Supprimer spyhunter
Fermé
pascalou59300
Messages postés
1
Date d'inscription
dimanche 30 novembre 2014
Statut
Membre
Dernière intervention
30 novembre 2014
-
30 nov. 2014 à 13:29
Utilisateur anonyme - 30 nov. 2014 à 16:22
Utilisateur anonyme - 30 nov. 2014 à 16:22
Bonjour,
J'ai téléchargé Spyhunter.
Je n'arrive pas à l'enlever de mon Pc.
Je copie le rapport de ZHPdiag.
Quelqu'un peut-il me dire ce que je dois copier dans ZHPfix pour supprimer ce logiciel.
Merci d'avance.
~ Rapport de ZHPDiag v2014.11.26.167 - Nicolas Coolman (26/11/2014)
~ Lancé par admin (30/11/2014 12:34:46)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17420 (Defaut)
MFIE: Mozilla Firefox 33.1
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : QC9HJ
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.3.1025
Microsoft Security Client v4.6.0305.0
SUPERAntiSpyware v6.0.1158
ZoneAlarm Firewall v13.3.209.000
ZoneAlarm Free Firewall v13.3.209.000
ZoneAlarm Security v13.3.209.000
Windows Defender W7 (Deactivate)
---\\ Logiciels d'optimisation du système
CCleaner v5.00
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 15 Plugin
Adobe Reader XI
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8068 MB (70% free)
System Restore: Activé (Enable)
System drive C: has 850 GB (91%) free of 931 GB
---\\ Mode de connexion au système
~ Computer Name: ADMIN-PC
~ User Name: admin
~ All Users Names: Administrateur, admin,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\admin\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\admin\AppData\Roaming\
~ %Desktop% : C:\Users\admin\Desktop\
~ %Favorites% : C:\Users\admin\Favorites\
~ %LocalAppData% : C:\Users\admin\AppData\Local\
~ %StartMenu% : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 850 Go of 931 Go)
D: CD-ROM drive (Not Inserted)
E: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Free 0 Go of 3 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 36 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.6FC2819A4F80AAB2DADEDFC1EFEE3C3F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/11/2014 - 03:17:24.) -- C:\Windows\System32\wininet.dll [2365440]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/740
~ Mes musiques (My Musics) : 1/8
~ Mes Videos (My Videos) : 1/3
~ Mes Favoris (My Favorites) : 1/28
~ Mes Documents (My Documents) : 1/867
~ Mon Bureau (My Desktop) : 1/420
~ Menu demarrer (Programs) : 1/27
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.1FC9C1D138BF85F92B28DF662BF0B117] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [19256] [PID.2500]
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2792]
[MD5.90AC42BBCDF908DD576853CB5CACA761] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2464072] [PID.3004]
[MD5.BA59761B013B65B6DB008EA19A557B42] - (.Check Point Software Technologies Ltd. - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352] [PID.3324]
[MD5.F89773DFA9B8C95A3AC2AF1E7D99E483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.3780]
[MD5.BD2C0CDD525902E3033DAA8D08D0F015] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848] [PID.4040]
[MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [PID.5816]
[MD5.65068E245EFE045E6956190CD0E2FB91] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.940]
[MD5.A89213C4C9DDBD8BDE32D847BB7F3E2F] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [145520] [PID.4436]
[MD5.1CA5FBD48779407552166F207AC0F72B] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe [1880752] [PID.5124]
[MD5.17D0F31B84A09B648A662AD5C06B5600] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8132608] [PID.4124]
[MD5.21D22AC9B8B33AF6EEEBDB10D1661C37] - (.Check Point Software Technologies Ltd. - TrueVector Service.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752] [PID.1636]
[MD5.C5679E5186B2FC95BC76A8A9870D5456] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64704] [PID.2328]
[MD5.650D03E40F93FAE323CB841F80368E5C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [60744] [PID.2400]
[MD5.D1668FA23D26CC97AEBF0EBAE1A015B7] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272] [PID.2460]
[MD5.1F79342D9EB530A48742F651E570983A] - (.Microsoft Corporation - Updates Skype Click to Call.) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176] [PID.2572]
[MD5.E4938E0A376CF0B9D989EE5C0A146891] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520] [PID.2616]
[MD5.6D8A2EE4244630B290A837E79C0F37A1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.3512]
[MD5.09D4503CBB6ADB3A54E7C7A75090B728] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504] [PID.3692]
[MD5.0191F314838056CF1A5A7BDE4346812F] - (...) -- C:\ProgramData\Modem HDM EC156\OnlineUpdate\ouc.exe [657504] [PID.3944]
[MD5.9EA1D43D68AAAE216CDA9C89CEF24D9E] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912] [PID.4060]
[MD5.79D99CA9DBD21DBE9CA0C4ACB4BAD419] - (.RealNetworks, Inc. - RealPlayer Cloud Service.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1141848] [PID.3168]
[MD5.CEC8ED565F3663F0B8A862561BF08D79] - (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272] [PID.3436]
[MD5.6241810294275CEA59EBA9733080E5EE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.3016]
[MD5.52069AEB42D3D0F97CBCA1085EBF55E6] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432] [PID.3088]
[MD5.8939CBB2526CB87C476DB9ABBF243AE0] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [390616] [PID.1768]
~ Processes Running: Scanned in 00mn 01s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\bco5qh2h.default\prefs.js
M3 - MFPP: Plugins - [admin] -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\bco5qh2h.default\searchplugins\bing.xml
M0 - MFSP: prefs.js [admin - bco5qh2h.default] https://www.google.fr/?gws_rd=ssl
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
~ Firefox Browser: 5 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17239 (winblue_gdr.140724-2228)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 24 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (1)
~ Hosts File: Scanned in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
~ BHO: 2 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [admin]: NewPlayer - Copie.lnk . (...) -- C:\Program Files (x86)\NewPlayer\NewPlayer.exe (.not file.) =>Adware.NewPlayer
~ Global Startup: 2 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm] . (.Check Point Software Technologies Ltd. - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [IMSS] . (.Intel Corporation - PIcon startup utility.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
O4 - HKUS\S-1-5-21-3380809449-1091643112-127232890-1000\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-3380809449-1091643112-127232890-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: HP Smart Print [64Bits] - {22CC3EBD-C286-43aa-B8E6-06B115F74162} . (...) -- C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrint.ico
O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CCS\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CS1\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CS2\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 344.) - C:\Windows\System32\nvinitx.dll
