[Résolu]lenteur et pb apres tuto optimiser vs même votre ord

Accélérer son PC et résoudre les problèmes de lenteur PC et Windows

Modérateur : Mods Windows

dudu04

[Résolu]lenteur et pb apres tuto optimiser vs même votre ord

par dudu04 »

Bonjour,
pb de lenteurs importantes depuis qq temps
j'ai suivi votre tutu "comment optimiser vs même votre ordi ? "

j'ai donc terminé par ccleaner, mydefrag et Ntregopt

actuellement l'ordi va plus vite effectivement mais :
- des bugs avec écran noir pendant plusieurs secondes arrivent frequemment
- de plus en plus de pb avec google chrome ou des pages internet bug "aïe aïe ..."
- et le dernier rapport hijackthis qui n'a pu se faire correctement (2 pages d'erreurs pendant le scan)

Comme vs le précisez ds votre tuto je vs demande donc un peu d'aide, voici ma config :
- ordinateur DELL DIMENSION DIM 4600
- Intel pentium 4 CPU 3GHZ
- 1,5 Go de RAM

voici le dernier rapport hijackthis :

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 08:02:21, on 26/08/2004
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)


Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Documents and Settings\Dudu\Bureau\NETTOYAGE PC\HijackThis.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com/?affID=119 ... 0CF1E9CA61
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.euro.dell.com/countries/fr/f ... efault.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Aide à la navigation SFR - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files\SFR\Kit\SFRNavErrorHelper.dll
O2 - BHO: Speed Analysis 2 - {18DBB6CE-3148-4FEC-B481-103CB3290427} - C:\Program Files\Speed Analysis 2\ScriptHost.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file)
O3 - Toolbar: (no name) - !{98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://www.secuser.com
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurig ... 1127095344
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.fr/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: {54D53429-945C-4188-B460-C81356541882} - http://eshare.hpphoto.com/Download/HPeS ... lPrint.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005 ... scan53.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/share ... cgdmgr.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service Google Update (gupdate1c9a297a9ef4904) (gupdate1c9a297a9ef4904) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--
End of file - 9376 bytes

MERCI
dudu04

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par dudu04 »

j'ai vu que je pouvais envoyer également un rapport ZHPdiag, le voici :

Rapport de ZHPDiag v2013.8.1.3 par Nicolas Coolman, Update du 01/08/2013
Run by Dudu at 01/09/2013 17:29:06
WebSite: http://nicolascoolman.webs.com
State : Problème connexion internet
WhiteList : Enable
High Elevated Privileges : OK
UAC : Not Found


---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.18702
GCIE: Google Chrome v29.0.1547.62 (Defaut)

---\\ Windows Product Information
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ System Protection

---\\ System Optimizer

---\\ Peer To Peer (P2P)

---\\ Software Update

---\\ System Information
~ Processor: x86 Family 15 Model 3 Stepping 4, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1535 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 15 GB (20%) free of 71 GB

---\\ Logged in mode
~ Computer Name: SYLVAIN
~ User Name: Dudu
~ All Users Names: SUPPORT_388945a0, Lori, HelpAssistant, Dudu, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Dudu\Application Data\
~ %Desktop% : C:\Documents and Settings\Dudu\Bureau\
~ %Favorites% : C:\Documents and Settings\Dudu\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Dudu\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Dudu\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\SYSTEM32\

---\\ DOS/Devices
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 15 Go of 71 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Security Center & Tools Informations
~ Security Center: 33 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.E1948293F7CBC38987270432935D8D05] - (.Microsoft Corporation - Internet Extensions for Win32.) (.26/07/2013 - 03:47:15.) -- C:\WINDOWS\SYSTEM32\wininet.dll [920064]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\SYSTEM32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\sysTEM32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\sysTEM32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\sysTEM32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\sysTEM32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\sysTEM32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\sysTEM32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\sysTEM32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\sysTEM32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\sysTEM32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\sysTEM32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\sysTEM32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\sysTEM32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\sysTEM32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\sysTEM32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\sysTEM32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\sysTEM32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\sysTEM32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\sysTEM32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
Mes images (My Pictures) : 2/2 (Modified)
~ Mes musiques (My Musics) : 1/268
~ Mes Videos (My Videos) : 2/19
~ Mes Favoris (My Favorites) : 1/495
~ Mes Documents (My Documents) : 2/8075
~ Mon Bureau (My Desktop) : 1/556
~ Menu demarrer (Programs) : 1/41
~ Hidden Files: Scanned in 00mn 02s



