cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2016.1.31.23 Par Nicolas Coolman (2016/01/30)
~ Démarré par Jérôme (Administrator) (2016/08/22 14:02:48)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Pas de fichier réseau
~ Mode: Scanner
~ Rapport: C:\Documents and Settings\Jérôme\Bureau\ZHPDiag.txt
~ Rapport: C:\Documents and Settings\Jérôme\Application Data\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows XP, 32-bit Service Pack 3 (Build 2600)

---\\ Navigateurs Internet (2) - 0s
MFIE: Mozilla Firefox 47.0 (x86 fr)
MSIE: Internet Explorer v8.0.6001.18702

---\\ Informations sur les produits Windows (3) - 0s
Windows Automatic Updates : OK
Windows Activation Technologies : KO
Windows Genuine Advantage : OK

---\\ Logiciels de protection (2) - 4s
Microsoft Security Client FR-FR Language Pack v2.1.1116.0
ZoneAlarm LTD Toolbar

---\\ Logiciels d'optimisation (1) - 5s
CCleaner v5.13

---\\ Surveillance de Logiciels (2) - 5s
Adobe Flash Player 22 NPAPI
Adobe Reader XI

---\\ Logiciels de partage P2P (1) - 5s
eMule

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 15 Model 2 Stepping 9, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2096.62 MB (75% free)
System Restore: Activé (Enable)
System drive C: has 59 GB () free of 98 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: JEX-VADE4AVNTY5
~ User Name: Jérôme
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 1s
~ Drive C: has 59 GB free of 98 GB (System)
~ Drive D: has 65 GB free of 89 GB
~ Drive E: has 1 GB free of 2 GB

---\\ Etat du Centre de Sécurité Windows (9) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] XMLLookup: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Intl: Modified
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (23) - 0s
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - 14/04/2008 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [1037824] =>.Microsoft Corporation
[MD5.93AD0B78C7357A05F50E594EC7C22300] - 14/04/2008 - (.Microsoft Corporation - Exécuter une DLL en tant qu'application.) -- C:\WINDOWS\System32\rundll32.exe [33792] =>.Microsoft Corporation
[MD5.E1948B1F45A176FB4A0251446A5AE86D] - 06/03/2014 - (.Microsoft Corporation - Internet Extensions for Win32.) -- C:\WINDOWS\System32\wininet.dll [920064] =>.Microsoft Corporation
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - 14/04/2008 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [512000] =>.Microsoft Corporation
[MD5.D76A076ADB74F8132924E498D63123A2] - 03/03/2011 - (.Microsoft Corporation - DNS Client API DLL.) -- C:\WINDOWS\System32\dnsapi.dll [149504] =>.Microsoft Corporation
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - 17/08/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [138496] =>.Microsoft Corporation
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - 13/04/2008 - (.Microsoft Corporation - IDE/ATAPI Port Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [96512] =>.Microsoft Corporation
[MD5.C885B02847F5D2FD45A24E219ED93B32] - 13/04/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [63744] =>.Microsoft Corporation
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - 13/04/2008 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [62976] =>.Microsoft Corporation
[MD5.31F923EB2170FC172C81ABDA0045D18C] - 14/04/2008 - (.Microsoft Corporation - Pilote de cryptographie FIPS.) -- C:\WINDOWS\System32\drivers\Fips.sys [44672] =>.Microsoft Corporation
[MD5.573C7D0A32852B48F3058CFD8026F511] - 13/04/2008 - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - 14/04/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [54144] =>.Microsoft Corporation
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - 13/04/2008 - (.Microsoft Corporation - IMAPI Kernel Driver.) -- C:\WINDOWS\System32\drivers\Imapi.sys [42112] =>.Microsoft Corporation
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - 13/04/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [152832] =>.Microsoft Corporation
[MD5.23C74D75E36E7158768DD63D92789A91] - 13/04/2008 - (.Microsoft Corporation - IPSec Driver.) -- C:\WINDOWS\System32\drivers\IPSec.sys [75264] =>.Microsoft Corporation
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - 15/07/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [456320] =>.Microsoft Corporation
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - 13/04/2008 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [162816] =>.Microsoft Corporation
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - 13/04/2008 - (.Microsoft Corporation - NT File System Driver.) -- C:\WINDOWS\System32\drivers\ntfs.sys [574976] =>.Microsoft Corporation
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - 14/04/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [80384] =>.Microsoft Corporation
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - 13/04/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [51328] =>.Microsoft Corporation
[MD5.15CABD0F7C00C47C70124907916AF3F1] - 13/04/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [196224] =>.Microsoft Corporation
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - 14/04/2008 - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) -- C:\WINDOWS\System32\drivers\redbook.sys [58752] =>.Microsoft Corporation
[MD5.46DE1126684369BACE4849E4FC8C43CA] - 14/04/2008 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [53376] =>.Microsoft Corporation