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: SAS Core Service (!SASCORE) . (.SUPERAntiSpyware.com - Core Service.) - C:\Program Files\SUPERAntiSpyware\SASCORE64.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Pas de propriétaire - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Modem HDM EC156. OUC (Modem HDM EC156. RunOuc) . (...) - C:\Program Files (x86)\Modem HDM EC156\UpdateDog\ouc.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.7.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc. - RealPlayer Cloud Service.) - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>Crapware.SpyHunter
O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies Ltd. - TrueVector Service.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) . (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
~ Services: 23 Scanned in 00mn 19s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.F79623288F2A357AB20288B5DC4F452A] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.BBA24B377C9E49615BAFCEBCDE892FBF] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232]
[MD5.2E4EE47FBD9BB663A5220DBC38579986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [5282584]
[MD5.00000000000000000000000000000000] [APT] [DriverRestore_RebootScan] (...) -- C:\Program Files (x86)\DriverRestore\DriverRestore.exe (.not file.) [0]
[MD5.CEC2EE3F2D7D9E14E1E1BAF0D740D860] [APT] [HPCustParticipation HP Officejet 4630 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5642272]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-3380809449-1091643112-127232890-1000] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3380809449-1091643112-127232890-1000] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe (.not file.) [0]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.00000000000000000000000000000000] [APT] [WIN-fdfEfEfAfC] (...) -- C:\Users\admin\AppData\Roaming\~iubsooy.exe (.not file.) [0]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{42CF5C6D-4366-4607-8795-DE35279488EE}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{48F9BC38-2C17-42A0-B1B3-D918E1536B2A}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.00000000000000000000000000000000] [APT] [{7344FEE3-CB71-429C-A45C-4D4BE05A641E}] (...) -- C:\Users\admin\Downloads\freecellcol.exe (.not file.) [0]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{9FF6E748-6BB7-4EA6-A941-CB004A9AE44D}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.C155A13687144076286989EF078112C2] [APT] [{AB57966C-A44B-4ECC-9EE7-6FDCAF6D4F99}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe [1917440]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CA2F68B9-85D4-4C53-9A5B-1396C04BE0CA}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CAE138F6-0971-4703-8BAC-2CF8181793B9}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CC4879D0-CE78-4459-AF6C-F651CF860F89}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{DD823CB8-99A4-49DA-B6C6-CB4501DA3CF3}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 [510]
~ Scheduled Task: 27 Scanned in 00mn 02s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mbamchameleon) . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) - C:\Windows\system32\drivers\mbamchameleon.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.sys
O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL64.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Vsdatant) . (.Check Point Software Technologies Ltd. - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\DRIVERS\vsdatant.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 81 Scanned in 00mn 03s
---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B92C2C6C-F70E-497B-88A7-1FEF9888272B}
O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.09) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Compt'In 4.2 - (.Edmond Doudard & Jean-François Bougeard.) [HKLM][64Bits] -- Compt'In 4.2_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90}
O42 - Logiciel: HP Officejet 4630 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {ED0692F7-850B-4D42-A447-FB8411139C31} =>.Hewlett-Packard Co
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}
O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7}
O42 - Logiciel: Logiciel de base du périphérique HP Officejet 4630 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {540465A1-BA92-4A52-9D12-9656F93DD9DF} =>.Hewlett-Packard Co
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {19D411B5-350C-4DEA-BCA3-9E7B632A642D}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.3.1025 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft RDV Diagnostic Tool (Beta) - (.Microsoft IT.) [HKLM][64Bits] -- {CF0C2585-2372-469C-9C5B-7FF8F8FA50AF}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {23F2C78C-E131-4CA0-8F84-3473FB7728BA}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Modem HDM EC156 - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Modem HDM EC156
O42 - Logiciel: Mozilla Firefox 33.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 33.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA GeForce Experience 2.1.4 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.14.0702 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97}
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.32.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote graphique 344.75 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {24B89186-2A56-4D28-B930-6F4FCF224E2F}
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (01/07/2014 1.0.0.197) - (.ASUS.) [HKLM][64Bits] -- 2BEE838DC3D664A0CAB23AEA0332BB3877ED0685
O42 - Logiciel: Prevent Restore - (.PrivacyRoot.com.) [HKLM][64Bits] -- wfds
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {7D916FA5-DAE9-4A25-B089-655C70EAF607}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM][64Bits] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype(TM) 6.21 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {616C96AC-9B4B-4446-8583-A10C2FDA24A4}
O42 - Logiciel: ZoneAlarm Free Firewall - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free Firewall
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {8E44476E-11BF-41A5-A457-266FD27F344D}
O42 - Logiciel: Étude pour l'amélioration du produit HP Officejet 4630 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {83231E08-7825-43F8-B1E2-D93D6E8CB763} =>.Hewlett-Packard Co
~ Logic: 43 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BugSplat]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Disc Soft]
[HKCU\Software\DriverWhiz]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\Kepard]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nitro]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Seagate Software]
[HKCU\Software\Skype]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Visan]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wondershare]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zone Labs]
[HKCU\Software\malavida]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\GEAR Software]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OpenVPN]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Check Point Software Technologies LTD]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Compt'In]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\Huawei technologies]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lavasoft]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NCH Swift Sound]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nalpeiron]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\RealNetworks]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Wondershare]
[HKLM\Software\Wow6432Node\Xing Technology Corp.]