---\\ Processus lancés
[MD5.0126DCDB97D7843659738A00BD5668D0] - (.Trusteer Ltd. - RapportMgmtService.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [1435928] [PID.1192]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1328]
[MD5.790490F273B0E3BCF05DC3C308ABCC0B] - (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\system32\dla\tfswctrl.exe [122939] [PID.844]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968] [PID.944]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [253816] [PID.1024]
[MD5.CD1BCA41485E6D5F0ADFC52E9BCD16C6] - (.Trusteer Ltd. - RapportService.) -- C:\Program Files\Trusteer\Rapport\bin\RapportService.exe [2476312] [PID.1680]
[MD5.8E436BD0D9C2CB57306070DFEA3D4513] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [829392] [PID.4012]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.3328]
[MD5.85CBC2C8DDBE2D183D170B3958A38C9C] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7593472] [PID.3020]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.google.fr
G0 - GCSP: Preference [User Data\Default][HomePage] http://www2.delta-search.com =>Toolbar.DeltaSearch
G0 - GCSP: Preference [User Data\Default] http://www.kairn.com
G2 - GCE: Preference [User Data\Default] [cfcbmgbfdbijmjgjihagbomfbjfjmgon] SpeedAnalysis.com v.1.0.0.1 (Désactivé) =>PUP.SpeedAnalysis
G2 - GCE: Preference [User Data\Default] [dgjkhjdcljddbedokogakmmdjgnbeanf] Speed Analysis 2 v.1.0.0.0 (Désactivé) =>PUP.SpeedAnalysis
G2 - GCE: Preference [User Data\Default] [mocblcnaofikinigmceddfghppkkjbog] Smiley Bar for Facebook v.1.0.0.0 (Désactivé) =>Adware.SmileyBar
~ Google Browser: 21 Legitimates Filtered in 00mn 42s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll =>Adware.MetaStream
~ Firefox Browser: 20 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www2.delta-search.com =>Toolbar.DeltaSearch
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
~ IE Browser: 16 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;localhost
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Speed Analysis 2 - {18DBB6CE-3148-4FEC-B481-103CB3290427} . (.SpeedAnalysis.com - ScriptHost.) -- C:\Program Files\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} . (.Orbiscom Ltd. All rights reserved. - e-Carte Bleue.) -- C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
~ BHO: 22 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! Online Security - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{31CF9EBE-5755-4A1D-AC25-2834D952D9B4} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [dla] . (.Sonic Solutions - Drive Letter Access Component.) -- C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
~ Application: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Adobe Reader XI.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Programs: Dell Media Experience.lnk . (.CyberLink Corp. - PowerCinema Main Program for Dell.) -- C:\Program Files\Dell\Media Experience\PCM2.exe
O4 - GS\Programs: Lanceur de tâches Microsoft Works.lnk . (.Microsoft® Corporation - Lanceur de tâches Microsoft Works.) -- C:\Program Files\Microsoft Works\msworks.exe
O4 - GS\Programs: Microsoft ActiveSync.lnk . (...) -- C:\WINDOWS\Installer\{99052DB7-9592-4522-A558-5417BBAD48EE}\WCESMgrIcon.exe
O4 - GS\Programs: Windows Messenger.lnk . (...) -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
O4 - GS\Programs: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - GS\Programs: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) -- C:\WINDOWS\SYSTEM32\rcimlby.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Secunia PSI.lnk . (.Secunia - Secunia PSI.) -- C:\Program Files\Secunia\PSI\psi.exe
~ Global Startup: Scanned in 00mn 01s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} . (.Microsoft Corporation - ActiveSync Favorite Synchronization.) -- C:\Program Files\MI3AA1~1\INetRepl.dll
O9 - Extra button: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -- Clé orpheline
O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} -- Clé orpheline
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\OFFICE11\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
~ IE Extra Buttons: Scanned in 00mn 01s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains\www] http.secuser.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Microsoft XML Parser for Java - (Microsoft XML Parser for Java) - (.not file.) - file:\\C:\WINDOWS\Java\classes\xmldso.cab
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} ((no name)) - http://assets.photobox.com/assets/aurig ... 1127095344
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/ ... ontrol.cab
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} ((no name)) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} ((no name)) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} ((no name)) - http://aolcc.aol.fr/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} ((no name)) - http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: {54D53429-945C-4188-B460-C81356541882} ((no name)) - http://eshare.hpphoto.com/Download/HPeS ... lPrint.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ((no name)) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} ((no name)) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} ((no name)) - http://www.mypix.com/importer/ImageUploader4.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} ((no name)) - http://a840.g.akamai.net/7/840/537/2005 ... scan53.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} ((no name)) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} ((no name)) - http://download.mcafee.com/molbin/share ... cgdmgr.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/fl ... wflash.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} ((no name)) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 01s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\SYSTEM32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\SYSTEM32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\SYSTEM32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\SYSTEM32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\SYSTEM32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
~ Winlogon: Scanned in 00mn 01s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Rapport Management Service (RapportMgmtService) . (.Trusteer Ltd. - RapportMgmtService.) - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
~ Services: 4 Legitimates Filtered in 00mn 04s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Dudu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Dudu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Viewpoint Media Player - {03F998B2-0E00-11D3-A498-00104B6EB52E} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll =>Adware.MetaStream
O40 - ASIC: Viewpoint Media Player - {1B00725B-C455-4DE6-BFB6-AD540AD427CD} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll =>Adware.MetaStream
~ Active Setup: 25 Legitimates Filtered in 00mn 01s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (omci) . (.Dell Computer Corporation - OMCI Device Driver.) - C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys
O41 - Driver: (soqwx32) . (. - .) - C:\WINDOWS\system32\drivers\soqwx32.sys (.not file.)
~ Drivers: 75 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\53ed7dab338e410]
[HKCU\Software\AVPReportViewer]
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Blabbers] =>PUP.Blabbers
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\FalcoAlaTalk]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\PerformerSoft LLC]
[HKCU\Software\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\SmartBar] =>Hijacker.SmartBar
[HKCU\Software\Speed Analysis 2] =>PUP.SpeedAnalysis
[HKCU\Software\Talkway Communications]
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKCU\Software\Yahoo] =>Toolbar.Yahoo
[HKCU\Software\bbrs_002.tb]
[HKCU\Software\eBook Pro]
[HKCU\Software\fuji_film_esystems]
[HKLM\Software\Babylon] =>Toolbar.Babylon
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\FES]
[HKLM\Software\MetaStream] =>Adware.MetaStream
[HKLM\Software\SearchProtect] =>Toolbar.Conduit
[HKLM\Software\Talkway Communications]
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\Yahoo] =>Toolbar.Yahoo
[HKLM\Software\eCarteBleue-LP-P1]
~ Key Software: 221 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 12/03/2013 - 20:34:43 - [0,609] ----D C:\Program Files\Conduit
O43 - CFD: 10/04/2005 - 14:09:58 - [0,290] ----D C:\Program Files\D-Tools
O43 - CFD: 14/12/2006 - 21:23:08 - [14,468] ----D C:\Program Files\My Book
O43 - CFD: 24/09/2007 - 16:41:15 - [0,000] ----D C:\Program Files\Odebit Multimédia
O43 - CFD: 14/07/2006 - 22:38:13 - [0,109] ----D C:\Program Files\Resource Kit
O43 - CFD: 05/11/2011 - 13:30:14 - [8,354] ----D C:\Program Files\SearchCore for Browsers =>Adware.SearchCore
O43 - CFD: 12/03/2013 - 20:32:46 - [6,293] ----D C:\Program Files\SearchProtect =>Toolbar.Conduit
O43 - CFD: 05/05/2013 - 10:06:02 - [1,488] ----D C:\Program Files\Speed Analysis 2 =>PUP.SpeedAnalysis
O43 - CFD: 23/09/2005 - 18:33:31 - [0,156] ----D C:\Program Files\Talkway
O43 - CFD: 10/08/2005 - 18:25:52 - [26,095] ----D C:\Program Files\ViaVoice
O43 - CFD: 22/09/2009 - 08:45:11 - [0,151] ----D C:\Program Files\Yahoo! =>Toolbar.Yahoo
O43 - CFD: 06/01/2008 - 15:20:59 - [24,348] ----D C:\Program Files\Fichiers communs\KAV Shared Files
O43 - CFD: 05/03/2012 - 00:38:19 - [0,019] ----D C:\Documents and Settings\Dudu\Application Data\Babylon =>Toolbar.Babylon
O43 - CFD: 20/09/2005 - 18:59:52 - [12,021] ----D C:\Documents and Settings\Dudu\Application Data\Digital Album Organizer
O43 - CFD: 22/05/2012 - 19:56:26 - [1,610] ----D C:\Documents and Settings\Dudu\Application Data\eBookPro6
O43 - CFD: 12/03/2013 - 17:41:53 - [0,308] ----D C:\Documents and Settings\Dudu\Application Data\File Scout
O43 - CFD: 07/09/2012 - 23:01:15 - [0,001] ----D C:\Documents and Settings\Dudu\Application Data\homebank
O43 - CFD: 03/08/2013 - 19:43:21 - [0] ----D C:\Documents and Settings\Dudu\Application Data\PerformerSoft
O43 - CFD: 12/03/2013 - 20:32:46 - [8,150] ----D C:\Documents and Settings\Dudu\Application Data\SearchProtect =>Toolbar.Conduit
O43 - CFD: 21/11/2011 - 10:08:03 - [0] ----D C:\Documents and Settings\Dudu\Application Data\searchquband =>PUP.Datamngr
O43 - CFD: 12/03/2013 - 17:45:29 - [0,076] ----D C:\Documents and Settings\Dudu\Application Data\SpeedanAlysis =>PUP.SpeedAnalysis
O43 - CFD: 05/05/2013 - 10:06:31 - [0,079] ----D C:\Documents and Settings\Dudu\Application Data\SpeedAnalysis2 =>PUP.SpeedAnalysis
O43 - CFD: 21/09/2009 - 21:17:04 - [0] ----D C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo
O43 - CFD: 25/03/2013 - 13:17:54 - [1,860] ----D C:\Documents and Settings\Dudu\Local Settings\Application Data\Conduit
O43 - CFD: 20/01/2007 - 11:17:31 - [0,002] ----D C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo
O43 - CFD: 14/12/2006 - 22:01:37 - [0,004] ----D C:\Documents and Settings\Dudu\Menu Démarrer\Programmes\WD Diagnostics
~ Program Folder: 240 Legitimates Filtered in 01mn 25s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.3A0884EB9E96CA7F96CBE301379A541A] - 28/08/2013 - 18:34:50 ---A- . (...) -- C:\WINDOWS\comsetup.log [2061]
O44 - LFC:[MD5.7C557D99D4160DDC732AF921C8E5716A] - 28/08/2013 - 18:34:50 ---A- . (...) -- C:\WINDOWS\iis6.log [991]
O44 - LFC:[MD5.4DDFF4FEC59DC2B98A94ADD0AFFDD868] - 28/08/2013 - 18:34:49 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.F1D458644B71BF0F8DA7E85AEE924124] - 28/08/2013 - 18:34:49 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [1247]
O44 - LFC:[MD5.BAB553660E07098EF6CC217B88165279] - 28/08/2013 - 18:34:49 ---A- . (...) -- C:\WINDOWS\ocgen.log [2956]
O44 - LFC:[MD5.B901C3E74B2EA14281848F15819CE0AE] - 28/08/2013 - 18:34:49 ---A- . (...) -- C:\WINDOWS\ocmsn.log [342]
O44 - LFC:[MD5.4E73B21AE7136D4CFC80090AE15B7E34] - 28/08/2013 - 18:34:49 ---A- . (...) -- C:\WINDOWS\tsoc.log [2359]
O44 - LFC:[MD5.F4978586FC99A279C75314095A3FC8C4] - 28/08/2013 - 18:34:48 ---A- . (...) -- C:\WINDOWS\msgsocm.log [303]
O44 - LFC:[MD5.D983B485522C12DEB565D4EFA2E6D063] - 28/08/2013 - 18:34:47 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [6159]
O44 - LFC:[MD5.DA0FD42010758911895DE1BD0D191749] - 26/08/2013 - 21:52:38 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [202]
~ Files: 19 Legitimates Filtered in 01mn 21s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\temp\CI_HITACHI\MAJ_Hitachi.exe" [Disabled] .(...) -- C:\temp\CI_HITACHI\MAJ_Hitachi.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe" [Enabled] .(.Visicom Media Inc..) -- C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe =>PUP.Datamngr
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe" [Enabled] .(...) -- C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe (.not file.)
~ Keys Export: 23 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{618dfaae-e9a9-11df-aeea-00038a000015}\AutoRun\command. (...) -- E:\DPFMate.exe (.not file.)
O51 - MPSK:{659207de-d9e0-11df-aed9-00038a000015}\AutoRun\command. (...) -- F:\setup.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\AOLDialer [Key] . (...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools-1033 [Key] . (.VeNoM386 and SwENSkE - Virtual DAEMON Manager.) -- C:\Program Files\D-Tools\daemon.exe
O53 - SMSR:HKLM\...\startupreg\DATAMNGR [Key] . (...) -- C:\Program Files\SEARCH~3\Datamngr\DATAMN~1.exe (.not file.) =>PUP.Datamngr
O53 - SMSR:HKLM\...\startupreg\Easy-PrintToolBox [Key] . (...) -- C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\eCarteBleue-LP-P1 [Key] . (.Orbiscom Ltd. All rights reserved. - e-Carte Bleue.) -- C:\Program Files\e-Carte Bleue\LA POSTE\CVD ADESIO\ECB.exe
O53 - SMSR:HKLM\...\startupreg\glowria [Key] . (...) -- C:\Program Files\glowria\glowria.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (...) -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 - Services [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\PhilipsSongbirdLauncher [Key] . (...) -- C:\Program Files\Philips\Philips Songbird\extensions\[email protected]\application\PhilipsSongbirdLauncher.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RDReminder [Key] . (...) -- C:\Program Files\PC Performer\PCPerformer.exe (.not file.) =>Rogue.PCPerformer
O53 - SMSR:HKLM\...\startupreg\SearchProtect [Key] . (.Conduit - Search Protect by Conduit.) -- C:\Documents and Settings\Dudu\Application Data\SearchProtect\bin\cltmng.exe =>Toolbar.Conduit
O53 - SMSR:HKLM\...\startupreg\SearchProtectAll [Key] . (.Conduit - Search Protect by Conduit.) -- C:\Program Files\SearchProtect\bin\cltmng.exe =>Toolbar.Conduit
O53 - SMSR:HKLM\...\startupreg\UpdateManager [Key] . (.Sonic Solutions - Sonic Update Manager.) -- C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe
O53 - SMSR:HKLM\...\startupreg\vmtalk [Key] . (...) -- C:\Program Files\Fichiers communs\Talkway\vmtalk.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\WD Button Manager [Key] . (.Western Digital Technologies, Inc. - WD Button Manager.) -- C:\WINDOWS\SYSTEM32\WDBtnMgr.exe
~ SMSR Keys: 45 Legitimates Filtered in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.11C04B17ED2ABBB4833694BCD644AC90] - 01/04/2002 - 15:15:00 ---A- . (.Andrea Electronics Corporation - Andrea Audio Stub Driver.) -- C:\WINDOWS\SYSTEM32\Drivers\aeaudio.sys [4816]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\SYSTEM32\ANSI.SYS [9037]
~ Drivers: Scanned in 00mn 00s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: RSIT - (.random/random.)
O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.)
~ ADS: Scanned in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 17/08/2001 - C:\WINDOWS\SYSTEM32\DRIVERS\asc3550.sys (asc3550) .(.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) - LEGACY_ASC3550
O64 - Services: CurCS - 03/03/2003 - C:\Program Files\Intel\NCS\Sync\NetSvc.exe (NetSvc) .(.Intel(R) Corporation - NetSvc Module.) - LEGACY_NETSVC
~ Legacy: 236 Legitimates Filtered in 00mn 01s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 17 Legitimates Filtered in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
~ Keys: Scanned in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] Google - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Delta Search) - http://www2.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {31CF9EBE-5755-4a1d-AC25-2834D952D9B4} - (Barre d'outils PDFCreator) - http://search.pdfcreator-toolbar.org
O69 - SBI: SearchScopes [HKCU] {3CA931F5-9790-449B-A764-DCA172374F9B} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} - (Web Search) - http://www.searchqu.com =>PUP.Datamngr
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2414} - (Search Results) - http://dts.search-results.com =>PUP.SearchResults
O69 - SBI: SearchScopes [HKCU] {A11C280A-C124-476B-9897-CF005005069A} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {AF1EC724-9785-4E0B-B4C6-20E9B300A709} - (01NET.com Main Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {E7BD2F1B-12E0-4064-B1E4-A4C628B61385} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
~ Keys: Scanned in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.ABBBF9810D8EAE569DC61B6698476C87] [SPRF][23/05/2008] (...) -- C:\Documents and Settings\Dudu\Local Settings\Application Data\fusioncache.dat [127]
[MD5.88783EB39D8EF000CDA3413C789C4E21] [SPRF][23/05/2008] (...) -- C:\Program Files\settings.dat [15397]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]
[MD5.298068536300DA6DC163E394797A7C50] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]
[MD5.1CAB87DE6638846FBF51F32B5D95E482] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]
~ Files: Scanned in 00mn 00s



