Problème clic droit ouvre pubRésolu/Fermé

Question

Bonjour à tous, 
Voilà mon problème est le suivant :
Lorsque j'ouvre un nouvel onglet et que je veux par exemple cliquer sur un lien, la souris reste sous forme de flèche et ne devient pas une main comme elle devrait quand le curseur se trouve sur un lien. Et lorsque je clique, un nouvel onglet s'ouvre avec une publicité quelconque. 
Mais le problème survient également si je clique n'importe où sur la page. 
D'une fois que j'ai fais le premier clique et que la pub indésirable s'est ouverte, je la quitte et je peux naviguer dorénavant tranquillement sur la page qui m'intéressait à la base. 
Mais cela se reproduit presque à chaque fois que j'ouvre un nouvel onglet ou une nouvelle page. 
Je sais que ce n'est pas bien grave mais c'est assez énervant. 
Avez-vous déjà eu ce genre de problème ?  
Merci d'avance pour vos réponses.

2011N2 · Answer

Bonsoir,
On va regarder ça ensemble. Passe AdwCleaner et poste le rapport : http://www.forum-entraide-informatique.com/adwcleaner-tutoriel/
Gabriel.

2011N2 · Answer

Re,
Passe-le en mode Nettoyer et poste le rapport stp.
Gabriel.

2011N2 · Answer

Re,
Très bien. :)
Fais un diagnostic de ton PC avec ZHPDiag et poste le rapport hébergé : http://www.forum-entraide-informatique.com/zhpdiag-tutoriel/
Gabriel.

2011N2 · Answer

Bonjour,
En effet le site est hors-service en ce moment, essaye de le télécharger ici ça devrait fonctionner : https://toolslib.net/downloads/viewdownload/9-zhpdiag/
Désolé pour la gêne occasionnée.
Gabriel.

