cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.4.22.38 - Nicolas Coolman (22/04/2014)
~ Lancé par Maël (22/04/2014 19:15:12)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17041
GCIE: Google Chrome v34.0.1847.116 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 44YJJ
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
Avira Free Antivirus v14.0.3.350
Windows Defender W7

---\\ Logiciels d'optimisation du système
CCleaner v4.09 =>.Piriform Ltd

---\\ Logiciels de partage PeerToPeer
Pando Media Booster v2.6.0.7

---\\ Surveillance de Logiciels
Adobe Flash Player 12 Plugin
Java 7 Update 51
Java 7 Update 51

---\\ Informations sur le système
~ Processor: AMD64 Family 21 Model 2 Stepping 0, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (54% free)
System Restore: Activé (Enable)
System drive C: has 9 GB (13%) free of 69 GB

---\\ Mode de connexion au système
~ Computer Name: PCMAEL
~ User Name: Maël
~ All Users Names: Maël, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Maël\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Maël\AppData\Roaming\
~ %Desktop% : C:\Users\Maël\Desktop\
~ %Favorites% : C:\Users\Maël\Favorites\
~ %LocalAppData% : C:\Users\Maël\AppData\Local\
~ %StartMenu% : C:\Users\Maël\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 9 Go of 69 Go)
D: Hard drive, Flash drive, Thumb drive (Free 24 Go of 58 Go)
E: Hard drive, Flash drive, Thumb drive (Free 28 Go of 105 Go)
F: CD-ROM drive (Not Inserted)
G: CD-ROM drive (Not Inserted)
Z: Hard drive, Flash drive, Thumb drive (Free 708 Go of 932 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 41 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.F220BA78AB542C70211D73AE4729B2CD] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/03/2014 - 07:22:40.) -- C:\Windows\System32\wininet.dll [2260480]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/09/2013 - 02:09:10.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/143
~ Mes musiques (My Musics) : 12/69
~ Mes Favoris (My Favorites) : 1/25
~ Mes Documents (My Documents) : 1/13415
~ Mon Bureau (My Desktop) : 1/50
~ Menu demarrer (Programs) : 1/76
~ Hidden Files: Scanned in 00mn 01s



---\\ Processus lancés
[MD5.70F81D6EEFCA1E1943828306F57EA55C] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Maël\AppData\Local\Akamai\netsession_win.exe [4672920] [PID.3828]
[MD5.67C6D73EB72837B50BB92A98AFEFB159] - (.Pas de propriétaire - Microsoft.) -- C:\Users\Maël\AppData\Local\Temp\WinAPP\WinAPP.exe [1645184] [PID.3860]
[MD5.09CF67D0E8C7116D74C88B3D8DEA0791] - (.NETGEAR - Netgear MFC Application.) -- C:\Program Files (x86)\NETGEAR\WN111v2\WN111v2.exe [1728512] [PID.3880]
[MD5.241B07FF7F5943B9C1BF3235F49AC1E1] - (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744] [PID.3916]
[MD5.67C6D73EB72837B50BB92A98AFEFB159] - (.Pas de propriétaire - Microsoft.) -- C:\Users\Maël\AppData\Local\Temp\Path_15397\calc.exe [1645184] [PID.3956]
[MD5.67C6D73EB72837B50BB92A98AFEFB159] - (.Pas de propriétaire - Microsoft.) -- C:\Users\Maël\AppData\Local\Temp\UWDXUNPCQZVUJQDBHOO.exe [1645184] [PID.3412]
[MD5.2EBBBFC120593C683796092F2DDA0EFC] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032] [PID.2424]
[MD5.ECBD7DB6CF78AF0215BDA1C3316A8DA5] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7888384] [PID.4212]
[MD5.4D282B9C5BB05DF92C9F3977DFB9F916] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400] [PID.1680]
[MD5.65AF41A7A2C5B6693E1B4164E7632C3E] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400] [PID.1852]
[MD5.831883B107684301F48ACE752C963984] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [66872] [PID.1516]
[MD5.962503AA7DFFB1D00D8664CD3A1FC40B] - (.Razer Inc. - RzKLService.) -- E:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448] [PID.332]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Maël\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ocjihlfhgfogkibimkhmmblpoihoodmm] VLC Remote v.0.9 (Activé)

