Rapport de ZHPFix 2017.06.13.1 par Nicolas Coolman, Update du 13/06/2017 Fichier d'export Registre : Run by Ingrid at 13/05/2018 23:40:05 High Elevated Privileges : OK Windows 8 Home Premium Edition, 64-bit Service Pack 1 (16299) Corbeille vidée (00mn 05s) Dossier Prefetcher vidé ========== Dossiers ========== Aucun dossiers CLSID Local utilisateur vide ========== Fichiers ========== SUPPRIMÉS Temporaires Windows (75) (65 381 529 octets) ========== Autre ========== NON TRAITÉ ****** IMPORTANT: Ce script est donné à titre indicatif et doit être obligatoirement validé par un expert sécurité. NON TRAITÉ (.Comodo Security Solutions, Inc. - dragon_updater.) -- C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328] [PID.2916]on Corporation [MD5.3DC11A802353401332D49C3CBFBBE5FC] - (.Hewlett-Packard Company - HP Client Services.) -- C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [291896] [PID.2964] s (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [92216] [PID.3000] =>.Hewlett-Packard Company® [MD5.854197D1270D20193FE2D4B14784AADE] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [26680] [PID.3044] =>.Hewlett-Packard Company® [MD5.FCBDCC6 NON TRAITÉ F1801E32244235608E1277752] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2332]xe [268824] [PID.1960] Epson Portal\mepService.exe [714712] [PID.1924] =>.SEIKO EPSON CORPORATION® [MD5.6F42D9C646948D0604FB4271A7CEAC54] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) -- C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960] [PID.3092] =>.Synaptics Incorporated® [MD5.734B435E1693386213EEFD4D17A70DEB] - (.Malwarebytes - Malwarebytes Service.) -- C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056] [PID.3588] =>.Malwarebytes Corporation® [MD5.D5D NON TRAITÉ AAC186D6AD7CA3CCE932FB07140FD] - (.Seiko Epson Corporation - MyEpson Portal.) -- C:\Program Files (x86)\epson\MyEpson Portal\mep.exe [2414552] [PID.6868]>.Malwarebytes Corporation® [MD5.6D99E1391FFC1D473EB18CD9252F2889] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352] [PID.6948] SYNAPTICS\SynTP\SYNTPHELPER.EXE [218816] [PID.7540] =>.Synaptics Incorporated® [MD5.F8127F4DD22960352C3D65DE26D2542D] - (...) -- C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1813.286.0_x64__kzf8qxf38zg5c\SkypeHost.exe [86528] [PID.8536] =>.Skype Technologies [MD5.CB16979C9BB4E10E17A2B67349B40E5A] - (.Realte NON TRAITÉ k Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6489704] [PID.9112]A19CDD467616492D4096F] - (.Intel Corporation - persistence Module.) -- C:\Windows\System32\igfxpers.exe [418336] [PID.4848] [123848] [PID.8008] =>.Corel Corporation® [MD5.328EF5D436FADDED0D0D709A394A0C75] - (.Hewlett-Packard Company - .) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2736128] [PID.7916] =>.Hewlett-Packard Company [MD5.2A3FB4C98F139038E23330D2439DB8A4] - (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Ingrid\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096] [PID.7372] NON TRAITÉ x64\3\E_IATILEE.EXE [297024] [PID.5916]=>.SEIKO EPSON Corporation® [MD5.B4000AF76B1E2E9DBBFBAAD49747FA35] - (.Hewlett-Packard Company - PictureMover Application.) -- C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe [1040952] [PID.5988] =>.Hewlett-Packard Company® [MD5.0301E49C2746A990C94B6DD71FBEF656] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [584760] [PID.8120] =>.Hewlett-Packard Company® [MD5.6ACD3A8E753FF0E687274F5D4BA4AF7D] - (.Facebook - FacebookGameroom.) -- C:\Users\Ingrid\AppData\Local\Facebook\Games\FacebookGameroom.exe [575352] [PID.192] =>.Facebook, I NON TRAITÉ nc.® [MD5.6AA6EB9015736EF3F2F3D81FBC79B453] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [588704] [PID.9008]D5.D5D8FFDE7F1204FB816EA2677606C215] - (.AVAST Software - Avast Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [12007128] [PID.9244] [PID.9372] =>.Piriform Ltd® [MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.9516] =>.Google Inc® [MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [158600 NON TRAITÉ 8] [PID.9572]423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.9792] [1586008] [PID.9804] =>.Google Inc® [MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.9812] =>.Google Inc® [MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1586008] [PID.9180] =>.Google Inc® [MD5.EA66582423B8ED237DAAE8B927191F22] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe NON TRAITÉ [1586008] [PID.6104].10260] 1311320] [PID.10480] =>.Opera Software AS® [MD5.548FEBB6B27D337D96F2587A98D36CD2] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Ingrid\Downloads\ZHPDiag3.exe [3094400] [PID.11012] =>.Nicolas