Sujet Précédent Sujet Suivant

Analyse ZHPdiag trouve 6 virus ...

Résolu/Fermé
jeff4342 Messages postés 6 Date d'inscription mardi 28 mars 2017 Statut Membre Dernière intervention 28 mars 2017 - Modifié le 28 mars 2017 à 18:20
jmdepise Messages postés 1646 Date d'inscription jeudi 30 janvier 2014 Statut Contributeur sécurité Dernière intervention 8 août 2019 - 31 mars 2017 à 20:23
Bonjour,
Suite à analyse ZHPdiag, 6 virus trouvés...
Merci de m'indiquer la marche à suivre...
~ ZHPDiag v2017.3.28.54 Par Nicolas Coolman (2017/03/28)
~ Démarré par Jean François (Administrator) (2017/03/28 18:04:16)
~ Web: https://nicolascoolman.eu
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: D:\Données Utilisateur\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Jean François\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 64-bit Service Pack 1 (Build 7601) =>.Microsoft Corporation

---\\ Navigateurs Internet (1) - 0s
~ MSIE: Internet Explorer v11.0.9600.18617

---\\ Informations sur les produits Windows (4) - 3s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection (1) - 1s
Malwarebytes Anti-Malware version 2.2.1.1043 (Protection)

---\\ Surveillance de Logiciels (2) - 1s
~ Adobe Flash Player 24 PPAPI (Surveillance)
~ Adobe Acrobat Reader DC - Français (Surveillance)

---\\ Logiciels de partage P2P (1) - 1s
~ qBittorrent 3.3.4 v3.3.4 (P2P)

---\\ Informations sur le système (6) - 0s
~ Operating System: Intel64 Family 6 Model 94 Stepping 3, GenuineIntel
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 16689.96 MB (78% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 150 GB (65%) free of 228 GB : OK =>.Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: DCE-WORKSTATION
~ User Name: Jean François
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 150 GB free of 228 GB (System)
~ Drive D: has 915 GB free of 953 GB

