Blue screen ...
Résolu
ChaBda
Messages postés
27
Date d'inscription
Statut
Membre
Dernière intervention
-
jmdepise Messages postés 1646 Date d'inscription Statut Contributeur sécurité Dernière intervention -
jmdepise Messages postés 1646 Date d'inscription Statut Contributeur sécurité Dernière intervention -
A voir également:
- Blue screen ...
- Blue screen windows 10 - Guide
- Screen whatsapp - Accueil - Messagerie instantanée
- Apowersoft screen recorder - Télécharger - Capture d'écran
- Blue griffon - Télécharger - HTML
- Blue iris - Télécharger - Divers Utilitaires
8 réponses
Salut
On peut essayer de voir d'où vient le problème?!
Suivre la procédure ci-dessous :
jm
On peut essayer de voir d'où vient le problème?!
Suivre la procédure ci-dessous :
- Télécharger https://www.resplendence.com/download/whocrashedSetup.exe sur le bureau
- Lancer l'installation en faisant un clic droit sur l'icône "Exécuter en tant qu’administrateur "
- Cliquer sur Next sur chaque fenêtres
- Ne pas oublier de Cocher "Create a desktop icon" (icône sur le bureau) >> Next ..... Next >>> Install >> Finish ...
- Cliquer sur la flêche verte (en haut à gauche) >> Patienter ... le temps de l'analyse !
- Une fenêtre "Information" s'ouvre > cliquer sur OK
- À partir de System Information (Local) surligner avec la souris >> curseur >> jusqu'en bas (Crash dump analysys + Conclusion) >> clic-droit >> Copier > (le texte sera dans le presse-papier)
- Merci de coller le texte dans son intégralité dans la prochaine réponse ...
jm
slt , je te remercie de m'aider voila ce que tu ma demander ;
System Information (local)
--------------------------------------------------------------------------------
Computer name: ENZO-PC
Windows version: Windows 7 Service Pack 1, 6.1, build: 7601
Windows dir: C:\Windows
Hardware: S551LN, ASUSTeK COMPUTER INC.
CPU: GenuineIntel Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz Intel586, level: 6
4 logical processors, active mask: 15
RAM: 4172333056 bytes total
--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------
Crash dump directory: C:\Windows\Minidump
Crash dumps are enabled on your computer.
On Mon 17/07/2017 01:53:50 your computer crashed
crash dump file: C:\Windows\Minidump\071717-33056-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0x5 (0xFFFFFA80039A65D0, 0xFFFFFA8003F83B10, 0x0, 0x1)
Error: INVALID_PROCESS_ATTACH_ATTEMPT
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This generally indicates that the thread was attached to a process in a situation where that is not allowed. For example, this bug check could occur if KeAttachProcess was called when the thread was already attached to a process (which is illegal), or if the thread returned from certain function calls in an attached state (which is invalid).
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Mon 17/07/2017 01:18:31 your computer crashed
crash dump file: C:\Windows\Minidump\071717-26691-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A004905150, 0x2, 0x1, 0xFFFFF8000333132D)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Mon 17/07/2017 00:27:17 your computer crashed
crash dump file: C:\Windows\Minidump\071717-28126-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A001068990, 0x2, 0x1, 0xFFFFF8000334732D)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Sun 16/07/2017 15:39:20 your computer crashed
crash dump file: C:\Windows\Minidump\071617-19671-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A0049C8DB8, 0x2, 0x1, 0xFFFFF80003337368)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Tue 11/07/2017 01:45:01 your computer crashed
crash dump file: C:\Windows\Minidump\071117-66862-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0x5 (0xFFFFFA80039A65D0, 0xFFFFFA800A11EB10, 0x0, 0x1)
Error: INVALID_PROCESS_ATTACH_ATTEMPT
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This generally indicates that the thread was attached to a process in a situation where that is not allowed. For example, this bug check could occur if KeAttachProcess was called when the thread was already attached to a process (which is illegal), or if the thread returned from certain function calls in an attached state (which is invalid).
