cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.11.12.166 Par Nicolas Coolman (2015/11/12)
~ Démarré par Manu (Administrator) (2015/11/12 16:36:52)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Manu\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Manu\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)

---\\ Navigateurs Internet (2) - 0s
GCIE: Google Chrome v46.0.2490.71
MSIE: Internet Explorer v7.0.6002.18005

---\\ Informations sur les produits Windows (4) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO

---\\ Logiciels de protection (3) - 2s
avast! Free Antivirus v7.0.1473.0
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender VISTA (Activate)

---\\ Logiciels de protection et autres (Superflus) (2) - 2s
Ad-Aware v8.3.0
SUPERAntiSpyware v6.0.1208

---\\ Logiciels d'optimisation (1) - 2s
CCleaner v3.24

---\\ Surveillance de Logiciels (2) - 2s
Adobe Flash Player 9 Plugin
Adobe Reader 8.3.1 - Français

---\\ Logiciels de partage P2P (1) - 2s
µTorrent v2.2.1

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 23 Stepping 6, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Sans échec avec prise en charge du réseau (Fail-safe with network boot)
Total RAM: 3104.688 MB (73% free)
System Restore: Activé (Enable)
System drive C: has 38 GB () free of 96 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-MANU
~ User Name: Manu
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 38 GB free of 96 GB (System)
~ Drive D: has 61 GB free of 133 GB

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - 11/04/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2926592] ©
[MD5.4B555106290BD117334E9A08761C035A] - 02/11/2006 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - 21/01/2008 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96768] ©
[MD5.AFF00C412BE040FCA2059EDAE8C3532E] - 13/08/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [834048] ©
[MD5.898E7C06A350D4A1A64A9EA264D55452] - 11/04/2009 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [314368] ©
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - 02/03/2011 - (.Microsoft Corporation - DNS DLL de l'API Client.) -- C:\Windows\System32\dnsapi.dll [168448] ©
[MD5.95F5FF73B076576C41740F1A842B9B57] - 21/01/2008 - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [20480] ©
[MD5.F5272A105F59A7B3B345D9D6D87DA7AD] - 30/05/2014 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [273408] ©
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - 11/04/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [19944] ©
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - 21/01/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70144] ©
[MD5.6B4BFFB9BECD728097024276430DB314] - 11/04/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [67072] ©
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - 14/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [75264] ©
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - 11/04/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [561152] ©
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - 21/01/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [54784] ©
[MD5.8793643A67B42CEC66490B2A0CF92D68] - 21/01/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [100864] ©
[MD5.1B864548B2ACEC1C0BB29B615CC42978] - 09/01/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [107008] ©
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - 11/04/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [185856] ©
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - 03/03/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1082232] ©
[MD5.0FA9B5055484649D63C303FE404E5F4D] - 02/11/2006 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - 21/01/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [76288] ©
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - 21/01/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [248832] ©
[MD5.7B75299A4D201D6A6533603D6914AB04] - 11/04/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [66560] ©
[MD5.76B06EB8A01FC8624D699E7045303E54] - 11/04/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [72192] ©
[MD5.786DB5771F05EF300390399F626BF30A] - 21/08/2012 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [224640] ©

---\\ Liste des services NT non Microsoft et non désactivés (15) - 0s
O23 - Service: SAS Core Service (!SASCORE) . (.SUPERAntiSpyware.com - Core Service.) - C:\Program Files\SUPERAntiSpyware\SASCore.exe ©
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ©
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe ©
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe ©
O23 - Service: Service Google Update (gupdate1c9e2272d3b9050) (gupdate1c9e2272d3b9050) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: Google Software Updater (gusvc) . (.Google - gusvc.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ©
O23 - Service: Lavasoft Ad-Aware Service (Lavasoft Ad-Aware Service) . (.Lavasoft Limited - Ad-Aware Service Application.) - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe ©
O23 - Service: lxddCATSCustConnectService (lxddCATSCustConnectService) . (.Lexmark International, Inc. - Lexmark Connect Service Executable.) - C:\Windows\System32\spool\drivers\w32x86\3\lxddserv.exe
O23 - Service: lxdd_device (lxdd_device) . (. - Printer Communication System.) - C:\Windows\System32\lxddcoms.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe ©
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: Norman Network Filtering service (NNFSVC) . (...) - C:\Program Files\Norman\Ngs\Bin\Nnf.exe (.not file.)
O23 - Service: OSD Service (OsdService) . (.TODO: <公司名稱> - TODO: <檔案說明>.) - C:\Program Files\OEM\OSD_1.16\OsdService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe ©
O23 - Service: Fujitsu Diagnostic Testhandler (TestHandler) . (.Fujitsu Technology Solutions - Testhandler Service.) - C:\Program Files\Fujitsu\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe ©

---\\ Processus lancés (5) - 1s
[MD5.61323B88EFE90F6B144A3611B3ED1D7D] - (.Lavasoft Limited - Ad-Aware Service Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [1737728] [PID.1140] ©
[MD5.72D6D8E2D4F82C6E829125C7EC2A88F9] - (.SUPERAntiSpyware.com - Core Service.) -- C:\Program Files\SUPERAntiSpyware\SASCore.exe [142648] [PID.1260] ©
[MD5.0615B72D5E241103769003452B4AFB1C] - (...) -- C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe [1101960] [PID.120]
[MD5.901E6B22C2624E401A3F3B7BC2412886] - (.Lavasoft Limited - Ad-Aware Tray Application.) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe [1191768] [PID.1764] ©
[MD5.E3ADC8AAF0DB131CB5E6B8A7F586D4B3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Manu\AppData\Roaming\ZHP\ZHPDiag3.exe [1968128] [PID.816] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (14) - 0s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.commentcamarche.net
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ajax.googleapis.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.fr
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo]Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf]Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [jlhlebbhengjlhmcjebbkambaekglhkf]Bubble Translate
G2 - GCE: Preference [User Data\Default] [lifbcibllhkdhoafpjfnlhfpfgnpldfl]Skype Click to Call
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda]Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia]Google Chrome manifest =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (20) - 1s
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
M1 - SPR:Search Page Redirection - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
P2 - EXT: (.UNISYS France - UNISYS NAP Win 32 Plugin Version 51.) -- C:\Program Files\Mozilla Firefox\Plugins\npornap.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSWF32.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nsIDivxPlayerPlugin.xpt
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin License.rtf
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\WMP Firefox Plugin RelNotes.txt
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll ©
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX,Inc..) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
P2 - FPN: [HKLM] [@veetle.com/vbp;version=0.9.17] - (.Veetle Inc.) -- C:\Program Files\Veetle\VLCBroadcast\npvbp.dll
P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.17] - (.Veetle Inc.) -- C:\Program Files\Veetle\plugins\npVeetle.dll
P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.17] - (.Veetle Inc.) -- C:\Program Files\Veetle\Player\npvlc.dll
P2 - FPN: [HKLM] [@virtools.com/3DviaPlayer] - (.Dassault Systèmes.) -- C:\Program Files\Virtools\3D Life Player\npvirtools.dll

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (16) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (6) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local;127.0.0.1:9421; =>Hijacker.Proxy
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = ftp=localhost:8080;gopher=localhost:8080;http=localhost:8080;https=localhost:8080;socks=localhost:1080
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Object de navigateur (BHO) (10) - 0s
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll ©
O2 - BHO: Increase performance and video formats for your HTML5

Publicité


Signaler le contenu de ce document

Publicité