[HKLM\Software\Wow6432Node\Zone Labs]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
[HKLM\Software\privacyroot.com]
~ Key Software: 240 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 05/08/2014 - 10:49:41 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/09/2014 - 10:41:36 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 08/09/2014 - 15:52:54 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 06/08/2014 - 13:24:40 - [] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 26/11/2014 - 16:35:20 - [] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 08/09/2014 - 15:52:31 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 01/11/2014 - 09:49:27 - [] ----D C:\Program Files (x86)\Check Point Software Technologies LTD
O43 - CFD: 01/11/2014 - 09:56:07 - [] ----D C:\Program Files (x86)\CheckPoint
O43 - CFD: 29/11/2014 - 10:21:40 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 28/11/2014 - 18:45:55 - [] ----D C:\Program Files (x86)\Compt'In 4.2
O43 - CFD: 15/06/2014 - 13:15:02 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 06/08/2014 - 20:14:27 - [0] ----D C:\Program Files (x86)\DriverWhiz
O43 - CFD: 15/06/2014 - 18:57:47 - [] ----D C:\Program Files (x86)\Free FreeCell Solitaire
O43 - CFD: 29/07/2014 - 12:11:54 - [] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 29/07/2014 - 12:10:49 - [] ----D C:\Program Files (x86)\HP
O43 - CFD: 29/07/2014 - 12:11:50 - [] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 26/11/2014 - 16:34:52 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 05/06/2014 - 15:37:58 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 13/11/2014 - 07:49:01 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/11/2014 - 12:56:41 - [] ----D C:\Program Files (x86)\Kepard
O43 - CFD: 23/11/2014 - 10:01:11 - [] ----D C:\Program Files (x86)\Lavasoft
O43 - CFD: 23/10/2014 - 04:13:56 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 16/06/2014 - 18:47:29 - [] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 15/06/2014 - 13:19:27 - [] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 16/10/2014 - 13:10:33 - [] ----D C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 16/06/2014 - 18:21:46 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/11/2014 - 07:57:27 - [] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 26/07/2014 - 06:39:21 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/06/2014 - 19:49:53 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/06/2014 - 19:46:25 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/06/2014 - 13:37:00 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 15/06/2014 - 19:49:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/10/2014 - 07:19:54 - [] ----D C:\Program Files (x86)\Modem HDM EC156
O43 - CFD: 11/11/2014 - 09:25:20 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 11/11/2014 - 12:29:45 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 15/06/2014 - 19:50:03 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 18/11/2014 - 19:53:58 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 19/09/2014 - 10:41:36 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 24/11/2014 - 11:21:26 - [] ----D C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 10/07/2014 - 12:15:55 - [] ----D C:\Program Files (x86)\PDFtk
O43 - CFD: 27/07/2014 - 08:32:57 - [] ----D C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation
O43 - CFD: 26/10/2014 - 08:53:11 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 21/10/2014 - 12:22:13 - [] ----D C:\Program Files (x86)\Real
O43 - CFD: 21/10/2014 - 12:22:27 - [0] ----D C:\Program Files (x86)\RealNetworks
O43 - CFD: 05/06/2014 - 15:22:28 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 29/09/2014 - 14:29:33 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 15/06/2014 - 18:57:49 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 05/06/2014 - 15:20:49 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 19/10/2014 - 08:19:35 - [] ----D C:\Program Files (x86)\VPNFacile
O43 - CFD: 15/06/2014 - 20:53:23 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 15/06/2014 - 18:57:51 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/06/2014 - 19:26:07 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 10:16:36 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 10:16:36 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 15/06/2014 - 13:10:24 - [] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 29/11/2014 - 08:45:37 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 17/06/2014 - 16:41:57 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 05/08/2014 - 10:49:40 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 26/11/2014 - 16:16:32 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 16/06/2014 - 18:20:50 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 05/06/2014 - 15:18:42 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/06/2014 - 15:20:45 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 05/06/2014 - 15:15:32 - [] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 16/10/2014 - 14:26:33 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 05/06/2014 - 15:21:56 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 29/09/2014 - 14:29:32 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/06/2014 - 18:18:00 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 29/11/2014 - 10:21:40 - [] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 23/11/2014 - 09:45:08 - [] ----D C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 26/10/2014 - 08:50:15 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 05/08/2014 - 10:49:41 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 08/09/2014 - 15:52:50 - [] ----D C:\ProgramData\Apple
O43 - CFD: 08/09/2014 - 15:53:38 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/11/2014 - 16:35:17 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 23/11/2014 - 08:52:17 - [] ----D C:\ProgramData\Avanquest Software
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 01/11/2014 - 09:47:20 - [] ----D C:\ProgramData\CheckPoint
O43 - CFD: 15/06/2014 - 13:16:18 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 25/08/2014 - 08:51:19 - [] ----D C:\ProgramData\DatacardService
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/11/2014 - 16:16:33 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 29/07/2014 - 12:09:45 - [] ----D C:\ProgramData\HP
O43 - CFD: 29/07/2014 - 12:11:50 - [] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 05/06/2014 - 15:24:14 - [] ----D C:\ProgramData\Intel
O43 - CFD: 26/11/2014 - 04:18:25 - [] ----D C:\ProgramData\ma-config.com
O43 - CFD: 15/06/2014 - 17:29:24 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 29/10/2014 - 11:09:51 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/11/2014 - 09:19:38 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 12/11/2014 - 20:53:12 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 25/08/2014 - 08:50:56 - [] ----D C:\ProgramData\Modem HDM EC156
J'ai téléchargé Spyhunter.