---\\ Etat du Centre de Sécurité Windows (12) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] AutoConfigUrl: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 2s
[MD5.38AE1B3C38FAEF56FE4907922F0385BA] - 29/08/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [3229696] =>.Microsoft Corporation
[MD5.DD81D91FF3B0763C392422865C9AC12E] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [45568] =>.Microsoft Corporation
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [129024] =>.Microsoft Corporation
[MD5.12A878FBA402BA816EE868A423613A1B] - 04/03/2017 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [3241984] =>.Microsoft Corporation
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - 27/08/2015 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [455168] =>.Microsoft Corporation
[MD5.067FA52BFB59A56110A12312EF9AF243] - 21/11/2010 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [232448] =>.Microsoft Corporation
[MD5.492D07D79E7024CA310867B526D9636D] - 27/08/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [357888] =>.Microsoft Corporation
[MD5.B40420876B9288E0A1C8CCA8A84E5DC9] - 27/08/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\Syswow64\dnsapi.dll [270336] =>.Microsoft Corporation
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - 12/04/2011 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - 01/12/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [497664] =>.Microsoft Corporation
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [24128] =>.Microsoft Windows®
[MD5.B8BD2BB284668C84865658C77574381A] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation
[MD5.F036CE71586E93D94DAB220D7BDF4416] - 21/11/2010 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [147456] =>.Microsoft Corporation
[MD5.9B38580063D281A99E68EF5813022A5F] - 08/09/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [106496] =>.Microsoft Corporation
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - 21/11/2010 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [122368] =>.Microsoft Corporation
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [105472] =>.Microsoft Corporation
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [116224] =>.Microsoft Corporation
[MD5.819426D736BCBD31CC7CA27221954E04] - 09/02/2017 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [159744] =>.Microsoft Corporation
[MD5.E47D571FEC2C76E867935109AB2A770C] - 11/05/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [262144] =>.Microsoft Corporation
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - 11/01/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1684416] =>.Microsoft Windows®
[MD5.0086431C29C35BE1DBC43F52CC273887] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [97280] =>.Microsoft Corporation
[MD5.471815800AE33E6F1C32FB1B97C490CA] - 21/11/2010 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [129536] =>.Microsoft Corporation
[MD5.1B6163C503398B23FF8B939C67747683] - 21/11/2010 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [165888] =>.Microsoft Corporation
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [93184] =>.Microsoft Corporation
[MD5.AA77EB517D2F07A947294F260E3ACA83] - 01/12/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [118272] =>.Microsoft Corporation
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - 21/11/2010 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [295808] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (16) - 0s
O23 - Service: Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc. - Autodesk Application Manager.) - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe =>.Autodesk, Inc®
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Nemetschek Allplan Updatelauncher Service 2015 (AllplanUpdateLauncher 2015) . (.Nemetschek Allplan Systems GmbH - AllplanUpdateLauncher.) - C:\Program Files\Nemetschek\AllplanUpdateLauncher 2015\AllplanUpdateLauncher.exe =>.NEMETSCHEK Allplan Systems GmbH®
O23 - Service: Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc. - AutoCAD component.) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe =>.Autodesk, Inc®
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe =>.WIBU-SYSTEMS AG®
O23 - Service: Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - C:\Windows\system32\EscSvc64.exe =>.Seiko Epson Corporation
O23 - Service: EPSON V3 Service4(06) (EPSON_PM_RPCV4_06) . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE =>.SEIKO EPSON Corporation®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Intel(R) Local Management Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
O23 - Service: MyEpson Portal Service (MyEpson Portal Service) . (.SEIKO EPSON CORPORATION - MyEpson Portal Service.) - C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe =>.SEIKO EPSON CORPORATION®
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 362.1.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation
O23 - Service: NVIDIA WMI Provider (NVWMI) . (.Auteurs - .) - C:\Windows\system32\nvwmi64.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
O23 - Service: Unchecky (Unchecky) . (.RaMMicHaeL - Unchecky Service.) - C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe =>.Reason Software Company Inc.®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (23) - 6s
SR - Auto [05/12/2014] [ 599944] Autodesk Application Manager Service (AdAppMgrSvc) . (.Autodesk Inc..) - C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe =>.Autodesk, Inc®
SR - Auto [19/12/2016] [ 82640] Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
SR - Auto [30/10/2014] [ 16680] Nemetschek Allplan Updatelauncher Service 2015 (AllplanUpdateLauncher 2015) . (.Nemetschek Allplan Systems GmbH.) - C:\Program Files\Nemetschek\AllplanUpdateLauncher 2015\AllplanUpdateLauncher.exe =>.NEMETSCHEK Allplan Systems GmbH®
SR - Auto [05/02/2015] [ 31160] Autodesk Content Service (Autodesk Content Service) . (.Autodesk, Inc..) - C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe =>.Autodesk, Inc®
SR - Auto [30/08/2011] [ 462184] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.®
SR - Auto [21/01/2015] [ 3523448] CodeMeter Runtime Server (CodeMeter.exe) . (.WIBU-SYSTEMS AG.) - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe =>.WIBU-SYSTEMS AG®
SS - Demand [11/11/2015] [ 81400] DTSInterops (CoordinatorServiceHost) . (.Dassault Systèmes SolidWorks Corporation.) - C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe =>.Dassault Systemes SolidWorks Corp.®
SR - Auto [17/05/2012] [ 144560] Epson Scanner Service (EpsonScanSvc) . (.Seiko Epson Corporation.) - C:\Windows\system32\EscSvc64.exe =>.SEIKO EPSON Corporation®
SR - Auto [15/04/2013] [ 152640] EPSON V3 Service4(06) (EPSON_PM_RPCV4_06) . (.SEIKO EPSON CORPORATION.) - C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE =>.SEIKO EPSON Corporation®
SS - Demand [26/04/2016] [ 1074480] FlexNet Licensing Service (FlexNet Licensing Service) . (.Flexera Software LLC.) - C:\Program Files (x86)\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService.exe =>.Flexera Software LLC®
SS - Demand [26/04/2016] [ 1369856] FlexNet Licensing Service 64 (FlexNet Licensing Service 64) . (.Flexera Software LLC.) - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe =>.Flexera Software LLC®
SS - Auto [22/04/2016] [ 154440] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [22/04/2016] [ 154440] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [22/05/2015] [ 881152] Intel(R) Capability Licensing Service TCP IP Interface (Intel(R) Capability Licensing Service TCP IP Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe =>.Intel® Trusted Connect Service®
SR - Auto [10/07/2015] [ 223520] Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
SR - Auto [10/07/2015] [ 415520] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
SS - Disabl [10/03/2016] [ 1136608] (MBAMService) . (.Malwarebytes.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
SR - Auto [08/08/2016] [ 703696] MyEpson Portal Service (MyEpson Portal Service) . (.SEIKO EPSON CORPORATION.) - C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe =>.SEIKO EPSON CORPORATION®
SR - Auto [19/03/2016] [ 1264696] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe =>.NVIDIA Corporation®
SR - Auto [19/03/2016] [ 3167168] NVIDIA WMI Provider (NVWMI) . (.Auteurs.) - C:\Windows\system32\nvwmi64.exe =>.NVIDIA Corporation®
SS - Demand [26/04/2016] [ 79360] SolidWorks Licensing Service (SolidWorks Licensing Service) . (.SolidWorks.) - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe =>.SolidWorks
SR - Auto [19/03/2016] [ 426040] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe =>.NVIDIA Corporation®
SR - Auto [30/01/2017] [ 304408] Unchecky (Unchecky) . (.RaMMicHaeL.) - C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe =>.Reason Software Company Inc.®

