Sujet Précédent Sujet Suivant

PC infecté. Rapport ZHPDIAG

Fermé
Christopher Hourand - 12 juin 2015 à 10:54
 Christopher Hourand - 12 juin 2015 à 12:14
Bonjour,

Je viens d'utiliser ZHPDIAG pour faire un rapport car je n'arrête pas d'avoir des pages d'installation qui viennent s'ajouter sur ma fenêtre comme par exemple: smartweb, croosbrowser, games desktop,... et je ne sais pas quoi faire pour m'en débarasser une bonne fois pour toute. Merci d'avance pour votre aide voici le rapport: EFmiT1Vsjau_ZHPDiag.txt

~ Rapport de ZHPDiag v2015.6.4.54 - Nicolas Coolman (31/05/2015)
~ Lancé par Christopher (12/06/2015 10:36:15)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Adresse du Forum http://forum.nicolascoolman.fr
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17843
GCIE: Google Chrome v43.0.2357.124 (Defaut)

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : M8X2Q
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

---\\ Logiciels de protection du système
Microsoft Security Client v4.8.0204.0
Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation du système
CCleaner v4.18

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 16 NPAPI
Adobe Reader XI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 8089 MB (74% free)
System Restore: Activé (Enable)
System drive C: has 98 GB (36%) free of 270 GB

