WeDownload Manager sur Chrome se réinstalle tout seul
Résolu/Fermé
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
-
20 oct. 2013 à 14:09
Aaron Leonheart Messages postés 46 Date d'inscription lundi 30 mai 2011 Statut Membre Dernière intervention 14 février 2023 - 21 oct. 2013 à 19:09
Aaron Leonheart Messages postés 46 Date d'inscription lundi 30 mai 2011 Statut Membre Dernière intervention 14 février 2023 - 21 oct. 2013 à 19:09
A voir également:
- WeDownload Manager sur Chrome se réinstalle tout seul
- Chrome cast sur tv - Guide
- Pc manager - Télécharger - Optimisation
- Restaurer onglets chrome - Guide
- Wbfs manager 64 bits - Télécharger - Sauvegarde
- Pc manager windows 7 - Télécharger - Optimisation
20 réponses
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 14:21
20 oct. 2013 à 14:21
Bonjour,
--> Télécharge et lance AdwCleaner (d'Xplode), choisis l'option "Scanner".
--> Une fois le scan terminé, choisis l'option "Nettoyer".
--> Redémarre le PC comme demandé puis poste le rapport. Il est enregistré dans C:\AdwCleaner sous le nom d'AdwCleaner[S0].
--> Télécharge et lance AdwCleaner (d'Xplode), choisis l'option "Scanner".
--> Une fois le scan terminé, choisis l'option "Nettoyer".
--> Redémarre le PC comme demandé puis poste le rapport. Il est enregistré dans C:\AdwCleaner sous le nom d'AdwCleaner[S0].
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
20 oct. 2013 à 14:51
20 oct. 2013 à 14:51
Voici le rapport:
# AdwCleaner v3.009 - Rapport créé le 20/10/2013 à 14:31:03
# Mis à jour le 19/10/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Aaron Leonheart - AARON_LEONHEART
# Exécuté depuis : C:\Users\Aaron Leonheart\Downloads\adwcleaner.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
Dossier Supprimé : C:\Program Files (x86)\BonanzaDeals
Fichier Supprimé : C:\Windows\Tasks\Dealply.job
Fichier Supprimé : C:\Windows\System32\Tasks\Dealply
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\installedbrowserextensions
Clé Supprimée : HKCU\Software\InstalledThirdPartyPrograms
Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
***** [ Navigateurs ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Google Chrome v30.0.1599.101
[ Fichier : C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [2349 octets] - [20/10/2013 14:30:17]
AdwCleaner[S0].txt - [2030 octets] - [20/10/2013 14:31:03]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2090 octets] ##########
# AdwCleaner v3.009 - Rapport créé le 20/10/2013 à 14:31:03
# Mis à jour le 19/10/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Aaron Leonheart - AARON_LEONHEART
# Exécuté depuis : C:\Users\Aaron Leonheart\Downloads\adwcleaner.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
Dossier Supprimé : C:\Program Files (x86)\BonanzaDeals
Fichier Supprimé : C:\Windows\Tasks\Dealply.job
Fichier Supprimé : C:\Windows\System32\Tasks\Dealply
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\installedbrowserextensions
Clé Supprimée : HKCU\Software\InstalledThirdPartyPrograms
Clé Supprimée : HKCU\Software\AppDataLow\Software\Crossrider
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Clé Supprimée : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
***** [ Navigateurs ] *****
-\\ Internet Explorer v10.0.9200.16720
-\\ Google Chrome v30.0.1599.101
[ Fichier : C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [2349 octets] - [20/10/2013 14:30:17]
AdwCleaner[S0].txt - [2030 octets] - [20/10/2013 14:31:03]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2090 octets] ##########
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 15:23
20 oct. 2013 à 15:23
--> Relance AdwCleaner et choisis "Désinstaller".
--> Télécharge ZHPDiag (de Nicolas Coolman).
--> Double-clique sur le fichier d'installation. Installe ZHPDiag avec les paramètres par défaut (N'oublie pas de cocher "Créer une icône sur le Bureau").
--> Lance ZHPDiag en double-cliquant sur le raccourci présent sur ton Bureau.
--> Clique sur "Configurer" puis sur la loupe la plus à droite "Diagnostic avec légitimes".
--> A la fenêtre "Voulez-vous un rapport full options ?", clique sur Oui et patiente le temps du scan.
--> Une fois le scan terminé, un rapport est créé sur le Bureau.
--> Utilise le site http://pjjoint.malekal.com/ pour me transmettre le rapport ZHPDiag car il est plutôt long. Copie-colle le lien donné par le site dans ton prochain message.
--> Télécharge ZHPDiag (de Nicolas Coolman).
--> Double-clique sur le fichier d'installation. Installe ZHPDiag avec les paramètres par défaut (N'oublie pas de cocher "Créer une icône sur le Bureau").
--> Lance ZHPDiag en double-cliquant sur le raccourci présent sur ton Bureau.
--> Clique sur "Configurer" puis sur la loupe la plus à droite "Diagnostic avec légitimes".
--> A la fenêtre "Voulez-vous un rapport full options ?", clique sur Oui et patiente le temps du scan.
--> Une fois le scan terminé, un rapport est créé sur le Bureau.
--> Utilise le site http://pjjoint.malekal.com/ pour me transmettre le rapport ZHPDiag car il est plutôt long. Copie-colle le lien donné par le site dans ton prochain message.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
20 oct. 2013 à 16:47
20 oct. 2013 à 16:47
Ok j'ai fait toutes ces manips.
Voici le lien: https://pjjoint.malekal.com/files.php?id=ZHPDiag_20131020_j15t14t13j5j10
Voici le lien: https://pjjoint.malekal.com/files.php?id=ZHPDiag_20131020_j15t14t13j5j10
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 18:09
20 oct. 2013 à 18:09
--> Copie tout le texte présent en gras ci-dessous (Sélectionne-le, clique droit dessus et choisis "Copier").
Script ZHPFix
SysRestore
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
O2 - BHO: Swift Browse [64Bits] - {808dc83c-d35b-4fba-a5b5-9a52103204df} . (.Swift Browse - Swift Browse.) -- C:\Program Files (x86)\Swift Browse\SwiftBrowsebho.dll
O2 - BHO: CrossriderApp0034344 [64Bits] - {11111111-1111-1111-1111-110311431144} Clé orpheline
OPT:O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O23 - Service: Update Swift Browse (Update Swift Browse) . (.Swift Browse - SwiftBrowse.) - C:\Program Files (x86)\Swift Browse\updateSwiftBrowse.exe
O23 - Service: Util Swift Browse (Util Swift Browse) . (.Swift Browse - SwiftBrowse.) - C:\Program Files (x86)\Swift Browse\bin\utilSwiftBrowse.exe
[MD5.00000000000000000000000000000000] [APT] [{15985FC0-43DD-4721-81D6-6103A4ADD257}] (...) -- C:\Users\Aaron Leonheart\Downloads\Nouveau dossier\QuickTimeInstallerAdmin.exe (.not file.) [0]
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
[HKCU\Software\Swift Browse]
[HKCU\Software\WEDLMNGR]
[HKLM\Software\Wow6432Node\Swift Browse]
O43 - CFD: 14/10/2013 - 13:40:07 - [1,464] ----D C:\Program Files (x86)\Swift Browse
O45 - LFCP:[MD5.DF7AD41732EF3E0270632A908ED6C1B9] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-CODEDOWNLO-9981BCE2.pf
O45 - LFCP:[MD5.8F3301EE2EB26A5F97A0C06AB55CF5FB] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-ENABLER.EX-6651C085.pf
O45 - LFCP:[MD5.060C5EB6C161C2821F14924CFC2B1A06] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-UPDATER.EX-690C5CF9.pf
O45 - LFCP:[MD5.E5CBEAFFCEFADC0AE857867194A19878] - 20/10/2013 - 13:23:10 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-CHROMEINST-8951F5C4.pf
O61 - LFC: 19/10/2013 - 16:39:37 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.swiftbrowse.net_0.localstorage [2758656]
O61 - LFC: 19/10/2013 - 16:39:37 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.swiftbrowse.net_0.localstorage-journal [16384]
O87 - FAEL: "{540FAA8B-443F-4406-BEC5-7216799BCF09}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (.not file.)
