cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2020.6.7.203 Par Nicolas Coolman (2020/06/07)
~ Démarré par Dar DMANA (Administrator) (2020/06/09 02:03:46)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Dar DMANA\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Dar DMANA\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Pro, 64-bit (Build 18362) =>.Microsoft Corporation

---\\ MODE DE CONNEXION AU SYSTÈME (3) - 0s
~ Computer Name: DESKTOP-54U8FTL
~ User Name: Dar DMANA
~ Logged in as Administrator

---\\ FIREFOX, Plugins,Démarrage,Recherche,Extensions (29) - 4s
P2 - EXT FILE: (.Tonec Inc.) -- C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\extensions\mozilla_cc3@internetdownloadmanager.com.xpi [Unsigned] =>.Tonec Inc
P2 - EXT FILE: (.Google Inc..) -- C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [Unsigned] =>.Google Inc.
P2 - EXT FILE: (.Default Search Engine - Default-search-engine.) -- C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\searchplugins\yahoo.xml [Unsigned] =>PUP.Optional.BDYahoo
P2 - EXT FILE: (.Legitimate.) -- C:\Program Files\Mozilla Firefox\browser\features\doh-rollout@mozilla.org.xpi [Unsigned]
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi [Unsigned] =>.Mozilla Corporation
P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi [Unsigned] =>.Mozilla Corporation
P2 - EXT FILE: (.webcompat.com.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [Unsigned] =>.webcompat.com
P2 - EXT FILE: (.webcompat.com.) -- C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi [Unsigned] =>.webcompat.com
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp] - (...) -- C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll =>.Foxit Corporation
P2 - FPN: [HKLM] [@foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf] - (...) -- C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll =>.Foxit Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\bookmarkbackups =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\browser-extension-data =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\crashes =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\datareporting =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\extensions =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\features =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\gmp =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\gmp-gmpopenh264 =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\gmp-widevinecdm =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\mediacapabilities =>Legitimate
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\minidumps =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\saved-telemetry-pings =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\searchplugins =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\security_state =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\sessionstore-backups =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\storage =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\weave =>Mozilla Corporation
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\browser-extension-data\doh-rollout@mozilla.org =>Legitimate
C:\Users\Dar DMANA\AppData\Roaming\Mozilla\Firefox\Profiles\hxw4b42f.default\browser-extension-data\etp-search-volume-study@shield.mozilla.org =>Hotspot

---\\ OPERA, Démarrage,Recherche,Plugins (3) - 0s
B2 - EXT: [] C:\Users\Dar DMANA\AppData\Roaming\Opera Software\Opera Stable\Extensions\feinkgpipgaoonanlbgcpbkbjaggdaml
B2 - EXT: [] C:\Users\Dar DMANA\AppData\Roaming\Opera Software\Opera Stable\Extensions\kajaikkhnmegmfnlifeklklaienhdekb
B2 - EXT: [] C:\Users\Dar DMANA\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljkgfkfopogmclcinephnaeekjiikibd

---\\ INTERNET EXPLORER,Démarrage,Recherche,URLSearchHook (15) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securesearch.org/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.18362.836 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\\ INTERNET EXPLORER, Site de confiance et site sensible (6) - 0s
~ IE Restricted Site Good: localhost
IE Restricted Site Good: webcompanion.com =>PUP.Optional.LavasoftWebCompanion
~ Microsoft Internet Explorer Restricted Site(s) Domains: 2(Good) / 0(Bad)
~ IE Restricted Site Good: connectify.me
~ IE Restricted Site Good: fastspring.com
~ Microsoft Internet Explorer Restricted Site(s) EscDomains: 2(Good) / 0(Bad)

