cjoint

Publicité


Publicité

Commentaire : ZHPDiag v2015.10.10.148 Par Nicolas Coolman (2015/10/10) ~ Démarré par Mickael (Administrator) (2015/10/11 23:08:19) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\Mickael\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\Mickael\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 10 Home, 64-bit (Build 10240) ---\\ Navigateurs Internet (3) - 0s GCIE: Google Chrome v32.0.1700.76 MFIE: Mozilla Firefox 40.0.2 (x86 fr) v40.0.2 MSIE: Internet Explorer v11.0.10240.16431 ---\\ Informations sur les produits Windows (3) - 3s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Automatic Updates : OK ---\\ Logiciels de protection (3) - 3s Malwarebytes Anti-Malware version 2.1.8.1057 Microsoft Security Client v4.8.0204.0 Windows Defender (Activate) ---\\ Logiciels de protection et autres (Superflus) (1) - 3s Spybot - Search & Destroy v2.4.40 ---\\ Logiciels d'optimisation (1) - 3s CCleaner v4.14 ---\\ Surveillance de Logiciels (2) - 3s Adobe Flash Player 19 NPAPI Adobe Reader XI ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 4042.604 MB (33% free) ~ System Restore: Activé (Enable) ~ System drive C: has 67 GB free of 234 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: MAO-PC ~ User Name: Mickael ~ Logged in as Administrator ---\\ Enumération des unités disques (4) - 0s ~ Drive C: has 67 GB free of 234 GB (System) ~ Drive F: has 7 GB free of 7 GB ~ Drive J: has 90 GB free of 170 GB ~ Drive M: has 0 GB free of 51 GB ---\\ Etat du Centre de Sécurité Windows (7) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (25) - 2s [MD5.F1CBCB7FA6F3B309639AA2D4EF74469C] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [4532304] © [MD5.5DED2A3F11AE916C8F2724947E736261] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [59392] © [MD5.7718A2A9B2BFB2C8E2BAEB03310CA3FD] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [290312] © [MD5.FE32B8423711B4B4378C0BA3C3560ED4] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2741760] © [MD5.84B1FE2E4615A89293F1FD4DE52EE26E] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [578560] © [MD5.ECB1943967424DFB96E03F6A098434EF] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [430592] © [MD5.C287D0E32771E3222A444DC527A29477] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\System32\dnsapi.dll [680256] © [MD5.BB5BBD0E4D04047585E4ED0F07AA51E7] - (.Microsoft Corporation - DNS DLL de l’API Client.) () -- C:\WINDOWS\Syswow64\dnsapi.dll [534064] © [MD5.8C795953726C7D2DE72CE4748208C5ED] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [20480] © [MD5.6C12C7E01A4F64E0AA9C88AF66955CC9] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [577888] © [MD5.8921DF6060DB5C7700AA48CB12E9EA08] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [28512] © [MD5.F2829DC6D292DCAC5029893BB2E9FEE3] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [92672] © [MD5.CA160E02F35A61C6F5C681FB4669C519] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [174080] © [MD5.25435407D97419627F4B10653433BF2B] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [138240] © [MD5.C277A49F8A8295840DEBC9240B75A282] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [80896] © [MD5.D4CDEE4A62BDFFF6E8558A9552148EA7] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [114688] © [MD5.5D3744E6FDEC1A6FB3FA9B1DD4AF0694] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [143360] © [MD5.1DF2C5FD2710A13B07E663A12F0E0EEA] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [415232] © [MD5.F0D791348AD254360CC3C3E501CCB745] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [273408] © [MD5.466EC5659C02ED53DBD47DC1BC2B8086] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2116448] © [MD5.38F1AE32339731F6E5A7281AE8042545] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [96768] © [MD5.CA60F6C03611AF1710BC903ED9F566FB] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] © [MD5.A32AED8C644734B283A7C9D08D76064D] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [176128] © [MD5.28E1E63A1AC65E17B3194238FA2CF3BF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [116576] © [MD5.823A237D871CD652C6BFD47BECB6810A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [378720] © ---\\ Processus lancés (28) - 2s [MD5.2BBFB2F7BE3623E93D5EEF17EBE9AEE4] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [256992] [PID.1116] © [MD5.013697369EAFFA675D0671607F036020] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.2032] © [MD5.446462BBA744DA60379574926FD51EAB] - (.Copyright (C) 2012 - PassThruSvr Application.) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912] [PID.1936] [MD5.1BC4D923B0E6CC2E17B7409B20A7FB52] - (...) -- C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [31856] [PID.2020] [MD5.912EFA53B6D7EF8BE08BE5567AAEE797] - (.RealNetworks, Inc. - RealTimes Desktop Service.) -- c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe [1115224] [PID.2064] © [MD5.E4DEBF8D1983712E5E3CF8A7D87D0ABD] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [237736] [PID.2284] © [MD5.775A7C4B689C0F112A12AD62064E57D1] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [5093216] [PID.2300] © [MD5.52F7E8603E888E3DB0A8B3D1804098E9] - (.Skype Technologies - Skype Updater Service.) -- C:\Program Files (x86)\Skype\Updater\Updater.exe [327296] [PID.5140] © [MD5.36B255FA65EBBFCCACDA82251F0CF29A] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [681456] [PID.4044] © [MD5.D3324E910C1781D78BDDE4784D4BEE8C] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3935912] [PID.3088] © [MD5.99FC5CBE42E2F2CBC47C1B990CAC3430] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) -- C:\PROGRAM FILES\SYNAPTICS\SynTP\SYNTPHELPER.EXE [201384] [PID.7036] © [MD5.65E8545F1297CD83534C354A7BED1848] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696] [PID.1700] © [MD5.0C3154D0620F974AD5C4E8D87626C8CF] - (.Intel Corporation - igfxTray Module.) -- C:\Windows\System32\igfxtray.exe [183216] [PID.5720] © [MD5.E4AA3D28753EF9DB333FE40079993B09] - (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe [411056] [PID.3892] © [MD5.CF40080765D6F66FA93318C0DB6C7D1F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [453552] [PID.2888] © [MD5.D5CDEA452982FC61E21EE978AAB134DD] - (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [367016] [PID.3244] [MD5.25E8FAE159E9D28B490A936FD41C53D6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824] [PID.3492] © [MD5.DA5998CAB84762C28A389B611A6F1C28] - (.RealNetworks, Inc. - RealTimes Service