SR - | Auto 04/10/2013 65312 | (Update Swift Browse) . (.Swift Browse.) - C:\Program Files (x86)\Swift Browse\updateSwiftBrowse.exe
SR - | Auto 14/10/2013 65312 | (Util Swift Browse) . (.Swift Browse.) - C:\Program Files (x86)\Swift Browse\bin\utilSwiftBrowse.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431144}]
[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}]
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311431144}]
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322432244}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322432244}]
EmptyFlash
EmptyTemp
--> Puis lance ZHPFix depuis le raccourci situé sur ton Bureau.
--> Clique sur le bouton "IMPORTER".
--> Dans l'encadré principal, tu verras donc les lignes que tu as copié précédemment apparaître.
--> Clique sur "GO" pour lancer le nettoyage. Laisse l'outil travailler et ne touche à rien.
--> Accepte la désinstallation des programmes si proposé, mais refuse le redémarrage de ton PC si également proposé, car cela stopperait ZHPFix.
--> Une fois terminé, copie-colle le rapport dans ton prochain message.
Script ZHPFix
SysRestore
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
O2 - BHO: Swift Browse [64Bits] - {808dc83c-d35b-4fba-a5b5-9a52103204df} . (.Swift Browse - Swift Browse.) -- C:\Program Files (x86)\Swift Browse\SwiftBrowsebho.dll
O2 - BHO: CrossriderApp0034344 [64Bits] - {11111111-1111-1111-1111-110311431144} Clé orpheline
OPT:O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O23 - Service: Update Swift Browse (Update Swift Browse) . (.Swift Browse - SwiftBrowse.) - C:\Program Files (x86)\Swift Browse\updateSwiftBrowse.exe
O23 - Service: Util Swift Browse (Util Swift Browse) . (.Swift Browse - SwiftBrowse.) - C:\Program Files (x86)\Swift Browse\bin\utilSwiftBrowse.exe
[MD5.00000000000000000000000000000000] [APT] [{15985FC0-43DD-4721-81D6-6103A4ADD257}] (...) -- C:\Users\Aaron Leonheart\Downloads\Nouveau dossier\QuickTimeInstallerAdmin.exe (.not file.) [0]
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
[HKCU\Software\Swift Browse]
[HKCU\Software\WEDLMNGR]
[HKLM\Software\Wow6432Node\Swift Browse]
O43 - CFD: 14/10/2013 - 13:40:07 - [1,464] ----D C:\Program Files (x86)\Swift Browse
O45 - LFCP:[MD5.DF7AD41732EF3E0270632A908ED6C1B9] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-CODEDOWNLO-9981BCE2.pf
O45 - LFCP:[MD5.8F3301EE2EB26A5F97A0C06AB55CF5FB] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-ENABLER.EX-6651C085.pf
O45 - LFCP:[MD5.060C5EB6C161C2821F14924CFC2B1A06] - 20/10/2013 - 13:23:00 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-UPDATER.EX-690C5CF9.pf
O45 - LFCP:[MD5.E5CBEAFFCEFADC0AE857867194A19878] - 20/10/2013 - 13:23:10 ---A- - C:\Windows\Prefetch\WEDOWNLOAD MANAGER-CHROMEINST-8951F5C4.pf
O61 - LFC: 19/10/2013 - 16:39:37 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.swiftbrowse.net_0.localstorage [2758656]
O61 - LFC: 19/10/2013 - 16:39:37 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.swiftbrowse.net_0.localstorage-journal [16384]
O87 - FAEL: "{540FAA8B-443F-4406-BEC5-7216799BCF09}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (.not file.)
SR - | Auto 04/10/2013 65312 | (Update Swift Browse) . (.Swift Browse.) - C:\Program Files (x86)\Swift Browse\updateSwiftBrowse.exe
SR - | Auto 14/10/2013 65312 | (Util Swift Browse) . (.Swift Browse.) - C:\Program Files (x86)\Swift Browse\bin\utilSwiftBrowse.exe
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431144}]
[HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}]
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311431144}]
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322432244}]
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322432244}]
EmptyFlash
EmptyTemp
--> Puis lance ZHPFix depuis le raccourci situé sur ton Bureau.
--> Clique sur le bouton "IMPORTER".
--> Dans l'encadré principal, tu verras donc les lignes que tu as copié précédemment apparaître.
--> Clique sur "GO" pour lancer le nettoyage. Laisse l'outil travailler et ne touche à rien.
--> Accepte la désinstallation des programmes si proposé, mais refuse le redémarrage de ton PC si également proposé, car cela stopperait ZHPFix.
--> Une fois terminé, copie-colle le rapport dans ton prochain message.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
20 oct. 2013 à 18:35
20 oct. 2013 à 18:35
Juste un petit truc ... je n'avais pas remarqué mais le weDownload en question etait présent dans les programmes et fonctionnalités, j'ai testé en le supprimant comme ca et ca a l'air de ne plus se réinstaller
j'effectue qd meme la manip que tu m'as indiquée?
j'effectue qd meme la manip que tu m'as indiquée?
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 18:36
20 oct. 2013 à 18:36
Oui car il y a encore Swift Browse.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
20 oct. 2013 à 21:12
20 oct. 2013 à 21:12
voici le rapport:
Rapport de ZHPFix 2013.10.20.15 par Nicolas Coolman, Update du 20/10/2013
Fichier d'export Registre :
Run by Aaron Leonheart at 20/10/2013 21:10:29
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Corbeille vidée
========== Clés du Registre ==========
SUPPRIMÉ: CLSID BHO: {808dc83c-d35b-4fba-a5b5-9a52103204df}
SUPPRIMÉ: Service: Update Swift Browse
SUPPRIMÉ: Service: Util Swift Browse
SUPPRIMÉ: HKCU\Software\Swift Browse
SUPPRIMÉ: HKCU\Software\WEDLMNGR
SUPPRIMÉ: HKLM\Software\Wow6432Node\Swift Browse
SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431144}
SUPPRIMÉ:* HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
SUPPRIMÉ:* HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311431144}
SUPPRIMÉ:* HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322432244}
========== Valeurs du Registre ==========
SUPPRIMÉ RunValue: QuickTime Task
SUPPRIMÉ: {540FAA8B-443F-4406-BEC5-7216799BCF09}
========== Dossiers ==========
SUPPRIMÉ Redémarrage:** C:\Program Files (x86)\Swift Browse
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (288) (0 octets)
========== Fichiers ==========
SUPPRIMÉ: c:\program files (x86)\swift browse\swiftbrowsebho.dll
SUPPRIMÉ Redémarrage: c:\program files (x86)\swift browse\updateswiftbrowse.exe
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\http_static.swiftbrowse.net_0.localstorage
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\http_static.swiftbrowse.net_0.localstorage-journal
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (1379) (2 434 485 659 octets)
========== Tache planifiée ==========
SUPPRIMÉ: {15985FC0-43DD-4721-81D6-6103A4ADD257}
========== Restauration Système ==========
Point de restauration du système créé avec succès
========== Récapitulatif ==========
10 : Clés du Registre
2 : Valeurs du Registre
3 : Dossiers
6 : Fichiers
1 : Tache planifiée
1 : Restauration Système
End of clean in 00mn 34s
========== Chemin de fichier rapport ==========
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R1].txt - 20/10/2013 21:10:48 [2261]
Rapport de ZHPFix 2013.10.20.15 par Nicolas Coolman, Update du 20/10/2013
Fichier d'export Registre :
Run by Aaron Leonheart at 20/10/2013 21:10:29
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Corbeille vidée
========== Clés du Registre ==========
SUPPRIMÉ: CLSID BHO: {808dc83c-d35b-4fba-a5b5-9a52103204df}
SUPPRIMÉ: Service: Update Swift Browse
SUPPRIMÉ: Service: Util Swift Browse
SUPPRIMÉ: HKCU\Software\Swift Browse
SUPPRIMÉ: HKCU\Software\WEDLMNGR
SUPPRIMÉ: HKLM\Software\Wow6432Node\Swift Browse
SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311431144}
SUPPRIMÉ:* HKLM\Software\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
SUPPRIMÉ:* HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311431144}
SUPPRIMÉ:* HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322432244}
========== Valeurs du Registre ==========
SUPPRIMÉ RunValue: QuickTime Task
SUPPRIMÉ: {540FAA8B-443F-4406-BEC5-7216799BCF09}
========== Dossiers ==========
SUPPRIMÉ Redémarrage:** C:\Program Files (x86)\Swift Browse
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (288) (0 octets)
========== Fichiers ==========
SUPPRIMÉ: c:\program files (x86)\swift browse\swiftbrowsebho.dll
SUPPRIMÉ Redémarrage: c:\program files (x86)\swift browse\updateswiftbrowse.exe
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\http_static.swiftbrowse.net_0.localstorage
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\http_static.swiftbrowse.net_0.localstorage-journal
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (1379) (2 434 485 659 octets)
========== Tache planifiée ==========
SUPPRIMÉ: {15985FC0-43DD-4721-81D6-6103A4ADD257}
========== Restauration Système ==========
Point de restauration du système créé avec succès
========== Récapitulatif ==========
10 : Clés du Registre
2 : Valeurs du Registre
3 : Dossiers
6 : Fichiers
1 : Tache planifiée
1 : Restauration Système
End of clean in 00mn 34s
========== Chemin de fichier rapport ==========
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R1].txt - 20/10/2013 21:10:48 [2261]
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 21:41
20 oct. 2013 à 21:41
Swift Browse est présent dans les programmes et fonctionnalités ?