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------
6 crash dumps have been found and analyzed. Only 5 are included in this report. No offending third party drivers have been found. Connsider using WhoCrashed Professional which offers more detailed analysis using symbol resolution. Also configuring your system to produce a full memory dump may help you.
Read the topic general suggestions for troubleshooting system crashes for more information.
Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
System Information (local)
--------------------------------------------------------------------------------
Computer name: ENZO-PC
Windows version: Windows 7 Service Pack 1, 6.1, build: 7601
Windows dir: C:\Windows
Hardware: S551LN, ASUSTeK COMPUTER INC.
CPU: GenuineIntel Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz Intel586, level: 6
4 logical processors, active mask: 15
RAM: 4172333056 bytes total
--------------------------------------------------------------------------------
Crash Dump Analysis
--------------------------------------------------------------------------------
Crash dump directory: C:\Windows\Minidump
Crash dumps are enabled on your computer.
On Mon 17/07/2017 01:53:50 your computer crashed
crash dump file: C:\Windows\Minidump\071717-33056-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0x5 (0xFFFFFA80039A65D0, 0xFFFFFA8003F83B10, 0x0, 0x1)
Error: INVALID_PROCESS_ATTACH_ATTEMPT
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This generally indicates that the thread was attached to a process in a situation where that is not allowed. For example, this bug check could occur if KeAttachProcess was called when the thread was already attached to a process (which is illegal), or if the thread returned from certain function calls in an attached state (which is invalid).
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Mon 17/07/2017 01:18:31 your computer crashed
crash dump file: C:\Windows\Minidump\071717-26691-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A004905150, 0x2, 0x1, 0xFFFFF8000333132D)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Mon 17/07/2017 00:27:17 your computer crashed
crash dump file: C:\Windows\Minidump\071717-28126-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A001068990, 0x2, 0x1, 0xFFFFF8000334732D)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Sun 16/07/2017 15:39:20 your computer crashed
crash dump file: C:\Windows\Minidump\071617-19671-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0xA (0xFFFFF8A0049C8DB8, 0x2, 0x1, 0xFFFFF80003337368)
Error: IRQL_NOT_LESS_OR_EQUAL
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This indicates that Microsoft Windows or a kernel-mode driver accessed paged memory at DISPATCH_LEVEL or above.
This appears to be a typical software driver bug and is not likely to be caused by a hardware problem.
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
On Tue 11/07/2017 01:45:01 your computer crashed
crash dump file: C:\Windows\Minidump\071117-66862-01.dmp
This was probably caused by the following module: ntoskrnl.exe (nt+0x70E40)
Bugcheck code: 0x5 (0xFFFFFA80039A65D0, 0xFFFFFA800A11EB10, 0x0, 0x1)
Error: INVALID_PROCESS_ATTACH_ATTEMPT
file path: C:\Windows\system32\ntoskrnl.exe
product: Microsoft® Windows® Operating System
company: Microsoft Corporation
description: NT Kernel & System
Bug check description: This generally indicates that the thread was attached to a process in a situation where that is not allowed. For example, this bug check could occur if KeAttachProcess was called when the thread was already attached to a process (which is illegal), or if the thread returned from certain function calls in an attached state (which is invalid).
The crash took place in the Windows kernel. Possibly this problem is caused by another driver that cannot be identified at this time.
--------------------------------------------------------------------------------
Conclusion
--------------------------------------------------------------------------------
6 crash dumps have been found and analyzed. Only 5 are included in this report. No offending third party drivers have been found. Connsider using WhoCrashed Professional which offers more detailed analysis using symbol resolution. Also configuring your system to produce a full memory dump may help you.
Read the topic general suggestions for troubleshooting system crashes for more information.
Note that it's not always possible to state with certainty whether a reported driver is responsible for crashing your system or that the root cause is in another module. Nonetheless it's suggested you look for updates for the products that these drivers belong to and regularly visit Windows update or enable automatic updates for Windows. In case a piece of malfunctioning hardware is causing trouble, a search with Google on the bug check errors together with the model name and brand of your computer may help you investigate this further.
Ok donc les crash sont causé par ntoskrnl.exe qui est lié au Kernel Windows ou noyau Windows
► Plusieurs causes potentiels :
→ Un Logiciel qui se charge très bas ... tel que l'antivirus (a ce propos, quel anti virus utilises-tu?)
