driver_irql_not_less_or_equal (netio.sys)

• Question

• 

  

  0

  Connectez-vous pour voter

  Bonjour,

  Je ne comprends pas, j'ai mis tous les pilotes de mon pc à jour, idem carte mère, graphique et modem, et je me retrouve encore avec ce message. Et mon pc redémarre à tout bout de champ. J'ai Windows 8.1 pro.
  

  Pouvez vous me dire où cela vient ????

  merci pour la réponse

  voici le rapport de mon pc : (si cela peut vous satisfaire)

   Rapport de ZHPDiag v2014.4.12.20 - Nicolas Coolman  (12/04/2014)
  ~ Lancé par GABRIEL (20/04/2014 11:18:56)
  ~ Adresse du Site Web  http://nicolascoolman.webs.com
  ~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
  ~ Traduit par Nicolas Coolman
  ~ Etat de la version :
  ~ Liste blanche : Activée par le programme
  ~ Elévation des Privilèges : OK
  ~ User Account Control (UAC): Activate by user
  
  
  ---\\ Navigateurs Internet
  MSIE: Internet Explorer v11.0.9600.17031
  MFIE: Mozilla Firefox 28.0
  GCIE: Google Chrome v34.0.1847.116 (Defaut)
  
  ---\\ Informations sur les produits Windows
  ~ Langage: Français
  Windows 8.1 Pro, 64-bit  (Build 9600)
  Windows Server License Manager Script : OK
  ~ Windows(R) Operating System, RETAIL channel
  Windows ID Activation : OK
  ~ Windows Partial Key : BG667
  Windows License : OK
  ~ Windows Remaining Initializations Number : 999
  Software Protection Service (Protection logicielle) : OK
  Windows Automatic Updates : OK
  Windows Activation Technologies : OK
  
  ---\\ Logiciels de protection du système
  Malwarebytes Anti-Malware version 2.0.1.1004
  Windows Defender W8
  
  ---\\ Logiciels d'optimisation du système
  
  ---\\ Logiciels de partage PeerToPeer
  
  ---\\ Surveillance de Logiciels
  Adobe Flash Player 13 Plugin
  Adobe Reader XI
  
  ---\\ Informations sur le système
  ~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
  ~ Operating System: 64 Bits
  Boot mode: Normal (Normal boot)
  Total RAM: 16351 MB (87% free)
  System Restore: Activé (Enable)
  System drive C: has 62 GB (55%) free of 112 GB
  
  ---\\ Mode de connexion au système
  ~ Computer Name: JOSS
  ~ User Name: GABRIEL
  ~ All Users Names: Guest, GABRIEL, Administrator,
  ~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
  Logged in as Administrator
  
  ---\\ Variables d'environnement
  ~ System Unit : C:\
  ~ %AppZHP% : C:\Users\GABRIEL\AppData\Roaming\ZHP\
  ~ %AppData% : C:\Users\GABRIEL\AppData\Roaming\
  ~ %Desktop% : C:\Users\GABRIEL\Desktop\
  ~ %Favorites% : C:\Users\GABRIEL\Favorites\
  ~ %LocalAppData% : C:\Users\GABRIEL\AppData\Local\
  ~ %StartMenu% : C:\Users\GABRIEL\AppData\Roaming\Microsoft\Windows\Start Menu\
  ~ %Windir% : C:\Windows\
  ~ %System% : C:\Windows\System32\
  
  ---\\ Enumération des unités disques
  C: Hard drive, Flash drive, Thumb drive (Free 62 Go of 112 Go)
  D: Hard drive, Flash drive, Thumb drive (Free 423 Go of 464 Go)
  E: Hard drive, Flash drive, Thumb drive (Free 374 Go of 468 Go)
  F: Floppy drive, Flash card reader, USB Key (Not Inserted)
  G: CD-ROM drive (Not Inserted)
  
  
  
