Rapport zhpdiag
Fermé
lmotiv
Messages postés
1
Date d'inscription
vendredi 30 mai 2014
Statut
Membre
Dernière intervention
30 mai 2014
-
30 mai 2014 à 18:40
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 - 30 mai 2014 à 22:10
kingk06 Messages postés 10277 Date d'inscription mercredi 12 juin 2013 Statut Membre Dernière intervention 17 mars 2015 - 30 mai 2014 à 22:10
bonjour
j'ai depuis quelque temps quick start qui s'est installer sur mon ordinateur après un téléchargement (j'ai pas étais assez vigilante).
et maintenant mon Firefox est très très lent !!!
après un scan avec mon anti visus (avast) et malwarebytes anti-malware...
j'ai fait comme certain l'indique sur des forum un scan avec zhpdiag....
visiblement il n'y a pas que quickstart qui pourrai poser problème.
que dois-je faire maintenant ?
voici le rapport :
~ Rapport de ZHPDiag v2014.5.29.77 - Nicolas Coolman (29/05/2014)
~ Lancé par L (30/05/2014 11:15:06)
~ Adresse du Site Web https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17107
MFIE: Mozilla Firefox 29.0.1 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : 4RDHT
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2018
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8 (Deactivate)
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 13 Plugin
---\\ Informations sur le système
~ Processor: AMD64 Family 22 Model 0 Stepping 1, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3529 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 479 GB (70%) free of 680 GB
---\\ Mode de connexion au système
~ Computer Name: PC-LEILA
~ User Name: L
~ All Users Names: L, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\L\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\L\AppData\Roaming\
~ %Desktop% : C:\Users\L\Desktop\
~ %Favorites% : C:\Users\L\Favorites\
~ %LocalAppData% : C:\Users\L\AppData\Local\
~ %StartMenu% : C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 479 Go of 680 Go)
D: CD-ROM drive (Not Inserted)
E: CD-ROM drive (Not Inserted)
Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.21/04/2014 - 10:02:06.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 04:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/03/2014 - 05:09:56.) -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.18/03/2014 - 05:09:53.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/03/2014 - 05:09:55.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 08:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 07:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 06:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 03:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 06:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 06:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.18/03/2014 - 05:09:57.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.C997E6A37BA8915224B3FB5024A34F69] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 06:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 06:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 06:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.18/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 08:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.18/03/2014 - 05:09:37.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 3/2527
~ Mes musiques (My Musics) : 1/7100
~ Mes Videos (My Videos) : 1/67
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 5/10016
~ Mon Bureau (My Desktop) : 1/23234
~ Menu demarrer (Programs) : 1/26
~ Hidden Files: Scanned in 00mn 47s
---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.3784]
[MD5.8C46AD1E382018E0B4D6E31B9AB27E5C] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [21445248] [PID.5724]
[MD5.3F795C004680CF73F12F774516751EAD] - (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe [31154176] [PID.3772] =>PUP.BearShare
[MD5.4BFA1849DC7AA3CB99C160D9EB96C67B] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640] [PID.3756]
[MD5.0CC6BCDAAD124EC51A96F60C51CD184D] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [390256] [PID.6600]
[MD5.0DA891CB0703D912CEAFA072F54D002B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.3384]
[MD5.28B02EA673489A4EFBB20A9B302D523C] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [18544] [PID.1776]
[MD5.2F777711F4A380AACADBB85A3E7EBFCB] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe [1864368] [PID.1732]
[MD5.AEF17283670DD354DAE473B9DF46E723] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8020480] [PID.6708]
~ Processes Running: Scanned in 00mn 03s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default] https://www.google.com/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2011.70, (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 22 Scanned in 00mn 01s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [L - dwcxzgf4.default] https://www.google.com/?gws_rd=ssl
P2 - FPN:Firefox Plugin Navigator . (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll
P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKCU] [BearSharePlugin] - (.BearShare - The BearShare plugin allows you to open and play tracks on BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\npBearSharePlugin.dll =>PUP.BearShare
~ Firefox Browser: 10 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 01s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} Clé orpheline
~ BHO: 5 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\TaskBar [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\Program [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\Desktop [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
~ Global Startup: 4 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [BearShare] . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [20140529] . (.AVAST Software - avast! Emergency Update.) -- C:\Program Files\AVAST Software\Avast\setup\emupdate\6edc7ca6-a78b-4a09-8335-12fdd4c08e2d.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm Atheros Commnucations - Extension Core.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [BearShare] . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3E607C19-4657-4BE3-8662-E8A934D13A99}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C6E0D40-B7B5-4A77-9730-36BCA33B6468}: DhcpNameServer = 80.10.246.131 81.253.149.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{3E607C19-4657-4BE3-8662-E8A934D13A99}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C6E0D40-B7B5-4A77-9730-36BCA33B6468}: DhcpNameServer = 80.10.246.131 81.253.149.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SupTab\SEARCH~2.dll (.not file.) =>PUP.SupTab
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: MBAMScheduler (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
~ Services: 9 Scanned in 01mn 19s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.F92019F2A58640821B109B30193D5E7D] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3367976]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.9E76CDD50C3DDDB739150D778EEC0B93] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [804304]
[MD5.00000000000000000000000000000000] [APT] [fsupdate] (...) -- C:\Program Files (x86)\Flowsurf\fsupd.exe (.not file.) [0] =>PUP.FlowSurf
[MD5.1A5877A21F757889DBCAF3DB156E0267] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [415272]
[MD5.D7E16AB9AAB8BFA219D84C79536319E2] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306440]
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [{25F49A05-ABA1-4573-B346-0E8039287C1B}] (...) -- C:\Users\L\AppData\Roaming\webssearches\UninstaLLManager.exe (.not file.) [0] =>Hijacker.WebsSearches
[MD5.C6CAB8F629AE677E4B5AE0D9E28241E6] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [523848]
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [926]
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA [926]
~ Scheduled Task: 12 Scanned in 00mn 12s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: oem14.inf (dtsoftbus01) . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\drivers\dtsoftbus01.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 01s
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4DD822D5-1AE8-2645-16D4-CAC688F4DEC8}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {A6A7A944-0186-29D4-8FF9-EDD008403E08}
O42 - Logiciel: AVS Video Editor 6.5 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1
O42 - Logiciel: Adobe Flash Player 13 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: BearShare - (.Musiclab, LLC.) [HKLM][64Bits] -- BearShare =>PUP.BearShare
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {0E365FDA-909F-4939-838A-261DD468D862} =>Adware.Boxore
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5C56AD8F-7317-42CB-B5D9-955F4F4BF6A5}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 29.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 29.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mozilla Thunderbird 24.5.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 24.5.0 (x86 fr) =>.Mozilla Corporation