Je voudrais un nouveau rapport ZHPDiag.
Je voudrais un nouveau rapport ZHPDiag.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
20 oct. 2013 à 22:19
20 oct. 2013 à 22:19
Oui il est bien présent dans les programmes. Je le supprime?
au fait qu'est ce que c'est? une sorte de virus?
Voila le rapport:
~ Rapport de ZHPDiag v2013.10.20.55 - Nicolas Coolman (20/10/2013)
~ Lancé par Aaron Leonheart (20/10/2013 22:14:55)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
GCIE: Google Chrome v30.0.1599.101 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft Security Client v4.3.0219.0
Windows Defender W7
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 ActiveX
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8086 MB (59% free)
System Restore: Activé (Enable)
System drive C: has 13 GB (23%) free of 56 GB
---\\ Mode de connexion au système
~ Computer Name: AARON_LEONHEART
~ User Name: Aaron Leonheart
~ All Users Names: HomeGroupUser$, Administrateur, Aaron Leonheart,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Aaron Leonheart\AppData\Roaming\
~ %Desktop% : C:\Users\Aaron Leonheart\Desktop\
~ %Favorites% : C:\Users\Aaron Leonheart\Favorites\
~ %LocalAppData% : C:\Users\Aaron Leonheart\AppData\Local\
~ %StartMenu% : C:\Users\Aaron Leonheart\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 13 Go of 56 Go)
D: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
E: Hard drive, Flash drive, Thumb drive (Free 1724 Go of 1863 Go)
F: Hard drive, Flash drive, Thumb drive (Free 92 Go of 452 Go)
G: Hard drive, Flash drive, Thumb drive (Free 9 Go of 14 Go)
H: Floppy drive, Flash card reader, USB Key (Free 0 Go of 15 Go)
I: Hard drive, Flash drive, Thumb drive (Free 143 Go of 932 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.11/10/2013 - 17:57:22.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.314C17917AC8523EC77A710215012A65] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 02:10:19.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/153
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/3
~ Mon Bureau (My Desktop) : 1/9
~ Menu demarrer (Programs) : 1/28
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.1392]
[MD5.10E89F598469C60D8C87A8218089A87D] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe [4489472] [PID.2332]
[MD5.1827F7D8FC3451E42858DADA98033050] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe [3565432] [PID.2564]
[MD5.D5CA1D97E67216774B916179BE3C2C21] - (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2237328] [PID.2772]
[MD5.C551B8C8B1E543F691F80EBE1D045783] - (.Autodesk, Inc. - Autodesk Download Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1641368] [PID.2880]
[MD5.9F96F98409B89C5806F4380867DD48E0] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.2964]
[MD5.FA527B20A81462B981F8E3D030E9739A] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3477640] [PID.2452]
[MD5.FAA729BC3B4EC2900D14E1F0F4D30ED0] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IEMonitor.exe [268248] [PID.536]
[MD5.D3242FF9E28EAFC77EACB2B8956724C3] - (.Adobe Systems Incorporated - Adobe CEP Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039240] [PID.3228]
[MD5.148E6593136BA6CF2BF264FF22EBB817] - (.Pas de propriétaire - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe [4579696] [PID.3856]
[MD5.BDC1CCF8458A1FD4615C52D5555112F3] - (.Adobe Systems Incorporated - Adobe CEF Helper.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe [395120] [PID.3724]
[MD5.B8A9E3392F171724374A73C63C94E51B] - (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe [9789256] [PID.1420]
[MD5.7A2B89C606C245A2B7E4BA708F654FF9] - (.Apple Inc. - MobileDeviceHelper.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe [55624] [PID.4016]
[MD5.AA2903E3EEE74D5A14846629822AD0AA] - (.Apple Inc. - distnoted.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe [14152] [PID.4068]
[MD5.3E399A1328181C2A352472369DE2A93A] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [844752] [PID.4384]
[MD5.070520100459BC817B49EF8EF4561913] - (.PS3 Media Server - PS3 Media Server.) -- C:\Program Files (x86)\PS3 Media Server\PMS.exe [414676] [PID.6128]
[MD5.DD425C93255671A5FE81A95E686C03D7] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8111104] [PID.3908]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G0 - GCSP: Preference [User Data\Default] https://www.google.fr/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [bekmjjakgojplnhahcilegeiklenjbgb] Glow v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] Adobe Acrobat \u2013 Créer un fichier PDF v.11.0.0.379 (Désactivé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.6.10, (Activé)
G2 - GCE: Preference [User Data\Default] [hkeikjikmjoejolekplhdknmandafbib] Facebook Quick Message Deletion v.1.1.0, (Activé)
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Chrome In-App Payments service v.0.0.4.11 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 18 Scanned in 00mn 16s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Creative Cloud is installed on th.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
~ Firefox Browser: 2 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>;*.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMIECC.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
~ BHO: 9 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Autodesk 3ds Max 2013 64-bit.lnk . (...) -- C:\Program Files (x86)\Autodesk\3ds Max 2013\3dsmax.exe (.not file.)
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Microsoft LifeCam.lnk . (.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Program [Public]: Adobe Acrobat Distiller XI.lnk . (.Adobe Systems Incorporated. - Acrobat Distiller.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe
O4 - GS\Program [Public]: Adobe Acrobat XI Pro.lnk . (...) -- C:\Windows\Installer\{AC76BA86-1033-FFFF-7760-000000000006}\_SC_Acrobat.ico
O4 - GS\Program [Public]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) -- C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
O4 - GS\Program [Public]: Adobe Bridge CS6 (64bit).lnk . (.Adobe Systems, Inc. - Adobe Bridge CS6.) -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated
O4 - GS\Program [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
O4 - GS\Program [Public]: Adobe Download Assistant.lnk . (...) -- C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe
O4 - GS\Program [Public]: Adobe ExtendScript Toolkit CS6.lnk . (.Adobe Systems Incorporated - ExtendScript Toolkit CS6 and Debugger (32 b.) -- C:\Program Files (x86)\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe =>.Adobe Systems Incorporated
O4 - GS\Program [Public]: Adobe FormsCentral.lnk . (...) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe
O4 - GS\Program [Public]: Adobe Help.lnk . (...) -- C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe
O4 - GS\Program [Public]: Adobe Media Encoder CS6.lnk . (.Adobe Systems, Incorporated - Pas de description.) -- C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Microsoft Security Essentials.lnk . (...) -- C:\Program Files (x86)\Microsoft Security Client\msseces.exe (.not file.)