---\\ Mode de connexion au système
~ Computer Name: CHRISTOPHER
~ User Name: Christopher
~ All Users Names: HomeGroupUser$, Christopher, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\Christopher\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Christopher\AppData\Roaming\
~ %Desktop% : C:\Users\Christopher\Desktop\
~ %Favorites% : C:\Users\Christopher\Favorites\
~ %LocalAppData% : C:\Users\Christopher\AppData\Local\
~ %StartMenu% : C:\Users\Christopher\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 98 Go of 270 Go)
D: Hard drive, Flash drive, Thumb drive (Free 50 Go of 180 Go)
E: CD-ROM drive (Not Inserted)
Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
W: Hard drive, Flash drive, Thumb drive (Free 0 Go of 15 Go)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.6/04/2012 - 00:39:14.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/05/2015 - 18:50:20.) -- C:\Windows\System32\wininet.dll [2426880]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.6/04/2012 - 00:43:41.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.70988118145F5F10EF24720B97F35F65] - (.Microsoft Corporation - TDI Translation Driver.) (.11/11/2014 - 02:46:26.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 4/31
~ Mes musiques (My Musics) : 131/159
~ Mes Videos (My Videos) : 1/11
~ Mes Favoris (My Favorites) : 1/11
~ Mes Documents (My Documents) : 9/885
~ Mon Bureau (My Desktop) : 1/13
~ Menu demarrer (Programs) : 1/36
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.A416FBE18A8FF5C942B5E4A65A66EAE0] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704] [PID.380]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (...) -- ysWOW64\rundll32.exe [0] [PID.4692]
[MD5.4D241A6A8F6BA9FA32FF836551FFDCEA] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.5348]
[MD5.766AE515B1749F2141E418CC6C08515B] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440] [PID.5368]
[MD5.1568FF282E268082C67CF0C3EBCC9179] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320] [PID.5528]
[MD5.74A921A3820CA3139D0D30F453FDEB58] - (.Intel Corporation - Bluetooth Media Player Controller.) -- C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe [936272] [PID.1032]
[MD5.12E2FC1F74265881402DE856D01EFFFE] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8214016] [PID.5520]
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1988]
[MD5.FC5B75CA6A1DA31EDD4F8D53F5540B98] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [81088] [PID.2040]
[MD5.05981C3E51D827ED6B8101A54B05E392] - (.Intel Corporation - Bluetooth Device Monitor.) -- C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [1014096] [PID.1452]
[MD5.1355EBE184F9DAB1718BC587F8A7E05E] - (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1253376] [PID.2568]
[MD5.5C50F60E95EF63FCBE15E54BCBD653AC] - (.Freemake - FreemakeUtilsService.) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032] [PID.2720]
[MD5.DBD76BC1D498FE368F2C8CB76C3E00A4] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.2324]
[MD5.71C6748EE8DE938532057EF10B4B7E44] - (.Micro-Star International Co., Ltd. - MSI SCM Service.) -- C:\Program Files (x86)\S-Bar\MSIService.exe [160768] [PID.2656]
[MD5.DB7C6892180C79714EF79F69A788E865] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008] [PID.3048]
[MD5.53C2870AAFDA1BB0FC0A1A621E4C8659] - (...) -- C:\Users\Christopher\AppData\Roaming\03000200-1428686957-0500-0006-000700080009\nsoE971.tmp [746496] [PID.1524]
[MD5.CECFDE5D3701B2D914862F5E6C3DFE18] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [211104] [PID.3392]
[MD5.F3A3AEF1AA51660255BF897D94914B3D] - (...) -- C:\Users\Christopher\AppData\Roaming\03000200-1428686957-0500-0006-000700080009\jnsb72FC.tmp [274944] [PID.3456]
[MD5.41D8F56E6BBE0111244D87BE2FA90374] - (.Intel Corporation - Bluetooth OBEX Service.) -- C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [1104208] [PID.3692]
[MD5.4E1BB8A9CCDB4BAF41F7F9A930EB121D] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [534184] [PID.3820]
[MD5.B4D1D62A09F09CB2DFD55628350CDAFB] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822496] [PID.3740]
[MD5.BBFAF63BF768047FE2441B4139E803E3] - (.Intel Corporation - Bluetooth Media Service.) -- C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1304912] [PID.5556]
[MD5.7D4B9A48430ED57ACA6373B71D5904CA] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.4596]
[MD5.86E4CC39C953D11EF57CF54C4DC78238] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.4396]
[MD5.D80B1075B69B57A3AB78F750CE463ECE] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.4688]
~ Processes Running: Scanned in 00mn 00s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [__MSG_appName__]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [__MSG_name__]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [__MSG_appName__]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [AdBlock]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [Chrome Hotword Shared Module]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [__MSG_APP_NAME__]
G2 - EXT: C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [__MSG_appName__]
~ Google Lines Browser: 14 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Christopher\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js