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {4CA8F973-6377-4ABF-9ED5-CC2323B3C000}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1
O42 - Logiciel: Packard Bell Device Fast-lane - (.Packard Bell.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {0D61A55C-3ADC-409F-BF5B-A1766D1F5944}
O42 - Logiciel: Skype(TM) 6.16 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Software Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: VLC media player 2.1.1 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Zotero Standalone 4.0.16 (x86 en-US) - (.Zotero.) [HKLM][64Bits] -- Zotero Standalone 4.0.16 (x86 en-US)
O42 - Logiciel: avast! Free Antivirus v9.0.2018 - (.Avast Software.) [HKLM][64Bits] -- Avast
~ Logic: 42 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Aurigma]
[HKCU\Software\BearShare] =>PUP.BearShare
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Disc Soft]
[HKCU\Software\Dropbox]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\Mooii]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Software]
[HKCU\Software\Thunderbird] =>.Mozilla Corporation
[HKCU\Software\Tracker Software]
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Alps]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Tracker Software]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Mooii]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SiteFinder] =>Adware.ShoppingReport
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager
[HKLM\Software\Wow6432Node\Zotero]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
[HKLM\Software\Wow6432Node\zotero.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 208 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/07/2013 - 10:28:02 - [] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 03/07/2013 - 10:27:56 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 26/05/2014 - 11:45:49 - [] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 23/05/2014 - 13:26:55 - [] ----D C:\Program Files (x86)\BearShare Applications =>PUP.BearShare
O43 - CFD: 21/05/2014 - 18:40:45 - [0] ----D C:\Program Files (x86)\Boxore =>Adware.Boxore
O43 - CFD: 26/05/2014 - 09:51:24 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/07/2013 - 10:49:12 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 27/11/2013 - 07:20:20 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 21/01/2014 - 09:30:24 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 03/07/2013 - 10:48:27 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 18/03/2014 - 06:29:07 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/01/2014 - 09:11:16 - [] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 27/11/2013 - 07:25:27 - [] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 24/11/2013 - 16:49:43 - [] ----D C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 27/11/2013 - 07:30:21 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/03/2014 - 09:19:53 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 05/01/2014 - 16:32:47 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 26/05/2014 - 16:56:09 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/11/2013 - 07:30:19 - [] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 27/11/2013 - 07:31:06 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 27/11/2013 - 07:27:35 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 21/04/2014 - 16:24:33 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 10/05/2014 - 19:28:21 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/05/2014 - 21:53:58 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 02/05/2014 - 15:30:07 - [] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 21/04/2014 - 16:29:33 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/11/2013 - 07:21:40 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 17/05/2013 - 07:02:47 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 21/05/2014 - 17:43:15 - [0] ----D C:\Program Files (x86)\Nosibay
O43 - CFD: 17/05/2013 - 07:01:33 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 21/05/2014 - 17:33:42 - [0] ----D C:\Program Files (x86)\PC Speed Maximizer =>Rogue.PCSpeedMaximizer
O43 - CFD: 26/05/2014 - 12:48:30 - [] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 03/07/2013 - 10:38:55 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 03/07/2013 - 10:31:03 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 21/04/2014 - 10:57:07 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 22/05/2014 - 21:52:34 - [0] ----D C:\Program Files (x86)\SiteLookup
O43 - CFD: 26/05/2014 - 09:51:25 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 21/05/2014 - 17:18:18 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 17/05/2013 - 07:05:29 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 03/07/2013 - 10:31:46 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 27/11/2013 - 10:46:02 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 15/05/2014 - 23:51:22 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 18/03/2014 - 05:26:19 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 21/04/2014 - 16:24:38 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2014 - 06:28:58 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 11:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/03/2014 - 05:26:19 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/03/2014 - 06:28:58 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/04/2014 - 16:24:38 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 11:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 30/05/2014 - 10:57:24 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 27/11/2013 - 09:12:55 - [] ----D C:\Program Files (x86)\Zotero Standalone
O43 - CFD: 03/07/2013 - 10:36:12 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 03/07/2013 - 10:28:02 - [] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 19/05/2014 - 16:39:39 - [] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 23/11/2013 - 09:18:25 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 21/04/2014 - 16:08:24 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/04/2014 - 16:24:32 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 17/05/2013 - 07:02:29 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 03/07/2013 - 10:37:08 - [] ----D C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 22/08/2013 - 11:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26/05/2014 - 09:51:24 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 25/12/2013 - 18:15:58 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 21/04/2014 - 16:24:32 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 05/01/2014 - 15:18:52 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 30/05/2014 - 10:09:32 - [] ----D C:\ProgramData\20A7
O43 - CFD: 03/07/2013 - 10:28:04 - [] ----D C:\ProgramData\AMD
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 21/04/2014 - 17:13:58 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 25/12/2013 - 18:25:49 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 25/12/2013 - 10:34:55 - [] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 03/07/2013 - 10:56:27 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 23/11/2013 - 01:43:46 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 03/07/2013 - 10:50:05 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 03/07/2013 - 10:50:05 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 27/11/2013 - 07:23:16 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 24/11/2013 - 16:06:16 - [] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 21/05/2014 - 18:40:43 - [] ----D C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 03/07/2013 - 10:48:27 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 09/01/2014 - 09:11:11 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 23/11/2013 - 01:43:46 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 21/04/2014 - 16:24:47 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/05/2014 - 08:21:32 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 05/01/2014 - 16:32:04 - [] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 23/11/2013 - 01:43:47 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 22/11/2013 - 20:31:01 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/05/2013 - 07:02:29 - [] ----D C:\ProgramData\Nero
O43 - CFD: 01/01/2014 - 14:51:43 - [] ----D C:\ProgramData\Norton
O43 - CFD: 25/12/2013 - 20:17:33 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/07/2013 - 10:58:18 - [] ----D C:\ProgramData\OEM