UI.) -- C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpsystray.exe [1132120] [PID.5148] © [MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.6964] © [MD5.A042148274A48A410CAD918CB8C60D03] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [286272] [PID.6348] © [MD5.312707A513F86ED20642F43F8EF4DD14] - (.IncrediMail, Ltd. - IncrediMail Tray Application.) -- C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe [264616] [PID.1492] [MD5.0D81BF4719C5841C6A5A7204B5F2EEEB] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [307400] [PID.7048] © [MD5.2D2F526D9D31E328D8C0DD3D4E05133E] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [307912] [PID.3548] © [MD5.749C9E51E6D5A5AC23D2B4B8B63CAFE9] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [377000] [PID.8944] © [MD5.E10A68BA18BA07B591C59AC4A33860FE] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [277672] [PID.3972] © [MD5.ED51CB30657A6C3217A03D1628FB9038] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe [3425992] [PID.9084] © [MD5.ED51CB30657A6C3217A03D1628FB9038] - (.Adobe Systems, Inc. - Adobe Flash Player 19.0 r0.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_185.exe [3425992] [PID.7536] © [MD5.1D45319619579DDA7DE8DE9BB1E3079E] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Mickael\Downloads\ZHPDiag3.exe [1943040] [PID.8132] © ---\\ Google Chrome, Démarrage,Recherche,Extensions (1) - 0s G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (19) - 1s M0 - MFSP: prefs.js [Mickael - x9cuzz2o.default] http://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggXcgsIBF9CGRgWdAldTA0SEFMOIVsKAxRIEwQVc1sIUQxEGAMFIk0FA18DB0VXfWFoKB8fHHNKLE1dE2sUUkBPNEo= =>PUP.Optional.Browser P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\application@lovintest.com.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\gmailnoads@mywebber.com.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\{e8f8da3a-99a8-45cd-a6e0-fc7d6d49412a}.xpi P2 - EXT FILE: (...) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\searchplugins\default.xml P2 - EXT: (.Mozilla - Default.) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} © P2 - EXT: (.Zigboom - LavaFox V2-Blue.) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\djziggy@gmail.com © P2 - EXT: (.DevNet - Toolbar Lookineo.) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\toolbar@lookineo.com P2 - EXT: (. - MediaPlayerVideos 1.2.) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\YjMNco1Ro@gmail.com P2 - EXT: (.Linkury - Yahoo Community Smartbar.) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\{760a169d-8614-2a9f-9ca1-a8d6ea102f2b} P2 - EXT: (. - Ask New Tabs.) -- C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\{96800F71-E36E-F07B-30A4-7033D16BAE21} P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_185.dll © P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll © P2 - FPN: [HKLM] [@real.com/nprpplugin;version=18.0.1.9] - (.RealTimes.) -- c:\program files (x86)\Real\realplayer\Netscape6\nprpplugin.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll © P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc..) -- C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll © ---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (23) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = www.google.com R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchUrl,Default = www.google.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV9 = 1 ---\\ Internet Explorer,Proxy Management (5) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe (.Microsoft Corporation.) © F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) © F2 - REG:system.ini: VMApplet= ---\\ Etude du fichier hosts (1) - 0s ~ Le fichier hôte est sain (The hosts file is clean) (15517) ---\\ Browser Helper Object de navigateur (BHO) (1) - 0s O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealTimes Video Downloader.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll © ---\\ Applications lancées au démarrage du système (29) - 8s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe © O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe © O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe © O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe © O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKCU\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe O4 - HKCU\..\Run: [Spybot-S&D Cleaning] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe (.not file.) O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe © O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Mickael\AppData\Roaming\uTorrent\uTorrent.exe O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\OneDrive.exe © O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe © O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe © O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe © O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (.not file.) O4 - HKLM\..\Wow6432Node\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (.not file.) O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe © O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe © O4 - HKUS\.DEFAULT\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE © O4 - HKUS\S-1-5-18\..\Run: [EPLTarget\P0000000000000000] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE © O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe © O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe © O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [IncrediMail] . (.IncrediMail, Ltd. - IncrediMail Application.) -- C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [Spybot-S&D Cleaning] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe (.not file.) O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe © O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [uTorrent] . (.BitTorrent Inc. - µTorrent.) -- C:\Users\Mickael\AppData\Roaming\uTorrent\uTorrent.exe O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\OneDrive.exe © O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe © O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\RunOnce: [Uninstall C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe © O4 - HKUS\S-1-5-21-2525519418-1508052314-4158924175-1001\..