→ Un pilote qui bug et plante la station
→ un problème matériel qui cause des instabilités tel que le disque dur ou la RAM (mémoire)
> Pour essayer de trouver d'avantage d'information sur les rapports de crash, copie les rapports de crash se trouvant dans C:\WINDOWS\Minidump\
vers un dossier temporaire (ex dans Mes Documents)
>> Puis compresse ces fichiers.
>>> Enfin poste le's) fichier(s) compressé(s) sur le site https://www.cjoint.com/ et colle le(s) lien(s) de ce(s) fichier(s) dans ta prochaine réponse
► Plusieurs causes potentiels :
→ Un Logiciel qui se charge très bas ... tel que l'antivirus (a ce propos, quel anti virus utilises-tu?)
→ Un pilote qui bug et plante la station
→ un problème matériel qui cause des instabilités tel que le disque dur ou la RAM (mémoire)
> Pour essayer de trouver d'avantage d'information sur les rapports de crash, copie les rapports de crash se trouvant dans C:\WINDOWS\Minidump\
vers un dossier temporaire (ex dans Mes Documents)
>> Puis compresse ces fichiers.
>>> Enfin poste le's) fichier(s) compressé(s) sur le site https://www.cjoint.com/ et colle le(s) lien(s) de ce(s) fichier(s) dans ta prochaine réponse
je n'utilise pas d'antivirus car je l'ai desinstaller y a peut part rapport a ce soucis , je copie ca mtn 2 min ,voila tient https://www.cjoint.com/c/GGra0RjFxqq
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Clic sur le bouton bleu [répondre au sujet] :
puis
Clic sur l'icone [image] pour intégrer l'image a ta réponse
puis
Clic sur l'icone [image] pour intégrer l'image a ta réponse
Bon ... regarde dans cet ordre ce que tu vas faire (un truc après l'autre ...) :
-1) Teste mise a jour pilote ► ICI
===============
-2) Teste RAM ► ICI
===============
-3) Teste et réparation disque ► ICI
Pour ma pars, je pencherais pour un souci de pilote d'après les Dump? mais faut tester le reste.
Tu as un peu de boulo, :))
-1) Teste mise a jour pilote ► ICI
===============
-2) Teste RAM ► ICI
===============
-3) Teste et réparation disque ► ICI
Pour ma pars, je pencherais pour un souci de pilote d'après les Dump? mais faut tester le reste.
Tu as un peu de boulo, :))
donc ;
Système d’exploitation Microsoft Windows 7 Édition Familiale Premium
Version 6.1.7601 Service Pack 1 Build 7601
Informations supplémentaires Non disponible
Éditeur Microsoft Corporation
Ordinateur ENZO-PC
Fabricant ASUSTeK COMPUTER INC.
Modèle S551LN
Type PC à base de x64
Processeur Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz, 1700 MHz, 2 cœur(s), 4 processeur(s) logique(s)
Version du BIOS/Date American Megatrends Inc. S551LN.209, 08/07/2014
Version SMBIOS 2.7
Répertoire Windows C:\Windows
Répertoire système C:\Windows\system32
Périphérique de démarrage \Device\HarddiskVolume1
Option régionale France
Couche d’abstraction matérielle Version = "6.1.7601.17514"
Utilisateur enzo-PC\enzo
Fuseaux horaires Paris, Madrid (heure d’été)
Mémoire physique (RAM) installée 4,00 Go
Mémoire physique totale 3,89 Go
Mémoire physique disponible 1,77 Go
Mémoire virtuelle totale 7,77 Go
Mémoire virtuelle disponible 5,40 Go
Espace pour le fichier d’échange 3,89 Go
Fichier d’échange C:\pagefile.sys
et pour le liens ;
https://forum.touslesdrivers.com/configuration.php?v_code=122973
Système d’exploitation Microsoft Windows 7 Édition Familiale Premium
Version 6.1.7601 Service Pack 1 Build 7601
Informations supplémentaires Non disponible
Éditeur Microsoft Corporation
Ordinateur ENZO-PC
Fabricant ASUSTeK COMPUTER INC.