O43 - CFD: 22/11/2013 - 20:03:32 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 17/05/2013 - 07:01:34 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 21/04/2014 - 16:24:48 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 03/07/2013 - 10:35:23 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 18/03/2014 - 05:41:33 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/05/2014 - 09:51:29 - [] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 03/07/2013 - 10:56:27 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 03/07/2013 - 10:49:12 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 23/11/2013 - 09:42:30 - [] ----D C:\ProgramData\Virtualized Applications
O43 - CFD: 23/11/2013 - 09:52:53 - [] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 21/01/2014 - 09:31:56 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/05/2014 - 18:40:43 - [] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 22/11/2013 - 20:03:01 - [] ----D C:\Users\L\AppData\Roaming\Adobe
O43 - CFD: 22/11/2013 - 20:03:51 - [] ----D C:\Users\L\AppData\Roaming\Atheros
O43 - CFD: 25/12/2013 - 19:20:38 - [] ----D C:\Users\L\AppData\Roaming\AVAST Software
O43 - CFD: 19/05/2014 - 20:40:41 - [] ----D C:\Users\L\AppData\Roaming\AVS4YOU
O43 - CFD: 07/02/2014 - 09:47:41 - [] ----D C:\Users\L\AppData\Roaming\CyberLink
O43 - CFD: 27/11/2013 - 07:23:13 - [] ----D C:\Users\L\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 23/01/2014 - 15:12:17 - [] ----D C:\Users\L\AppData\Roaming\Dropbox
O43 - CFD: 27/02/2014 - 21:27:16 - [] ----D C:\Users\L\AppData\Roaming\dvdcss
O43 - CFD: 21/04/2014 - 17:10:54 - [] ----D C:\Users\L\AppData\Roaming\Identities
O43 - CFD: 22/11/2013 - 21:58:47 - [] ----D C:\Users\L\AppData\Roaming\Macromedia
O43 - CFD: 09/01/2014 - 09:11:24 - [] ----D C:\Users\L\AppData\Roaming\Malwarebytes
O43 - CFD: 21/05/2014 - 17:19:37 - [] -S--D C:\Users\L\AppData\Roaming\Microsoft
O43 - CFD: 22/11/2013 - 20:39:02 - [] ----D C:\Users\L\AppData\Roaming\Mozilla
O43 - CFD: 23/05/2014 - 13:28:00 - [] ----D C:\Users\L\AppData\Roaming\MusicNet
O43 - CFD: 27/11/2013 - 12:55:21 - [] ----D C:\Users\L\AppData\Roaming\Nero
O43 - CFD: 21/05/2014 - 17:42:56 - [0] ----D C:\Users\L\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 25/11/2013 - 08:12:30 - [] ----D C:\Users\L\AppData\Roaming\OpenOffice
O43 - CFD: 26/05/2014 - 12:54:56 - [] ----D C:\Users\L\AppData\Roaming\PhotoFiltre
O43 - CFD: 26/05/2014 - 14:51:46 - [] ----D C:\Users\L\AppData\Roaming\PhotoScape
O43 - CFD: 30/05/2014 - 11:09:14 - [] ----D C:\Users\L\AppData\Roaming\Skype
O43 - CFD: 13/05/2014 - 11:28:21 - [] ----D C:\Users\L\AppData\Roaming\SoftGrid Client
O43 - CFD: 21/05/2014 - 17:22:01 - [0] ----D C:\Users\L\AppData\Roaming\SupTab =>PUP.SupTab
O43 - CFD: 22/11/2013 - 20:51:55 - [] ----D C:\Users\L\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 23/11/2013 - 09:44:48 - [0] ----D C:\Users\L\AppData\Roaming\TP
O43 - CFD: 06/04/2014 - 21:46:54 - [] ----D C:\Users\L\AppData\Roaming\vlc
O43 - CFD: 21/01/2014 - 09:31:56 - [] ----D C:\Users\L\AppData\Roaming\WildTangent
O43 - CFD: 30/05/2014 - 11:17:47 - [] ----D C:\Users\L\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/11/2013 - 09:13:08 - [] ----D C:\Users\L\AppData\Roaming\Zotero
O43 - CFD: 21/05/2014 - 18:39:23 - [] ----D C:\Users\L\AppData\Local\2122
O43 - CFD: 21/04/2014 - 10:39:43 - [0] ----D C:\Users\L\AppData\Local\Adobe
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Application Data
O43 - CFD: 24/05/2014 - 17:40:32 - [] ----D C:\Users\L\AppData\Local\BearShare =>PUP.BearShare
O43 - CFD: 21/04/2014 - 17:13:58 - [] ----D C:\Users\L\AppData\Local\BMExplorer
O43 - CFD: 05/03/2014 - 12:26:11 - [] ----D C:\Users\L\AppData\Local\CrashDumps
O43 - CFD: 07/02/2014 - 09:45:09 - [] ----D C:\Users\L\AppData\Local\CyberLink
O43 - CFD: 22/05/2014 - 12:28:40 - [0] ----D C:\Users\L\AppData\Local\Diagnostics
O43 - CFD: 22/05/2014 - 21:52:30 - [] -SH-D C:\Users\L\AppData\Local\EmieSiteList
O43 - CFD: 22/05/2014 - 21:52:30 - [] -SH-D C:\Users\L\AppData\Local\EmieUserList
O43 - CFD: 25/12/2013 - 19:20:49 - [] ----D C:\Users\L\AppData\Local\Google
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Historique
O43 - CFD: 22/11/2013 - 21:58:48 - [] ----D C:\Users\L\AppData\Local\Macromedia
O43 - CFD: 07/02/2014 - 09:47:50 - [0] ----D C:\Users\L\AppData\Local\MediaShow
O43 - CFD: 13/05/2014 - 11:34:21 - [] ----D C:\Users\L\AppData\Local\Microsoft
O43 - CFD: 27/11/2013 - 07:24:50 - [0] ----D C:\Users\L\AppData\Local\Microsoft Help
O43 - CFD: 23/11/2013 - 10:05:34 - [] ----D C:\Users\L\AppData\Local\Mozilla
O43 - CFD: 05/03/2014 - 12:54:30 - [] ----D C:\Users\L\AppData\Local\Nero_AG
O43 - CFD: 24/04/2014 - 15:43:09 - [] ----D C:\Users\L\AppData\Local\Packages
O43 - CFD: 25/11/2013 - 06:35:06 - [] ----D C:\Users\L\AppData\Local\Programs
O43 - CFD: 27/03/2014 - 15:41:01 - [] ----D C:\Users\L\AppData\Local\Skype
O43 - CFD: 23/11/2013 - 09:46:50 - [] ----D C:\Users\L\AppData\Local\SoftGrid Client
O43 - CFD: 21/05/2014 - 17:18:18 - [] ----D C:\Users\L\AppData\Local\Software
O43 - CFD: 30/05/2014 - 11:05:55 - [] ----D C:\Users\L\AppData\Local\Temp
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Temporary Internet Files
O43 - CFD: 11/12/2013 - 17:44:30 - [] ----D C:\Users\L\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 22/11/2013 - 20:00:36 - [0] ----D C:\Users\L\AppData\Local\VirtualStore
O43 - CFD: 26/05/2014 - 17:21:33 - [] ----D C:\Users\L\AppData\Local\Windows Live
O43 - CFD: 27/11/2013 - 09:13:08 - [] ----D C:\Users\L\AppData\Local\Zotero
O43 - CFD: 21/04/2014 - 16:18:44 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 11:36:32 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/05/2014 - 10:41:19 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/05/2014 - 11:38:34 - [] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 22/08/2013 - 11:36:32 - [] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/05/2014 - 12:48:31 - [0] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 16/05/2014 - 10:41:18 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/04/2014 - 16:18:44 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 171 Scanned in 00mn 01s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.326715361A7D1C65983BFE920990E4EF] - 15/05/2014 - 16:34:47 ---A- . (.Microsoft Corporation - Programme d'installation de Windows Update.) -- C:\Windows\System32\wusa.exe [308224]
O44 - LFC:[MD5.F5D4FA3E1F4879C361FFF3855259D2C2] - 15/05/2014 - 16:35:03 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [35856]
O44 - LFC:[MD5.6CC1BB8F6851A262E2E824F0E92D5EEF] - 15/05/2014 - 16:35:04 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [123224]
O44 - LFC:[MD5.019CC610AD95FF47EAD7C08B7A683B96] - 15/05/2014 - 16:35:04 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [257880]
O44 - LFC:[MD5.A750229C96A406EE123F43916053F142] - 15/05/2014 - 16:35:08 ---A- . (.Microsoft Corporation - Microsoft SLR Error Reporting Helper.) -- C:\Windows\System32\mrt_map.dll [86688]
O44 - LFC:[MD5.D178F55D53B9A10FFBDC134C95517846] - 15/05/2014 - 16:35:08 ---A- . (.Microsoft Corporation - System Language Runtime.) -- C:\Windows\System32\mrt100.dll [28320]
O44 - LFC:[MD5.AB4A6DF750EBCAEAC12E1E7BF72BBCA2] - 15/05/2014 - 17:23:06 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [93223848]
O44 - LFC:[MD5.23B58DEF11B45727D3351702515F86AF] - 21/05/2014 - 16:22:44 ---A- . (...) -- C:\END [2]
O44 - LFC:[MD5.8573A42394912479A10D58D6CB04E784] - 21/05/2014 - 17:41:06 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [474312]
O44 - LFC:[MD5.64ABECB04CD0F882E23CE9565B1A44F3] - 26/05/2014 - 15:33:01 ---A- . (...) -- C:\Windows\DirectX.log [3752]
O44 - LFC:[MD5.CE00874D043C807F6DD158C3E0831272] - 26/05/2014 - 20:56:58 ---A- . (...) -- C:\Windows\PFRO.log [113586]
O44 - LFC:[MD5.2B6FE2039977F38741C3DEE786D3A0B7] - 29/05/2014 - 17:06:11 ---A- . (...) -- C:\Windows\MEMORY.DMP [416405442]
O44 - LFC:[MD5.0B5A0005C0BDF4A05174576AF80DEA04] - 29/05/2014 - 17:17:06 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43152]
O44 - LFC:[MD5.340B0467E98A8C92697D73034DB4BCB7] - 29/05/2014 - 17:17:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208]
O44 - LFC:[MD5.BF5B9E9E97CED45208E498D9FA73688F] - 29/05/2014 - 17:17:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O44 - LFC:[MD5.ED5B09937D559FFA53FC988D20031E98] - 29/05/2014 - 17:17:08 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [79184]
O44 - LFC:[MD5.1C159A357210CAB8974D5FBA068DC38F] - 29/05/2014 - 17:17:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys.1401401889953 [1039096]
O44 - LFC:[MD5
j'ai depuis quelque temps quick start qui s'est installer sur mon ordinateur après un téléchargement (j'ai pas étais assez vigilante).
et maintenant mon Firefox est très très lent !!!
après un scan avec mon anti visus (avast) et malwarebytes anti-malware...
j'ai fait comme certain l'indique sur des forum un scan avec zhpdiag....
visiblement il n'y a pas que quickstart qui pourrai poser problème.
que dois-je faire maintenant ?