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Aaron Leonheart]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Aaron Leonheart]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) -- C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Media Encoder CS6.lnk . (.Adobe Systems, Incorporated - Pas de description.) -- C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Photoshop CS6.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) -- F:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe
O4 - GS\TaskBar [Aaron Leonheart]: Gestionnaire des tâches de Windows.lnk . (.Microsoft Corporation - Gestionnaire des tâches de Windows.) -- C:\Windows\System32\taskmgr.exe
O4 - GS\TaskBar [Aaron Leonheart]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Aaron Leonheart]: iTunes (2).lnk . (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O4 - GS\TaskBar [Aaron Leonheart]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Aaron Leonheart]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Aaron Leonheart]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Aaron Leonheart]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Aaron Leonheart]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Aaron Leonheart]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Aaron Leonheart]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Aaron Leonheart]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Aaron Leonheart]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\SendTo [Aaron Leonheart]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [Aaron Leonheart]: Mes Photos - Raccourci.lnk . (...) -- F:\Users\Old Leonheart\Pictures\Mes Photos
O4 - GS\Desktop [Aaron Leonheart]: Mes vidéos - Raccourci.lnk . (...) -- F:\Users\Old Leonheart\Videos
O4 - GS\Desktop [Aaron Leonheart]: Old Leonheart - Raccourci.lnk . (...) -- F:\Users\Old Leonheart
O4 - GS\Desktop [Aaron Leonheart]: PMS.exe - Raccourci.lnk . (.PS3 Media Server - PS3 Media Server.) -- C:\Program Files (x86)\PS3 Media Server\PMS.exe
O4 - GS\Desktop [Aaron Leonheart]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Aaron Leonheart]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 69 Scanned in 00mn 00s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [Adobe Creative Cloud] . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
O4 - HKLM\..\Wow6432Node\Run: [ADSK DLMSession] . (.Autodesk, Inc. - Autodesk Download Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [LifeCam] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [AdobeBridge] Clé orpheline
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3 (mi-raysat_3dsmax2013_64) . (...) - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
~ Services: 7 Scanned in 00mn 04s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job [268]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1082]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1086]
[MD5.6E55D39C84D41317E5189F3AB574A2EF] [APT] [AdobeAAMUpdater-1.0-Aaron_Leonheart-Aaron Leonheart] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.C155A13687144076286989EF078112C2] [APT] [{7F368925-62ED-4DFA-92FC-F68CC0E048F4}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1917440]
[MD5.00000000000000000000000000000000] [APT] [{D342A24A-37F1-4D55-960E-34F19EF4C81F}] (...) -- C:\Users\Aaron Leonheart\Downloads\SODMSC-10871800-US.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
~ Scheduled Task: 10 Scanned in 00mn 00s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 60 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3}
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.downloadassistant.AdobeDownloadAssistant
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E15BC10F-04AA-0AFD-A6C9-476730195F8B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Adobe Premiere Pro CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7176B973-6011-43C1-AEBC-2D73FE7C6982}
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Autodesk 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk 3ds Max 2013 64-bit
O42 - Logiciel: Autodesk 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {0F30B978-3536-0409-BC9C-0A2FB4C35EFC}
O42 - Logiciel: Autodesk Download Manager - (.Autodesk, Inc..) [HKLM][64Bits] -- {2F48C80C-3A76-495A-A4B5-C0CC946FEEBD}
O42 - Logiciel: Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {58760EEC-8B6A-43F4-81AA-696E381DFADD}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Canon MP280 series MP Drivers - (...) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: IcoFX 1.6.4 - (...) [HKLM][64Bits] -- IcoFX_is1
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C5A08BF-BB99-4998-81BD-F6CC32483B34}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft Corporation.) [HKLM][64Bits] -- {5CE7E3F5-9803-4F32-AA89-2D8848A80109}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {8D26D58C-3464-4C03-BB61-5695F984EFEF}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: PS3 Media Server - (.PS3 Media Server.) [HKLM][64Bits] -- PS3 Media Server
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Skype(TM) 6.9 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: StepMania v5.0 beta 2a (Supprimer uniquement) - (.StepMania Team.) [HKLM][64Bits] -- StepMania 5
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
O42 - Logiciel: V-Ray for 3dsmax 2013 for x64 - (.Chaos Software Ltd.) [HKLM][64Bits] -- V-Ray for 3dsmax 2013 for x64
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {A535111D-95C8-487F-869E-CE4C239972D2}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
~ Logic: 89 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Autodesk]
[HKCU\Software\Banana]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DownloadManager]
[HKCU\Software\EASEUSTodoBackupTime]
[HKCU\Software\EaseUS]
[HKCU\Software\Funduc Software Inc.]
[HKCU\Software\Gabest]
[HKCU\Software\Generic]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mootools]
[HKCU\Software\Motion Analysis]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\PACE Anti-Piracy]
[HKCU\Software\PS3 Media Server]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\StepMania 5]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\nuevos-programas.com]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodesk]
[HKLM\Software\CBSTEST]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\GEAR Software]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\WIBU-SYSTEMS]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Autodesk]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\EaseUS]
[HKLM\Software\Wow6432Node\Gabest]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Internet Download Manager]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAXSOFT-OCRON]
[HKLM\Software\Wow6432Node\MSI]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node]
~ Key Software: 154 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/10/2013 - 19:32:03 - [1474,406] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 14/10/2013 - 19:00:10 - [2,818] ----D C:\Program Files (x86)\Adobe Download Assistant
O43 - CFD: 11/10/2013 - 19:52:34 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 11/10/2013 - 19:58:57 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 17/10/2013 - 17:58:53 - [-1495,349] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 11/10/2013 - 18:24:52 - [9,786] ----D C:\Program Files (x86)\EaseUS
O43 - CFD: 10/10/2013 - 21:13:48 - [424,224] ----D C:\Program Files (x86)\Google
O43 - CFD: 14/10/2013 - 19:25:22 - [3,661] ----D C:\Program Files (x86)\IcoFX 1.6
O43 - CFD: 20/10/2013 - 15:55:19 - [9,524] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/10/2013 - 12:44:55 - [153,400] ----D C:\Program Files (x86)\Intel
O43 - CFD: 11/10/2013 - 20:12:41 - [4,885] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/10/2013 - 20:24:14 - [174,677] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 19/10/2013 - 10:27:26 - [13,263] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 17/10/2013 - 13:23:16 - [37,927] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 17/10/2013 - 17:47:07 - [28,112] ----D C:\Program Files (x86)\Microsoft LifeCam
O43 - CFD: 17/10/2013 - 13:23:13 - [28,206] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/10/2013 - 18:34:53 - [1,500] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 17/10/2013 - 13:23:52 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 17/10/2013 - 13:25:51 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 17/10/2013 - 13:25:59 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 14/10/2013 - 00:09:37 - [0] ----D C:\Program Files (x86)\My Company Name
O43 - CFD: 11/10/2013 - 19:41:26 - [10,228] ----D C:\Program Files (x86)\Portable
O43 - CFD: 13/10/2013 - 14:18:03 - [193,743] ----D C:\Program Files (x86)\PS3 Media Server
O43 - CFD: 11/10/2013 - 19:53:30 - [72,777] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 10/10/2013 - 20:00:48 - [5,961] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 17/10/2013 - 17:58:53 - [19,823] R---D C:\Program Files (x86)\Skype
O43 - CFD: 20/10/2013 - 15:55:19 - [0] ----D C:\Program Files (x86)\Sony
O43 - CFD: 20/10/2013 - 17:27:45 - [83,236] ----D C:\Program Files (x86)\StepMania 5
O43 - CFD: 20/10/2013 - 21:10:26 - [0,125] ----D C:\Program Files (x86)\Swift Browse
O43 - CFD: 10/10/2013 - 20:02:57 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/10/2013 - 20:12:41 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 11:16:36 - [5,895] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - 11:16:36 - [4,791] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 11:16:36 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 11:16:36 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 20/10/2013 - 22:14:49 - [17,028] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 20/10/2013 - 17:46:51 - [1349,900] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/10/2013 - 19:01:30 - [45,947] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 11/10/2013 - 20:24:03 - [96,850] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 13/10/2013 - 16:59:25 - [914,320] ----D C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 10/10/2013 - 20:00:40 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 10/10/2013 - 19:58:36 - [12,472] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 19/10/2013 - 21:46:34 - [127,439] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/10/2013 - 00:09:41 - [0,200] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 17/10/2013 - 17:58:53 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/10/2013 - 00:09:41 - [0,362] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 12/10/2013 - 11:05:06 - [10,046] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 11/10/2013 - 20:24:16 - [2,774] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 20/10/2013 - 17:46:30 - [260,170] ----D C:\ProgramData\Adobe
O43 - CFD: 11/10/2013 - 20:23:43 - [57,334] ----D C:\ProgramData\Apple
O43 - CFD: 11/10/2013 - 20:24:02 - [91,040] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 11/10/2013 - 19:27:58 - [8,676] ----D C:\ProgramData\Applications
O43 - CFD: 13/10/2013 - 18:15:37 - [0,246] ----D C:\ProgramData\Autodesk
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 18/10/2013 - 08:41:42 - [23,789] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 13/10/2013 - 17:22:03 - [0,030] ----D C:\ProgramData\FLEXnet
O43 - CFD: 11/10/2013 - 19:41:28 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 10/10/2013 - 19:59:33 - [0] ----D C:\ProgramData\Intel
O43 - CFD: 20/10/2013 - 15:50:37 - [0,001] ----D C:\ProgramData\Logs
O43 - CFD: 19/10/2013 - 10:27:24 - [6,385] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 17/10/2013 - 13:25:51 - [233,012] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/10/2013 - 14:51:53 - [0,016] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 13/10/2013 - 23:13:05 - [0,002] ----D C:\P
au fait qu'est ce que c'est? une sorte de virus?
