~ ZHPDiag v2016.1.31.23 Par Nicolas Coolman (2016/01/30)
~ Démarré par PHILIPPE PINCHI (Administrator) (2017/03/12 08:32:18)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Pas de fichier réseau
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\PHILIPPE PINCHI\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\PHILIPPE PINCHI\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 52.0 ESR (x86 fr)
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : KO
Windows Activation Technologies : KO
Windows Genuine Advantage : OK

---\\ Logiciels de protection (1) - 4s
ZoneAlarm Firewall v14.0.522.000

---\\ Logiciels d'optimisation (1) - 6s
CCleaner v5.22

---\\ Surveillance de Logiciels (2) - 6s
Adobe Flash Player 24 NPAPI
Adobe Reader X

---\\ Informations sur le système (6) - 1s
~ Operating System: x86 Family 15 Model 107 Stepping 1, AuthenticAMD
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2096.228 MB (52% free)
System Restore: Activé (Enable)
System drive C: has 14 GB () free of 60 GB =>Alerte espace disque inférieur à 20 Go

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: P-PINCHI
~ User Name: PHILIPPE PINCHI
~ Logged in as Administrator

---\\ Enumération des unités disques (6) - 0s
~ Drive C: has 14 GB free of 60 GB (System)
~ Drive E: has 131 GB free of 158 GB
~ Drive F: has 31 GB free of 92 GB
~ Drive H: has 92 GB free of 158 GB
~ Drive I: has 132 GB free of 158 GB
~ Drive K: has 31 GB free of 305 GB

---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1037824] =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] =>.Microsoft Corporation
[MD5.1643EF58F167E8EDA0566EA4402ECB8D] - 24/02/2014 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] =>.Microsoft Corporation
[MD5.D76A076ADB74F8132924E498D63123A2] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] =>.Microsoft Corporation
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 13/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 13/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 14/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 13/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 13/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 13/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 13/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 13/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 13/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 14/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation

---\\ Liste des services NT non Microsoft et non désactivés (icon_cool.gif - 1s
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner LSP Service.) - C:\Program Files\Avira\Antivirus\avmailc.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG - AntiVir WebGuard Service.) - C:\Program Files\Avira\Antivirus\avwebgrd.exe =>.Avira Operations GmbH & Co. KG®
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - Avast Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe {07C70F7CAB145BC1ED385FBE69FA3130} =>.AVAST Software
O23 - Service: Avira Service Host (Avira.ServiceHost) . (...) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe (.not file.)
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - C:\Program Files\Nero\Update\NASvc.exe =>.Nero AG®
O23 - Service: TeamViewer 11 (TeamViewer) . (.TeamViewer GmbH - TeamViewer 11.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (15) - 18s

SS - Demand [15/02/2017] [ 270936] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Auto [18/08/2016] [ 970632] Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avmailc.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [18/08/2016] [ 470600] Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\sched.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [18/08/2016] [ 470600] Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avguard.exe =>.Avira Operations GmbH & Co. KG®
SS - Auto [18/08/2016] [ 1253352] Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Antivirus\avwebgrd.exe =>.Avira Operations GmbH & Co. KG®
SR - Demand [10/03/2017] [ 5545144] aswbIDSAgent (aswbIDSAgent) . (.AVAST Software s.r.o..) - C:\Program Files\AVAST Software\Avast\aswidsagent.exe {07C70F7CAB145BC1ED385FBE69FA3130} =>.Avast Software s.r.o.
SR - Auto [10/03/2017] [ 262736] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe {07C70F7CAB145BC1ED385FBE69FA3130} =>.AVAST Software
SS - Demand [12/08/2014] [ 136120] Google Updater Service (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe =>.Google Inc®
SS - Demand [09/03/2017] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [15/07/2014] [ 786256] Nero Update (NAUpdate) . (.Nero AG.) - C:\Program Files\Nero\Update\NASvc.exe =>.Nero AG®
SS - Disabl [30/08/2012] [ 164200] NVIDIA Driver Helper Service (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe =>.NVIDIA Corporation®
SS - Demand [30/08/2012] [ 1258856] NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe =>.NVIDIA Corporation®
SS - Demand [04/02/2013] [ 155824] Sony PC Companion (Sony PC Companion) . (.Avanquest Software.) - C:\Program Files\Sony\Sony PC Companion\PCCService.exe =>.Avanquest Software
SR - Auto [12/05/2016] [ 7032080] TeamViewer 11 (TeamViewer) . (.TeamViewer GmbH.) - C:\Program Files\TeamViewer\TeamViewer_Service.exe =>.TeamViewer®

