cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12)



~ Rapport: C:\Users\--\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\--\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 64-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (3) - 0s
MFIE: Mozilla Firefox 33.0 (x86 fr) v33.0
OPIE: Opera 1.0.1040 v1.0.1040
MSIE: Internet Explorer v11.0.9600.17843

---\\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_SLP channel
Windows ID Activation : OK
~ Windows Partial Key : JF789
Windows License : OK
~ Windows Remaining Initializations Number : 4
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s

Malwarebytes Anti-Malware version 2.1.6.1022

---\\ Logiciels d'optimisation (1) - 1s
CCleaner v5.04

---\\ Surveillance de Logiciels (2) - 1s
Adobe Flash Player 10 ActiveX
Adobe Reader 64-bit fixes

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 8272204
~ System Restore: Activé (Enable)
~ System drive C: has 344 GB free of 509 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-User

~ User Name: User
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 344 GB free of 509 GB (System)
~ Drive P: has 132 GB free of 233 GB
~ Drive T: has 154 GB free of 179 GB

---\\ Recherche particulière de fichiers génériques (23) - 0s
Rien a signaler dans cette section


---\\ Processus lancés (6) - 0s
Rien a signaler dans cette section


---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (14) - 1s
Rien a signaler dans cette section



---\\ Opera, Démarrage,Recherche,Plugins (B0,B1,B2) (2) - 0s
Rien a signaler dans cette section


---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (11) - 0s

R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer


---\\ Internet Explorer, Proxy Management (R5) (3) - 0s

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s

F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (0)


---\\ Browser Helper Object de navigateur (BHO) (O2) (7) - 0s

O2 - BHO: bteagleget.com [64Bits] - {1E871FF8-029C-4732-8AA7-39E3D3872057} (Orphean)
O2 - BHO: (no name) [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Orphean)
O2 - BHO: (no name) [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} (Orphean)
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Orphean)
O2 - BHO: (no name) [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} (Orphean)
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} (Orphean)

---\\ Applications lancées au démarrage du sytème (O4) (11) - 0s

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe

---\\ Modification Domaine/Adresses DNS (O17) (9) - 0s

Rien a signaler dans cette section



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) (1) - 0s
Rien a signaler dans cette section


---\\ Liste des services NT non Microsoft et non désactivés (O23) (5) - 1s
Rien a signaler dans cette section




---\\ Enumère les données de BootExecute (BEX) (O34) (1) - 0s

O34 - HKLM BootExecute: (BootDefrag.exe) - File not found

---\\ Tâches planifiées en automatique (O39) (14) - 1s


O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{2B83CD0C-C32D-49F3-B25F-F3340BFA4806} [3154]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{42CD2A49-717E-4090-84C6-071F5942652C} [3182]
O39 - APT:Automatic Planified Task - (...) -- C:\Windows\System32\Tasks\{B983002D-928E-46D1-B671-9FDF6CB175C7} [3284]

---\\ Logiciels installés (O42) (99) - 7s


O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: Windows Process Security 2.1 - (.WindowsProcessSecurity Software Inc.) [HKLM][64Bits] -- WindowsProcessSecurity
O42 - Logiciel: WinPcap 4.1.3 - (.Riverbed Technology, Inc..) [HKLM][64Bits] -- WinPcapInst
O42 - Logiciel: System Requirements Lab for Intel - (.Husdawg, LLC.) [HKLM][64Bits] -- {04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: tools-netware - (.VMware, Inc..) [HKLM][64Bits] -- {197597A7-AD33-4898-9D8E-73066818B464}O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Microsoft Report Viewer 2014 Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {4EE33A9D-9007-487B-A8EE-B9AE530A5E30}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: tools-winPre2k - (.VMware, Inc..) [HKLM][64Bits] -- {AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}


