - 06/11/2009 - 14:57:32 ---A- . (...) -- C:\Windows\System32\Gfxres.pl-PL.resources [116629]
O44 - LFC:[MD5.E75CED9295449E4832BA75027545799D] - 06/11/2009 - 14:57:32 ---A- . (...) -- C:\Windows\System32\Gfxres.pt-BR.resources [118569]
O44 - LFC:[MD5.A739A50062BE232912AB60F10E19660A] - 06/11/2009 - 14:57:30 ---A- . (...) -- C:\Windows\System32\Gfxres.nl-NL.resources [117762]
O44 - LFC:[MD5.BE8E4AE53971FA0145B2189924203ECA] - 06/11/2009 - 14:57:28 ---A- . (...) -- C:\Windows\System32\Gfxres.ko-KR.resources [121451]
O44 - LFC:[MD5.11FB500A509594C0E003FF85674B8EA2] - 06/11/2009 - 14:57:28 ---A- . (...) -- C:\Windows\System32\Gfxres.nb-NO.resources [113040]
O44 - LFC:[MD5.7A5BA2BAB91DF0C1602AF4A00C0B4612] - 06/11/2009 - 14:57:26 ---A- . (...) -- C:\Windows\System32\Gfxres.it-IT.resources [123747]
O44 - LFC:[MD5.31D92C318AB7D91311766F62B7D8E8F7] - 06/11/2009 - 14:57:26 ---A- . (...) -- C:\Windows\System32\Gfxres.ja-JP.resources [134602]
O44 - LFC:[MD5.1D15D27609AFF2C7CAEAE8D701E74F9A] - 06/11/2009 - 14:57:24 ---A- . (...) -- C:\Windows\System32\Gfxres.he-IL.resources [131904]
O44 - LFC:[MD5.55DBF4CFAC3549BA7733E0EE025589FB] - 06/11/2009 - 14:57:24 ---A- . (...) -- C:\Windows\System32\Gfxres.hu-HU.resources [117737]
O44 - LFC:[MD5.B6D1B07002AF7BEE68145C7345E8707E] - 06/11/2009 - 14:57:22 ---A- . (...) -- C:\Windows\System32\Gfxres.fr-FR.resources [118949]
O44 - LFC:[MD5.46F5D8F17E72BD8310FB670F71528DBC] - 06/11/2009 - 14:57:20 ---A- . (...) -- C:\Windows\System32\Gfxres.es-ES.resources [121132]
O44 - LFC:[MD5.A9C794BEB7EE77CAB6C98375E979B6D4] - 06/11/2009 - 14:57:20 ---A- . (...) -- C:\Windows\System32\Gfxres.fi-FI.resources [116868]
O44 - LFC:[MD5.CB3AE8568F85F22E5558BF40A1063DBE] - 06/11/2009 - 14:57:18 ---A- . (...) -- C:\Windows\System32\Gfxres.de-DE.resources [120882]
O44 - LFC:[MD5.A5E6C173DF1CC3606F81DC3C1246ED8F] - 06/11/2009 - 14:57:18 ---A- . (...) -- C:\Windows\System32\Gfxres.el-GR.resources [176490]
O44 - LFC:[MD5.F199DAD26596A6084C44C9801F71CC31] - 06/11/2009 - 14:57:16 ---A- . (...) -- C:\Windows\System32\Gfxres.cs-CZ.resources [116944]
O44 - LFC:[MD5.6E63F11DF2D5F6ACB0C47E59E407943D] - 06/11/2009 - 14:57:16 ---A- . (...) -- C:\Windows\System32\Gfxres.da-DK.resources [112444]
O44 - LFC:[MD5.11CC082552A4AEE9871B5AF89729D848] - 06/11/2009 - 14:57:14 ---A- . (...) -- C:\Windows\System32\Gfxres.ar-SA.resources [138088]
O44 - LFC:[MD5.A966BD9DB72E40F673DF0470284C5C72] - 06/11/2009 - 14:56:58 ---A- . (...) -- C:\Windows\System32\Gfxres.en-US.resources [108405]
O44 - LFC:[MD5.FFEEA5B2E928BE0ED618721664149E5F] - 06/11/2009 - 14:53:40 ---A- . (...) -- C:\Windows\System32\IGFXDEVLib.dll [4096]
O44 - LFC:[MD5.FFB49EE58EF3E271AA25F847D3299047] - 06/11/2009 - 14:52:04 ---A- . (...) -- C:\Windows\System32\GfxUI.exe.config [151]
O44 - LFC:[MD5.B5FA6F410658A8E914CFCBCFAA9F0AAE] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhcp32.dll [143360]
O44 - LFC:[MD5.91706163801AB8F3A3ECE7D59B758396] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhsip32.dll [208896]
O44 - LFC:[MD5.99AF886F548DFA1AEC9868A8BF0F74FC] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.cpa [1921265]
O44 - LFC:[MD5.7FEF5563D091D8A44B96DD4EBE0350AA] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.vp [1090]
O44 - LFC:[MD5.A16E966DEBE65033E703CA9514753E11] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxc32.vp [60226]
O44 - LFC:[MD5.251D22DE1DF611739E4D0C7BAB2E80D6] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxg32.vp [60254]
O44 - LFC:[MD5.CB4DCAF11675F52D39035BCEE14ABA77] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxo32.vp [60015]
O44 - LFC:[MD5.DA15C16EE66BAF7E6F555CE2E1CF95CA] - 15/08/2009 - 11:26:42 R--A- . (...) -- C:\Windows\csup.txt [13]
O44 - LFC:[MD5.4B1F147E39C40CCA9B46A2CB27C320F8] - 15/08/2009 - 11:26:41 R-HA- . (...) -- C:\Windows\DELL_version [25]
~ Files: 462 Legitimates Scanned in 00mn 07s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.BFD18DE4C0E5FD892F187A3387505FC1] - 27/03/2013 - 15:50:40 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-56B29A08.pf
O45 - LFCP:[MD5.EED06F98628306EA597612B60F3A07D9] - 27/03/2013 - 19:58:53 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf
O45 - LFCP:[MD5.00310205E4677859D57516A684330EEF] - 27/03/2013 - 19:58:54 ---A- - C:\Windows\Prefetch\ROUTE.EXE-5E3D06CB.pf
O45 - LFCP:[MD5.9ED698F86326BF56E86605826F55F42C] - 27/03/2013 - 20:05:16 ---A- - C:\Windows\Prefetch\UPDATER.EXE-E6080E6E.pf
O45 - LFCP:[MD5.D27191ECA284C45C9BCB61BF51AF15AD] - 28/03/2013 - 17:22:47 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf
O45 - LFCP:[MD5.5CDA7B54B9154C6DA2C4EA2F4767A9FF] - 28/03/2013 - 17:38:51 ---A- - C:\Windows\Prefetch\WRAR420.EXE-F1E968F9.pf
O45 - LFCP:[MD5.6305A90BF5DF6A2070EA319D30C8CA9A] - 28/03/2013 - 17:41:07 ---A- - C:\Windows\Prefetch\BCDEDIT.EXE-10FC5AAB.pf
O45 - LFCP:[MD5.65BF8898A58A85DE23AF4BFD11B8404D] - 28/03/2013 - 18:00:41 ---A- - C:\Windows\Prefetch\MSDT.EXE-09841468.pf
O45 - LFCP:[MD5.F91004F18A2B1B8E41AF373D3BB7089A] - 28/03/2013 - 18:04:54 ---A- - C:\Windows\Prefetch\IBOOTY.EXE-F7EA588E.pf
O45 - LFCP:[MD5.5ECAEA56C9985835B2D8947D24DD6AD1] - 28/03/2013 - 18:15:05 ---A- - C:\Windows\Prefetch\S-IRECOVERY.EXE-14EE8463.pf
O45 - LFCP:[MD5.568D8AB7F29A0908983D16BD7B81EA03] - 28/03/2013 - 23:06:50 ---A- - C:\Windows\Prefetch\UNINS000.EXE-5A9D28AA.pf
O45 - LFCP:[MD5.0B74E44C4469C24F9233A631A7EE1884] - 28/03/2013 - 23:07:05 ---A- - C:\Windows\Prefetch\UNINST.EXE-0867DC84.pf
O45 - LFCP:[MD5.9887DA2B58E0653693D7CD4B00A03A01] - 28/03/2013 - 23:07:11 ---A- - C:\Windows\Prefetch\NS1D49.TMP-D3F38101.pf
O45 - LFCP:[MD5.3445606EDBFE848928122FAC9D61E301] - 28/03/2013 - 23:07:14 ---A- - C:\Windows\Prefetch\AU_.EXE-08939C2B.pf
O45 - LFCP:[MD5.51D40531F6D12D8B2764A34112448AB6] - 28/03/2013 - 23:07:37 ---A- - C:\Windows\Prefetch\UNINS000.EXE-CC281222.pf
O45 - LFCP:[MD5.39616E8EDA344754220FB55C4228C582] - 28/03/2013 - 23:07:44 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-8112AB50.pf
O45 - LFCP:[MD5.F1A63AECE95FD51DDB12BA12FE0D2A6E] - 28/03/2013 - 23:10:43 ---A- - C:\Windows\Prefetch\SETUP.OVR-56BCD126.pf
O45 - LFCP:[MD5.A20F1BF89BA8F39DA300985B9F9F3667] - 28/03/2013 - 23:10:54 ---A- - C:\Windows\Prefetch\AVBUGREPORT.EXE-3B5B9E84.pf