Modèle S551LN
Type PC à base de x64
Processeur Intel(R) Core(TM) i3-4010U CPU @ 1.70GHz, 1700 MHz, 2 cœur(s), 4 processeur(s) logique(s)
Version du BIOS/Date American Megatrends Inc. S551LN.209, 08/07/2014
Version SMBIOS 2.7
Répertoire Windows C:\Windows
Répertoire système C:\Windows\system32
Périphérique de démarrage \Device\HarddiskVolume1
Option régionale France
Couche d’abstraction matérielle Version = "6.1.7601.17514"
Utilisateur enzo-PC\enzo
Fuseaux horaires Paris, Madrid (heure d’été)
Mémoire physique (RAM) installée 4,00 Go
Mémoire physique totale 3,89 Go
Mémoire physique disponible 1,77 Go
Mémoire virtuelle totale 7,77 Go
Mémoire virtuelle disponible 5,40 Go
Espace pour le fichier d’échange 3,89 Go
Fichier d’échange C:\pagefile.sys
et pour le liens ;
https://forum.touslesdrivers.com/configuration.php?v_code=122973
Re
Tu peux suivre les explications ► Ici → ("DevID" Tuto Par Malekal)
============================================
============================================
jm
Tu peux suivre les explications ► Ici → ("DevID" Tuto Par Malekal)
- Procède à la vérification des pilotes en te rendant sur le chapitre :
Automatiquement avec l’Agent DevID
- C'est la méthode la plus simple
/!\ Attention lors de l’utilisation du site DevID, si vous n’utilisez pas de bloqueur de publicités (µblock origin), faites très attention aux encarts publicitaires qui peuvent amener à des logiciels de mises à jour de pilotes bidons
============================================
- Pour ton Périphérique inconnue, procède comme indiqué ►ICI◄ pour identifier le nom du périphérique et le nom du fabricant
============================================
jm
Parfait ;)
Juste pour vérifier,
→ Comment héberger un rapport
/
Juste pour vérifier,
- Peux tu lancer un scan de diagnostic comme expliqué ►ici et transmettre le lien du rapport dans ta prochaine réponse .
→ Comment héberger un rapport
/
Parfait
Lance la correction comme indiqué ci-dessous:
==================================
/!\ Avertissement /!\
Script ZHPFix
SysRestore
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97]
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97]
O4 - HKCU\..\Run: [TQOS_REPORT] -- c:\program files\tencentgame\monster hunter online\bin\client\tools\tqos_reporter.exe (.not file.)
O4 - HKUS\S-1-5-21-697179099-2623070541-511625905-1000\..\Run: [TQOS_REPORT] -- c:\program files\tencentgame\monster hunter online\bin\client\tools\tqos_reporter.exe (.not file.)
HKLM\SOFTWARE\Wow6432Node\Tencent
HKCU\SOFTWARE\Tencent
HKCU\SOFTWARE\AppDataLow\Tencent
O43 - CFD: 05/07/2017 - [] D -- C:\Program Files\TencentGame
O43 - CFD: 05/07/2017 - [] D -- C:\ProgramData\Tencent
O43 - CFD: 05/07/2017 - [] D -- C:\Users\enzo\AppData\Roaming\Tencent
O58 - SDL:2017/07/06 09:11:22 A . (.Tencent - TesMon64.) -- C:\Windows\System32\TesMon.sys [60472]
O58 - SDL:2017/07/06 09:12:55 A . (.TENCENT - Loader64 NT Driver.) -- C:\Windows\System32\TesSafe.sys [1020968]
O87 - FAEL: "TCP Query User{DAFCC041-2E87-49CA-B383-6E3550E6F426}C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe (.not file.)
O87 - FAEL: "UDP Query User{6A88D275-3F34-44B8-A813-F7099F7D3B3C}C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe (.not file.)