voici le rapport :
~ Rapport de ZHPDiag v2014.5.29.77 - Nicolas Coolman (29/05/2014)
~ Lancé par L (30/05/2014 11:15:06)
~ Adresse du Site Web https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17107
MFIE: Mozilla Firefox 29.0.1 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 8.1, 64-bit (Build 9600)
Windows Server License Manager Script : OK
~ Windows(R) Operating System, OEM_DM channel
Windows ID Activation : OK
~ Windows Partial Key : 4RDHT
Windows License : OK
~ Windows Remaining Initializations Number : 1000
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
avast! Free Antivirus v9.0.2018
Malwarebytes Anti-Malware version 1.75.0.1300
Windows Defender W8 (Deactivate)
---\\ Logiciels d'optimisation du système
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 13 Plugin
---\\ Informations sur le système
~ Processor: AMD64 Family 22 Model 0 Stepping 1, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3529 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 479 GB (70%) free of 680 GB
---\\ Mode de connexion au système
~ Computer Name: PC-LEILA
~ User Name: L
~ All Users Names: L, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\L\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\L\AppData\Roaming\
~ %Desktop% : C:\Users\L\Desktop\
~ %Favorites% : C:\Users\L\Favorites\
~ %LocalAppData% : C:\Users\L\AppData\Local\
~ %StartMenu% : C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 479 Go of 680 Go)
D: CD-ROM drive (Not Inserted)
E: CD-ROM drive (Not Inserted)
Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 41 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.81394C91B7B5A7C799E249AE82491F13] - (.Microsoft Corporation - Explorateur Windows.) (.21/04/2014 - 10:02:06.) -- C:\Windows\Explorer.exe [2373784]
[MD5.48CFA7BE561A7BE144C29BB912055016] - (.Microsoft Corporation - Application de démarrage de Windows.) (.22/08/2013 - 04:58:29.) -- C:\Windows\System32\Wininit.exe [144384]
[MD5.65C36A29A131A3A5D64B29FAC4EF6DD6] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/03/2014 - 05:09:56.) -- C:\Windows\System32\wininet.dll [2262016]
[MD5.306EB21E5B480AE9065EA55AC8C35936] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.18/03/2014 - 05:09:53.) -- C:\Windows\System32\Winlogon.exe [562176]
[MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) (.18/03/2014 - 05:09:55.) -- C:\Windows\System32\sppcomapi.dll [447488]
[MD5.239268BAB58EAE9A3FF4E08334C00451] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) (.22/08/2013 - 08:25:35.) -- C:\Windows\system32\Drivers\AFD.sys [567296]
[MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.22/08/2013 - 07:43:41.) -- C:\Windows\system32\Drivers\atapi.sys [26464]
[MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) (.22/08/2013 - 06:40:15.) -- C:\Windows\system32\Drivers\Cdfs.sys [88576]
[MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.22/08/2013 - 03:46:35.) -- C:\Windows\system32\Drivers\Cdrom.sys [164352]
[MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\DfsC.sys [134144]
[MD5.03909BDBFF0DCACCABF2B2D4ADEE44DC] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.22/08/2013 - 06:38:38.) -- C:\Windows\system32\Drivers\HDAudBus.sys [78336]
[MD5.84CFC5EFA97D0C965EDE1D56F116A541] - (.Microsoft Corporation - Pilote de port i8042.) (.22/08/2013 - 06:39:15.) -- C:\Windows\system32\Drivers\i8042prt.sys [107520]
[MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) (.18/03/2014 - 05:09:57.) -- C:\Windows\system32\Drivers\IpNat.sys [142848]
[MD5.C997E6A37BA8915224B3FB5024A34F69] - (.Microsoft Corporation - Minirdr SMB Windows NT.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\MRxSmb.sys [402944]
[MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) (.22/08/2013 - 06:37:02.) -- C:\Windows\system32\Drivers\netBT.sys [282624]
[MD5.1C80517BE6836A812F6A9B99B8321351] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.21/04/2014 - 10:02:06.) -- C:\Windows\system32\Drivers\ntfs.sys [2013016]
[MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) (.22/08/2013 - 06:40:02.) -- C:\Windows\system32\Drivers\Parport.sys [94208]
[MD5.BBB6272B7F46C4640A8CDB8A70C3450F] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.22/08/2013 - 06:35:51.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [120832]
[MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RDP.) (.18/03/2014 - 04:41:24.) -- C:\Windows\system32\Drivers\rdpdr.sys [195584]
[MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) (.22/08/2013 - 08:25:35.) -- C:\Windows\system32\Drivers\tdx.sys [107520]
[MD5.3595FBDF25F8BA6256072D103937D7D6] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.18/03/2014 - 05:09:37.) -- C:\Windows\system32\Drivers\volsnap.sys [311640]
~ Generic Processes: Scanned in 00mn 01s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 3/2527
~ Mes musiques (My Musics) : 1/7100
~ Mes Videos (My Videos) : 1/67
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 5/10016
~ Mon Bureau (My Desktop) : 1/23234
~ Menu demarrer (Programs) : 1/26
~ Hidden Files: Scanned in 00mn 47s
---\\ Processus lancés
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.3784]
[MD5.8C46AD1E382018E0B4D6E31B9AB27E5C] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [21445248] [PID.5724]
[MD5.3F795C004680CF73F12F774516751EAD] - (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe [31154176] [PID.3772] =>PUP.BearShare
[MD5.4BFA1849DC7AA3CB99C160D9EB96C67B] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640] [PID.3756]
[MD5.0CC6BCDAAD124EC51A96F60C51CD184D] - (.Mozilla Corporation - Thunderbird.) -- C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [390256] [PID.6600]
[MD5.0DA891CB0703D912CEAFA072F54D002B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.3384]
[MD5.28B02EA673489A4EFBB20A9B302D523C] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [18544] [PID.1776]
[MD5.2F777711F4A380AACADBB85A3E7EBFCB] - (.Adobe Systems, Inc. - Adobe Flash Player 13.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_182.exe [1864368] [PID.1732]
[MD5.AEF17283670DD354DAE473B9DF46E723] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8020480] [PID.6708]
~ Processes Running: Scanned in 00mn 03s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] None
G0 - GCSP: Preference [User Data\Default] https://www.google.com/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Google Store v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Documents Google v.0.5 (Activé)
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Drive v.6.3 (Activé)
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] YouTube v.4.2.6 (Activé)
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Recherche Google v.0.0.0.20 (Activé)
G2 - GCE: Preference [User Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)
G2 - GCE: Preference [User Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] avast! Online Security v.9.0.2011.70, (Désactivé)
G2 - GCE: Preference [User Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.0 (Activé)
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Gmail v.7 (Activé)
---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [Documents Google]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Google Drive]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [YouTube]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [Recherche Google]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [avast! Online Security]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]
G2 - EXT: C:\Users\L\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [Gmail]
~ Google Lines Browser: 22 Scanned in 00mn 01s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M0 - MFSP: prefs.js [L - dwcxzgf4.default] https://www.google.com/?gws_rd=ssl
P2 - FPN:Firefox Plugin Navigator . (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_182.dll
P2 - FPN: [HKLM] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKLM] [@tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKCU] [@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf] - (.Tracker Software Products (Canada) Ltd. - PDF-XChange Viewer Netscape Gecko Plugin.) -- C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll
P2 - FPN: [HKCU] [BearSharePlugin] - (.BearShare - The BearShare plugin allows you to open and play tracks on BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\npBearSharePlugin.dll =>PUP.BearShare
~ Firefox Browser: 10 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com =>Hijacker.WebsSearches
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17031 (winblue_gdr.140221-1952)) -- C:\Windows\SysWOW64\ieframe.dll
~ IE Browser: 16 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 01s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Groove GFS Browser Helper [64Bits] - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.dll
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: IESpeakDoc [64Bits] - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} Clé orpheline
~ BHO: 5 Scanned in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - [HKLM]{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} Clé orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\QuickLaunch [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\TaskBar [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\Program [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - GS\Desktop [L]: BearShare.lnk . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
~ Global Startup: 4 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Apoint] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint2K\Apoint.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [BearShare] . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\RunOnce: [20140529] . (.AVAST Software - avast! Emergency Update.) -- C:\Program Files\AVAST Software\Avast\setup\emupdate\6edc7ca6-a78b-4a09-8335-12fdd4c08e2d.exe
O4 - HKLM\..\policies\Explorer\Run: [BtvStack] . (.Qualcomm Atheros Commnucations - Extension Core.) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2654307758-2736798362-809906674-1001\..\Run: [BearShare] . (.MusicLab, LLC - BearShare.) -- C:\Program Files (x86)\BearShare Applications\BearShare\BearShare.exe =>PUP.BearShare
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBttnIE.dll =>.Microsoft Corporation
O9 - Extra button: Send by Bluetooth to [64Bits] - {7815BE26-237D-41A8-A98F-F7BD75F71086} -- Clé orpheline
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~1\Office14\ONBTTN~1.dll =>.Microsoft Corporation
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\WINDOWS\system32\napinsp.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\WINDOWS\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\WINDOWS\system32\NLAapi.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\WINDOWS\system32\wshbth.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{3E607C19-4657-4BE3-8662-E8A934D13A99}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C6E0D40-B7B5-4A77-9730-36BCA33B6468}: DhcpNameServer = 80.10.246.131 81.253.149.7
O17 - HKLM\System\CS1\Services\Tcpip\..\{3E607C19-4657-4BE3-8662-E8A934D13A99}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C6E0D40-B7B5-4A77-9730-36BCA33B6468}: DhcpNameServer = 80.10.246.131 81.253.149.7
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\SupTab\SEARCH~2.dll (.not file.) =>PUP.SupTab
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AtherosSvc (AtherosSvc) . (.Qualcomm Atheros Commnucations - AdminService Application.) - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: IconMan_R (IconMan_R) . (.Realsil Microelectronics Inc. - Realtek Card Reader Patch Tool..) - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
O23 - Service: Launch Manager Service (LMSvc) . (.Acer Incorporate - LMSvc.) - C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
O23 - Service: MBAMScheduler (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Nero Update (NAUpdate) . (.Nero AG - NeroUpdate.) - c:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
~ Services: 9 Scanned in 01mn 19s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.F92019F2A58640821B109B30193D5E7D] [APT] [ALU] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [3367976]
[MD5.B690DE3B3D28AD45112BE310780DBE8D] [APT] [ALUAgent] (...) -- C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [40008]
[MD5.9E76CDD50C3DDDB739150D778EEC0B93] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [804304]
[MD5.00000000000000000000000000000000] [APT] [fsupdate] (...) -- C:\Program Files (x86)\Flowsurf\fsupd.exe (.not file.) [0] =>PUP.FlowSurf
[MD5.1A5877A21F757889DBCAF3DB156E0267] [APT] [Launch Manager] (.Acer Incorporate.) -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMLauncher.exe [415272]
[MD5.D7E16AB9AAB8BFA219D84C79536319E2] [APT] [Power Management] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [5306440]
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe (.not file.) [0] =>Adware.Boxore
[MD5.00000000000000000000000000000000] [APT] [{25F49A05-ABA1-4573-B346-0E8039287C1B}] (...) -- C:\Users\L\AppData\Roaming\webssearches\UninstaLLManager.exe (.not file.) [0] =>Hijacker.WebsSearches
[MD5.C6CAB8F629AE677E4B5AE0D9E28241E6] [APT] [Notification] (.Acer Incorporated.) -- C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe [523848]
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job [926]
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA [926]
~ Scheduled Task: 12 Scanned in 00mn 12s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\System32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: C:\Windows\System32\drivers\ahcache.sys (ahcache) . (.Microsoft Corporation - Application Compatibility Cache.) - C:\Windows\System32\DRIVERS\ahcache.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (BasicDisplay) . (.Microsoft Corporation - Microsoft Basic Display Driver.) - C:\Windows\system32\drivers\BasicDisplay.sys
O41 - Driver: (BasicRender) . (.Microsoft Corporation - Microsoft Basic Render Driver.) - C:\Windows\system32\drivers\BasicRender.sys
O41 - Driver: cdrom.inf (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dam.sys (dam) . (.Microsoft Corporation - DAM Kernel Driver.) - C:\Windows\System32\drivers\dam.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (Dfsc) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: oem14.inf (dtsoftbus01) . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\system32\drivers\dtsoftbus01.sys
O41 - Driver: mssmbios.inf (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: netnb.inf (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: npsvctrig.inf (npsvctrig) . (.Microsoft Corporation - Named pipe service triggers.) - C:\Windows\system32\drivers\npsvctrig.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: C:\Windows\System32\drivers\vwififlt.sys (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
~ Drivers: 40 Scanned in 00mn 01s
---\\ Logiciels installés (O42)
O42 - Logiciel: ALPS Touch Pad Driver - (.Alps Electric.) [HKLM][64Bits] -- {9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}
O42 - Logiciel: AMD Accelerated Video Transcoding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {4DD822D5-1AE8-2645-16D4-CAC688F4DEC8}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {A6A7A944-0186-29D4-8FF9-EDD008403E08}
O42 - Logiciel: AVS Video Editor 6.5 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Video Editor_is1
O42 - Logiciel: Adobe Flash Player 13 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: BearShare - (.Musiclab, LLC.) [HKLM][64Bits] -- BearShare =>PUP.BearShare
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM][64Bits] -- {0E365FDA-909F-4939-838A-261DD468D862} =>Adware.Boxore
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {5C56AD8F-7317-42CB-B5D9-955F4F4BF6A5}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: CyberLink PowerDVD 12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A}
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- {3D9CB654-99AD-4301-89C6-0D12A790767C}
O42 - Logiciel: Live Updater - (.Packard Bell.) [HKLM][64Bits] -- {EE26E302-876A-48D9-9058-3129E5B99999}
O42 - Logiciel: Malwarebytes Anti-Malware version 1.75.0.1300 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 29.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 29.0.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mozilla Thunderbird 24.5.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 24.5.0 (x86 fr) =>.Mozilla Corporation