Voila le rapport:
~ Rapport de ZHPDiag v2013.10.20.55 - Nicolas Coolman (20/10/2013)
~ Lancé par Aaron Leonheart (20/10/2013 22:14:55)
~ Adresse du Site Web https://nicolascoolman.webs.com/
~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program
---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
GCIE: Google Chrome v30.0.1599.101 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft Security Client v4.3.0219.0
Windows Defender W7
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 ActiveX
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8086 MB (59% free)
System Restore: Activé (Enable)
System drive C: has 13 GB (23%) free of 56 GB
---\\ Mode de connexion au système
~ Computer Name: AARON_LEONHEART
~ User Name: Aaron Leonheart
~ All Users Names: HomeGroupUser$, Administrateur, Aaron Leonheart,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Aaron Leonheart\AppData\Roaming\
~ %Desktop% : C:\Users\Aaron Leonheart\Desktop\
~ %Favorites% : C:\Users\Aaron Leonheart\Favorites\
~ %LocalAppData% : C:\Users\Aaron Leonheart\AppData\Local\
~ %StartMenu% : C:\Users\Aaron Leonheart\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 13 Go of 56 Go)
D: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
E: Hard drive, Flash drive, Thumb drive (Free 1724 Go of 1863 Go)
F: Hard drive, Flash drive, Thumb drive (Free 92 Go of 452 Go)
G: Hard drive, Flash drive, Thumb drive (Free 9 Go of 14 Go)
H: Floppy drive, Flash card reader, USB Key (Free 0 Go of 15 Go)
I: Hard drive, Flash drive, Thumb drive (Free 143 Go of 932 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.11/10/2013 - 17:57:22.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.314C17917AC8523EC77A710215012A65] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 02:10:19.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes musiques (My Musics) : 1/153
~ Mes Favoris (My Favorites) : 1/26
~ Mes Documents (My Documents) : 1/3
~ Mon Bureau (My Desktop) : 1/9
~ Menu demarrer (Programs) : 1/28
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.1392]
[MD5.10E89F598469C60D8C87A8218089A87D] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe [4489472] [PID.2332]
[MD5.1827F7D8FC3451E42858DADA98033050] - (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe [3565432] [PID.2564]
[MD5.D5CA1D97E67216774B916179BE3C2C21] - (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2237328] [PID.2772]
[MD5.C551B8C8B1E543F691F80EBE1D045783] - (.Autodesk, Inc. - Autodesk Download Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe [1641368] [PID.2880]
[MD5.9F96F98409B89C5806F4380867DD48E0] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392] [PID.2964]
[MD5.FA527B20A81462B981F8E3D030E9739A] - (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3477640] [PID.2452]
[MD5.FAA729BC3B4EC2900D14E1F0F4D30ED0] - (.Tonec Inc. - Internet Download Manager agent for click m.) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IEMonitor.exe [268248] [PID.536]
[MD5.D3242FF9E28EAFC77EACB2B8956724C3] - (.Adobe Systems Incorporated - Adobe CEP Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039240] [PID.3228]
[MD5.148E6593136BA6CF2BF264FF22EBB817] - (.Pas de propriétaire - Core Sync.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe [4579696] [PID.3856]
[MD5.BDC1CCF8458A1FD4615C52D5555112F3] - (.Adobe Systems Incorporated - Adobe CEF Helper.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe [395120] [PID.3724]
[MD5.B8A9E3392F171724374A73C63C94E51B] - (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe [9789256] [PID.1420]
[MD5.7A2B89C606C245A2B7E4BA708F654FF9] - (.Apple Inc. - MobileDeviceHelper.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe [55624] [PID.4016]
[MD5.AA2903E3EEE74D5A14846629822AD0AA] - (.Apple Inc. - distnoted.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe [14152] [PID.4068]
[MD5.3E399A1328181C2A352472369DE2A93A] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [844752] [PID.4384]
[MD5.070520100459BC817B49EF8EF4561913] - (.PS3 Media Server - PS3 Media Server.) -- C:\Program Files (x86)\PS3 Media Server\PMS.exe [414676] [PID.6128]
[MD5.DD425C93255671A5FE81A95E686C03D7] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8111104] [PID.3908]
~ Processes Running: Scanned in 00mn 00s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G0 - GCSP: Preference [User Data\Default] https://www.google.fr/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [bekmjjakgojplnhahcilegeiklenjbgb] Glow v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] Adobe Acrobat \u2013 Créer un fichier PDF v.11.0.0.379 (Désactivé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock v.2.6.10, (Activé)
G2 - GCE: Preference [User Data\Default] [hkeikjikmjoejolekplhdknmandafbib] Facebook Quick Message Deletion v.1.1.0, (Activé)
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Chrome In-App Payments service v.0.0.4.11 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
~ Google Browser: 18 Scanned in 00mn 16s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [adobe.com/AdobeAAMDetect] - (.Adobe Systems - A plugin to detect whether the Adobe Creative Cloud is installed on th.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
~ Firefox Browser: 2 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.microsoft.com/fr-fr/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 15 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>;*.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: IDM Helper [64Bits] - {0055C089-8582-441B-A0BF-17B458C2A3A8} . (.Internet Download Manager, Tonec Inc. - IDM Browser Helper Object.) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMIECC.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper [64Bits] - {AE7CD045-E861-484f-8273-0445EE161910} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: SmartSelect [64Bits] - {F4971EE7-DAA0-4053-9964-665D8EE6A077} . (.Adobe Systems Incorporated - Adobe PDF Toolbar for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
~ BHO: 9 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Autodesk 3ds Max 2013 64-bit.lnk . (...) -- C:\Program Files (x86)\Autodesk\3ds Max 2013\3dsmax.exe (.not file.)
