ZHPDIAG est sur bureau Windows7

https://www.cjoint.com/?3KqtROQdmIV

Bonsoir Guillaume,
je ne sais absolument pas si ce que j'ai réussi à faire est bon et pour toi compréhensible?
Merci de me le dire. J'ai sur mon bureau d'autres icônes, je ne sais pas si avec ce lien tu peux voir l'état de mon ordinateur. Déjà un grand merci de m'avoir secouru si vite! Si nécessaire je ferai ce que tu me conseilleras après avoir lu le rapport (si rapport il y a... :0( :0)
Gretchen17

https://www.cjoint.com/?3KqtROQdmIV ~ Report of ZHPDiag v2014.11.15.164 - Nicolas Coolman (15/11/2014)
J'ai de nouveau regardé ton texte et ce que tu me demandais: c'était bien ouvrir de fichier, et t'envoyer le fichier avec le nom complet ce que j'ai fait là, il me semble! Pourvu que ce soit bon!
Encore merci! J'ai la frousse que mon PC soit très malade! (Il a crashé il n'y a pas longtemps et est revenu à la vie pour ainsi dire par miracle, en cliquant sur F9 et un autre F, et puis tout doucement j'ai utilisé ma sauvegarde pour le retrouver plus ou moins.Voilà l'histoire récente!)
Encore merci
Bonne soirée,
Gretchen17

C:\Windows\System32\roboot64.exe->C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir
C:\Users\Gabriela\Documents\FileExtractorSetup.exe->C:\AdwCleaner\Quarantine\C\Users\Gabriela\Documents\FileExtractorSetup.exe.vir

Pas sûre de ce que devais t'envoyer exactement! Tu me le diras? @+

Non, ce n'est pas la première fois, Guillaume, j'en ai fait d'autres avant cette semaine, vers le 9, mais je t'ai envoyé celui de tout-à-l'heure. Cela expliquerait peut-être que je n'arrive pas à trouver numéro 1, non? Désolée!
Je vais maintenant télécharger Malwarebytes...@+

Certes

poste moi le rapport complet d'Adwcleaner

Merci

# AdwCleaner v4.101 - Report created 16/11/2014 at 20:53:19
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Gabriela - GABRIELA-PC
# Running from : C:\Users\Gabriela\Documents\Téléchargements\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaks
Folder Deleted : C:\Program Files (x86)\Tweaks
Folder Deleted : C:\Users\Gabriela\AppData\Roaming\DigitalSites

***** [ Scheduled Tasks ] *****

Task Deleted : Digital Sites

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\dsiteproducts
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital Sites
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Tweaks File Extractor

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v33.1 (x86 fr)
# AdwCleaner v4.101 - Report created 16/11/2014 at 20:53:19
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Gabriela - GABRIELA-PC
# Running from : C:\Users\Gabriela\Documents\Téléchargements\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaks
Folder Deleted : C:\Program Files (x86)\Tweaks
Folder Deleted : C:\Users\Gabriela\AppData\Roaming\DigitalSites

***** [ Scheduled Tasks ] *****

Task Deleted : Digital Sites

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\dsiteproducts
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Digital Sites
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Tweaks File Extractor

***** [ Browsers ] *****

-\\ Internet Explorer v0.0.0.0


-\\ Mozilla Firefox v33.1 (x86 fr)


-\\ Google Chrome v38.0.2125.111


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R6].txt - [1244 octets] - [12/11/2014 18:48:13]
AdwCleaner[R7].txt - [1654 octets] - [13/11/2014 15:47:26]
AdwCleaner[R8].txt - [954 octets] - [14/11/2014 17:21:39]
AdwCleaner[R9].txt - [1546 octets] - [16/11/2014 20:42:12]
AdwCleaner[S6].txt - [1014 octets] - [14/11/2014 17:28:12]
AdwCleaner[S7].txt - [1434 octets] - [16/11/2014 20:53:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1494 octets] ##########