simco · Answer

~ ZHPDiag v2016.11.28.232 Par Nicolas Coolman (2016/11/28)
~ Démarré par warha (Administrator)  (2016/12/08 12:46:47)
~ Web: https://nicolascoolman.eu
~ Blog: https://www.anti-malware.top
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:  Version KO
~ Mode: Scanner
~ Rapport: C:\Users\warha\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\warha\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Home, 64-bit  (Build 14393)  =>.Microsoft Corporation
---\ Navigateurs Internet (3) - 0s
~ GCIE: Google Chrome v54.0.2840.99
~ MFIE: Mozilla Firefox 50.0.2 (x86 fr)
~ MSIE: Internet Explorer v11.447.14393.0
---\ Informations sur les produits Windows (8) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows(R) Operating System, RETAIL channel
Windows ID Activation : OK
~ Windows Partial Key : 8HVX7
Windows License : OK
~ Windows Remaining Initializations Number :  1001
Windows Automatic Updates : OK
---\ Logiciels de protection (1) - 3s
Windows Defender  (Deactivate)
---\ Surveillance de Logiciels (2) - 4s
~ Adobe Flash Player 23 NPAPI (Surveillance)
~ Adobe Acrobat Reader DC - Français (Surveillance)
---\ Logiciels de partage P2P (1) - 4s
~ µTorrent v3.4.8.42449 (P2P)
---\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 16 Model 4 Stepping 2, AuthenticAMD
~ Operating System:  64-bit 
~ Boot mode: Normal (Normal boot)
Total RAM: 4193.392 MB (48% free) : OK  =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 170 GB (79%) free of 214 GB : OK  =>.Disk Space
---\ Mode de connexion au système (3) - 0s
~ Computer Name: DESKTOP-T0BE88P
~ User Name: warha
~ Logged in as Administrator
---\ Enumération des unités disques (2) - 0s
~ Drive C: has 170 GB free of 214 GB  (System)
~ Drive D: has 924 GB free of 953 GB
---\ Etat du Centre de Sécurité Windows (8) - 0s
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] AutoConfigUrl: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
---\ Recherche particulière de fichiers génériques (25) - 2s
[MD5.43BF96FCF50945BE35C22206980C9068] - 17/02/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [209568]  =>.Microsoft Windows®
[MD5.C7645D43451C6D94D87F4D07BDE59C89] - 17/02/2016 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32undll32.exe [209568]  =>.Microsoft Corporation
[MD5.99A19C9A74E2F9820E501DCE77F84F70] - 17/02/2016 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [209568]  =>.Microsoft Windows Publisher®
[MD5.7F08626131800B977DE92B7C0DF481A1] - 17/02/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [209568]  =>.Microsoft Corporation
[MD5.D243745884BCBC21E91AB569A0AD514E] - 17/02/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [209568]  =>.Microsoft Corporation
[MD5.9600B7F2F89DE60A80D13DE42F672834] - 17/02/2016 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [209568]  =>.Microsoft Corporation
[MD5.96B8A433F6407DE34850927C96C6CE9B] - 17/02/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [209568]  =>.Microsoft Windows®
[MD5.227CFE3EDA82029AAC1C088A16297CD7] - 17/02/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [209568]  =>.Microsoft Windows®
[MD5.7ABD5430F75A7FDDE5323B354C77514F] - 17/02/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [209568]  =>.Microsoft Corporation
[MD5.323AA1953ED9C01E23F740FA891FE064] - 17/02/2016 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [209568]  =>.Microsoft Windows®
[MD5.A10F989A812B57B9695F6C305907C9C6] - 17/02/2016 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [209568]  =>.Microsoft Windows®
[MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - 17/02/2016 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [209568]  =>.Microsoft Corporation
[MD5.613D0137C269187FA298A157E3D14A18] - 17/02/2016 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [209568]  =>.Microsoft Corporation
[MD5.0D1D392ED2597F295956D058D33BD7C3] - 17/02/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [209568]  =>.Microsoft Corporation
[MD5.10E3515FE5DBA6656FA62C29342EC4A1] - 17/02/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [209568]  =>.Microsoft Corporation
[MD5.B54B30992620C97230013A74461C8517] - 17/02/2016 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [209568]  =>.Microsoft Corporation
[MD5.F1DAECC3B3D6399875D4F10529D6A77C] - 17/02/2016 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [209568]  =>.Microsoft Corporation
[MD5.E671EDAB0726E05ECEF4058B4CD73C4D] - 17/02/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [209568]  =>.Microsoft Windows®
[MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - 17/02/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers
etBT.sys [209568]  =>.Microsoft Corporation
[MD5.DB69C6DA8B3DDFDC547D455CA23A8250] - 17/02/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers
tfs.sys [209568]  =>.Microsoft Windows®
[MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - 17/02/2016 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [209568]  =>.Microsoft Corporation
[MD5.17E565710172ED71B8531D8822E1C5D1] - 17/02/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [209568]  =>.Microsoft Corporation
[MD5.7135785C21CA79D270D11037C43D3F19] - 17/02/2016 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\driversdpdr.sys [209568]  =>.Microsoft Corporation
[MD5.9D2DD64A0B51C56285512DC9454340F6] - 17/02/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers	dx.sys [209568]  =>.Microsoft Windows®
[MD5.BF2546583BB75F01DDA60A7921DFB230] - 17/02/2016 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [209568]  =>.Microsoft Windows®
---\ Liste des services NT non Microsoft et non désactivés (16) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe  =>.Adobe Systems, Incorporated®
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe  =>.AMD
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe  =>.Advanced Micro Devices, Inc.®
O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe  =>.Apple Inc.®
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe  =>.AVG Technologies CZ, s.r.o.®
O23 - Service: AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o. - AVG Service Process.) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe  =>.AVG Technologies CZ, s.r.o.®
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe  =>.AVG Technologies CZ, s.r.o.®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe  =>.Apple Inc.®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  =>.Google Inc®
O23 - Service: Intel(R) Biometric and Context Agent Service (IntelBCAsvc) . (.Intel(R) Corporation - Intel(R) Biometric and Context Agent Servic.) - C:\Program Files\Intel\BCA\pabeSvc64.exe  =>.Intel(R) Biometric and Context Agent®