---\\ Product Upgrade Codes (O90)
O90 - PUC: "18EAC839E7DC4CA4D8830A8AF1EAACDA" . (.DAEMON Tools.) -- C:\WINDOWS\Installer\{938CAE81-CD7E-4AC4-8D38-A0A81FAECAAD}\_daemoncp.exe
~ Update Products: 53 Legitimates Filtered in 00mn 00s



---\\ Random Export Key (O91)
[HKCU\Software\53ed7dab338e410\2.6.1339.144\upd]:="upd=1"
[HKCU\Software\53ed7dab338e410\2.6.1519.190\upd]:="upd="
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:version="2.6.1095.52"
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1249.132]:version="2.6.1249.132"
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"
[HKCU\Software\53ed7dab338e410\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144"
[HKCU\Software\53ed7dab338e410] =>Toolbar.Babylon^
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 22/08/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 09/05/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\SYSTEM32\dmadmin.exe
SS - | Auto 11/03/2009 133104 | (gupdate1c9a297a9ef4904) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 11/03/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Auto 25/09/2011 194104 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 03/03/2003 143360 | (NetSvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
SS - | Disabled 03/11/2003 73728 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\SYSTEM32\nvsvc32.exe
SR - | Auto 25/07/2013 1435928 | (RapportMgmtService) . (.Trusteer Ltd..) - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
~ Services: Scanned in 00mn 00s



---\\ Scan Additionnel (O88)
Database Version : v2.12835 - (01/08/2013)
Clés trouvées (Keys found) : 126
Valeurs trouvées (Values found) : 1
Dossiers trouvés (Folders found) : 17
Fichiers trouvés (Files found) : 19

[HKLM\Software\Google\Chrome\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon] =>PUP.SpeedAnalysis^
[HKLM\Software\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf] =>PUP.SpeedAnalysis^
[HKLM\Software\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}] =>PUP.SpeedAnalysis^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR] =>PUP.Datamngr^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\RDReminder] =>Rogue.PCPerformer^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtect] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtectAll] =>Toolbar.Conduit^
[HKLM\Software\Classes\CLSID\{35b8892d-c3fb-4d88-990d-31db2ebd72bd}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}] =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}] =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}] =>Adware.RecordNRip
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] =>PUP.SweetIM
[HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] =>Adware.MetaStream
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31CF9EBE-5755-4a1d-AC25-2834D952D9B4}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}] =>Toolbar.Agent
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}] =>Adware.iWinArcade
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\tdataprotocol.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\updatebho.DLL] =>Toolbar.Agent
[HKLM\Software\Classes\AppID\wit4ie.DLL] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer] =>Adware.MetaStream
[HKLM\Software\Classes\axmetastream.metastreamctl] =>Adware.MetaStream
[HKLM\Software\Classes\axmetastream.metastreamctl.1] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary] =>Adware.MetaStream
[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1] =>Adware.MetaStream
[HKLM\Software\Classes\CLSID\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}] =>Adware.Adkubru
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard] =>Adware.Bandoo
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard.1] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKCU\Software\Blabbers] =>PUP.Blabbers
[HKCU\Software\BlabbersToolbar] =>PUP.Blabbers
[HKCU\Software\ConduitSearchScopes] =>Toolbar.Conduit
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\MetaStream] =>Adware.MetaStream
[HKCU\Software\pdfforge.org] =>Toolbar.PDFCreator
[HKLM\Software\pdfforge.org] =>Toolbar.PDFCreator
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect] =>Toolbar.Conduit
[HKLM\Software\Tarma Installer] =>Toolbar.Tarma
[HKLM\Software\Viewpoint] =>Adware.MetaStream
[HKLM\Software\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls] =>Trojan.FakeAlert
[HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls] =>Trojan.FakeAlert
[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP] =>Adware.MetaStream
[HKCU\Software\bbrs_002.tb] =>PUP.Blabbers
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKLM\Software\Classes\AppID\secman.DLL] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}] =>Adware.SimilarSites
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKLM\Software\Classes\CLSID\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKLM\Software\Classes\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] =>Toolbar.Avast
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}] =>Toolbar.Yahoo
[HKLM\Software\Classes\Toolband.EB_ExplorerBar] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.EB_ExplorerBar.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.IPM_PrintListItem] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.IPM_PrintListItem.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_Launcher] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_Launcher.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_PrintManager] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PM_PrintManager.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_BindStatusCallback] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_BindStatusCallback.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_CancelButtonEventHandler] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.PR_CancelButtonEventHandler.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.TBToolband] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.TBToolband.1] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.UserOptions] =>Toolbar.Agent
[HKLM\Software\Classes\Toolband.UserOptions.1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Searchqu 410 MediaBar] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Searchqu Toolbar] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Program Files\SearchCore for Browsers =>Adware.SearchCore^
C:\Program Files\SearchProtect =>Toolbar.Conduit^
C:\Program Files\Speed Analysis 2 =>PUP.SpeedAnalysis^
C:\Program Files\Yahoo! =>Toolbar.Yahoo^
C:\Documents and Settings\Dudu\Application Data\Babylon =>Toolbar.Babylon^
C:\Documents and Settings\Dudu\Application Data\SearchProtect =>Toolbar.Conduit^
C:\Documents and Settings\Dudu\Application Data\searchquband =>PUP.Datamngr^
C:\Documents and Settings\Dudu\Application Data\SpeedanAlysis =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Application Data\SpeedAnalysis2 =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo^
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\Viewpoint =>Adware.MetaStream
C:\Program Files\Windows Searchqu Toolbar =>Adware.Bandoo
C:\Program Files\PDFCreator Toolbar =>Toolbar.PDFCreator
C:\Program Files\VideoPerformer =>PUP.VideoPerformer
C:\Documents and Settings\Dudu\Local Settings\Application Data\Conduit =>Toolbar.Conduit
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog =>Adware.SmileyBar^
C:\Program Files\Speed Analysis 2\ScriptHost.dll =>PUP.SpeedAnalysis^
C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll =>Adware.MetaStream^
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar^
[HKCU\Software\Datamngr] =>PUP.Datamngr^
[HKCU\Software\SearchProtect] =>Toolbar.Conduit^
[HKCU\Software\SmartBar] =>Hijacker.SmartBar^
[HKCU\Software\Speed Analysis 2] =>PUP.SpeedAnalysis^
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo^
[HKCU\Software\Yahoo] =>Toolbar.Yahoo^
[HKLM\Software\Babylon] =>Toolbar.Babylon^
[HKLM\Software\Conduit] =>Toolbar.Conduit^
[HKLM\Software\SearchProtect] =>Toolbar.Conduit^
[HKLM\Software\Yahoo] =>Toolbar.Yahoo^
C:\Documents and Settings\Dudu\Application Data\SearchProtect\bin\cltmng.exe =>Toolbar.Conduit^
C:\Program Files\SearchProtect\bin\cltmng.exe =>Toolbar.Conduit^
[HKCU\Software\53ed7dab338e410] =>Toolbar.Babylon^^
~ Additionnel Scan: 286671 Items scanned in 00mn 51s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blo ... eltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blo ... edanalysis =>PUP.SpeedAnalysis
~ http://nicolascoolman.webs.com/apps/blo ... -smileybar =>Adware.SmileyBar
~ http://nicolascoolman.webs.com/apps/blo ... metastream =>Adware.MetaStream
~ http://nicolascoolman.webs.com/apps/blo ... r-smartbar =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blo ... p-blabbers =>PUP.Blabbers
~ http://nicolascoolman.webs.com/apps/blo ... p-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blo ... nstallcore =>Adware.InstallCore
~ http://nicolascoolman.webs.com/apps/blo ... ar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blo ... lbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blo ... ar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blo ... lbar-tarma =>Toolbar.Tarma
~ http://nicolascoolman.webs.com/apps/blo ... searchcore =>Adware.SearchCore
~ http://nicolascoolman.webs.com/apps/blo ... rchresults =>PUP.SearchResults
~ http://nicolascoolman.webs.com/apps/blo ... oolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blo ... recordnrip =>Adware.RecordNRip
~ http://nicolascoolman.webs.com/apps/blo ... up-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blo ... are-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blo ... iwinarcade =>Adware.iWinArcade
~ http://nicolascoolman.webs.com/apps/blo ... lbar-skype =>Toolbar.Skype
~ http://nicolascoolman.webs.com/apps/blo ... p-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blo ... milarsites =>Adware.SimilarSites
~ http://nicolascoolman.webs.com/apps/blo ... lbar-avast =>Toolbar.Avast
~ http://nicolascoolman.webs.com/apps/blo ... operformer =>PUP.VideoPerformer
~ MSI: 24 link(s) detected in 00mn 51s