Coolman [MD5.B4F7A0329DCB018119E86AEC75DC4F9A] - (.Hewlett-Packard Company - HP Support Assistant.) -- C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe [126008] [PID.10036] =>.Hewlett-Packard Company® [MD5.DD7423ABBE2913E70D50E9318AD57EE4] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] [PID.9908] =>.Google Inc® [MD5.900236357482B00944826354EEC6B93F] - (.Goog NON TRAITÉ HomePage] http://www.gstatic.com/drive.google.com/ G2 - GCE: Preference [Ingrid][User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] eyeo GmbH =>.eyeo GmbH {AdBlock Plus} G2 - GCE: Preference [Ingrid][User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] http://www.google.com/ =>.Google Inc. {Hidden Chrome extensions} G2 - GCE: Preference [Ingrid][User Data\Default] [ghbmnnjooekpmoecnnnilnnbdlolhkhi] =>.Google Inc. {Docs hors connexion} G2 - GCE: Preference [Ingrid][User Data\Default] [kcnofmiceklfkodhdhhjcfjhdepfobaf] eidReader Plugin Chrome Extension =>.UnifiedPost G2 - GCE: Preference [Ingrid][User Data\Default] [nglpjhjbjhhledipedkmaakghmjfchgn] Snippet G2 - NON TRAITÉ ation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\formautofill@mozilla.org.xpi .Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\screenshots@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\shield-recipe-client@mozilla.org.xpi =>.Mozilla Corporation P2 - EXT FILE: (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat@mozill NON TRAITÉ ww.google.comURL = http://www.google.com/ ernet Explorer\Main,Search Page = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL NON TRAITÉ = http://www.google.com/e = http://go.microsoft.com/ oration R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons =>.Microsoft Corporation R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk =>.Microsoft Corporation R1 - HKUS\S-1-5-21-1709177291-2977503570-2991599339-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ =>.Google Inc. R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C NON TRAITÉ 04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.16299.371 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll NON TRAITÉ \drivers\adp80xx.sys [1135512]29 15:41:02 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [258592] [27032] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [131992] =>.Microsoft Windows® O58 - SDL:2018/05/10 18:03:30 A . (.AVAST Software - Avast anti rootkit.) -- C:\WINDOWS\System32\drivers\aswArPot.sys [196640] =>.AVAST Software s.r.o.® O58 - SDL:2018/03/01 21:58:35 A . (.AVAST Software - IDS Application Activity Monitor Driver..) -- C:\WINDOWS\System32\drivers\aswbidsdrivera.sys [227504] =>.AVAST NON TRAITÉ Software s.r.o.® O58 - SDL:2018/03/01 21:58:35 A . (.AVAST Software - Application Activity Monitor Helper Driver.) -- C:\WINDOWS\System32\drivers\aswbidsha.sys [199440]58:36 A . (.AVAST Software - Universal Driver.) -- C:\WINDOWS\System32\drivers\aswbuniva.sys [57680] 4560] =>.AVAST Software s.r.o.® O58 - SDL:2018/05/10 18:03:30 A . (.AVAST Software - Avast HWID.) -- C:\WINDOWS\System32\drivers\aswHwid.sys [46968] =>.AVAST Software s.r.o.® (.AVAST Software) O58 - SDL:2018/05/10 18:03:30 A . (.AVAST Software - Avast File System Minifilter for Windows 20.) -- C:\WINDOWS\System32\drivers\aswMonFlt.sys [159120] =>.AVAST Software s.r.o.® O58 - SDL:2018/05/10 18:03:29 A . NON TRAITÉ (.AVAST Software - Avast WFP Redirect Driver.) -- C:\WINDOWS\System32\drivers\aswRdr2.sys [111360]2018/05/10 18:02:50 A . (.AVAST Software - Avast Virtualization Driver.) -- C:\WINDOWS\System32\drivers\aswSnx.sys [1027720] [460520] =>.AVAST Software s.r.o.® O58 - SDL:2018/05/10 18:03:31 A . (.AVAST Software - Stream Filter.) -- C:\WINDOWS\System32\drivers\aswStm.sys [205976] =>.AVAST Software s.r.o.® O58 - SDL:2018/05/10 18:03:30 A . (.AVAST Software - Avast VM Monitor.) -- C:\WINDOWS\System32\drivers\aswVmm.sys [381552] =>.AVAST Software s.r.o.® (.AVAST Software) O58 - SDL:2017/09/29 15:41:02 A . (. - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\b NON TRAITÉ cmfn2.sys [9728]09/29 15:41:02 A . (.Chelsio Communications - Chelsio iSCSI Crash Dump Driver.) -- C:\WINDOWS\System32\drivers\cht4dx64.sys [141208] 4sx64.sys [357272] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Chelsio Communications - Virtual Bus Driver for Chelsio ® T5/T6 Chip.) -- C:\WINDOWS\System32\drivers\cht4vx64.sys [1723288] =>.Microsoft Windows® O58 - SDL:2010/09/29 00:55:54 A . (.CyberLink Corporation - CyberLink WebCam Virtual Driver.) -- C:\WINDOWS\System32\drivers\clwvd.sys [31088] =>.CyberLink® O58 - SDL:2017/09/29 15:41:01 A . (.QLogic Corporation - QLogic 