-\\ Google Chrome v38.0.2125.111


-\\ Opera v0.0.0.0


*************************

AdwCleaner[R6].txt - [1244 octets] - [12/11/2014 18:48:13]
AdwCleaner[R7].txt - [1654 octets] - [13/11/2014 15:47:26]
AdwCleaner[R8].txt - [954 octets] - [14/11/2014 17:21:39]
AdwCleaner[R9].txt - [1546 octets] - [16/11/2014 20:42:12]
AdwCleaner[S6].txt - [1014 octets] - [14/11/2014 17:28:12]
AdwCleaner[S7].txt - [1434 octets] - [16/11/2014 20:53:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [1494 octets] ##########

Bonsoir Guillaume 5188,
Je suis désolée, j'ai tout fait comme vous l'aviez très bien indiqué, J'ai le rapport, en fait 2, un de la quarantaine, l'autre journaux de l'application. J'ai sans doute encore fait une bétise pour ne pas dire autre chose. J'ai fait 2 capture d'écran, pensant que je pourrais facilement vous les poster. Et bien non! Et copier/coller ne marche pas non plus.Que puis-je faire? J'ai les raccourcis sur le bureau, vois-tu qu chose que je puisse faire? Il y avaient 5 éléments qui sont encore en Quarantaine, je ne les ai pas encore supprimés. Merci et mes excuses! J'attends? As-tu encore le courage et une solution?
Gretchen17

PS. Pourtant j'ai bien cliqué sur 'exporter...C'est après que j'ai dû dérailler, par ignorance encore une fois! GGGGrrrrrrrrr!

J'ai deux captures d'écrans que je pensais pouvoir te poster. Ca ne marche pas! Le programme s'est bien déroulé, il y avaient 5 éléments à supprimer éventuellement, je les ai laissé en quarantaine comme il était indiqué. C'est frustrant, ces 2 captures d'écrans et ne pas pouvoir les poster. Si tu relis mon dernier message, tu verras. Je n'arrive pas à poster ou à copier/coller ces deux captures d'écran. Tu vois des moyens de le faire?
Merci, @+

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 16/11/2014
Heure de l'examen: 22:05:08
Fichier journal: jouexamens1611.txt
Administrateur: Oui

Version: 2.00.3.1025
Base de données Malveillants: v2014.11.16.05
Base de données Rootkits: v2014.11.12.01
Licence: Essai
Protection contre les malveillants: Activé(e)
Protection contre les sites Web malveillants: Activé(e)
Auto-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: Gabriela

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 451580
Temps écoulé: 37 min, 5 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristique: Activé(e)
PUP: Activé(e)
PUM: Activé(e)

Processus: 0
(Aucun élément malicieux detecté)

Modules: 0
(Aucun élément malicieux detecté)

Clés du Registre: 0
(Aucun élément malicieux detecté)

Valeurs du Registre: 0
(Aucun élément malicieux detecté)

Données du Registre: 0
(Aucun élément malicieux detecté)

Dossiers: 0
(Aucun élément malicieux detecté)

Fichiers: 5
PUP.Optional.InstallCore, C:\Users\Gabriela\AppData\Local\Temp\ICReinstall_FlvPlayerSetup.exe, Mis en quarantaine, [c5b02913b2caad892158281535d007f9],
PUP.Optional.InstallCore, C:\Users\Gabriela\AppData\Local\Temp\is765589038\222DEC81_stp.EXE, Mis en quarantaine, [fe7782ba8fedbc7a3fefc3e84bb7d42c],
PUP.Optional.BundleInstaller.A, C:\Users\Gabriela\AppData\Local\Temp\is765589038\30E4230C_stp.EXE, Mis en quarantaine, [babbf349502c0135c8118187a3629769],
PUP.Optional.BPlug, C:\Users\Gabriela\AppData\Local\Temp\is765589038\6FAA2B34_stp.EXE, Mis en quarantaine, [2f46e953a7d572c4645ef0d347bace32],
PUP.Optional.Babylon, C:\Users\Gabriela\AppData\Local\Temp\n4549\systemspeedup_2710-aeabe5db.exe, Mis en quarantaine, [2055e755b4c840f6923ffebe966b39c7],