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 19 Legitimates Filtered in 00mn 15s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Actionaz.lnk . (...) -- C:\Program Files\Actionaz\actionaz.exe
O4 - GS\Desktop [Public]: Aeria Ignite.lnk . (.Aeria Games & Entertainment - Aeria Ignite.) -- C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe
O4 - GS\Desktop [Public]: Arkalys Uplauncher.lnk . (...) -- D:\Program Files (x86)\ArkalysGame\Uplauncher.exe
O4 - GS\Desktop [Public]: AssaultCube.lnk . (...) -- C:\Program Files (x86)\AssaultCube\assaultcube.bat
O4 - GS\Desktop [Public]: Call of Duty(R) 4 - Modern Warfare(TM) campagne solo.lnk . (...) -- Z:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3sp.exe
O4 - GS\Desktop [Public]: Call of Duty(R) 4 - Modern Warfare(TM) Multijoueur.lnk . (...) -- Z:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
O4 - GS\Desktop [Public]: Combat Arms EU.lnk . (.Nexon - Combat Arms Launcher.) -- E:\Combat Arms EU\CombatArms.exe
O4 - GS\Desktop [Public]: DDS Viewer.lnk . (...) -- C:\Program Files (x86)\DDS Viewer\DDSViewer.exe
O4 - GS\Desktop [Public]: Elsword.lnk . (...) -- E:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
O4 - GS\Desktop [Public]: Freestyle GunZ.lnk . (.Freestyle GunZ - Freestyle GunZ Launcher.) -- D:\Program Files (x86)\Freestyle GunZ\Launcher.exe
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: ManiaPlanet.lnk . (...) -- D:\Program Files (x86)\ManiaPlanet\ManiaPlanetLauncher.exe
O4 - GS\Desktop [Public]: Nexus Mod Manager.lnk . (.Black Tree Gaming - Nexus Mod Manager.) -- E:\Program Files\Nexus Mod Manager\NexusClient.exe
O4 - GS\Desktop [Public]: osu!.lnk . (.ppy - osu!.) -- E:\Program Files (x86)\osu!\osu!.exe
O4 - GS\Desktop [Public]: PaintTool SAI Ver.1.lnk . (...) -- C:\Users\Maël\Downloads\PaintToolSAI\sai.exe
O4 - GS\Desktop [Public]: S4Reborn.lnk . (...) -- D:\S4 Reborn\Launcher S4Reborn.exe
O4 - GS\Desktop [Public]: Smite.lnk . (.Hi-Rez Studios Inc. - HiRezUnifiedLauncher.) -- C:\Program Files (x86)\Hi-Rez Studios\HiRezLauncherUI.exe
O4 - GS\Desktop [Public]: StarCraft II.lnk . (.Blizzard Entertainment - StarCraft II Setup.) -- D:\Program Files (x86)\StarCraft II\StarCraft II.exe
O4 - GS\Program [Public]: PaintTool SAI Ver.1.lnk . (...) -- C:\Users\Maël\Downloads\PaintToolSAI\sai.exe
O4 - GS\Program [Public]: Rainmeter.lnk . (...) -- C:\Program Files\Rainmeter\Rainmeter.exe
O4 - GS\Program [Public]: S4Reborn.lnk . (...) -- D:\S4 Reborn\(1) Launcher S4Reborn.exe (.not file.)
O4 - GS\Program [Public]: Uninstall.lnk . (...) -- D:\S4 Reborn\uninstall.exe
O4 - GS\QuickLaunch [Maël]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Maël]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [Maël]: Rencontres Hard.lnk . (...) -- Z:\Program Files (x86)\rencontreshard\rencontreshard.exe (.not file.)
O4 - GS\QuickLaunch [Maël]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Maël\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O4 - GS\TaskBar [Maël]: After Effects.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) -- C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
O4 - GS\TaskBar [Maël]: AuraKingdom-FR.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- E:\AeriaGames\AuraKingdom-FR\aeria_launcher.exe
O4 - GS\TaskBar [Maël]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Maël]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) -- C:\Users\Maël\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
O4 - GS\TaskBar [Maël]: Vegas Pro 12.0 (64-bit).lnk . (...) -- C:\Program Files (x86)\Sony\Vegas Pro 12.0\vegas120.exe (.not file.)