  ---\\ Etat du Centre de Sécurité Windows
  [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
  ~ Security Center: 41 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Recherche particulière de fichiers génériques
  [MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.04/03/2014 - 13:25:49.) -- C:\Windows\Explorer.exe [2373784]
  [MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 10:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
  [MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2014 - 10:11:56.) -- C:\Windows\System32\wininet.dll [2262016]
  [MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.22/02/2014 - 10:45:48.) -- C:\Windows\System32\Winlogon.exe [562176]
  [MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/12/2013 - 09:54:07.) -- C:\Windows\System32\sppcomapi.dll [447488]
  [MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
  [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 13:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
  [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 12:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
  [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 09:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
  [MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.06/03/2014 - 10:22:50.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
  [MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 12:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
  [MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 12:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
  [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.27/11/2013 - 13:02:29.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
  [MD5.C997E6A37BA8915224B3FB5024A34F69] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.06/03/2014 - 10:20:23.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
  [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 12:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
  [MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.20/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
  [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 12:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
  [MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 12:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
  [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.30/09/2013 - 04:59:10.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
  [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 14:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
  [MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.22/02/2014 - 16:44:13.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
  ~ Generic Processes:  Scanned in 00mn 00s
  
  
  
  ---\\ Etat des fichiers cachés (Caché/Total)
  ~ Mes images (My Pictures) : 1/31
  ~ Mes musiques (My Musics) : 1/270
  ~ Mes Favoris (My Favorites) : 1/85
  ~ Mes Documents (My Documents) : 1/2784
  ~ Mon Bureau (My Desktop) : 2/243
  ~ Menu demarrer (Programs) : 1/45
  ~ Hidden Files:  Scanned in 00mn 00s
  
  
  
  ---\\ Processus lancés
  [MD5.EE73B56ED71EB6383F25FA5468923BB2] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe   [2234144] [PID.3400]
  [MD5.B105F237BE04369A838B3BDB23E3993E] - (.IObit - Pas de description.) -- C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe   [1706304] [PID.4604]
  [MD5.C8F7391B3FB83532AD598F48D8C75B91] - (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe   [2562368] [PID.5016]
  [MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe   [287592] [PID.2420]
  [MD5.240B2FAC1D398715960BD31AF7152DD7] - (.Tonec Inc. - Internet Download Manager (IDM).) -- D:\Internet Download Manager\IDMan.exe   [3829328] [PID.3564]
  [MD5.BD95E822E7A958BBCA842D078426A151] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- D:\Internet Download Manager\IEMonitor.exe   [269848] [PID.2728]
  [MD5.8E556A72D54F7E3B7844AB9217F02DD7] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe   [275568] [PID.4212]
  [MD5.93135F3253C121F68ED3D0E73997A450] - (.Nicolas Coolman - ZHPDiag.) -- D:\ZHPDiag\ZHPDiag.exe   [8210432] [PID.2408]
  ~ Processes Running:  Scanned in 00mn 00s
  
  
  
  ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
  C:\Users\GABRIEL\AppData\Local\Google\Chrome\User Data\Default\Preferences
  G0 - GCSP: Preference [User Data\Default][HomePage] http://www.sfr.fr
  G2 - GCE: Preference [User Data\Default] [afkejkmnnecfhggeddnbnmobmilibgaf] CMB v.1.0.6 (Activé)
  G2 - GCE: Preference [User Data\Default] [anakpfpojdnocblgejmienjaaggfgbdj] Meteo en France v.3.1 (Activé)
  G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
  G2 - GCE: Preference [User Data\Default] [bhgdaibgieegeajgjhpepldeidohenid] Virtual Villagers 5 v.0.3 (Activé)
  G2 - GCE: Preference [User Data\Default] [boeajhmfdjldchidhphikilcgdacljfm] Facebook v.1.0.3 (Activé)
  G2 - GCE: Preference [User Data\Default] [bppbpeijolfcampacpljolaegibfhjph] TV v.2.5 (Activé)
  G2 - GCE: Preference [User Data\Default] [feiffpmcjilpjadpgolbhfgpagmjphfl] Horoscope du jour v.1.0.11.0 (Activé)
  G2 - GCE: Preference [User Data\Default] [fhilngoholgagpigimdijknkbphjkpej] Farm Frenzy 3: Madagascar v.0.2 (Activé)
  G2 - GCE: Preference [User Data\Default] [hjjofhgnhekhkccpcnnloagmdpafifeo] TiltShiftMaker v.1.3.3 (Activé)
  G2 - GCE: Preference [User Data\Default] [ilkgeioneoemibpddeiamfgiofnpjifm] The West v.1.5 (Activé)
  G2 - GCE: Preference [User Data\Default] [jchehpafcopffbhjpfobgeggjaofiaol] Wedding Dress Creator 3.5 v.3.52 (Activé)
  G2 - GCE: Preference [User Data\Default] [ldekkfiehnegbjkcmalkfcgfecambndd] Pinterest â„¢  v.1.1 (Activé)
  G2 - GCE: Preference [User Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)
  G2 - GCE: Preference [User Data\Default] [mmapnhgbanipillmolcbaidjboadhngn] The Settlers Online v.1.2.5 (Activé)
  G2 - GCE: Preference [User Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)
  G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
  G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)
  G2 - GCE: Preference [User Data\Default] [ocecilcckghmfgoninjecohlmcdcegeh] SammyDress v.0.0.0.1 (Activé)
  
  ---\\ Liste des dossiers d'extension Google Chrome
  
  ~ Google Lines Browser: 31 Legitimates Filtered in 00mn 02s
  
  
  
  ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
  C:\Users\GABRIEL\AppData\Roaming\Mozilla\Firefox\Profiles\mData\prefs.js (.not file.)
  C:\Users\GABRIEL\AppData\Roaming\Mozilla\Firefox\Profiles\rscl96ud.default\prefs.js
  C:\Users\GABRIEL\AppData\Roaming\Mozilla\Firefox\Profiles\rscl96ud.default\user.js
  M2 - MFEP: prefs.js [GABRIEL - mData\ascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)
  M2 - MFEP: prefs.js [GABRIEL - rscl96ud.default\adsremoval@adsremoval.net] [] Ads Removal v1.0.0 (..)
  M2 - MFEP: prefs.js [GABRIEL - rscl96ud.default\ascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)
  M2 - MFEP: prefs.js [GABRIEL - rscl96ud.default\firefoxdav@icloud.com] [] Dấu trang iCloud v1.2.12 (..)
  ~ Firefox Browser: 9 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
  R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
  ~ IE Browser: 16 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Internet Explorer, Proxy Management (R5)
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
  R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
  ~ Proxy management:  Scanned in 00mn 00s
  
  
  
  ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
  F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
  F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
  F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
  ~ Keys:  Scanned in 00mn 00s
  
  
  
  ---\\ Hosts file redirection (O1)
  ~ Le fichier hosts est sain (The hosts file is clean).
  ~ Hosts File:  Scanned in 00mn 00s
  ~ Nombre de lignes (Lines number): 23
  
  
  