~ Prefetcher: 119 Legitimates Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
~ LSA: 8 Legitimates Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
~ CBS: 13 Legitimates Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 3 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 25/03/2013 - 17:58:35 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_eaLcQTh17JiLGZw [2052]
O61 - LFC: 25/03/2013 - 17:58:35 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_fLmrzaNbWVfvh3a [2052]
O61 - LFC: 25/03/2013 - 17:58:41 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_R1v7EU4JlYfrfmo [16400]
O61 - LFC: 25/03/2013 - 17:59:14 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_3Dif37PL2I35gyu [41000]
O61 - LFC: 25/03/2013 - 19:54:40 ---A- C:\Users\kev\AppData\Local\Temp\nsuE733.exe [53834]
O61 - LFC: 25/03/2013 - 20:40:48 ---A- C:\Users\kev\AppData\Local\Temp\~nsu.tmp\Au_.exe [149872]
O61 - LFC: 26/03/2013 - 15:31:25 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_3jTGac0Du4BfImC [4]
O61 - LFC: 26/03/2013 - 15:31:26 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_XsCQok1NQFu00FW [4]
O61 - LFC: 26/03/2013 - 15:31:28 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_ZBhRvr5PR2rRgPO [12304]
O61 - LFC: 26/03/2013 - 15:32:02 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_sQIb8XMAdtlNYf7 [12304]
O61 - LFC: 26/03/2013 - 16:41:47 ---A- C:\Users\kev\AppData\Local\eSupport.com\biosagentplus_796.exe [630360]
O61 - LFC: 26/03/2013 - 16:42:16 ---A- C:\Users\kev\AppData\Local\eSupport.com\launcher32.dll [19456]
O61 - LFC: 26/03/2013 - 17:25:45 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_Ipuje2zQwOP6Fb3 [2052]
O61 - LFC: 26/03/2013 - 17:25:45 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_pp6C3P6uzd1z71M [2052]
O61 - LFC: 26/03/2013 - 17:25:53 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_pYJvDNLbSIQc491 [16400]
O61 - LFC: 26/03/2013 - 17:26:24 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_vtFcbV9cMKLh3qa [69700]
O61 - LFC: 26/03/2013 - 23:40:13 --HA- C:\Users\kev\AppData\Local\IconCache.db [2422137]
O61 - LFC: 27/03/2013 - 15:51:49 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_yGFryVciI4XH4Bz [2052]
O61 - LFC: 27/03/2013 - 15:51:49 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_yInTA5VyunVlpay [2052]
O61 - LFC: 27/03/2013 - 15:51:54 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_4dfbyqlZCRKuMHo [16400]
O61 - LFC: 27/03/2013 - 15:52:28 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_jGHqo6oPXUz8kLZ [28704]
O61 - LFC: 27/03/2013 - 17:34:45 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_LK9bognuwiDes3x [2056]
O61 - LFC: 27/03/2013 - 19:53:04 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_8byoofYyA1zGhGF [2052]
O61 - LFC: 27/03/2013 - 19:53:04 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_Od7kpIJdZkzRtyC [2052]
O61 - LFC: 27/03/2013 - 19:59:18 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_hY69W9HyqrEIc2J [12304]
O61 - LFC: 27/03/2013 - 19:59:42 --HA- C:\Users\kev\AppData\Local\Temp\etilqs_zAYmqSEXFFptq6B [12304]
O61 - LFC: 28/03/2013 - 23:03:52 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\fr-FR-3-0.bdic [1074744]
O61 - LFC: 28/03/2013 - 23:09:49 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [270497]
O61 - LFC: 28/03/2013 - 23:09:49 ---A- C:\Users\kev\AppData\Local\Temp\CRX_75DAF8CB7768\crl-set [842]
O61 - LFC: 28/03/2013 - 23:09:49 ---A- C:\Users\kev\AppData\Local\Temp\CRX_75DAF8CB7768\manifest.json [34]
O61 - LFC: 28/03/2013 - 23:25:12 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Local State [26228]
~ Files: 364 Legitimates Scanned in 00mn 04s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 25/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 26/03/2013 - C:\Windows\system32\Drivers\DrvAgent32.sys (DrvAgent32) .(.Phoenix Technologies - DriverAgent Direct I/O for 32-bit Windows.) - LEGACY_DRVAGENT32
O64 - Services: CurCS - 02/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 26/09/2009 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\DRIVERS\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
~ Legacy: 115 Legitimates Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Keys: Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Customized Search) - http://fr-recherche.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
~ Services: 33 Legitimates Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.27C905A32039710713949A7373E0818B] [SPRF][25/03/2013] (...) -- C:\Users\kev\AppData\Local\Temp\nsuE733.exe [53834]
[MD5.70D75223BFCB244D6134611FE08E4C1B] [SPRF][28/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\kev\Desktop\ZHPDiag2.exe [5472488]
~ Files: Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{778B27F0-3A9D-4DBB-9F58-077F7F24496D}C:\program files\ppöúêö\ihelper.exe" | In - Private - P6 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
O87 - FAEL: "UDP Query User{07DCE1FF-AA7A-4E69-AC42-D6FFAD181DA5}C:\program files\ppöúêö\ihelper.exe" | In - Private - P17 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
~ Firewall: 177 Legitimates Scanned in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11324 - (27/03/2013)
Clés trouvées (Keys found) : 88
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 7
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware. BullseyeToolbar
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils.1] =>Toolbar.Agent
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook] =>Toolbar.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Boxore] =>Adware.Boxore
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\TbHelper.TbDownloadManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbDownloadManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555.3] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{CA3EB689-8F09-4026-AA10-B9534C691CE0} =>Adware.SocialSkinz
C:\Program Files\France Toolbar =>Toolbar.Agent
C:\Program Files\Software =>Adware.Boxore
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Software =>Adware.Boxore
C:\Users\kev\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\kev\AppData\Local\Software =>Adware.Boxore
C:\Users\kev\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
~ Additionnel: Scanned in 00mn 09s