O4 - GS\Desktop [Public]: Malwarebytes Anti-Malware.lnk . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
O4 - GS\Desktop [Public]: Microsoft LifeCam.lnk . (.Microsoft Corporation - LifeCam.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Program [Public]: Adobe Acrobat Distiller XI.lnk . (.Adobe Systems Incorporated. - Acrobat Distiller.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrodist.exe
O4 - GS\Program [Public]: Adobe Acrobat XI Pro.lnk . (...) -- C:\Windows\Installer\{AC76BA86-1033-FFFF-7760-000000000006}\_SC_Acrobat.ico
O4 - GS\Program [Public]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) -- C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
O4 - GS\Program [Public]: Adobe Bridge CS6 (64bit).lnk . (.Adobe Systems, Inc. - Adobe Bridge CS6.) -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe =>.Adobe Systems Incorporated
O4 - GS\Program [Public]: Adobe Creative Cloud.lnk . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
O4 - GS\Program [Public]: Adobe Download Assistant.lnk . (...) -- C:\Program Files (x86)\Adobe Download Assistant\Adobe Download Assistant.exe
O4 - GS\Program [Public]: Adobe ExtendScript Toolkit CS6.lnk . (.Adobe Systems Incorporated - ExtendScript Toolkit CS6 and Debugger (32 b.) -- C:\Program Files (x86)\Adobe\Adobe Utilities - CS6\ExtendScript Toolkit CS6\ExtendScript Toolkit.exe =>.Adobe Systems Incorporated
O4 - GS\Program [Public]: Adobe FormsCentral.lnk . (...) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\FormsCentral\FormsCentralForAcrobat.exe
O4 - GS\Program [Public]: Adobe Help.lnk . (...) -- C:\Program Files (x86)\Adobe\Adobe Help\Adobe Help.exe
O4 - GS\Program [Public]: Adobe Media Encoder CS6.lnk . (.Adobe Systems, Incorporated - Pas de description.) -- C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Microsoft Security Essentials.lnk . (...) -- C:\Program Files (x86)\Microsoft Security Client\msseces.exe (.not file.)
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [Aaron Leonheart]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [Aaron Leonheart]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe After Effects CS6.lnk . (.Adobe Systems Incorporated - Adobe After Effects CS6.) -- C:\Program Files\Adobe\Adobe After Effects CS6\Support Files\AfterFX.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Media Encoder CS6.lnk . (.Adobe Systems, Incorporated - Pas de description.) -- C:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Photoshop CS6.lnk . (.Adobe Systems, Incorporated - Adobe Photoshop CS6.) -- F:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe =>.Adobe Systems Incorporated
O4 - GS\TaskBar [Aaron Leonheart]: Adobe Premiere Pro CS6.lnk . (.Adobe Systems, Incorporated - Adobe Premiere Pro CS6.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe
O4 - GS\TaskBar [Aaron Leonheart]: Gestionnaire des tâches de Windows.lnk . (.Microsoft Corporation - Gestionnaire des tâches de Windows.) -- C:\Windows\System32\taskmgr.exe
O4 - GS\TaskBar [Aaron Leonheart]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [Aaron Leonheart]: iTunes (2).lnk . (.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O4 - GS\TaskBar [Aaron Leonheart]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Aaron Leonheart]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Aaron Leonheart]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [Aaron Leonheart]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Aaron Leonheart]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Aaron Leonheart]: Run.lnk - Clé orpheline
O4 - GS\Accessories [Aaron Leonheart]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Aaron Leonheart]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [Aaron Leonheart]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\SendTo [Aaron Leonheart]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [Aaron Leonheart]: Mes Photos - Raccourci.lnk . (...) -- F:\Users\Old Leonheart\Pictures\Mes Photos
O4 - GS\Desktop [Aaron Leonheart]: Mes vidéos - Raccourci.lnk . (...) -- F:\Users\Old Leonheart\Videos
O4 - GS\Desktop [Aaron Leonheart]: Old Leonheart - Raccourci.lnk . (...) -- F:\Users\Old Leonheart
O4 - GS\Desktop [Aaron Leonheart]: PMS.exe - Raccourci.lnk . (.PS3 Media Server - PS3 Media Server.) -- C:\Program Files (x86)\PS3 Media Server\PMS.exe
O4 - GS\Desktop [Aaron Leonheart]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [Aaron Leonheart]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 69 Scanned in 00mn 00s
---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [Adobe Creative Cloud] . (.Adobe Systems Incorporated - Adobe Creative Cloud.) -- C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
O4 - HKLM\..\Wow6432Node\Run: [ADSK DLMSession] . (.Autodesk, Inc. - Autodesk Download Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\Autodesk Download Manager\DLMSession.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [SwitchBoard] . (.Adobe Systems Incorporated - SwitchBoard Server (32 bit).) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Wow6432Node\Run: [AdobeCS6ServiceManager] . (.Adobe Systems Incorporated - Adobe CS6 Service Manager.) -- C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [LifeCam] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\Aaron Leonheart\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [IDMan] . (.Tonec Inc. - Internet Download Manager (IDM).) -- C:\Program Files (x86)\Portable\Internet Download Manager 6.15\IDMan.exe
O4 - HKUS\S-1-5-21-1814418875-2466452162-1354650783-1000\..\Run: [AdobeBridge] Clé orpheline
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll (.not file.)
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{982DDE75-0E6C-4C91-AFD7-B9D7B1FADF1C}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: mental ray 3.10 Satellite for Autodesk 3 (mi-raysat_3dsmax2013_64) . (...) - C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
~ Services: 7 Scanned in 00mn 04s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AutoKMS.job [268]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1082]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1086]
[MD5.6E55D39C84D41317E5189F3AB574A2EF] [APT] [AdobeAAMUpdater-1.0-Aaron_Leonheart-Aaron Leonheart] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648]
[MD5.C155A13687144076286989EF078112C2] [APT] [{7F368925-62ED-4DFA-92FC-F68CC0E048F4}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1917440]
[MD5.00000000000000000000000000000000] [APT] [{D342A24A-37F1-4D55-960E-34F19EF4C81F}] (...) -- C:\Users\Aaron Leonheart\Downloads\SODMSC-10871800-US.exe (.not file.) [0]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
~ Scheduled Task: 10 Scanned in 00mn 00s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (Serial) . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) - C:\Windows\System32\DRIVERS\serial.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 60 Scanned in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Adobe Acrobat XI Pro - (.Adobe Systems.) [HKLM][64Bits] -- {AC76BA86-1033-FFFF-7760-000000000006}
O42 - Logiciel: Adobe After Effects CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {4817D846-700B-474E-A31B-80892B3E92E3}
O42 - Logiciel: Adobe Creative Cloud - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Creative Cloud
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- com.adobe.downloadassistant.AdobeDownloadAssistant
O42 - Logiciel: Adobe Download Assistant - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {E15BC10F-04AA-0AFD-A6C9-476730195F8B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Help Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AF37176A-78CA-545B-34EF-8B6A21514DD1}
O42 - Logiciel: Adobe Premiere Pro CS6 - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {7176B973-6011-43C1-AEBC-2D73FE7C6982}
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {46F044A5-CE8B-4196-984E-5BD6525E361D}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Autodesk 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk 3ds Max 2013 64-bit
O42 - Logiciel: Autodesk 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {0F30B978-3536-0409-BC9C-0A2FB4C35EFC}
O42 - Logiciel: Autodesk Download Manager - (.Autodesk, Inc..) [HKLM][64Bits] -- {2F48C80C-3A76-495A-A4B5-C0CC946FEEBD}
O42 - Logiciel: Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit
O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}
O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD}
O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {58760EEC-8B6A-43F4-81AA-696E381DFADD}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Canon MP280 series MP Drivers - (...) [HKLM][64Bits] -- {1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP280_series
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: IcoFX 1.6.4 - (...) [HKLM][64Bits] -- IcoFX_is1
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) SDK for OpenCL - CPU Only Runtime Package - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {9C5A08BF-BB99-4998-81BD-F6CC32483B34}
O42 - Logiciel: Microsoft Corporation - (.Microsoft Corporation.) [HKLM][64Bits] -- {B3BC9DB1-0B0A-48B0-B86B-EA77CAA7F800}
O42 - Logiciel: Microsoft LifeCam - (.Microsoft Corporation.) [HKLM][64Bits] -- {5CE7E3F5-9803-4F32-AA89-2D8848A80109}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {8D26D58C-3464-4C03-BB61-5695F984EFEF}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: PS3 Media Server - (.PS3 Media Server.) [HKLM][64Bits] -- PS3 Media Server
O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {B67BAFBA-4C9F-48FA-9496-933E3B255044}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Skype(TM) 6.9 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: StepMania v5.0 beta 2a (Supprimer uniquement) - (.StepMania Team.) [HKLM][64Bits] -- StepMania 5
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
O42 - Logiciel: V-Ray for 3dsmax 2013 for x64 - (.Chaos Software Ltd.) [HKLM][64Bits] -- V-Ray for 3dsmax 2013 for x64
O42 - Logiciel: WinRAR 5.00 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: bl - (.Your Company Name.) [HKLM][64Bits] -- {2A075BB4-E976-4278-BF3F-E5C6945D84C0}
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {A535111D-95C8-487F-869E-CE4C239972D2}
O42 - Logiciel: ph - (.Your Company Name.) [HKLM][64Bits] -- {185F9795-9663-4F13-9EF9-307A282ADB5A}
~ Logic: 89 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Autodesk]
[HKCU\Software\Banana]
[HKCU\Software\Canon]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\DownloadManager]
[HKCU\Software\EASEUSTodoBackupTime]
[HKCU\Software\EaseUS]
[HKCU\Software\Funduc Software Inc.]