~ 1181 Legitimates filtered by white list
End of the scan (740 lines in 04mn 55s)(0)




Est ce que mes pb viennent des "détections trouvés" et si oui comment les supprimés ?

par avance merci
SkyTech

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par SkyTech »

Bonsoir,

Des logiciels additionnels sont proposés (barre d'outils, adwares) via l'installation de logiciel par éditeurs.
L'éditeur touche de l'argent à chaque installation réussie de ces additionnels tiers (un genre de sponsoring).
Seulement certains éditeurs, abusent, pour gagner plus d'argent, ils redistribuent des logiciels libres développés par des bénévoles en y ajoutant ces logiciels additionnels.
Des pubs trompeuses peuvent aussi être utilisés pour faire installer ces logiciels.

Outre le fait que les procédés sont discutables, l'accumulation de ces programmes additionnels non essentiels concourent à ralentir considérablement l'ordinateur (peux aussi faire planter les navigateurs WEB).
Certains font aussi du tracking anonymes (récupérations des thématiques de sites visités).

Tu as la même chose avec les barres d'outils :
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.

Lire :
Les PUPs/LPIs : https://www.malekal.com/adwares-pup-protection/

Téléchargez AdwCleaner( d'Xplode ) sur votre bureau.
Lancez le, cliquez sur [Scanner], patiente, puis sur [Nettoyer] puis patientez le temps de la suppression.
Un redédmarrage sera demandé, accepté.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Poste le rapport.

PS : Si le rapport est trop long pour être poster sur un message, tu peux utiliser un hébergeur : http://pjjoint.malekal.com/index.php?lang=fr
dudu04

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par dudu04 »

Bonjour,

voilà les 2 rapports adwcleaner :

# AdwCleaner v3.002 - Rapport créé le 02/09/2013 à 13:21:07
# Mis à jour le 01/09/2013 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : Dudu - SYLVAIN
# Exécuté depuis : C:\Documents and Settings\Dudu\Bureau\NETTOYAGE PC\dossier installation\adwcleaner.exe
# Option : Scanner

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Présent C:\Documents and Settings\All Users\Application Data\Ask
Dossier Présent C:\Documents and Settings\All Users\Application Data\Babylon
Dossier Présent C:\Documents and Settings\All Users\Application Data\boost_interprocess
Dossier Présent C:\Documents and Settings\All Users\Application Data\Tarma Installer
Dossier Présent C:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier Présent C:\Documents and Settings\Dudu\Application Data\Babylon
Dossier Présent C:\Documents and Settings\Dudu\Application Data\file scout
Dossier Présent C:\Documents and Settings\Dudu\Application Data\PerformerSoft
Dossier Présent C:\Documents and Settings\Dudu\Application Data\SearchProtect
Dossier Présent C:\Documents and Settings\Dudu\Application Data\searchquband
Dossier Présent C:\Documents and Settings\Dudu\Application Data\SpeedanAlysis
Dossier Présent C:\Documents and Settings\Dudu\Application Data\SpeedAnalysis2
Dossier Présent C:\Documents and Settings\Dudu\IECompatCache
Dossier Présent C:\Documents and Settings\Dudu\Local Settings\Application Data\Conduit
Dossier Présent C:\Documents and Settings\Dudu\Local Settings\Application Data\cre
Dossier Présent C:\Documents and Settings\Lori\Application Data\Babylon
Dossier Présent C:\Documents and Settings\Lori\Application Data\Searchqutoolbar
Dossier Présent C:\Program Files\Conduit
Dossier Présent C:\Program Files\SearchCore for Browsers
Dossier Présent C:\Program Files\SearchProtect
Dossier Présent C:\Program Files\Speed Analysis 2
Dossier Présent C:\Program Files\Viewpoint
Dossier Présent C:\Program Files\Windows Searchqu Toolbar
Fichier Présent : C:\Documents and Settings\Dudu\Application Data\speedanalysis.ico
Fichier Présent : C:\Documents and Settings\Dudu\Bureau\SpeedAnalysis.lnk
Fichier Présent : C:\Documents and Settings\Lori\Local Settings\Application Data\Google\Chrome\User Data\Default\bprotectorpreferences
Fichier Présent : C:\END
Fichier Présent : C:\WINDOWS\system32\roboot.exe

***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Présente : HKCU\Software\53ed7dab338e410
Clé Présente : HKCU\Software\AppDataLow\Software\SmartBar
Clé Présente : HKCU\Software\bbrs_002.tb
Clé Présente : HKCU\Software\Blabbers
Clé Présente : HKCU\Software\BrowserCompanion
Clé Présente : HKCU\Software\ConduitSearchScopes
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\filescout
Clé Présente : HKCU\Software\Google\Chrome\Extensions\hakpajgggjjcjmidfbnnncnbaihjneaj
Clé Présente : HKCU\Software\InstallCore
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Présente : HKCU\Software\pdfforge.org
Clé Présente : HKCU\Software\performersoft llc
Clé Présente : HKCU\Software\SearchProtect
Clé Présente : HKCU\Software\SmartBar
Clé Présente : HKCU\Software\Speed Analysis 2
Clé Présente : HKCU\Software\YahooPartnerToolbar
Clé Présente : HKLM\Software\Babylon
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Clé Présente : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Clé Présente : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Clé Présente : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Clé Présente : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé Présente : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé Présente : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Clé Présente : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{1A03F196-9617-4CA0-842B-A83CEECB022B}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Clé Présente : HKLM\SOFTWARE\Classes\Prod.cap
Clé Présente : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Clé Présente : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar
Clé Présente : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem
Clé Présente : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pm_launcher
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pm_printmanager
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler
Clé Présente : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.tbtoolband
Clé Présente : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1
Clé Présente : HKLM\SOFTWARE\Classes\toolband.useroptions
Clé Présente : HKLM\SOFTWARE\Classes\toolband.useroptions.1
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Clé Présente : HKLM\Software\Conduit
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\hakpajgggjjcjmidfbnnncnbaihjneaj
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog
Clé Présente : HKLM\Software\MetaStream
Clé Présente : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Présente : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Présente : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu Toolbar
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Présente : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Clé Présente : HKLM\Software\pdfforge.org
Clé Présente : HKLM\Software\SearchProtect
Clé Présente : HKLM\Software\Tarma Installer
Clé Présente : HKLM\Software\Viewpoint
Produit Présent : Google Update Helper
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}]
Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Présente : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Valeur Présente : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe]