---\\ Product Upgrade Codes (O90)
~ Update Products: 12 Legitimates Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:dllName="BrowserProtect.dll"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:exeName="BrowserProtect.exe"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:folderName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:serviceName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 23/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 0 | (AIDA64Driver) . (...) - C:\Program Files\AIDA64 Extreme Edition\kerneld.x32
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 07/03/2013 136912 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Auto 23/03/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 23/03/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Demand 20/02/2013 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 05/01/2013 115760 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 00s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by kev at 28/03/2013 23:25:53

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys
1 ntkrnlpa!IofCallDriver[0x82845738] => \Device\Harddisk0\DR0[0x85D442E0]
kernel: MBR read successfully
user & kernel MBR OK
~ MBR: 13 Legitimates Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by kev at 28/03/2013 23:25:55

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (776 lines in 01mn 07s)(0)
Utilisateur anonyme -
Bonjour,

as-tu tout cocher au tournevis et lancé en tant qu'administrateur ? C'est très important.

Je te demanderais donc de recommencer stp.

@+
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
voila je viens de recommecer comme demander j'ai lancer un diagnostic simple et le full option

rapport diagnostic simple :

Rapport de ZHPDiag v2013.3.30.114 par Nicolas Coolman, Update du 30/03/2013
Run by kev at 31/03/2013 19:15:35
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 v18.0
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 733WD
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3036 MB (50% free)
System Restore: Activé (Enable)
System drive C: has 271 GB (90%) free of 298 GB

---\\ Logged in mode
~ Computer Name: PC
~ User Name: kev
~ All Users Names: kev, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\kev\AppData\Roaming\
~ %Desktop% : C:\Users\kev\Desktop\
~ %Favorites% : C:\Users\kev\Favorites\
~ %LocalAppData% : C:\Users\kev\AppData\Local\
~ %StartMenu% : C:\Users\kev\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 271 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 06:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.03728C624D05C2F157BBD46F6B7F6EA0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/03/2013 - 23:15:49.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.28/10/2009 - 07:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 00:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5126C5402C730C2A953275D8497A4715] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 18:21:56.) -- C:\Windows\system32\Drivers\ntfs.sys [1210736]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 17:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/7
~ Mes Videos (My Videos) : 1/2
~ Mes Favoris (My Favorites) : 1/52
~ Mes Documents (My Documents) : 1/8
~ Mon Bureau (My Desktop) : 1/25
~ Menu demarrer (Programs) : 1/50
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.2808]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.2844]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.2928]
[MD5.C822B889D1F09173D11121651C250AF0] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.2940]
[MD5.967137445813F7D7F0B7978901265DD2] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [175128] [PID.2956]
[MD5.700B177369494AB2860EDCE71CA39244] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [268312] [PID.3004]
[MD5.62524206B1ACA15FFBD53C84EF409C66] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [166424] [PID.3032]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.1600]
[MD5.0051240D50ABE7922727B1E3385DF512] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6264832] [PID.6040]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\kev\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\kev\AppData\Roaming\Mozilla\Firefox\Profiles\urd1asam.default\prefs.js
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [kev - urd1asam.default\{1CB94A15-4515-4A88-A296-36DDCA34AF50}] [] RechercherWeb Toolbar v1.0.0 (.WebResultado Toolbar.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: TBSB01555 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
~ BHO: Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: France Toolbar - [HKLM]{8FFA7469-654F-423E-84FE-6A583CB1C284} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: DDE KEVIN (E) - Raccourci.lnk - Clé orpheline
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
~ IE Control Panel: 1 Legitimates Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
~ Services: 6 Legitimates Scanned in 00mn 02s