M2 - MFEP: RegExtension {B64D9B05-48E1-4CEB-BF58-E0643994E900} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ (.not file.)
M2 - MFEP: Extension [Christopher - extensions] {B64D9B05-48E1-4CEB-BF58-E0643994E900}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.40416.0.) -- c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.3.7f1.) -- C:\Users\Christopher\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
P2 - FPN: [HKCU] [BeTV S.A..com/Be tv Go] - (.Nagravision - NMP Browser Plugin 2.10.0.0.) -- C:\Users\Christopher\AppData\Roaming\BeTV S.A\Be tv Go\npNMPCBrowserPlugin.dll
~ Firefox Browser: 6 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = preserve
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17840 (winblue_r11.150522-0826)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 22 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (15309)
~ Hosts File: Scanned in 00mn 06s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Easy Photo Print - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} . (.SEIKO EPSON CORPORATION / CyCom Technology - Epson Easy Photo Print (TBL x64).) -- C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll
~ Toolbar: Scanned in 00mn 00s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [XboxStat] . (.Microsoft Corporation - XBoxStat.exe.) -- C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKLM\..\Run: [IntelTBRunOnce] \b \nologo C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs (.not file.)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe (.not file.)
O4 - HKLM\..\Run: [Cm106Sound] . (.C-Media Corporation - CmiCnfg DLL.) -- C:\windows\Syswow64\cm106.dll
O4 - HKLM\..\Run: [BTMTrayAgent] . (.Intel Corporation - Bluetooth Shell Extension.) -- C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
O4 - HKLM\..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (.not file.)
O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
O4 - HKLM\..\Run: [ShadowPlay] . (.NVIDIA Corporation - NVIDIA Capture Server Proxy.) -- C:\windows\system32\nvspcap64.dll
O4 - HKCU\..\Run: [EPSON SX420W Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.exe =>.Epson Seiko Corporation
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_4ED3B78B207FD25361374708926C4653] C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.CrossBrowser
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_204] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_213] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_218] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_236] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_241] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_246] Clé orpheline
O4 - HKLM\..\Wow6432Node\Run: [gmsd_be_251] C:\Program Files (x86)\gmsd_be_251\gmsd_be_251.exe (.not file.)
O4 - HKLM\..\Wow6432Node\RunOnce: [upgmsd_be_251.exe] . (...) -- C:\Users\Christopher\AppData\Local\gmsd_be_251\upgmsd_be_251.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2322874410-571775245-1067314920-1001\..\Run: [EPSON SX420W Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\windows\system32\spool\DRIVERS\x64\3\E_IATIGCE.exe =>.Epson Seiko Corporation
O4 - HKUS\S-1-5-21-2322874410-571775245-1067314920-1001\..\Run: [GoogleChromeAutoLaunch_4ED3B78B207FD25361374708926C4653] C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (.not file.) =>PUP.CrossBrowser
~ Application: Scanned in 00mn 04s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Free YouTube Download [64Bits] - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} . (...) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\dvdvideosoft.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\windows\system32\wshbth.dll
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
~ Winsock: 9 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{BA33077F-3AA7-4858-9AC3-09447465F8FD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{E6A2A5D8-B250-4C8C-8E0D-0A9DD28F77C5}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BA33077F-3AA7-4858-9AC3-09447465F8FD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{E6A2A5D8-B250-4C8C-8E0D-0A9DD28F77C5}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BA33077F-3AA7-4858-9AC3-09447465F8FD}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{E6A2A5D8-B250-4C8C-8E0D-0A9DD28F77C5}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Servi (AMPPALR3) . (.Intel Corporation - Intel® Centrino® Wireless Bluetooth® 3.0 +.) - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bluetooth Device Monitor (Bluetooth Device Monitor) . (.Intel Corporation - Bluetooth Device Monitor.) - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service (Bluetooth OBEX Service) . (.Intel Corporation - Bluetooth OBEX Service.) - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed (BTHSSecurityMgr) . (.Intel(R) Corporation - Intel(R) BlueTooth(R) HS Security Manager S.) - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: EPSON V5 Service4(04) (EPSON_EB_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.exe =>.Epson Seiko Corporation
O23 - Service: EPSON V3 Service4(04) (EPSON_PM_RPCV4_04) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.exe =>.Epson Seiko Corporation