O87 - FAEL: "{5982A901-98F3-41E6-9BA9-4C8C5D5C4B71}" [In-None-P6-TRUE] .(.Tencent - Tencent TenioDL for Game.) -- c:\users\enzo\appdata\roaming\tencent\????online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O87 - FAEL: "{7D57E132-1180-462A-8CF1-72A03BF4F9C3}" [In-None-P17-TRUE] .(.Tencent - Tencent TenioDL for Game.) -- c:\users\enzo\appdata\roaming\tencent\????online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O87 - FAEL: "{D2936EE8-4036-4707-A847-B8620E20EF4F}" [In-None-P6-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{2D291289-089B-44B2-9B7E-A6A762BA9B40}" [In-None-P6-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{F0026099-0485-4F47-81C9-8DA31283175E}" [In-None-P17-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{648C19A3-AE54-4671-AB1C-B2A149755CC0}" [In-None-P17-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "TCP Query User{024C1DA3-0B10-4B51-ABF2-C899C4F37CC0}C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe (.not file.)
O87 - FAEL: "UDP Query User{2614A502-DE9A-40D3-899B-9861E9285DE3}C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe (.not file.)
O87 - FAEL: "{C79755FB-1036-4FEB-97BC-6F9E0DC08F02}" [In-None-P6-TRUE] .(...) -- C:\Program Files\TencentGame\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe (.not file.)
O87 - FAEL: "{DF4A9B28-3EFB-4DAA-93B9-4BAB93B4752B}" [In-None-P17-TRUE] .(...) -- C:\Program Files\TencentGame\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe (.not file.)
C:\Program Files\TencentGame
C:\ProgramData\Tencent
C:\Users\enzo\AppData\Roaming\Tencent
c:\users\enzo\appdata\roaming\tencent\怪物猎人online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O90 - PUC: "61F70108E2BCBA24BAD9C61145D0A5B8" . (.WinThruster.)
C:\Windows\System32\Tasks\WinThruster64-enzo-Notification
C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
[HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}]
[HKLM\Software\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8]
[HKLM\Software\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8]
O61 - LFC: 2017/07/11 01:53:20 A . (.Solvusoft Corporation.) -- C:\Users\enzo\Downloads\Setup_WinThruster_2016.exe
O43 - CFD: 17/07/2017 - [] D -- C:\Program Files (x86)\Solvusoft
O43 - CFD: 17/07/2017 - [] D -- C:\Program Files\Solvusoft
O42 - Logiciel: WinThruster - (.Solvusoft Corporation.) [HKLM][64Bits] -- {80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[MD5.6219A6387F46488BE13CF68AEE49CE50] - (.Solvusoft Corporation - Solvusoft Update Manager.) -- C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [1686088] [PID.3036]
O4 - HKLM\..\Run: [CommonToolkitTray_Solvusoft] . (.Solvusoft Corporation - Solvusoft Update Manager.) -- C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\WinThruster64-enzo-Notification [3434]
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage-journal
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal
EmptyCLSID
EmptyTemp
EmptyFlash
EmptyPrefetch
FirewallRAZ
ProxyFix
ShortCutFix
Lance la correction comme indiqué ci-dessous:
==================================
- Télécharger et enregistrer Zhpfix sur ton bureau
- lancer zhpfix, il va s'installer sur le pc,
/!\ Les Utilisateurs de Vista-7-8-10 Cliquer droit sur le logo de ZHPfix et "exécuter en tant qu'Administrateur"
/!\ Avertissement /!\
ce script est spécialement rédigé pour ce pc en cours du nettoyage, ne pas utiliser ce script sur un autre pc, Risque de Plantage !
- Lancer ZHPFix via le raccourci qui se trouve sur le Bureau. "L'icône ressemble à une seringue".
- Cliquer sur "importer" > Une fenêtre d'avertissement apparait cliquer sur OK
- Copier ( Ctrl + C ) et coller ( Ctrl + V ) les lignes ci-dessous en gras dans la fenêtre de Zhpfix.