O42 - Logiciel: Nero BackItUp - (.Nero AG.) [HKLM][64Bits] -- {DA2D3078-A58C-45E8-8EE0-18B8BE6B34F7}
O42 - Logiciel: Nero BackItUp 12 Essentials OEM.a01 - (.Nero AG.) [HKLM][64Bits] -- {4CA8F973-6377-4ABF-9ED5-CC2323B3C000}
O42 - Logiciel: Nero BackItUp Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {EF0D1292-8FC1-41BE-9740-DBC134F66415}
O42 - Logiciel: Nero ControlCenter - (.Nero AG.) [HKLM][64Bits] -- {ABC88553-8770-4B97-B43E-5A90647A5B63}
O42 - Logiciel: Nero ControlCenter Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {C994C746-C6D0-4EBA-B09E-DF7B18381B69}
O42 - Logiciel: Nero Core Components - (.Nero AG.) [HKLM][64Bits] -- {BEBEE34D-84A2-4EDD-8BEA-96CC54371263}
O42 - Logiciel: Nero Launcher - (.Nero AG.) [HKLM][64Bits] -- {0E4630AF-0AB7-440E-A978-1A78FC4F43B9}
O42 - Logiciel: Nero RescueAgent - (.Nero AG.) [HKLM][64Bits] -- {A2D43081-CF7B-4637-A9F3-E2651AA5C4A8}
O42 - Logiciel: Nero RescueAgent Help (CHM) - (.Nero AG.) [HKLM][64Bits] -- {0B311221-05A5-4766-8D03-7A6446794156}
O42 - Logiciel: Nero Update - (.Nero AG.) [HKLM][64Bits] -- {65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
O42 - Logiciel: PDF-Viewer - (.Tracker Software Products Ltd.) [HKLM][64Bits] -- {A278382D-4F1B-4D47-9885-8523F7261E8D}_is1
O42 - Logiciel: Packard Bell Device Fast-lane - (.Packard Bell.) [HKLM][64Bits] -- {3F62D2FD-13C1-49A2-8B5D-47623D9460D7}
O42 - Logiciel: Packard Bell Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- {C18D55BD-1EC6-466D-B763-8EEDDDA9100E}
O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {91F52DE4-B789-42B0-9311-A349F10E5479}
O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {07F2005A-8CAC-4A4B-83A2-DA98A722CA61}
O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre
O42 - Logiciel: Qualcomm Atheros WLAN and Bluetooth Client Installation Program - (.Qualcomm Atheros.) [HKLM][64Bits] -- {28006915-2739-4EBE-B5E8-49B25D32EB33}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {0D61A55C-3ADC-409F-BF5B-A1766D1F5944}
O42 - Logiciel: Skype(TM) 6.16 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}
O42 - Logiciel: Software Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: VLC media player 2.1.1 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Visionneuse Microsoft PowerPoint - (.Microsoft Corporation.) [HKLM][64Bits] -- {95140000-00AF-040C-0000-0000000FF1CE}
O42 - Logiciel: Zotero Standalone 4.0.16 (x86 en-US) - (.Zotero.) [HKLM][64Bits] -- Zotero Standalone 4.0.16 (x86 en-US)
O42 - Logiciel: avast! Free Antivirus v9.0.2018 - (.Avast Software.) [HKLM][64Bits] -- Avast
~ Logic: 42 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ATI]
[HKCU\Software\AVAST Software]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow]
[HKCU\Software\Atheros]
[HKCU\Software\Aurigma]
[HKCU\Software\BearShare] =>PUP.BearShare
[HKCU\Software\Boxore] =>Adware.Boxore
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\Disc Soft]
[HKCU\Software\Dropbox]
[HKCU\Software\Gabest]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\Mine]
[HKCU\Software\Mooii]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\ODBC]
[HKCU\Software\OEM]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\Skype]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Software]
[HKCU\Software\Thunderbird] =>.Mozilla Corporation
[HKCU\Software\Tracker Software]
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Alps]
[HKLM\Software\Atheros]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Tracker Software]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ATHEROS]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Mooii]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WLAN and Bluetooth Client Installation Program]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\SiteFinder] =>Adware.ShoppingReport
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\SupDp] =>PUP.SupTab
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\Wpm] =>PUP.WpManager
[HKLM\Software\Wow6432Node\Zotero]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\supTab] =>PUP.SupTab
[HKLM\Software\Wow6432Node\supWPM] =>PUP.WpManager
[HKLM\Software\Wow6432Node\zotero.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 208 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/07/2013 - 10:28:02 - [] ----D C:\Program Files (x86)\AMD AVT
O43 - CFD: 03/07/2013 - 10:27:56 - [] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 26/05/2014 - 11:45:49 - [] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 23/05/2014 - 13:26:55 - [] ----D C:\Program Files (x86)\BearShare Applications =>PUP.BearShare
O43 - CFD: 21/05/2014 - 18:40:45 - [0] ----D C:\Program Files (x86)\Boxore =>Adware.Boxore
O43 - CFD: 26/05/2014 - 09:51:24 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/07/2013 - 10:49:12 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 27/11/2013 - 07:20:20 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 21/01/2014 - 09:30:24 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 03/07/2013 - 10:48:27 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 18/03/2014 - 06:29:07 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 09/01/2014 - 09:11:16 - [] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 27/11/2013 - 07:25:27 - [] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 24/11/2013 - 16:49:43 - [] ----D C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 27/11/2013 - 07:30:21 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/03/2014 - 09:19:53 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 05/01/2014 - 16:32:47 - [] ----D C:\Program Files (x86)\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 26/05/2014 - 16:56:09 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/11/2013 - 07:30:19 - [] ----D C:\Program Files (x86)\Microsoft Sync Framework
O43 - CFD: 27/11/2013 - 07:31:06 - [] ----D C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 27/11/2013 - 07:27:35 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 21/04/2014 - 16:24:33 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 10/05/2014 - 19:28:21 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/05/2014 - 21:53:58 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 02/05/2014 - 15:30:07 - [] ----D C:\Program Files (x86)\Mozilla Thunderbird =>.Mozilla Corporation
O43 - CFD: 21/04/2014 - 16:29:33 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 25/11/2013 - 07:21:40 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 17/05/2013 - 07:02:47 - [] ----D C:\Program Files (x86)\Nero
O43 - CFD: 21/05/2014 - 17:43:15 - [0] ----D C:\Program Files (x86)\Nosibay
O43 - CFD: 17/05/2013 - 07:01:33 - [] ----D C:\Program Files (x86)\Packard Bell
O43 - CFD: 21/05/2014 - 17:33:42 - [0] ----D C:\Program Files (x86)\PC Speed Maximizer =>Rogue.PCSpeedMaximizer
O43 - CFD: 26/05/2014 - 12:48:30 - [] ----D C:\Program Files (x86)\PhotoFiltre
O43 - CFD: 03/07/2013 - 10:38:55 - [] ----D C:\Program Files (x86)\Qualcomm Atheros
O43 - CFD: 03/07/2013 - 10:31:03 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 21/04/2014 - 10:57:07 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 22/05/2014 - 21:52:34 - [0] ----D C:\Program Files (x86)\SiteLookup
O43 - CFD: 26/05/2014 - 09:51:25 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 21/05/2014 - 17:18:18 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 17/05/2013 - 07:05:29 - [] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 03/07/2013 - 10:31:46 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 27/11/2013 - 10:46:02 - [] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 15/05/2014 - 23:51:22 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 18/03/2014 - 05:26:19 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 21/04/2014 - 16:24:38 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 18/03/2014 - 06:28:58 - [] ----D C:\Program Files (x86)\Windows Multimedia Platform
O43 - CFD: 22/08/2013 - 11:36:30 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/03/2014 - 05:26:19 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 18/03/2014 - 06:28:58 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 21/04/2014 - 16:24:38 - [] -SH-D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 22/08/2013 - 11:36:30 - [] ----D C:\Program Files (x86)\WindowsPowerShell