Je n'arrive pas à l'enlever de mon Pc.
Je copie le rapport de ZHPdiag.
Quelqu'un peut-il me dire ce que je dois copier dans ZHPfix pour supprimer ce logiciel.
Merci d'avance.
~ Rapport de ZHPDiag v2014.11.26.167 - Nicolas Coolman (26/11/2014)
~ Lancé par admin (30/11/2014 12:34:46)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program
---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17420 (Defaut)
MFIE: Mozilla Firefox 33.1
---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : QC9HJ
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ Logiciels de protection du système
Malwarebytes Anti-Malware version 2.0.3.1025
Microsoft Security Client v4.6.0305.0
SUPERAntiSpyware v6.0.1158
ZoneAlarm Firewall v13.3.209.000
ZoneAlarm Free Firewall v13.3.209.000
ZoneAlarm Security v13.3.209.000
Windows Defender W7 (Deactivate)
---\\ Logiciels d'optimisation du système
CCleaner v5.00
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 15 Plugin
Adobe Reader XI
---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 69 Stepping 1, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8068 MB (70% free)
System Restore: Activé (Enable)
System drive C: has 850 GB (91%) free of 931 GB
---\\ Mode de connexion au système
~ Computer Name: ADMIN-PC
~ User Name: admin
~ All Users Names: Administrateur, admin,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\admin\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\admin\AppData\Roaming\
~ %Desktop% : C:\Users\admin\Desktop\
~ %Favorites% : C:\Users\admin\Favorites\
~ %LocalAppData% : C:\Users\admin\AppData\Local\
~ %StartMenu% : C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 850 Go of 931 Go)
D: CD-ROM drive (Not Inserted)
E: Floppy drive, Flash card reader, USB Key (Not Inserted)
G: CD-ROM drive (Free 0 Go of 3 Go)
---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 36 Scanned in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.6FC2819A4F80AAB2DADEDFC1EFEE3C3F] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.06/11/2014 - 03:17:24.) -- C:\Windows\System32\wininet.dll [2365440]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.1B6163C503398B23FF8B939C67747683] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/11/2010 - 04:25:07.) -- C:\Windows\system32\Drivers\rdpdr.sys [165888]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/740
~ Mes musiques (My Musics) : 1/8
~ Mes Videos (My Videos) : 1/3
~ Mes Favoris (My Favorites) : 1/28
~ Mes Documents (My Documents) : 1/867
~ Mon Bureau (My Desktop) : 1/420
~ Menu demarrer (Programs) : 1/27
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lancés
[MD5.1FC9C1D138BF85F92B28DF662BF0B117] - (.ASUSTeK Computer Inc. - ASUS Quick Gesture Exe.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe [19256] [PID.2500]
[MD5.349AB4F70E2AC44970894E7F03E1576E] - (.Huawei Technologies Co., Ltd. - DataCardMonitor MFC Application.) -- C:\ProgramData\DatacardService\DCSHelper.exe [236384] [PID.2792]
[MD5.90AC42BBCDF908DD576853CB5CACA761] - (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2464072] [PID.3004]
[MD5.BA59761B013B65B6DB008EA19A557B42] - (.Check Point Software Technologies Ltd. - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [137352] [PID.3324]
[MD5.F89773DFA9B8C95A3AC2AF1E7D99E483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.3780]
[MD5.BD2C0CDD525902E3033DAA8D08D0F015] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848] [PID.4040]
[MD5.4738DC864215B00B886E27A8D18CC326] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592] [PID.5816]
[MD5.65068E245EFE045E6956190CD0E2FB91] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.940]
[MD5.A89213C4C9DDBD8BDE32D847BB7F3E2F] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [145520] [PID.4436]
[MD5.1CA5FBD48779407552166F207AC0F72B] - (.Adobe Systems, Inc. - Adobe Flash Player 15.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_239.exe [1880752] [PID.5124]
[MD5.17D0F31B84A09B648A662AD5C06B5600] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8132608] [PID.4124]
[MD5.21D22AC9B8B33AF6EEEBDB10D1661C37] - (.Check Point Software Technologies Ltd. - TrueVector Service.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [3596752] [PID.1636]
[MD5.C5679E5186B2FC95BC76A8A9870D5456] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64704] [PID.2328]
[MD5.650D03E40F93FAE323CB841F80368E5C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [60744] [PID.2400]
[MD5.D1668FA23D26CC97AEBF0EBAE1A015B7] - (.Microsoft Corp. - Bing Desktop updating service.) -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272] [PID.2460]
[MD5.1F79342D9EB530A48742F651E570983A] - (.Microsoft Corporation - Updates Skype Click to Call.) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176] [PID.2572]
[MD5.E4938E0A376CF0B9D989EE5C0A146891] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520] [PID.2616]
[MD5.6D8A2EE4244630B290A837E79C0F37A1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.3512]
[MD5.09D4503CBB6ADB3A54E7C7A75090B728] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504] [PID.3692]
[MD5.0191F314838056CF1A5A7BDE4346812F] - (...) -- C:\ProgramData\Modem HDM EC156\OnlineUpdate\ouc.exe [657504] [PID.3944]
[MD5.9EA1D43D68AAAE216CDA9C89CEF24D9E] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912] [PID.4060]
[MD5.79D99CA9DBD21DBE9CA0C4ACB4BAD419] - (.RealNetworks, Inc. - RealPlayer Cloud Service.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1141848] [PID.3168]
[MD5.CEC8ED565F3663F0B8A862561BF08D79] - (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [96272] [PID.3436]
[MD5.6241810294275CEA59EBA9733080E5EE] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720] [PID.3016]
[MD5.52069AEB42D3D0F97CBCA1085EBF55E6] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432] [PID.3088]
[MD5.8939CBB2526CB87C476DB9ABBF243AE0] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [390616] [PID.1768]
~ Processes Running: Scanned in 00mn 01s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\bco5qh2h.default\prefs.js