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3419032] =>.Microsoft Wi NON TRAITÉ ndows® O58 - SDL:2009/09/17 22:54:54 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\HECIx64.sys [56344]s® O58 - SDL:2017/09/29 15:40:59 A . (.Intel(R) Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iagpio.sys [36864] c.sys [91648] =>.Intel(R) Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [79360] =>.Intel Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO GPIO Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [88576] = NON TRAITÉ >.Intel Corporation O58 - SDL:2017/09/29 15:40:59 A . (.Intel Corporation - Intel(R) Serial IO I2C Driver v2.) -- C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [171520] - SDL:2017/09/29 15:41:01 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [38128] C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [113152] =>.Intel Corporation O58 - SDL:2010/04/13 10:44:22 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\WINDOWS\System32\drivers\iaStor.sys [540696] =>.Intel Corporation® O58 - SDL:2017/09/29 15:41:03 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver (i.) -- NON TRAITÉ 58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [108064]/09/29 15:41:02 A . (.Avago Technologies - Avago SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3i.sys [103320] sss.sys [82840] =>.Microsoft Windows® O58 - SDL:2017/12/22 18:56:14 A . (...) -- C:\WINDOWS\System32\drivers\mbae64.sys [77432] =>.Malwarebytes Corporation® O58 - SDL:2018/05/13 20:52:27 A . (.Malwarebytes - Malwarebytes SwissArmy.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [253880] =>.Malwarebytes Corporation® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controlle NON TRAITÉ r Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [59800]O58 - SDL:2017/09/29 15:41:02 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575896] ft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63896] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Mellanox - NetworkDirect Support Filter Driver.) -- C:\WINDOWS\System32\drivers\ndfltr.sys [108952] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:01 A . (.MediaTek Inc. - MediaTek 802.11 Wireless Adapter Driver.) -- C:\WINDOWS\Syst NON TRAITÉ em32\drivers\netr28x.sys [2537984]9 15:41:02 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [166296] vers\percsas2i.sys [58776] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Avago Technologies - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\percsas3i.sys [61848] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:03 A . (.Realtek - Realtek 8136/8168/8169 NDIS 6.40 64-bit Dri.) -- C:\WINDOWS\System32\drivers\rt640x64.sys [604160] =>.Realtek O58 - SDL:2017/09/29 15:41:14 RA . (.Realtek - Realtek PCIe GBE Family Controller Flight.) -- C:\WINDOWS\System32\drivers\rt NON TRAITÉ eth.sys [59904]or Corp® O58 - SDL:2010/05/07 21:19:58 A . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/V.) -- C:\WINDOWS\System32\drivers\RtsUStor.sys [245792] stem32\drivers\sisraid2.sys [44952] =>.Microsoft Windows® O58 - SDL:2017/09/29 15:41:02 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81816] =>.Microsoft Windows® O58 - SDL:2011/10/14 04:37:42 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver.sys [20016] =>.Synaptics Incorporated® O58 - SDL:2017/09/23 16:54:33 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- NON TRAITÉ agon.) -- C:\Program Files (x86)\Comodo\Dragon\dragon.exe\firefox.exe -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe =>.Microsoft Corporation® O68 - StartMenuInternet: [64Bits][HKLM\..\Shell\open\Command] (.Opera Software - Opera Internet Browser.) -- c:\program files (x86)\opera\Launcher.exe =>.Opera Software AS® O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Comodo - Com NON TRAITÉ odo Dragon.) -- C:\Program Files (x86)\Comodo\Dragon\dragon.exeinstall\helper.exe Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc. O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe =>.Microsoft Corporation O68 - StartMenuInternet: [64Bits][HKLM\..\InstallInfo\ShowIconsCommand] (.Opera Software - Opera Internet Browser.) -- c:\program files (x86)\Opera\launcher.exe =>.Opera Software O68 - StartMenuInternet: [64Bits][HKLM\ NON TRAITÉ ..\InstallInfo\ReinstallCommand] (.Comodo - Comodo Dragon.) -- C:\Program Files (x86)\Comodo\Dragon\dragon.exeinstall\helper.exe ========== Récapitulatif ========== 1 : Dossiers 1 : Fichiers 27 : Autre End of clean in 00mn 33s ========== Chemin de fichier rapport ========== C:\Users\Ingrid\AppData\Roaming\ZHP\ZHPFix[R1].txt - 13/05/2018 23:40:10 [17549]