O23 - Service: Intel Security True Key (TrueKey) . (.McAfee, Inc. - Intel Security True Key.) - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe  =>.McAfee, Inc.®
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) . (.McAfee, Inc. - Intel Security True Key.) - C:\Program Files\TrueKey\McTkSchedulerService.exe  =>.McAfee, Inc.®
O23 - Service: Intel Security True Key Helper Service (TrueKeyServiceHelper) . (.McAfee, Inc. - McAfee TrueKey Service helper EXE.) - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe  =>.McAfee, Inc.®
O23 - Service: Cisco AnyConnect Secure Mobility Agent (vpnagent) . (.Cisco Systems, Inc. - VPN Agent Service.) - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
O23 - Service:  (vToolbarUpdater40.3.6) . (.AVG Secure Search - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe  =>.AVG Technologies CZ, s.r.o.®
O23 - Service: WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015 - WtuSyste Application.) - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe  =>.AVG Technologies CZ, s.r.o.®
---\ Services non Microsoft (SR=Démarré,SS=Stoppé) (23) - 20s
SR - Auto   [17/02/2016] [  209568]  Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe  =>.Adobe Systems, Incorporated®
SS - Demand [17/02/2016] [  209568]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe  =>.Adobe Systems Incorporated®
SR - Auto   [17/02/2016] [  209568]   (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\system32\atiesrxx.exe  =>.Microsoft Windows Hardware Compatibility Publisher®
SR - Auto   [17/02/2016] [  209568]  AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe  =>.Advanced Micro Devices, Inc.®
SR - Auto   [17/02/2016] [  209568]  Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe  =>.Apple Inc.®
SS - Demand [17/02/2016] [  209568]  AvgAMPS (AvgAMPS) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgamps.exe  =>.AVG Technologies CZ, s.r.o.®
SR - Auto   [17/02/2016] [  209568]  AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgidsagenta.exe  =>.AVG Technologies CZ, s.r.o.®
SR - Auto   [17/02/2016] [  209568]  AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe  =>.AVG Technologies CZ, s.r.o.®
SR - Auto   [17/02/2016] [  209568]  AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Av\avgwdsvca.exe  =>.AVG Technologies CZ, s.r.o.®
SR - Auto   [17/02/2016] [  209568]  Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe  =>.Apple Inc.®
SS - Demand [17/02/2016] [  209568]  Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe  =>.Disc Soft Ltd®
SS - Auto   [17/02/2016] [  209568]  Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SS - Demand [17/02/2016] [  209568]  Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe  =>.Google Inc®
SR - Auto   [17/02/2016] [  209568]  Intel(R) Biometric and Context Agent Service (IntelBCAsvc) . (.Intel(R) Corporation.) - C:\Program Files\Intel\BCA\pabeSvc64.exe  =>.Intel(R) Biometric and Context Agent®
SS - Demand [17/02/2016] [  209568]  Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe  =>.Apple Inc.®
SS - Demand [17/02/2016] [  209568]  McAfee Security Scan Component Host Service (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.11.427\McCHSvc.exe  =>.McAfee, Inc.®
SS - Demand [17/02/2016] [  209568]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe  =>.Mozilla Corporation®
SR - Auto   [17/02/2016] [  209568]  Intel Security True Key (TrueKey) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe  =>.McAfee, Inc.®
SR - Auto   [17/02/2016] [  209568]  Intel Security True Key Scheduler (TrueKeyScheduler) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McTkSchedulerService.exe  =>.McAfee, Inc.®
SR - Auto   [17/02/2016] [  209568]  Intel Security True Key Helper Service (TrueKeyServiceHelper) . (.McAfee, Inc..) - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe  =>.McAfee, Inc.®
SR - Auto   [17/02/2016] [  209568]  Cisco AnyConnect Secure Mobility Agent (vpnagent) . (.Cisco Systems, Inc..) - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
SR - Auto   [17/02/2016] [  209568]   (vToolbarUpdater40.3.6) . (.AVG Secure Search.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe  =>.AVG Technologies CZ, s.r.o.®
SR - Auto   [17/02/2016] [  209568]  WtuSystemSupport (WtuSystemSupport) . (.Copyright (C) 2015.) - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe  =>.AVG Technologies CZ, s.r.o.®
---\ Tâches planifiées en automatique (25) - 7s
[MD5.220ADB2D8475CF40556F61688D3A3EA3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [209568] (.Activate.)  =>.Adobe Systems, Incorporated®
[MD5.9BAF21BA600EC4E5FD9A66AD3E4FF5A6] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [209568] (.Activate.)  =>.Adobe Systems Incorporated®
[MD5.AE1FC04FEE778E5DB0CAC6ACE1E249FF] [APT] [AVG-SSU_1216tb] (.Copyright (C) 2016. All rights reserved..) -- C:\ProgramData\Avg_Update_1216tb\AVG-Secure-Search-Update_1216tb.exe   [209568] (.Activate.)  =>.AVG Technologies CZ, s.r.o.®
[MD5.AE1FC04FEE778E5DB0CAC6ACE1E249FF] [APT] [AVG-SSU_1216tb_DELETE] (.Copyright (C) 2016. All rights reserved..) -- C:\ProgramData\Avg_Update_1216tb\AVG-Secure-Search-Update_1216tb.exe   [209568] (.Activate.)  =>.AVG Technologies CZ, s.r.o.®
[MD5.27067191BF35D03B7F81E4E6E8111BD3] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe   [209568] (.Activate.)  =>.Piriform Ltd®
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [209568] (.Activate.)  =>.Google Inc®
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe   [209568] (.Activate.)  =>.Google Inc®
[MD5.AE8ED86C45C1947E7DB964DA39AE4845] [APT] [SamsungMagician] (.Samsung Electronics..) -- C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe   [209568] (.Deactivate.)  =>.Samsung Electronics Co., Ltd.®
[MD5.3DF2013014B496A04C877DDBFB892F20] [APT] [2BrightSparks\SyncBackFree\DESKTOP-T0BE88P-warha\Sauvegarde] (.2BrightSparks Pte. Ltd..) -- C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe   [209568] (.Activate.)  =>.2BrightSparks Pte. Ltd.®
[MD5.3DF2013014B496A04C877DDBFB892F20] [APT] [2BrightSparks\SyncBackFree\DESKTOP-T0BE88P-warha\SyncBackFree Musique] (.2BrightSparks Pte. Ltd..) -- C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe   [209568] (.Activate.)  =>.2BrightSparks Pte. Ltd.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job  [209568]   =>.Adobe Systems Incorporated®
O39 - APT: Unknown - (...) -- C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job  [209568] 