O4 - GS\Program [Maël]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Maël]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SendTo [Maël]: Resource Tuner.lnk . (.Heaventools Software - Resource Tuner.) -- C:\Program Files (x86)\Resource Tuner\restuner.exe
O4 - GS\SendTo [Maël]: Sandboxie - DefaultBox.lnk . (...) -- C:\Program Files (x86)\Sandboxie\Start.exe (.not file.)
O4 - GS\SendTo [Maël]: Sandboxie - GunZ.lnk . (...) -- C:\Program Files (x86)\Sandboxie\Start.exe (.not file.)
O4 - GS\Desktop [Maël]: Anime.lnk . (...) -- C:\Users\Maël\Documents\Anime
O4 - GS\Desktop [Maël]: Arkalys.lnk . (...) -- D:\ArkalysGame\app\Dofus.exe
O4 - GS\Desktop [Maël]: AuraKingdom-FR.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- E:\AeriaGames\AuraKingdom-FR\aeria_launcher.exe
O4 - GS\Desktop [Maël]: Beat Hazard Ultra.lnk . (...) -- Z:\Program Files (x86)\Beat Hazard Ultra\BeatHazard.exe
O4 - GS\Desktop [Maël]: Blacklight Retribution.lnk . (...) -- E:\Perfect World Entertainment\Blacklight Retribution\Blacklight Retribution.exe
O4 - GS\Desktop [Maël]: Dragon Nest Europe.lnk . (.EYEDENTITY GAMES. Inc. - DragonNest Launcher.) -- Z:\Program Files (x86)\SDGi Europe\Dragon Nest Europe\dnlauncher.exe
O4 - GS\Desktop [Maël]: DXTBmp.lnk . (.MW Graphics - DXT1 Bitmap Manipulator.) -- C:\Graphics\MWGraphics\DXTBmp\DXTBmp.exe
O4 - GS\Desktop [Maël]: GunZ2.lnk . (.MAIET Entertainment - MAIET Game Launcher 2.3.) -- E:\GunZ2\GunZ2 Launcher.exe
O4 - GS\Desktop [Maël]: Iro-Injector.exe - Raccourci.lnk . (...) -- E:\Program Files (x86)\S4League\Iro-Injector.exe
O4 - GS\Desktop [Maël]: iw5sp.exe - Raccourci.lnk . (...) -- E:\Call of Duty- Modern Warfare 3\iw5sp.exe
O4 - GS\Desktop [Maël]: Launcher Warface.lnk . (...) -- Z:\Program Files (x86)\Crytek\Warface Launcher\live\nw.exe
O4 - GS\Desktop [Maël]: Minecraft.lnk . (...) -- C:\Users\Maël\Documents\KeiNett Launcher.exe
O4 - GS\Desktop [Maël]: Music.lnk . (...) -- E:\Music
O4 - GS\Desktop [Maël]: NicknameChanger.exe - Raccourci.lnk . (.Microsoft - Namechange.) -- E:\Program Files (x86)\S4League\NicknameChanger.exe
O4 - GS\Desktop [Maël]: Photoshop.lnk . (.PainteR - Adobe Photoshop CS6 Pre-Release Portable.) -- E:\photoshop cs6\AdobePhotoshopCS6Portable\PhotoshopCS6Portable.exe =>.Adobe Systems Incorporated
O4 - GS\Desktop [Maël]: quake3.exe - Raccourci.lnk . (...) -- C:\Quake 3 Arena\quake3.exe
O4 - GS\Desktop [Maël]: S4 league.lnk . (.(c) Neowiz Games - S4 League Game Launcher.) -- E:\Program Files (x86)\S4League\patcher_s4.exe
O4 - GS\Desktop [Maël]: S4Root.exe - Raccourci.lnk . (...) -- E:\Program Files (x86)\S4League\S4Root.exe
O4 - GS\Desktop [Maël]: SAO Utils.lnk . (.Studio GPBeta - SAO Utils.) -- C:\Users\Maël\Documents\SAO Utils\SAO Utils.exe
O4 - GS\Desktop [Maël]: Sauerbraten.lnk . (...) -- C:\Program Files (x86)\Sauerbraten\sauerbraten.bat
O4 - GS\Desktop [Maël]: Scarlet Blade.lnk . (.Aeria Games & Entertainment - Ignite Launcher.) -- E:\AeriaGames\ScarletBlade\aeria_launcher.exe
O4 - GS\Desktop [Maël]: Site de Yami.lnk . (...) -- C:\Site de Yami
O4 - GS\Desktop [Maël]: Super Hexagon.lnk . (...) -- D:\Super Hexagon\superhexagon.exe
O4 - GS\Desktop [Maël]: Synopsis.exe - Raccourci.lnk . (...) -- E:\Program Files (x86)\S4League\Synopsis.exe
O4 - GS\Desktop [Maël]: Synthesia.exe.lnk . (...) -- E:\Synthesia_8.5\Synthesia-8.5\Synthesia.exe
O4 - GS\Desktop [Maël]: TeamSpeak 3 Client.lnk . (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) -- C:\Users\Maël\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
O4 - GS\Desktop [Maël]: TERA.lnk . (.Solid State Networks - TERA.) -- Z:\Program Files (x86)\TERA\tera-launcher.exe
O4 - GS\Desktop [Maël]: WolfTeam-FR.lnk . (.Softnyx - Softnyx Game Launcher.) -- E:\AeriaGames\WolfTeam-FR\Launcher.exe
~ Global Startup: 119 Legitimates Filtered in 00mn 02s