\RunOnce: [Uninstall C:\Users\Mickael\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe © ---\\ Modification Domaine/Adresses DNS (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpDomain = lan O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpDomain = lan ---\\ Protocole additionnel (23) - 1s O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll © O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\SysWOW64\inetcomm.dll © O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\SysWOW64\urlmon.dll © O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll © O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\SysWOW64\itss.dll © O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\SysWOW64\tbauth.dll © O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\SysWOW64\MSVidCtl.dll © O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll © O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\SysWOW64\mscoree.dll © O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL © ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (1) - 0s O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL (.not file.) ---\\ Liste des services NT non Microsoft et non désactivés (10) - 0s O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe © O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe © O23 - Service: Service Mise à jour Dropbox (dbupdate) (dbupdate) . (.Dropbox, Inc. - Dropbox Update.) - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe © O23 - Service: Internet Pass-Through Service (PassThru Service) . (.Copyright (C) 2012 - PassThruSvr Application.) - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe O23 - Service: RealPlayer Update Service (RealPlayerUpdateSvc) . (...) - C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe O23 - Service: RealTimes Desktop Service (RealTimes Desktop Service) . (.RealNetworks, Inc. - RealTimes Desktop Service.) - c:\program files (x86)\Real\realplayer\RPDS\Bin\rpdsvc.exe © O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe © O23 - Service: SynTPEnh Caller Service (SynTPEnhService) . (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe © O23 - Service: TeamViewer 8 (TeamViewer8) . (.TeamViewer GmbH - TeamViewer 8.) - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe © O23 - Service: @C:\Program Files (x86)\Windows Defender\MpAsDesc.dll,-310 (WinDefend) . (...) - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (.not file.) ---\\ Tâches planifiées en automatique (30) - 9s [MD5.E3FB05F33E1404AD606B1E1FE7C323C3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [998104] © [MD5.C6D147C12C424373B016C0AB0A6C61EB] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [269000] © [MD5.13ECAC1C51CC00147BD06B5ABF142956] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4529944] © [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskMachineCore] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512] © [MD5.7C6D524C78A1722AD987B9E47AC1FEE2] [APT] [DropboxUpdateTaskMachineUA] (.Dropbox, Inc..) -- C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [134512] © [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineCore] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskMachineUA] (...) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (.not file.) [0] [MD5.D7A08E8B0442C8413BF53FFC340C8678] [APT] [HP AR Program Upload - fd85199884264e7aa93f55b1b637e381e02fb46bb7714a498ca89bc41867302d] (.TODO: <Company name>.) -- C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPRewards.exe [3495432] [MD5.00000000000000000000000000000000] [APT] [PostPoneInstall] (...) -- C:\Users\Mickael\AppData\Local\Temp\ce98ac2e-20c0-4a93-86f6-bdb3e61caf55.exe (.not file.) [0] =>PUP.Optional.CrossRider [MD5.94737A8B7F732EB7219FD473D1AE7A2C] [APT] [RealDownloader Update Check] (.Copyright © RealNetworks, Inc. 1995-2012.) -- C:\Program Files (x86)\RealNetworks\RealDownloader\downloader2.exe [608320] [MD5.435877EEEBA5BE9D934B2A573292A1CA] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-2525519418-1508052314-4158924175-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe [143424] © [MD5.435877EEEBA5BE9D934B2A573292A1CA] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2525519418-1508052314-4158924175-1001] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe [143424] © [MD5.00000000000000000000000000000000] [APT] [{E909572C-3E04-424E-A066-E2C0D5B6C343}] (...) -- D:\Reincarnations3.exe (.not file.) [0] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] © O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job [1184] © O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job [1188] © O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job [1058] O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job [1062] O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task [3996] © O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3976] © O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [2886] © O39 - APT: DropboxUpdateTaskMachineCore - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore [4042] © O39 - APT: DropboxUpdateTaskMachineUA - (.Dropbox, Inc..) -- C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA [4294] © O39 - APT: GoogleUpdateTaskMachineCore - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [3916] O39 - APT: GoogleUpdateTaskMachineUA - (...) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [4168] O39 - APT: HP AR Program Upload - fd85199884264e7aa93f55b1b637e381e02fb46bb7714a498ca89bc41867302d - (.TODO: <Company name>.) -- C:\WINDOWS\System32\Tasks\HP AR Program Upload - fd85199884264e7aa93f55b1b637e381e02fb46bb7714a498ca89bc41867302d [3756] O39 - APT: PostPoneInstall - (...) -- C:\WINDOWS\System32\Tasks\PostPoneInstall [4172] =>PUP.Optional.CrossRider O39 - APT: RealDownloader Update Check - (.Copyright © RealNetworks, Inc. 1995-2012.) -- C:\WINDOWS\System32\Tasks\RealDownloader Update Check [3576] O39 - APT: RealDownloaderRealUpgradeLogonTaskS-1-5-21-2525519418-1508052314-4158924175-1001 - (.RealNetworks, Inc..) -- C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2525519418-1508052314-4158924175-1001 [3384] © O39 - APT: RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2525519418-1508052314-4158924175-1001 - (.RealNetworks, Inc..) -- C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2525519418-1508052314-4158924175-1001 [3514] © ---\\ Logiciels installés (93) - 12s O42 - Logiciel: allday savings - (.allday savings.) [HKLM][64Bits] -- 908C8F9D-D24A-4837-8EC1-08BF193F6091 O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner © O42 - Logiciel: EPSON WF-2510 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON WF-2510 Series © O42 - Logiciel: HeroesOftheNorth - (.HeroesOftheNorth.) [HKLM][64Bits] -- HeroesOftheNorth