O43 - CFD: 30/05/2014 - 10:57:24 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 27/11/2013 - 09:12:55 - [] ----D C:\Program Files (x86)\Zotero Standalone
O43 - CFD: 03/07/2013 - 10:36:12 - [] ----D C:\Program Files (x86)\Common Files\Atheros
O43 - CFD: 03/07/2013 - 10:28:02 - [] ----D C:\Program Files (x86)\Common Files\ATI Technologies
O43 - CFD: 19/05/2014 - 16:39:39 - [] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 23/11/2013 - 09:18:25 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 21/04/2014 - 16:08:24 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 21/04/2014 - 16:24:32 - [] ----D C:\Program Files (x86)\Common Files\Microsoft Shared
O43 - CFD: 17/05/2013 - 07:02:29 - [] ----D C:\Program Files (x86)\Common Files\Nero
O43 - CFD: 03/07/2013 - 10:37:08 - [] ----D C:\Program Files (x86)\Common Files\QCA_Bluetooth
O43 - CFD: 22/08/2013 - 11:36:33 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 26/05/2014 - 09:51:24 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 25/12/2013 - 18:15:58 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 21/04/2014 - 16:24:32 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 05/01/2014 - 15:18:52 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 30/05/2014 - 10:09:32 - [] ----D C:\ProgramData\20A7
O43 - CFD: 03/07/2013 - 10:28:04 - [] ----D C:\ProgramData\AMD
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 21/04/2014 - 17:13:58 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 25/12/2013 - 18:25:49 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 25/12/2013 - 10:34:55 - [] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 03/07/2013 - 10:56:27 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 23/11/2013 - 01:43:46 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 03/07/2013 - 10:50:05 - [] ----D C:\ProgramData\CLSK
O43 - CFD: 03/07/2013 - 10:50:05 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 27/11/2013 - 07:23:16 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 24/11/2013 - 16:06:16 - [] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 21/05/2014 - 18:40:43 - [] ----D C:\ProgramData\IePluginServices =>Trojan.SProtector
O43 - CFD: 03/07/2013 - 10:48:27 - [] ----D C:\ProgramData\install_clap
O43 - CFD: 09/01/2014 - 09:11:11 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 23/11/2013 - 01:43:46 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 21/04/2014 - 16:24:47 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 15/05/2014 - 08:21:32 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 05/01/2014 - 16:32:04 - [] ----D C:\ProgramData\Microsoft SkyDrive =>.Microsoft Corporation
O43 - CFD: 23/11/2013 - 01:43:47 - [] -SH-D C:\ProgramData\Modèles
O43 - CFD: 22/11/2013 - 20:31:01 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/05/2013 - 07:02:29 - [] ----D C:\ProgramData\Nero
O43 - CFD: 01/01/2014 - 14:51:43 - [] ----D C:\ProgramData\Norton
O43 - CFD: 25/12/2013 - 20:17:33 - [] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 03/07/2013 - 10:58:18 - [] ----D C:\ProgramData\OEM
O43 - CFD: 22/11/2013 - 20:03:32 - [] ----D C:\ProgramData\OEM_YAHOO
O43 - CFD: 17/05/2013 - 07:01:34 - [] ----D C:\ProgramData\Packard Bell
O43 - CFD: 21/04/2014 - 16:24:48 - [] ----D C:\ProgramData\PRICache
O43 - CFD: 03/07/2013 - 10:35:23 - [] ----D C:\ProgramData\Qualcomm Atheros
O43 - CFD: 18/03/2014 - 05:41:33 - [] ----D C:\ProgramData\regid.1991-06.com.microsoft
O43 - CFD: 26/05/2014 - 09:51:29 - [] ----D C:\ProgramData\Skype
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 03/07/2013 - 10:56:27 - [] ----D C:\ProgramData\Symantec
O43 - CFD: 03/07/2013 - 10:49:12 - [] ----D C:\ProgramData\Temp
O43 - CFD: 22/08/2013 - 10:45:52 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 23/11/2013 - 09:42:30 - [] ----D C:\ProgramData\Virtualized Applications
O43 - CFD: 23/11/2013 - 09:52:53 - [] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 21/01/2014 - 09:31:56 - [] ----D C:\ProgramData\WildTangent
O43 - CFD: 21/05/2014 - 18:40:43 - [] ----D C:\ProgramData\WPM =>PUP.WpManager
O43 - CFD: 22/11/2013 - 20:03:01 - [] ----D C:\Users\L\AppData\Roaming\Adobe
O43 - CFD: 22/11/2013 - 20:03:51 - [] ----D C:\Users\L\AppData\Roaming\Atheros
O43 - CFD: 25/12/2013 - 19:20:38 - [] ----D C:\Users\L\AppData\Roaming\AVAST Software
O43 - CFD: 19/05/2014 - 20:40:41 - [] ----D C:\Users\L\AppData\Roaming\AVS4YOU
O43 - CFD: 07/02/2014 - 09:47:41 - [] ----D C:\Users\L\AppData\Roaming\CyberLink
O43 - CFD: 27/11/2013 - 07:23:13 - [] ----D C:\Users\L\AppData\Roaming\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 23/01/2014 - 15:12:17 - [] ----D C:\Users\L\AppData\Roaming\Dropbox
O43 - CFD: 27/02/2014 - 21:27:16 - [] ----D C:\Users\L\AppData\Roaming\dvdcss
O43 - CFD: 21/04/2014 - 17:10:54 - [] ----D C:\Users\L\AppData\Roaming\Identities
O43 - CFD: 22/11/2013 - 21:58:47 - [] ----D C:\Users\L\AppData\Roaming\Macromedia
O43 - CFD: 09/01/2014 - 09:11:24 - [] ----D C:\Users\L\AppData\Roaming\Malwarebytes
O43 - CFD: 21/05/2014 - 17:19:37 - [] -S--D C:\Users\L\AppData\Roaming\Microsoft
O43 - CFD: 22/11/2013 - 20:39:02 - [] ----D C:\Users\L\AppData\Roaming\Mozilla
O43 - CFD: 23/05/2014 - 13:28:00 - [] ----D C:\Users\L\AppData\Roaming\MusicNet
O43 - CFD: 27/11/2013 - 12:55:21 - [] ----D C:\Users\L\AppData\Roaming\Nero
O43 - CFD: 21/05/2014 - 17:42:56 - [0] ----D C:\Users\L\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 25/11/2013 - 08:12:30 - [] ----D C:\Users\L\AppData\Roaming\OpenOffice
O43 - CFD: 26/05/2014 - 12:54:56 - [] ----D C:\Users\L\AppData\Roaming\PhotoFiltre
O43 - CFD: 26/05/2014 - 14:51:46 - [] ----D C:\Users\L\AppData\Roaming\PhotoScape
O43 - CFD: 30/05/2014 - 11:09:14 - [] ----D C:\Users\L\AppData\Roaming\Skype
O43 - CFD: 13/05/2014 - 11:28:21 - [] ----D C:\Users\L\AppData\Roaming\SoftGrid Client
O43 - CFD: 21/05/2014 - 17:22:01 - [0] ----D C:\Users\L\AppData\Roaming\SupTab =>PUP.SupTab
O43 - CFD: 22/11/2013 - 20:51:55 - [] ----D C:\Users\L\AppData\Roaming\Thunderbird =>.Mozilla Corporation
O43 - CFD: 23/11/2013 - 09:44:48 - [0] ----D C:\Users\L\AppData\Roaming\TP
O43 - CFD: 06/04/2014 - 21:46:54 - [] ----D C:\Users\L\AppData\Roaming\vlc
O43 - CFD: 21/01/2014 - 09:31:56 - [] ----D C:\Users\L\AppData\Roaming\WildTangent
O43 - CFD: 30/05/2014 - 11:17:47 - [] ----D C:\Users\L\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 27/11/2013 - 09:13:08 - [] ----D C:\Users\L\AppData\Roaming\Zotero
O43 - CFD: 21/05/2014 - 18:39:23 - [] ----D C:\Users\L\AppData\Local\2122
O43 - CFD: 21/04/2014 - 10:39:43 - [0] ----D C:\Users\L\AppData\Local\Adobe
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Application Data
O43 - CFD: 24/05/2014 - 17:40:32 - [] ----D C:\Users\L\AppData\Local\BearShare =>PUP.BearShare
O43 - CFD: 21/04/2014 - 17:13:58 - [] ----D C:\Users\L\AppData\Local\BMExplorer
O43 - CFD: 05/03/2014 - 12:26:11 - [] ----D C:\Users\L\AppData\Local\CrashDumps
O43 - CFD: 07/02/2014 - 09:45:09 - [] ----D C:\Users\L\AppData\Local\CyberLink
O43 - CFD: 22/05/2014 - 12:28:40 - [0] ----D C:\Users\L\AppData\Local\Diagnostics
O43 - CFD: 22/05/2014 - 21:52:30 - [] -SH-D C:\Users\L\AppData\Local\EmieSiteList
O43 - CFD: 22/05/2014 - 21:52:30 - [] -SH-D C:\Users\L\AppData\Local\EmieUserList
O43 - CFD: 25/12/2013 - 19:20:49 - [] ----D C:\Users\L\AppData\Local\Google
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Historique
O43 - CFD: 22/11/2013 - 21:58:48 - [] ----D C:\Users\L\AppData\Local\Macromedia
O43 - CFD: 07/02/2014 - 09:47:50 - [0] ----D C:\Users\L\AppData\Local\MediaShow
O43 - CFD: 13/05/2014 - 11:34:21 - [] ----D C:\Users\L\AppData\Local\Microsoft
O43 - CFD: 27/11/2013 - 07:24:50 - [0] ----D C:\Users\L\AppData\Local\Microsoft Help
O43 - CFD: 23/11/2013 - 10:05:34 - [] ----D C:\Users\L\AppData\Local\Mozilla
O43 - CFD: 05/03/2014 - 12:54:30 - [] ----D C:\Users\L\AppData\Local\Nero_AG
O43 - CFD: 24/04/2014 - 15:43:09 - [] ----D C:\Users\L\AppData\Local\Packages
O43 - CFD: 25/11/2013 - 06:35:06 - [] ----D C:\Users\L\AppData\Local\Programs
O43 - CFD: 27/03/2014 - 15:41:01 - [] ----D C:\Users\L\AppData\Local\Skype