---\\ Applications lancées au démarrage du système (O4)
O4 - GS\Startup [Public]: NETGEAR WN111v2 Smart Wizard.lnk . (.NETGEAR - Netgear MFC Application.) -- C:\Program Files (x86)\NETGEAR\WN111v2\WN111v2.exe
O4 - GS\Startup [Maël]: Rencontres Hard.lnk . (...) -- Z:\Program Files (x86)\rencontreshard\rencontreshard.exe (.not file.)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Launch LCore] . (.Logitech Inc. - Logitech Gaming Framework.) -- C:\Program Files\Logitech Gaming Software\LCore.exe =>.Logitech Inc
O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Maël\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [puush] . (.Pas de propriétaire - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [WinAPP] . (.Pas de propriétaire - Microsoft.) -- C:\Users\Maël\AppData\Local\Temp\WinAPP\WinAPP.exe
O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Antivirus System Tray Tool (Desktop).) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Wow6432Node\Run: [LogMeIn Hamachi Ui] . (.LogMeIn Inc. - Hamachi Client Application.) -- Z:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2353228546-3473698291-2534097893-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Maël\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-2353228546-3473698291-2534097893-1000\..\Run: [puush] . (.Pas de propriétaire - puush.) -- C:\Program Files (x86)\puush\puush.exe
O4 - HKUS\S-1-5-21-2353228546-3473698291-2534097893-1000\..\Run: [WinAPP] . (.Pas de propriétaire - Microsoft.) -- C:\Users\Maël\AppData\Local\Temp\WinAPP\WinAPP.exe
~ Application: Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains] http.aeriagames.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{79B852C8-6275-4D13-8A7D-0320A66A9B87}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{79B852C8-6275-4D13-8A7D-0320A66A9B87}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{79B852C8-6275-4D13-8A7D-0320A66A9B87}: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: video/x-flv [64Bits] - {20C75730-7C25-476B-95DC-C65810F9E489} . (.Advanced Micro Devices - MIME Video Detector for IE.) -- C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [{1BE21A87-5D8D-4F8E-AE73-584C6AF50B0F}] (...) -- C:\Users\Maël\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{3E75652D-99B1-417E-B163-BEF33CAD3F16}] (...) -- C:\Users\Maël\Downloads\LeagueofLegends_EUW_Installer_06_12_13.exe (.not file.) [0]
O39 - APT: {3E75652D-99B1-417E-B163-BEF33CAD3F16} - (...) -- C:\Windows\Tasks\{3E75652D-99B1-417E-B163-BEF33CAD3F16}.job [1810]
~ Scheduled Task: 13 Legitimates Filtered in 00mn 03s