[HKCU\Software\Gabest]
[HKCU\Software\Generic]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mootools]
[HKCU\Software\Motion Analysis]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\PACE Anti-Piracy]
[HKCU\Software\PS3 Media Server]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\StepMania 5]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\nuevos-programas.com]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Adobe]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Autodesk]
[HKLM\Software\CBSTEST]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\GEAR Software]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Minnetonka Audio Software]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\WIBU-SYSTEMS]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Autodesk]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\EaseUS]
[HKLM\Software\Wow6432Node\Gabest]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Internet Download Manager]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\MAXSOFT-OCRON]
[HKLM\Software\Wow6432Node\MSI]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node]
~ Key Software: 154 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 14/10/2013 - 19:32:03 - [1474,406] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 14/10/2013 - 19:00:10 - [2,818] ----D C:\Program Files (x86)\Adobe Download Assistant
O43 - CFD: 11/10/2013 - 19:52:34 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 11/10/2013 - 19:58:57 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 17/10/2013 - 17:58:53 - [-1495,349] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 11/10/2013 - 18:24:52 - [9,786] ----D C:\Program Files (x86)\EaseUS
O43 - CFD: 10/10/2013 - 21:13:48 - [424,224] ----D C:\Program Files (x86)\Google
O43 - CFD: 14/10/2013 - 19:25:22 - [3,661] ----D C:\Program Files (x86)\IcoFX 1.6
O43 - CFD: 20/10/2013 - 15:55:19 - [9,524] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 13/10/2013 - 12:44:55 - [153,400] ----D C:\Program Files (x86)\Intel
O43 - CFD: 11/10/2013 - 20:12:41 - [4,885] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/10/2013 - 20:24:14 - [174,677] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 19/10/2013 - 10:27:26 - [13,263] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 17/10/2013 - 13:23:16 - [37,927] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 17/10/2013 - 17:47:07 - [28,112] ----D C:\Program Files (x86)\Microsoft LifeCam
O43 - CFD: 17/10/2013 - 13:23:13 - [28,206] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 11/10/2013 - 18:34:53 - [1,500] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 17/10/2013 - 13:23:52 - [1,314] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 17/10/2013 - 13:25:51 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 17/10/2013 - 13:25:59 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 14/10/2013 - 00:09:37 - [0] ----D C:\Program Files (x86)\My Company Name
O43 - CFD: 11/10/2013 - 19:41:26 - [10,228] ----D C:\Program Files (x86)\Portable
O43 - CFD: 13/10/2013 - 14:18:03 - [193,743] ----D C:\Program Files (x86)\PS3 Media Server
O43 - CFD: 11/10/2013 - 19:53:30 - [72,777] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 10/10/2013 - 20:00:48 - [5,961] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 17/10/2013 - 17:58:53 - [19,823] R---D C:\Program Files (x86)\Skype
O43 - CFD: 20/10/2013 - 15:55:19 - [0] ----D C:\Program Files (x86)\Sony
O43 - CFD: 20/10/2013 - 17:27:45 - [83,236] ----D C:\Program Files (x86)\StepMania 5
O43 - CFD: 20/10/2013 - 21:10:26 - [0,125] ----D C:\Program Files (x86)\Swift Browse
O43 - CFD: 10/10/2013 - 20:02:57 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 11/10/2013 - 20:12:41 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 12/04/2011 - 11:16:36 - [5,895] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 12/04/2011 - 11:16:36 - [4,791] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 11:16:36 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 05:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 11:16:36 - [5,717] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 20/10/2013 - 22:14:49 - [17,028] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 20/10/2013 - 17:46:51 - [1349,900] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 14/10/2013 - 19:01:30 - [45,947] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 11/10/2013 - 20:24:03 - [96,850] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 13/10/2013 - 16:59:25 - [914,320] ----D C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 10/10/2013 - 20:00:40 - [2,009] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 10/10/2013 - 19:58:36 - [12,472] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 19/10/2013 - 21:46:34 - [127,439] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/10/2013 - 00:09:41 - [0,200] ----D C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 17/10/2013 - 17:58:53 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/10/2013 - 00:09:41 - [0,362] ----D C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 12/10/2013 - 11:05:06 - [10,046] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 11/10/2013 - 20:24:16 - [2,774] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 20/10/2013 - 17:46:30 - [260,170] ----D C:\ProgramData\Adobe
O43 - CFD: 11/10/2013 - 20:23:43 - [57,334] ----D C:\ProgramData\Apple
O43 - CFD: 11/10/2013 - 20:24:02 - [91,040] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 11/10/2013 - 19:27:58 - [8,676] ----D C:\ProgramData\Applications
O43 - CFD: 13/10/2013 - 18:15:37 - [0,246] ----D C:\ProgramData\Autodesk
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 18/10/2013 - 08:41:42 - [23,789] --H-D C:\ProgramData\CanonBJ
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:56 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 13/10/2013 - 17:22:03 - [0,030] ----D C:\ProgramData\FLEXnet
O43 - CFD: 11/10/2013 - 19:41:28 - [0] ----D C:\ProgramData\IDM
O43 - CFD: 10/10/2013 - 19:59:33 - [0] ----D C:\ProgramData\Intel
O43 - CFD: 20/10/2013 - 15:50:37 - [0,001] ----D C:\ProgramData\Logs
O43 - CFD: 19/10/2013 - 10:27:24 - [6,385] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 17/10/2013 - 13:25:51 - [233,012] -S--D C:\ProgramData\Microsoft
O43 - CFD: 20/10/2013 - 14:51:53 - [0,016] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 10/10/2013 - 19:47:12 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 13/10/2013 - 23:13:05 - [0,002] ----D C:\P
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
20 oct. 2013 à 22:28
20 oct. 2013 à 22:28
"Oui il est bien présent dans les programmes. Je le supprime?"
--> Oui.
"au fait qu'est ce que c'est? une sorte de virus?"
--> Un adware.
Pour le rapport, il est incomplet, utilise pjjoint.
--> Oui.
"au fait qu'est ce que c'est? une sorte de virus?"
--> Un adware.