O43 - CFD: 23/11/2013 - 09:46:50 - [] ----D C:\Users\L\AppData\Local\SoftGrid Client
O43 - CFD: 21/05/2014 - 17:18:18 - [] ----D C:\Users\L\AppData\Local\Software
O43 - CFD: 30/05/2014 - 11:05:55 - [] ----D C:\Users\L\AppData\Local\Temp
O43 - CFD: 21/04/2014 - 16:16:50 - [] -SH-D C:\Users\L\AppData\Local\Temporary Internet Files
O43 - CFD: 11/12/2013 - 17:44:30 - [] ----D C:\Users\L\AppData\Local\Thunderbird =>.Mozilla Corporation
O43 - CFD: 22/11/2013 - 20:00:36 - [0] ----D C:\Users\L\AppData\Local\VirtualStore
O43 - CFD: 26/05/2014 - 17:21:33 - [] ----D C:\Users\L\AppData\Local\Windows Live
O43 - CFD: 27/11/2013 - 09:13:08 - [] ----D C:\Users\L\AppData\Local\Zotero
O43 - CFD: 21/04/2014 - 16:18:44 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
O43 - CFD: 22/08/2013 - 11:36:32 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 16/05/2014 - 10:41:19 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 26/05/2014 - 11:38:34 - [] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
O43 - CFD: 22/08/2013 - 11:36:32 - [] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 26/05/2014 - 12:48:31 - [0] ----D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
O43 - CFD: 16/05/2014 - 10:41:18 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 21/04/2014 - 16:18:44 - [] R---D C:\Users\L\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
~ Program Folder: 171 Scanned in 00mn 01s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.326715361A7D1C65983BFE920990E4EF] - 15/05/2014 - 16:34:47 ---A- . (.Microsoft Corporation - Programme d'installation de Windows Update.) -- C:\Windows\System32\wusa.exe [308224]
O44 - LFC:[MD5.F5D4FA3E1F4879C361FFF3855259D2C2] - 15/05/2014 - 16:35:03 ---A- . (.Microsoft Corporation - Microsoft antimalware boot driver.) -- C:\Windows\System32\Drivers\WdBoot.sys [35856]
O44 - LFC:[MD5.6CC1BB8F6851A262E2E824F0E92D5EEF] - 15/05/2014 - 16:35:04 ---A- . (.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) -- C:\Windows\System32\Drivers\WdNisDrv.sys [123224]
O44 - LFC:[MD5.019CC610AD95FF47EAD7C08B7A683B96] - 15/05/2014 - 16:35:04 ---A- . (.Microsoft Corporation - Microsoft antimalware file system filter dr.) -- C:\Windows\System32\Drivers\WdFilter.sys [257880]
O44 - LFC:[MD5.A750229C96A406EE123F43916053F142] - 15/05/2014 - 16:35:08 ---A- . (.Microsoft Corporation - Microsoft SLR Error Reporting Helper.) -- C:\Windows\System32\mrt_map.dll [86688]
O44 - LFC:[MD5.D178F55D53B9A10FFBDC134C95517846] - 15/05/2014 - 16:35:08 ---A- . (.Microsoft Corporation - System Language Runtime.) -- C:\Windows\System32\mrt100.dll [28320]
O44 - LFC:[MD5.AB4A6DF750EBCAEAC12E1E7BF72BBCA2] - 15/05/2014 - 17:23:06 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [93223848]
O44 - LFC:[MD5.23B58DEF11B45727D3351702515F86AF] - 21/05/2014 - 16:22:44 ---A- . (...) -- C:\END [2]
O44 - LFC:[MD5.8573A42394912479A10D58D6CB04E784] - 21/05/2014 - 17:41:06 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [474312]
O44 - LFC:[MD5.64ABECB04CD0F882E23CE9565B1A44F3] - 26/05/2014 - 15:33:01 ---A- . (...) -- C:\Windows\DirectX.log [3752]
O44 - LFC:[MD5.CE00874D043C807F6DD158C3E0831272] - 26/05/2014 - 20:56:58 ---A- . (...) -- C:\Windows\PFRO.log [113586]
O44 - LFC:[MD5.2B6FE2039977F38741C3DEE786D3A0B7] - 29/05/2014 - 17:06:11 ---A- . (...) -- C:\Windows\MEMORY.DMP [416405442]
O44 - LFC:[MD5.0B5A0005C0BDF4A05174576AF80DEA04] - 29/05/2014 - 17:17:06 ---A- . (.AVAST Software - avast! Screen Saver stub.) -- C:\Windows\avastSS.scr [43152]
O44 - LFC:[MD5.340B0467E98A8C92697D73034DB4BCB7] - 29/05/2014 - 17:17:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswHwid.sys [29208]
O44 - LFC:[MD5.BF5B9E9E97CED45208E498D9FA73688F] - 29/05/2014 - 17:17:08 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [65776]
O44 - LFC:[MD5.ED5B09937D559FFA53FC988D20031E98] - 29/05/2014 - 17:17:08 ---A- . (.AVAST Software - avast! File System Minifilter for Windows 2.) -- C:\Windows\System32\Drivers\aswMonFlt.sys [79184]
O44 - LFC:[MD5.1C159A357210CAB8974D5FBA068DC38F] - 29/05/2014 - 17:17:08 ---A- . (.AVAST Software - avast! Virtualization Driver.) -- C:\Windows\System32\Drivers\aswsnx.sys.1401401889953 [1039096]
O44 - LFC:[MD5
A voir également:
- Rapport zhpdiag
- Zhpdiag - Télécharger - Informations & Diagnostic
- Plan rapport de stage - Guide
- On vous a donné accès à un fichier rapport. il est partagé avec plusieurs personnes sur cet espace pix cloud. répondez aux questions - Forum Cloud
- Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport existant ✓ - Forum Excel
- Problém affichage du tableau croisé dynamique - Forum Excel
1 réponse
kingk06
Messages postés
10277
Date d'inscription
mercredi 12 juin 2013
Statut
Membre
Dernière intervention
17 mars 2015
536
30 mai 2014 à 22:10
30 mai 2014 à 22:10
Bonjour
Le rapport de ZHPDiag doit être posté en lien, il est trop long pour tenir dans une réponse.
Avant de faire quoi que ce soit on va établir un diagnostic de ton pc pour voir quel est son degré d'infection et apporter la solution la plus appropriée pour le désinfecter.
Scan ZHPDiag :
Télécharge Nicolas Coolman) sur ton bureau ==> regarde ici comme faire
Cliquez ensuite sur le fichier téléchargé pour exécuter l'installation du logiciel.
Laissez vous guider lors de l'installation en laissant les réglages par défaut,
==> Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin
Suite à ces actions,l'outil a créé"2°"raccourcis ( ZHPFix, ZHPDiag )
Pour exécuter une analyse complète, cliquez sur l'icône bureau "ZHPDiag" représentant un "parchemin".
Dans l'interface du logiciel, cliquez sur le bouton "Configurer" pour accéder aux réglages.
Cliquez ensuite sur bouton "Loupe +" en bas à gauche, pour lancer un Diagnostic Full options. ==> ICI IMAGE
L'analyse s'effectue, patientez quelques minutes pendant le travail de l'outil indiqué par "Traitement en cours..."
A l'issue de l'analyse qui sera indiquée dans l'interface du programme, 100%, le rapport va s'ouvrir dans le bloc note. =>
==>NOTE: Il faut héberger ce rapport qui se trouve sur le bureau, celui-ci étant trop long pour être posté sur le forum Pour héberger le rapport Rendez vous sur le site Cjoint=> https://www.cjoint.com/ si le premier lien ne marche pas ici=>http://pjjoint.malekal.com/
==> Pour t'aider a héberger le rapport<==
https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
==> tutorial zhpdiag<==
Le rapport ZHPDiag.txt sera aussi sur votre bureau. En cas de nécessité, il est sauvegardé dans C:\ZHP\ZHPDiag.txt.
Le rapport de ZHPDiag doit être posté en lien, il est trop long pour tenir dans une réponse.
Avant de faire quoi que ce soit on va établir un diagnostic de ton pc pour voir quel est son degré d'infection et apporter la solution la plus appropriée pour le désinfecter.
Scan ZHPDiag :
Nous allons utiliser cet outil de diagnostic pour voir tous les problèmes
Télécharge Nicolas Coolman) sur ton bureau ==> regarde ici comme faire
Cliquez ensuite sur le fichier téléchargé pour exécuter l'installation du logiciel.
Laissez vous guider lors de l'installation en laissant les réglages par défaut,
==> Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin
Suite à ces actions,l'outil a créé"2°"raccourcis ( ZHPFix, ZHPDiag )
Pour exécuter une analyse complète, cliquez sur l'icône bureau "ZHPDiag" représentant un "parchemin".
Dans l'interface du logiciel, cliquez sur le bouton "Configurer" pour accéder aux réglages.
Cliquez ensuite sur bouton "Loupe +" en bas à gauche, pour lancer un Diagnostic Full options. ==> ICI IMAGE
L'analyse s'effectue, patientez quelques minutes pendant le travail de l'outil indiqué par "Traitement en cours..."
A l'issue de l'analyse qui sera indiquée dans l'interface du programme, 100%, le rapport va s'ouvrir dans le bloc note. =>
==>NOTE: Il faut héberger ce rapport qui se trouve sur le bureau, celui-ci étant trop long pour être posté sur le forum Pour héberger le rapport Rendez vous sur le site Cjoint=> https://www.cjoint.com/ si le premier lien ne marche pas ici=>http://pjjoint.malekal.com/
==> Pour t'aider a héberger le rapport<==
https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
==> tutorial zhpdiag<==
Le rapport ZHPDiag.txt sera aussi sur votre bureau. En cas de nécessité, il est sauvegardé dans C:\ZHP\ZHPDiag.txt.