---\\ Logiciels installés (O42)
O42 - Logiciel: AssaultCube v1.2.0.2 - (...) [HKLM][64Bits] -- AssaultCube
O42 - Logiciel: AuraKingdom-FR - (...) [HKLM][64Bits] -- AuraKingdom-FR
O42 - Logiciel: DDS Viewer - (.IdeaMK.) [HKLM][64Bits] -- {707333E0-C796-4E2D-B0DA-5A429706C361}_is1
O42 - Logiciel: DNDownloader version 1.2 - (...) [HKLM][64Bits] -- DNDownloader_is1
O42 - Logiciel: DV Camcorder - (...) [HKLM][64Bits] -- {BE3A3126-D6B4-4FCE-8FD6-E33C49B4282D}
O42 - Logiciel: Dragon Nest Europe - (...) [HKLM][64Bits] -- Dragon Nest Europe
O42 - Logiciel: Freestyle GunZ version 7.0 - (.FreestylersWorld.) [HKLM][64Bits] -- {B46FB5E0-11F2-4C63-A2A5-32E30106CD0C}_is1
O42 - Logiciel: GunZ2 - (...) [HKLM][64Bits] -- GunZ2
O42 - Logiciel: Larva Mortus - (.Rake In Grass.) [HKLM][64Bits] -- Steam App 11340
O42 - Logiciel: Resource Tuner 1.99 R6 - (.Heaventools Software.) [HKLM][64Bits] -- Resource Tuner_is1
O42 - Logiciel: S4Reborn - Installation - (...) [HKLM][64Bits] -- S4Reborn - Installation
O42 - Logiciel: Sauerbraten - (...) [HKLM][64Bits] -- Sauerbraten
O42 - Logiciel: Servarena 2.08 - (...) [HKLM][64Bits] -- ST6UNST #1
O42 - Logiciel: ezSystemFREE 4.2.6 - (.eLabtronics.) [HKLM][64Bits] -- {3257F80F-C226-4255-B7F0-8C417D99AE5C}_is1
~ Logic: 37 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKCU\Software\Heaventools]
[HKCU\Software\IM]
[HKCU\Software\MAIET]
[HKCU\Software\MW]
[HKCU\Software\Pando Networks]
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\devpro]
[HKLM\Software\Space]
[HKLM\Software\Wow6432Node\PacSteamT]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\SDGi Europe]
[HKLM\Software\Wow6432Node\Space]
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Zenimax_Online]
[HKLM\Software\Wow6432Node\id]
[HKLM\Software\Wow6432Node\AddressBook]
[HKLM\Software\Wow6432Node\AssaultCube]
[HKLM\Software\Wow6432Node\AuraKingdom-FR]
[HKLM\Software\Wow6432Node\DirectDrawEx]
[HKLM\Software\Wow6432Node\DNDownloader_is1]
[HKLM\Software\Wow6432Node\Dragon Nest Europe]
[HKLM\Software\Wow6432Node\GunZ2]
[HKLM\Software\Wow6432Node\IE40]
[HKLM\Software\Wow6432Node\IE4Data]
[HKLM\Software\Wow6432Node\IE5BAKEX]
[HKLM\Software\Wow6432Node\IEData]
[HKLM\Software\Wow6432Node\M2698023]
[HKLM\Software\Wow6432Node\M2833941]
[HKLM\Software\Wow6432Node\M979906]
[HKLM\Software\Wow6432Node\MobileOptionPack]
[HKLM\Software\Wow6432Node\Resource Tuner_is1]
[HKLM\Software\Wow6432Node\Rmtablet]
[HKLM\Software\Wow6432Node\S4Reborn - Installation]
[HKLM\Software\Wow6432Node\Sauerbraten]
[HKLM\Software\Wow6432Node\SchedulingAgent]
[HKLM\Software\Wow6432Node\ST6UNST #1]
[HKLM\Software\Wow6432Node\WIC]
[HKLM\Software\Wow6432Node\X-Mouse Button Control]
[HKLM\Software\6af12c54-643b-4752-87d0-8335503010de_is1]
[HKLM\Software\AddressBook]
[HKLM\Software\DirectDrawEx]
[HKLM\Software\DXM_Runtime] =>Spyware.Spyware.Zbot
[HKLM\Software\IE40]
[HKLM\Software\IE4Data]
[HKLM\Software\IE5BAKEX]
[HKLM\Software\IEData]
[HKLM\Software\M928366]
[HKLM\Software\MobileOptionPack]
[HKLM\Software\SchedulingAgent]
[HKLM\Software\WIC]
[HKCU\Software\Akamai]
[HKCU\Software\UnityWebPlayer]
~ Key Software: 432 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 09/02/2014 - 04:22:41 - [] ----D C:\Program Files (x86)\ArkalysGame
O43 - CFD: 17/01/2014 - 22:40:00 - [] ----D C:\Program Files (x86)\AssaultCube
O43 - CFD: 22/02/2014 - 13:32:17 - [] ----D C:\Program Files (x86)\DDS Viewer
O43 - CFD: 02/03/2014 - 20:45:39 - [] ----D C:\Program Files (x86)\ezSystemFREE
O43 - CFD: 12/01/2014 - 04:51:45 - [] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 20/02/2014 - 02:28:16 - [] ----D C:\Program Files (x86)\Resource Tuner
O43 - CFD: 17/01/2014 - 22:17:20 - [] ----D C:\Program Files (x86)\Sauerbraten