M3 - MFPP: Plugins - [admin] -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\bco5qh2h.default\searchplugins\bing.xml
M0 - MFSP: prefs.js [admin - bco5qh2h.default] https://www.google.fr/?gws_rd=ssl
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_239.dll
P2 - FPN: [HKLM] [@microsoft.com/GENUINE] - (.Microsoft Corporation - Windows Activation Technologies Plugin for Mozilla.) -- C:\Windows\system32\Wat\npWatWeb.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
~ Firefox Browser: 5 Scanned in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.microsoft.com/fr-fr/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17239 (winblue_gdr.140724-2228)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 24 Scanned in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (1)
~ Hosts File: Scanned in 00mn 00s
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Microsoft Corporation - Skype Click to Call IE Add-on.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
~ BHO: 2 Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [admin]: NewPlayer - Copie.lnk . (...) -- C:\Program Files (x86)\NewPlayer\NewPlayer.exe (.not file.) =>Adware.NewPlayer
~ Global Startup: 2 Scanned in 00mn 03s
---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\Windows\system32\nvspcap64.dll
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA GeForce Experience Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - HKLM\..\Wow6432Node\Run: [ZoneAlarm] . (.Check Point Software Technologies Ltd. - ZoneAlarm.) -- C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [IMSS] . (.Intel Corporation - PIcon startup utility.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
O4 - HKUS\S-1-5-21-3380809449-1091643112-127232890-1000\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe =>.DT Soft Ltd
O4 - HKUS\S-1-5-21-3380809449-1091643112-127232890-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
~ Application: Scanned in 00mn 00s
---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: HP Smart Print [64Bits] - {22CC3EBD-C286-43aa-B8E6-06B115F74162} . (...) -- C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrint.ico
O9 - Extra button: Skype Click to Call settings [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 7 Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CCS\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CS1\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CS1\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CS2\Services\Tcpip\..\{A4E094BC-61E5-44E0-8F0A-CA1F536A3E7E}: NameServer = 192.168.50.58 192.168.60.55
O17 - HKLM\System\CS2\Services\Tcpip\..\{565810E1-957C-4F98-8394-94F261E9E3E3}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{65782830-432C-4DE4-932A-FE4A35D6F90E}: DhcpNameServer = 172.20.10.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{9C5A7EF0-0DF7-4BC9-9E69-9AC5699AA018}: DhcpDomain = lan
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 344.) - C:\Windows\System32\nvinitx.dll
~ AppInit DLL: Scanned in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: SAS Core Service (!SASCORE) . (.SUPERAntiSpyware.com - Core Service.) - C:\Program Files\SUPERAntiSpyware\SASCORE64.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce Experience Service.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: HWDeviceService64.exe (HWDeviceService64.exe) . (.Pas de propriétaire - DCSHOST.) - C:\ProgramData\DatacardService\HWDeviceService64.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) . (.Intel Corporation - igfxCUIService Module.) - C:\Windows\System32\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Ma-Config Agent (MaConfigAgent) . (.CybelSoft - Service de détection matériel.) - C:\Program Files\ma-config.com\MaConfigAgent.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Modem HDM EC156. OUC (Modem HDM EC156. RunOuc) . (...) - C:\Program Files (x86)\Modem HDM EC156\UpdateDog\ouc.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 344.7.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: RealPlayer Cloud Service (RealPlayer Cloud Service) . (.RealNetworks, Inc. - RealPlayer Cloud Service.) - C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SpyHunter 4 Service (SpyHunter 4 Service) . (.Enigma Software Group USA, LLC. - Service scanner interface.) - C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe =>Crapware.SpyHunter
O23 - Service: TrueVector Internet Monitor (vsmon) . (.Check Point Software Technologies Ltd. - TrueVector Service.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: ZoneAlarm Privacy Service (ZAPrivacyService) . (.Check Point Software Technologies, Ltd. - ZAPrivacyService.) - C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZaPrivacyService.exe
~ Services: 23 Scanned in 00mn 19s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s
---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
[MD5.F79623288F2A357AB20288B5DC4F452A] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.BBA24B377C9E49615BAFCEBCDE892FBF] [APT] [ASUS Smart Gesture Launcher] (.AsusTek.) -- C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18232]
[MD5.2E4EE47FBD9BB663A5220DBC38579986] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [5282584]
[MD5.00000000000000000000000000000000] [APT] [DriverRestore_RebootScan] (...) -- C:\Program Files (x86)\DriverRestore\DriverRestore.exe (.not file.) [0]
[MD5.CEC2EE3F2D7D9E14E1E1BAF0D740D860] [APT] [HPCustParticipation HP Officejet 4630 series] (.Hewlett-Packard Co..) -- C:\Program Files\HP\HP Officejet 4630 series\Bin\HPCustPartic.exe [5642272]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-3380809449-1091643112-127232890-1000] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3380809449-1091643112-127232890-1000] (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe (.not file.) [0]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.5302D99FB38DE4318738BE8EB5504695] [APT] [SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591] (.SUPERAdBlocker.com.) -- C:\Program Files\SUPERAntiSpyware\SASTask.exe [49944]