  ---\\ Autres liens utilisateurs (O4)
  O4 - GS\Program [Public]: Desktop.lnk - Clé orpheline
  O4 - GS\Program [Public]: Encore plus de jeux.lnk - Clé orpheline
  O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  O4 - GS\QuickLaunch [GABRIEL]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  O4 - GS\QuickLaunch [GABRIEL]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  O4 - GS\TaskBar [GABRIEL]: Google Chrome.lnk . (.Google Inc. - Google Chrome.)  -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  O4 - GS\TaskBar [GABRIEL]: iexplore.exe.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  O4 - GS\TaskBar [GABRIEL]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.)  -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  O4 - GS\TaskBar [GABRIEL]: Origin.exe.lnk . (.Electronic Arts - Origin.)  -- D:\Origin\Origin.exe
  O4 - GS\TaskBar [GABRIEL]: shutdown.exe.lnk . (.Microsoft Corporation - Outil d’arrêt et d’annotation Windows.)  -- C:\Windows\System32\shutdown.exe
  O4 - GS\TaskBar [GABRIEL]: WINWORD.EXE.lnk . (.Microsoft Corporation - Microsoft Office Word.)  -- C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.exe
  O4 - GS\Program [GABRIEL]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  O4 - GS\Desktop [GABRIEL]: disk E.lnk . (...)  -- E:\
  O4 - GS\Desktop [GABRIEL]: DllSuite.lnk . (...)  -- D:\2014\DLLSuite.exe
  O4 - GS\Desktop [GABRIEL]: Ordi JG.lnk . (...)  -- C:\
  ~ Global Startup: 42 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Applications lancées au démarrage du système (O4)
  O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
  O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe   =>.Realtek Semiconductor Corp
  O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\WINDOWS\system32\nvspcap64.dll
  O4 - HKLM\..\Run: [VX3000] . (.Microsoft Corporation - Microsoft LifeCam Device Application.) -- C:\WINDOWS\vVX3000.exe
  O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
  O4 - HKCU\..\Run: [SFR Mediacenter] . (.SFR - Mediacenter Evolution.) -- C:\Program Files (x86)\SFR\Mediacenter Evolution\MediaCenter.exe
  O4 - HKCU\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
  O4 - HKCU\..\Run: [Advanced SystemCare Ultimate] . (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
  O4 - HKLM\..\Wow6432Node\Run: [LifeCam] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
  O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   =>.Adobe Systems Incorporated
  O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
  O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
  O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- D:\Program Files (x86)\iTunes\iTunesHelper.exe
  O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] D:\antivirus\Bitdefender\Bitdefender\pmbxag.exe (.not file.)
  O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet] D:\antivirus\Bitdefender\Bitdefender\pwdmanui.exe (.not file.)
  O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Agent de l'application Wallet] D:\antivirus\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.)
  O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] D:\antivirus\Bitdefender\Bitdefender\pmbxag.exe (.not file.)
  O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] D:\antivirus\Bitdefender\Bitdefender\pwdmanui.exe (.not file.)
  O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Agent de l'application Wallet] D:\antivirus\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (.not file.)
  O4 - HKUS\S-1-5-21-3102659511-1213733535-1834120805-1001\..\Run: [SFR Mediacenter] . (.SFR - Mediacenter Evolution.) -- C:\Program Files (x86)\SFR\Mediacenter Evolution\MediaCenter.exe
  O4 - HKUS\S-1-5-21-3102659511-1213733535-1834120805-1001\..\Run: [Sony PC Companion] . (.Sony - Sony PC Companion.) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
  O4 - HKUS\S-1-5-21-3102659511-1213733535-1834120805-1001\..\Run: [Advanced SystemCare Ultimate] . (.IObit - Advanced SystemCare Ultimate Tray.) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 7\ASCTray.exe
  ~ Application:  Scanned in 00mn 00s
  
  
  
  ---\\ Site dans la Zone de confiance d'Internet Explorer (O15)
  O15 - Trusted Zone: [HKCU\...\Domains] http.ma-config.com
  O15 - Trusted Zone: [HKCU\...\Domains] http.touslesdrivers.com
  ~ IE Zone Confiance:  Scanned in 00mn 00s
  
  
  
  ---\\ Modification Domaine/Adresses DNS (O17)
  O17 - HKLM\System\CCS\Services\Tcpip\..\{CCA91242-8C6A-4EF5-94F9-F8CCB8F2F649}: DhcpNameServer = 192.168.1.1
  O17 - HKLM\System\CS1\Services\Tcpip\..\{CCA91242-8C6A-4EF5-94F9-F8CCB8F2F649}: DhcpNameServer = 192.168.1.1
  O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  ~ Domain:  Scanned in 00mn 00s
  
  
  
  ---\\ Protocole additionnel (O18)
  O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
  O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll  =>.Microsoft Corporation
  ~ Protocole Additionnel:  Scanned in 00mn 00s
  
