cjoint

Publicité


Publicité

Commentaire : What happend next ?

Format du document : text/plain

Prévisualisation

Rapport de ZHPDiag v1.24.18 par Nicolas Coolman
Run by Asus at 07/11/2015 12:01:34
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Platform : Windows 10 Home
MSIE: Internet Explorer v9.11.10240.16384

Boot mode: Normal (Normal boot)
Total RAM: 4,0 Gb (70 % free)
System drive C: 185 Go (45 Go free)

---\\ Processus lancés
C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Users\Asus\AppData\Local\Microsoft\OneDrive\OneDrive.exe

---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=explorer.exe

---\\ Pages de recherche d'Internet Explorer (R1)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

---\\ Internet Explorer URLSearchHook (R3)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {dfabc5b5-039b-4865-979a-de31cdf3e351} - (not file)

---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: BHO Project - {9193fbaf-bdaf-4751-a99a-1f5ef255c35b} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: SearchBar - {c9a6357b-25cc-4bcf-96c1-78736985d412} - mscoree.dll

---\\ Applications démarrées automatiquement par le registre (O4)
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [UserBot.exe] C:\Program Files (x86)\Dofus 2\app\ui\tasknetwork.exe
O4 - HKLM\..\Run: [BCSSync] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [tasknetwork.exe] C:\Program Files (x86)\Dofus2\app\ui\tasknetwork.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [OneDrive] C:\Users\Asus\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_B0B5DBA32B613FF311B38CBA9A3B300E] C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" --no-startup-window
O4 - HKLM\..\policies\Explorer: [ForceActiveDesktopOn] Data=0
O4 - HKLM\..\policies\Explorer: [NoActiveDesktop] Data=1
O4 - HKLM\..\policies\Explorer: [NoRecentDocsHistory] Data=0
O4 - HKLM\..\policies\Explorer: [NoActiveDesktopChanges] Data=0
O4 - Global Startup: McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe
O4 - Global Startup: Canon IJ Status Monitor Canon Inkjet PIXMA iP3000.lnk - C:\Windows\system32\rundll32.exe
O4 - Global Startup: OpenOffice.org 3.1.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe

---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll,103
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\PROGRA~2\MICROS~1\Office14\ONBTTN~1.DLL,103

---\\ Onglet supplémentaire dans les options avancées d'Internet Explorer (O11)
O11 - Options group: [accelerated_graphics] Accelerated graphics - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [accessibility] Accessibility - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [browse] Browsing - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [crypto] Security - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [http] HTTP settings - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [international] International - C:\Windows\SysWOW64\inetcpl.cpl
O11 - Options group: [multimedia] Multimedia - C:\Windows\SysWOW64\inetcpl.cpl

---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

---\\ Protocole additionnel et piratage de protocole (O18)
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll
O18 - Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - (not file)

---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Norton Security Scan for MATOP & BATOP.job
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Scheduled scanning task.job

---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\system32\unregmp2.exe /ShowWMP
O40 - ASIC: Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - (not file)
O40 - ASIC: Microsoft Windows Media Player 12.0 - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\SysWOW64\wmpdxm.dll
O40 - ASIC: Offline Browsing Pack - {3af36230-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
O40 - ASIC: DirectDrawEx - {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - (not file)
O40 - ASIC: Internet Explorer Help - {45ea75a0-a269-11d1-b5bf-0000f8051515} - (not file)
O40 - ASIC: Microsoft Windows Script 5.6 - {4f645220-306d-11d2-995d-00c04f98bbc9} - (not file)
O40 - ASIC: Internet Explorer Setup Tools - {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Browsing Enhancements - {630b1da0-b465-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\WINDOWS\system32\unregmp2.exe /FirstLogon
O40 - ASIC: MSN Site Access - {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - (not file)
O40 - ASIC: Address Book 7 - {7790769C-0471-11d2-AF11-00C04FA35D02} - (not file)
O40 - ASIC: .NET Framework - {7C028AF8-F614-47B3-82DA-BA94E41B1089} - (not file)
O40 - ASIC: (no name) - {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
O40 - ASIC: Google Chrome - {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.80\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
O40 - ASIC: Dynamic HTML Data Binding - {9381D8F2-0288-11D0-9501-00AA00B911A5} - (not file)
O40 - ASIC: .NET Framework - {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - (not file)
O40 - ASIC: Internet Explorer Core Fonts - {C9E9A340-D1F1-11D0-821E-444553540600} - (not file)
O40 - ASIC: .NET Framework - {D3D70DDE-B3B4-33DE-A8CD-808A85D68682} - (not file)
O40 - ASIC: HTML Help - {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - (not file)
O40 - ASIC: Active Directory Service Interface - {E92B03AB-B707-11d2-9CBD-0000F87A369E} - (not file)

