~ ZHPDiag v2016.1.5.5 Par Nicolas Coolman (2016/01/05)
~ Démarré par install (Administrator) (2016/01/06 11:05:40)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\install\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\install\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Deactivate
~ Démarrage du système: Normal (Normal boot)
Windows VISTA, 32-bit Service Pack 2 (Build 6002)
---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v47.0.2526.106
MFIE: Mozilla Firefox 43.0.1 (x86 fr) v43.0.1
MSIE: Internet Explorer v9.0.8112.16421
---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
~ Windows Operating System - Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
Windows Activation Technologies : KO
---\\ Logiciels de protection (5) - 22s
Avast Free Antivirus v11.1.2245
Malwarebytes Anti-Malware version 2.2.0.1024
Norton Internet Security v17.0.0.136
Panda Free Antivirus v7.84.00.0000
Windows Defender VISTA (Deactivate)
---\\ Logiciels d'optimisation (1) - 24s
CCleaner v5.07
---\\ Surveillance de Logiciels (2) - 24s
Adobe Flash Player 20 NPAPI
Adobe Reader XI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 2090.456 MB (51% free)
System Restore: Activé (Enable)
System drive C: has 134 GB () free of 228 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: PC-DE-INSTALL
~ User Name: install
~ Logged in as Administrator
---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 134 GB free of 228 GB (System)
~ Drive D: has 1 GB free of 9 GB
~ Drive F: has 1 GB free of 1 GB
---\\ Etat du Centre de Sécurité Windows (16) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
---\\ Recherche particulière de fichiers génériques (24) - 1s
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - 11/04/2009 - (.Microsoft Corporation - Explorateur Windows.) -- C:\windows\Explorer.exe [2926592] =>.Microsoft Corporation
[MD5.4B555106290BD117334E9A08761C035A] - 02/11/2006 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\windows\System32\rundll32.exe [44544] =>.Microsoft Corporation
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - 21/01/2008 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\windows\System32\Wininit.exe [96768] =>.Microsoft Corporation
[MD5.E6F509BE5D637B02EF5CDE5E16EB55ED] - 12/11/2015 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\windows\System32\wininet.dll [1129472] =>.Microsoft Corporation
[MD5.898E7C06A350D4A1A64A9EA264D55452] - 11/04/2009 - (.Microsoft Corporation - Application d'ouverture de session Windows.) -- C:\windows\System32\Winlogon.exe [314368] =>.Microsoft Corporation
[MD5.85E861D0B88DB2B54ACB0839654C09F7] - 02/03/2011 - (.Microsoft Corporation - DNS DLL de l'API Client.) -- C:\windows\System32\dnsapi.dll [168448] =>.Microsoft Corporation
[MD5.95F5FF73B076576C41740F1A842B9B57] - 15/04/2008 - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows m.) -- C:\windows\System32\fr-FR\user32.dll.mui [20480] =>.Microsoft Corporation
[MD5.4A0978779958D8FE8F5849F452BCC812] - 13/10/2015 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\windows\System32\drivers\AFD.sys [273408] =>.Microsoft Corporation
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - 11/04/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\windows\System32\drivers\atapi.sys [19944] =>.Microsoft Windows®
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - 21/01/2008 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\windows\System32\drivers\Cdfs.sys [70144] =>.Microsoft Corporation
[MD5.6B4BFFB9BECD728097024276430DB314] - 11/04/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\windows\System32\drivers\Cdrom.sys [67072] =>.Microsoft Corporation
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - 14/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\windows\System32\drivers\DfsC.sys [75264] =>.Microsoft Corporation
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - 11/04/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\windows\System32\drivers\HDAudBus.sys [561152] =>.Microsoft Corporation
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - 21/01/2008 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\windows\System32\drivers\i8042prt.sys [54784] =>.Microsoft Corporation
[MD5.8793643A67B42CEC66490B2A0CF92D68] - 21/01/2008 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\windows\System32\drivers\IpNat.sys [100864] =>.Microsoft Corporation
[MD5.1B864548B2ACEC1C0BB29B615CC42978] - 09/01/2015 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\windows\System32\drivers\MRxSmb.sys [107008] =>.Microsoft Corporation
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - 11/04/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\windows\System32\drivers\netBT.sys [185856] =>.Microsoft Corporation
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - 03/03/2013 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\windows\System32\drivers\ntfs.sys [1082232] =>.Microsoft Windows®
[MD5.8A79FDF04A73428597E2CAF9D0D67850] - 21/01/2008 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\windows\System32\drivers\Parport.sys [79360] =>.Microsoft Corporation
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - 21/01/2008 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\windows\System32\drivers\Rasl2tp.sys [76288] =>.Microsoft Corporation