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) . (.MAGIX AG - Verzeichnisüberwachung und Hilfsaufgaben fü.) - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: Freemake Improver (Freemake Improver) . (.Freemake - FreemakeUtilsService.) - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) . (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Infonaut 1.10.0.14 Client Service (insvc_1.10.0.14) . (...) - C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe (.not file.) =>PUP.Infonaut
O23 - Service: Intel(R) Capability Licensing Service Interface (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Micro Star SCM (Micro Star SCM) . (.Micro-Star International Co., Ltd. - MSI SCM Service.) - C:\Program Files (x86)\S-Bar\MSIService.exe
O23 - Service: (MSI Foundation Service) . (.MSI - MSI Foundation Service.) - C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 353.0.) - C:\windows\system32\nvvsvc.exe
O23 - Service: Stretch Size (qobobuqu) . (...) - C:\Users\Christopher\AppData\Roaming\03000200-1428686957-0500-0006-000700080009\nsoE971.tmp
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: Log-in Email Provider (sopeqope) . (...) - C:\Users\Christopher\AppData\Roaming\03000200-1428686957-0500-0006-000700080009\jnsb72FC.tmp
O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) . (.Intel® Corporation - Intel® PROSet/Wireless Zero Configure Servi.) - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
~ Services: 28 Scanned in 00mn 03s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [4817] (...) -- C:\Users\Christopher\AppData\Local\Temp\launchie.vbs \\B (.not file.) [0]
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152]
[MD5.05B899EB9B6891B4DA1CEFF8EE7B4A53] [APT] [Bidaily Synchronize Task[3c32]] (.PC Utilities Software Limited.) -- c:\programdata\{3dd8ee55-5449-3e34-3dd8-8ee55544b955}\hqghumeaylnlf.exe [6487240] =>PUP.BidailySync
[MD5.F308D7378BF60B91DA495FCAA1C216E7] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4811032]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-2322874410-571775245-1067314920-1001Core] (...) -- C:\Users\Christopher\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-2322874410-571775245-1067314920-1001UA] (...) -- C:\Users\Christopher\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [SmartWeb Upgrade Trigger Task] (...) -- C:\Users\Christopher\AppData\Local\SmartWeb\SmartWebHelper.exe (.not file.) [0] =>PUP.SmartWeb
[MD5.813A8A0980E7F07E34DA147D9CD603F2] [APT] [{00BE1E52-A4E2-425C-A01D-2CAA97119FCF}] (...) -- C:\Program Files (x86)\RomStation\Emulation\Playstation\pSX\psxfin.exe [1912832]
[MD5.00000000000000000000000000000000] [APT] [{8E9C6102-76DC-4729-83FC-247D1FF59673}] (...) -- E:\PRGR Setup.exe (.not file.) [0]
[MD5.813A8A0980E7F07E34DA147D9CD603F2] [APT] [{A56C1B10-DEE8-4D84-99A5-3AB8BA80D976}] (...) -- C:\Program Files (x86)\RomStation\Emulation\Playstation\pSX\psxfin.exe [1912832]
[MD5.00000000000000000000000000000000] [APT] [{DBA1D146-D60B-4373-89A5-BC7AD391C463}] (...) -- C:\Program Files (x86)\Origin Games\FIFA 13\__Installer\dotnet\dotnet35sp1\redist\dotnetfx35.exe (.not file.) [0]
[MD5.B1FAC9E86EEE7861084CEBC2D33DC405] [APT] [{ECA5BD59-CC8C-40AC-910C-9D752B699CE6}] (.NVIDIA.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\GFExperience.exe [4705936]
O39 - APT: Bidaily Synchronize Task[3c32] - (.PC Utilities Software Limited.) -- C:\Windows\Tasks\Bidaily Synchronize Task[3c32].job [352] =>PUP.BidailySync
O39 - APT: Bidaily Synchronize Task[3c32] - (.PC Utilities Software Limited.) -- C:\Windows\System32\Tasks\Bidaily Synchronize Task[3c32] [352] =>PUP.BidailySync
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]
~ Scheduled Task: 18 Scanned in 00mn 00s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Disable SSL3 [64Bits] - {7D715857-A67C-4C2F-A929-038448584D63} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\windows\System32\ie4uinit.exe
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 11 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: (scfd_1_10_0_16) . (. - .) - C:\Windows\System32\drivers\scfd_1_10_0_16.sys (.not file.)
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
O41 - Driver: Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0 (ws2ifsl) . (.Microsoft Corporation - Couche IFS Winsock2.) - C:\Windows\system32\drivers\ws2ifsl.sys
~ Drivers: 65 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 7-Zip 9.20 (x64 edition) - (.Igor Pavlov.) [HKLM][64Bits] -- {23170F69-40C1-2702-0920-000001000000}
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: Adobe Flash Player 16 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI
O42 - Logiciel: Adobe Flash Player 17 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Reader XI (11.0.11) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001802114130}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM][64Bits] -- Battle.net
O42 - Logiciel: Be tv Go - (.BeTV S.A..) [HKLM][64Bits] -- {C0732B0E-6E8C-428D-AA1C-24979A19106F}
O42 - Logiciel: BurnRecovery - (.Micro-Star International Co., Ltd..) [HKLM][64Bits] -- {2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DRAGON BALL XENOVERSE - (.DIMPS.) [HKLM][64Bits] -- Steam App 323470