---\\ RACCOURCIS GLOBAL STARTUP (38) - 7s
O4 - GS\Desktop [Dar DMANA]: Internet Download Manager.lnk . (.Tonec Inc. - Internet Download Manager (IDM).) C:\Program Files (x86)\Internet Download Manager\IDMan.exe [Unsigned] =>.Tonec Inc.
O4 - GS\Desktop [Dar DMANA]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\Desktop [Dar DMANA]: Telegram.lnk . (.Telegram FZ-LLC - Telegram Desktop.) C:\Users\Dar DMANA\AppData\Roaming\Telegram Desktop\Telegram.exe =>.Telegram FZ-LLC®
O4 - GS\Desktop [Dar DMANA]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\Dar DMANA\AppData\Roaming\ZHP\ZHPDiag3.exe [Unsigned] =>.Nicolas Coolman
O4 - GS\Quicklaunch [Dar DMANA]: Foxit Reader.lnk . (.Foxit Software Inc. - Foxit Reader 9.3.) C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated®
O4 - GS\Quicklaunch [Dar DMANA]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O4 - GS\Quicklaunch [Dar DMANA]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\sendTo [Dar DMANA]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation
O4 - GS\sendTo [Dar DMANA]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo [Unsigned] =>.Microsoft Corporation
O4 - GS\sendTo [Dar DMANA]: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Transfère les fichiers entre l.) C:\Windows\System32\fsquirt.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\TaskBar [Dar DMANA]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe {0DDEB53F957337FBEAF98C4A615B149D}. =>.Mozilla Corporation
O4 - GS\TaskBar [Dar DMANA]: Mars WiFi.lnk . (.ZhangKong Soft - marswifi.) C:\Program Files (x86)\zksoft\marswifi\marswifi.exe /desktop {16ADE934416698FA0896B7A241038E57}. =>.ZhangKong Soft
O4 - GS\TaskBar [Dar DMANA]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\TaskBar [Dar DMANA]: VMware Workstation Pro.lnk . (.VMware, Inc. - VMware Workstation.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.®
O4 - GS\Programs [Dar DMANA]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Dar DMANA]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\Programs [Dar DMANA]: uTorrent Web.lnk . (...) C:\Users\Dar DMANA\AppData\Roaming\uTorrent Web\utweb.exe [Unsigned]
O4 - GS\CommonDesktop [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O4 - GS\Programs [Public]: Fonctionnalités optionnelles.lnk . (.Microsoft Corporation - Assistance des fonctionnalités à la demande.) C:\Windows\System32\fodhelper.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Programs [Public]: Navigateur Opera.lnk . (.Opera Software - Opera Internet Browser.) C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS®
O4 - GS\Programs [Public]: uTorrent Web.lnk . (...) C:\Users\Dar DMANA\AppData\Roaming\uTorrent Web\utweb.exe [Unsigned]
O4 - GS\Accessories [Public]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) C:\Program Files (x86)\Internet Explorer\iexplore.exe =>.Microsoft®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Startup [Public]: Who Is On My Wifi.lnk . (.IO3O LLC - mywifi3.) C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\mywifi.exe [Unsigned] =>.IO3O LLC
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Firefox.lnk . (.Mozilla Corporation - Firefox.) C:\Program Files\Mozilla Firefox\firefox.exe {0DDEB53F957337FBEAF98C4A615B149D}. =>.Mozilla Corporation
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe [Unsigned] =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Microsoft Edge.lnk . (.Microsoft Corporation - Microsoft Edge.) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 1s
O106 - SIOI: [ IDM Shell Extension] - {CDC95B92-E27C-4745-A8C5-64A52A78855D}. (.Tonec Inc. - Internet Download Manager module.) -- C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.®
O106 - SIOI: [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll [Unsigned] =>.Microsoft Corporation
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - Microsoft SharePoint Workspace Extensions.) -- C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL =>.Microsoft Corporation®
O106 - SIOI: [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\WINDOWS\System32\cscui.dll [Unsigned] =>.Microsoft Corporation

---\\ MENU DE DÉMARRAGE INTERNET (12) - 0s
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe {0DDEB53F957337FBEAF98C4A615B149D}. =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft®
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe =>.Mozilla Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - IE Per-User Show IE Icon Utility.) -- C:\WINDOWS\System32\ie4ushowIE.exe =>.Microsoft Corporation
O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Microsoft Edge.) -- C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe =>.Microsoft Corporation