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - 21/01/2008 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\windows\System32\drivers\rdpdr.sys [248832] =>.Microsoft Corporation
[MD5.7B75299A4D201D6A6533603D6914AB04] - 11/04/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\windows\System32\drivers\smb.sys [66560] =>.Microsoft Corporation
[MD5.EC565DFA3D9C45D8083B72DEC5B33710] - 13/10/2015 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\windows\System32\drivers\tdx.sys [72192] =>.Microsoft Corporation
[MD5.786DB5771F05EF300390399F626BF30A] - 21/08/2012 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\windows\System32\drivers\volsnap.sys [224640] =>.Microsoft Windows®
---\\ Liste des services NT non Microsoft et non désactivés (21) - 3s
O23 - Service: ActivIdentity Shared Store Service (ac.sharedstore) . (.ActivIdentity - ActivIdentity Cache Server.) - C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe {7CED93CE8BBDDE9B0B793314F606010D} =>.ActivIdentity
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe =>.Adobe Systems, Incorporated®
O23 - Service: Andrea ADI Filters Service (AEADIFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) - C:\Windows\System32\AEADISRV.EXE =>.Andrea Electronics Corporation
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) . (.Agere Systems - Agere Soft Modem Call Progress Service.) - C:\Program Files\LSI SoftModem\agrsmsvc.exe =>.Agere Systems
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe =>.AMD
O23 - Service: AuthenTec Fingerprint Service (ATService) . (.AuthenTec, Inc. - AFSS Service.) - C:\Program Files\Fingerprint Sensor\AtService.exe =>.AuthenTec, Inc.®
O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.®
O23 - Service: DisplayLinkManager (DisplayLinkService) . (.DisplayLink Corp. - DisplayLinkManager Application.) - C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe {34DB6AA76136EF66A8459B7ECD611691}
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: HP ProtectTools Service (HP ProtectTools Service) . (.Hewlett-Packard Development Company, L.P - PTChangeFilterService.) - C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) . (.Hewlett-Packard - HPFSService Application.) - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe =>.Hewlett-Packard
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe =>.Hewlett-Packard Company®
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe =>.Intel Corporation®
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe =>.Hewlett-Packard Company
O23 - Service: (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe =>.Malwarebytes Corporation®
O23 - Service: PDF Document Manager (pdfcDispatcher) . (.PDF Complete Inc - Dispatcher.) - C:\Program Files\PDF Complete\pdfsvc.exe =>.PDF Complete®
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe =>.Intel Corporation - Mobile Wireless Group®
O23 - Service: ShadowExplorer Service (sesvc) . (.www.shadowexplorer.com - ShadowExplorer.) - C:\Program Files\ShadowExplorer\sesvc.exe =>.www.shadowexplorer.com
O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files\Connect Manager\AssistantServices.exe =>.ZTE CORPORATION ®
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) . (...) - C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE
---\\ Tâches planifiées en automatique (27) - 5s
[MD5.F54564025D2284AE498E51D7C139F971] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [269504] =>.Adobe Systems Incorporated®
[MD5.6864894A47B6D2BE8995D07FDFFCCD7E] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [1482040] =>.AVAST Software a.s.®
[MD5.6313BA5D7F348576758CE789AF7E548A] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [6405912] =>.Piriform Ltd®
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004Core] (.Dropbox, Inc..) -- C:\Users\install\AppData\Local\Dropbox\Update\DropboxUpdate.exe [136048] =>.Dropbox, Inc®
[MD5.33BFEC2B102B196B62ABB9947C7D7E23] [APT] [DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004UA] (.Dropbox, Inc..) -- C:\Users\install\AppData\Local\Dropbox\Update\DropboxUpdate.exe [136048] =>.Dropbox, Inc®
[MD5.71372355E11CB102AA2B4BC842518DBF] [APT] [GlaryInitialize 5] (.Glarysoft Ltd.) -- C:\Program Files\Glary Utilities 5\Initialize.exe [118048] =>.Glarysoft Ltd®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc®
[MD5.E9C15F5EBCA836E50ACE2DA57BFA53B7] [APT] [Java Update Scheduler] (.Oracle Corporation.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528] =>.Oracle America, Inc.®
[MD5.0AEB80A539C5C3EC9C9ACD2413EAD475] [APT] [PinItAutoUpdate] (...) -- C:\Program Files\Pinterest\Pin It\AutoUpdater.exe [52224]
[MD5.3E04F1E482357B1FC8B088197C3D9FF8] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152] =>.Adobe Systems, Incorporated®
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [561984] =>.Apple Inc.®
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\Tasks\Adobe Flash Player Updater.job [1002] =>.Adobe Systems Incorporated
O39 - APT: DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004Core - (.Dropbox, Inc..) -- C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004Core.job [1152] =>.Dropbox, Inc.