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job  [209568]   =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job  [209568]   =>.Google Inc®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task  [209568]   =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater  [209568]   =>.Adobe Systems Incorporated®
O39 - APT: AVG EUpdate Task - (...) -- C:\WINDOWS\System32\Tasks\AVG EUpdate Task  [209568]  (.Orphan.)  =>.Superfluous.Orphan
O39 - APT: AVG-SSU_1216tb - (.Copyright (C) 2016. All rights reserved..) -- C:\WINDOWS\System32\Tasks\AVG-SSU_1216tb  [209568]   =>.AVG Technologies CZ, s.r.o.®
O39 - APT: AVG-SSU_1216tb_DELETE - (.Copyright (C) 2016. All rights reserved..) -- C:\WINDOWS\System32\Tasks\AVG-SSU_1216tb_DELETE  [209568]   =>.AVG Technologies CZ, s.r.o.®
O39 - APT: AVG-SSU_1216tb_RML - (.Copyright (C) 2016. All rights reserved..) -- C:\WINDOWS\System32\Tasks\AVG-SSU_1216tb_RML  [209568]   =>.AVG Technologies CZ, s.r.o.®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC  [209568]   =>.Piriform Ltd®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore  [209568]   =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA  [209568]   =>.Google Inc®
O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task  [209568]   =>.Microsoft Corporation
O39 - APT: SamsungMagician - (.Samsung Electronics..) -- C:\WINDOWS\System32\Tasks\SamsungMagician  [209568]   =>.Samsung Electronics Co., Ltd.®
---\ Applications lancées au démarrage du système (14) - 0s
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe  =>.Apple Inc.®
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe  =>.Disc Soft Ltd®
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\warha\AppData\Roaming\Spotify\SpotifyWebHelper.exe  =>.Spotify AB®
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\warha\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\warha\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe  =>.Advanced Micro Devices, Inc.®
O4 - HKLM\..\Wow6432Node\Run: [AvgUi] . (.AVG Technologies CZ, s.r.o. - AVG Ui (Re)Starter.) -- C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe  =>.AVG Technologies CZ, s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG Ui (Re)Starter.) -- C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe  =>.AVG Technologies CZ, s.r.o.®
O4 - HKLM\..\Wow6432Node\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] . (.Cisco Systems, Inc. - Cisco AnyConnect User Interface.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe  =>.AVG Technologies CZ, s.r.o.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe  =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-484376626-624523504-2070109525-1002\..\Run: [DAEMON Tools Lite Automount] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTAgent.exe  =>.Disc Soft Ltd®
O4 - HKUS\S-1-5-21-484376626-624523504-2070109525-1002\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\warha\AppData\Roaming\Spotify\SpotifyWebHelper.exe  =>.Spotify AB®
O4 - HKUS\S-1-5-21-484376626-624523504-2070109525-1002\..\RunOnce: [Uninstall C:\Users\warha\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64] C:\Users\warha\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64 (.not file.)
---\ Processus lancés (33) - 2s
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [0] [PID.1284]  =>.AMD
[MD5.7B06BD62D6CFD065B94BE40F4634B130] - (.Cisco Systems, Inc. - VPN Agent Service.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [617984] [PID.1712] {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
[MD5.C92B0A0957ACAD3CEEF502A2CA10ACB8] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2372]  =>.Adobe Systems, Incorporated®
[MD5.3B3774C868868257533EC7E715BB6D53] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.2404]  =>.Apple Inc.®
[MD5.A9C66DB2581E80EC533738970DE00681] - (.AVG Technologies CZ, s.r.o. - AVG Service Process.) -- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128] [PID.2412]  =>.AVG Technologies CZ, s.r.o.®
[MD5.DE51F5BB5C05D4C831ECB6E1A70E1B5E] - (.Advanced Micro Devices, Inc. - Service Fusion Utility.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944] [PID.2420]  =>.Advanced Micro Devices, Inc.®
[MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.2436]  =>.Apple Inc.®
[MD5.F7D08D69508C0DCCE6D21C172E0D0406] - (.Intel(R) Corporation - Intel(R) Biometric and Context Agent Servic.) -- C:\Program Files\Intel\BCA\pabeSvc64.exe [3036312] [PID.2580]  =>.Intel(R) Biometric and Context Agent®
[MD5.178E484602BFBF1115D7B9817D0D2989] - (.McAfee, Inc. - McAfee TrueKey Service helper EXE.) -- C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864] [PID.2780]  =>.McAfee, Inc.®
[MD5.8FA25777713037F041D369F673CFB46A] - (.McAfee, Inc. - Intel Security True Key.) -- C:\Program Files\TrueKey\McTkSchedulerService.exe [16248] [PID.2788]  =>.McAfee, Inc.®
[MD5.8CD584C49A738630030023327AEA4524] - (.McAfee, Inc. - Intel Security True Key.) -- C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [920616] [PID.2796]  =>.McAfee, Inc.®
[MD5.CBBDC288FE6E59A2AECDF251E6F3E63C] - (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\Program Files (x86)\AVG\Av\avgrsa.exe [1296656] [PID.5032]  =>.AVG Technologies CZ, s.r.o.®
[MD5.E20FC4FC2F02A37CCE9ACC2ACB9BA668] - (.Copyright (C) 2015 - WtuSyste Application.) -- C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [980552] [PID.1100]  =>.AVG Technologies CZ, s.r.o.®
[MD5.8A46AEE1438647F7288106EC11832508] - (.AVG Secure Search - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe [1349704] [PID.9328]  =>.AVG Technologies CZ, s.r.o.®
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [0] [PID.10232]  =>.AMD
[MD5.0EC980270F8B08C472B9BBCB59714C15] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe [72192] [PID.4328]  =>.Skype Technologies
[MD5.1C86704AA82D7AB48B489E9B8B6481B9] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\warha\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1433712] [PID.2632]  =>.Spotify AB®
[MD5.A749ADFC9B74AC9BA906D292625AE4A5] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe [407816] [PID.8228]  =>.McAfee, Inc.®
[MD5.01C915A06DCD038C79705DCC556ABAB6] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [307400] [PID.3816]  =>.Advanced Micro Devices, Inc.®
[MD5.79875E209793026D54B3EE85166BC911] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1519888] [PID.7892]  =>.AVG Technologies CZ, s.r.o.®
[MD5.F7F43570449082C5A6B5FFAC21C1F79D] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [307912] [PID.4704]  =>.Advanced Micro Devices, Inc.®