---\\ Tâches planifiées en automatique (23) - 4s
[MD5.A0747D9A94EDFD251ED8E6556E70BA37] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1160408] (.Activate.) =>.Adobe Systems, Incorporated®
[MD5.3EB66B37B5DB00216E9711F3C5881100] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_194_pepper.exe [1269336] (.Activate.) =>.Adobe Systems Incorporated®
[MD5.8779CB53D3B2E9895E223F326D559741] [APT] [AutoUpdate Allplan 2015] (.Nemetschek Allplan Systems GmbH.) -- C:\Program Files\Nemetschek\Allplan\Prg\NemDownloadHandler.exe [43304] (.Activate.) =>.NEMETSCHEK Allplan Systems GmbH®
[MD5.7245B4C192D20107B4A3E887AED3F76E] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6490904] (.Activate.) =>.Piriform Ltd®
[MD5.E674671A541A96A251F7CADEB12E06A5] [APT] [EPSON WF-7620 Series Invitation {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4}] (.SEIKO EPSON CORPORATION.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [679488] (.Activate.) =>.SEIKO EPSON Corporation®
[MD5.E674671A541A96A251F7CADEB12E06A5] [APT] [EPSON WF-7620 Series Update {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4}] (.SEIKO EPSON CORPORATION.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [679488] (.Activate.) =>.SEIKO EPSON Corporation®
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440] (.Activate.) =>.Google Inc®
[MD5.750446ED76A5D13E902174DDDDA1A62B] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440] (.Activate.) =>.Google Inc®
[MD5.8779CB53D3B2E9895E223F326D559741] [APT] [WebContent AutoUpdate 2015] (.Nemetschek Allplan Systems GmbH.) -- C:\Program Files\Nemetschek\Allplan\Prg\NemDownloadHandler.exe [43304] (.Activate.) =>.NEMETSCHEK Allplan Systems GmbH®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job [1064] =>.Adobe Systems Incorporated®
O39 - APT: AutoUpdate Allplan 2015 - (.Nemetschek Allplan Systems GmbH.) -- C:\Windows\Tasks\AutoUpdate Allplan 2015.job [500] =>.NEMETSCHEK Allplan Systems GmbH®
O39 - APT: EPSON WF-7620 Series Invitation {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} - (.SEIKO EPSON CORPORATION.) -- C:\Windows\Tasks\EPSON WF-7620 Series Invitation {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4}.job [727] =>.SEIKO EPSON Corporation®
O39 - APT: EPSON WF-7620 Series Update {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} - (.SEIKO EPSON CORPORATION.) -- C:\Windows\Tasks\EPSON WF-7620 Series Update {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4}.job [913] =>.SEIKO EPSON Corporation®
O39 - APT: WebContent AutoUpdate 2015 - (.Nemetschek Allplan Systems GmbH.) -- C:\Windows\Tasks\WebContent AutoUpdate 2015.job [656] =>.NEMETSCHEK Allplan Systems GmbH®
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task [4476] =>.Adobe Systems, Incorporated®
O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier [4088] =>.Adobe Systems Incorporated®
O39 - APT: AutoUpdate Allplan 2015 - (.Nemetschek Allplan Systems GmbH.) -- C:\Windows\System32\Tasks\AutoUpdate Allplan 2015 [3160] =>.NEMETSCHEK Allplan Systems GmbH®
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2820] =>.Piriform Ltd®
O39 - APT: EPSON WF-7620 Series Invitation {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} - (.SEIKO EPSON CORPORATION.) -- C:\Windows\System32\Tasks\EPSON WF-7620 Series Invitation {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} [3794] =>.SEIKO EPSON Corporation®
O39 - APT: EPSON WF-7620 Series Update {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} - (.SEIKO EPSON CORPORATION.) -- C:\Windows\System32\Tasks\EPSON WF-7620 Series Update {ECA77487-F70D-48F9-A518-7F7C6B5DBDC4} [3980] =>.SEIKO EPSON Corporation®
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [3372] =>.Google Inc®
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [3500] =>.Google Inc®
O39 - APT: WebContent AutoUpdate 2015 - (.Nemetschek Allplan Systems GmbH.) -- C:\Windows\System32\Tasks\WebContent AutoUpdate 2015 [3660] =>.NEMETSCHEK Allplan Systems GmbH®

---\\ Applications lancées au démarrage du système (25) - 1s
O4 - HKLM\..\Run: [nwiz] . (...) -- C:\Program Files\NVIDIA Corporation\nview\nwiz.exe =>.NVIDIA Corporation®
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe =>.Microsoft Corporation®
O4 - HKLM\..\Run: [WrtMon.exe] . (.NewSoft Technology Corporation - NsWrtMon Microsoft Base Class Application.) -- C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe =>.Newsoft Technology Company®
O4 - HKCU\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe =>.Autodesk, Inc®
O4 - HKCU\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIKAE.EXE =>.SEIKO EPSON CORPORATION®
O4 - HKCU\..\Run: [Scan Buttons] . (.NewSoft Technology Corporation - Pmsb MFC Application.) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\Pmsb.exe =>.NewSoft Technology Corporation®
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_DA13D25894690A52152CEB0ED948825F] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe =>.Intel Corporation - Software and Firmware Products®
O4 - HKLM\..\Wow6432Node\Run: [ADSKAppManager] . (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe =>.Autodesk, Inc®
O4 - HKLM\..\Wow6432Node\Run: [FUFAXRCV] . (.SEIKO EPSON CORPORATION - Fax Reception.) -- C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe =>.SEIKO EPSON CORPORATION®
O4 - HKLM\..\Wow6432Node\Run: [FUFAXSTM] . (.SEIKO EPSON CORPORATION - Fax Transmission.) -- C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe =>.SEIKO EPSON CORPORATION®
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe =>.SEIKO EPSON CORPORATION®
O4 - HKLM\..\Wow6432Node\Run: [PMSpeed] . (.NewSoft Technology Corporation - PMSpeed MFC Application.) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\PMSpeed.exe =>.NewSoft Technology Corporation®
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.®
O4 - HKUS\.DEFAULT\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe =>.Autodesk, Inc®
O4 - HKUS\S-1-5-18\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe =>.Autodesk, Inc®
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-910243142-1345806659-3348935191-1001\..\Run: [Autodesk Sync] . (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe =>.Autodesk, Inc®
O4 - HKUS\S-1-5-21-910243142-1345806659-3348935191-1001\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIKAE.EXE =>.SEIKO EPSON CORPORATION®
O4 - HKUS\S-1-5-21-910243142-1345806659-3348935191-1001\..\Run: [Scan Buttons] . (.NewSoft Technology Corporation - Pmsb MFC Application.) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\Pmsb.exe =>.NewSoft Technology Corporation®
O4 - HKUS\S-1-5-21-910243142-1345806659-3348935191-1001\..\Run: [GoogleChromeAutoLaunch_DA13D25894690A52152CEB0ED948825F] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®

