~ ZHPDiag v2017.1.12.11 Par Nicolas Coolman (2017/01/12) ~ Démarré par thierry (Administrator) (2017/01/13 12:49:53) ~ Web: https://www.nicolascoolman.com ~ Blog: https://www.anti-malware.top ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\thierry\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\thierry\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) Windows 10 Home, 64-bit (Build 14393) =>.Microsoft Corporation ---\\ Navigateurs Internet (3) - 0s ~ MFIE: Mozilla Firefox 50.1.0 (x86 fr) ~ OPIE: Opera 42.0.2393.94 ~ MSIE: Internet Explorer v11.576.14393.0 ---\\ Informations sur les produits Windows (8) - 0s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK ~ Windows(R) Operating System, RETAIL channel Windows ID Activation : OK ~ Windows Partial Key : 8HVX7 Windows License : OK ~ Windows Remaining Initializations Number : 1001 Windows Automatic Updates : OK ---\\ Logiciels de protection (3) - 3s Avast Antivirus Gratuit v12.3.2280 (Protection) Malwarebytes Anti-Malware version 2.2.1.1043 (Protection) Windows Defender (Deactivate) ---\\ Surveillance de Logiciels (1) - 4s ~ Adobe Flash Player 24 PPAPI (Surveillance) ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) Total RAM: 6271.824 MB (72% free) : OK =>.RAM Value System Restore: Activé (Enable) System drive C: has 1837 GB (97%) free of 1893 GB : OK =>.Disk Space ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: THIERRY-HP ~ User Name: thierry ~ Logged in as Administrator ---\\ Enumération des unités disques (2) - 0s ~ Drive C: has 1837 GB free of 1893 GB (System) ~ Drive D: has 1 GB free of 13 GB ---\\ Etat du Centre de Sécurité Windows (9) - 0s [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] EnableShellExecuteHooks: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK ---\\ Recherche particulière de fichiers génériques (25) - 1s [MD5.4E10FB1A015B49AC68F76C1A3F4D9C0F] - 11/11/2016 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [4673304] =>.Microsoft Windows® [MD5.C7645D43451C6D94D87F4D07BDE59C89] - 16/07/2016 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [69632] =>.Microsoft Corporation [MD5.99A19C9A74E2F9820E501DCE77F84F70] - 16/07/2016 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [304240] =>.Microsoft Windows Publisher® [MD5.E584CDC70F694F9A984A060A8291EB04] - 11/11/2016 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [2669056] =>.Microsoft Corporation [MD5.917F081E2AB667C44F7D96DE1D16DFAE] - 14/12/2016 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [673792] =>.Microsoft Corporation [MD5.9600B7F2F89DE60A80D13DE42F672834] - 16/07/2016 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [402432] =>.Microsoft Corporation [MD5.96B8A433F6407DE34850927C96C6CE9B] - 15/09/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [646136] =>.Microsoft Windows® [MD5.227CFE3EDA82029AAC1C088A16297CD7] - 15/09/2016 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [496872] =>.Microsoft Windows® [MD5.7ABD5430F75A7FDDE5323B354C77514F] - 16/07/2016 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation [MD5.323AA1953ED9C01E23F740FA891FE064] - 15/10/2016 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [584032] =>.Microsoft Windows® [MD5.A10F989A812B57B9695F6C305907C9C6] - 16/07/2016 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28512] =>.Microsoft Windows® [MD5.F8FB51B9EF6372610E9B31A1D86B62FC] - 16/07/2016 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [92160] =>.Microsoft Corporation [MD5.613D0137C269187FA298A157E3D14A18] - 16/07/2016 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [173056] =>.Microsoft Corporation [MD5.0D1D392ED2597F295956D058D33BD7C3] - 05/10/2016 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [144896] =>.Microsoft Corporation [MD5.10E3515FE5DBA6656FA62C29342EC4A1] - 16/07/2016 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [83456] =>.Microsoft Corporation [MD5.B54B30992620C97230013A74461C8517] - 16/07/2016 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [114176] =>.Microsoft Corporation [MD5.F1DAECC3B3D6399875D4F10529D6A77C] - 16/07/2016 