***** [ Navigateurs ] *****

-\\ Internet Explorer v8.0.6001.18702

Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www2.delta-search.com/?affID=119654&tl=gcn32370&tt=gc_&babsrc=HP_ss&mntrId=8893000CF1E9CA61
Paramètre Présent : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs] - hxxp://www2.delta-search.com/?affID=119654&tl=gcn32370&tt=gc_&babsrc=NT_ss&mntrId=8893000CF1E9CA61

-\\ Google Chrome v29.0.1547.62

[ Fichier : C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

Trouvée : homepage

[ Fichier : C:\Documents and Settings\Lori\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [14746 octets] - [02/09/2013 13:21:07]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [14807 octets] ##########



LE DEUXIEME /

# AdwCleaner v3.002 - Rapport créé le 02/09/2013 à 13:56:50
# Mis à jour le 01/09/2013 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : Dudu - SYLVAIN
# Exécuté depuis : C:\Documents and Settings\Dudu\Bureau\NETTOYAGE PC\dossier installation\adwcleaner.exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Ask
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\boost_interprocess
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Tarma Installer
Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Viewpoint
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\SearchCore for Browsers
Dossier Supprimé : C:\Program Files\SearchProtect
Dossier Supprimé : C:\Program Files\Speed Analysis 2
Dossier Supprimé : C:\Program Files\Viewpoint
Dossier Supprimé : C:\Program Files\Windows Searchqu Toolbar
Dossier Supprimé : C:\Documents and Settings\Dudu\IECompatCache
Dossier Supprimé : C:\Documents and Settings\Dudu\Local Settings\Application Data\Conduit
Dossier Supprimé : C:\Documents and Settings\Dudu\Local Settings\Application Data\cre
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\file scout
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\PerformerSoft
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\SearchProtect
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\searchquband
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\SpeedanAlysis
Dossier Supprimé : C:\Documents and Settings\Dudu\Application Data\SpeedAnalysis2
Dossier Supprimé : C:\Documents and Settings\Lori\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\Lori\Application Data\Searchqutoolbar
Fichier Supprimé : C:\END
Fichier Supprimé : C:\WINDOWS\system32\roboot.exe
Fichier Supprimé : C:\Documents and Settings\Dudu\Application Data\speedanalysis.ico
Fichier Supprimé : C:\Documents and Settings\Dudu\Bureau\SpeedAnalysis.lnk
Fichier Supprimé : C:\Documents and Settings\Lori\Local Settings\Application Data\Google\Chrome\User Data\Default\bprotectorpreferences

***** [ Raccourcis ] *****


***** [ Registre ] *****

Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [[email protected]]
Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [[email protected]]
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\hakpajgggjjcjmidfbnnncnbaihjneaj
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\hakpajgggjjcjmidfbnnncnbaihjneaj
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Clé Supprimée : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Clé Supprimée : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.eb_explorerbar.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.ipm_printlistitem.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pm_launcher
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pm_launcher.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pm_printmanager
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pm_printmanager.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pr_bindstatuscallback.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.pr_cancelbuttoneventhandler.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.tbtoolband
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.tbtoolband.1
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.useroptions
Clé Supprimée : HKLM\SOFTWARE\Classes\toolband.useroptions.1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\DATAMNGR
Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Clé Supprimée : HKCU\Software\53ed7dab338e410
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1A03F196-9617-4CA0-842B-A83CEECB022B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DBB6CE-3148-4FEC-B481-103CB3290427}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4723AAA8-B2F9-4CC1-9E60-190976DB1FA4}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}]
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe]
Clé Supprimée : HKCU\Software\bbrs_002.tb
Clé Supprimée : HKCU\Software\Blabbers
Clé Supprimée : HKCU\Software\BrowserCompanion
Clé Supprimée : HKCU\Software\ConduitSearchScopes
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\filescout
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\pdfforge.org
Clé Supprimée : HKCU\Software\performersoft llc
Clé Supprimée : HKCU\Software\SearchProtect
Clé Supprimée : HKCU\Software\SmartBar
Clé Supprimée : HKCU\Software\Speed Analysis 2
Clé Supprimée : HKCU\Software\YahooPartnerToolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
Clé Supprimée : HKLM\Software\Babylon
Clé Supprimée : HKLM\Software\Conduit
Clé Supprimée : HKLM\Software\MetaStream
Clé Supprimée : HKLM\Software\pdfforge.org
Clé Supprimée : HKLM\Software\SearchProtect
Clé Supprimée : HKLM\Software\Tarma Installer
Clé Supprimée : HKLM\Software\Viewpoint
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu Toolbar
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Produit Supprimé : Google Update Helper

***** [ Navigateurs ] *****

-\\ Internet Explorer v8.0.6001.18702

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [bProtectTabs]

-\\ Google Chrome v29.0.1547.62

[ Fichier : C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

Supprimée : homepage

[ Fichier : C:\Documents and Settings\Lori\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [14888 octets] - [02/09/2013 13:21:07]
AdwCleaner[S0].txt - [14736 octets] - [02/09/2013 13:56:50]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [14797 octets] ##########




MERCI
SkyTech

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par SkyTech »

C'est parfait AdwCleaner semble avoir supprimé un gros paquet de m*rde.

Tu peux le désinstaller.

Poste un nouveau rapport ZHPDiag pour vérifier qu'il ne reste plus rien.
dudu04

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par dudu04 »

Bonsoir,
voilà le dernier rapport :

~ Rapport de ZHPDiag v2013.9.14.26 - Nicolas Coolman (14/09/2013)
~ Lancé par Dudu (14/09/2013 21:28:32)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Not Found


---\\ Navigateurs Internet
MSIE: Internet Explorer v8.0.6001.18702
GCIE: Google Chrome v29.0.1547.66 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows XP Home Edition Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK

---\\ Logiciels de protection du système
Trusteer Sécurité des points d'accès v3.5.1302.59

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin

---\\ Informations sur le système
~ Processor: x86 Family 15 Model 3 Stepping 4, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1535 MB (50% free)
System Restore: Activé (Enable)
System drive C: has 11 GB (16%) free of 71 GB

---\\ Mode de connexion au système
~ Computer Name: SYLVAIN
~ User Name: Dudu
~ All Users Names: SUPPORT_388945a0, Lori, HelpAssistant, Dudu, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Dudu\Application Data\
~ %Desktop% : C:\Documents and Settings\Dudu\Bureau\
~ %Favorites% : C:\Documents and Settings\Dudu\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Dudu\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Dudu\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\SYSTEM32\

---\\ Enumération des unités disques
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 71 Go)
D:\ CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
~ Security Center: 33 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.EA7AB3839BE1FFE067A8131F3547160D] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/08/2013 - 07:05:46.) -- C:\WINDOWS\SYSTEM32\wininet.dll [920064]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\SYSTEM32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\sysTEM32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\sysTEM32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\sysTEM32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\sysTEM32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\sysTEM32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\sysTEM32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\sysTEM32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\sysTEM32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\sysTEM32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\sysTEM32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\sysTEM32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\sysTEM32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\sysTEM32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\sysTEM32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\sysTEM32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\sysTEM32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\sysTEM32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\sysTEM32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
Mes images (My Pictures) : 2/2 (Modified)
~ Mes musiques (My Musics) : 1/268
~ Mes Videos (My Videos) : 2/19
~ Mes Favoris (My Favorites) : 1/495
~ Mes Documents (My Documents) : 2/8080
~ Mon Bureau (My Desktop) : 1/575
~ Menu demarrer (Programs) : 1/41
~ Hidden Files: Scanned in 01mn 33s