---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [{A9D1B370-BC06-4C18-A965-8C2E938A7953}] (...) -- E:\Downloads\RegCleaner.exe (.not file.) [0]
~ Scheduled Task: 20 Legitimates Scanned in 00mn 01s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
~ Active Setup: 12 Legitimates Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (aswFW) . (.AVAST Software - avast! Filtering TDI driver.) - C:\Windows\system32\drivers\aswFW.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
~ Drivers: 69 Legitimates Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.02) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Avast Packages - (...) [HKCU] -- Avast Packages
O42 - Logiciel: France Toolbar - (.France Toolbar.) [HKLM] -- France Toolbar
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM] -- PPÖúÊÖ PC°æ
O42 - Logiciel: avast! Internet Security v8.0.1483.0 - (.AVAST Software.) [HKLM] -- avast
~ Logic: 38 Legitimates Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\BabylonToolbar]
[HKCU\Software\DataMngr]
[HKCU\Software\InstallCore]
[HKCU\Software\a53d9dbe534e443]
[HKLM\Software\Babylon]
[HKLM\Software\Boxore]
[HKLM\Software\DataMngr]
~ Key Software: 78 Legitimates Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/03/2013 - 17:36:20 - [4,198] ----D C:\Program Files\France Toolbar
O43 - CFD: 24/03/2013 - 18:57:34 - [10,271] ----D C:\Program Files\PPÖúÊÖ
O43 - CFD: 23/03/2013 - 17:59:01 - [0] ----D C:\Program Files\Software
O43 - CFD: 23/03/2013 - 17:27:59 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 23/03/2013 - 17:59:01 - [0] ----D C:\ProgramData\Software
O43 - CFD: 23/03/2013 - 17:27:59 - [0,009] ----D C:\Users\kev\AppData\Roaming\Babylon
O43 - CFD: 24/03/2013 - 18:57:32 - [0] ----D C:\Users\kev\AppData\Roaming\ihelper
O43 - CFD: 23/03/2013 - 17:27:59 - [0] ----D C:\Users\kev\AppData\Local\Software
~ Program Folder: 96 Legitimates Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E8E79DC1A2D87A942768079D988A329E] - 26/03/2013 - 18:15:52 ---A- . (.Intel(R) Corporation - Intel(R) TVWizard.) -- C:\Windows\System32\TVWSetup.exe [8198680]
O44 - LFC:[MD5.651554E483712B708EDE864D0CA1AA73] - 26/03/2013 - 16:42:01 ---A- . (.Phoenix Technologies - DriverAgent Direct I/O for 32-bit Windows.) -- C:\Windows\System32\Drivers\DrvAgent32.sys [23456]
O44 - LFC:[MD5.FA4B5940B31853ADE67A73026884C8C9] - 23/03/2013 - 23:37:20 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 23/03/2013 - 23:15:49 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.0AF7946AD9B2E82058C6421EEC960FCF] - 23/03/2013 - 16:48:02 ---A- . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\System32\ir32_32.dll [197632]
O44 - LFC:[MD5.4E7AFE8E2C72CFBD47228379CC82F661] - 17/03/2013 - 11:49:42 ---A- . (.Z-Com - Wireless LAN Card NDIS 5.1 Driver.) -- C:\Windows\System32\Drivers\WLANUSB.sys [644096]
O44 - LFC:[MD5.2E5F7B5D25063C07A39A87D1B1295E35] - 30/11/2012 - 00:21:20 ---A- . (...) -- C:\Windows\System32\locale.nls [420032]
O44 - LFC:[MD5.4777284DED1F17C6ADC78FB198550D08] - 06/11/2009 - 16:08:48 ---A- . (...) -- C:\Windows\System32\iglhxs32.vp [47412]
O44 - LFC:[MD5.5036CDB9D5950549ABB2397E610B48B1] - 06/11/2009 - 15:43:16 ---A- . (...) -- C:\Windows\System32\igcompkrng500.bin [439336]
O44 - LFC:[MD5.1BDDEFFD72259E1E9F388C0FC5ED0A9F] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igfcg500m.bin [92284]
O44 - LFC:[MD5.B7CE3863C74EB5DA2F2158432616C9C1] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igkrng500.bin [982224]
O44 - LFC:[MD5.FFEEA5B2E928BE0ED618721664149E5F] - 06/11/2009 - 14:53:40 ---A- . (...) -- C:\Windows\System32\IGFXDEVLib.dll [4096]
O44 - LFC:[MD5.FFB49EE58EF3E271AA25F847D3299047] - 06/11/2009 - 14:52:04 ---A- . (...) -- C:\Windows\System32\GfxUI.exe.config [151]
O44 - LFC:[MD5.B5FA6F410658A8E914CFCBCFAA9F0AAE] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhcp32.dll [143360]
O44 - LFC:[MD5.91706163801AB8F3A3ECE7D59B758396] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhsip32.dll [208896]
O44 - LFC:[MD5.99AF886F548DFA1AEC9868A8BF0F74FC] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.cpa [1921265]
O44 - LFC:[MD5.7FEF5563D091D8A44B96DD4EBE0350AA] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.vp [1090]
O44 - LFC:[MD5.A16E966DEBE65033E703CA9514753E11] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxc32.vp [60226]
O44 - LFC:[MD5.251D22DE1DF611739E4D0C7BAB2E80D6] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxg32.vp [60254]
O44 - LFC:[MD5.CB4DCAF11675F52D39035BCEE14ABA77] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxo32.vp [60015]
O44 - LFC:[MD5.DA15C16EE66BAF7E6F555CE2E1CF95CA] - 15/08/2009 - 11:26:42 R--A- . (...) -- C:\Windows\csup.txt [13]
O44 - LFC:[MD5.4B1F147E39C40CCA9B46A2CB27C320F8] - 15/08/2009 - 11:26:41 R-HA- . (...) -- C:\Windows\DELL_version [25]
~ Files: 463 Legitimates Scanned in 00mn 01s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.EED06F98628306EA597612B60F3A07D9] - 27/03/2013 - 19:58:53 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf
O45 - LFCP:[MD5.00310205E4677859D57516A684330EEF] - 27/03/2013 - 19:58:54 ---A- - C:\Windows\Prefetch\ROUTE.EXE-5E3D06CB.pf
O45 - LFCP:[MD5.5CDA7B54B9154C6DA2C4EA2F4767A9FF] - 28/03/2013 - 17:38:51 ---A- - C:\Windows\Prefetch\WRAR420.EXE-F1E968F9.pf
O45 - LFCP:[MD5.6305A90BF5DF6A2070EA319D30C8CA9A] - 28/03/2013 - 17:41:07 ---A- - C:\Windows\Prefetch\BCDEDIT.EXE-10FC5AAB.pf
O45 - LFCP:[MD5.65BF8898A58A85DE23AF4BFD11B8404D] - 28/03/2013 - 18:00:41 ---A- - C:\Windows\Prefetch\MSDT.EXE-09841468.pf
O45 - LFCP:[MD5.F91004F18A2B1B8E41AF373D3BB7089A] - 28/03/2013 - 18:04:54 ---A- - C:\Windows\Prefetch\IBOOTY.EXE-F7EA588E.pf
O45 - LFCP:[MD5.5ECAEA56C9985835B2D8947D24DD6AD1] - 28/03/2013 - 18:15:05 ---A- - C:\Windows\Prefetch\S-IRECOVERY.EXE-14EE8463.pf
O45 - LFCP:[MD5.568D8AB7F29A0908983D16BD7B81EA03] - 28/03/2013 - 23:06:50 ---A- - C:\Windows\Prefetch\UNINS000.EXE-5A9D28AA.pf
O45 - LFCP:[MD5.0B74E44C4469C24F9233A631A7EE1884] - 28/03/2013 - 23:07:05 ---A- - C:\Windows\Prefetch\UNINST.EXE-0867DC84.pf
O45 - LFCP:[MD5.9887DA2B58E0653693D7CD4B00A03A01] - 28/03/2013 - 23:07:11 ---A- - C:\Windows\Prefetch\NS1D49.TMP-D3F38101.pf
O45 - LFCP:[MD5.3445606EDBFE848928122FAC9D61E301] - 28/03/2013 - 23:07:14 ---A- - C:\Windows\Prefetch\AU_.EXE-08939C2B.pf
O45 - LFCP:[MD5.C583D7F03FE2E1986CDB1EAB38646125] - 31/03/2013 - 18:07:33 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-C444237E.pf
O45 - LFCP:[MD5.0FCCD1C61829A1937B023C869ACAED30] - 31/03/2013 - 18:07:37 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-56B29A08.pf
O45 - LFCP:[MD5.9B273201E46DF9FC1228AE3843CCBA8F] - 31/03/2013 - 18:10:33 ---A- - C:\Windows\Prefetch\UNINS000.EXE-CC281222.pf
O45 - LFCP:[MD5.D95D5DC444E5FD0D55E2D41DC56BBACD] - 31/03/2013 - 18:10:36 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-8112AB50.pf
~ Prefetcher: 132 Legitimates Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
~ LSA: 8 Legitimates Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
~ CBS: 13 Legitimates Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 3 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 28/03/2013 - 23:03:52 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\fr-FR-3-0.bdic [1074744]
O61 - LFC: 28/03/2013 - 23:44:38 --HA- C:\Users\kev\AppData\Local\IconCache.db [2435854]
O61 - LFC: 31/03/2013 - 18:15:31 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [271137]
O61 - LFC: 31/03/2013 - 18:15:37 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Local State [26229]
~ 4 Fichiers temporaires (Temporary files)
~ Files: 141 Legitimates Scanned in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 25/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 26/09/2009 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\DRIVERS\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
~ Legacy: 116 Legitimates Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Keys: Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Customized Search) - http://fr-recherche.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
~ Services: 33 Legitimates Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.27C905A32039710713949A7373E0818B] [SPRF][25/03/2013] (...) -- C:\Users\kev\AppData\Local\Temp\nsuE733.exe [53834]
[MD5.70D75223BFCB244D6134611FE08E4C1B] [SPRF][28/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\kev\Desktop\ZHPDiag2.exe [5472488]
~ Files: Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{778B27F0-3A9D-4DBB-9F58-077F7F24496D}C:\program files\ppöúêö\ihelper.exe" | In - Private - P6 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
O87 - FAEL: "UDP Query User{07DCE1FF-AA7A-4E69-AC42-D6FFAD181DA5}C:\program files\ppöúêö\ihelper.exe" | In - Private - P17 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
~ Firewall: 177 Legitimates Scanned in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11349 - (30/03/2013)
Clés trouvées (Keys found) : 88
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 7
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware. BullseyeToolbar
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils.1] =>Toolbar.Agent
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook] =>Toolbar.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Boxore] =>Adware.Boxore
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\TbHelper.TbDownloadManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbDownloadManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555.3] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{CA3EB689-8F09-4026-AA10-B9534C691CE0} =>Adware.SocialSkinz
C:\Program Files\France Toolbar =>Toolbar.Agent
C:\Program Files\Software =>Adware.Boxore
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Software =>Adware.Boxore
C:\Users\kev\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\kev\AppData\Local\Software =>Adware.Boxore
C:\Users\kev\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
~ Additionnel: Scanned in 00mn 23s



---\\ Product Upgrade Codes (O90)
~ Update Products: 12 Legitimates Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:dllName="BrowserProtect.dll"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:exeName="BrowserProtect.exe"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:folderName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:serviceName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 23/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 0 | (AIDA64Driver) . (...) - C:\Program Files\AIDA64 Extreme Edition\kerneld.x32
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 07/03/2013 136912 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Auto 23/03/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 23/03/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Demand 20/02/2013 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 05/01/2013 115760 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 00s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by kev at 31/03/2013 19:16:26

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys
1 ntkrnlpa!IofCallDriver[0x82848738] => \Device\Harddisk0\DR0[0x85D44648]
kernel: MBR read successfully
user & kernel MBR OK
~ MBR: 26 Legitimates Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by kev at 31/03/2013 19:16:28

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (695 lines in 00mn 53s)(0)


rapport DIAGNOSTIC FULL OPTION :

Rapport de ZHPDiag v2013.3.30.114 par Nicolas Coolman, Update du 30/03/2013
Run by kev at 31/03/2013 19:13:46
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 v18.0
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 733WD
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3036 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 271 GB (90%) free of 298 GB

---\\ Logged in mode
~ Computer Name: PC
~ User Name: kev
~ All Users Names: kev, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\kev\AppData\Roaming\
~ %Desktop% : C:\Users\kev\Desktop\
~ %Favorites% : C:\Users\kev\Favorites\
~ %LocalAppData% : C:\Users\kev\AppData\Local\
~ %StartMenu% : C:\Users\kev\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 271 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 06:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.03728C624D05C2F157BBD46F6B7F6EA0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/03/2013 - 23:15:49.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.28/10/2009 - 07:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 00:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5126C5402C730C2A953275D8497A4715] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 18:21:56.) -- C:\Windows\system32\Drivers\ntfs.sys [1210736]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 17:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/7
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/4
~ Mon Bureau (My Desktop) : 1/12
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.2808]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.2844]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.2928]
[MD5.C822B889D1F09173D11121651C250AF0] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.2940]
[MD5.967137445813F7D7F0B7978901265DD2] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [175128] [PID.2956]
[MD5.700B177369494AB2860EDCE71CA39244] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [268312] [PID.3004]
[MD5.62524206B1ACA15FFBD53C84EF409C66] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [166424] [PID.3032]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.1600]
[MD5.0051240D50ABE7922727B1E3385DF512] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6264832] [PID.6040]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\kev\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\kev\AppData\Roaming\Mozilla\Firefox\Profiles\urd1asam.default\prefs.js
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [kev - urd1asam.default\{1CB94A15-4515-4A88-A296-36DDCA34AF50}] [] RechercherWeb Toolbar v1.0.0 (.WebResultado Toolbar.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe
Utilisateur anonyme -
Hello

héberge-le : comme tu le vois, il ne passe pas entièrement sur le forum.