O42 - Logiciel: Désinstaller l'imprimante EPSON SX420W Series - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX420W Series
O42 - Logiciel: EA SPORTS FIFA World - (.Electronic Arts, Inc..) [HKLM][64Bits] -- {8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}
O42 - Logiciel: EA SPORTS(TM) FIFA 15 - (.Electronic Arts.) [HKLM][64Bits] -- {3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}
O42 - Logiciel: EPSON SX420W Series Manuel - (...) [HKLM][64Bits] -- EPSON SX420W Series Manual
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: ETDWare PS/2-X64 8.0.5.7_WHQL - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {310C1558-F6B5-4889-98B0-7471966BA7F2}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {03B8AA32-F23C-4178-B8E6-09ECD07EAA47}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: EpsonNet Setup 3.2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {C9D8A041-2963-4B31-8FFC-1500F3DB9293}
O42 - Logiciel: F1 2012 - (.Codemasters.) [HKLM][64Bits] -- Steam App 208500
O42 - Logiciel: Firebird SQL Server - MAGIX Edition - (.MAGIX AG.) [HKLM][64Bits] -- {34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}
O42 - Logiciel: Football Manager 2015 - (.Sports Interactive.) [HKLM][64Bits] -- Steam App 295270
O42 - Logiciel: Fort Boyard - le défi version V1.0 - (.Abandonware-France.) [HKLM][64Bits] -- {C405EDC0-88B3-4F85-BBDD-C9DEA6879B94}_is1
O42 - Logiciel: Fotogalerie - (.Microsoft Corporation.) [HKLM][64Bits] -- {41BF4A3B-D60A-4E92-883F-C88C8C157261}
O42 - Logiciel: Fotogalleri - (.Microsoft Corporation.) [HKLM][64Bits] -- {85E3592A-8C11-44F4-AABD-F82EF41167AD}
O42 - Logiciel: Fotogalleriet - (.Microsoft Corporation.) [HKLM][64Bits] -- {5FF3045E-4A36-4B98-9F7F-48B49F4469C7}
O42 - Logiciel: Free YouTube to MP3 Converter version 3.12.50.1111 - (.DVDVideoSoft Ltd..) [HKLM][64Bits] -- Free YouTube to MP3 Converter_is1
O42 - Logiciel: Freemake Video Converter version 4.1.6 - (.Ellora Assets Corporation.) [HKLM][64Bits] -- Freemake Video Converter_is1
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
O42 - Logiciel: Guide réseau pour EPSON SX420W Series - (...) [HKLM][64Bits] -- EPSON SX420W Series Network Guide
O42 - Logiciel: Heroes of the Storm - (.Blizzard Entertainment.) [HKLM][64Bits] -- Heroes of the Storm
O42 - Logiciel: Intel PROSet Wireless - (...) [HKLM][64Bits] -- ProInst
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) OpenCL CPU Runtime - (.Intel Corporation.) [HKLM][64Bits] -- {FCB3772C-B7D0-4933-B1A9-3707EBACC573}
O42 - Logiciel: Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed - (.Intel Corporation.) [HKLM][64Bits] -- {2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}
O42 - Logiciel: Intel(R) Processor Graphics - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel® PROSet/Wireless WiFi Software - (.Intel Corporation.) [HKLM][64Bits] -- {DF7756DD-656A-45C3-BA71-74673E8259A9}
O42 - Logiciel: Intel® Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {09536BA1-E498-4CC3-B834-D884A67D7E34}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: K-Lite Mega Codec Pack 9.2.0 - (...) [HKLM][64Bits] -- KLiteCodecPack_is1
O42 - Logiciel: KeePass Password Safe 2.20 - (.Dominik Reichl.) [HKLM][64Bits] -- KeePassPasswordSafe2_is1
O42 - Logiciel: Les Schtroumpfs - le téléportaschtroumpf version V1.0 - (.Abandonware-France.) [HKLM][64Bits] -- {A8474415-5F34-4224-9B46-EB19B67F9AD5}_is1
O42 - Logiciel: MAGIX Music Maker 16 Version à télécharger - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Music Maker 16 Version à télécharger F
O42 - Logiciel: MAGIX Photo Manager 9 - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Photo Manager 9 F
O42 - Logiciel: MAGIX Screenshare - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Screenshare F
O42 - Logiciel: MAGIX Speed burnR - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX Speed burnR F
O42 - Logiciel: MAGIX Video easy SE - (.MAGIX AG.) [HKLM][64Bits] -- MAGIX_MSI_Video_easy_SE
O42 - Logiciel: MAGIX Video easy SE - (.MAGIX AG.) [HKLM][64Bits] -- {63C88E0C-3C77-4F8E-8AC8-0BCD43E8FCED}
O42 - Logiciel: MSI Battery Calibration - (.Micro-Star International Co., Ltd..) [HKLM][64Bits] -- {619FA785-489B-4D22-911F-82D6EDF5BDB0}
O42 - Logiciel: MSI HOUSE - (.MSI.) [HKLM][64Bits] -- {DA5597C9-9216-44FF-9670-D1E48817B998}
O42 - Logiciel: MSI Software Install - (.Micro-Star International Co., Ltd..) [HKLM][64Bits] -- {332EBFE0-C39E-42D1-99B5-ABBBECAD71B6}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
O42 - Logiciel: ManiaPlanet - (.Nadeo.) [HKLM][64Bits] -- ManiaPlanet_is1
O42 - Logiciel: Microsoft ReportViewer 2010 Redistributable - (.Microsoft Corporation.) [HKLM][64Bits] -- {C19B3EB6-B54C-3204-A4DF-88432E0C79F7}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Microsoft Xbox 360 Accessories 1.2 - (.Microsoft.) [HKLM][64Bits] -- {45CD67FD-3218-4207-A0A2-BC41245189E3}
O42 - Logiciel: Moniteur de la technologie Intel® Turbo Boost 2.0 - (.Intel.) [HKLM][64Bits] -- {B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}
O42 - Logiciel: NVIDIA GeForce Experience 2.4.5.28 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience
O42 - Logiciel: NVIDIA Logiciel système PhysX 9.15.0428 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX
O42 - Logiciel: NVIDIA Pilote graphique 353.06 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: Open Broadcaster Software - (...) [HKLM][64Bits] -- Open Broadcaster Software
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: Origin - (.Electronic Arts, Inc..) [HKLM][64Bits] -- Origin
O42 - Logiciel: PC Sound - (.SRS Labs, Inc..) [HKLM][64Bits] -- {07A1EBCD-719C-4FEC-98B7-DB535254F292}
O42 - Logiciel: PRGR 2008.1 - (.Euro Business Partner.) [HKLM][64Bits] -- Le Permis Réussi - Het Geslaagde Rijexamen_is1
O42 - Logiciel: Paint.NET v3.5.10 - (.dotPDN LLC.) [HKLM][64Bits] -- {529125EF-E3AC-4B74-97E6-F688A7C0F1C0}
O42 - Logiciel: Picasa 3 - (.Google, Inc..) [HKLM][64Bits] -- Picasa 3
O42 - Logiciel: PokerStars.be - (.PokerStars.be.) [HKLM][64Bits] -- PokerStars.be
O42 - Logiciel: Pokémon Trading Card Game Online - (.The Pokémon Company International.) [HKLM][64Bits] -- {73550466-AE32-47D0-9868-C6066BDC0A3D}
O42 - Logiciel: Raccolta foto - (.Microsoft Corporation.) [HKLM][64Bits] -- {86A1CEAD-EF47-47BB-AE79-DA8C09E15382}
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}
O42 - Logiciel: RomStation - (.RomStation.) [HKLM][64Bits] -- {223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1
O42 - Logiciel: S-Bar - (. .) [HKLM][64Bits] -- {A034A12D-D9B0-4BA1-9BBB-49A2E5224A6A}
O42 - Logiciel: ShotOnline - (.OnNet.) [HKLM][64Bits] -- ShotOnline
O42 - Logiciel: Skype(TM) 7.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- {048298C9-A4D3-490B-9FF9-AB023A9238F3}
O42 - Logiciel: Text-To-Speech-Runtime - (.Magix Development GmbH.) [HKLM][64Bits] -- {7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
O42 - Logiciel: TrackMania² Stadium Demo - (.Nadeo.) [HKLM][64Bits] -- Steam App 233070
O42 - Logiciel: USB Multi-Channel Audio Device - (...) [HKLM][64Bits] -- C-Media CM106 Like Sound Driver
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: Valokuvavalikoima - (.Microsoft Corporation.) [HKLM][64Bits] -- {B315ABA6-8217-484E-9AC5-38806E265664}
O42 - Logiciel: WinRAR archiver - (...) [HKLM][64Bits] -- WinRAR archiver
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
O42 - Logiciel: ??????? ??????????? - (.Microsoft Corporation.) [HKLM][64Bits] -- {2D5C287A-1D2D-46BA-8EF8-D2747575DB6E}
~ Logic: 68 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7-Zip]
[HKCU\Software\ABBYY]
[HKCU\Software\AOL]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\SingAlong] =>Adware.Singalng
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}]
[HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}] =>Adware.Graftor
[HKCU\Software\AppDataLow]
[HKCU\Software\Audacity]
[HKCU\Software\Avast Software]
[HKCU\Software\BBL]
[HKCU\Software\BeTV S.A.]
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Bugsplat]
[HKCU\Software\CamStudioOpenSource for Nick]
[HKCU\Software\Chromium]
[HKCU\Software\CinemaPlus-3.2cV09.06-nv-ie] =>PUP.CrossRider
[HKCU\Software\CinemaPlus-3.2cV10.04-nv-ie] =>PUP.CrossRider
[HKCU\Software\ClassesB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CoolROM]
[HKCU\Software\CyberLink]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Data Dynamics]
[HKCU\Software\Digital River Mso]
[HKCU\Software\Disc Soft]
[HKCU\Software\EA Sports]
[HKCU\Software\EPSON]
[HKCU\Software\Elantech]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Emulators]
[HKCU\Software\EverestPoker.com]
[HKCU\Software\FreeTime]
[HKCU\Software\Freemake]
[HKCU\Software\GNU]
[HKCU\Software\Gabest]
[HKCU\Software\GlarySoft]
[HKCU\Software\Google]
[HKCU\Software\Haali]
[HKCU\Software\IGA]
[HKCU\Software\IM Providers]
[HKCU\Software\INCAInternet]
[HKCU\Software\Icaros]
[HKCU\Software\Intel]
[HKCU\Software\JaboSoft]
[HKCU\Software\Kromtech]
[HKCU\Software\Lagarith]
[HKCU\Software\Licenses]
[HKCU\Software\Ligos]
[HKCU\Software\LogMeInRescueCallingCard]
[HKCU\Software\Logitech]
[HKCU\Software\MAGIX AG]
[HKCU\Software\MAGIX]
[HKCU\Software\MCAFEE]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MediaInfo]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mumble]
[HKCU\Software\N64 Emulation]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\ODBC]
[HKCU\Software\OnNet]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro
[HKCU\Software\PTECH]
[HKCU\Software\Paint.NET]
[HKCU\Software\Pando Networks]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\QtProject]
[HKCU\Software\Razer]
[HKCU\Software\Realtek]
[HKCU\Software\Reg]
[HKCU\Software\SRS Labs]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\ShotOnline]
[HKCU\Software\Skype]
[HKCU\Software\TeleCharger]
[HKCU\Software\The Pokémon Company International]
[HKCU\Software\Trolltech]
[HKCU\Software\TutoTag] =>PUP.AgenceExclusive
[HKCU\Software\Tutorials] =>PUP.AgenceExclusive
[HKCU\Software\Unity]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Valve]
[HKCU\Software\Vision Thing]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\epsxe]
[HKCU\Software\gamesdesktop] =>Adware.GamesDesktop
[HKCU\Software\kde.org]
[HKCU\Software\madFlac]
[HKCU\Software\madshi]
[HKCU\Software\mozilla]
[HKCU\Software\virtual_audio_capture]
[HKLM\Software\7-Zip]
[HKLM\Software\AGEIA Technologies]