Script ZHPFix
SysRestore
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97]
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\1916A2AF346D399F50313C393200F14140456616]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2A83E9020591A55FC6DDAD3FB102794C52B24E70]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\2B84BFBB34EE2EF949FE1CBE30AA026416EB2216]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\305F8BD17AA2CBC483A4C41B19A39A0C75DA39D6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\367D4B3B4FCBBC0B767B2EC0CDB2A36EAB71A4EB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\3A850044D8A195CD401A680C012CB0A3B5F8DC08]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\40AA38731BD189F9CDB5B9DC35E2136F38777AF4]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\43D9BCB568E039D073A74A71D8511F7476089CC3]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\471C949A8143DB5AD5CDF1C972864A2504FA23C9]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\51C3247D60F356C7CA3BAF4C3F429DAC93EE7B74]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\5DE83EE82AC5090AEA9D6AC4E7A6E213F946E179]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\61793FCBFA4F9008309BBA5FF12D2CB29CD4151A]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\637162CC59A3A1E25956FA5FA8F60D2E1C52EAC6]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\63FEAE960BAA91E343CE2BD8B71798C76BDB77D0]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\6431723036FD26DEA502792FA595922493030F97]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\7D7F4414CCEF168ADF6BF40753B5BECD78375931]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\80962AE4D6C5B442894E95A13E4A699E07D694CF]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\86E817C81A5CA672FE000F36F878C19518D6F844]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\8E5BD50D6AE686D65252F843A9D4B96D197730AB]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\9845A431D51959CAF225322B4A4FE9F223CE6D15]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B533345D06F64516403C00DA03187D3BFEF59156]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\B86E791620F759F17B8D25E38CA8BE32E7D5EAC2]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\C060ED44CBD881BD0EF86C0BA287DDCF8167478C]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\CEA586B2CE593EC7D939898337C57814708AB2BE]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\D018B62DC518907247DF50925BB09ACF4A5CB3AD]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\F8A54E03AADC5692B850496A4C4630FFEAA29D83]
[HKLM\Software\Microsoft\SystemCertificates\Disallowed\Certificates\FA6660A94AB45F6A88C0D7874D89A863D74DEE97]
O4 - HKCU\..\Run: [TQOS_REPORT] -- c:\program files\tencentgame\monster hunter online\bin\client\tools\tqos_reporter.exe (.not file.)
O4 - HKUS\S-1-5-21-697179099-2623070541-511625905-1000\..\Run: [TQOS_REPORT] -- c:\program files\tencentgame\monster hunter online\bin\client\tools\tqos_reporter.exe (.not file.)
HKLM\SOFTWARE\Wow6432Node\Tencent
HKCU\SOFTWARE\Tencent
HKCU\SOFTWARE\AppDataLow\Tencent
O43 - CFD: 05/07/2017 - [] D -- C:\Program Files\TencentGame
O43 - CFD: 05/07/2017 - [] D -- C:\ProgramData\Tencent
O43 - CFD: 05/07/2017 - [] D -- C:\Users\enzo\AppData\Roaming\Tencent
O58 - SDL:2017/07/06 09:11:22 A . (.Tencent - TesMon64.) -- C:\Windows\System32\TesMon.sys [60472]
O58 - SDL:2017/07/06 09:12:55 A . (.TENCENT - Loader64 NT Driver.) -- C:\Windows\System32\TesSafe.sys [1020968]
O87 - FAEL: "TCP Query User{DAFCC041-2E87-49CA-B383-6E3550E6F426}C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe (.not file.)
O87 - FAEL: "UDP Query User{6A88D275-3F34-44B8-A813-F7099F7D3B3C}C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\tcls\tenprotect\tensafe_1.exe (.not file.)
O87 - FAEL: "{5982A901-98F3-41E6-9BA9-4C8C5D5C4B71}" [In-None-P6-TRUE] .(.Tencent - Tencent TenioDL for Game.) -- c:\users\enzo\appdata\roaming\tencent\????online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O87 - FAEL: "{7D57E132-1180-462A-8CF1-72A03BF4F9C3}" [In-None-P17-TRUE] .(.Tencent - Tencent TenioDL for Game.) -- c:\users\enzo\appdata\roaming\tencent\????online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O87 - FAEL: "{D2936EE8-4036-4707-A847-B8620E20EF4F}" [In-None-P6-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{2D291289-089B-44B2-9B7E-A6A762BA9B40}" [In-None-P6-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{F0026099-0485-4F47-81C9-8DA31283175E}" [In-None-P17-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "{648C19A3-AE54-4671-AB1C-B2A149755CC0}" [In-None-P17-TRUE] .(...) -- c:\program files\tencentgame\monster hunter online\bin\client\iips\iipshostapp.exe (.not file.)