O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey © O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 1510 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {54C00C25-16ED-4035-BAEC-1C5F9B83B113} © O42 - Logiciel: ATI Catalyst Install Manager - (.ATI Technologies, Inc..) [HKLM][64Bits] -- {580B9989-C624-2415-D922-56D856165564} © O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} © O42 - Logiciel: Microsoft DVD App Installation for Microsoft.WindowsDVDPlayer_2019.6.11761. - (.Microsoft Corporation.) [HKLM][64Bits] -- {986E003C-E56D-5A47-110E-D3C81F0E8535} © O42 - Logiciel: Driver pour mobile - (...) [HKLM][64Bits] -- {D2D77DC2-8299-11D1-8949-444553540000}_is1 O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {D9FCBAAE-DB72-488B-96D0-0AA3C892C0D6} © O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR © O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI © O42 - Logiciel: Off the Record: Linden Shades - (...) [HKLM][64Bits] -- BFG-Off the Record - Linden Shades O42 - Logiciel: Big Fish: Game Manager - (...) [HKLM][64Bits] -- BFGC O42 - Logiciel: butt - (...) [HKLM][64Bits] -- butt O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 © O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite © O42 - Logiciel: Dropbox - (.Dropbox, Inc..) [HKLM][64Bits] -- Dropbox © O42 - Logiciel: Filter Results - (.Filter Results.) [HKLM][64Bits] -- Filter Results =>PUP.Optional.FilterResults O42 - Logiciel: FinalTorrent 2012 - (.Bitberry Software.) [HKLM][64Bits] -- FinalTorrent_is1 © O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome © O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations © O42 - Logiciel: Identity Card - (.Packard Bell.) [HKLM][64Bits] -- Identity Card © O42 - Logiciel: IncrediMail 2.0 - (.IncrediMail Ltd..) [HKLM][64Bits] -- IncrediMail O42 - Logiciel: Video Web Camera - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} © O42 - Logiciel: Packard Bell MyBackup - (.NTI Corporation.) [HKLM][64Bits] -- InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270} © O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9} © O42 - Logiciel: Live 8.2.5 - (...) [HKLM][64Bits] -- Live 8.2.5 O42 - Logiciel: Launch Manager - (.Packard Bell.) [HKLM][64Bits] -- LManager © O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1 © O42 - Logiciel: Mozilla Firefox 40.0.2 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 40.0.2 (x86 fr) © O42 - Logiciel: Mozilla Thunderbird 24.2.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Thunderbird 24.2.0 (x86 fr) © O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService © O42 - Logiciel: Mp3tag v2.58 - (.Florian Heidenreich.) [HKLM][64Bits] -- Mp3tag © O42 - Logiciel: Native Instruments Controller Editor - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Controller Editor © O42 - Logiciel: Native Instruments Service Center - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Service Center © O42 - Logiciel: Native Instruments Traktor 2 - (.Native Instruments.) [HKLM][64Bits] -- Native Instruments Traktor 2 © O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++ © O42 - Logiciel: oursurfing uninstall - (.oursurfing.) [HKLM][64Bits] -- oursurfing uninstall =>PUP.Optional.OurSurfing O42 - Logiciel: Packard Bell Registration - (.Packard Bell.) [HKLM][64Bits] -- Packard Bell Registration © O42 - Logiciel: Packard Bell ScreenSaver - (.Packard Bell .) [HKLM][64Bits] -- Packard Bell Screensaver © O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail Ltd..) [HKLM][64Bits] -- Photo Notifier and Animation Creator O42 - Logiciel: RealTimes (RealPlayer) - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 18.0 © O42 - Logiciel: RocketPDF - (.RocketPDF.) [HKLM][64Bits] -- RocketPDF O42 - Logiciel: GigaTribe 3.04.013 - (.GigaTribe SAS.) [HKLM][64Bits] -- ShalSoft.GigaTribe_is1 O42 - Logiciel: TeamViewer 8 - (.TeamViewer.) [HKLM][64Bits] -- TeamViewer 8 © O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player © O42 - Logiciel: WinRAR 5.00 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver © O42 - Logiciel: AMD Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp © O42 - Logiciel: XAMPP - (.BitNami.) [HKLM][64Bits] -- xampp © O42 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM][64Bits] -- ZHPDiag_is1 © O42 - Logiciel: HP Deskjet 1510 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {00645C10-53C9-46DC-B7D0-6F7B006972E9} © O42 - Logiciel: Video Web Camera - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} © O42 - Logiciel: IPTInstaller - (.HTC.) [HKLM][64Bits] -- {08208143-777D-4A06-BB54-71BF0AD1BB70} © O42 - Logiciel: Dropbox Update Helper - (.Dropbox, Inc..) [HKLM][64Bits] -- {099218A5-A723-43DC-8DB5-6173656A1E94} © O42 - Logiciel: Backup Manager V3 - (.NTI Corporation.) [HKLM][64Bits] -- {0B61BBD5-DA3C-409A-8730-0C3DC3B0F270} © O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {11087D24-567D-7D88-69C6-D7A08B5F4C47} © O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {111EE7DF-FC45-40C7-98A7-753AC46B12FB} © O42 - Logiciel: Java 7 Update 60 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F03217060FF} © O42 - Logiciel: Java 8 Update 25 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218025F0} © O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} © O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} © O42 - Logiciel: IncrediMail - (.IncrediMail.) [HKLM][64Bits] -- {2CF22C94-1369-4C04-9A5F-A4BC6D91B508} O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM][64Bits] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549} © O42 - Logiciel: Packard Bell Power Management - (.Packard Bell.) [HKLM][64Bits] -- {3DB0448D-AD82-4923-B305-D001E521A964} © O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC} © O42 - Logiciel: HP FWUpdateEDO2 - (.Hewlett-Packard.) [HKLM][64Bits] -- {415FA9AD-DA10-4ABE-97B6-5051D4795C90} © O42 - Logiciel: Catalyst Control Center - Branding - (.ATI.) [HKLM][64Bits] -- {57CA189D-BAEB-49BC-AE75-CE70E9B775E1} © O42 - Logiciel: Packard Bell Social Networks - (.CyberLink Corp..) [HKLM][64Bits] -- {64EF903E-D00A-414C-94A4-FBA368FFCDC9} © O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} © O42 - Logiciel: Skype™ 7.8 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {6A0549A9-1B96-498C-ACBC-3943001FEB19} © O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail.) [HKLM][64Bits] -- {788A0222-5690-4212-AA9C-C48FD0E1C9AE} O42 - Logiciel: Packard Bell Recovery Management - (.Packard Bell.