[MD5.00000000000000000000000000000000] [APT] [WIN-fdfEfEfAfC] (...) -- C:\Users\admin\AppData\Roaming\~iubsooy.exe (.not file.) [0]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{42CF5C6D-4366-4607-8795-DE35279488EE}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{48F9BC38-2C17-42A0-B1B3-D918E1536B2A}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.00000000000000000000000000000000] [APT] [{7344FEE3-CB71-429C-A45C-4D4BE05A641E}] (...) -- C:\Users\admin\Downloads\freecellcol.exe (.not file.) [0]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{9FF6E748-6BB7-4EA6-A941-CB004A9AE44D}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.C155A13687144076286989EF078112C2] [APT] [{AB57966C-A44B-4ECC-9EE7-6FDCAF6D4F99}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe [1917440]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CA2F68B9-85D4-4C53-9A5B-1396C04BE0CA}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CAE138F6-0971-4703-8BAC-2CF8181793B9}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{CC4879D0-CE78-4459-AF6C-F651CF860F89}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.470E497882E18BD2582A8E69D3F1286F] [APT] [{DD823CB8-99A4-49DA-B6C6-CB4501DA3CF3}] (.J-F Bougeard.) -- C:\Program Files (x86)\Compt'In 4.2\Comptin.exe [2236416]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 188c1bec-4c74-4d9c-8966-2bfc933b0377 [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 85044d07-472f-4124-88c0-6e002b0243d3 [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 - (.SUPERAdBlocker.com.) -- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591.job [510]
O39 - APT: SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 - (.SUPERAdBlocker.com.) -- C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 98137acb-03ff-47f1-9425-4c2ec6f3c591 [510]
~ Scheduled Task: 27 Scanned in 00mn 02s
---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s
---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\cscsvc.dll (CSC) . (.Microsoft Corporation - Windows Client Side Caching Driver.) - C:\Windows\System32\drivers\csc.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (dtsoftbus01) . (.Disc Soft Ltd - DAEMON Tools Virtual Bus Driver.) - C:\Windows\System32\DRIVERS\dtsoftbus01.sys
O41 - Driver: (mbamchameleon) . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) - C:\Windows\system32\drivers\mbamchameleon.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\System32\DRIVERS\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (SASDIFSV) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASDIFSV64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASDIFSV64.sys
O41 - Driver: (SASKUTIL) . (.SUPERAdBlocker.com and SUPERAntiSpyware.com - SASKUTIL64.SYS.) - C:\Program Files\SUPERAntiSpyware\SASKUTIL64.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\System32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (Vsdatant) . (.Check Point Software Technologies Ltd. - ZoneAlarm Firewalling Driver.) - C:\Windows\System32\DRIVERS\vsdatant.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 81 Scanned in 00mn 03s
---\\ Logiciels installés (O42)
O42 - Logiciel: ASUS Smart Gesture - (.ASUS.) [HKLM][64Bits] -- {4D3286A6-F6AB-498A-82A4-E4F040529F3D}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {B92C2C6C-F70E-497B-88A7-1FEF9888272B}
O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.09) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {BDD99690-3541-4619-9D2A-3CDDB3E15F9E}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7}
O42 - Logiciel: Bing Bureau - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D095455-D971-4D4C-9EFD-9AF6A6584F3A}
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: Compt'In 4.2 - (.Edmond Doudard & Jean-François Bougeard.) [HKLM][64Bits] -- Compt'In 4.2_is1
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite =>.DT Soft Ltd
O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90}
O42 - Logiciel: HP Officejet 4630 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {ED0692F7-850B-4D42-A447-FB8411139C31} =>.Hewlett-Packard Co
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}
O42 - Logiciel: I.R.I.S. OCR - (.HP.) [HKLM][64Bits] -- {CA6BCA2F-EDEB-408F-850B-31404BE16A61}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {27DEA29A-222C-45F8-B70D-0A7B303FC71B}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {409CB30E-E457-4008-9B1A-ED1B9EA21140}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {B5E06417-A4AC-4225-B36E-7E34C91616E7}
O42 - Logiciel: Logiciel de base du périphérique HP Officejet 4630 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {540465A1-BA92-4A52-9D12-9656F93DD9DF} =>.Hewlett-Packard Co
O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {19D411B5-350C-4DEA-BCA3-9E7B632A642D}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.3.1025 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft RDV Diagnostic Tool (Beta) - (.Microsoft IT.) [HKLM][64Bits] -- {CF0C2585-2372-469C-9C5B-7FF8F8FA50AF}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {23F2C78C-E131-4CA0-8F84-3473FB7728BA}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Modem HDM EC156 - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Modem HDM EC156
O42 - Logiciel: Mozilla Firefox 33.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 33.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA GeForce Experience 2.1.4 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.14.0702 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA PhysX - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B455E95A-B804-439F-B533-336B1635AE97}
O42 - Logiciel: NVIDIA Pilote audio HD : 1.3.32.1 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver
O42 - Logiciel: NVIDIA Pilote graphique 344.75 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: OpenOffice 4.0.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {24B89186-2A56-4D28-B930-6F4FCF224E2F}