---\\ ÉNUMÈRE LES SERVICES DÉMARRÉS PAR Svchost (50) - 4s
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [192512] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [192512] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [280064] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [1255936] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [1042944] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [832000] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [31232] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [151040] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [110080] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [858112] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [231424] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [489984] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [483328] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [125440] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: PushToInstall (PushToInstall) . (.Microsoft Corporation - PushToInstall.) -- C:\Windows\System32\PushToInstall.dll [269824] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: InstallService (InstallService) . (.Microsoft Corporation - InstallService.) -- C:\Windows\System32\InstallService.dll [2465792] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TroubleshootingSvc (TroubleshootingSvc) . (.Microsoft Corporation - MitigationClient.) -- C:\Windows\System32\MitigationClient.dll [394752] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: LxpSvc (LxpSvc) . (.Microsoft Corporation - Fournit une prise en charge de l'infrastruc.) -- C:\Windows\System32\LanguageOverlayServer.dll [317952] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: shpamsvc (shpamsvc) . (.Microsoft Corporation - SharedPC.AccountManager.) -- C:\Windows\System32\Windows.SharedPC.AccountManager.dll [239104] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblGameSave (XblGameSave) . (.Microsoft Corporation - Xbox Live Game Save Service.) -- C:\Windows\System32\XblGameSave.dll [1263616] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DmEnrollmentSvc (DmEnrollmentSvc) . (.Microsoft Corporation - DLL Windows Management Service.) -- C:\Windows\System32\Windows.Internal.Management.dll [925184] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [67072] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: WManSvc (WManSvc) . (.Microsoft Corporation - DLL du Service de gestion de Windows.) -- C:\Windows\System32\Windows.Management.Service.dll [921600] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: TokenBroker (TokenBroker) . (.Microsoft Corporation - Broker à jetons.) -- C:\Windows\System32\TokenBroker.dll [1498624] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service de géolocalisation.) -- C:\Windows\System32\lfsvc.dll [47104] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [104448] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\Windows\System32\rasmans.dll [912896] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [500224] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [73728] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [629760] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [309248] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [3109376] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [1581056] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [252928] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: dmwappushservice (dmwappushservice) . (.Microsoft Corporation - dmwappushsvc.) -- C:\Windows\System32\dmwappushsvc.dll [58368] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wisvc (wisvc) . (.Microsoft Corporation - Paramètres de vol.) -- C:\Windows\System32\flightsettings.dll [893952] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NetSetupSvc (NetSetupSvc) . (.Microsoft Corporation - Service Configuration du réseau.) -- C:\Windows\System32\NetSetupSvc.dll [336896] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: WpnService (WpnService) . (.Microsoft Corporation - Service du système de notifications Push Wi.) -- C:\Windows\System32\WpnService.dll [263168] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxNetApiSvc (XboxNetApiSvc) . (.Microsoft Corporation - Xbox Live Networking Service.) -- C:\Windows\System32\XboxNetApiSvc.dll [1268224] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UsoSvc (UsoSvc) . (.Microsoft Corporation - Mettre à jour la session du service Orchest.) -- C:\Windows\System32\usosvc.dll [544256] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: UserManager (UserManager) . (.Microsoft Corporation - UserMgr.) -- C:\Windows\System32\usermgr.dll [1282560] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\Windows\System32\DeviceSetupManager.dll [265728] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\Windows\System32\wlidsvc.dll [2157056] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XboxGipSvc (XboxGipSvc) . (.Microsoft Corporation - Xbox Gip Management Service.) -- C:\Windows\System32\XboxGipSvc.dll [72704] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\Windows\System32\NcaSvc.dll [170496] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [182272] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: XblAuthManager (XblAuthManager) . (.Microsoft Corporation - Xbox Live Auth Manager.) -- C:\Windows\System32\XblAuthManager.dll [1063936] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: NaturalAuthentication (NaturalAuthentication) . (.Microsoft Corporation - Service d’authentification naturelle.) -- C:\Windows\System32\NaturalAuth.dll [831488] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll [198656] [Unsigned] =>.Microsoft Corporation
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [524800] [Unsigned] =>.Microsoft Corporation