@+
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
rapport full option :

Rapport de ZHPDiag v2013.3.30.114 par Nicolas Coolman, Update du 30/03/2013
Run by kev at 31/03/2013 19:13:46
State : Version à jour.
High Elevated Privileges : OK
UAC : Activate by user


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 18.0 v18.0
GCIE: Google Chrome v26.0.1410.43 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows 7 Business Edition, 32-bit (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 733WD
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: x86 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3036 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 271 GB (90%) free of 298 GB

---\\ Logged in mode
~ Computer Name: PC
~ User Name: kev
~ All Users Names: kev, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\kev\AppData\Roaming\
~ %Desktop% : C:\Users\kev\Desktop\
~ %Favorites% : C:\Users\kev\Favorites\
~ %LocalAppData% : C:\Users\kev\AppData\Local\
~ %StartMenu% : C:\Users\kev\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 271 Go of 298 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 06:33:07.) -- C:\Windows\Explorer.exe [2614784]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:14:45.) -- C:\Windows\System32\Wininit.exe [96256]
[MD5.03728C624D05C2F157BBD46F6B7F6EA0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.23/03/2013 - 23:15:49.) -- C:\Windows\System32\wininet.dll [1129472]
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.28/10/2009 - 07:17:59.) -- C:\Windows\System32\Winlogon.exe [285696]
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:16:15.) -- C:\Windows\System32\sppcomapi.dll [193024]
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.25/04/2011 - 03:35:40.) -- C:\Windows\system32\Drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:26:15.) -- C:\Windows\system32\Drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:11:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [70656]
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:11:26.) -- C:\Windows\system32\Drivers\Cdrom.sys [108544]
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:33:46.) -- C:\Windows\system32\Drivers\DfsC.sys [78336]
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 00:50:56.) -- C:\Windows\system32\Drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:11:24.) -- C:\Windows\system32\Drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 00:54:29.) -- C:\Windows\system32\Drivers\IpNat.sys [101888]
[MD5.CA7570E42522E24324A12161DB14EC02] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [123392]
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:12:21.) -- C:\Windows\system32\Drivers\netBT.sys [187904]
[MD5.5126C5402C730C2A953275D8497A4715] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.31/08/2012 - 18:21:56.) -- C:\Windows\system32\Drivers\ntfs.sys [1210736]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 00:45:35.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 00:54:34.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [78848]
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.14/07/2009 - 01:02:58.) -- C:\Windows\system32\Drivers\rdpdr.sys [133120]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 00:53:41.) -- C:\Windows\system32\Drivers\smb.sys [71168]
[MD5.CB39E896A2A83702D1737BFD402B3542] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:12:11.) -- C:\Windows\system32\Drivers\tdx.sys [74240]
[MD5.59F06B4968E58BC83DFC56CA4517960E] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 17:48:29.) -- C:\Windows\system32\Drivers\volsnap.sys [245616]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/7
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/4
~ Mon Bureau (My Desktop) : 1/12
~ Menu demarrer (Programs) : 1/25
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.2808]
[MD5.148C545849C1379A3D4448F5DE768E86] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304] [PID.2844]
[MD5.8E2A7F1F62467A7DCB8AB2C0642F47CA] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [152392] [PID.2928]
[MD5.C822B889D1F09173D11121651C250AF0] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [141848] [PID.2940]
[MD5.967137445813F7D7F0B7978901265DD2] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [175128] [PID.2956]
[MD5.700B177369494AB2860EDCE71CA39244] - (.Intel Corporation - igfxsrvc Module.) -- C:\Windows\system32\igfxsrvc.exe [268312] [PID.3004]
[MD5.62524206B1ACA15FFBD53C84EF409C66] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [166424] [PID.3032]
[MD5.B0BF698030DB6561393AE753C6D3F936] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [1312720] [PID.1600]
[MD5.0051240D50ABE7922727B1E3385DF512] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [6264832] [PID.6040]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\kev\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
~ Google Browser: Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\kev\AppData\Roaming\Mozilla\Firefox\Profiles\urd1asam.default\prefs.js
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\bing.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [kev] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [kev - urd1asam.default\{1CB94A15-4515-4A88-A296-36DDCA34AF50}] [] RechercherWeb Toolbar v1.0.0 (.WebResultado Toolbar.)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.17.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Windows\system32\npDeployJava1.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.17.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.17.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN - VLC media player Web Plugin 2.0.2.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll
P2 - FPN: [HKLM] [Adobe Reader] - (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) -- C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
~ Firefox Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-search.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R3 - URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 11.0.02.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: TBSB01555 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
~ BHO: Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: France Toolbar - [HKLM]{8FFA7469-654F-423E-84FE-6A583CB1C284} . (.Pas de propriétaire - Internet Explorer Toolbar Engine.) -- C:\Program Files\France Toolbar\tbcore3.dll
O3 - Toolbar: avast! WebRep - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\Desktop: DDE KEVIN (E) - Raccourci.lnk - Clé orpheline
~ Global Startup: Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
~ IE Control Panel: 1 Legitimates Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
~ Winsock: 7 Legitimates Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BDADCF4B-09FA-4BF2-9D29-DDD4644EF4D7}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
~ SSODL: 1 Legitimates Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
~ Services: 6 Legitimates Scanned in 00mn 02s



---\\ Enumération Active Desktop & MHTML Editor (O24)
~ Desktop Component: 1 Legitimates Scanned in 00mn 00s