O87 - FAEL: "TCP Query User{024C1DA3-0B10-4B51-ABF2-C899C4F37CC0}C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe" [In-None-P6-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe (.not file.)
O87 - FAEL: "UDP Query User{2614A502-DE9A-40D3-899B-9861E9285DE3}C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe" [In-None-P17-TRUE] .(...) -- C:\program files\tencentgame\monster hunter online\bin\client\bin32\mhoclient.exe (.not file.)
O87 - FAEL: "{C79755FB-1036-4FEB-97BC-6F9E0DC08F02}" [In-None-P6-TRUE] .(...) -- C:\Program Files\TencentGame\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe (.not file.)
O87 - FAEL: "{DF4A9B28-3EFB-4DAA-93B9-4BAB93B4752B}" [In-None-P17-TRUE] .(...) -- C:\Program Files\TencentGame\Monster Hunter Online\Bin\Client\Bin32\Cross\crossproxy.exe (.not file.)
C:\Program Files\TencentGame
C:\ProgramData\Tencent
C:\Users\enzo\AppData\Roaming\Tencent
c:\users\enzo\appdata\roaming\tencent\怪物猎人online\8a4a852fa00c637d39db1ee5d9697db9\teniodl\teniodl.exe
O90 - PUC: "61F70108E2BCBA24BAD9C61145D0A5B8" . (.WinThruster.)
C:\Windows\System32\Tasks\WinThruster64-enzo-Notification
C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
[HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{80107F16-CB2E-42AB-AB9D-6C11540D5A8B}]
[HKLM\Software\Classes\Installer\Products\61F70108E2BCBA24BAD9C61145D0A5B8]
[HKLM\Software\Classes\Installer\Features\61F70108E2BCBA24BAD9C61145D0A5B8]
O61 - LFC: 2017/07/11 01:53:20 A . (.Solvusoft Corporation.) -- C:\Users\enzo\Downloads\Setup_WinThruster_2016.exe
O43 - CFD: 17/07/2017 - [] D -- C:\Program Files (x86)\Solvusoft
O43 - CFD: 17/07/2017 - [] D -- C:\Program Files\Solvusoft
O42 - Logiciel: WinThruster - (.Solvusoft Corporation.) [HKLM][64Bits] -- {80107F16-CB2E-42AB-AB9D-6C11540D5A8B}
[MD5.6219A6387F46488BE13CF68AEE49CE50] - (.Solvusoft Corporation - Solvusoft Update Manager.) -- C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe [1686088] [PID.3036]
O4 - HKLM\..\Run: [CommonToolkitTray_Solvusoft] . (.Solvusoft Corporation - Solvusoft Update Manager.) -- C:\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe
O39 - APT: Unknown - (...) -- C:\Windows\System32\Tasks\WinThruster64-enzo-Notification [3434]
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.audienceinsights.net_0.localstorage-journal
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_st.chatango.com_0.localstorage-journal
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage
C:\Users\enzo\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.audienceinsights.net_0.localstorage-journal
EmptyCLSID
EmptyTemp
EmptyFlash
EmptyPrefetch
FirewallRAZ
ProxyFix
ShortCutFix
- Cliquer sur le bouton "GO" pour lancer le nettoyage puis Confirmer le nettoyage
- Redémarre le pc ...
- Un rapport ZHPfix.txt se trouvera sur le bureau...
- Merci de poster ce rapport (zhpfix) dans ta prochaine réponse.
Avec plaisir =)
Pour l'antivirus, tu peux utiliser cette page pour te donner une idée ?!
Perso, j'utilise Windows Defender qui est (pour ma pars) suffisant ;)
Pour l'antivirus, tu peux utiliser cette page pour te donner une idée ?!
Perso, j'utilise Windows Defender qui est (pour ma pars) suffisant ;)