---\\ PACKAGES WINDOWS INSTALLER (11) - 16s
[MD5.DFAC3457EBFE0CD39BFDD4B174AE9A2F] [WIS][2018/06/20 14:48:28] (.Skylum - Aurora HDR 2018.) -- C:\WINDOWS\Installer\10021c7.msi [252784640] =>.Skylum
[MD5.A0751C66CB6E0D460C1BC38AFFA843F4] [WIS][2019/02/12 14:42:50] (.MetaGeek, LLC - inSSIDer Office.) -- C:\WINDOWS\Installer\23bb362a.msi [9592832] =>.MetaGeek, LLC
[MD5.FEE9F1FF23615B5120B80BB1CD767D6C] [WIS][2015/07/28 10:35:58] (.Broadcom Corporation.) -- C:\WINDOWS\Installer\2478fb.msi [17711616] =>.Broadcom Corporation
[MD5.006F60795453FCEAF6393E33E6E11C5D] [WIS][2013/11/21 08:33:48] (.Intel Corporation - Intel(R) Rapid Storage Technology.) -- C:\WINDOWS\Installer\316a58.msi [9101312] =>.Intel Corporation
[MD5.83C3290BA475685D029E60549D1E8B27] [WIS][2019/11/22 14:54:36] (.VMware, Inc. - VMware Workstation.) -- C:\WINDOWS\Installer\38e5320.msi [535973888] =>.VMware, Inc.
[MD5.397D1D288C4C993CBBE2A6BB2C12AF32] [WIS][2016/05/25 22:56:24] (.Intel Corporation - Intel(R) ME UninstallLegacy.) -- C:\WINDOWS\Installer\955e8.msi [425984] =>.Intel Corporation
[MD5.9E21247A0268FF383A9355BFE225E6CC] [WIS][2016/05/25 22:56:30] (.Intel Corporation - Intel(R) Management Engine Components.) -- C:\WINDOWS\Installer\955ed.msi [9805824] =>.Intel Corporation
[MD5.BC29F8B423896C5D9DCA6ADFF0EF1883] [WIS][2019/08/01 14:58:27] (.VMware, Inc. - VMware Workstation.) -- C:\WINDOWS\Installer\ca110.msi [9995776] =>.VMware, Inc.
[MD5.49E5129ED6EDDE4CD2B0B8FBB3BCAA17] [WIS][2018/08/09 00:36:19] (.Novate Wireless - Microsoft Windows VC8.0 Support Files.) -- C:\WINDOWS\Installer\e8a9c.msi [3094016]
[MD5.087D9BDC5652C309086F1F058046211E] [WIS][2018/08/09 00:36:33] (.Novatel Wireless Inc. - Dell Mobile Broadband Utility.) -- C:\WINDOWS\Installer\e8aa0.msi [36971520] =>.Novatel Wireless Inc.
[MD5.FD3235C72AB2A7EB2E017EFC9C4FBA79] [WIS][2015/05/22 14:42:58] (.O2Micro International LTD. - O2Micro Flash Memory Card Windows Driver.) -- C:\WINDOWS\Installer\ee212.msi [624128] =>.O2Micro International LTD.

---\\ RÉCAPITULATIF DES ÉLÉMENTS TROUVÉS (1) - 0s
https://nicolascoolman.eu/2017/03/12/superfluous-lavasoftwebcompanion/ =>PUP.Optional.LavasoftWebCompanion

---\\ NUMEROS DE SÉRIE
[05F4210DB2B283A32FF2AED29FCB68A4] [19/05/2020] (.Opera Software AS.) - C:\Users\Dar DMANA\AppData\Local\Programs\Opera\launcher.exe =>.Opera Software AS
[0DDEB53F957337FBEAF98C4A615B149D] [05/06/2020] (.Mozilla Corporation.) - C:\Program Files\Mozilla Firefox\firefox.exe =>.Not verified
[16ADE934416698FA0896B7A241038E57] [28/05/2020] (.Zhangkong Internet Technology Co., Ltd..) - C:\Program Files (x86)\zksoft\marswifi\marswifi.exe =>.Not verified
[1F3216F428F850BE2C66CAA056F6D821] [06/06/2020] (.Telegram FZ-LLC.) - C:\Users\Dar DMANA\AppData\Roaming\Telegram Desktop\Telegram.exe =>.Telegram FZ-LLC
[36AC037AA81D63FD] [26/09/2018] (.Foxit Software Incorporated.) - C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe =>.Foxit Software Incorporated
[59040957F20843302BA52AA1F6ABCEEF] [04/11/2019] (.VMware, Inc..) - C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe =>.VMware, Inc.
[7828C7315808BC8717710E13FA3C0B24] [02/05/2019] (.Tonec Inc..) - C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll =>.Tonec Inc.

~ Unselected Options: NF, MR, WR, Browser, Windows, Software, Plateform, Unit, Security, Generics, O23, SRSS, O38, O4, Start Process, Google, Edge, Slimjet, Vivaldi, R5, F2,F3, O1, O2, O3, O10, O17, O18, O20, O34, O35, O36, O40, O42, Pck, O43, O45, O46, O108, O50, O53, O58, O61, O67, O69, O82, O87, O90, O100, O109, O88,
~ End of the scan, 622 items in 00mn33s (223)(0)

Publicité


Signaler le contenu de ce document

Publicité