[HKLM\Software\ATI Technologies]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CBSTEST]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\HaaliMkx]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Logitech]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\Paint.NET]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Wow6432Node\ ]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\AGEIA Technologies]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Atari]
[HKLM\Software\Wow6432Node\BeTV S.A]
[HKLM\Software\Wow6432Node\Blizzard Entertainment]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\DVDVideoSoft]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\Disc Soft]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\EA Sports]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\Electronic Arts]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\F4]
[HKLM\Software\Wow6432Node\Fraps]
[HKLM\Software\Wow6432Node\Freemake]
[HKLM\Software\Wow6432Node\GAMESDESKTOP] =>Adware.GamesDesktop
[HKLM\Software\Wow6432Node\GNU]
[HKLM\Software\Wow6432Node\Gabest]
[HKLM\Software\Wow6432Node\GlarySoft]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\HaaliMkx]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Infonaut_1.10.0.13] =>PUP.Infonaut
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\InterVideo]
[HKLM\Software\Wow6432Node\KLCodecPack]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\LAV]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LogMeInRescueCallingCard]
[HKLM\Software\Wow6432Node\MSI]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Magix]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\McAfee.com]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OnNet]
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Origin Games]
[HKLM\Software\Wow6432Node\Pando Networks]
[HKLM\Software\Wow6432Node\PoINT]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\Reg]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Riot Games]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\Safer Networking Limited]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Sun Microsystems]
[HKLM\Software\Wow6432Node\SuperClick_1.10.0.16] =>PUP.SuperClick
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Tutorials] =>PUP.AgenceExclusive
[HKLM\Software\Wow6432Node\Valve]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\Wow6432Node]
[HKLM\Software\Wow6432Node\c115815b-1253-a1f8-5181-86f70fa9d8f2] =>PUP.CrossRider
[HKLM\Software\Wow6432Node]
[HKLM\Software\ZSMC]
~ Key Software: 382 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 10/03/2015 - 10:41:06 - [] ----D C:\Program Files (x86)\Abandonware-France
O43 - CFD: 10/06/2015 - 10:44:17 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27/04/2015 - 13:40:04 - [] ----D C:\Program Files (x86)\Battle.net
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\CamStudio 2.7
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Cisco
O43 - CFD: 16/10/2014 - 16:10:52 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 21/11/2014 - 14:38:13 - [] ----D C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\EBP - PRGR
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Emsisoft Anti-Malware
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\epson
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Epson Software
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\EpsonNet
O43 - CFD: 21/11/2014 - 14:38:03 - [] ----D C:\Program Files (x86)\Free Codec Pack
O43 - CFD: 17/04/2015 - 10:11:11 - [] ----D C:\Program Files (x86)\Freemake
O43 - CFD: 1/05/2015 - 11:22:58 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 27/04/2015 - 14:25:33 - [] ----D C:\Program Files (x86)\Heroes of the Storm
O43 - CFD: 30/05/2015 - 13:34:12 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 10/06/2015 - 11:10:56 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 12/04/2015 - 13:47:57 - [] ----D C:\Program Files (x86)\KONAMI
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\MAGIX
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\ManiaPlanet
O43 - CFD: 27/08/2014 - 16:47:20 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 13/05/2015 - 17:03:01 - [] ----D C:\Program Files (x86)\Microsoft Application Virtualization Client
O43 - CFD: 15/10/2014 - 19:01:31 - [] ----D C:\Program Files (x86)\Microsoft ASP.NET
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 25/11/2014 - 15:46:07 - [] ----D C:\Program Files (x86)\Microsoft OneDrive
O43 - CFD: 13/05/2015 - 17:01:14 - [] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 13/05/2015 - 16:46:14 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\MSI
O43 - CFD: 27/08/2014 - 16:47:20 - [0] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 22/03/2015 - 13:34:20 - [] ----D C:\Program Files (x86)\Mumble
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 9/04/2015 - 10:47:56 - [] ----D C:\Program Files (x86)\OBS
O43 - CFD: 7/06/2015 - 12:35:06 - [] ----D C:\Program Files (x86)\Origin
O43 - CFD: 8/03/2015 - 19:32:01 - [] ----D C:\Program Files (x86)\Origin Games
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Pando Networks
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\PokerStars.BE
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Project64 1.6
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Project64 2.1
O43 - CFD: 27/08/2014 - 16:47:20 - [] ----D C:\Program Files (x86)\Re
A voir également:

3 réponses

Réponse 1 / 3
Christopher Hourand
12 juin 2015 à 11:57
pour avoir le rapport au complet voici l'adresse: http://www.cjoint.com/c/EFmiT1Vsjau
0
Réponse 2 / 3
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 651
12 juin 2015 à 11:58
Salut,

Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :

Commence par ceci :

Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

0
Réponse 3 / 3
Christopher Hourand
12 juin 2015 à 12:14
Merci de votre réponse. Que dois-je faire après ça pour ne plus être embéter par ce genre de choses? car le lendemain quand j'allume mon pc ces pages reviennent Voici le rapport comme demandé:

# AdwCleaner v4.206 - Rapport créé le 12/06/2015 à 12:08:15
# Mis à jour le 01/06/2015 par Xplode
# Base de données : 2015-06-09.1 [Serveur]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (x64)
# Nom d'utilisateur : Christopher - CHRISTOPHER
# Exécuté depuis : C:\Users\Christopher\Downloads\adwcleaner_4.206.exe
# Option : Nettoyer
          • [ Services ] *****
          • [ Fichiers / Dossiers ] *****


Dossier Supprimé : C:\ProgramData\44e9803000000249
Dossier Supprimé : C:\ProgramData\{3dd8ee55-5449-3e34-3dd8-8ee55544b955}
Dossier Supprimé : C:\Users\Christopher\AppData\Local\SmartWeb
Dossier Supprimé : C:\Users\Christopher\AppData\Local\gmsd_be_251
Dossier Supprimé : C:\Users\Christopher\AppData\Roaming\MailUpdate
Dossier Supprimé : C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg
Fichier Supprimé : C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Fichier Supprimé : C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
          • [ Tâches planifiées ] *****


Tâche Supprimée : SmartWeb Upgrade Trigger Task
          • [ Raccourcis ] *****
          • [ Registre ] *****


Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [gmsd_be_251]
Clé Supprimée : HKLM\SOFTWARE\c115815b-1253-a1f8-5181-86f70fa9d8f2
Clé Supprimée : HKCU\Software\Optimizer Pro
Clé Supprimée : HKCU\Software\Tutorials
Clé Supprimée : HKCU\Software\TutoTag
Clé Supprimée : HKCU\Software\GAMESDESKTOP
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Clé Supprimée : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Clé Supprimée : HKLM\SOFTWARE\Tutorials
Clé Supprimée : HKLM\SOFTWARE\GAMESDESKTOP
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VOPackage
          • [ Navigateurs ] *****


-\\ Internet Explorer v11.0.9600.17840


-\\ Mozilla Firefox v


-\\ Google Chrome v43.0.2357.124

[C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Homepage] :
[C:\Users\Christopher\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Startup_URLs] : F58F701FC1DAF55F5C679BA72C95210F142D333016A9E114CB7E79F944B4BD22"},"software_reporter":{"prompt_reason":"C14A9800F4E250421A50C829E83AB3D7400F81F2A71EC40DD164C5FC06CFDC8A","prompt_seed":"88EF94E40F15A2B81D94E5BBE95D0A57A5CA5106EA49A187B3A972F385B84AA4","prompt_version":"678F9020C5D0FE503F07CE51FA3683C1228CF17B0E44191EA4BAF01F209F814A"},"sync":{"remaining_rollback_tries":"59CE1DE7629A407D0E13AACA3EDF0CB49173F131F61DAF4F1DC28608DF6C9E01"}},"super_mac":"C09BE3B33E07B0BFFBF767299CCAB67DB03F7BDDCAC07BA670E1156F0CA543CB"},"session":{"restore_on_startup":5,"startup_urls":["hxxp://www.yhs.delta-search.com/?babsrc=HP_ss&mntrId=2EE60CD29201058C&affID=119357&tt=040713_ifrmful&tsp=4935

-\\ Chromium v


AdwCleaner[R0].txt - [26606 octets] - [31/05/2015 17:56:42]
AdwCleaner[R1].txt - [5866 octets] - [31/05/2015 20:14:34]
AdwCleaner[R2].txt - [8205 octets] - [02/06/2015 17:06:23]
AdwCleaner[R3].txt - [6722 octets] - [08/06/2015 21:07:18]
AdwCleaner[R4].txt - [7885 octets] - [09/06/2015 11:45:57]
AdwCleaner[R5].txt - [14555 octets] - [10/06/2015 10:46:09]
AdwCleaner[R6].txt - [8814 octets] - [12/06/2015 12:06:45]
AdwCleaner[S0].txt - [18688 octets] - [31/05/2015 17:58:16]
AdwCleaner[S1].txt - [3628 octets] - [02/06/2015 17:07:50]
AdwCleaner[S2].txt - [5122 octets] - [08/06/2015 21:09:35]
AdwCleaner[S3].txt - [7981 octets] - [09/06/2015 11:47:35]
AdwCleaner[S4].txt - [12686 octets] - [10/06/2015 10:48:56]
AdwCleaner[S5].txt - [3929 octets] - [12/06/2015 12:08:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [3989 octets] ##########
0