  
  
  ---\\ Enumère les données de BootExecute (BEX) (O34)
  O34 - HKLM BootExecute: (Úk0ŽSYSTEM\BDSandBox) - File not found
  ~ BEX: 2 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Tâches planifiées en automatique (O39)
  O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\ASC7U_SkipUac_GABRIEL.job   [274]
  O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Driver Booster SkipUAC (SYSTEM).job   [268]
  [MD5.00000000000000000000000000000000] [APT] [SomotoUpdateCheckerAutoStart] (...) -- C:\Users\GABRIEL\AppData\Local\FilesFrog Update Checker\update_checker.exe (.not file.)   [0]  =>Adware.MegaSearch
  [MD5.00000000000000000000000000000000] [APT] [{FD584F48-40B0-48D9-AB4C-37C834D0825C}] (...) -- C:\Users\GABRIEL\Desktop\happyicons.exe (.not file.)   [0]
  ~ Scheduled Task: 15 Legitimates Filtered in 00mn 01s
  
  
  
  ---\\ Logiciels installés (O42)
  O42 - Logiciel: Hero of the Kingdom - (...) [HKLM][64Bits] -- BFG-Hero of the Kingdom
  O42 - Logiciel: Settlement: Le Colosse - (...) [HKLM][64Bits] -- BFG-Settlement - Le Colosse
  O42 - Logiciel: The Tiny Bang Story - (...) [HKLM][64Bits] -- BFG-The Tiny Bang Story
  ~ Logic: 20 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ HKCU & HKLM Software Keys
  [HKCU\Software\Alexa Internet]
  [HKLM\Software\Wow6432Node\ADSRemoval]
  [HKLM\Software\Wow6432Node\Conduit]  =>Toolbar.Conduit
  [HKLM\Software\Wow6432Node\DataMngr]  =>PUP.Datamngr
  ~ Key Software: 249 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
  O43 - CFD: 19/04/2014 - 17:09:24 - [0] ----D C:\ProgramData\ProductData
  O43 - CFD: 12/03/2014 - 13:20:30 - [0] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
  O43 - CFD: 12/03/2014 - 13:20:30 - [0] ----D C:\ProgramData\{E1ED556E-3EA0-4F44-8BE7-CC5FB0F4B424}
  O43 - CFD: 06/10/2013 - 11:58:52 - [0,003] ----D C:\Users\GABRIEL\AppData\Roaming\Babylon  =>PUP.Babylon
  O43 - CFD: 04/02/2014 - 18:34:42 - [0,015] ----D C:\Users\GABRIEL\AppData\Roaming\Flo & Seb Engineering
  O43 - CFD: 07/10/2013 - 18:40:38 - [0,263] ----D C:\Users\GABRIEL\AppData\Roaming\Lonely Troops
  O43 - CFD: 12/03/2014 - 17:04:31 - [0] ----D C:\Users\GABRIEL\AppData\Roaming\Marine Aquarium 3
  O43 - CFD: 12/03/2014 - 13:21:56 - [0,006] ----D C:\Users\GABRIEL\AppData\Roaming\ProductData
  O43 - CFD: 13/04/2014 - 18:40:59 - [0] -SH-D C:\Users\GABRIEL\AppData\Local\EmieSiteList
  O43 - CFD: 13/04/2014 - 18:40:59 - [0] -SH-D C:\Users\GABRIEL\AppData\Local\EmieUserList
  O43 - CFD: 17/03/2014 - 16:28:28 - [0,001] ----D C:\Users\GABRIEL\AppData\Local\homebank
  O43 - CFD: 18/10/2013 - 14:26:32 - [0] ----D C:\Users\GABRIEL\AppData\Local\PackageStaging
  O43 - CFD: 18/10/2013 - 13:01:55 - [0,003] ----D C:\Users\GABRIEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hero of the Kingdom
  O43 - CFD: 26/11/2013 - 00:02:23 - [0,003] ----D C:\Users\GABRIEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Settlement - Le Colosse
  O43 - CFD: 17/03/2014 - 20:15:51 - [0,003] ----D C:\Users\GABRIEL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Tiny Bang Story
  ~ Program Folder: 184 Legitimates Filtered in 00mn 01s
  