Secteurs physiques: 0
(Aucun élément malicieux detecté)


(end)

Bonjour Guillaume5188,
Merci de me dire si ceci est bien ce que tu attendais? J'espère @+ pour que tu me dises ce que tu penses de ce qui a été trouvé sur mon PC Windows 7;
Gretchen17

As-tu bien reçu le nouveau rapport ZHPDiag? Je me perds un peu dans tout ça. (Tu ne voulais pas dire refaire tout un scan de ZHP!diag? Si oui, je le fais)
Merci pour ta patience avec moi;
@+
Gretchen17

~ Report of ZHPDiag v2014.11.15.164 - Nicolas Coolman (15/11/2014)
~ Launched by Gabriela (17/11/2014 16:12:35)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Web forum address : https://nicolascoolman.eu
~ Translated by
~ Version State : Updated version.
~ White List : Deactivate by user
~ Elevation of privilege : OK
~ User Account Control : Not Found


---\\ Internet browsers
MSIE: Internet Explorer v11.0.9600.17420
MFIE: Mozilla Firefox 33.1 (Defaut)
GCIE: Google Chrome v38.0.2125.111

---\\ Windows product information
~ Langage: Anglais
Microsoft Windows XP, 64-bit Service Pack 2 (Build 2600)
Windows Server License Manager Script : OK
System - Enable Open file C:\Users\Gabriela\AppData\Roaming\ZHP\Licence.txt =>.Nicolas Coolman

---\\ System protection software
avast! Free Antivirus v9.0.2021
Malwarebytes Anti-Malware version 2.0.3.1025

---\\ System optimization software
CCleaner v4.18

---\\ Sharing software PeerToPeer

---\\ Surveillance software
Adobe Flash Player 15 Plugin
Adobe Reader XI

---\\ Information on the system
~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3883 MB (34% free)
System Restore: Activé (Enable)
System drive C: has 393 GB (88%) free of 446 GB

---\\ Connection to the system mode
~ Computer Name: GABRIELA-PC
~ User Name: Gabriela
~ All Users Names: UpdatusUser, Guest, GRETA17, Graziel1744, Gabriela, Administrator,
~ Unselected Option: None
Logged in as Administrator

---\\ Environment variables
~ System Unit : C:\
~ %AppZHP% : C:\Users\Gabriela\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\Gabriela\AppData\Roaming\
~ %Desktop% : C:\Users\Gabriela\Desktop\
~ %Favorites% : C:\Users\Gabriela\Favorites\
~ %LocalAppData% : C:\Users\Gabriela\AppData\Local\
~ %StartMenu% : C:\Users\Gabriela\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumeration of the disk units
C: Hard drive, Flash drive, Thumb drive (Free 393 Go of 446 Go)
E: CD-ROM drive (Not Inserted)



---\\ State of the Windows Security Center
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 46 Scanned in 00mn 00s



---\\ Search Generic System Files
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Windows Explorer.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Windows Start-Up Application.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.6FC2819A4F80AAB2DADEDFC1EFEE3C3F] - (.Microsoft Corporation - Internet Extensions for Win32.) (.06/11/2014 - 03:17:24.) -- C:\Windows\System32\wininet.dll [2365440]
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - (.Microsoft Corporation - Windows Logon Application.) (.17/07/2014 - 03:07:24.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Software Licensing Library.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - i8042 Port Driver.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - NT File System Driver.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Parallel Port Driver.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Volume Shadow Copy Driver.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Hidden files state (Hidden/Total)
~ Mes images (My Pictures) : 1/76
~ Mes musiques (My Musics) : 1/185
~ Mes Videos (My Videos) : 2/64
~ Mes Favoris (My Favorites) : 1/160
~ Mes Documents (My Documents) : 2/5152
~ Mon Bureau (My Desktop) : 1/60
~ Menu demarrer (Programs) : 1/240
~ Hidden Files: Scanned in 00mn 00s