[MD5.14CAFD4AA924830D5572DE4607E673B2] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\Av\avgui.exe [6759184] [PID.7516]  =>.AVG Technologies CZ, s.r.o.®
[MD5.60C06A8A619BE180D8DCDB88E8C1EC43] - (.Cisco Systems, Inc. - Cisco AnyConnect User Interface.) -- C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1034240] [PID.8532] {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
[MD5.090D95190F02F5BC351C97CFD560AA20] - (.Copyright (C) 2012 - VProtect Application.) -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2180680] [PID.4196]  =>.AVG Technologies CZ, s.r.o.®
[MD5.7417B94087F8A083A368508266B327FF] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\Av\avgwdsvca.exe [727512] [PID.10140]  =>.AVG Technologies CZ, s.r.o.®
[MD5.F521C7C0DC19A1F7F54EC7987677FD2B] - (...) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [19456] [PID.7800]
[MD5.77CE974870F0E0AEA1038CD7F61A45F3] - (...) -- C:\Program Files\WindowsApps\Microsoft.XboxApp_22.24.1006.0_x64__8wekyb3d8bbwe\XboxApp.exe [17408] [PID.8108]
[MD5.DE8FD9A67B9703A1CAFC8A6CFEAF7E2B] - (.AVG Technologies CZ, s.r.o. - AVG Scanning Core Module - Server Part.) -- C:\Program Files (x86)\AVG\Av\avgcsrva.exe [1186064] [PID.2832]  =>.AVG Technologies CZ, s.r.o.®
[MD5.AE1FC04FEE778E5DB0CAC6ACE1E249FF] - (.Copyright (C) 2016. All rights reserved. - .) -- C:\ProgramData\Avg_Update_1216tb\AVG-Secure-Search-Update_1216tb.exe [2049096] [PID.2896]  =>.AVG Technologies CZ, s.r.o.®
[MD5.AE1FC04FEE778E5DB0CAC6ACE1E249FF] - (.Copyright (C) 2016. All rights reserved. - .) -- C:\ProgramData\Avg_Update_1216tb\AVG-Secure-Search-Update_1216tb.exe [2049096] [PID.7120]  =>.AVG Technologies CZ, s.r.o.®
[MD5.D6F38FD2B90CD7DC139279BB73DD0C7B] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [510920] [PID.10936]  =>.Mozilla Corporation®
[MD5.5B8F3BBA71E442CB34FE54069EF9C306] - (.Microsoft® Windows® Operating System - Task Manager.) -- C:\Windows\System32\Taskmgr.exe [1120256] [PID.3304]  =>.Microsoft Windows®
[MD5.382221669A48E195BDE6D2750C385446] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\warha\Downloads\zhpdiag_2016.11.28.232.exe [2503680] [PID.11128]  =>.Nicolas Coolman
---\ Google Chrome, Démarrage,Recherche,Extensions (14) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://192.168.1.124:34992
G0 - GCSP: Preferences [User Data\Default][HomePage] https://www.avg.com/fr-fr/web-tuneup
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] __MSG_name__  =>.AdblocPlus Plugin
G2 - GCE: Preference [User Data\Default] [chfdnecihphmhljaaejmgoiahnihplgn] AVG Web TuneUp
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [mbckjcfnjmoiinpgddefodcighgikkgn] AVG SafePrice
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router  =>.Google Inc.
---\ Firefox, Plugins,Demarrage,Recherche,Extensions (9) - 2s
P2 - EXT FILE: (.AVG Web TuneUp - AVG Web TuneUp optimizes your online b.) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\extensions\avg@toolbar.xpi  =>.AVG Web TuneUp
P2 - EXT FILE: (.AVG SafePrice - AVG SafePrice - safe shopping extensio.) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\extensions\sp@avg.com.xpi  =>.AVG SafePrice
P2 - EXT FILE: (.Zotero - .) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\extensions\zotero@chnm.gmu.edu.xpi  =>.Zotero
P2 - EXT FILE: (.ZotFile - Advanced PDF management for Zotero.) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\extensions\zotfile@columbia.edu.xpi  =>.ZotFile
P2 - EXT FILE: (.AVG Secure Search - AVG Secure Search.) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\searchplugins\avg-secure-search.xml  =>.AVG Secure Search
P2 - EXT: (.Center for History and New Media - Zotero Word for Windows Integration.) -- C:\Users\warha\AppData\Roaming\Mozilla\Firefox\Profiles\vgnztdel.default\extensions\zoteroWinWordIntegration@zotero.org  =>.Center for History and New Media
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_207.dll  =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (.Apple Inc..) -- C:\Program Files (x86)\iTunes\Mozilla Plugins
pitunes.dll  =>.Apple Inc.
P2 - FPN: [HKLM] [@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin] - (...) -- C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.6\npsitesafety.dll
---\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mysearch.avg.com/  =>.AVG Software
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/  =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons  =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk  =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan  =>.Microsoft Internet Explorer
---\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies http://no-stop.org/  =>Hijacker.Proxy
---\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.)  =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=
---\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (27)
---\ Browser Helper Object de navigateur (BHO) (3) - 0s
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\OCHelper.dll  =>.Microsoft Corporation®
O2 - BHO: AVG Web TuneUp [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.AVG - AVG Web TuneUp.dll.) -- C:\Program Files (x86)\AVG Web TuneUp\4.3.6.255\AVG Web TuneUp.dll  =>.AVG Technologies CZ, s.r.o.®
O2 - BHO: Microsoft OneDrive for Business Browser Helper [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} . (.Microsoft Corporation - Microsoft OneDrive for Business Extensions.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\GROOVEEX.DLL  =>.Microsoft Corporation®
---\ Raccourcis Global Startup (76) - 3s
O4 - GS\Desktop [Administrateur]: MediaHuman YouTube to MP3 Converter.lnk . (...) C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\YouTubeToMP3.exe    =>.MediaHuman (Vyacheslav Anatolievich Parygin IP)®
O4 - GS\Desktop [Administrateur]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\warha\AppData\Roaming\Spotify\Spotify.exe    =>.Spotify AB®
O4 - GS\Desktop [Administrateur]: Travail de Bachelor.lnk . (...) D:\Documents\Université\Travail de Bachelor  
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (...) C:\Users\warha\AppData\Roaming\ZHP\ZHPDiag3.exe  
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe    =>.Google Inc®
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo   =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo   =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe    =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner64.exe    =>.Piriform Ltd