---\\ HKCU & HKLM Software Keys (107) - 7s


HKLM\SOFTWARE\Wow6432Node\Borland
HKLM\SOFTWARE\Wow6432Node\Canneverbe Limited = Cd burner XP
HKLM\SOFTWARE\Wow6432Node\ej-technologies
HKLM\SOFTWARE\Wow6432Node\JreMetrics
HKLM\SOFTWARE\Wow6432Node\Khronos
HKLM\SOFTWARE\Wow6432Node\MAXSOFT-OCRON
HKLM\SOFTWARE\Wow6432Node\ODBC
HKLM\SOFTWARE\Wow6432Node\Origin Games
HKLM\SOFTWARE\Wow6432Node\PowerPivot
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities Inc
HKLM\SOFTWARE\Wow6432Node\SlimWare Utilities, Inc.
HKLM\SOFTWARE\Wow6432Node\ThinPrint
HKLM\SOFTWARE\Wow6432Node\WinPcap
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\BCCP
HKCU\SOFTWARE\Big Angry Dog
HKCU\SOFTWARE\Borland
HKCU\SOFTWARE\BugSplat
HKCU\SOFTWARE\ej-technologies
HKCU\SOFTWARE\FreeTime
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Innovative Solutions
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\ksdev
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\LogMeIn
HKCU\SOFTWARE\LogMeIn Ignition
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\MainConcept (Consumer)
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RegisteredApplications
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\SysProgs
HKCU\SOFTWARE\System Requirements Lab
HKCU\SOFTWARE\TAdvCheckList
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Windows Process Security
HKCU\SOFTWARE\AppDataLow\SOFTWARE
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\ThinPrint


---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (229) - 5s


allShield Installation Information


O43 - CFD: 2014/07/13 19:21:12 - [] D -- C:\Program Files (x86)\SystemRequirementsLab
O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 2014/03/16 21:29:31 - [] D -- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 2014/12/13 12:37:01 - [] D -- C:\Program Files (x86)\Windows Process Security
O43 - CFD: 2014/11/12 18:20:20 - [] D -- C:\Program Files (x86)\WinPcap
O43 - CFD: 2009/07/14 07:08:56 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2015/03/07 13:44:01 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 2014/03/16 16:54:50 - [] D -- C:\ProgramData\SonicFocus
O43 - CFD: 2014/03/22 11:36:11 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 2014/10/20 14:54:14 - [] D -- C:\Program Files (x86)\Common Files\Borland Shared
O43 - CFD: 2014/07/13 22:09:40 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD: 2014/08/09 13:35:06 - [] D -- C:\Users\User\AppData\Roaming\chc
O43 - CFD: 2014/08/09 13:35:06 - [] D -- C:\Users\User\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 2015/04/03 19:53:43 - [0] D -- C:\Users\User\AppData\Roaming\DMCache
O43 - CFD: 2015/03/08 01:43:49 - [] D -- C:\Users\User\AppData\Roaming\dvdcss

O43 - CFD: 2014/03/22 11:36:11 - [] D -- C:\Users\User\AppData\Roaming\HP
O43 - CFD: 2014/03/16 16:31:53 - [] D -- C:\Users\User\AppData\Roaming\Identities
O43 - CFD: 2014/10/04 12:58:52 - [] D -- C:\Users\User\AppData\Roaming\Intel

O43 - CFD: 2015/03/15 22:08:40 - [] D -- C:\Users\User\AppData\Roaming\IsolatedStorage
O43 - CFD: 2014/07/13 19:21:06 - [] D -- C:\Users\User\AppData\Roaming\SystemRequirementsLab
O43 - CFD: 2014/03/16 16:31:36 - [0] SHD -- C:\Users\User\AppData\Local\Application Data
O43 - CFD: 2014/06/08 01:47:53 - [0] D -- C:\Users\User\AppData\Local\BigAngryDog_HWipe
O43 - CFD: 2014/09/02 22:42:44 - [0] D -- C:\Users\User\AppData\Local\calibre-cache
O43 - CFD: 2015/05/28 00:38:21 - [0] D -- C:\Users\User\AppData\Local\CrashDumps
O43 - CFD: 2015/05/04 21:29:55 - [0] D -- C:\Users\User\AppData\Local\ElevatedDiagnostics
O43 - CFD: 2015/06/23 21:10:11 - [0] SHD -- C:\Users\User\AppData\Local\EmieBrowserModeList
O43 - CFD: 2015/06/23 21:10:11 - [0] SHD -- C:\Users\User\AppData\Local\EmieSiteList
O43 - CFD: 2015/06/23 21:10:11 - [0] SHD -- C:\Users\User\AppData\Local\EmieUserList
O43 - CFD: 2014/06/11 20:26:20 - [] D -- C:\Users\User\AppData\Local\ESN
O43 - CFD: 2014/09/20 20:32:15 - [] D -- C:\Users\User\AppData\Local\Google
O43 - CFD: 2015/06/02 19:23:00 - [] D -- C:\Users\User\AppData\Local\GWX
O43 - CFD: 2015/07/13 19:28:53 - [] D -- C:\Users\User\AppData\Local\LogMeInIgnition
O43 - CFD: 2014/03/26 01:38:03 - [0] DC -- C:\Users\User\AppData\Local\MigWiz
O43 - CFD: 2014/03/16 20:24:48 - [] D -- C:\Users\User\AppData\Local\Programs