---\\ Processus lancés
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1328]
[MD5.11F714F85530A2BD134074DC30E99FCA] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.exe [322120] [PID.1644]
[MD5.5C7B3D567E21E346456B6EDA274E0201] - (.Trusteer Ltd. - RapportMgmtService.) -- C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe [1435928] [PID.1948]
[MD5.892BD29AAF50EA31EA36CD1C465D23A1] - (.Trusteer Ltd. - RapportService.) -- C:\Program Files\Trusteer\Rapport\bin\RapportService.exe [2476312] [PID.1788]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968] [PID.2472]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [253816] [PID.2496]
[MD5.DF1BBA1168C0AD1D080A1F1B99576A76] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [829392] [PID.3612]
[MD5.D15FE044EF9776466FBA00D7FBD7B7B6] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7953408] [PID.3228]
[MD5.7766DD87973104E565647C09040F0EA1] - (.Oracle Corporation - Java(TM) Web Start Launcher.) -- C:\Program Files\Java\jre7\bin\javaws.exe [263592] [PID.3692]
[MD5.DE2E2F1370FFDAB7F307F895292A3B62] - (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\javaw.exe [175016] [PID.3732]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.google.fr
G0 - GCSP: Preference [User Data\Default] http://www.kairn.com
G2 - GCE: Preference [User Data\Default] [cfcbmgbfdbijmjgjihagbomfbjfjmgon] SpeedAnalysis.com v.1.0.0.1 (Désactivé) =>PUP.SpeedAnalysis
G2 - GCE: Preference [User Data\Default] [dgjkhjdcljddbedokogakmmdjgnbeanf] Speed Analysis 2 v.1.0.0.0 (Désactivé) =>PUP.SpeedAnalysis
G2 - GCE: Preference [User Data\Default] [mocblcnaofikinigmceddfghppkkjbog] Smiley Bar for Facebook v.1.0.0.0 (Désactivé) =>Adware.SmileyBar
~ Google Browser: 22 Legitimates Filtered in 00mn 43s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;localhost
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 19



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} . (.Orbiscom Ltd. All rights reserved. - e-Carte Bleue.) -- C:\WINDOWS\system32\BhoECart.dll
~ BHO: 16 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! Online Security - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Program [AllUsers]: Dell Media Experience.lnk . (.CyberLink Corp. - PowerCinema Main Program for Dell.) -- C:\Program Files\Dell\Media Experience\PCM2.exe
O4 - GS\Program [AllUsers]: Windows Messenger.lnk . (...) -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
O4 - GS\Program [Dudu]: Secunia PSI.lnk . (.Secunia - Secunia PSI.) -- C:\Program Files\Secunia\PSI\psi.exe
~ Global Startup: 15 Legitimates Filtered in 00mn 00s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
~ Application: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -- Clé orpheline
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} . (.Microsoft Corporation - ActiveSync Favorite Synchronization.) -- C:\Program Files\MI3AA1~1\INetRepl.dll
O9 - Extra button: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -- Clé orpheline
O9 - Extra button: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} -- Clé orpheline
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\OFFICE11\REFBARH.ICO
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
O15 - Trusted Zone: [HKCU\...\Domains\www] http.secuser.com
~ IE Zone Confiance: Scanned in 00mn 00s



---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: Microsoft XML Parser for Java - (Microsoft XML Parser for Java) - (.not file.) - file:\\C:\WINDOWS\Java\classes\xmldso.cab
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} ((no name)) - http://assets.photobox.com/assets/aurig ... 1127095344
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/ ... ontrol.cab
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} ((no name)) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} ((no name)) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} ((no name)) - http://aolcc.aol.fr/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} ((no name)) - http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: {54D53429-945C-4188-B460-C81356541882} ((no name)) - http://eshare.hpphoto.com/Download/HPeS ... lPrint.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ((no name)) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} ((no name)) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} ((no name)) - http://www.mypix.com/importer/ImageUploader4.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} ((no name)) - http://a840.g.akamai.net/7/840/537/2005 ... scan53.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} ((no name)) - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} ((no name)) - http://download.mcafee.com/molbin/share ... cgdmgr.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/fl ... wflash.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} ((no name)) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
~ Objets ActiveX: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BCBAD8A3-C300-4314-BBC8-8B943008B22E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\system32\wiascr.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE11\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\SYSTEM32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\SYSTEM32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\SYSTEM32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\SYSTEM32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\SYSTEM32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\SYSTEM32\wlnotify.dll
~ Winlogon: Scanned in 00mn 03s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Rapport Management Service (RapportMgmtService) . (.Trusteer Ltd. - RapportMgmtService.) - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
~ Services: 4 Legitimates Filtered in 00mn 07s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\Documents and Settings\Dudu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop General: WallPaper - .(...) - C:\Documents and Settings\Dudu\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (soqwx32) . (. - .) - C:\WINDOWS\system32\drivers\soqwx32.sys (.not file.)
~ Drivers: 76 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\FalcoAlaTalk]
[HKCU\Software\Yahoo] =>Toolbar.Yahoo
[HKCU\Software\fuji_film_esystems]
[HKLM\Software\FES]
[HKLM\Software\Yahoo] =>Toolbar.Yahoo
~ Key Software: 204 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/04/2005 - 14:09:58 - [0,290] ----D C:\Program Files\D-Tools
O43 - CFD: 14/12/2006 - 21:23:08 - [14,468] ----D C:\Program Files\My Book
O43 - CFD: 24/09/2007 - 16:41:15 - [0,000] ----D C:\Program Files\Odebit Multimédia
O43 - CFD: 14/07/2006 - 22:38:13 - [0,109] ----D C:\Program Files\Resource Kit
O43 - CFD: 23/09/2005 - 18:33:31 - [0,156] ----D C:\Program Files\Talkway
O43 - CFD: 10/08/2005 - 18:25:52 - [26,095] ----D C:\Program Files\ViaVoice
O43 - CFD: 22/09/2009 - 08:45:11 - [0,151] ----D C:\Program Files\Yahoo! =>Toolbar.Yahoo
O43 - CFD: 06/01/2008 - 15:20:59 - [24,348] ----D C:\Program Files\Fichiers communs\KAV Shared Files
O43 - CFD: 18/11/2004 - 02:45:46 - [0,067] ----D C:\Documents and Settings\All Users\Application Data\SBSI
O43 - CFD: 20/09/2005 - 18:59:52 - [12,021] ----D C:\Documents and Settings\Dudu\Application Data\Digital Album Organizer
O43 - CFD: 22/05/2012 - 19:56:26 - [1,610] ----D C:\Documents and Settings\Dudu\Application Data\eBookPro6
O43 - CFD: 07/09/2012 - 23:01:15 - [0,001] ----D C:\Documents and Settings\Dudu\Application Data\homebank
O43 - CFD: 21/09/2009 - 21:17:04 - [0] ----D C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo
O43 - CFD: 20/01/2007 - 11:17:31 - [0,002] ----D C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo
O43 - CFD: 14/12/2006 - 22:01:37 - [0,004] ----D C:\Documents and Settings\Dudu\Menu Démarrer\Programmes\WD Diagnostics
~ Program Folder: 256 Legitimates Filtered in 01mn 38s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.085F3E89A910887C282AE4B642A524CD] - 14/09/2013 - 19:44:58 ---A- . (...) -- C:\WINDOWS\WIADEBUG.LOG [159]
O44 - LFC:[MD5.1473DF9BED6B04F7065F2BFDA075EB5A] - 14/09/2013 - 19:44:55 ---A- . (...) -- C:\WINDOWS\WIASERVC.LOG [50]
O44 - LFC:[MD5.811FE714691A9B82F0B2C8C516B97750] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\FaxSetup.log [30792]
O44 - LFC:[MD5.396B8B7BBE9522CCC17AE8D5FBCC51F5] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\comsetup.log [10305]
O44 - LFC:[MD5.3E120EFCB00012C32D0D3F9E029E7474] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\iis6.log [4955]
O44 - LFC:[MD5.4FB6CEDC2963E0DA9B27D9E24C2873C5] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\imsins.log [1374]
O44 - LFC:[MD5.86DF952AA985916AF4E6D7C89DD24C77] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\msgsocm.log [1515]
O44 - LFC:[MD5.27703A4D814854F258AC73784226C18E] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\ntdtcsetup.log [6235]
O44 - LFC:[MD5.55E091FE39D555D55490C64A05860AAE] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\ocgen.log [14780]
O44 - LFC:[MD5.A2015AD0A603635391BB864338BF44EE] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\ocmsn.log [1710]
O44 - LFC:[MD5.2716D818C58E16C3D133BCCEF8799704] - 14/09/2013 - 18:15:13 ---A- . (...) -- C:\WINDOWS\tsoc.log [11795]
O44 - LFC:[MD5.DC8217BC6AA3746E8F68B86D35C5F598] - 14/09/2013 - 18:15:05 ---A- . (...) -- C:\WINDOWS\updspapi.log [4074]
O44 - LFC:[MD5.37FFC8705032945D404BC0D6661CBEBA] - 14/09/2013 - 18:11:52 ---A- . (...) -- C:\WINDOWS\imsins.BAK [1374]
O44 - LFC:[MD5.AD1B24C84413D4398042DB2235DDEF0D] - 14/09/2013 - 18:07:07 ---A- . (...) -- C:\WINDOWS\WIN.INI [837]
O44 - LFC:[MD5.B9ACA2457334E68C8AD9F8BF9FB1F229] - 07/09/2013 - 06:56:31 ---A- . (...) -- C:\WINDOWS\SYSTEM32\d3d9caps.dat [664]
~ Files: 29 Legitimates Filtered in 01mn 08s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "C:\temp\CI_HITACHI\MAJ_Hitachi.exe" [Disabled] .(...) -- C:\temp\CI_HITACHI\MAJ_Hitachi.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe" [Enabled] .(...) -- C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe (.not file.)
~ Keys Export: 22 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{618dfaae-e9a9-11df-aeea-00038a000015}\AutoRun\command. (...) -- E:\DPFMate.exe (.not file.)
O51 - MPSK:{659207de-d9e0-11df-aed9-00038a000015}\AutoRun\command. (...) -- F:\setup.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\AOLDialer [Key] . (...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools-1033 [Key] . (.VeNoM386 and SwENSkE - Virtual DAEMON Manager.) -- C:\Program Files\D-Tools\daemon.exe
O53 - SMSR:HKLM\...\startupreg\Easy-PrintToolBox [Key] . (...) -- C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\eCarteBleue-LP-P1 [Key] . (.Orbiscom Ltd. All rights reserved. - e-Carte Bleue.) -- C:\Program Files\e-Carte Bleue\LA POSTE\CVD ADESIO\ECB.exe
O53 - SMSR:HKLM\...\startupreg\glowria [Key] . (...) -- C:\Program Files\glowria\glowria.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (...) -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 - Services [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\PhilipsSongbirdLauncher [Key] . (...) -- C:\Program Files\Philips\Philips Songbird\extensions\[email protected]\application\PhilipsSongbirdLauncher.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\RDReminder [Key] . (...) -- C:\Program Files\PC Performer\PCPerformer.exe (.not file.) =>Rogue.PCPerformer
O53 - SMSR:HKLM\...\startupreg\SearchProtect [Key] . (...) -- C:\Documents and Settings\Dudu\Application Data\SearchProtect\bin\cltmng.exe (.not file.) =>Toolbar.Conduit
O53 - SMSR:HKLM\...\startupreg\SearchProtectAll [Key] . (...) -- C:\Program Files\SearchProtect\bin\cltmng.exe (.not file.) =>Toolbar.Conduit
O53 - SMSR:HKLM\...\startupreg\vmtalk [Key] . (...) -- C:\Program Files\Fichiers communs\Talkway\vmtalk.exe (.not file.)
~ SMSR Keys: 44 Legitimates Filtered in 00mn 01s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.62D318E9A0C8FC9B780008E724283707] - 17/08/2001 - 22:52:00 ---A- . (.Advanced System Products, Inc. - AdvanSys SCSI Controller Driver.) -- C:\WINDOWS\SYSTEM32\Drivers\ASC.SYS [26496]
O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 13:00:00 ---A- . (...) -- C:\WINDOWS\SYSTEM32\ANSI.SYS [9037]
~ Drivers: 5 Legitimates Filtered in 00mn 00s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: RSIT - (.random/random.)
O63 - Logiciel: ToolsCleaner - (.A.Rothstein & dj QUIOU.)
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 17/08/2001 - C:\WINDOWS\SYSTEM32\DRIVERS\asc3550.sys (asc3550) .(.Advanced System Products, Inc. - AdvanSys Ultra-Wide PCI SCSI Driver.) - LEGACY_ASC3550
~ Legacy: 236 Legitimates Filtered in 00mn 01s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
~ FASS Keys: 17 Legitimates Filtered in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <chrome.exe> <>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] Google - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {3CA931F5-9790-449B-A764-DCA172374F9B} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {A11C280A-C124-476B-9897-CF005005069A} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {AF1EC724-9785-4E0B-B4C6-20E9B300A709} - (01NET.com Main Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {E7BD2F1B-12E0-4064-B1E4-A4C628B61385} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
~ Keys: Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.ABBBF9810D8EAE569DC61B6698476C87] [SPRF][23/05/2008] (...) -- C:\Documents and Settings\Dudu\Local Settings\Application Data\fusioncache.dat [127]
[MD5.88783EB39D8EF000CDA3413C789C4E21] [SPRF][23/05/2008] (...) -- C:\Program Files\settings.dat [15397]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]
[MD5.298068536300DA6DC163E394797A7C50] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]
[MD5.1CAB87DE6638846FBF51F32B5D95E482] [SPRF][25/05/2006] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]
~ Files: 6 Legitimates Filtered in 00mn 00s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "18EAC839E7DC4CA4D8830A8AF1EAACDA" . (.DAEMON Tools.) -- C:\WINDOWS\Installer\{938CAE81-CD7E-4AC4-8D38-A0A81FAECAAD}\_daemoncp.exe
~ Update Products: 52 Legitimates Filtered in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.B2B30E36D480BBB44C5E8852F5BEDCA7] [WIS][21/02/2013] (.Google, Inc. - Google SketchUp 8 Installer.) -- C:\Windows\Installer\106f7d71.msi [16837120]
[MD5.1FADA91729CB1BE242719717780C3168] [WIS][12/08/2012] (.Trusteer - Rapport.) -- C:\Windows\Installer\20a47.msi [22860288]
[MD5.D924A14A9088AE537BAD9388536010BD] [WIS][08/04/2005] (.VeNoM386 & SwENSkE - DAEMON Tools.) -- C:\Windows\Installer\c5472.msi [140288]
~ WIS: 61 Legitimates Filtered in 00mn 12s