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9} © O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} © O42 - Logiciel: RealDownloader - (.RealNetworks.) [HKLM][64Bits] -- {8e7a0203-575b-425c-91a1-8e89464fc940} © O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} © O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} © O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {9F3B20DF-76F2-47F4-9372-F0F56485A58D} © O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723} © O42 - Logiciel: Google+ Auto Backup - (.Google.) [HKLM][64Bits] -- {A50DE037-B5C0-4C8A-8049-B0C576B313D1} © O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-0804-1033-1959-001824147215} © O42 - Logiciel: Adobe Reader XI (11.0.12) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AB0000000001} © O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1 © O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D} © O42 - Logiciel: LauncherMA - (.Micro Application.) [HKLM][64Bits] -- {C06EFB22-B5DB-46C5-9215-BCB5C19C0858} © O42 - Logiciel: UpdateService - (.RealNetworks, Inc..) [HKLM][64Bits] -- {E3AE96D6-E196-45B4-AF62-2B41998B9E37} © O42 - Logiciel: Intel(R) Display Audio Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} © O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} © O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {F302F4F0-588D-6501-1ACF-BE3FDCC9135D} © O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} © O42 - Logiciel: SpringFiles - (.http://www.spring-file.com.) [HKCU][64Bits] -- SpringFiles O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- uTorrent ---\\ HKCU & HKLM Software Keys (161) - 12s HKLM\SOFTWARE\Wow6432Node\5da059a482fd494db3f252126fbc3d5b =>PUP.Optional.CrossRider HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AdwCleaner HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\Apple Computer, Inc. HKLM\SOFTWARE\Wow6432Node\Apple Inc. HKLM\SOFTWARE\Wow6432Node\ASIO HKLM\SOFTWARE\Wow6432Node\Atheros Communications Inc. HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\Big Fish Games HKLM\SOFTWARE\Wow6432Node\butt HKLM\SOFTWARE\Wow6432Node\CDDB HKLM\SOFTWARE\Wow6432Node\Client HKLM\SOFTWARE\Wow6432Node\CyberLink HKLM\SOFTWARE\Wow6432Node\Disc Soft HKLM\SOFTWARE\Wow6432Node\DivXNetworks HKLM\SOFTWARE\Wow6432Node\Dritek HKLM\SOFTWARE\Wow6432Node\Dropbox HKLM\SOFTWARE\Wow6432Node\DropboxUpdate HKLM\SOFTWARE\Wow6432Node\EPSON HKLM\SOFTWARE\Wow6432Node\FASTSEARCH =>PUP.Optional.FastSearch HKLM\SOFTWARE\Wow6432Node\FileZilla 3 HKLM\SOFTWARE\Wow6432Node\Florian Heidenreich HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\HaaliMkx HKLM\SOFTWARE\Wow6432Node\Helix HKLM\SOFTWARE\Wow6432Node\Hewlett-Packard HKLM\SOFTWARE\Wow6432Node\HTC HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\IncrediMail HKLM\SOFTWARE\Wow6432Node\Infigo HKLM\SOFTWARE\Wow6432Node\InstallShield HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\Jodix HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Licenses HKLM\SOFTWARE\Wow6432Node\LuckyBrowse =>PUP.Optional.LuckyBrowse HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware HKLM\SOFTWARE\Wow6432Node\Malwarebytes' Anti-Malware (Trial) HKLM\SOFTWARE\Wow6432Node\MaxPower HKLM\SOFTWARE\Wow6432Node\McAfee.com HKLM\SOFTWARE\Wow6432Node\mcafeeupdater HKLM\SOFTWARE\Wow6432Node\MimarSinan HKLM\SOFTWARE\Wow6432Node\Mozilla HKLM\SOFTWARE\Wow6432Node\mozilla.org HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\MusicNet HKLM\SOFTWARE\Wow6432Node\Native Instruments HKLM\SOFTWARE\Wow6432Node\Nero HKLM\SOFTWARE\Wow6432Node\NewTech Infosystems HKLM\SOFTWARE\Wow6432Node\Notepad++ HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\OEM HKLM\SOFTWARE\Wow6432Node\Packard Bell HKLM\SOFTWARE\Wow6432Node\Photo Notifier and Animation Creator HKLM\SOFTWARE\Wow6432Node\Pioneer HKLM\SOFTWARE\Wow6432Node\Propellerhead Software HKLM\SOFTWARE\Wow6432Node\QATestSystem HKLM\SOFTWARE\Wow6432Node\RealNetworks HKLM\SOFTWARE\Wow6432Node\Realtek HKLM\SOFTWARE\Wow6432Node\Realtek Semiconductor Corp. HKLM\SOFTWARE\Wow6432Node\RocketLife HKLM\SOFTWARE\Wow6432Node\ShalSoft HKLM\SOFTWARE\Wow6432Node\Sk-Enabler HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Software HKLM\SOFTWARE\Wow6432Node\SpringFiles HKLM\SOFTWARE\Wow6432Node\SRS Labs HKLM\SOFTWARE\Wow6432Node\Taronja HKLM\SOFTWARE\Wow6432Node\TeamViewer HKLM\SOFTWARE\Wow6432Node\VideoLAN HKLM\SOFTWARE\Wow6432Node\Visan HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\WdsManPro =>PUP.Optional.WdsManPro HKLM\SOFTWARE\Wow6432Node\WildTangent HKLM\SOFTWARE\Wow6432Node\WinRAR HKLM\SOFTWARE\Wow6432Node\xampp HKLM\SOFTWARE\Wow6432Node\Xing Technology Corp. HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\APN PIP =>PUP.Optional.Conduit HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\Apple Computer, Inc. HKCU\SOFTWARE\Apple Inc. HKCU\SOFTWARE\ATI HKCU\SOFTWARE\Aurigma HKCU\SOFTWARE\Avanquest HKCU\SOFTWARE\Big Fish Games HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\Browser =>PUP.Optional.CrossRider HKCU\SOFTWARE\Caphyon HKCU\SOFTWARE\CC HKCU\SOFTWARE\Chromium HKCU\SOFTWARE\Condut HKCU\SOFTWARE\CyberLink HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\Dritek HKCU\SOFTWARE\Dropbox HKCU\SOFTWARE\DropboxUpdate HKCU\SOFTWARE\FileHippo HKCU\SOFTWARE\Gabest HKCU\SOFTWARE\Google HKCU\SOFTWARE\GUPPY HKCU\SOFTWARE\Haali HKCU\SOFTWARE\Hewlett-Packard HKCU\SOFTWARE\HP HKCU\SOFTWARE\HTC HKCU\SOFTWARE\IM HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\IncrediMail HKCU\SOFTWARE\Infigo HKCU\SOFTWARE\InstallPath HKCU\SOFTWARE\Intel HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\KasperskyLab HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Local AppWizard-Generated Applications HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\MainConcept HKCU\SOFTWARE\Malwarebytes' Anti-Malware HKCU\SOFTWARE\MCAFEE HKCU\SOFTWARE\Micro Application HKCU\SOFTWARE\Mine HKCU\SOFTWARE\minute HKCU\SOFTWARE\Mozilla HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\Native Instruments HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\Norton HKCU\SOFTWARE\ODBC HKCU\SOFTWARE\OEM HKCU\SOFTWARE\Photo Notifier and Animation Creator HKCU\SOFTWARE\Piriform HKCU\SOFTWARE\Real HKCU\SOFTWARE\RealNetworks HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\SAMSUNG HKCU\SOFTWARE\ShalSoft HKCU\SOFTWARE\Skype HKCU\SOFTWARE\Software HKCU\SOFTWARE\speed browser =>PUP.Optional.SpeedBrowser HKCU\SOFTWARE\SpringFiles HKCU\SOFTWARE\Symantec