O4 - GS\TaskBar [Administrateur]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe    =>.Apple Inc.
O4 - GS\TaskBar [Administrateur]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe    =>.Mozilla Corporation®
O4 - GS\Programs [Administrateur]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe    =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\warha\AppData\Local\Microsoft\OneDrive\OneDrive.exe    =>.Microsoft Corporation®
O4 - GS\Programs [Administrateur]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\warha\AppData\Roaming\Spotify\Spotify.exe    =>.Spotify AB®
O4 - GS\Desktop [warha]: MediaHuman YouTube to MP3 Converter.lnk . (...) C:\Program Files (x86)\MediaHuman\YouTube to MP3 Converter\YouTubeToMP3.exe    =>.MediaHuman (Vyacheslav Anatolievich Parygin IP)®
O4 - GS\Desktop [warha]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\warha\AppData\Roaming\Spotify\Spotify.exe    =>.Spotify AB®
O4 - GS\Desktop [warha]: Travail de Bachelor.lnk . (...) D:\Documents\Université\Travail de Bachelor  
O4 - GS\Desktop [warha]: ZHPDiag.lnk . (...) C:\Users\warha\AppData\Roaming\ZHP\ZHPDiag3.exe  
O4 - GS\Quicklaunch [warha]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe    =>.Google Inc®
O4 - GS\sendTo [warha]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo   =>.Microsoft Corporation
O4 - GS\sendTo [warha]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo   =>.Microsoft Corporation
O4 - GS\sendTo [warha]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - .) C:\Windows\System32\fsquirt.exe    =>.Microsoft Corporation
O4 - GS\TaskBar [warha]: CCleaner.lnk . (.Piriform Ltd - .) C:\Program Files (x86)\CCleaner\CCleaner64.exe    =>.Piriform Ltd
O4 - GS\TaskBar [warha]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe    =>.Apple Inc.
O4 - GS\TaskBar [warha]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe    =>.Mozilla Corporation®
O4 - GS\Programs [warha]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe    =>.Microsoft Corporation
O4 - GS\Programs [warha]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\warha\AppData\Local\Microsoft\OneDrive\OneDrive.exe    =>.Microsoft Corporation®
O4 - GS\Programs [warha]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\warha\AppData\Roaming\Spotify\Spotify.exe    =>.Spotify AB®
O4 - GS\CommonDesktop [Public]: Acrobat Reader DC.lnk . (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe    =>.Adobe Systems, Incorporated®
O4 - GS\CommonDesktop [Public]: AVG.lnk . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /zen.open_ui   =>.AVG Technologies CZ, s.r.o.®
O4 - GS\CommonDesktop [Public]: iTunes.lnk . (.Apple Inc. - .) C:\Program Files (x86)\iTunes\iTunes.exe    =>.Apple Inc.
O4 - GS\CommonDesktop [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee.) C:\Program Files\McAfee Security Scan\3.11.427\McUICnt.exe SecurityScanner.dll   =>.McAfee, Inc.®
O4 - GS\CommonDesktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe    =>.Mozilla Corporation®
O4 - GS\CommonDesktop [Public]: PDFCreator.lnk . (.pdfforge - PDFCreator.) C:\Program Files\PDFCreator\PDFCreator.exe    =>.pdfforge GmbH®
O4 - GS\CommonDesktop [Public]: R i386 3.3.2.lnk . (.R Core Team 1995-2016 - R for Windows GUI front-end.) C:\Program Files\R\R-3.3.2\bin\i386\Rgui.exe  
O4 - GS\CommonDesktop [Public]: R x64 3.3.2.lnk . (.R Core Team 1995-2016 - R for Windows GUI front-end.) C:\Program Files\R\R-3.3.2\bin\x64\Rgui.exe  
O4 - GS\CommonDesktop [Public]: True Key.lnk . (...) C:\Program Files\Intel Security\True Key\application	ruekey.exe --open-source=dtopicon   =>.McAfee, Inc.®
O4 - GS\CommonDesktop [Public]: XLSTAT 2016.lnk . (...) C:\Program Files (x86)\Addinsoft\XLSTAT\XLSTATSTART.exe "C:\Program Files (x86)\Addinsoft\XLSTAT"  {1121A745FAE4B35474B309065778B341F8D9}
O4 - GS\CommonDesktop [Public]: Zotero Standalone.lnk . (.Mozilla Foundation - .) C:\Program Files (x86)\Zotero Standalone\zotero.exe    =>.Corporation for Digital Scholarship®
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe    =>.Microsoft Corporation
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\warha\AppData\Local\Microsoft\OneDrive\OneDrive.exe    =>.Microsoft Corporation®
O4 - GS\Programs [Public]: Spotify.lnk . (.Spotify Ltd - Spotify.) C:\Users\warha\AppData\Roaming\Spotify\Spotify.exe    =>.Spotify AB®
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe    =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32
otepad.exe    =>.Microsoft Corporation
O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) C:\Program Files\McAfee Security Scan\3.11.427\SSScheduler.exe    =>.McAfee, Inc.®
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1   =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe    =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe    =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe    =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Officeoot\Office16\MSACCESS.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico    =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Apple Software Update.lnk . (...) C:\Windows\Installer\{56EC47AA-5813-4FF6-8E75-544026FBEA83}\AppleSoftwareUpdateIco.exe  
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Officeoot\Office16\EXCEL.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe    =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe    =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: MiracastView.lnk . (.Microsoft Corporation - MiracastView.) C:\WINDOWS\MiracastView\MiracastView.exe    =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files (x86)\Mozilla Firefox\firefox.exe    =>.Mozilla Corporation®
O4 - GS\ProgramsCommon [Public]: OneDrive Entreprise.lnk . (.Microsoft Corporation - Microsoft OneDrive for Business.) C:\Program Files (x86)\Microsoft Officeoot\Office16\GROOVE.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Officeoot\Office16\ONENOTE.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Officeoot\Office16\OUTLOOK.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: paint.net.lnk . (.dotPDN LLC - .) C:\Program Files (x86)\paint.net\PaintDotNet.exe    =>.dotPDN LLC