---\\ BootExecute (O34)
~ BEX: 1 Legitimates Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [{A9D1B370-BC06-4C18-A965-8C2E938A7953}] (...) -- E:\Downloads\RegCleaner.exe (.not file.) [0]
~ Scheduled Task: 10 Legitimates Scanned in 00mn 02s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
~ Active Setup: 12 Legitimates Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (aswFW) . (.AVAST Software - avast! Filtering TDI driver.) - C:\Windows\system32\drivers\aswFW.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
~ Drivers: 69 Legitimates Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.02) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Avast Packages - (...) [HKCU] -- Avast Packages
O42 - Logiciel: France Toolbar - (.France Toolbar.) [HKLM] -- France Toolbar
O42 - Logiciel: Java 7 Update 17 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217017FF}
O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM] -- PPÖúÊÖ PC°æ
O42 - Logiciel: avast! Internet Security v8.0.1483.0 - (.AVAST Software.) [HKLM] -- avast
~ Logic: 38 Legitimates Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\BabylonToolbar]
[HKCU\Software\DataMngr]
[HKCU\Software\InstallCore]
[HKCU\Software\a53d9dbe534e443]
[HKLM\Software\Babylon]
[HKLM\Software\Boxore]
[HKLM\Software\DataMngr]
~ Key Software: 78 Legitimates Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/03/2013 - 17:36:20 - [4,198] ----D C:\Program Files\France Toolbar
O43 - CFD: 24/03/2013 - 18:57:34 - [10,271] ----D C:\Program Files\PPÖúÊÖ
O43 - CFD: 23/03/2013 - 17:59:01 - [0] ----D C:\Program Files\Software
O43 - CFD: 23/03/2013 - 17:27:59 - [0] ----D C:\ProgramData\Babylon
O43 - CFD: 23/03/2013 - 17:59:01 - [0] ----D C:\ProgramData\Software
O43 - CFD: 23/03/2013 - 17:27:59 - [0,009] ----D C:\Users\kev\AppData\Roaming\Babylon
O43 - CFD: 24/03/2013 - 18:57:32 - [0] ----D C:\Users\kev\AppData\Roaming\ihelper
O43 - CFD: 23/03/2013 - 17:27:59 - [0] ----D C:\Users\kev\AppData\Local\Software
~ Program Folder: 96 Legitimates Scanned in 00mn 03s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.E8E79DC1A2D87A942768079D988A329E] - 26/03/2013 - 18:15:52 ---A- . (.Intel(R) Corporation - Intel(R) TVWizard.) -- C:\Windows\System32\TVWSetup.exe [8198680]
O44 - LFC:[MD5.651554E483712B708EDE864D0CA1AA73] - 26/03/2013 - 16:42:01 ---A- . (.Phoenix Technologies - DriverAgent Direct I/O for 32-bit Windows.) -- C:\Windows\System32\Drivers\DrvAgent32.sys [23456]
O44 - LFC:[MD5.FA4B5940B31853ADE67A73026884C8C9] - 23/03/2013 - 23:37:20 ---A- . (.Microsoft Corporation - Bibliothèque d'assistance au déploiement de.) -- C:\Windows\System32\dfshim.dll [1130824]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 23/03/2013 - 23:15:49 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.0AF7946AD9B2E82058C6421EEC960FCF] - 23/03/2013 - 16:48:02 ---A- . (.Intel(R) Corporation - Pas de description.) -- C:\Windows\System32\ir32_32.dll [197632]
O44 - LFC:[MD5.4E7AFE8E2C72CFBD47228379CC82F661] - 17/03/2013 - 11:49:42 ---A- . (.Z-Com - Wireless LAN Card NDIS 5.1 Driver.) -- C:\Windows\System32\Drivers\WLANUSB.sys [644096]
O44 - LFC:[MD5.2E5F7B5D25063C07A39A87D1B1295E35] - 30/11/2012 - 00:21:20 ---A- . (...) -- C:\Windows\System32\locale.nls [420032]
O44 - LFC:[MD5.4777284DED1F17C6ADC78FB198550D08] - 06/11/2009 - 16:08:48 ---A- . (...) -- C:\Windows\System32\iglhxs32.vp [47412]
O44 - LFC:[MD5.5036CDB9D5950549ABB2397E610B48B1] - 06/11/2009 - 15:43:16 ---A- . (...) -- C:\Windows\System32\igcompkrng500.bin [439336]
O44 - LFC:[MD5.1BDDEFFD72259E1E9F388C0FC5ED0A9F] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igfcg500m.bin [92284]
O44 - LFC:[MD5.B7CE3863C74EB5DA2F2158432616C9C1] - 06/11/2009 - 15:43:14 ---A- . (...) -- C:\Windows\System32\igkrng500.bin [982224]
O44 - LFC:[MD5.FFEEA5B2E928BE0ED618721664149E5F] - 06/11/2009 - 14:53:40 ---A- . (...) -- C:\Windows\System32\IGFXDEVLib.dll [4096]
O44 - LFC:[MD5.FFB49EE58EF3E271AA25F847D3299047] - 06/11/2009 - 14:52:04 ---A- . (...) -- C:\Windows\System32\GfxUI.exe.config [151]
O44 - LFC:[MD5.B5FA6F410658A8E914CFCBCFAA9F0AAE] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhcp32.dll [143360]
O44 - LFC:[MD5.91706163801AB8F3A3ECE7D59B758396] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhsip32.dll [208896]
O44 - LFC:[MD5.99AF886F548DFA1AEC9868A8BF0F74FC] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.cpa [1921265]
O44 - LFC:[MD5.7FEF5563D091D8A44B96DD4EBE0350AA] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxa32.vp [1090]
O44 - LFC:[MD5.A16E966DEBE65033E703CA9514753E11] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxc32.vp [60226]
O44 - LFC:[MD5.251D22DE1DF611739E4D0C7BAB2E80D6] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxg32.vp [60254]
O44 - LFC:[MD5.CB4DCAF11675F52D39035BCEE14ABA77] - 06/11/2009 - 14:48:48 ---A- . (...) -- C:\Windows\System32\iglhxo32.vp [60015]
O44 - LFC:[MD5.DA15C16EE66BAF7E6F555CE2E1CF95CA] - 15/08/2009 - 11:26:42 R--A- . (...) -- C:\Windows\csup.txt [13]
O44 - LFC:[MD5.4B1F147E39C40CCA9B46A2CB27C320F8] - 15/08/2009 - 11:26:41 R-HA- . (...) -- C:\Windows\DELL_version [25]
~ Files: 463 Legitimates Scanned in 00mn 06s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.EED06F98628306EA597612B60F3A07D9] - 27/03/2013 - 19:58:53 ---A- - C:\Windows\Prefetch\IPCONFIG.EXE-912F3D5B.pf
O45 - LFCP:[MD5.00310205E4677859D57516A684330EEF] - 27/03/2013 - 19:58:54 ---A- - C:\Windows\Prefetch\ROUTE.EXE-5E3D06CB.pf
O45 - LFCP:[MD5.5CDA7B54B9154C6DA2C4EA2F4767A9FF] - 28/03/2013 - 17:38:51 ---A- - C:\Windows\Prefetch\WRAR420.EXE-F1E968F9.pf
O45 - LFCP:[MD5.6305A90BF5DF6A2070EA319D30C8CA9A] - 28/03/2013 - 17:41:07 ---A- - C:\Windows\Prefetch\BCDEDIT.EXE-10FC5AAB.pf
O45 - LFCP:[MD5.65BF8898A58A85DE23AF4BFD11B8404D] - 28/03/2013 - 18:00:41 ---A- - C:\Windows\Prefetch\MSDT.EXE-09841468.pf
O45 - LFCP:[MD5.F91004F18A2B1B8E41AF373D3BB7089A] - 28/03/2013 - 18:04:54 ---A- - C:\Windows\Prefetch\IBOOTY.EXE-F7EA588E.pf
O45 - LFCP:[MD5.5ECAEA56C9985835B2D8947D24DD6AD1] - 28/03/2013 - 18:15:05 ---A- - C:\Windows\Prefetch\S-IRECOVERY.EXE-14EE8463.pf
O45 - LFCP:[MD5.568D8AB7F29A0908983D16BD7B81EA03] - 28/03/2013 - 23:06:50 ---A- - C:\Windows\Prefetch\UNINS000.EXE-5A9D28AA.pf
O45 - LFCP:[MD5.0B74E44C4469C24F9233A631A7EE1884] - 28/03/2013 - 23:07:05 ---A- - C:\Windows\Prefetch\UNINST.EXE-0867DC84.pf
O45 - LFCP:[MD5.9887DA2B58E0653693D7CD4B00A03A01] - 28/03/2013 - 23:07:11 ---A- - C:\Windows\Prefetch\NS1D49.TMP-D3F38101.pf
O45 - LFCP:[MD5.3445606EDBFE848928122FAC9D61E301] - 28/03/2013 - 23:07:14 ---A- - C:\Windows\Prefetch\AU_.EXE-08939C2B.pf
O45 - LFCP:[MD5.C583D7F03FE2E1986CDB1EAB38646125] - 31/03/2013 - 18:07:33 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-C444237E.pf
O45 - LFCP:[MD5.0FCCD1C61829A1937B023C869ACAED30] - 31/03/2013 - 18:07:37 ---A- - C:\Windows\Prefetch\AVASTUI.EXE-56B29A08.pf
O45 - LFCP:[MD5.9B273201E46DF9FC1228AE3843CCBA8F] - 31/03/2013 - 18:10:33 ---A- - C:\Windows\Prefetch\UNINS000.EXE-CC281222.pf
O45 - LFCP:[MD5.D95D5DC444E5FD0D55E2D41DC56BBACD] - 31/03/2013 - 18:10:36 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-8112AB50.pf
~ Prefetcher: 132 Legitimates Scanned in 00mn 00s