O43 - CFD: 19/01/2014 - 22:48:01 - [0] ----D C:\Program Files (x86)\SweetPacks =>PUP.SweetIM
O43 - CFD: 19/01/2014 - 22:44:28 - [] ----D C:\Program Files (x86)\sweetpacks bundle uninstaller =>PUP.SweetIM
O43 - CFD: 10/02/2014 - 08:54:02 - [] ----D C:\ProgramData\Elder Scrolls Online
O43 - CFD: 20/04/2014 - 12:47:59 - [] ----D C:\Users\Maël\AppData\Roaming\ArkalysGame
O43 - CFD: 22/03/2014 - 13:28:22 - [] ----D C:\Users\Maël\AppData\Roaming\Larva Mortus
O43 - CFD: 23/02/2014 - 18:06:40 - [] ----D C:\Users\Maël\AppData\Roaming\MisteurZ
O43 - CFD: 14/02/2014 - 23:09:40 - [] ----D C:\Users\Maël\AppData\Roaming\MVH
O43 - CFD: 15/02/2014 - 18:06:33 - [0] ----D C:\Users\Maël\AppData\Roaming\Oxy
O43 - CFD: 18/01/2014 - 14:38:15 - [] ----D C:\Users\Maël\AppData\Roaming\Reg
O43 - CFD: 20/02/2014 - 02:28:22 - [] ----D C:\Users\Maël\AppData\Roaming\Resource Tuner
O43 - CFD: 18/03/2014 - 00:13:49 - [] ----D C:\Users\Maël\AppData\Local\DayZ
O43 - CFD: 02/03/2014 - 20:55:30 - [] ----D C:\Users\Maël\AppData\Local\eLabtronics
O43 - CFD: 13/04/2014 - 00:10:47 - [] -SH-D C:\Users\Maël\AppData\Local\EmieSiteList
O43 - CFD: 13/04/2014 - 00:10:48 - [] -SH-D C:\Users\Maël\AppData\Local\EmieUserList
O43 - CFD: 09/03/2014 - 03:01:21 - [] ----D C:\Users\Maël\AppData\Local\Injector_Iro
O43 - CFD: 03/03/2014 - 00:08:36 - [] ----D C:\Users\Maël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PacSteamT
O43 - CFD: 17/01/2014 - 22:17:20 - [0] ----D C:\Users\Maël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sauerbraten
O43 - CFD: 30/03/2014 - 02:40:45 - [] ----D C:\Users\Maël\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDGi Europe
~ Program Folder: 248 Legitimates Filtered in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.877414B6DA248FB08C6757DCA823FAE9] - 17/04/2014 - 13:28:42 ---A- . (...) -- C:\Windows\game.ini [331]
~ Files: 59 Legitimates Filtered in 00mn 04s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{372342fe-96e7-11e3-aa8e-d0ff631da5d1}\AutoRun\command. (...) -- G:\SETUP.exe (.not file.)
O51 - MPSK:{b83af61e-940d-11e3-8b8d-807cbf63becd}\AutoRun\command. (...) -- F:\setup\rsrc\Autorun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\BlueStacks Agent [Key] . (...) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe (.not file.)
~ SMSR Keys: 13 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
~ Drivers: 16 Legitimates Filtered in 00mn 22s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 09/04/2012 - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys (AODDriver4.2) .(.Advanced Micro Devices - AMD OverDrive Service Driver.) - LEGACY_AODDRIVER4.2
O64 - Services: CurCS - 17/01/2014 - C:\Program Files\Sandboxie\SbieDrv.sys (SbieDrv) .(.Sandboxie Holdings, LLC - Sandboxie Kernel Mode Driver.) - LEGACY_SBIEDRV
~ Legacy: 80 Legitimates Filtered in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 11 Legitimates Filtered in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
~ Keys: Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.0D0CB56E6B5340DCAF1901D28F014C50] [SPRF][22/04/2014] (.Pas de propriétaire - Windows (C).) -- C:\Users\Maël\Desktop\RoyalBot Socket 2.5b.exe [2913492]
[MD5.B26B6BC3036772D20568F63D590D3FE2] [SPRF][08/03/2014] (...) -- C:\Users\Maël\Desktop\Servarena.exe [2320271]
~ Files: 5 Legitimates Filtered in 00mn 00s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{713473BE-AAAE-4463-AF8F-1A9FDD17F364}" | In - None - P6 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Maël\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
O87 - FAEL: "{F6145AC2-5847-4B05-9E72-8F9E2E7D5C3C}" | In - None - P17 - TRUE | .(.BitTorrent Inc. - µTorrent.) -- C:\Users\Maël\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Firewall: 2 Legitimates Filtered in 00mn 02s