O39 - APT: DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004UA - (.Dropbox, Inc..) -- C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004UA.job [1204] =>.Dropbox, Inc.
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\windows\Tasks\GoogleUpdateTaskMachineCore.job [1052] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\windows\Tasks\GoogleUpdateTaskMachineUA.job [1056] =>.Google Inc.
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\windows\System32\Tasks\Adobe Flash Player Updater [3854] =>.Adobe Systems Incorporated
O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\windows\System32\Tasks\avast! Emergency Update [4182] =>.AVAST Software
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\windows\System32\Tasks\CCleanerSkipUAC [2776] =>.Piriform Ltd
O39 - APT: DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004Core - (.Dropbox, Inc..) -- C:\windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004Core [3786] =>.Dropbox, Inc.
O39 - APT: DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004UA - (.Dropbox, Inc..) -- C:\windows\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-243463917-3977780728-1557312686-1004UA [4182] =>.Dropbox, Inc.
O39 - APT: GlaryInitialize 5 - (.Glarysoft Ltd.) -- C:\windows\System32\Tasks\GlaryInitialize 5 [3314] =>.Glarysoft Ltd
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore [3800] =>.Google Inc.
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA [4052] =>.Google Inc.
O39 - APT: Java Update Scheduler - (.Oracle Corporation.) -- C:\windows\System32\Tasks\Java Update Scheduler [3680] =>.Oracle Corporation
O39 - APT: PinItAutoUpdate - (...) -- C:\windows\System32\Tasks\PinItAutoUpdate [3226]
---\\ Processus lancés (22) - 4s
[MD5.3918E9D008F200B67C81A450668DADF2] - (.Hewlett-Packard - HPFSService Application.) -- C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [77824] [PID.1060] =>.Hewlett-Packard
[MD5.EB7C2F213A219CA9CF807B6888186070] - (.AMD - AMD External Events Service Module.) -- C:\Windows\System32\atiesrxx.exe [217088] [PID.1148] =>.AMD
[MD5.FC41DE978D894F4DD2DA7A9E644D9B5E] - (.DisplayLink Corp. - DisplayLinkManager Application.) -- C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [4715880] [PID.1520] {34DB6AA76136EF66A8459B7ECD611691}
[MD5.DE83AD216C71D31AC6ECFBDCF058F1BD] - (...) -- C:\Program Files\Broadcom\Broadcom 802.11\WLTRYSVC.EXE [26112] [PID.1828]
[MD5.044309930894C12E5BFA7B35066CC474] - (.Broadcom Corporation - Broadcom 802.11 Wireless Network Controller.) -- C:\Program Files\Broadcom\Broadcom 802.11\BCMWLTRY.EXE [3718656] [PID.1920] =>.Broadcom Corporation
[MD5.00659E56339389469473AEC41587E706] - (.ActivIdentity - ActivIdentity Cache Server.) -- C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [207400] [PID.836] {7CED93CE8BBDDE9B0B793314F606010D} =>.ActivIdentity
[MD5.30EB9BCF0D1E4EDD3905AE003AC0C1AC] - (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) -- C:\Windows\System32\AEADISRV.EXE [90112] [PID.2608] =>.Andrea Electronics Corporation
[MD5.9C9D3B7A05445B1AB2DF4D0C4D6B77E8] - (.Agere Systems - Agere Soft Modem Call Progress Service.) -- C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336] [PID.2652] =>.Agere Systems
[MD5.AA1ECD3306F0C5BB2418D5715199BFF7] - (.Hewlett-Packard Development Company, L.P - PTChangeFilterService.) -- C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [45056] [PID.2712]
[MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2880] =>.Hewlett-Packard Company
[MD5.02DED435FCAA1C02959051AF636E154A] - (.www.shadowexplorer.com - ShadowExplorer.) -- C:\Program Files\ShadowExplorer\sesvc.exe [9216] [PID.3152] =>.www.shadowexplorer.com