---\\ Déni du service (Local Security Authority) (O48)
~ LSA: 8 Legitimates Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
~ CBS: 13 Legitimates Scanned in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
~ TDSD: 3 Legitimates Scanned in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
~ MSCP: 2 Legitimates Scanned in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Scanned in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.21E785EBD7DC90A06391141AAC7892FB] - 14/07/2009 - 02:26:15 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [422976]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 13/07/2009 - 22:40:41 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
~ Drivers: Scanned in 00mn 00s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 28/03/2013 - 23:03:52 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\fr-FR-3-0.bdic [1074744]
O61 - LFC: 28/03/2013 - 23:09:49 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [270497]
O61 - LFC: 28/03/2013 - 23:44:38 --HA- C:\Users\kev\AppData\Local\IconCache.db [2435854]
O61 - LFC: 31/03/2013 - 18:13:54 ---A- C:\Users\kev\AppData\Local\Google\Chrome\User Data\Local State [26229]
~ 2 Fichiers temporaires (Temporary files)
~ Files: 141 Legitimates Scanned in 00mn 05s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 25/04/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 26/09/2009 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 13/07/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\vmstorfltres.dll (storflt) .(.Microsoft Corporation - Fichier DLL de ressources du filtre de stoc.) - LEGACY_STORFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\DRIVERS\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
~ Legacy: 116 Legitimates Scanned in 00mn 00s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d'événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Keys: Scanned in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com
O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Customized Search) - http://fr-recherche.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche des services démarrés par Svchost (O83)
~ Services: 33 Legitimates Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.27C905A32039710713949A7373E0818B] [SPRF][25/03/2013] (...) -- C:\Users\kev\AppData\Local\Temp\nsuE733.exe [53834]
[MD5.70D75223BFCB244D6134611FE08E4C1B] [SPRF][28/03/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\kev\Desktop\ZHPDiag2.exe [5472488]
~ Files: Scanned in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "TCP Query User{778B27F0-3A9D-4DBB-9F58-077F7F24496D}C:\program files\ppöúêö\ihelper.exe" | In - Private - P6 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
O87 - FAEL: "UDP Query User{07DCE1FF-AA7A-4E69-AC42-D6FFAD181DA5}C:\program files\ppöúêö\ihelper.exe" | In - Private - P17 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
~ Firewall: 177 Legitimates Scanned in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.11349 - (30/03/2013)
Clés trouvées (Keys found) : 88
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 7
Fichiers trouvés (Files found) : 0

[HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}] =>Hijacker.Seeearch
[HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}] =>Adware.SocialSkinz
[HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}] =>Hijacker.Seeearch
[HKLM\Software\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}] =>Adware. BullseyeToolbar
[HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz
[HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}] =>Adware.SocialSkinz
[HKLM\Software\Classes\AppID\TbCommonUtils.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\TbHelper.EXE] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler] =>Toolbar.Agent
[HKLM\Software\Classes\comobject.deskbarenabler.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils] =>Toolbar.Agent
[HKLM\Software\Classes\TbCommonUtils.CommonUtils.1] =>Toolbar.Agent
[HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook] =>Toolbar.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Boxore] =>Adware.Boxore
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] =>Toolbar.Bing
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\TbHelper.TbDownloadManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbDownloadManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbPropertyManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbRequest.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.TbTask.1] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper] =>Toolbar.Agent
[HKLM\Software\Classes\TbHelper.ToolbarHelper.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.IEToolbar.1] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\TBSB01555.TBSB01555.3] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.TBSB01555.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar3.SearchProviderManager.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{CA3EB689-8F09-4026-AA10-B9534C691CE0} =>Adware.SocialSkinz
C:\Program Files\France Toolbar =>Toolbar.Agent
C:\Program Files\Software =>Adware.Boxore
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Software =>Adware.Boxore
C:\Users\kev\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\kev\AppData\Local\Software =>Adware.Boxore
C:\Users\kev\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
~ Additionnel: Scanned in 00mn 23s



---\\ Product Upgrade Codes (O90)
~ Update Products: 12 Legitimates Scanned in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:dllName="BrowserProtect.dll"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:exeName="BrowserProtect.exe"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:folderName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:serviceName="BrowserProtect"
[HKCU\Software\a53d9dbe534e443\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1125.80]:version="2.6.1125.80"
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 23/03/2013 253656 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Demand 0 | (AIDA64Driver) . (...) - C:\Program Files\AIDA64 Extreme Edition\kerneld.x32
SR - | Auto 21/12/2012 57008 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 07/03/2013 45248 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 07/03/2013 136912 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 30/08/2011 390504 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SS - | Auto 23/03/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 23/03/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SR - | Demand 20/02/2013 553288 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SS - | Demand 05/01/2013 115760 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 14/07/2009 20992 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 20992 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 00s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by kev at 31/03/2013 19:14:50

device: opened successfully
user: MBR read successfully

Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys
1 ntkrnlpa!IofCallDriver[0x82848738] => \Device\Harddisk0\DR0[0x85D44648]
kernel: MBR read successfully
user & kernel MBR OK
~ MBR: 13 Legitimates Scanned in 00mn 02s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by kev at 31/03/2013 19:14:52

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 04s



End of the scan (694 lines in 01mn 06s)(0)
0
Merci
Re,

t'es infecté.

Plein de trucs bizarre dans cet ordinateur !

> Télécharge sur cette page: AdwCleaner (de Xplode)

> Lance-le

clique sur Suppression et patiente le temps du nettoyage.

> Poste le contenu du rapport que tu trouveras dans ton disque dur c:\ADwcleaner[Sx].txt ou son contenu s'il s'ouvre.

Puis :

> Télécharge et installe Malwarebytes' Anti-Malware (MBAM).

> Exécute-le. Accepte la mise à jour.

> Sélectionne "Exécuter un examen complet"
> Clique sur "Rechercher"
> L'analyse démarre, le scan est relativement long, c'est normal.

A la fin de l'analyse, un message s'affiche :

Citation :

L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.

> Clique donc sur Afficher les résultats.
> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse : ferme le.

Si MBAM demande à redémarrer le pc : > fais-le.

Au redémarrage, relance MBAM, onglet "Rapport/Logs", copie/colle celui qui correspond à l'analyse effectuée.

ça sent mauvais ce ihelper !

Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :

C:\program files\ppöúêö\ihelper.exe

* Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
* Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
* Lorsque l'analyse est terminée colle le lien de(s)( la) page(s) dans ta prochaine réponse.

@+

Aider les autres, c'est bien... Mais quand on ne sait pas s'y prendre, on s'abstient!
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
j'ai envoyer les rapport mais dès que j'actualise la page sa disparait ...
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
0
Merci
Re,

refais un ZHPDiag :
- exécuter en tant qu'administrateur
- tout cocher à la loupe
- hébergé sur cjoint.com /!\

@+
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
0
Merci
Re

désinstalle :

- Toolbar Bing
- France Toolbar

Puis :

sélectionne les lignes ci-dessous et copie-les (Ctrl C)


O87 - FAEL: "TCP Query User{778B27F0-3A9D-4DBB-9F58-077F7F24496D}C:\program files\ppöúêö\ihelper.exe" | In - Private - P6 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
O87 - FAEL: "UDP Query User{07DCE1FF-AA7A-4E69-AC42-D6FFAD181DA5}C:\program files\ppöúêö\ihelper.exe" | In - Private - P17 - TRUE | .(.???????????? - PP??.) -- C:\program files\ppöúêö\ihelper.exe
O42 - Logiciel: Avast Packages - (...) [HKCU] -- Avast Packages
O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM] -- PPÖúÊÖ PC°æ
O43 - CFD: 24/03/2013 - 18:57:34 - [10,271] ----D C:\Program Files\PPÖúÊÖ
O43 - CFD: 24/03/2013 - 18:57:32 - [0] ----D C:\Users\kev\AppData\Roaming\ihelper
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] => Infection PUP (Adware.Boxore)
C:\Program Files\France Toolbar => Toolbar.Agent
O42 - Logiciel: France Toolbar - (.France Toolbar.) [HKLM] -- France Toolbar => Toolbar.Agent
O43 - CFD: 23/03/2013 - 17:36:20 - [4,198] ----D C:\Program Files\France Toolbar => Toolbar.Agent
EmptyTemp




Clique droit sur l'icône ZHPFix.exe sur ton Bureau, puis sélectionne 'Exécuter en tant qu'administrateur'.