---\\ Recherche de clés de registre Tracing (O100)
HKLM\SOFTWARE\Microsoft\Tracing\InstallManagerApp_RASAPI32 =>PUP.Manager
HKLM\SOFTWARE\Microsoft\Tracing\InstallManagerApp_RASMANCS =>PUP.Manager
~ BTK: 168 Legitimates Filtered in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 12/03/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 14/03/2014 1017424 | (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
SS - | Demand 17/03/2014 49152 | (BEService) . (...) - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
SS - | Auto 18/03/2014 116648 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 18/03/2014 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 29/02/2008 942080 | (jswpsapi) . (.Atheros Communications, Inc..) - C:\Program Files (x86)\NETGEAR\WN111v2\jswpsapi.exe
SS - | Auto 23/10/2013 172192 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Demand 25/02/2014 568512 | (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
SR - | Auto 29/03/2013 241152 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 28/03/2013 361984 | (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
SR - | Auto 14/03/2014 440400 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
SR - | Auto 14/03/2014 440400 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 15/04/2014 2227536 | (Hamachi2Svc) . (.LogMeIn Inc..) - Z:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
SR - | Auto 28/02/2014 9216 | (HiPatchService) . (.Hi-Rez Studios.) - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
SR - | Auto 10/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SR - | Auto 22/11/2013 105448 | (RzKLService) . (.Razer Inc..) - E:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
SR - | Auto 11/12/2013 32960 | (RzOvlMon) . (.Razer, Inc..) - C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
SR - | Auto 17/01/2014 187592 | (SbieSvc) . (.Sandboxie Holdings, LLC.) - C:\Program Files\Sandboxie\SbieSvc.exe
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 05s



---\\ Scan Additionnel (O88)
Database Version : 13044 - (22/04/2014)
Clés trouvées (Keys found) : 3
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 2
Fichiers trouvés (Files found) : 2

[HKCU\Software\DC3_FEXEC] =>Trojan.Fynloski
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
C:\Program Files (x86)\SweetPacks =>PUP.SweetIM^
C:\Program Files (x86)\sweetpacks bundle uninstaller =>PUP.SweetIM^
[HKCU\Software\Conduit] =>Toolbar.Conduit^
[HKLM\Software\DXM_Runtime] =>Spyware.Spyware.Zbot^
~ Additionnel Scan: 220461 Items scanned in 00mn 29s



---\\ Récapitulatif des détections trouvées sur votre station
http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
http://nicolascoolman.webs.com/apps/blog/show/32240257-trojan-fynloski =>Trojan.Fynloski
http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
http://nicolascoolman.webs.com/apps/blog/show/34213529-pup-manager =>PUP.Manager
~ MSI: 4 link(s) detected in 00mn 00s



~ 989 Legitimates filtered by white list
End of the scan (555 lines in 02mn 00s)(0)

Publicité


Signaler le contenu de ce document

Publicité