---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe Digital Editions 4.0
O42 - Logiciel: Adobe Flash Player 19 NPAPI
O42 - Logiciel: Apple Application Support (32 bits)
O42 - Logiciel: Apple Software Update
O42 - Logiciel: Audacity 2.0.6
O42 - Logiciel: Caesar 3
O42 - Logiciel: Call of Duty: Ghosts
O42 - Logiciel: Call of Duty: Ghosts - Multiplayer
O42 - Logiciel: Company of Heroes 2
O42 - Logiciel: Empires Dawn of the Modern World
O42 - Logiciel: Google Chrome
O42 - Logiciel: Microsoft Office Access MUI (French) 2010
O42 - Logiciel: Microsoft Office Excel MUI (French) 2010
O42 - Logiciel: Microsoft Office Groove MUI (French) 2010
O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2010
O42 - Logiciel: Microsoft Office OneNote MUI (French) 2010
O42 - Logiciel: Microsoft Office Outlook MUI (French) 2010
O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2010
O42 - Logiciel: Microsoft Office PowerPoint Viewer 2007 (French)
O42 - Logiciel: Microsoft Office Professional Plus 2010
O42 - Logiciel: Microsoft Office Proof (Arabic) 2010
O42 - Logiciel: Microsoft Office Proof (Dutch) 2010
O42 - Logiciel: Microsoft Office Proof (English) 2010
O42 - Logiciel: Microsoft Office Proof (French) 2010
O42 - Logiciel: Microsoft Office Proof (German) 2010
O42 - Logiciel: Microsoft Office Proof (Spanish) 2010
O42 - Logiciel: Microsoft Office Proofing (French) 2010
O42 - Logiciel: Microsoft Office Publisher MUI (French) 2010
O42 - Logiciel: Microsoft Office Shared MUI (French) 2010
O42 - Logiciel: Microsoft Office Word MUI (French) 2010
O42 - Logiciel: Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
O42 - Logiciel: Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
O42 - Logiciel: Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
O42 - Logiciel: Orange Plug-in messagerie vocale 888
O42 - Logiciel: Skype™ 6.20
O42 - Logiciel: Unreal Tournament 3
O42 - Logiciel: Utilitaires Sierra
O42 - Logiciel: µTorrent

---\\ Contenu des dossiers Fichiers Communs (O43)
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\45371eb7-630d-4a1b-8093-0ca04b862183
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Activision
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Adobe
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\AGEIA Technologies
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Apple Software Update
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Audacity
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Blitzkrieg
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Bonjour
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Bridge Building Game
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Company of Heroes 2
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\d3cbb5a6-7bd9-4035-9fb4-c3b869747041
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\DAEMON Tools Lite
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EA GAMES
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\EVARISTE
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Google
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\HP
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Intel
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\iTunes
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Labcenter Electronics
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MagicISO
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Games
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Microsoft Office
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Mozilla Thunderbird
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\MSBuild
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\MSECache
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Optgeo
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Orange
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\PhotoFiltre 7
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Red Kawa
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Sierra On-Line
O43 - CFD:Common File Directory R---D- C:\Program Files (x86)\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\SoftSoft
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Software
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Steam
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Unreal Tournament 3
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\uTorrent
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VIA
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\VideoLAN
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Winamp
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Live
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows NT
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Phone
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD:Common File Directory -SH-D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD:Common File Directory -S--D- C:\Program Files (x86)\WindowsPowerShell
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\WinRAR
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Ahead
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\BOONTY Shared
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Common Files\Designer
O43 - CFD:Common File Directory --H-D- C:\Program Files (x86)\Common Files\EAInstaller
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\eDrawings2009
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Labcenter Electronics
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Overwolf
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD:Common File Directory ---AD- C:\Program Files (x86)\Common Files\Skype
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SolidWorks Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Steam
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD:Common File Directory ----D- C:\Program Files (x86)\Common Files\Windows Live