O42 - Logiciel: Package de pilotes Windows - ASUS (ATP) Mouse (01/07/2014 1.0.0.197) - (.ASUS.) [HKLM][64Bits] -- 2BEE838DC3D664A0CAB23AEA0332BB3877ED0685
O42 - Logiciel: Prevent Restore - (.PrivacyRoot.com.) [HKLM][64Bits] -- wfds
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM][64Bits] -- {7D916FA5-DAE9-4A25-B089-655C70EAF607}
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: SUPERAntiSpyware - (.SUPERAntiSpyware.com.) [HKLM][64Bits] -- {CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype(TM) 6.21 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: WinRAR 5.10 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: ZoneAlarm Firewall - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {616C96AC-9B4B-4446-8583-A10C2FDA24A4}
O42 - Logiciel: ZoneAlarm Free Firewall - (.Check Point.) [HKLM][64Bits] -- ZoneAlarm Free Firewall
O42 - Logiciel: ZoneAlarm Security - (.Check Point Software Technologies Ltd..) [HKLM][64Bits] -- {8E44476E-11BF-41A5-A457-266FD27F344D}
O42 - Logiciel: Étude pour l'amélioration du produit HP Officejet 4630 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {83231E08-7825-43F8-B1E2-D93D6E8CB763} =>.Hewlett-Packard Co
~ Logic: 43 Scanned in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\BugSplat]
[HKCU\Software\CheckPoint]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Disc Soft]
[HKCU\Software\DriverWhiz]
[HKCU\Software\HP]
[HKCU\Software\Haali]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\I.R.I.S.]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel]
[HKCU\Software\Kepard]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\Mozilla]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nitro]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\RealNetworks]
[HKCU\Software\SUPERAntiSpyware.com]
[HKCU\Software\Seagate Software]
[HKCU\Software\Skype]
[HKCU\Software\Sysinternals]
[HKCU\Software\TeleCharger]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Visan]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wondershare]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zone Labs]
[HKCU\Software\malavida]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\Atheros]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\DTS]
[HKLM\Software\Dolby]
[HKLM\Software\EnigmaSoftwareGroup]
[HKLM\Software\GEAR Software]
[HKLM\Software\HP]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Nuance]
[HKLM\Software\ODBC]
[HKLM\Software\OpenVPN]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\SUPERAntiSpyware.com]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\Atheros]
[HKLM\Software\Wow6432Node\CDDB]
[HKLM\Software\Wow6432Node\Check Point Software Technologies LTD]
[HKLM\Software\Wow6432Node\CheckPoint]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Compt'In]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\Huawei technologies]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lavasoft]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NCH Swift Sound]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\Nalpeiron]
[HKLM\Software\Wow6432Node\Nuance]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OpenOffice]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Qualcomm Atheros WiFi Driver Installation]
[HKLM\Software\Wow6432Node\Qualcomm Atheros]
[HKLM\Software\Wow6432Node\RealNetworks]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\RocketLife]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\SuppHelpDir]
[HKLM\Software\Wow6432Node\Swearware]
[HKLM\Software\Wow6432Node\Visan]
[HKLM\Software\Wow6432Node\WinRAR]
[HKLM\Software\Wow6432Node\Wondershare]
[HKLM\Software\Wow6432Node\Xing Technology Corp.]
[HKLM\Software\Wow6432Node\Zone Labs]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
[HKLM\Software\cybelsoft]
[HKLM\Software\privacyroot.com]
~ Key Software: 240 Scanned in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 05/08/2014 - 10:49:41 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 19/09/2014 - 10:41:36 - [0] ----D C:\Program Files (x86)\AGEIA Technologies
O43 - CFD: 08/09/2014 - 15:52:54 - [] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 06/08/2014 - 13:24:40 - [] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 26/11/2014 - 16:35:20 - [] ----D C:\Program Files (x86)\Atheros
O43 - CFD: 08/09/2014 - 15:52:31 - [] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 01/11/2014 - 09:49:27 - [] ----D C:\Program Files (x86)\Check Point Software Technologies LTD
O43 - CFD: 01/11/2014 - 09:56:07 - [] ----D C:\Program Files (x86)\CheckPoint
O43 - CFD: 29/11/2014 - 10:21:40 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 28/11/2014 - 18:45:55 - [] ----D C:\Program Files (x86)\Compt'In 4.2
O43 - CFD: 15/06/2014 - 13:15:02 - [] ----D C:\Program Files (x86)\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 06/08/2014 - 20:14:27 - [0] ----D C:\Program Files (x86)\DriverWhiz
O43 - CFD: 15/06/2014 - 18:57:47 - [] ----D C:\Program Files (x86)\Free FreeCell Solitaire
O43 - CFD: 29/07/2014 - 12:11:54 - [] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 29/07/2014 - 12:10:49 - [] ----D C:\Program Files (x86)\HP
O43 - CFD: 29/07/2014 - 12:11:50 - [] ----D C:\Program Files (x86)\HP Photo Creations
O43 - CFD: 26/11/2014 - 16:34:52 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 05/06/2014 - 15:37:58 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 13/11/2014 - 07:49:01 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 11/11/2014 - 12:56:41 - [] ----D C:\Program Files (x86)\Kepard
O43 - CFD: 23/11/2014 - 10:01:11 - [] ----D C:\Program Files (x86)\Lavasoft
O43 - CFD: 23/10/2014 - 04:13:56 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 16/06/2014 - 18:47:29 - [] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 15/06/2014 - 13:19:27 - [] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 16/10/2014 - 13:10:33 - [] ----D C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 16/06/2014 - 18:21:46 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 26/11/2014 - 07:57:27 - [] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 26/07/2014 - 06:39:21 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/06/2014 - 19:49:53 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 15/06/2014 - 19:46:25 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/06/2014 - 13:37:00 - [] ----D C:\Program Files (x86)\Microsoft Works