---\\ Process running
[MD5.DE1C19537602BAF9BC79BB35B794E257] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [22065760] [PID.892]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.No owner - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.3160]
[MD5.868E3486E7EC522330344152A5535783] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [PID.3276]
[MD5.D36DA0A5C531353C5FF5E29242649257] - (.Boingo Wireless, Inc. - Boingo Wi-Fi.) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe [365936] [PID.3752]
[MD5.A092258F26296C791D982E83814685BD] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6806144] [PID.2284]
[MD5.D98BC64645C2DAEDC1E79B4CCCCBBC8E] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624] [PID.4272]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016] [PID.4480]
[MD5.7EE22E13DEC8A6D18F4643C1EA34B0F0] - (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe [984400] [PID.4840]
[MD5.1DFDAAE21154299858F10DF216D6D865] - (.No owner - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [PID.4984]
[MD5.26B558B2D31C7425B455B00E562EAD93] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastui.exe [4085896] [PID.4716]
[MD5.BEE83619A26F90A6C8273F9CA9680397] - (.asus - ControlDeck.) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [1080448] [PID.5740]
[MD5.37DEB76A2CF005841C4E45DE2B94D84F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.4904]
[MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [PID.5536]
[MD5.F89773DFA9B8C95A3AC2AF1E7D99E483] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [7229752] [PID.3500]
[MD5.8CAFC339574E0F6B613094C8CE0E6458] - (.Microsoft Corporation - Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe [143560] [PID.788]
[MD5.2B02551F83340E9F77A66ED3A6964AAD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8128000] [PID.6756]
[MD5.65068E245EFE045E6956190CD0E2FB91] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.7100]
[MD5.A3A35EE79C64A640152B3113E6E254E2] - (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\Windows\SysWOW64\cscript.exe [126976] [PID.7044]
[MD5.7FCE08C739136C9C64107A8814EF854C] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [414496] [PID.952]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536] [PID.1384]
[MD5.7910158929571214A959D5A6D16DD9C0] - (.ASUS - GFNEXSrv.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896] [PID.1428]
[MD5.73F5C13B431915BAE35254B4E95DFB71] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344] [PID.1452]
[MD5.C5679E5186B2FC95BC76A8A9870D5456] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [64704] [PID.1844]
[MD5.1F79342D9EB530A48742F651E570983A] - (.Microsoft Corporation - Updates Skype Click to Call.) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176] [PID.1924]
[MD5.E4938E0A376CF0B9D989EE5C0A146891] - (.Microsoft Corporation - Phone Number Recognition (PNR) module.) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520] [PID.1972]
[MD5.A1C148801B4AF64847AEB9F3AD9594EF] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144] [PID.1092]
[MD5.C63E582366EAD77978BFFD959A66DBB8] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1364256] [PID.1184]
[MD5.41118D920B2B268C0ADC36421248CDCF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240] [PID.3892]
[MD5.8E4179A38CF72AC6D8D651A72AE88580] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe [182912] [PID.3652]
[MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe [2488888] [PID.3668]
[MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe [113208] [PID.1264]
[MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe [174648] [PID.2848]
[MD5.F12A68ED55053940CADD59CA5E3468DD] - (.No owner - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904] [PID.4104]
[MD5.09D4503CBB6ADB3A54E7C7A75090B728] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504] [PID.5668]
[MD5.6D8A2EE4244630B290A837E79C0F37A1] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160] [PID.5732]
~ Processes Running: Scanned in 00mn 03s



---\\ Google Chrome, Start,Search,Extensions (G0,G1,G2)
C:\Users\Gabriela\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Docs Offline Background Page v. ()

---\\ Google Chrome Extension Folder
G2 - EXT: C:\Users\Gabriela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [Docs Offline Background Page]
~ Google Lines Browser: 2 Scanned in 01mn 05s