---\\ Processus lancés (52) - 1s
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 362.1.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.940] =>.NVIDIA Corporation
[MD5.00000000000000000000000000000000] - (.Auteurs - .) -- C:\Windows\system32\nvwmi64.exe [0] [PID.964]
[MD5.F5AFC4B63F63EC4AA404483E4C968DE7] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [426040] [PID.988] =>.NVIDIA Corporation®
[MD5.A2E7AEDEC63DAEFAB014EA83F635A20A] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1261504] [PID.1328] =>.NVIDIA Corporation®
[MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 362.1.) -- C:\Windows\system32\nvvsvc.exe [0] [PID.1336] =>.NVIDIA Corporation
[MD5.00000000000000000000000000000000] - (.Auteurs - .) -- C:\Windows\system32\nvwmi64.exe [0] [PID.1344]
[MD5.0198F2FAF73768E0859B9CD3F69E3B2D] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8521968] [PID.1808] =>.Realtek Semiconductor Corp®
[MD5.CBDF353624D1744734F2FD13B4786F90] - (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944] [PID.2084] =>.Autodesk, Inc®
[MD5.B8B1A3F5EFA0DBE88EAB41A7110B9A31] - (.NewSoft Technology Corporation - NsWrtMon Microsoft Base Class Application.) -- C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe [26448] [PID.2164] =>.Newsoft Technology Company®
[MD5.416C1857ED2AF677C761BACB401D2711] - (.Autodesk, Inc. - A360.) -- C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1310088] [PID.2172] =>.Autodesk, Inc®
[MD5.054C5313C15AEBFD031FC4723C08CE14] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\System32\spool\drivers\x64\3\E_YATIKAE.EXE [298560] [PID.2184] =>.SEIKO EPSON CORPORATION®
[MD5.15664BEE10AB58C7C835C3DD167CD78E] - (.NewSoft Technology Corporation - Pmsb MFC Application.) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\Pmsb.exe [214360] [PID.2204] =>.NewSoft Technology Corporation®
[MD5.197A4DEE4D4043065EF8F2E9A749F916] - (.NewSoft Technology Corporation - NsWrtProc Microsoft Base Clase Application.) -- C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe [54616] [PID.2296] =>.NewSoft Technology Corporation®
[MD5.B932E0EE190778D840F1442DFC0F9612] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82640] [PID.2408] =>.Adobe Systems, Incorporated®
[MD5.CB46168FFDEA91E2B3435E51BB436558] - (.Intel Corporation - iusb3mon.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216] [PID.2448] =>.Intel Corporation - Software and Firmware Products®
[MD5.DBBEC5435ECB0D6F16D312EA7EC3FF5E] - (.Nemetschek Allplan Systems GmbH - AllplanUpdateLauncher.) -- C:\Program Files\Nemetschek\AllplanUpdateLauncher 2015\AllplanUpdateLauncher.exe [16680] [PID.2528] =>.NEMETSCHEK Allplan Systems GmbH®
[MD5.D3B3E999961870108AB068C46DA6356B] - (.SEIKO EPSON CORPORATION - Fax Reception.) -- C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650496] [PID.2572] =>.SEIKO EPSON CORPORATION®
[MD5.3A2149804A8454D430D802763B9573E1] - (.WIBU-SYSTEMS AG - CodeMeter Control Center.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe [10362232] [PID.2592] =>.WIBU-SYSTEMS AG®
[MD5.F17FFAF69E1AF3D0A010FD4749148981] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184] [PID.1076] =>.SEIKO EPSON CORPORATION®
[MD5.733FA274B8343D02F83D9F44D0747487] - (.Dassault Systèmes SolidWorks Corp. - SldWorks_fs.) -- C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe [317432] [PID.2256] =>.Dassault Systemes SolidWorks Corp.®
[MD5.C7F1667866E231A82D0EF0079230C7E6] - (.Dassault Systèmes SolidWorks Corp. - sldBgDwldresu.) -- C:\Program Files (x86)\Common Files\Gestionnaire d'installation SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe [2935288] [PID.1504] =>.Dassault Systemes SolidWorks Corp.®
[MD5.F194AB6537FAD3AA38993694F187B6F9] - (.NewSoft Technology Corporation - PMSpeed MFC Application.) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\PMSpeed.exe [116632] [PID.3268] =>.NewSoft Technology Corporation®
[MD5.34084D25BE6F48D072AA54DE630438FD] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896] [PID.3316] =>.Oracle America, Inc.®
[MD5.B52F9B2C63DF84B58E59016FE25648C0] - (.Autodesk, Inc. - AutoCAD component.) -- C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160] [PID.3348] =>.Autodesk, Inc®
[MD5.EBBCD5DFBB1DE70E8F4AF8FA59E401FD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462184] [PID.3496] =>.Apple Inc.®
[MD5.00000000000000000000000000000000] - (.Seiko Epson Corporation - Epson Scanner Service (64bit).) -- C:\Windows\system32\EscSvc64.exe [0] [PID.3560] =>.Seiko Epson Corporation
[MD5.86032A47AD0105130FE7808C903E2086] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE [152640] [PID.3584] =>.SEIKO EPSON Corporation®
[MD5.A25648600888D412CCD2637071B08A04] - (.SEIKO EPSON CORPORATION - MyEpson Portal Service.) -- C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe [703696] [PID.3692] =>.SEIKO EPSON CORPORATION®
[MD5.656F37AAA4811D5460567A133310C9E2] - (.SEIKO EPSON CORPORATION - MyEpson Portal.) -- C:\Program Files (x86)\epson\MyEpson Portal\mep.exe [2391248] [PID.3892] =>.SEIKO EPSON CORPORATION®
[MD5.20A45C0EBFABDCAF6FB3BCF6867EB145] - (.RaMMicHaeL - Unchecky Service.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [304408] [PID.4004] =>.Reason Software Company Inc.®
[MD5.357CABBF155AFD1D3926E62539D2A3A7] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292480] [PID.4036] =>.Microsoft Corporation®
[MD5.D3590D0F65BBD8A61C814360B5E8AF48] - (.RaMMicHaeL - Unchecky Background Process.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe [624920] [PID.408] =>.Reason Software Company Inc.®
[MD5.D790CAFEFF0291D0AF8C76F5A1EE2E4E] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [223488] [PID.1536] =>.Microsoft Corporation®
[MD5.7FFB9B41FF34F3F8D5E6C9634569E866] - (.WIBU-SYSTEMS AG - CodeMeter Runtime Server.) -- C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [3523448] [PID.3296] =>.WIBU-SYSTEMS AG®
[MD5.9582680F41C0C4C6E6A2ACCADD7E723E] - (.Autodesk Inc. - Autodesk Application Manager.) -- C:\Users\Jean François\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe [493960] [PID.4384] =>.Autodesk, Inc®
[MD5.DE70C5C10803C700DC1CFDE2D5CF207A] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520] [PID.1468] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
[MD5.1CE3A27B6B0658F4242AB2DECE69704E] - (.Intel Corporation - Intel(R) Local Management Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [415520] [PID.2464] =>.Intel Corporation - Embedded Subsystems and IP Blocks Group®
[MD5.BCBD6EF870818D88F299E9C243C191ED] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [1058352] [PID.4324] =>.Oracle America, Inc.®
[MD5.2580B0E097789257B8368389279246FA] - (.Graphisoft SE - ArchiCAD 19.0.0 Component.) -- C:\Program Files\GRAPHISOFT\ArchiCAD 19\ArchiCAD.exe [83373056] [PID.1152] =>.Graphisoft SE
[MD5.91B13A8254C6BD98A301212B77687B27] - (.MAXON Computer GmbH - CineRender.) -- C:\Program Files\GRAPHISOFT\ArchiCAD 19\CineRender\CineRender 64bit.exe [18752808] [PID.2696] =>.MAXON Computer GmbH®
[MD5.FCD49BA7D62D7D062D6DF51029D4F3C6] - (...) -- C:\Program Files\GRAPHISOFT\ArchiCAD 19\CineRender\resource\libs\win32\qtguiagent.exe [313144] [PID.3680] =>.MAXON Computer GmbH®
[MD5.8779CB53D3B2E9895E223F326D559741] - (.Nemetschek Allplan Systems GmbH - Nemetschek download handler tool.) -- C:\Program Files\Nemetschek\Allplan\Prg\NemDownloadHandler.exe [43304] [PID.6824] =>.NEMETSCHEK Allplan Systems GmbH®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.2812] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.6708] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.2520] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.1608] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.6044] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.6152] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.788] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.3964] =>.Google Inc®
[MD5.642D464F0EDE1B3C81BC20C3E3A3ECC6] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1116504] [PID.3228] =>.Google Inc®
[MD5.65998B8D5E5662F5FAA29F07210263DB] - (.Nicolas Coolman - ZHPDiag.) -- D:\Données Utilisateur\Downloads\ZHPDiag3.exe [2713088] [PID.2860] =>.Nicolas Coolman