Pour le rapport, il est incomplet, utilise pjjoint.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
21 oct. 2013 à 00:35
21 oct. 2013 à 00:35
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
21 oct. 2013 à 01:05
21 oct. 2013 à 01:05
On a bientôt fini.
Réutilise ZHPFix avec le texte suivant puis poste le rapport :
Script ZHPFix
SysRestore
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKCU\Software\InstallCore]
O43 - CFD: 20/10/2013 - 21:10:26 - [0,125] ----D C:\Program Files (x86)\Swift Browse
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ldikpdnngdmeceeameoaannjilbjppnm
O61 - LFC: 20/10/2013 - 22:15:40 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage [3072]
O61 - LFC: 20/10/2013 - 22:15:40 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage-journal [3608]
EmptyFlash
EmptyTemp
Réutilise ZHPFix avec le texte suivant puis poste le rapport :
Script ZHPFix
SysRestore
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [jgapglgghagmhogfjkdlnnmbdfddeedb] Swift Browse v.1.0.0 (Désactivé)
O42 - Logiciel: Swift Browse 1.0.0 - (.Swift Browse.) [HKLM][64Bits] -- Swift Browse
[HKCU\Software\AppDataLow\Software\Crossrider]
[HKCU\Software\InstallCore]
O43 - CFD: 20/10/2013 - 21:10:26 - [0,125] ----D C:\Program Files (x86)\Swift Browse
C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ldikpdnngdmeceeameoaannjilbjppnm
O61 - LFC: 20/10/2013 - 22:15:40 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage [3072]
O61 - LFC: 20/10/2013 - 22:15:40 ---A- . (...) -- C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage-journal [3608]
EmptyFlash
EmptyTemp
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
21 oct. 2013 à 12:51
21 oct. 2013 à 12:51
Et voila:
Rapport de ZHPFix 2013.10.20.15 par Nicolas Coolman, Update du 20/10/2013
Fichier d'export Registre :
Run by Aaron Leonheart at 21/10/2013 12:48:11
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Corbeille vidée
========== Clés du Registre ==========
SUPPRIMÉ: HKCU\Software\AppDataLow\Software\Crossrider
SUPPRIMÉ: HKCU\Software\InstallCore
========== Dossiers ==========
SUPPRIMÉ: C:\Program Files (x86)\Swift Browse
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local extension settings\ldikpdnngdmeceeameoaannjilbjppnm
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (9) (0 octets)
========== Fichiers ==========
SUPPRIMÉ: C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage-journal
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (15) (13 235 410 octets)
========== Restauration Système ==========
Point de restauration du système créé avec succès
========== Récapitulatif ==========
2 : Clés du Registre
4 : Dossiers
5 : Fichiers
1 : Restauration Système
End of clean in 00mn 13s
========== Chemin de fichier rapport ==========
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R1].txt - 20/10/2013 20:10:48 [2351]
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R2].txt - 21/10/2013 12:48:18 [1653]
Rapport de ZHPFix 2013.10.20.15 par Nicolas Coolman, Update du 20/10/2013
Fichier d'export Registre :
Run by Aaron Leonheart at 21/10/2013 12:48:11
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Corbeille vidée
========== Clés du Registre ==========
SUPPRIMÉ: HKCU\Software\AppDataLow\Software\Crossrider
SUPPRIMÉ: HKCU\Software\InstallCore
========== Dossiers ==========
SUPPRIMÉ: C:\Program Files (x86)\Swift Browse
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local extension settings\ldikpdnngdmeceeameoaannjilbjppnm
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (9) (0 octets)
========== Fichiers ==========
SUPPRIMÉ: C:\Users\Aaron Leonheart\AppData\Local\Google\Chrome\User Data\Default\Preferences
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage
SUPPRIMÉ: c:\users\aaron leonheart\appdata\local\google\chrome\user data\default\local storage\chrome-extension_ldikpdnngdmeceeameoaannjilbjppnm_0.localstorage-journal
SUPPRIMÉS Flash Cookies (0) (0 octets)
SUPPRIMÉS Temporaires Windows (15) (13 235 410 octets)
========== Restauration Système ==========
Point de restauration du système créé avec succès
========== Récapitulatif ==========
2 : Clés du Registre
4 : Dossiers
5 : Fichiers
1 : Restauration Système
End of clean in 00mn 13s
========== Chemin de fichier rapport ==========
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R1].txt - 20/10/2013 20:10:48 [2351]
C:\Users\Aaron Leonheart\AppData\Roaming\ZHP\ZHPFix[R2].txt - 21/10/2013 12:48:18 [1653]
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
21 oct. 2013 à 14:33
21 oct. 2013 à 14:33
Plus de souci ?
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
21 oct. 2013 à 18:39
21 oct. 2013 à 18:39
Tout m'a l'air nickel!
Un grand GRAND MERCI à toi pour le temps que tu m'as accordé et pour ton aide précieuse!!!
Bonne soirée :D
Un grand GRAND MERCI à toi pour le temps que tu m'as accordé et pour ton aide précieuse!!!
Bonne soirée :D
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
21 oct. 2013 à 18:44
21 oct. 2013 à 18:44
Pour finir :
1/
---> Télécharge et installe CCleaner.
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers temporaires de Windows datant de plus de 24 heures.
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
2/
---> Télécharge DelFix sur ton Bureau puis lance-le.
* Coche Purger la restauration système et laisse Supprimer les outils de désinfection coché.
* Clique sur Exécuter.
* Poste le rapport.
==Prévention==
Un dossier sur la prévention et sécurité sur Internet est disponible ici.
1/
---> Télécharge et installe CCleaner.
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers temporaires de Windows datant de plus de 24 heures.
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
2/
---> Télécharge DelFix sur ton Bureau puis lance-le.
* Coche Purger la restauration système et laisse Supprimer les outils de désinfection coché.
* Clique sur Exécuter.
* Poste le rapport.
==Prévention==
Un dossier sur la prévention et sécurité sur Internet est disponible ici.
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
21 oct. 2013 à 18:54
21 oct. 2013 à 18:54
Okay, voila le rapport:
# DelFix v10.5 - Rapport créé le 21/10/2013 à 18:53:53
# Mis à jour le 17/10/2013 par Xplode
# Nom d'utilisateur : Aaron Leonheart - AARON_LEONHEART
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Suppression des outils de désinfection ...
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPDiag.txt
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPFix.lnk
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPFixReport.txt
Supprimé : C:\Users\Aaron Leonheart\Downloads\ZHPDiag2.exe
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
~ Purge de la restauration système ...
Supprimé : RP #52 [P | 10/21/2013 10:48:06]
Nouveau point de restauration créé !
########## - EOF - ##########
# DelFix v10.5 - Rapport créé le 21/10/2013 à 18:53:53
# Mis à jour le 17/10/2013 par Xplode
# Nom d'utilisateur : Aaron Leonheart - AARON_LEONHEART
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
~ Suppression des outils de désinfection ...
Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPDiag.txt
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPFix.lnk
Supprimé : C:\Users\Aaron Leonheart\Desktop\ZHPFixReport.txt
Supprimé : C:\Users\Aaron Leonheart\Downloads\ZHPDiag2.exe
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
~ Purge de la restauration système ...
Supprimé : RP #52 [P | 10/21/2013 10:48:06]
Nouveau point de restauration créé !
########## - EOF - ##########
Destrio5
Messages postés
85985
Date d'inscription
dimanche 11 juillet 2010
Statut
Modérateur
Dernière intervention
17 février 2023
10 290
21 oct. 2013 à 19:00
21 oct. 2013 à 19:00
Ok pour DelFix.
Bonne soirée ;)
Bonne soirée ;)
Aaron Leonheart
Messages postés
46
Date d'inscription
lundi 30 mai 2011
Statut
Membre
Dernière intervention
14 février 2023
21 oct. 2013 à 19:09
21 oct. 2013 à 19:09
Je viens de lire l'article sur la prévention. Très utile!
Encore merci pour tout!
Encore merci pour tout!