[MD5.CC7A6B8B048BB08CB446C01597D11CC5] - (.AMD - AMD External Events Client Module.) -- C:\Windows\System32\atieclxx.exe [453632] [PID.6732] =>.AMD
[MD5.68A8303B2DB02D94D704DF16ACEE71F1] - (.DisplayLink Corp. - DisplayLinkUserAgent Application.) -- C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe [804200] [PID.1996] {34DB6AA76136EF66A8459B7ECD611691}
[MD5.D40C29F48D5EB48A25ADBB556195AFCA] - (.DisplayLink Corp. - DisplayLinkUI Sys-Tray Application.) -- C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe [722280] [PID.6496] {34DB6AA76136EF66A8459B7ECD611691}
[MD5.1B149D944A144B35165838CB1B84223D] - (.Bioscrypt Inc. - Global Virtual Card Host.) -- C:\Program Files\Hewlett-Packard\IAM\Bin\asghost.exe [78608] [PID.3264] {302C3E5002A2BF4BD7BF7AE3CFF9F650}
[MD5.F7BA25E499E33F2116A6E1A15E532376] - (.ActivIdentity - ActivIdentity card event handler.) -- C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936] [PID.4396] {7CED93CE8BBDDE9B0B793314F606010D} =>.ActivIdentity
[MD5.9F37F219528DD026DCB195F653469DF0] - (.Analog Devices, Inc. - SoundMAX Audio Settings (32-bit).) -- C:\Program Files\Analog Devices\SoundMAX\SoundMAX.exe [3842048] [PID.5428] =>.Analog Devices, Inc.
[MD5.469FCB8AF1B9427F19999CCAF7440575] - (.OrdinarySoft - Start Menu program.) -- C:\Program Files\Vista Start Menu\VistaStartMenu.exe [2752416] [PID.5412] {16690BA8ACB946D3B4DCCDB54D0F3540} =>.OrdinarySoft
[MD5.4B9949208944C50B1A16FD1F05ED0A04] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299008] [PID.7572] =>.Advanced Micro Devices Inc.
[MD5.A9950F1C63BA70151803C6F24CEE23F3] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299008] [PID.4884] =>.ATI Technologies Inc.
[MD5.E2E569950186A48C0393698BF872FDF8] - (.AMD - HydraDM.) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [393216] [PID.7876] =>.AMD
[MD5.E7C5528FE56D701705B604546AB3DFB6] - (.Copyright (C) 2016 Nicolas Coolman - ZHPDiag.) -- C:\Users\install\ZHPDiag3.exe [2060288] [PID.7648] =>.Copyright (C) 2016 Nicolas Coolman
---\\ Google Chrome, Démarrage,Recherche,Extensions (13) - 0s
G0 - GCSP: Secure Preferences [User Data\Default][HomePage] http://www.google.com
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [eofcbnmajmjmplflapaojjnihcjkigck] Avast SafePrice
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [gomekmidlodglbbmalcneegieacbdmki] Avast Online Security
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [nneajnkjbffgblleaoojgaacokifdkhm] __MSG_extname__
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc.
---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (5) - 1s
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\QuickTimePlugin.class
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} =>.Mozilla
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_20_0_0_235.dll =>.Adobe Systems Incorporated
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc..) -- C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (10) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://google.fr
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 1
---\\ Internet Explorer,Proxy Management (7) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
---\\ Etude du fichier hosts (1) - 1s
~ Le fichier hôte est sain (The hosts file is clean) (26239)
---\\ Browser Helper Object de navigateur (BHO) (7) - 0s
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} . (...) -- C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll (.not file.)
O2 - BHO: Increase performance and video formats for your HTML5