O43 - CFD: 2015/07/14 11:17:52 - [] D -- C:\Users\User\AppData\Local\Temp
O43 - CFD: 2014/12/13 12:36:58 - [] D -- C:\Users\User\AppData\Local\TempImg




---\\ Enumération des clés de registre StartupReg (SMSR) (O53) (26) - 1s


O53 - SMSR:HKLM\...\startupreg\Akamai NetSession Interface [Key] . (...) -- C:\Users\User\AppData\Local\Akamai\netsession_win.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (...) -- C:\Windows\system32\hkcmd.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Persistence [Key] . (...) -- C:\Windows\system32\igfxpers.exe (.not file.)

---\\ Liste des pilotes du système (SDL) (O58) (84) - 2s


O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [491088]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [339536]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\drivers\adpu320.sys [182864]
O58 - SDL:2009/07/14 03:52:21 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [15440]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys [107904]
O58 - SDL:2009/07/14 03:52:20 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys [194128]
O58 - SDL:2011/03/11 08:41:12 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys [27008]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [87632]
O58 - SDL:2009/07/14 03:52:21 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [97856]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [18432]
O58 - SDL:2009/06/10 22:41:06 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [8704]
O58 - SDL:2009/07/14 03:19:07 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [286720]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [47104]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:2009/06/10 22:41:10 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [14720]
O58 - SDL:2009/06/10 22:34:28 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbda.sys [468480]
O58 - SDL:2009/07/14 03:52:31 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [17488]
O58 - SDL:2009/07/14 03:47:48 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [530496]
O58 - SDL:2009/06/10 22:34:33 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbda.sys [3286016]
O58 - SDL:2009/06/10 22:31:59 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys [31232]
O58 - SDL:2012/07/17 18:12:08 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\drivers\HECIx64.sys [62784]
O58 - SDL:2010/11/20 15:33:35 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys [78720]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [114752]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [106560]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys [65600]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [115776]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [35392]
O58 - SDL:2009/07/14 03:48:04 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [284736]
O58 - SDL:2009/07/14 03:45:46 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1524816]
O58 - SDL:2009/07/14 03:45:45 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [128592]
O58 - SDL:2009/07/14 02:00:40 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\serial.sys [94208]
O58 - SDL:2009/07/14 03:45:45 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys [43584]
O58 - SDL:2009/07/14 03:45:46 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [80464]
O58 - SDL:2009/07/14 03:45:55 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys [24656]
O58 - SDL:2015/03/07 14:00:55 A . (.SlimWare Utilities, Inc. - Driver Update Installer Monitor.) -- C:\Windows\System32\drivers\SWDUMon.sys [16056]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [17488]
O58 - SDL:2009/07/14 03:45:55 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [161872]



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (1) - 24s
O61 - LFC: 2015/07/11 20:14:20 A . (..) -- C:\Users\User\AppData\Local\Adobe\Acrobat\10.0\UserCache.bin [108704]

---\\ Associations Shell Spawning (O67) (10) - 0s

O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S


---\\ Menu de démarrage Internet (SMI) (O68) (12) - 1s
Rien a signaler dans cette section



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (2) - 6s

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {AFAD03A9-7734-4A26-A675-1590F32AA784} - (Google) - http://www.google.com/


---\\ Enumère les services démarrés par Svchost (SSS) (O83) (32) - 1s

O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\system32\profsvc.dll [210432]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]


---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (25) - 8s

Rien a signaler dans cette section - j'ai arrété les services inutiles



~ End of the scan, 70733 items in 62 seconds (808)(0)()

Publicité


Signaler le contenu de ce document

Publicité