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Officeoot\Office16\POWERPNT.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PrintDialog.lnk . (.Microsoft Corporation - Print Dialog.) C:\WINDOWS\PrintDialog\PrintDialog.exe    =>.Microsoft Windows®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Officeoot\Office16\MSPUB.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Skype Entreprise 2016.lnk . (.Microsoft Corporation - Skype for Business.) C:\Program Files (x86)\Microsoft Officeoot\Office16\lync.exe    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: True Key.lnk . (...) C:\Program Files\Intel Security\True Key\application	ruekey.exe --open-source=startmenu   =>.McAfee, Inc.®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1   =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Officeoot\Office16\WINWORD.EXE    =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Zotero Standalone.lnk . (.Mozilla Foundation - .) C:\Program Files (x86)\Zotero Standalone\zotero.exe    =>.Corporation for Digital Scholarship®
---\ Modification Domaine/Adresses DNS (6) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = MSHOME
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = unifr.ch,MSHOME
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{9361327a-12d5-480a-9363-c08f594797fa}: DhcpNameServer = 192.168.1.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{aea44c5d-10e8-4b57-9225-3f29cb290e67}: DhcpNameServer = 192.168.1.1  =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{aea44c5d-10e8-4b57-9225-3f29cb290e67}: DhcpDomain = MSHOME
---\ Protocole additionnel (26) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll  =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll  =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll  =>.Microsoft Corporation
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll  =>.Microsoft Corporation
O18 - Handler: mso-minsb-roaming.16 [64Bits] - {83C25742-A9F7-49FB-9138-434302C88D07} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\MSOSB.DLL  =>.Microsoft Corporation®
O18 - Handler: mso-minsb.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\MSOSB.DLL  =>.Microsoft Corporation®
O18 - Handler: osf-roaming.16 [64Bits] - {42089D2D-912D-4018-9087-2B87803E93FB} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\MSOSB.DLL  =>.Microsoft Corporation®
O18 - Handler: osf.16 [64Bits] - {5504BE45-A83B-4808-900A-3A5C36E7F77A} . (.Microsoft Corporation - Microsoft Office 2016 component.) -- C:\Program Files (x86)\Microsoft Officeoot\Office16\MSOSB.DLL  =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64	bauth.dll  =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll  =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll  =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64	bauth.dll  =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll  =>.Microsoft Corporation
---\ Logiciels installés (52) - 6s
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent  =>.BitTorrent Inc.
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100}  =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 23 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI  =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824205020}  =>.Adobe Systems Incorporated
O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp  =>.Advanced Micro Devices, Inc.®
O42 - Logiciel: Apple Application Support (32 bits) - (.Apple Inc..) [HKLM][64Bits] -- {D4B07658-F443-4445-A261-E643996E139D}  =>.Apple Inc.
O42 - Logiciel: Apple Application Support (64 bits) - (.Apple Inc..) [HKLM][64Bits] -- {A6B0442B-E159-444B-B49D-6B9AC531EAE3}  =>.Apple Inc.
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {2E4AF2A6-50EA-4260-9BA4-5E582D11879A}  =>.Apple Inc.
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {56EC47AA-5813-4FF6-8E75-544026FBEA83}  =>.Apple Inc.
O42 - Logiciel: AVG - (.AVG Technologies.) [HKLM][64Bits] -- {3D49031D-AEDF-4FC2-816F-CCE428CFA58A}  =>.AVG Technologies
O42 - Logiciel: AVG - (.AVG Technologies.) [HKLM][64Bits] -- AvgZen  =>.AVG Technologies CZ, s.r.o.®
O42 - Logiciel: AVG 2016 - (.AVG Technologies.) [HKLM][64Bits] -- {E6D91868-5C9A-4E48-93CD-4F3603E3042C}  =>.AVG Technologies
O42 - Logiciel: AVG Protection - (.AVG Technologies.) [HKLM][64Bits] -- AVG  =>.AVG Technologies CZ, s.r.o.®
O42 - Logiciel: AVG Web TuneUp - (.AVG Technologies.) [HKLM][64Bits] -- AVG Web TuneUp  =>.AVG Technologies CZ, s.r.o.®
O42 - Logiciel: AVG Zen - (.AVG Technologies.) [HKLM][64Bits] -- {50B62078-D231-46A3-BA7C-23DCFA0E6101}  =>.AVG Technologies
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {56DDDFB8-7F79-4480-89D5-25E1F52AB28F}  =>.Apple Inc.
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner  =>.Piriform Ltd®
O42 - Logiciel: Cisco AnyConnect Secure Mobility Client  - (.Cisco Systems, Inc..) [HKLM][64Bits] -- Cisco AnyConnect Secure Mobility Client {6EF03BA4D6D4EE8E886A4B8C07C99DEC}  =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco AnyConnect Secure Mobility Client - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {EA0F6FCD-988A-41DE-9D87-036C6B7C545D}  =>.Cisco Systems, Inc.
O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite  =>.Disc Soft Ltd®
O42 - Logiciel: FMW 1 - (.AVG Technologies.) [HKLM][64Bits] -- {444D68CD-FF23-4EC0-BD17-303BC4E06A5E}  =>.AVG Technologies
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome  =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA}  =>.Google Inc.
O42 - Logiciel: Intel Security True Key - (.Intel Security.) [HKLM][64Bits] -- TrueKey  =>.McAfee, Inc.®
O42 - Logiciel: Intel(R) Biometric and Context Agent - (.Intel Corporation.) [HKLM][64Bits] -- {67619AAE-5530-4DDC-843E-426BCE8E6CAE}  =>.Intel Corporation
O42 - Logiciel: Intel(R) Biometric and Context Agent Redistributables - (.Intel Corporation.) [HKLM][64Bits] -- {F99EA1E7-EAAA-4C71-829E-850D8057F71A}  =>.Intel Corporation
O42 - Logiciel: Intel® RealSense™ SDK 2014 Runtime  (x64): Core - (.Intel Corporation.) [HKLM][64Bits] -- {37D41A97-6B02-4C30-8753-85107BE1D674}  =>.Intel Corporation
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {955524E7-79EB-4CA9-BA4D-FD2DF587651B}  =>.Apple Inc.
O42 - Logiciel: Kyocera Product Library - (.KYOCERA Document Solutions Inc..) [HKLM][64Bits] -- Kyocera Product Library
O42 - Logiciel: McAfee Security Scan Plus - (.McAfee, Inc..) [HKLM][64Bits] -- McAfee Security Scan  =>.McAfee, Inc.®
O42 - Logiciel: MediaHuman YouTube to MP3 Converter version 3.9.8.3 - (..) [HKLM][64Bits] -- MediaHuman YouTube to MP3 Converter_is1  =>.MediaHuman (Vyacheslav Anatolievich Parygin IP)®
O42 - Logiciel: Mozilla Firefox 50.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 50.0.2 (x86 fr)  =>.Mozilla Corporation®
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService  =>.Mozilla
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++  =>.Notepad++ Team
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE}  =>.Microsoft Corporation