- Clique sur "coller le presse-papier"
- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse

Ensuite dis moi si des problèmes persistent.

@+
Aider les autres, c'est bien... Mais quand on ne sait pas s'y prendre, on s'abstient!
Utilisateur anonyme -
Moais....

j'y crois qu'à moitié...

regarde plus bas
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
Il vient d'ailleur de le réinstaller et ca fait le même qu'avant, c'est pas software, ou sinon un driver.
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
des détails ???
erimen
Messages postés
519
Date d'inscription
mardi 20 mars 2012
Statut
Membre
Dernière intervention
3 mars 2017
64 -
Ce que je dis c'est que le problème doit venir d'une cause matérielle. Comme tu as réinstallé windows et que ça continue de frezzer, c'est que ça provient d'aucun programme que tu avais avant. Donc c'est matériel, soit défectueux, soit un driver qui n'est pas a jour. Je ne connais qu'une solution simple pour mettre à jour tes driver mais c'est un logiciel payant.
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
j'ai changer de tour je les indiquer dans un post mais même probleme freeze et ecran bleu
0
Merci
Re

ton ordinateur ne freeze plus ? Plus de problèmes ?

Le ménage :
https://forums-fec.be/entraide/viewtopic.php?f=11&t=229

kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
# DelFix v10.1 - Rapport créé le 01/04/2013 à 22:57:30
# Mis à jour le 23/02/2013 par Xplode
# Nom d'utilisateur : kev - PC

~ Activation de l'UAC ... OK

~ Suppression des outils de désinfection ...

Supprimé : C:\ZHP
Supprimé : C:\Program Files\ZHPDiag
Supprimé : C:\AdwCleaner[S1].txt
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\kev\Desktop\AdwCleaner rapport.txt
Supprimé : C:\Users\kev\Desktop\AdwCleaner.exe
Supprimé : C:\Users\kev\Desktop\ZHPDiag RAPPORT
Supprimé : C:\Users\kev\Desktop\ZHPDiag RAPPORT 2
Supprimé : C:\Users\kev\Desktop\ZHPDiag.txt
Supprimé : C:\Users\kev\Desktop\ZHPDiag2.exe
Supprimé : C:\Users\kev\Desktop\ZHPFixReport.txt
Supprimé : C:\Users\Public\Desktop\MBRCheck.lnk
Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk
Supprimée : HKLM\SOFTWARE\AdwCleaner
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

~ Sauvegarde de la base de registre ... OK

~ Purge de la restauration système ...

Supprimé : RP #6 [Installed Java 7 Update 17 | 03/23/2013 16:02:30]
Supprimé : RP #7 [Installation avast! Free Antivirus | 03/23/2013 16:03:14]
Supprimé : RP #8 [Windows Update | 03/23/2013 22:08:52]
Supprimé : RP #9 [Windows Update | 03/24/2013 08:33:01]
Supprimé : RP #10 [Programme d'installation pour les modules Windows | 03/24/2013 09:38:59]
Supprimé : RP #11 [Installed iTunes | 03/24/2013 16:52:58]
Supprimé : RP #12 [Windows Update | 03/24/2013 21:51:12]
Supprimé : RP #13 [Sauvegarde Windows | 03/26/2013 17:18:43]
Supprimé : RP #14 [Windows Update | 03/27/2013 18:55:10]
Supprimé : RP #15 [Windows Update | 03/31/2013 17:10:51]
Supprimé : RP #16 [Sauvegarde Windows | 03/31/2013 17:17:05]
Supprimé : RP #17 [Nitro Pro 8 installé | 04/01/2013 08:45:20]
Supprimé : RP #18 [Removed Java 7 Update 17 | 04/01/2013 20:30:41]
Supprimé : RP #19 [Installed Java 7 Update 17 | 04/01/2013 20:31:36]

Nouveau point de restauration créé !

~ Réinitialisation des paramètres système ... OK

########## - EOF - ##########
Utilisateur anonyme -
vu

bonne nuit
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
salut !

bon mauvaise nouvelle il a freezer. a au fait un jour j'ai eu un message erreur :2000-0146 sa signifie quoi ?
Utilisateur anonyme -
Bonjour,

sur un blue screen ? à quel moment ? Il me faut des précisions !
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
oui un ecran bleu quand je naviguer sur le net et le freeze pareil sa arrive aléatoirement
Messages postés
35731
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
22 août 2018
4671
0
Merci
Saluto :)

Je prends le relai ;)

Faire un scan OTL pour diagnostiquer les programmes qui tournent et déceler des infections :

▶ Télécharge ici :OTL

▶ Fais un double clic sur l'icône pour le lancer (clic droit executer en tant qu'administrateur sous Vista, Windows 7 ou Windows 8). Vérifier que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption. Dans le cas d'Avast!, ne pas lancer le programme dans la Sandbox

▶ Quand la fenêtre apparaît, sous Rapport en haut à droite, coche "Rapport minimal", ainsi que "Tous les utilisateurs"
Sous Registre: standard coche Tous.
Coche les cases à coté de Recherche Lop et Recherche Purity.

▶ Copie et colle le contenu de ce qui suit en gras dans la partie inférieure d'OTL "Personnalisation"


msconfig
netsvcs
/md5start
explorer.exe
winlogon.exe
userinit.exe
svchost.exe
services.exe
winsock.*
/md5stop
%temp%\*.exe /s
%ALLUSERSPROFILE%\Application Data\*.exe /s
%ALLUSERSPROFILE%\Application Data\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.*
BASESERVICES
CREATERESTOREPOINT
SAVEMBR:0


▶ Clic sur Analyse.

A la fin du scan, 2 Bloc-Notes vont s'ouvrir avec les rapports (OTL.txt et extras.txt).

NE PAS COPIER/COLLER LE RAPPORT ICI - LIRE JUSQU'AU BOUT

Ces fichiers se trouvent à côté de l'exécutable OTL.exe

héberge OTL.txt et extra.txt sur FEC Upload et donne les liens obtenus en échange

NE PAS COPIER/COLLER LE LIEN DE SUPPRESSION, CONSERVE-LE SI TU DESIRE ENSUITE SUPPRIMER LES RAPPORTS DE LA BASE DE DONNEES FEC

Apluche
Utilisateur anonyme -
Hello

Tu me sauves là :) je suis overbooké cette semaine.... pfiou ça promet !
juju666
Messages postés
35731
Date d'inscription
jeudi 18 décembre 2008
Statut
Contributeur sécurité
Dernière intervention
22 août 2018
4671 -
Salut,

Ben bosse au lieu de glandouiller sur le net !!! ;o
Bizzz :)
g3n-h@ckm@n
Messages postés
14252
Date d'inscription
jeudi 31 janvier 2013
Statut
Membre
Dernière intervention
3 juillet 2018
886 -
c'est vrai ca !! ^^
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
salut merci de venir a mon aide comme demander voici les liens des rapports :

https://forums-fec.be/upload/www/?a=d&i=6286393577

https://forums-fec.be/upload/www/?a=d&i=5664435703
kevohyeah
Messages postés
83
Date d'inscription
lundi 17 décembre 2012
Statut
Membre
Dernière intervention
20 octobre 2014
-
merci beaucoup Homerlulu pour ton aide !!!