  
  
  ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
  O44 - LFC:[MD5.455D55D67731967E2ADF577F50B72AF4] - 08/04/2014 - 13:40:23 ---A- . (...) -- C:\Windows\System32\nvinfo.pb   [26011]
  O44 - LFC:[MD5.12B0701B1CEC1A7BB0E4C71D97661E23] - 12/04/2014 - 17:18:53 ---A- . (...) -- C:\Windows\System32\ApnDatabase.xml   [387210]
  O44 - LFC:[MD5.385AF1C48CE3E86B37B9E66749FFEC1B] - 12/04/2014 - 17:42:29 ---A- . (...) -- C:\Windows\System32\srms.dat   [50053]
  O44 - LFC:[MD5.DE461B86C05946D10E519F512D09E389] - 12/04/2014 - 17:42:30 ---A- . (...) -- C:\Windows\System32\RacRules.xml   [100197]
  O44 - LFC:[MD5.E7B53AF004BEE5112F787A6E5B04D737] - 12/04/2014 - 17:42:30 ---A- . (...) -- C:\Windows\System32\connectedsearch-results.searchconnector-ms   [11109]
  O44 - LFC:[MD5.F1DB86EA935C13CDFF27AB957297136A] - 12/04/2014 - 17:42:30 ---A- . (...) -- C:\Windows\System32\connectedsearch-suggestions.searchconnector-ms   [7762]
  O44 - LFC:[MD5.1FDF29F970E2E843B4DC5D0626D0EDD5] - 12/04/2014 - 17:42:30 ---A- . (...) -- C:\Windows\System32\connectedsearch-zeroinput.searchconnector-ms   [7130]
  O44 - LFC:[MD5.119E0F7A71775A5CFB208B036ECE35E1] - 12/04/2014 - 17:42:32 ---A- . (...) -- C:\Windows\System32\WimBootCompress.ini   [2255]
  O44 - LFC:[MD5.DCF2510E0745720E543E84F5E921FCC0] - 12/04/2014 - 17:42:39 ---A- . (...) -- C:\Windows\System32\dfpinc.dat   [262335]
  O44 - LFC:[MD5.FFFCC3C3ED6886A95D3C0E1B49C652BA] - 12/04/2014 - 17:42:58 ---A- . (...) -- C:\Windows\System32\systemsf.ebd   [139600]
  O44 - LFC:[MD5.08750A50CF027F93070C8BB78E27C3B7] - 12/04/2014 - 17:44:59 -SH-- . (...) -- C:\Windows\System32\desktop.ini   [75]
  O44 - LFC:[MD5.AB7AFAC47007D11443AC2C19F9DBAC01] - 13/04/2014 - 16:41:20 ----- . (...) -- C:\Windows\FRGN.ico   [17542]
  O44 - LFC:[MD5.82A237FB0C60E7652BABD24E3277F53B] - 13/04/2014 - 16:41:20 ---A- . (...) -- C:\Windows\GPlrLanc.dat   [64]
  O44 - LFC:[MD5.635DA49E3C3C17FD6C1FFCFBBDCAA61B] - 20/04/2014 - 09:53:59 ---A- . (...) -- C:\MyXML.xml   [165659]
  ~ Files: 589 Legitimates Filtered in 00mn 12s
  
  
  
  ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
  O51 - MPSK:{70008fdd-ac27-11e3-bfb2-5404a6b230a4}\AutoRun\command. (...) -- H:\Startme.exe (.not file.)
  ~ Keys:  Scanned in 00mn 00s
  
  
  
  ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
  O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
  O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
  ~ MWPS: 17 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
  O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
  ~ MWPE Keys: 3 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Liste des pilotes du système (SDL) (O58)
  O58 - SDL:[MD5.C1ABB0F7E3BEA48A0417BDF6FF14AB21] - 13/08/2013 - 00:25:46 ---A- . (.Windows (R) Win 7 DDK provider - BCM Function 2  Device Driver.) -- C:\Windows\System32\Drivers\bcmfn2.sys   [17624]
  O58 - SDL:[MD5.929DF302F15BFE24AC66EF45D858C413] - 28/11/2013 - 01:24:18 ---A- . (.Tonec Inc. - Internet Download Manager WFP Driver.) -- C:\Windows\System32\Drivers\idmwfp.sys   [175480]
  O58 - SDL:[MD5.366DEA74BBA65B362BCCFC6FC2ADFD8B] - 22/08/2013 - 13:43:32 ---A- . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Windows x64.) -- C:\Windows\System32\Drivers\stexstor.sys   [31072]
  O58 - SDL:[MD5.C9E9D59C0099A9FF51697E9306A44240] - 13/12/2012 - 14:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys   [54784]
  ~ Drivers: 17 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Liste des outils de désinfection (LATC) (O63)
  O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
  ~ ADS:  Scanned in 00mn 00s
  
  
  
  ---\\ Associations Shell Spawning (O67)
  O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)
  ~ FASS Keys: 11 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Menu de démarrage Internet (SMI) (O68)
  O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
  ~ Keys:  Scanned in 00mn 00s
  
  
  
  ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
  O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com
  O69 - SBI: SearchScopes [HKCU] {460C3D19-B3D4-4964-A550-77D263B0CCCB} - (Bing) - http://www.bing.com
  ~ Keys:  Scanned in 00mn 00s
  
  
  
  ---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
  O87 - FAEL: "{D0FDEA30-5DD3-4ED5-9897-D62388EFB4FC}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Maxthon3\Bin\Maxthon.exe (.not file.)
  O87 - FAEL: "{3788914E-DF1B-4489-9D1D-8058DACD9F7D}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Maxthon3\Bin\Maxthon.exe (.not file.)
  O87 - FAEL: "{C9EC1D11-E312-4EFD-9D00-F42E8A2CC760}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Maxthon3\Bin\MxUp.exe (.not file.)
  O87 - FAEL: "{5CCBD890-6620-4AA9-A91F-D68EB2950989}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Maxthon3\Bin\MxUp.exe (.not file.)
  ~ Firewall: 229 Legitimates Filtered in 00mn 00s
  
  
  
  ---\\ Scan Additionnel (O88)
  Database Version : 13044 - (12/04/2014)
  Clés trouvées (Keys found) : 2
  Valeurs trouvées (Values found) : 0
  Dossiers trouvés  (Folders found) : 2
  Fichiers trouvés  (Files found) : 2
  
  [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}]   =>Toolbar.Agent
  [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}]   =>Toolbar.Agent
  C:\Users\GABRIEL\AppData\Roaming\Babylon   =>PUP.Babylon^
  C:\Users\GABRIEL\AppData\Local\Software   =>Adware.Boxore
  [HKLM\Software\Wow6432Node\Conduit]   =>Toolbar.Conduit^
  [HKLM\Software\Wow6432Node\DataMngr]   =>PUP.Datamngr^
  ~ Additionnel Scan: 259220 Items scanned in 00mn 11s
  
  
  
  ---\\ Récapitulatif des détections trouvées sur votre station
  http://nicolascoolman.webs.com/apps/blog/show/26919368-adware-megasearch  =>Adware.MegaSearch
  http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit  =>Toolbar.Conduit
  http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr  =>PUP.Datamngr
  http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon  =>PUP.Babylon
  http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore  =>Adware.Boxore
  ~ MSI: 5 link(s) detected in 00mn 00s
  
  
  
  ~ 1493 Legitimates filtered by white list
  End of the scan (438 lines in 00mn 45s)(0)
  

  dimanche 20 avril 2014 09:22