O42 - Logiciel: paint.net - (.dotPDN LLC.) [HKLM][64Bits] -- {DD393E4D-76FA-4CCD-84F3-CD9D75C14862}  =>.dotPDN LLC
O42 - Logiciel: PDFCreator - (.pdfforge GmbH.) [HKLM][64Bits] -- {0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}  =>.pdfforge GmbH
O42 - Logiciel: R for Windows 3.3.2 - (.R Core Team.) [HKLM][64Bits] -- R for Windows 3.3.2_is1  =>.R Core Team
O42 - Logiciel: RStudio - (.RStudio.) [HKLM][64Bits] -- RStudio  =>.RStudio
O42 - Logiciel: Samsung Data Migration - (.Samsung.) [HKLM][64Bits] -- {3B304604-0BF5-488E-AB95-F2F2E31206F3}  =>.Samsung
O42 - Logiciel: Samsung Magician - (.Samsung Electronics.) [HKLM][64Bits] -- {29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1  =>.Samsung Electronics Co., Ltd.®
O42 - Logiciel: Spotify - (.Spotify AB.) [HKCU][64Bits] -- Spotify  =>.Spotify AB®
O42 - Logiciel: SyncBackFree - (.2BrightSparks.) [HKLM][64Bits] -- SyncBackFree_is1  =>.2BrightSparks Pte. Ltd.®
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484}  =>.AVG Technologies
O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}  =>.AVG Technologies CZ, s.r.o.
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player  =>.VideoLAN
O42 - Logiciel: WinRAR 5.31 (64-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver  =>.win.rar GmbH®
O42 - Logiciel: XLSTAT 2016 - (.Addinsoft.) [HKLM][64Bits] -- {68B36FA5-E276-4C03-A56C-EC25717E1668}  =>.Addinsoft
O42 - Logiciel: Zotero Standalone 4.0.29.10 (x86 en-US) - (.Zotero.) [HKLM][64Bits] -- Zotero Standalone 4.0.29.10 (x86 en-US)  =>.Corporation for Digital Scholarship®
---\ HKCU & HKLM Software Keys (76) - 6s
HKLM\SOFTWARE\Wow6432Node\2BrightSparks  =>.2BrightSparks
HKLM\SOFTWARE\Wow6432Node\Addinsoft  =>.Addinsoft
HKLM\SOFTWARE\Wow6432Node\Adobe  =>.Adobe
HKLM\SOFTWARE\Wow6432Node\Apple Inc.  =>.Apple Inc.
HKLM\SOFTWARE\Wow6432Node\ATI  =>.ATI
HKLM\SOFTWARE\Wow6432Node\ATI Technologies  =>.ATI Technologies
HKLM\SOFTWARE\Wow6432Node\AVG  =>.AVG Software
HKLM\SOFTWARE\Wow6432Node\Avg Secure Update  =>.AVG Software
HKLM\SOFTWARE\Wow6432Node\AVG Tuneup  =>.AVG Software
HKLM\SOFTWARE\Wow6432Node\AVG Web TuneUp  =>.AVG Web TuneUp
HKLM\SOFTWARE\Wow6432Node\Caphyon  =>.Caphyon
HKLM\SOFTWARE\Wow6432Node\Cisco  =>.Cisco
HKLM\SOFTWARE\Wow6432Node\Google  =>.Google
HKLM\SOFTWARE\Wow6432Node\IM Providers  =>.IM Providers
HKLM\SOFTWARE\Wow6432Node\Intel  =>.Intel
HKLM\SOFTWARE\Wow6432Node\Intel Security  =>.Intel Security
HKLM\SOFTWARE\Wow6432Node\Khronos  =>.Khronos
HKLM\SOFTWARE\Wow6432Node\Macromedia  =>.Macromedia
HKLM\SOFTWARE\Wow6432Node\McAfee  =>.McAfee
HKLM\SOFTWARE\Wow6432Node\McAfee.com  =>.McAfee.com
HKLM\SOFTWARE\Wow6432Node\mcafeeupdater  =>.McAfee Inc.
HKLM\SOFTWARE\Wow6432Node\Miner3D
HKLM\SOFTWARE\Wow6432Node\Mozilla  =>.Mozilla
HKLM\SOFTWARE\Wow6432Node\mozilla.org  =>.mozilla.org
HKLM\SOFTWARE\Wow6432Node\MozillaPlugins  =>.MozillaPlugins
HKLM\SOFTWARE\Wow6432Node\Notepad++  =>.Don HO
HKLM\SOFTWARE\Wow6432Node\ODBC  =>.DB Connectivity Solutions
HKLM\SOFTWARE\Wow6432Node\R-core
HKLM\SOFTWARE\Wow6432Node\RStudio  =>.RStudio
HKLM\SOFTWARE\Wow6432Node\Samsung  =>.Samsung
HKLM\SOFTWARE\Wow6432Node\Samsung Magician  =>.Samsung Electronics
HKLM\SOFTWARE\Wow6432Node\TrueKey  =>.Intel Corporation
HKLM\SOFTWARE\Wow6432Node\VideoLAN  =>.VideoLAN
HKLM\SOFTWARE\Wow6432Node\WinClon4.0
HKLM\SOFTWARE\Wow6432Node\WOW6432Node  =>.Microsoft Corporation
HKLM\SOFTWARE\Wow6432Node\wtu  =>.WTU
HKLM\SOFTWARE\Wow6432Node\XLSTAT+
HKLM\SOFTWARE\Wow6432Node\Zotero  =>.Zotero
HKLM\SOFTWARE\Wow6432Node\zotero.org
HKLM\SOFTWARE\Wow6432Node\RegisteredApplications  =>.Microsoft Corporation
HKCU\SOFTWARE\2BrightSparks  =>.2BrightSparks
HKCU\SOFTWARE\Adobe  =>.Adobe
HKCU\SOFTWARE\AppDataLow  =>.Microsoft Corporation
HKCU\SOFTWARE\Apple Computer, Inc.  =>.Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.  =>.Apple Inc.
HKCU\SOFTWARE\ATI  =>.ATI
HKCU\SOFTWARE\Avg  =>.AVG Software
HKCU\SOFTWARE\AVG SafePrice
HKCU\SOFTWARE\Avg Secure Update  =>.AVG Software
HKCU\SOFTWARE\AVG Web TuneUp  =>.AVG Web TuneUp
HKCU\SOFTWARE\BitTorrent  =>.BitTorrent
HKCU\SOFTWARE\Cisco  =>.Cisco
HKCU\SOFTWARE\Disc Soft  =>.Disc Soft
HKCU\SOFTWARE\Google  =>.Google
HKCU\SOFTWARE\IM Providers  =>.IM Providers
HKCU\SOFTWARE\Intel Security  =>.Intel Security
HKCU\SOFTWARE\Kyocera Mita  =>.Kyocera Mita
HKCU\SOFTWARE\Macromedia  =>.Macromedia
HKCU\SOFTWARE\MediaHuman  =>.MediaHuman
HKCU\SOFTWARE\Miner3D
HKCU\SOFTWARE\Mozilla  =>.Mozilla
HKCU\SOFTWARE\Netscape  =>.Netscape
HKCU\SOFTWARE\ODBC  =>.DB Connectivity Solutions
HKCU\SOFTWARE\pdfforge  =>.pdfforge
HKCU\SOFTWARE\Piriform  =>.Piriform
HKCU\SOFTWARE\QtProject  =>.QtProject
HKCU\SOFTWARE\RegisteredApplications  =>.Microsoft Corporation
HKCU\SOFTWARE\Spotify  =>.Spotify
HKCU\SOFTWARE\SyncEngines  =>.Microsoft Corporation
HKCU\SOFTWARE\TrueKey  =>.Intel Corporation
HKCU\SOFTWARE\WinRAR  =>.WinRAR
HKCU\SOFTWARE\WinRAR SFX  =>.WinRAR
HKCU\SOFTWARE\Wow6432Node  =>.Microsoft Corporation
HKCU\SOFTWARE\XLSTAT+
HKCU\SOFTWARE\ZebHelpProcess Helper  =>.Nicolas Coolman
HKCU\SOFTWARE\AppDataLow\Software  =>.Microsoft Corporation
---\ Contenu des dossiers Programmes (222) - 13s
O43 - CFD: 27/09/2016 - [] D -- C:\Program Files\AMD  =>.Advanced Micro Devices, Inc.®
O43 - CFD: 27/09/2016 - [] AD -- C:\Program Files\ATI Technologies  =>.Advanced Micro Devices, Inc.®
O43 - CFD: 05/12/2016 - [] D -- C:\Program Files\AVG Web TuneUp  =>.AVG Web TuneUp
O43 - CFD: 04/08/2016 - [] AD -- C:\Program Files\Bonjour  =>.Apple Inc.®
O43 - CFD: 04/08/2016 - [] AD -- C:\Program Files\CCleaner  =>.Pirifo

2011N2 · Answer

Bonjour,
Si si je suis toujours là, mais il faudrait que tu héberges le rapport sur cjoint comme demandé il est trop long pour rentrer directement dans une réponse sur le forum.
Gabriel.

2011N2 · Answer

Bonsoir,
Pas de souci. Fais ZHPFix comme ceci avec ces lignes, et poste le rapport.
Gabriel.

2011N2 · Answer

Bonjour,
Bien, comment se comporte le PC ?
Passe MBAM et poste le rapport : http://www.forum-entraide-informatique.com/malwarebytes-anti-malware-mbam-tutoriel/
Gabriel.

2011N2 · Answer

Bonjour,
Si c'est bon pour le rapport, j'ai juste de gros soucis de connexion au forum en ce moment c'est compliqué...
Peux-tu me dire sur quel(s) navigateur(s) il te reste des soucis stp ? Fais un nouveau rapport ZHPDiag en même temps stp (penser de l'héberger sur cjoint comme précédemment pour le poster).
Merci et désolé pour le délai.
Gabriel.

Problème clic droit ouvre pub

9 réponses

Discussions similaires

Newsletters