---\\ Google Chrome, Démarrage,Recherche,Extensions (23) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://api.pinterest.com =>.Pinterest
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://assets.pinterest.com =>.Pinterest
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://fr.adsloads.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://log.pinterest.com =>.Pinterest
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] https://www.google.fr/?gws_rd=ssl =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [efaidnbmnnnibpcajpcglclefindmkaj] __MSG_web2pdfExtnName__ =>.Adobe Inc.
G2 - GCE: Preference [User Data\Default] [epcnnfbjfcgphgdmggkamkmgojdagdnn] uBlock =>.Raymond Hill
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc. =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gpdjojdkbbmdfjfahjcgigfpmkopogic] __MSG_saveAction__
G2 - GCE: Preference [User Data\Default] [iamaibfpfopmphakcannhjikjamgmglo] FriendlyPrint
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphan =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies http://noblok.org/

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=C:\Windows\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) =>.Microsoft Corporation

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (60)

---\\ Browser Helper Object de navigateur (BHO) (1) - 0s
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll =>.Microsoft Corporation®

---\\ Raccourcis Global Startup (86) - 1s
O4 - GS\Desktop [Administrateur]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) C:\Windows\twain_32\escndv\escndv.exe =>.SEIKO EPSON CORPORATION®
O4 - GS\Desktop [Administrateur]: img20170320_18580724 - Raccourci.lnk . (...) D:\Données Utilisateur\Documents\Scanned Documents\img20170320_18580724.jpg
O4 - GS\Desktop [Administrateur]: PROJETS EN COURS - Raccourci.lnk . (...) D:\PROJETS EN COURS
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Jean François\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Administrateur]: SOLIDWORKS 2015 x64 Edition.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\i386_SldWorks.exe =>.Flexera Software LLC
O4 - GS\Quicklaunch [Administrateur]: SOLIDWORKS Explorer 2015.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{EACE15FF-59ED-4CBE-B1EB-616F4908745F}\NewShortcut1.exe =>.Flexera Software LLC
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: LibreOffice 5.1.lnk . (.The Document Foundation - .) C:\Program Files (x86)\LibreOffice 5\program\soffice.exe =>.The Document Foundation
O4 - GS\TaskBar [Administrateur]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Desktop [Jean François]: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) C:\Windows\twain_32\escndv\escndv.exe =>.SEIKO EPSON CORPORATION®
O4 - GS\Desktop [Jean François]: img20170320_18580724 - Raccourci.lnk . (...) D:\Données Utilisateur\Documents\Scanned Documents\img20170320_18580724.jpg
O4 - GS\Desktop [Jean François]: PROJETS EN COURS - Raccourci.lnk . (...) D:\PROJETS EN COURS
O4 - GS\Desktop [Jean François]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Jean François\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Jean François]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Quicklaunch [Jean François]: SOLIDWORKS 2015 x64 Edition.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\i386_SldWorks.exe =>.Flexera Software LLC
O4 - GS\Quicklaunch [Jean François]: SOLIDWORKS Explorer 2015.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{EACE15FF-59ED-4CBE-B1EB-616F4908745F}\NewShortcut1.exe =>.Flexera Software LLC
O4 - GS\sendTo [Jean François]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Jean François]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Jean François]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Jean François]: LibreOffice 5.1.lnk . (.The Document Foundation - .) C:\Program Files (x86)\LibreOffice 5\program\soffice.exe =>.The Document Foundation
O4 - GS\TaskBar [Jean François]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Jean François]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Programs [Jean François]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: A360 Desktop.lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\Autodesk Sync\AdSync.exe /browseLocal =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: Allmenu 2015.lnk . (.Nemetschek Allplan Systems GmbH - allmenu launcher.) C:\Program Files\Nemetschek\Allplan\Prg\nemstart.2015.exe =>.NEMETSCHEK Allplan Systems GmbH®
O4 - GS\CommonDesktop [Public]: Allplan 2015.lnk . (.Nemetschek Allplan Systems GmbH - Allplan 2015.) C:\Program Files\Nemetschek\Allplan\Prg\Allplan_2015.exe =>.NEMETSCHEK Allplan Systems GmbH®
O4 - GS\CommonDesktop [Public]: ArchiCAD 19.lnk . (.Graphisoft SE - ArchiCAD 19.0.0 Component.) C:\Program Files\GRAPHISOFT\ArchiCAD 19\ArchiCAD Starter.exe =>.Graphisoft SE
O4 - GS\CommonDesktop [Public]: AutoCAD 2016 - Français (French).lnk . (.Autodesk, Inc. - .) C:\Program Files (x86)\Autodesk\AutoCAD 2016\acad.exe /product ACAD /language "fr-FR" =>.Autodesk, Inc.