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [212480] =>.Microsoft Corporation [MD5.E671EDAB0726E05ECEF4058B4CD73C4D] - 25/09/2016 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [450392] =>.Microsoft Windows® [MD5.6FEBB0A847FFD5F057B9AC8889F1B9A7] - 16/07/2016 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [279040] =>.Microsoft Corporation [MD5.DB69C6DA8B3DDFDC547D455CA23A8250] - 02/11/2016 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2255712] =>.Microsoft Windows® [MD5.6B81BF7853D161DB8AC62CD8B9C2DE6B] - 16/07/2016 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [96768] =>.Microsoft Corporation [MD5.17E565710172ED71B8531D8822E1C5D1] - 16/07/2016 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [104960] =>.Microsoft Corporation [MD5.7135785C21CA79D270D11037C43D3F19] - 16/07/2016 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [177152] =>.Microsoft Corporation [MD5.9D2DD64A0B51C56285512DC9454340F6] - 16/07/2016 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [118112] =>.Microsoft Windows® [MD5.BF2546583BB75F01DDA60A7921DFB230] - 16/07/2016 - (.Microsoft Corporation - Volume Shadow Copy driver.) -- C:\WINDOWS\System32\drivers\volsnap.sys [391520] =>.Microsoft Windows® ---\\ Liste des services NT non Microsoft et non désactivés (19) - 2s O23 - Service: Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® O23 - Service: Avast Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.® O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® O23 - Service: TrueSuiteService (FPLService) . (.HP - HP Service.) - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe =>.AuthenTec, Inc.® O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe =>.Hewlett-Packard Company® O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc. - HP Support Solutions Framework Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.® O23 - Service: IObit Uninstaller Service (IObitUnSvr) . (.IObit - Uninstall Programs.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology® O23 - Service: Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation - Intel IPT Host Interface Service.) - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe =>.Intel® Identity Protection Technology Software® O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® O23 - Service: NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation - NVIDIA Network Service.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation® O23 - Service: NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation - NVIDIA Streamer Service.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation® O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 372.9.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation O23 - Service: PDF Document Manager (pdfcDispatcher) . (.PDF Complete Inc - Dispatcher.) - C:\Program Files (x86)\PDF Complete\pdfsvc.exe =>.PDF Complete® O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® O23 - Service: SFR.Dashboard.Service (SFR.Dashboard.Service) . (.SFR - SFR.Dashboard.Service.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe =>.Societe Francaise du Radiotelephone - SFR® O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe =>.NVIDIA Corporation® O23 - Service: Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® ---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (26) - 26s SS - Demand [13/01/2017] [ 270936] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe =>.Adobe Systems Incorporated® SR - Auto [22/09/2016] [ 83768] Apple Mobile Device Service (Apple Mobile Device Service) . (.Apple Inc..) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe =>.Apple Inc.® SR - Auto [25/08/2016] [ 197128] Avast Antivirus (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe =>.AVAST Software a.s.® SR - Auto [12/08/2015] [ 462096] Service Bonjour (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe =>.Apple Inc.® SS - Auto [09/06/2011] [ 264008] TrueSuiteService (FPLService) . (.HP.) - C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe =>.AuthenTec, Inc.