---\\ Liste des services NT non Microsoft et non désactivés (5) - 0s
O23 - Service: Event Log Watch (LogWatch) . (.Computer Associates - LogWatNT.) - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
O23 - Service: NIHardwareService (NIHardwareService) . (.Native Instruments GmbH - NIHardwareService.) - C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe =>.Native Instruments GmbH
O23 - Service: NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.1.) - C:\WINDOWS\system32\nvsvc32.exe =>.NVIDIA Corporation
O23 - Service: Bitdefender 60-Second Virus Scanner Service (pdserv) . (.Bitdefender - 60-Second Scan Service.) - C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe =>.Bitdefender SRL®
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (14) - 21s

SS - Demand [29/12/2008] [ 72704] Adobe LM Service (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe =>.Adobe Systems
SS - Demand [18/07/2016] [ 270016] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated®
SS - Demand [20/09/2002] [ 77824] Client de licence CA (CA_LIC_CLNT) . (.Computer Associates.) - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe
SS - Demand [20/09/2002] [ 77824] Serveur de licence CA (CA_LIC_SRVR) . (.Computer Associates.) - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe
SS - Demand [21/04/2011] [ 1044816] FLEXnet Licensing Service (FLEXnet Licensing Service) . (.Flexera Software, Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe =>.Flexera Software, Inc. ®
SR - Auto [20/09/2002] [ 53248] Event Log Watch (LogWatch) . (.Computer Associates.) - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
SS - Demand [08/06/2016] [ 146888] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation®
SR - Auto [17/07/2009] [ 3576320] NIHardwareService (NIHardwareService) . (.Native Instruments GmbH.) - C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe =>.Native Instruments GmbH
SR - Auto [03/05/2008] [ 159812] NVIDIA Display Driver Service (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvsvc32.exe =>.NVIDIA Corporation
SR - Auto [11/11/2013] [ 1221384] Bitdefender 60-Second Virus Scanner Service (pdserv) . (.Bitdefender.) - C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe =>.Bitdefender SRL®
SS - Demand [11/06/2012] [ 724376] ServiceLayer (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe =>.Nokia®
SS - Auto [03/04/2014] [ 315008] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe =>.Skype Software Sarl®
SS - Demand [12/11/2001] [ 20480] X10 Device Network Service (x10nets) . (.X10.) - C:\Program Files\Common Files\X10\Common\X10nets.exe =>.X10

---\\ Processus lancés (6) - 0s
[MD5.7228805705DE08579EB13D79C033B4A5] - (.Chicony - Chicony Multimedia Driver.) -- C:\WINDOWS\mHotkey.exe [477184] [PID.1624] =>.Chicony
[MD5.850A7A21661B97583914A430E9C2DAEA] - (.Computer Associates - LogWatNT.) -- C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe [53248] [PID.1908]
[MD5.25C774E9C3AB49C741FD413857CCE6C6] - (.Native Instruments GmbH - NIHardwareService.) -- C:\Program Files\Fichiers communs\Native Instruments\Hardware\NIHardwareService.exe [3576320] [PID.1956] =>.Native Instruments GmbH
[MD5.934833B3CD462A6F8A96F64D024C8B20] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.1.) -- C:\WINDOWS\system32\nvsvc32.exe [159812] [PID.2012] =>.NVIDIA Corporation
[MD5.3487C0E169D17C593D3D05E044BF48BD] - (.Bitdefender - 60-Second Scan Service.) -- C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe [1221384] [PID.152] =>.Bitdefender SRL®
[MD5.FF9CE0FC9E3B4BC22001764A9EFE4741] - (.Nicolas Coolman - ZHPDiag.) -- C:\Documents and Settings\Jérôme\Application Data\ZHP\ZHPDiag3.exe [2105344] [PID.2552] =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (4) - 0s
G2 - GCE: Preference [User Data\Default] [fabcmochhfpldjekobfaaggijgohadih] Bitdefender Wallet
G2 - GCE: Preference [User Data\Default] [kmhkepipobnjllejbafajoemahjejdcm] __MSG_addons_name__
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] __MSG_extname__

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (7) - 1s
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nsEModelPlugin.xpt
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT FILE: (...) -- C:\Documents and Settings\Jérôme\Application Data\Mozilla\Firefox\Profiles\dcc9ihwm.default-1440584952687\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Documents and Settings\Jérôme\Application Data\Mozilla\Firefox\Profiles\dcc9ihwm.default-1440584952687\extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi =>Toolbar.Graal
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@checkpoint.com/FFApi] - (.Check Point.) -- C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll =>.Check Point

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (14) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com/ =>PUP.Optional.Trovigo
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.avira.net/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 0
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer,Proxy Management (5) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 1s
~ Le fichier hôte est sain (The hosts file is clean) (15515)

---\\ Browser Helper Object de navigateur (BHO) (10) - 0s
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll =>.Adobe Systems, Incorporated®
O2 - BHO: (no name) - {240373D3-4199-4F41-BB4D-15D5B830C82D} (Orphean)
O2 - BHO: Increase performance and video formats for your HTML5

Publicité


Signaler le contenu de ce document

Publicité