---\\ Processus lancés (10) - 1s
[MD5.5258A3572C59D8CAA4D5FDD9EF13674E] - (.AVAST Software - Avast Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736] [PID.1216] {07C70F7CAB145BC1ED385FBE69FA3130} =>.AVAST Software
[MD5.C9E32D5C6944192E7676E2EE2B859779] - (.Creative Technology Ltd - Creative Scheduler.) -- C:\Program Files\Creative\Shared Files\CTSched.exe [53340] [PID.540] =>.Creative Technology Ltd
[MD5.F8E15069B93452A686DAB79474782A04] - (.AVAST Software - Avast Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9434656] [PID.948] {07C70F7CAB145BC1ED385FBE69FA3130} =>.AVAST Software
[MD5.C714171609FE1614521B409B9EBE5667] - (.Ulrich Krebs - Calendar, ToDo-Manager and Reminder.) -- F:\Program Files\Kalender\Kalender.exe [991232] [PID.900] =>.Ulrich Krebs
[MD5.1A42F95615006278BC60D88118A1B696] - (.FireStarter - PrtScr.) -- F:\Program Files\PrtScr\PrtScr.exe [1700864] [PID.620]
[MD5.988CDC4DAE2186F3A5ED6EE7D3E6B5CA] - (.Nero AG - NeroUpdate.) -- C:\Program Files\Nero\Update\NASvc.exe [786256] [PID.1532] =>.Nero AG®
[MD5.D6DDCFFF145CB7D334EECC2F9A8E304F] - (.TeamViewer GmbH - TeamViewer 11.) -- C:\Program Files\TeamViewer\TeamViewer_Service.exe [7032080] [PID.1848] =>.TeamViewer®
[MD5.FFDCD69943FCD41BAE768E3D8403DED6] - (.AVAST Software s.r.o. - Avast Behavior Shield.) -- C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5545144] [PID.2916] {07C70F7CAB145BC1ED385FBE69FA3130} =>.Avast Software s.r.o.
[MD5.8A7CB74849388AC73EE40A3B75A34E50] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [517064] [PID.2624] =>.Mozilla Corporation®
[MD5.FF9CE0FC9E3B4BC22001764A9EFE4741] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\PHILIPPE PINCHI\Bureau\ZHPDiag3.exe [2105344] [PID.3304] =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (2) - 0s
G2 - GCE: Preference [User Data\Default] [icmlaeflemplmjndnaapfdbbnpncnbda] avast! WebRep
G2 - GCE: Preference [User Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] __MSG_extname__

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (6) - 2s
M0 - MFSP: prefs.js [PHILIPPE PINCHI - 1r8rrh0b.default-1485626778437] https://www.google.fr/?gfe_rd=cr&ei=zMGNWL-XF_PS8AfnzoOQDw
P2 - EXT FILE: (...) -- C:\Documents and Settings\PHILIPPE PINCHI\Application Data\Mozilla\Firefox\Profiles\1r8rrh0b.default-1485626778437\extensions\translator@zoli.bod.xpi
P2 - EXT FILE: (...) -- C:\Documents and Settings\PHILIPPE PINCHI\Application Data\Mozilla\Firefox\Profiles\1r8rrh0b.default-1485626778437\extensions\uBlock0@raymondhill.net.xpi
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_221.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp] - (...) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf] - (...) -- C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (11) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/

R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer,Proxy Management (icon_cool.gif - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (1)

---\\ Browser Helper Object de navigateur (BHO) (6) - 1s
O2 - BHO: Increase performance and video formats for your HTML5