O43 - CFD: 15/06/2014 - 19:49:26 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 20/10/2014 - 07:19:54 - [] ----D C:\Program Files (x86)\Modem HDM EC156
O43 - CFD: 11/11/2014 - 09:25:20 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 11/11/2014 - 12:29:45 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 15/06/2014 - 19:50:03 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 18/11/2014 - 19:53:58 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 19/09/2014 - 10:41:36 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 24/11/2014 - 11:21:26 - [] ----D C:\Program Files (x86)\OpenOffice 4
O43 - CFD: 10/07/2014 - 12:15:55 - [] ----D C:\Program Files (x86)\PDFtk
O43 - CFD: 27/07/2014 - 08:32:57 - [] ----D C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation
O43 - CFD: 26/10/2014 - 08:53:11 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 21/10/2014 - 12:22:13 - [] ----D C:\Program Files (x86)\Real
O43 - CFD: 21/10/2014 - 12:22:27 - [0] ----D C:\Program Files (x86)\RealNetworks
O43 - CFD: 05/06/2014 - 15:22:28 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 29/09/2014 - 14:29:33 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 15/06/2014 - 18:57:49 - [] ----D C:\Program Files (x86)\Software
O43 - CFD: 05/06/2014 - 15:20:49 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 19/10/2014 - 08:19:35 - [] ----D C:\Program Files (x86)\VPNFacile
O43 - CFD: 15/06/2014 - 20:53:23 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 15/06/2014 - 18:57:51 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/06/2014 - 19:26:07 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 12/04/2011 - 10:16:36 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 12/04/2011 - 10:16:36 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 15/06/2014 - 13:10:24 - [] ----D C:\Program Files (x86)\WinRAR
O43 - CFD: 29/11/2014 - 08:45:37 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 17/06/2014 - 16:41:57 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 05/08/2014 - 10:49:40 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 26/11/2014 - 16:16:32 - [] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 16/06/2014 - 18:20:50 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 05/06/2014 - 15:18:42 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 05/06/2014 - 15:20:45 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 05/06/2014 - 15:15:32 - [] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 16/10/2014 - 14:26:33 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 05/06/2014 - 15:21:56 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 29/09/2014 - 14:29:32 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 16/06/2014 - 18:18:00 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 29/11/2014 - 10:21:40 - [] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard
O43 - CFD: 23/11/2014 - 09:45:08 - [] ----D C:\Program Files (x86)\Common Files\Wondershare
O43 - CFD: 26/10/2014 - 08:50:15 - [] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 05/08/2014 - 10:49:41 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 08/09/2014 - 15:52:50 - [] ----D C:\ProgramData\Apple
O43 - CFD: 08/09/2014 - 15:53:38 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 26/11/2014 - 16:35:17 - [] ----D C:\ProgramData\Atheros
O43 - CFD: 23/11/2014 - 08:52:17 - [] ----D C:\ProgramData\Avanquest Software
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Bureau
O43 - CFD: 01/11/2014 - 09:47:20 - [] ----D C:\ProgramData\CheckPoint
O43 - CFD: 15/06/2014 - 13:16:18 - [] ----D C:\ProgramData\DAEMON Tools Lite =>.DT Soft Ltd
O43 - CFD: 25/08/2014 - 08:51:19 - [] ----D C:\ProgramData\DatacardService
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 26/11/2014 - 16:16:33 - [] ----D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 29/07/2014 - 12:09:45 - [] ----D C:\ProgramData\HP
O43 - CFD: 29/07/2014 - 12:11:50 - [] ----D C:\ProgramData\HP Photo Creations
O43 - CFD: 05/06/2014 - 15:24:14 - [] ----D C:\ProgramData\Intel
O43 - CFD: 26/11/2014 - 04:18:25 - [] ----D C:\ProgramData\ma-config.com
O43 - CFD: 15/06/2014 - 17:29:24 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 29/10/2014 - 11:09:51 - [] ----D C:\ProgramData\McAfee
O43 - CFD: 05/06/2014 - 20:23:20 - [] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/11/2014 - 09:19:38 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 12/11/2014 - 20:53:12 - [] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 25/08/2014 - 08:50:56 - [] ----D C:\ProgramData\Modem HDM EC156
A voir également:
- Supprimer spyhunter
- Supprimer une page word - Guide
- Supprimer compte instagram - Guide
- Impossible de supprimer un fichier - Guide
- Supprimer edge - Guide
- Supprimer bing - Guide
1 réponse
Utilisateur anonyme
30 nov. 2014 à 16:22
30 nov. 2014 à 16:22
Bonjour
ton rapport est incomplet
Pour transmettre le rapport clique sur ce lien :
http://upload.sosvirus.net/
Si problème utilise un des suivants
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier : Nom_complet_du_fichier (Fichier demandé )
Clique sur Ouvrir.
Clique sur "Envoyer le fichier".
Un lien de cette forme :
http://upload.sosvirus.net/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
ton rapport est incomplet
Pour transmettre le rapport clique sur ce lien :
http://upload.sosvirus.net/
Si problème utilise un des suivants
https://www.cjoint.com/
Clique sur Parcourir et cherche le fichier : Nom_complet_du_fichier (Fichier demandé )
Clique sur Ouvrir.
Clique sur "Envoyer le fichier".
Un lien de cette forme :
http://upload.sosvirus.net/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.