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:Last File Created 07/11/2015 - 10:57:56 ---A- C:\WINDOWS\setupact.log
O44 - LFC:Last File Created 07/11/2015 - 11:40:27 ---A- C:\WINDOWS\PFRO.log
O44 - LFC:Last File Created 07/11/2015 - 11:55:01 -S-A- C:\WINDOWS\bootstat.dat
O44 - LFC:Last File Created 07/11/2015 - 11:55:06 ---A- C:\WINDOWS\WindowsUpdate.log
O44 - LFC:Last File Created 16/10/2015 - 04:10:46 ---A- C:\WINDOWS\System32\FlashPlayerApp.exe
O44 - LFC:Last File Created 16/10/2015 - 04:10:46 ---A- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl

---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

---\\ Trojan Driver Search Data (TDSD) (O52)
O52 - TDSD:HKLM\...\Drivers32\"midimapper"="midimap.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.imaadpcm"="imaadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.l3acm"="C:\Windows\SysWOW64\l3codeca.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msadpcm"="msadp32.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msg711"="msg711.acm"
O52 - TDSD:HKLM\...\Drivers32\"msacm.msgsm610"="msgsm32.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.cvid"="iccvid.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.i420"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iyuv"="iyuv_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.mrle"="msrle32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.msvc"="msvidc32.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.uyvy"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.yuy2"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.yvu9"="tsbyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"vidc.yvyu"="msyuv.dll"
O52 - TDSD:HKLM\...\Drivers32\"wavemapper"="msacm32.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer1"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"aux"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer3"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"wave2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"midi2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"mixer2"="wdmaud.drv"
O52 - TDSD:HKLM\...\Drivers32\"msacm.siren"="sirenacm.dll"
O52 - TDSD:HKLM\...\Drivers32\"msacm.vorbis"="vorbis.acm"
O52 - TDSD:HKLM\...\Drivers32\"vidc.iv50"="ir50_32.dll"
O52 - TDSD:HKLM\...\Drivers32\"VIDC.IV41"="IR41_32.AX"
O52 - TDSD:HKLM\...\drivers.desc\"C:\Windows\SysWOW64\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec"
O52 - TDSD:HKLM\...\drivers.desc\"sirenacm.dll"="Messenger Audio Codec"
O52 - TDSD:HKLM\...\drivers.desc\"vorbis.acm"="Ogg Vorbis Audio CODEC"
O52 - TDSD:HKLM\...\drivers.desc\"ir50_32.dll"="Indeo® Video 5,10"

---\\ Microsoft Windows Policies System (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "DSCAutomationHostEnabled"=2
O55 - MWPS:[HKLM\...\Policies\System] - "EnableCursorSuppression"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

---\\ Microsoft Windows Policies Explorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\Policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoRecentDocsHistory"=0
O56 - MWPE:[HKLM\...\Policies\Explorer] - "NoActiveDesktopChanges"=0

---\\ Liste des Drivers Système (SDL) (O58)
O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
O58 - SDL:System Drivers List - C:\WINDOWS\system32\drivers\StarOpen.sys

---\\ Liste des outils de nettoyage (LATC) (O63)
O63 - Logiciel: ZHPDiag 1.24


End of the scan: 347 lines

Publicité


Signaler le contenu de ce document

Publicité