HKCU\SOFTWARE\Synaptics HKCU\SOFTWARE\TeamViewer HKCU\SOFTWARE\TeleCharger HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\undefined HKCU\SOFTWARE\Visan HKCU\SOFTWARE\WebApp HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\Wow6432Node HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\JavaSoft ---\\ Contenu des dossiers Programmes (295) - 13s O43 - CFD: 2015/08/30 20:19:20 - [] D -- C:\Program Files (x86)\Adobe O43 - CFD: 2015/08/26 22:50:13 - [] D -- C:\Program Files (x86)\ATI Technologies O43 - CFD: 2015/05/11 22:46:41 - [] D -- C:\Program Files (x86)\bfgclient O43 - CFD: 2013/11/10 00:23:06 - [] D -- C:\Program Files (x86)\butt O43 - CFD: 2015/09/04 12:17:19 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2013/11/07 11:19:18 - [0] D -- C:\Program Files (x86)\CyberLink O43 - CFD: 2015/01/27 21:14:25 - [] D -- C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 2015/10/06 13:29:51 - [] D -- C:\Program Files (x86)\Dropbox O43 - CFD: 2013/11/10 15:50:37 - [] D -- C:\Program Files (x86)\FileZilla FTP Client O43 - CFD: 2015/03/27 16:23:57 - [] D -- C:\Program Files (x86)\GigaTribe O43 - CFD: 2014/12/15 20:58:05 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/01/11 21:01:38 - [] D -- C:\Program Files (x86)\Hewlett-Packard O43 - CFD: 2015/01/11 21:00:50 - [] D -- C:\Program Files (x86)\HP O43 - CFD: 2015/01/11 21:01:32 - [] D -- C:\Program Files (x86)\HP Photo Creations O43 - CFD: 2015/08/11 11:49:35 - [] D -- C:\Program Files (x86)\HTC O43 - CFD: 2014/04/15 11:14:01 - [] D -- C:\Program Files (x86)\IncrediMail O43 - CFD: 2014/08/21 19:16:06 - [] HD -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2013/11/06 19:57:52 - [] D -- C:\Program Files (x86)\Intel O43 - CFD: 2015/08/26 03:32:27 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2014/12/15 20:58:16 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2013/11/06 20:09:08 - [] D -- C:\Program Files (x86)\Launch Manager O43 - CFD: 2015/08/26 21:43:37 - [] D -- C:\Program Files (x86)\Malwarebytes Anti-Malware O43 - CFD: 2015/08/26 21:43:26 - [0] D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 2015/06/29 15:43:07 - [] D -- C:\Program Files (x86)\Micro Application O43 - CFD: 2013/11/06 21:13:40 - [0] D -- C:\Program Files (x86)\Microsoft O43 - CFD: 2014/04/28 10:18:27 - [] D -- C:\Program Files (x86)\Microsoft Office O43 - CFD: 2015/08/13 09:47:02 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2014/01/30 12:12:16 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio O43 - CFD: 2014/01/30 12:08:53 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 2014/01/30 19:50:57 - [] D -- C:\Program Files (x86)\Microsoft Works O43 - CFD: 2015/08/23 14:26:43 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/08/27 19:20:43 - [] D -- C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 2015/08/27 19:23:12 - [] D -- C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 2014/01/17 12:07:22 - [] D -- C:\Program Files (x86)\Mozilla Thunderbird O43 - CFD: 2013/12/11 10:43:58 - [] D -- C:\Program Files (x86)\Mp3tag O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/06/19 14:59:53 - [0] D -- C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 2013/11/10 16:00:14 - [] D -- C:\Program Files (x86)\Notepad++ O43 - CFD: 2011/04/19 14:05:16 - [] D -- C:\Program Files (x86)\NTI O43 - CFD: 2015/07/16 09:58:55 - [] D -- C:\Program Files (x86)\Off the Record - Linden Shades O43 - CFD: 2014/01/16 17:45:48 - [] D -- C:\Program Files (x86)\Packard Bell O43 - CFD: 2013/11/07 11:18:05 - [] D -- C:\Program Files (x86)\Packard Bell Games O43 - CFD: 2014/04/15 18:47:10 - [] D -- C:\Program Files (x86)\Photo Notifier and Animation Creator O43 - CFD: 2014/04/17 10:55:07 - [] D -- C:\Program Files (x86)\QuickTime O43 - CFD: 2015/06/21 22:07:41 - [] D -- C:\Program Files (x86)\Real O43 - CFD: 2015/06/21 22:06:54 - [] D -- C:\Program Files (x86)\RealNetworks O43 - CFD: 2011/04/19 13:37:54 - [] D -- C:\Program Files (x86)\Realtek O43 - CFD: 2015/08/23 15:01:13 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/02/04 21:23:01 - [] D -- C:\Program Files (x86)\RocketPDF O43 - CFD: 2013/12/21 20:07:24 - [] D -- C:\Program Files (x86)\Samsung O43 - CFD: 2014/12/09 19:03:55 - [] D -- C:\Program Files (x86)\Serato O43 - CFD: 2015/09/04 12:17:19 - [] RD -- C:\Program Files (x86)\Skype O43 - CFD: 2015/04/02 10:17:30 - [] D -- C:\Program Files (x86)\Smart Driver Updater O43 - CFD: 2011/04/19 14:03:42 - [] D -- C:\Program Files (x86)\Social Networks O43 - CFD: 2015/08/25 21:48:23 - [] D -- C:\Program Files (x86)\SpringFiles O43 - CFD: 2013/11/20 17:56:43 - [] D -- C:\Program Files (x86)\TeamViewer O43 - CFD: 2011/04/19 13:37:21 - [0] HD -- C:\Program Files (x86)\Temp O43 - CFD: 2014/06/16 15:49:34 - [] D -- C:\Program Files (x86)\Ubisoft O43 - CFD: 2009/07/14 06:57:06 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2015/03/30 23:52:32 - [] D -- C:\Program Files (x86)\uTorrent O43 - CFD: 2013/11/06 20:20:54 - [] D -- C:\Program Files (x86)\Video Web Camera O43 - CFD: 2014/04/16 22:28:23 - [] D -- C:\Program Files (x86)\VideoLAN O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2013/11/07 11:36:46 - [] D -- C:\Program Files (x86)\Windows Live O43 - CFD: 2015/08/23 14:26:45 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 2015/07/10 13:04:22 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2015/07/10 18:23:55 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2015/08/23 14:26:46 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2015/07/10 13:04:22 - [] SD -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 2013/11/08 11:13:01 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2015/01/02 18:09:15 - [] D -- C:\Program Files (x86)\ZHPDiag O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2015/08/23 14:35:02 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/08/23 15:08:55 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\butt O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite O43 - CFD: 2015/10/06 13:29:51 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox O43 - CFD: 2015/08/23 14:53:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON O43 - CFD: 2015/09/07 11:55:25 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GigaTribe O43 - CFD: 2015/08/27 09:23:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail O43 - CFD: 2015/08/23 14:35:02 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2015/07/10 13:04:26 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/08/26 