---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 14/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 09/05/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\SYSTEM32\dmadmin.exe
SS - | Auto 11/03/2009 133104 | (gupdate1c9a297a9ef4904) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 11/03/2009 133104 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Auto 25/09/2011 194104 | (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
SS - | Demand 03/03/2003 143360 | (NetSvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
SS - | Disabled 03/11/2003 73728 | (NVSvc) . (.NVIDIA Corporation.) - C:\WINDOWS\SYSTEM32\nvsvc32.exe
SR - | Auto 29/08/2013 1435928 | (RapportMgmtService) . (.Trusteer Ltd..) - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
~ Services: Scanned in 00mn 13s



---\\ Scan Additionnel (O88)
Database Version : 12917 - (14/09/2013)
Clés trouvées (Keys found) : 26
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 5
Fichiers trouvés (Files found) : 5

[HKLM\Software\Google\Chrome\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon] =>PUP.SpeedAnalysis^
[HKLM\Software\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf] =>PUP.SpeedAnalysis^
[HKLM\Software\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\RDReminder] =>Rogue.PCPerformer^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtect] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtectAll] =>Toolbar.Conduit^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKCU\Software\BlabbersToolbar] =>PUP.Blabbers
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKLM\Software\Classes\CLSID\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Searchqu 410 MediaBar] =>Adware.Bandoo
C:\Program Files\Yahoo! =>Toolbar.Yahoo^
C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo^
C:\Program Files\PDFCreator Toolbar =>Toolbar.PDFCreator
C:\Program Files\VideoPerformer =>PUP.VideoPerformer
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf =>PUP.SpeedAnalysis^
C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog =>Adware.SmileyBar^
[HKCU\Software\Yahoo] =>Toolbar.Yahoo^
[HKLM\Software\Yahoo] =>Toolbar.Yahoo^
~ Additionnel Scan: 285746 Items scanned in 00mn 49s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blo ... edanalysis =>PUP.SpeedAnalysis
~ http://nicolascoolman.webs.com/apps/blo ... -smileybar =>Adware.SmileyBar
~ http://nicolascoolman.webs.com/apps/blo ... lbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blo ... ar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blo ... oolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blo ... p-blabbers =>PUP.Blabbers
~ http://nicolascoolman.webs.com/apps/blo ... are-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blo ... operformer =>PUP.VideoPerformer
~ MSI: 8 link(s) detected in 00mn 49s



~ 1179 Legitimates filtered by white list
End of the scan (524 lines in 06mn 43s)(0)


Est il necessaire de désinstaller le logiciel ?

Merci
SkyTech

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par SkyTech »

Yop,

C'est pas fini lol

Ce script va cibler certains éléments à supprimer :
  • cliques sur tout sélectionner puis clic droit copier