® SS - Demand [12/10/2010] [ 206072] GamesAppService (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe =>.WildTangent Inc® SS - Auto [28/08/2015] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SS - Demand [28/08/2015] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc® SR - Auto [11/10/2010] [ 346168] HP Client Services (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe =>.Hewlett-Packard Company® SR - Demand [03/06/2016] [ 1031704] HP CASL Framework Service (hpqcaslwmiex) . (.HP.) - C:\Program Files (x86)\Hp\Shared\hpqwmiex.exe =>.Hewlett-Packard Company® SR - Auto [07/12/2016] [ 31776] HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) . (.HP Inc..) - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe =>.HP Inc.® SR - Auto [28/10/2016] [ 360736] IObit Uninstaller Service (IObitUnSvr) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe =>.IObit Information Technology® SS - Demand [06/12/2016] [ 651576] Service de l’iPod (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe =>.Apple Inc.® SR - Auto [24/02/2011] [ 212944] Intel(R) Identity Protection Technology Host Interface Serv (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe =>.Intel® Identity Protection Technology Software® SR - Auto [01/02/2011] [ 326168] Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe =>.Intel Corporation® SS - Demand [15/12/2016] [ 172488] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe =>.Mozilla Corporation® SR - Auto [15/06/2016] [ 1881144] NVIDIA Network Service (NvNetworkService) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe =>.NVIDIA Corporation® SR - Demand [15/06/2016] [ 3634232] NVIDIA Streamer Network Service (NvStreamNetworkSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe =>.NVIDIA Corporation® SR - Auto [15/06/2016] [ 2522680] NVIDIA Streamer Service (NvStreamSvc) . (.NVIDIA Corporation.) - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe =>.NVIDIA Corporation® SR - Auto [16/09/2016] [ 1364024] NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\WINDOWS\system32\nvvsvc.exe =>.NVIDIA Corporation® SR - Auto [06/05/2011] [ 1128952] PDF Document Manager (pdfcDispatcher) . (.PDF Complete Inc.) - C:\Program Files (x86)\PDF Complete\pdfsvc.exe =>.PDF Complete® SR - Auto [24/06/2015] [ 303360] Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor.) - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe =>.Realtek Semiconductor Corp® SS - Auto [11/10/2013] [ 32160] SFR.Dashboard.Service (SFR.Dashboard.Service) . (.SFR.) - C:\Program Files (x86)\SFR\Gestionnaire de Connexion\SFR.Dashboard.Service.exe =>.Societe Francaise du Radiotelephone - SFR® SS - Auto [20/09/2016] [ 324224] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe =>.Skype Software Sarl® SR - Auto [20/09/2016] [ 324224] NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe =>.NVIDIA Corporation® SR - Auto [20/09/2016] [ 324224] Intel(R) Management and Security Application User Notificat (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe =>.Intel Corporation® ---\\ Tâches planifiées en automatique (36) - 5s [MD5.193CC922D2443EF9DBE28E82EDAB4717] [APT] [Adobe Flash Player PPAPI Notifier] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_24_0_0_186_pepper.exe [324224] (.Activate.) =>.Adobe Systems Incorporated® [MD5.CA363F172E1978FD155764F2840B0BE8] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [324224] (.Activate.) =>.Adobe Systems Incorporated® [MD5.A35AE98D2D85B9504789A12860BBB5EC] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [324224] (.Activate.) =>.AVAST Software a.s.® [MD5.63BB08F1FE94AE8804BCDC4916D4ABCD] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [324224] (.Activate.) =>.Piriform Ltd® [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [324224] (.Activate.) =>.Google Inc® [MD5.DD7423ABBE2913E70D50E9318AD57EE4] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [324224] (.Activate.) =>.Google Inc® [MD5.00000000000000000000000000000000] [APT] [GoogleUpdateTaskUserS-1-5-21-142778266-4193320741-1648087951-1000UA] (...) -- C:\Users\thierry\AppData\Local\Google\Update\GoogleUpdate.exe (.not file.) [324224] (.Activate.) [MD5.3ECAF01F5F4BFBEBBA31596DB0FC471B] [APT] [HPCeeScheduleForthierry] (.HP Development Company, L.P..) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [324224] (.Activate.) =>.Hewlett-Packard Company® [MD5.3ECAF01F5F4BFBEBBA31596DB0FC471B] [APT] [HPCeeScheduleForTHIERRY-HP$] (.HP Development Company, L.P..) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [324224] (.Activate.) =>.Hewlett-Packard Company® [MD5.D3020A3191B8DCDD733B2A724EE9D3EA] [APT] [Opera scheduled Autoupdate 1384410972] (.Opera Software.) -- C:\Program Files (x86)\Opera\launcher.exe [324224] (.Activate.) =>.Opera Software AS® [MD5.56E2E3430D4AA73366B5BB04C9D7B11F] [APT] [Uninstaller_SkipUac_thierry] (.IObit.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [324224] (.Activate.) =>.IObit Information Technology® [MD5.00000000000000000000000000000000] [APT] [{7852DC0B-B0C9-4807-8AC8-3CFB10ACFDFC}] (...) -- C:\Users\thierry\Downloads\Setup_www.surf-barre.com.exe (.not file.) [324224] (.Activate.) [MD5.23345F9256FFB4C68A75F2127DD6C21D] [APT] [{D33D2D10-C509-4519-A634-DB950D856BCA}] (.Mozilla Corporation.) -- c:\program files (x86)\mozilla firefox\firefox.exe [324224] (.Activate.) =>.Mozilla Corporation® [MD5.3C69A38ACA535D234F6F51F11D8A8208] [APT] [{DA18F59D-61A4-44B9-BAF5-8855BC5C3697}] (.Apache Software Foundation.) -- C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [324224] (.Activate.) =>.Apache Software Foundation [MD5.23985274780D27117C470AA259B79B30] [APT] [Apple\AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [324224] (.Activate.) =>.Apple Inc.® [MD5.6DBF5E67EEA838135065948A99219D0F] [APT] [Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)] (.HP Inc..) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [324224] (.Activate.) =>.HP Inc.® O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job [324224] =>.Adobe Systems Incorporated® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [324224] =>.Adobe Systems Incorporated® O39 - APT: HPCeeScheduleForTHIERRY-HP$ - (.HP Development Company, L.P..) -- C:\WINDOWS\Tasks\HPCeeScheduleForTHIERRY-HP$.job [324224] =>.Hewlett-Packard Company® O39 - APT: HPCeeScheduleForthierry - (.HP Development Company, L.P..) -- C:\WINDOWS\Tasks\HPCeeScheduleForthierry.job [324224] =>.Hewlett-Packard Company® O39 - APT: Uninstaller_SkipUac_thierry - (.IObit.) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_thierry.job [324224] =>.IObit Information Technology® O39 - APT: Adobe Flash Player PPAPI Notifier - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier [324224] =>.Adobe Systems Incorporated® O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [324224] =>.Adobe Systems Incorporated® O39 - APT: avast! Emergency Update - (.AVAST Software.) -- C:\WINDOWS\System32\Tasks\avast! Emergency Update [324224] =>.AVAST Software a.s.® O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\WINDOWS\System32\Tasks\CCleanerSkipUAC [324224] =>.Piriform Ltd® O39 - APT: Unknown - (.Legitimate.) -- C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask [324224] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore [324224] =>.Google Inc® O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA [324224] =>.Google Inc® O39 - APT: HPCeeScheduleForthierry - (.HP Development Company, L.P..) -- C:\WINDOWS\System32\Tasks\HPCeeScheduleForthierry [324224] =>.Hewlett-Packard Company® O39 - APT: HPCeeScheduleForTHIERRY-HP$ - (.HP Development Company, L.P..) -- C:\WINDOWS\System32\Tasks\HPCeeScheduleForTHIERRY-HP$ [324224] =>.Hewlett-Packard Company® O39 - APT: Unknown - (.Microsoft Corporation.) -- C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 [324224] =>.Microsoft Corporation O39 - APT: Opera scheduled Autoupdate 1384410972 - (.Opera Software.) -- C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1384410972 [324224] =>.Opera Software AS® O39 - APT: Uninstaller_SkipUac_thierry - (.IObit.) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_thierry [324224] =>.IObit Information Technology® O39 - APT: {7852DC0B-B0C9-4807-8AC8-3CFB10ACFDFC} - (...) -- C:\WINDOWS\System32\Tasks\{7852DC0B-B0C9-4807-8AC8-3CFB10ACFDFC} [324224] (.Orphan.) =>.Superfluous.Orphan O39 - APT: {D33D2D10-C509-4519-A634-DB950D856BCA} - (.Mozilla Corporation.) -- C:\WINDOWS\System32\Tasks\{D33D2D10-C509-4519-A634-DB950D856BCA} [324224] =>.Mozilla Corporation® O39 - APT: {DA18F59D-61A4-44B9-BAF5-8855BC5C3697} - (.Apache Software Foundation.) -- C:\WINDOWS\System32\Tasks\{DA18F59D-61A4-44B9-BAF5-8855BC5C3697} [324224] =>.Apache Software Foundation ---\\ Applications lancées au démarrage du système (14) - 1s O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp® O4 - HKLM\..\Run: [NvBackend] . (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe =>.NVIDIA Corporation® O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe =>.Apple Inc.® O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKCU\..\RunOnce: [Uninstall C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 (.not file.) O4 - HKCU\..\RunOnce: [Uninstall C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64 (.not file.) O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Power off recovery for Magic Desktop.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe =>.EasyBits Software AS® O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe =>.AVAST Software s.r.o.® O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle America, Inc.® O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Corporation® O4 - HKUS\S-1-5-21-142778266-4193320741-1648087951-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd® O4 - HKUS\S-1-5-21-142778266-4193320741-1648087951-1000\..\RunOnce: [Uninstall C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64] C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\amd64 (.not file.) O4 - HKUS\S-1-5-21-142778266-4193320741-1648087951-1000\..\RunOnce: [Uninstall C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] C:\Users\thierry\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64 (.not file.) ---\\ Processus lancés (28) - 2s [MD5.1C11C1E4578CDC4363CB2E911D53E7E2] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe [426040] [PID.1500] =>.NVIDIA Corporation® [MD5.00000000000000000000000000000000] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 372.9.) -- C:\WINDOWS\system32\nvvsvc.exe [0] [PID.1512] =>.NVIDIA Corporation [MD5.3B2529FE7B92A0EB70E852B4B66A88F7] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe [1284544] [PID.1632] =>.NVIDIA Corporation® [MD5.347E3CE270009E4C71B26E71ACF98106] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360] [PID.1844] =>.Realtek Semiconductor Corp® [MD5.F4E0580B5789474385E7ACB189C4AF2C] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128] [PID.1640] =>.AVAST Software a.s.® [MD5.31821EC63BDEDE18E64C11F7248B32AB] - (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624] [PID.2092] =>.Realtek Semiconductor Corp® [MD5.B5C2F92EE1106DFE7BB1CCE4D35B6037] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [462096] [PID.2480] =>.Apple Inc.® [MD5.6A181452D4E240B8ECC7614B9A19BDE9] - (.Hewlett-Packard Company - HP Client Services.) -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [346168] [PID.2496] =>.Hewlett-Packard Company® [MD5.7D811EA7A2AAA49B0446D42CBC1CD338] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768] [PID.2520] =>.Apple Inc.® [MD5.CD6FE4D2E29D70D9E2AA587DE5978A15] - (.IObit - Uninstall Programs.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736] [PID.2528] =>.IObit Information Technology® [MD5.6C85719A21B3F62C2C76280F4BD36C7B] - (.Intel Corporation - Intel IPT Host Interface Service.) -- C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [212944] [PID.2768] =>.Intel® Identity Protection Technology Software® [MD5.A6102293847A7A2DF01E7BF7AC1C1F12] - (.NVIDIA Corporation - NVIDIA Network Service.) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144] [PID.3188] =>.NVIDIA Corporation® [MD5.075CDE4F95ED6119B4BA9162876801F8] - (.PDF Complete Inc - Dispatcher.) -- C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1128952] [PID.3248] =>.PDF Complete® [MD5.A8213BF32D2E75ADD362E118AD164749] - (.NVIDIA Corporation - NVIDIA Streamer Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680] [PID.3256] =>.NVIDIA Corporation® [MD5.E6A64322EB213AEACBB61584AA6FB032] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232] [PID.4228] =>.NVIDIA Corporation® [MD5.6AA800365EA5A95F4459CCED9346F605] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe [21332536] [PID.1648] =>.NVIDIA Corporation® [MD5.F4B346CA233F77BE20AB9FE126B4CEA6] - (.NVIDIA Corporation - NVIDIA Settings.) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe [2456632] [PID.5884] =>.NVIDIA Corporation® [MD5.EC80F3ECC5F8543E22BBCB037D837CA9] - (.HP Inc. - HP Support Solutions Framework Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776] [PID.2448] =>.HP Inc.® [MD5.BE586B5D1D73E1F07ED5AADDEFBCAA47] - (.NVIDIA Corporation - NVIDIA Backend.) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776] [PID.2468] =>.NVIDIA Corporation® [MD5.0A8A57793279A1F9696208AC2F66863D] - (...) -- C:\Program Files (x86)\Gomez\GomezPEER\bin\GomezPEER.exe [73728] [PID.1564] [MD5.CE99AA11D0274BE5BDEF3991508852E9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [9080768] [PID.5564] =>.AVAST Software s.r.o.® [MD5.D75C4B4A8FE6D7FD74A7EECDBAEC729F] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [326168] [PID.4052] =>.Intel Corporation® [MD5.08996DD4135EEDCB346BC4AD97B88A72] - (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Gomez\GomezPEER\jre\bin\java.exe [135168] [PID.6156] =>.Sun Microsystems, Inc. [MD5.AF9207A62B56E4553802EB354A564545] - (.IObit - UninstallerMonitor.) -- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe [2275104] [PID.4996] =>.IObit Information Technology® [MD5.0E0E87820BB4431B176A00FB95B5503F] - (.HP - HP CASL Framework Service.) -- C:\Program Files (x86)\Hp\Shared\hpqwmiex.exe [1031704] [PID.6372] =>.Hewlett-Packard Company® [MD5.758C2CE427C343F780A205E28555C98D] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2656280] [PID.6900] =>.Intel Corporation® [MD5.D5A2D371E4704137CD41A912232B0BBA] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.145.0_x64__kzf8qxf38zg5c\SkypeHost.exe [72192] [PID.7188] =>.Skype Technologies [MD5.3CCD57D9CB41AC322B161654E5DA14F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\thierry\AppData\Roaming\ZHP\ZHPDiag3.exe [2642944] [PID.9040] =>.Nicolas Coolman ---\\ Google Chrome, Démarrage,Recherche,Extensions (11) - 0s G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. =>.Google Inc. G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [cjpalhdlnbpafiamejdnhcphjbkeiagm] uBlock Origin =>.Raymond Hill G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [jpgfhihjicjofdejkbjgnjlaglaciobe] Website Logon G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. G2 - GCE: Preference [User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc. ---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (11) - 3s P2 - EXT FILE: (.clean surf - Modify from Silent Block addon - only .) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\cleansurf@netvisiteurs.com.xpi P2 - EXT FILE: (.Firebug - Web Development Evolved. Firebug is fr.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\firebug@software.joehewitt.com.xpi =>.Firebug P2 - EXT FILE: (.Tab Scope - Previews and navigates tab contents th.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\tabscope@xuldev.org.xpi P2 - EXT FILE: (.Google Translator for Firefox - Translate the selected text and the fu.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\translator@zoli.bod.xpi =>.Google Translator for Firefox P2 - EXT FILE: (.All uBlock Origin contributors - uBlock Origin.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\uBlock0@raymondhill.net.xpi =>.All uBlock Origin contributors P2 - EXT FILE: (.ReminderFox - Displays and manages reminders and ToD.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}.xpi =>.ReminderFox P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus P2 - EXT: (.WOT Services Oy - WOT.) -- C:\Users\thierry\AppData\Roaming\Mozilla\Firefox\Profiles\avtr2ubr.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} =>.WOT Services Oy P2 - EXT: (.Wips.com -