21:43:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Off the Record - Linden Shades O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks O43 - CFD: 2015/09/04 12:17:23 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 2015/08/23 14:35:02 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Social Networks O43 - CFD: 2015/08/26 21:12:05 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 2015/07/10 13:04:26 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2015/07/10 18:28:36 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/08/23 14:35:02 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Web Camera O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/08/23 14:35:02 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XAMPP O43 - CFD: 2015/08/23 14:27:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP O43 - CFD: 2014/04/19 22:01:20 - [] D -- C:\ProgramData\1420F O43 - CFD: 2014/04/17 16:24:20 - [] D -- C:\ProgramData\14FC O43 - CFD: 2014/12/09 23:09:01 - [] D -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 O43 - CFD: 2014/05/30 09:31:57 - [] D -- C:\ProgramData\39357 O43 - CFD: 2015/09/03 11:31:23 - [] D -- C:\ProgramData\3WdsManPro3 =>PUP.Optional.WdsManPro O43 - CFD: 2013/11/20 09:52:41 - [] D -- C:\ProgramData\Ableton O43 - CFD: 2015/02/22 20:52:44 - [] D -- C:\ProgramData\Adobe O43 - CFD: 2015/10/05 21:54:27 - [] D -- C:\ProgramData\AppData O43 - CFD: 2014/12/15 20:59:14 - [] D -- C:\ProgramData\Apple O43 - CFD: 2013/11/20 10:14:05 - [] D -- C:\ProgramData\Apple Computer O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2015/08/24 11:30:39 - [] D -- C:\ProgramData\ATI O43 - CFD: 2011/04/19 14:06:38 - [] D -- C:\ProgramData\BackupManager O43 - CFD: 2015/05/11 22:46:03 - [] D -- C:\ProgramData\Big Fish O43 - CFD: 2015/08/25 21:49:56 - [] D -- C:\ProgramData\boost_interprocess O43 - CFD: 2013/11/06 21:04:48 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 2014/04/15 20:08:13 - [] D -- C:\ProgramData\Caphyon O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\Comms O43 - CFD: 2014/12/15 20:59:14 - [] D -- C:\ProgramData\CyberLink O43 - CFD: 2014/12/15 21:16:24 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 2015/05/18 19:07:15 - [] D -- C:\ProgramData\DailyMagic O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/07/02 17:37:50 - [] D -- C:\ProgramData\Dropbox O43 - CFD: 2015/06/01 23:36:32 - [] D -- C:\ProgramData\Elephant Games O43 - CFD: 2015/08/23 14:53:19 - [] D -- C:\ProgramData\EPSON O43 - CFD: 2013/11/06 21:04:48 - [0] SHD -- C:\ProgramData\Favoris O43 - CFD: 2014/12/15 12:54:54 - [] D -- C:\ProgramData\gemhyVDCHO O43 - CFD: 2015/01/11 20:59:46 - [] D -- C:\ProgramData\HP O43 - CFD: 2015/01/11 21:01:32 - [] D -- C:\ProgramData\HP Photo Creations O43 - CFD: 2015/08/11 11:49:36 - [0] D -- C:\ProgramData\HTC O43 - CFD: 2014/04/15 11:14:33 - [] D -- C:\ProgramData\IM O43 - CFD: 2014/04/15 11:14:01 - [] D -- C:\ProgramData\IncrediMail O43 - CFD: 2014/11/30 18:36:01 - [] D -- C:\ProgramData\jCwreFmMb O43 - CFD: 2015/08/26 21:41:59 - [] D -- C:\ProgramData\Malwarebytes O43 - CFD: 2014/01/16 18:39:41 - [] D -- C:\ProgramData\McAfee O43 - CFD: 2013/11/06 21:04:48 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 2015/06/29 15:43:07 - [] D -- C:\ProgramData\Micro Application O43 - CFD: 2015/08/23 14:27:00 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/09/11 09:05:32 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2015/08/23 14:57:07 - [] D -- C:\ProgramData\Microsoft OneDrive O43 - CFD: 2013/11/06 21:04:48 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 2013/11/08 10:26:58 - [] D -- C:\ProgramData\Mozilla O43 - CFD: 2013/11/08 13:37:26 - [] D -- C:\ProgramData\Native Instruments O43 - CFD: 2011/04/19 14:23:24 - [] D -- C:\ProgramData\Nero O43 - CFD: 2013/11/07 11:37:47 - [] D -- C:\ProgramData\Norton O43 - CFD: 2011/04/19 14:26:14 - [] D -- C:\ProgramData\NortonInstaller O43 - CFD: 2013/11/06 21:07:53 - [] D -- C:\ProgramData\oem O43 - CFD: 2014/12/15 20:59:43 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/08/23 14:27:01 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2011/04/19 14:08:57 - [] D -- C:\ProgramData\Packard Bell O43 - CFD: 2014/04/15 18:47:09 - [0] D -- C:\ProgramData\Photo Notifier and Animation Creator O43 - CFD: 2015/05/28 10:47:20 - [] D -- C:\ProgramData\Playrix Entertainment O43 - CFD: 2015/06/21 22:07:17 - [] D -- C:\ProgramData\Real O43 - CFD: 2015/06/21 22:06:51 - [] D -- C:\ProgramData\RealNetworks O43 - CFD: 2015/07/10 18:28:36 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2014/01/16 17:49:18 - [] D -- C:\ProgramData\Samsung O43 - CFD: 2015/10/05 21:28:20 - [] D -- C:\ProgramData\Skype O43 - CFD: 2015/07/10 13:04:22 - [0] D -- C:\ProgramData\SoftwareDistribution O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2014/07/19 11:38:04 - [] D -- C:\ProgramData\Sun O43 - CFD: 2015/09/07 11:45:48 - [] AD -- C:\ProgramData\Temp O43 - CFD: 2015/07/10 14:21:38 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOPrivate O43 - CFD: 2015/07/10 14:22:45 - [] D -- C:\ProgramData\USOShared O43 - CFD: 2015/08/30 20:17:34 - [0] D -- C:\ProgramData\UWdsManProU =>PUP.Optional.WdsManPro O43 - CFD: 2015/01/11 21:01:32 - [] D -- C:\ProgramData\Visan O43 - CFD: 2013/11/07 11:17:41 - [] D -- C:\ProgramData\WildTangent O43 - CFD: 2013/11/11 18:03:06 - [] HDC -- C:\ProgramData\{36D6E7A6-1DA8-4D35-A74B-0159C59D934D} O43 - CFD: 2013/11/11 17:54:22 - [] HDC -- C:\ProgramData\{5D7D8554-ADF2-463E-B6AC-7A857B390410} O43 - CFD: 2013/11/11 17:51:56 - [] HDC -- C:\ProgramData\{F2610326-6A40-4BBC-9FBC-7F05356A912A} O43 - CFD: 2015/02/22 21:27:21 - [] D -- C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 2013/11/06 20:16:55 - [] D -- C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 2014/12/09 21:02:45 - [0] D -- C:\Program Files (x86)\Common Files\Apple O43 - CFD: 2014/05/14 20:42:06 - [] D -- C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 2013/11/07 11:19:23 - [] D -- C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 2013/11/06 19:57:52 - [] D -- C:\Program Files (x86)\Common Files\Intel O43 - CFD: 2014/12/15 20:57:57 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2015/08/23 14:26:42 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 2013/11/11 17:52:21 - [] D -- C:\Program Files (x86)\Common Files\Native Instruments O43 - CFD: 2011/04/19 13:35:36 - [] D -- C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 2