O4 - GS\CommonDesktop [Public]: Autodesk ReCap 2016.lnk . (.Autodesk - .) C:\Program Files (x86)\Autodesk\Autodesk ReCap 2016\recap.exe =>.Autodesk
O4 - GS\CommonDesktop [Public]: BIMx pour ArchiCAD 19.lnk . (.Graphisoft SE - ArchiCAD 19.0.0 Component.) C:\Program Files\GRAPHISOFT\ArchiCAD 19\Extensions\BIMx\BIMx.exe =>.Graphisoft SE
O4 - GS\CommonDesktop [Public]: eDrawings 2015 x64 Edition.lnk . (.Dassault Systèmes SOLIDWORKS Corp. - .) C:\Program Files (x86)\SOLIDWORKS Corp\eDrawings X64 Edition\EModelViewer.exe =>.Dassault Systèmes SolidWorks Corp.
O4 - GS\CommonDesktop [Public]: Manuels EPSON.lnk . (.Seiko Epson Corporation - EPSON Manuals Launcher.) C:\Program Files (x86)\Epson Software\Epson Manual\Launcher\EPSMLAN.EXE /LA "FR" /FR "DESKTOP" =>.SEIKO EPSON CORPORATION®
O4 - GS\CommonDesktop [Public]: MyEpson Portal.lnk . (.SEIKO EPSON CORPORATION - MyEpson Portal.) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe /S =>.SEIKO EPSON CORPORATION®
O4 - GS\CommonDesktop [Public]: Presto! PageManager 9.03 SE.lnk . (.NewSoft Technology Corporation - Presto! PageManager.) C:\Program Files (x86)\NewSoft\Presto! PageManager 9.03\Prestopm.exe =>.NewSoft Technology Corporation®
O4 - GS\CommonDesktop [Public]: SOLIDWORKS 2015 x64 Edition.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\i386_SldWorks.exe =>.Flexera Software LLC
O4 - GS\CommonDesktop [Public]: SOLIDWORKS Composer Player 2015 - x64 Edition.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{35CFB7E6-939A-4A06-A4FC-AA9CBB9B1E0F}\NewShortcut11_1.05E8B3F6_C6F0_450A_B0AB_1C0A5E596B61.exe =>.Flexera Software LLC
O4 - GS\CommonDesktop [Public]: SOLIDWORKS Explorer 2015.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{EACE15FF-59ED-4CBE-B1EB-616F4908745F}\NewShortcut3_2723AB6ADE8640EEAA77EC7E47C4DF34.exe =>.Flexera Software LLC
O4 - GS\Programs [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.) C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft Corporation®
O4 - GS\SystemTools [Public]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\Startup [Public]: CodeMeter Control Center.lnk . (.WIBU-SYSTEMS AG - CodeMeter Control Center.) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe =>.WIBU-SYSTEMS AG®
O4 - GS\Startup [Public]: Lancement rapide de SOLIDWORKS 2015.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{F8093877-4F2C-40ED-9BA7-2F9F48F5176F}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe =>.Flexera Software LLC
O4 - GS\Startup [Public]: Téléchargement en arrière-plan de SOLIDWORKS.lnk . (.Dassault Systèmes SolidWorks Corp. - sldBgDwldresu.) C:\Program Files (x86)\Common Files\Gestionnaire d'installation SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe /launch_from 0 =>.Dassault Systemes SolidWorks Corp.®
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - Accessoire du panneau de saisie mathématiqu.) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.) C:\Windows\system32\mblctr.exe /open =>.Microsoft Corporation
O4 - GS\Accessories [Public]: NetworkProjection.lnk . (.Microsoft Corporation - Connect to a Network Projector.) C:\Windows\system32\NetProj.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.) C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.) C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Processus hôte Windows (Rundll32).) C:\Windows\system32\rundll32.exe %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.) C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) C:\Windows\system32\perfmon.exe /res =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.) C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.) C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) C:\Windows\system32\taskschd.msc /s =>..Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.) C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Acrobat Reader DC.lnk . (.Flexera Software LLC - InstallShield.) C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico =>.Flexera Software LLC
O4 - GS\ProgramsCommon [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.) C:\Program Files (x86)\Audacity\audacity.exe =>.The Audacity Team
O4 - GS\ProgramsCommon [Public]: CDBurnerXP.lnk . (.Canneverbe Limited - CDBurnerXP.) C:\Program Files\CDBurnerXP\cdbxpp.exe =>.Canneverbe Limited®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Google Earth.lnk . (.Google - Google Earth.) C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Microsoft Security Essentials.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Security Client\msseces.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: paint.net.lnk . (.dotPDN LLC - .) C:\Program Files (x86)\paint.net\PaintDotNet.exe =>.dotPDN LLC
O4 - GS\ProgramsCommon [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) C:\Program Files (x86)\Windows Sidebar\sidebar.exe /showgadgets =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.) C:\Windows\system32\WindowsAnytimeUpgradeUI.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows DVD Maker.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\DVD Maker\DVDMaker.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation

---\\ Modification Domaine/Adresses DNS (4) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan =>.Local Domain
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{ACD7E875-AAAB-4A5B-A7F5-049184E13732}: DhcpNameServer = 192.168.1.254 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{ACD7E875-AAAB-4A5B-A7F5-049184E13732}: DhcpDomain = lan =>.Local Domain

---\\ Protocole additionnel (23) - 0s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: mso-offdap11 [64Bits] - {32505114-5902-49B2-880A-1F7738E5A384} . (.Microsoft Corporation - Microsoft Office Web Components 2003.) -- C:\Program Files (x86)\Common Files\microsoft shared\Web Components\11\OWC11.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation®
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Logiciels installés (98) - 5s
O42 - Logiciel: A360 Desktop - (.Autodesk.) [HKLM][64Bits] -- {B209E611-5511-4AD6-B4B3-9D36F93DBCD4} =>.Autodesk
O42 - Logiciel: ACA & MEP 2016 Object Enabler - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F004-0000-5102-0060B0CE6BBA} =>.Autodesk
O42 - Logiciel: ACAD Private - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F001-0000-3102-0060B0CE6BBA} =>.Autodesk
O42 - Logiciel: Adobe Acrobat Reader DC - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AC0F074E4100} =>.Adobe Systems Incorporated
O42 - Logiciel: Adobe Flash Player 24 PPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player PPAPI =>.Adobe Systems Incorporated®
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824211354} =>.Adobe Systems Incorporated
O42 - Logiciel: Applications recommandées Autodesk 2016 - (.Autodesk.) [HKLM][64Bits] -- {D42F37CD-9AF9-4435-A474-B387C5BB6B47} =>.Autodesk
O42 - Logiciel: ArchiCAD 19 FRA - (.GRAPHISOFT.) [HKLM][64Bits] -- 001FFF2FFF19FF00FF0501F01F02F000-R1 =>.Graphisoft
O42 - Logiciel: Audacity 2.1.2 - (.Audacity Team.) [HKLM][64Bits] -- Audacity®_is1 =>.Audacity Team
O42 - Logiciel: AutoCAD 2016 - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F001-0000-0102-0060B0CE6BBA} =>.Autodesk
O42 - Logiciel: AutoCAD 2016 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F001-040C-2102-0060B0CE6BBA} =>.Autodesk, Inc®
O42 - Logiciel: AutoCAD 2016 Language Pack - Français (French) - (.Autodesk.) [HKLM][64Bits] -- {5783F2D7-F001-040C-1102-0060B0CE6BBA} =>.Autodesk
O42 - Logiciel: Autodesk Advanced Material Library Image Library 2016 - (.Autodesk.) [HKLM][64Bits] -- {94AD53E7-493B-4291-8714-7A3B761D2783} =>.Autodesk
O42 - Logiciel: Autodesk App Manager 2016 - (.Autodesk.) [HKLM][64Bits] -- {4ECF9E00-2978-46AF-BD80-455EFEAB7A93} =>.Autodesk
O42 - Logiciel: Autodesk Application Manager - (.Autodesk.) [HKLM][64Bits] -- Autodesk Application Manager =>.Autodesk, Inc®
O42 - Logiciel: Autodesk AutoCAD 2016 - Français (French) - (.Autodesk.) [HKLM][64Bits] -- AutoCAD 2016 - Français (French) =>.Autodesk, Inc®
O42 - Logiciel: Autodesk AutoCAD Performance Feedback Tool 1.2.4 - (.Autodesk.) [HKLM][64Bits] -- {4E20873D-BC20-495C-AFD9-B18877B7F9BB} =>.Autodesk
O42 - Logiciel: Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit - (.Autodesk.) [HKLM][64Bits] -- {4BEE127E-95C4-434D-ABAC-65155192BB24} =>.Autodesk
O42 - Logiciel: Autodesk Content Service - (.Autodesk.) [HKLM][64Bits] -- {A37CDB58-AAE8-0000-8C13-E0F7BACB0D5F} =>.Autodesk
O42 - Logiciel: Autodesk Content Service - (.Autodesk.) [HKLM][64Bits] -- Autodesk Content Service =>.Autodesk, Inc®
O42 - Logiciel: Autodesk Content Ser
A voir également:

1 réponse

Réponse 1 / 1
jmdepise Messages postés 1646 Date d'inscription jeudi 30 janvier 2014 Statut Contributeur sécurité Dernière intervention 8 août 2019 411
28 mars 2017 à 18:26
Salut

Il faut héberger les rapports car ils sont trop long pour les poster directement ici

Aide ICI si tu veux héberger le rapport zhpdiag

jm
0
jeff4342 Messages postés 6 Date d'inscription mardi 28 mars 2017 Statut Membre Dernière intervention 28 mars 2017
28 mars 2017 à 18:32
voici:
https://pjjoint.malekal.com/files.php?id=20170328_c6t5z55w5
0
jmdepise Messages postés 1646 Date d'inscription jeudi 30 janvier 2014 Statut Contributeur sécurité Dernière intervention 8 août 2019 411
Modifié le 28 mars 2017 à 18:56
Ok rien de bien méchant,

→ Passe ADwcleaner ► Aide ICI

→ Ensuite passe Ceci ► ResetBrowser

Pense a poster le rapport ADWcleaner stp de la même façon que zhpdiag ;)

jm
0
jeff4342 Messages postés 6 Date d'inscription mardi 28 mars 2017 Statut Membre Dernière intervention 28 mars 2017
28 mars 2017 à 19:20
ci-joint le rapport de ADwcleaner:
https://pjjoint.malekal.com/files.php?id=20170328_s14f7w11o5n14
Mon ordi est toujours infecté.
Merci
0
jmdepise Messages postés 1646 Date d'inscription jeudi 30 janvier 2014 Statut Contributeur sécurité Dernière intervention 8 août 2019 411
28 mars 2017 à 19:35
En réalité, il n'y a pas d'infection active sur ce pc, ce ne sont que des restes.
Ce que détecte ZHPdiag n'est pas vraiment révélateur d'infection...

Voici ce que tu vas faire :
  • Télécharger et enregistrer Zhpfix sur ton bureau
  • lancer zhpfix, il va s'installer sur le pc, 
  • /!\ Les Utilisateurs de Vista-7-8-10 Cliquer droit sur le logo de ZHPfix et "exécuter en tant qu'Administrateur"

/!\ Avertissement /!\ 
ce script est spécialement rédigé pour ce pc en cours du nettoyage, ne pas utiliser ce script sur un autre pc, Risque de Plantage !
  • Lancer ZHPFix via le raccourci qui se trouve sur le Bureau. "L'icône ressemble à une seringue".
  • Cliquer sur "importer" > Une fenêtre d'avertissement apparait cliquer sur OK
  • Copier ( Ctrl + C ) et coller ( Ctrl + V ) les lignes ci-dessous en gras dans la fenêtre de Zhpfix.



Script ZHPFix
SysRestore
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ccleaner.fr.softonic.com_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d16fk4ms6rqz1v.cloudfront.net_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d22j4fzzszoii2.cloudfront.net_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_d30ke5tqu2tkyx.cloudfront.net_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_wix-instantsearchplus-ssl.akamaized.net_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_funsafetab.com_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.funsafetabsearch.com_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_fr.igraal.com_0.localstorage
C:\Users\Jean François\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fr.igraal.com_0.localstorage
O43 - CFD: 28/03/2017 - [] D -- C:\Users\Jean François\AppData\Local\{12A8CCFE-3C33-4995-BAD8-074E4C5B22FD}
EmptyTemp
EmptyCLSID
FirewallRAZ
ProxyFix
EmptyFlash
EmptyPrefetch
HostFix
  • Cliquer sur le bouton "GO" pour lancer le nettoyage puis Confirmer le nettoyage
  • Redémarrer le pc ... et faire un teste de navigation ...
  • Un rapport ZHPfix.txt se trouvera sur le bureau...
    • Merci de poster ce rapport (zhpfix) dans ta prochaine réponse.



jm
0
jeff4342 Messages postés 6 Date d'inscription mardi 28 mars 2017 Statut Membre Dernière intervention 28 mars 2017 > jmdepise Messages postés 1646 Date d'inscription jeudi 30 janvier 2014 Statut Contributeur sécurité Dernière intervention 8 août 2019
28 mars 2017 à 20:00
ci-joint ce raport:
https://pjjoint.malekal.com/files.php?id=20170328_t8v13k13y8j6
je ne parviens toujours pas à naviguer correctement
Merci
0

Discussions similaires

Belote à 6 joueurs
Bererom -
Raymond PENTIER -

10 réponses
Google Chrome "  Échec de l'analyse antivirus "
jmpower -
Coco71 -

15 réponses
Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Comment retrouver le presse papier sur iPhone ?
Slilluu -
Ascaris -

6 réponses
Freebox bloquée à l'étape 6
Linda -
brupala -

14 réponses