    Code : Tout sélectionner

    script ZHPFix
    G0 - GCSP: Preference [User Data\Default] http://www.kairn.com
    G2 - GCE: Preference [User Data\Default] [cfcbmgbfdbijmjgjihagbomfbjfjmgon] SpeedAnalysis.com v.1.0.0.1 (Désactivé) =>PUP.SpeedAnalysis
    G2 - GCE: Preference [User Data\Default] [dgjkhjdcljddbedokogakmmdjgnbeanf] Speed Analysis 2 v.1.0.0.0 (Désactivé) =>PUP.SpeedAnalysis
    G2 - GCE: Preference [User Data\Default] [mocblcnaofikinigmceddfghppkkjbog] Smiley Bar for Facebook v.1.0.0.0 (Désactivé) =>Adware.SmileyBar
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} Clé orpheline
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{F2E259E8-0FC8-438C-A6E0-342DD80FA53E} Clé orpheline
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Clé orpheline
    [HKCU\Software\Yahoo] =>Toolbar.Yahoo
    [HKLM\Software\Yahoo] =>Toolbar.Yahoo
    O43 - CFD: 22/09/2009 - 08:45:11 - [0,151] ----D C:\Program Files\Yahoo! =>Toolbar.Yahoo
    O43 - CFD: 21/09/2009 - 21:17:04 - [0] ----D C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo
    O43 - CFD: 20/01/2007 - 11:17:31 - [0,002] ----D C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo
    O47 - AAKE:Key Export SP - "C:\temp\CI_HITACHI\MAJ_Hitachi.exe" [Disabled] .(...) -- C:\temp\CI_HITACHI\MAJ_Hitachi.exe (.not file.)
    O47 - AAKE:Key Export SP - "C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe" [Enabled] .(...) -- C:\Documents and Settings\Dudu\Mes documents\Downloads\pjjoint_uploader (1).exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\AOLDialer [Key] . (...) -- C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\Easy-PrintToolBox [Key] . (...) -- C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\glowria [Key] . (...) -- C:\Program Files\glowria\glowria.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (...) -- C:\Program Files\Messenger\msmsgs.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\Odebit Multimedia V3 - Services [Key] . (...) -- C:\Program Files\Odebit Multimédia\V3\Odebit.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\PhilipsSongbirdLauncher [Key] . (...) -- C:\Program Files\Philips\Philips Songbird\extensions\[email protected]\application\PhilipsSongbirdLauncher.exe (.not file.)
    O53 - SMSR:HKLM\...\startupreg\RDReminder [Key] . (...) -- C:\Program Files\PC Performer\PCPerformer.exe (.not file.) =>Rogue.PCPerformer
    O53 - SMSR:HKLM\...\startupreg\SearchProtect [Key] . (...) -- C:\Documents and Settings\Dudu\Application Data\SearchProtect\bin\cltmng.exe (.not file.) =>Toolbar.Conduit
    O53 - SMSR:HKLM\...\startupreg\SearchProtectAll [Key] . (...) -- C:\Program Files\SearchProtect\bin\cltmng.exe (.not file.) =>Toolbar.Conduit
    O53 - SMSR:HKLM\...\startupreg\vmtalk [Key] . (...) -- C:\Program Files\Fichiers communs\Talkway\vmtalk.exe (.not file.)
    O69 - SBI: SearchScopes [HKCU] {AF1EC724-9785-4E0B-B4C6-20E9B300A709} - (01NET.com Main Customized Web Search) - http://search.conduit.com
    O69 - SBI: SearchScopes [HKCU] {E7BD2F1B-12E0-4064-B1E4-A4C628B61385} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
    [HKLM\Software\Google\Chrome\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon] =>PUP.SpeedAnalysis^
    [HKLM\Software\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf] =>PUP.SpeedAnalysis^
    [HKLM\Software\Google\Chrome\Extensions\mocblcnaofikinigmceddfghppkkjbog] =>Adware.SmileyBar^
    [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\RDReminder] =>Rogue.PCPerformer^
    [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtect] =>Toolbar.Conduit^
    [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SearchProtectAll] =>Toolbar.Conduit^
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0E9201899CF73FC4BA93F631631229A1] =>Toolbar.Agent
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
    [HKCU\Software\BlabbersToolbar] =>PUP.Blabbers
    [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
    [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] =>Toolbar.PDFCreator
    [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
    [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
    [HKLM\Software\Classes\CLSID\{327C2873-E90D-4c37-AA9D-10AC9BABA46C}] =>Toolbar.EasyWebPrint
    [HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Searchqu 410 MediaBar] =>Adware.Bandoo
    C:\Program Files\Yahoo! =>Toolbar.Yahoo^
    C:\Documents and Settings\Dudu\Application Data\Yahoo! =>Toolbar.Yahoo^
    C:\Documents and Settings\Dudu\Local Settings\Application Data\Yahoo =>Toolbar.Yahoo^
    C:\Program Files\PDFCreator Toolbar =>Toolbar.PDFCreator
    C:\Program Files\VideoPerformer =>PUP.VideoPerformer
    C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon =>PUP.SpeedAnalysis^
    C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf =>PUP.SpeedAnalysis^
    C:\Documents and Settings\Dudu\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mocblcnaofikinigmceddfghppkkjbog =>Adware.SmileyBar^
    [HKCU\Software\Yahoo] =>Toolbar.Yahoo^
    [HKLM\Software\Yahoo] =>Toolbar.Yahoo^
  • Lance ZHPFix à partir du raccourci sur ton Bureau
    si tu es sous Windows Vista ou Windows 7, fais le par un clic-droit --> Exécuter en tant qu'administrateur
  • Clique sur l'icone représentant le presse-papier ("coller le presse-papier")

    Image

    Le script doit automatiquement apparaitre dans ZHPFix, sinon, colle-le (Ctrl+v)
  • Clique sur le bouton GO pour lancer le nettoyage
  • Héberge le rapport ZHPFIX.txt sur ce site Cijoint.fr, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum.
(canned emprunté à steffen38)
dudu04

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par dudu04 »

Bonsoir,

voilà le lien :
http://cjoint.com/?3IpwuBUQxnz

merci
SkyTech

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par SkyTech »

Comment se comporte le PC ?

Poste un nouveau rapport HijackThis.
dudu04

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par dudu04 »

Bonsoir,

le PC se comporte vraiment mieux, avec plus de rapidité

voilà le dernier rapport Hijackthis :

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 20:40:02, on 16/09/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)


Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\Program Files\Trusteer\Rapport\bin\RapportService.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Dudu\Bureau\NETTOYAGE PC\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.euro.dell.com/countries/fr/f ... efault.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file)
O3 - Toolbar: (no name) - !{98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre7\bin\jp2iexp.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O15 - Trusted Zone: http://www.secuser.com
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurig ... 1127095344
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.fr/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: {54D53429-945C-4188-B460-C81356541882} - http://eshare.hpphoto.com/Download/HPeS ... lPrint.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005 ... scan53.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/share ... cgdmgr.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service Google Update (gupdate1c9a297a9ef4904) (gupdate1c9a297a9ef4904) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Rapport Management Service (RapportMgmtService) - Trusteer Ltd. - C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe

--
End of file - 8860 bytes


merci déjà pour tous les conseils et le temps passé

dois je supprimer des logiciels installés pour le nettoyage ?

est ce qu'il reste des choses à faire ?

Sinon, quelles consignes à appliquer pour pas tomber dans les memes pièges/erreurs ?

et pour "nettoyer" l'ordi, et à quels rythmes ?

merci
SkyTech

Re: lenteur et pb apres tuto optimiser vs même votre ordi

par SkyTech »

Bonsoir,
dudu04 a écrit :Sinon, quelles consignes à appliquer pour pas tomber dans les memes pièges/erreurs ?
Prendre bien soin de télécharger chaque logiciel sur le site de l'éditeur et de décocher les éventuels sponsors à l'installation.
dudu04 a écrit :et pour "nettoyer" l'ordi, et à quels rythmes ?
Tu pourras faire ce qui est indiqué en dessous du "c'est ok" 1x/mois, sauf pour les modifs permanentes.

Relance HijackThis, coche ces lignes en rouge et clic sur Fix checked.

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.euro.dell.com/countries/fr/f ... efault.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O3 - Toolbar: (no name) - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - (no file)
O3 - Toolbar: (no name) - !{98889811-442D-49dd-99D7-DC866BE87DBC} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurig ... 1127095344
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.fr/computercheckup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/share ... insctl.cab
O16 - DPF: {54D53429-945C-4188-B460-C81356541882} - http://eshare.hpphoto.com/Download/HPeS ... lPrint.CAB
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6DB731A3-B074-4118-8B1C-32511C65D836} (FotovistaPhotoUploader.ctrFpu) - http://www.mypixmania.com/fr/fr/tools/activex/fpu.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005 ... scan53.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/share ... cgdmgr.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab



C'est Ok :)

Finir le nettoyage :

Supprime :

C:\Program Files\Trend Micro\HijackThis\backups

Tu peux désinstaller\supprimer les programmes que nous avons utilisé via Ajout\Suppression de programmes du Panneau de configuration (XP) ou via désinstaller un programme (Vista / Seven)

Passe un coup de CCleaner (décoche la toolbar à l'installation)

Règle-le d'abord comme ici :

Image
  • Clique sur le Pinceau,
  • Lancer le Nettoyage.
  • Patiente,
  • Ensuite clique sur Registre,
  • Chercher des erreurs,
  • Une fois l'analyse terminer clique sur Réparer les erreurs sélectionnées,
  • CCleaner va te demander si tu veux Sauvegarder ou non, à toi de voir si tu le veux ou pas,
  • Clique sur Corriger toutes les erreurs sélectionnées,
  • OK,
  • Tu peux fermer CCleaner.
Défragmente ton DD avec MyDefrag.

Défragmente ta base de registre avec NTREGOPT (Pour Vista / Seven : Clique droit dessus, exécuter en tant qu'administrateur)

Pendant la défragmentation (assez rapide) avec NTREGOPT ne tente pas de faire quoique ce soit avec le PC, tu ne pourras pas !

Désactiver l'indexation des fichiers :
  • Poste de travail ou Ordinateur,
  • Clique-droit sur les disques durs,
  • Propriétés,
  • Décochez :
    • Sur Xp : Autoriser l'indexation de ce disque pour la recherche rapides de fichiers
    • Sur Vista : Indexer ce lecteur pour une recherche rapide
  • Appliquer les modifications à C:\et à tous les sous-dossiers et fichiers, si un message d'erreur apparaît cliquer sur Ignorer. Laissez faire.
Désactive puis réactive la restauration du système

@+
  • Sujets similaires
    Réponses
    Vues
    Dernier message

Revenir à « Accélérer Windows et problème de lenteur PC »