Format du document : text/plain

Prévisualisation

~ ZHPCleaner v2015.8.26.333 by Nicolas Coolman (2015/08/26)
~ Run by Mickael (Administrator) (30/08/2015 18:38:20)
~ Site : http://www.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\Mickael\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Mickael\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
Windows 10 Home, 64-bit (Build 10240)


---\\ Service. (1)
[R] TROUVÉ : WdsManPro =>PUP.Optional.WpManager


---\\ Navigateur internet. (51)
TROUVÉ Firefox: [x9cuzz2o.default] URL HomePage : http://www.istartsurf.com/?type=hp&ts=1440950996&z=a1269b6015a2a63aa4f6a5egcz1zde1t8w[...] =>PUP.Optional.IsStart
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.defaultenginename", "istartsurf"); =>PUP.Optional.IsStart
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.alias", "istartsurf"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.desc", "this is my first firefox searchEngine"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.iconURL", "http://www.istartsurf.com/favicon.ico"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.name", "istartsurf"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.ptid", "smt"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.searchengine.uid", "[xpconnect wrapped nsIUUIDGenerator]"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.uid", "WDCXWD5000BPVT-22HXZT1_WD-WX31A41T9779T9779"); =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.searchengine.url", "http://www.istartsurf.com/web/?type=ds&ts=1440950996&z[...] =>PUP.Optional.SearchEngine
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.search.selectedEngine", "istartsurf"); =>PUP.Optional.IsStart
TROUVÉ: [x9cuzz2o.default] - user_pref("browser.startup.homepage", "http://www.istartsurf.com/?type=hp&ts=1440950996&z=a1269b6015[...] =>PUP.Optional.IsStart
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.internaldb.monetization_plugin_bundle[...] =>PUP.Optional.Monetization
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.internaldb.monetization_plugin_last_e[...] =>PUP.Optional.Monetization
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.internaldb.monetization_plugin_notBun[...] =>PUP.Optional.Monetization
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.internaldb.monetization_plugin_regBun[...] =>PUP.Optional.Monetization
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.name", "I - Cinema"); =>PUP.Optional.CrossRider
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.aMGKN37049485ACPSC11936960com61365.61365.publisher", "iCinema"); =>PUP.Optional.CrossRider
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.DockingPositionDown", false); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.SmartbarDisabled", false); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.SmartbarStateMinimaized", false); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.Visibility", false); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.keepAliveLastevent", "1440695790"); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.helperbar.lastExternalJsUpdate", "1440649161092"); =>PUP.Optional.HelperBar
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.quick_start.enable_search1", false); =>PUP.Optional.QuickStart
TROUVÉ: [x9cuzz2o.default] - user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false); =>PUP.Optional.QuickStart
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.BirthDate", "1440532128"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.adapters", "{\"www.facebook.com\":{\"CountryCode\":\"FR\",\"NoAds\":false,\"Statu[...] =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.cifs", "0"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.registerToolbarEvent102", "1440538232020"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.registerToolbarEvent109", "1440535213349"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.registerToolbarEvent111", "1440535212843"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.registerToolbarEvent112", "1440538160692"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("iminent.registerToolbarEvent122", "1440535213615"); =>PUP.Optional.IMBooster
TROUVÉ: [x9cuzz2o.default] - user_pref("wtbg.global.storedbrowserversion", "26.0"); =>PUP.Optional.CrossRider
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\searchplugins\istartsurf.xml =>PUP.Optional.IsStart
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\searchplugins\oursurfing.xml =>PUP.Optional.OurSurfing
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\searchplugins\webssearches.xml =>PUP.Optional.WebsSearches
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\searchplugins\yahoo-search.xml =>PUP.Optional.BDYahoo
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\defsearchp@gmail.com\chrome =>PUP.Optional.PriceFountain
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\defsearchp@gmail.com\chrome.manifest =>PUP.Optional.PriceFountain
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\defsearchp@gmail.com\install.rdf =>PUP.Optional.PriceFountain
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com\chrome =>PUP.Optional.DeskCut
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com\chrome.manifest =>PUP.Optional.DeskCut
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com\defaults =>PUP.Optional.DeskCut
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com\install.rdf =>PUP.Optional.DeskCut
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com\modules =>PUP.Optional.DeskCut
TROUVÉ dossier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
TROUVÉ dossier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\Extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\defsearchp@gmail.com =>PUP.Optional.PriceFountain
TROUVÉ fichier: C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\deskCutv2@gmail.com =>PUP.Optional.DeskCut


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (15516)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux ou superflu trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (12)
TROUVÉ fichier: C:\ProgramData\3WdsManPro3\WdsManPro.exe [DTools LIMITED - DTools] =>PUP.Optional.WpManager
TROUVÉ fichier: C:\Windows\Prefetch\CROSSBROWSE.EXE-9D619136.pf =>PUP.Optional.CrossBrowse
TROUVÉ fichier: C:\Windows\Prefetch\SMT_ISTARTSURF.EXE-8B719AAE.pf =>PUP.Optional.IsStart
TROUVÉ fichier: C:\Windows\Prefetch\SMT_OURSURFING.EXE-7A08299F.pf =>PUP.Optional.OurSurfing
TROUVÉ fichier: C:\Windows\Prefetch\WPM_V20.0.0.2298.EXE-0E88396F.pf =>PUP.Optional.WpManager
TROUVÉ fichier: C:\ProgramData\UWdsManProU\WdsManPro.exe [DTools LIMITED - DTools] =>PUP.Optional.WpManager
TROUVÉ fichier: C:\Users\Mickael\AppData\Local\Temp\E592A50D-87A9-437F-9F9B-31AA642D3A9Bmp\tmp\wpm_v20.0.0.2298.exe [DTools LIMITED - DTools] =>PUP.Optional.WpManager
TROUVÉ fichier: C:\Users\Mickael\AppData\Local\Temp\smt_istartsurf.exe [Portmon/EE - Portmon/EE] =>PUP.Optional.IsStart
TROUVÉ fichier: C:\Users\Mickael\AppData\Local\Temp\smt_oursurfing.exe [Portmon/EE - Portmon/EE] =>PUP.Optional.OurSurfing
TROUVÉ dossier: C:\Users\Mickael\AppData\Local\Crossbrowse\Crossbrowse =>PUP.Optional.CrossBrowse
TROUVÉ dossier: C:\Users\Mickael\AppData\Local\Crossbrowse =>PUP.Optional.CrossBrowse
TROUVÉ dossier: C:\Program Files (x86)\SFK =>PUP.Optional.MyWebSearch


---\\ Base de Registres ( Clés, Valeurs, Données ). (15)
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\defsearchp@gmail.com [C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\defsearchp@gmail.com] =>PUP.Optional.PriceFountain
TROUVÉ valeur: [X64] HKLM\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions\\deskCutv2@gmail.com [C:\Users\Mickael\AppData\Roaming\Mozilla\Firefox\Profiles\x9cuzz2o.default\extensions\deskCutv2@gmail.com] =>PUP.Optional.DeskCut
TROUVÉ donnée: HKLM\...\FIREFOX.EXE\Shell\open\Command\\"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" http://www.istartsurf.com/?type=sc&ts=1440950996&z=a1269b6015a2a63aa4f6a5egcz1zde1t8w6efbdm9g&from=smt&uid=WDCXWD5000BPVT-22HXZT1_WD-WX31A41T9779T9779 (PUP.Optional.IsStart)
TROUVÉ clé: HKLM\SYSTEM\CurrentControlSet\Services\WdsManPro [C:\ProgramData\3WdsManPro3\WdsManPro.exe] =>PUP.Optional.WpManager
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\I - Cinema-nv-ie [] =>Heuristic.CrossRider
TROUVÉ clé: HKEY_USERS\S-1-5-21-2525519418-1508052314-4158924175-1001\Software\Crossbrowse [] =>PUP.Optional.CrossBrowse
TROUVÉ clé: HKCU\Software\Crossbrowse [] =>PUP.Optional.CrossBrowse
TROUVÉ clé: HKCU\Software\Mozilla\Extends [] =>PUP.Optional.FastStart
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Crossbrowse [] =>PUP.Optional.CrossBrowse
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\FFPluginHp [] =>PUP.Optional.SweetSearch
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\I - Cinema-nv-ie [] =>PUP.Optional.CrossRider
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\istartsurfSoftware [] =>PUP.Optional.IsStart
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\oursurfingSoftware [] =>PUP.Optional.OurSurfing
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\istartsurf uninstall [istartsurf] =>PUP.Optional.IsStart
TROUVÉ clé: [X64] HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\oursurfing uninstall [oursurfing] =>PUP.Optional.OurSurfing


---\\ Bilan de la réparation
~ Aucune réparation effectuée.
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 127324
~ Items trouvés : 99
~ Items annulés : 0
~ Items réparés : 0


~ End of search in 10 minutes
===================
ZHPCleaner-[R]-02012015-17_24_59.txt
ZHPCleaner-[R]-27082015-19_21_01.txt
ZHPCleaner-[S]-02012015-17_30_34.txt
ZHPCleaner-[S]-27082015-19_14_10.txt
ZHPCleaner-[S]-30082015-18_49_19.txt

Publicité


Signaler le contenu de ce document

Publicité