---\\ Mozilla Firefox,Plugins,Start,Search,Extensions (P2,M0,M1,M2,M3)
C:\Users\Gabriela\Application Data\Mozilla\Firefox\Profiles\jf3kexve.default-1415653404974\prefs.js
M3 - MFPP: Plugins - [Gabriela] -- C:\Users\Gabriela\Application Data\Mozilla\Firefox\Profiles\jf3kexve.default-1415653404974\searchplugins\yahoo-avast.xml
M0 - MFSP: prefs.js [Gabriela - jf3kexve.default-1415653404974] http://chronopage.fr
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30514.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
~ Firefox Browser: 4 Scanned in 00mn 00s



---\\ Internet Explorer Extensions, Start, Search (R4,R3,R0,R1)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.microsoft.com/fr-fr/
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com/
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = about:newtab
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (11.00.9600.17420 (winblue_r4.141105-1535)) -- C:\Windows\SysWOW64\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 10 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Line Analysis F0, F1, F2, F3 - IniFiles, Auto loading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hôte est sain (The hosts file is clean) (21)
~ Hosts File: Scanned in 00mn 00s



---\\ Browser Helper Objects (O2)
O2 - BHO: avast! Online Security [64Bits] - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Orphan key
O2 - BHO: Google Toolbar Notifier BHO [64Bits] - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
O2 - BHO: PriceFountain [64Bits] - {b608cc98-54de-4775-96c9-097de398500c} . (...) -- C:\Users\Gabriela\AppData\Local\PriceFountain\PriceFountainIE.dll (.not file.)
~ BHO: 88 Scanned in 00mn 00s



---\\ Internet Explorer toolbars (O3)
O3 - Toolbar: Google Toolbar - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{21FA44EF-376D-4D53-9B0F-8A89D3229068} Orphan key
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{2318C2B1-4965-11D4-9B18-009027A5CD4F} Orphan key
~ Toolbar: Scanned in 00mn 00s



---\\ Auto loading programs from Registry and folders (O4)
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner64.exe =>.Piriform Ltd
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Gabriela\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64] . (.Microsoft Corporation - Windows Command Processor.) -- C:\Windows\system32\cmd.exe
O4 - HKLM\..\Wow6432Node\Run: [Boingo Wi-Fi] . (...) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk
O4 - HKLM\..\Wow6432Node\Run: [ATKOSD2] . (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Wow6432Node\Run: [ATKMEDIA] . (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Wow6432Node\Run: [HControlUser] . (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Wow6432Node\Run: [SonicMasterTray] . (.Virage Logic Corporation / Sonic Focus - ASUS_MATray.exe.) -- C:\Program Files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
O4 - HKLM\..\Wow6432Node\Run: [Wireless Console 3] . (.No owner - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS VIBE] . (.ecm - WindowsApplication2.) -- C:\Program Files (x86)\ASUS\ASUS VIBE\ASUS VIBE.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [AvastUI.exe] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUSWebStorage] . (.ASUS Cloud Corporation - AsusWebStorage.) -- C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.143.296\AsusWSPanel.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-585032980-2565070970-1369814782-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-585032980-2565070970-1369814782-1000\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
~ Application: Scanned in 00mn 00s



---\\ IE Options icon not visible in Control Panel (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Lop.com/Domain Hijackers (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{D15F3F5A-A1D5-4CC3-BEBF-EE975E30E698}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{D15F3F5A-A1D5-4CC3-BEBF-EE975E30E698}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{D15F3F5A-A1D5-4CC3-BEBF-EE975E30E698}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Extra protocols (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ AppInit_DLLs Registry value Autorun (O20)
O20 - AppInit_DLLs: . (.NVIDIA Corporation - NVIDIA shim initialization dll, Version 327.) - C:\Windows\system32\nvinitx.dll
~ AppInit DLL: Scanned in 00mn 00s



---\\ ShellServiceObjectDelayLoad (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Non Microsoft non disabled Windows XP/NT/2000 Services (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent (AFBAgent) . (.ASUSTeK Computer Inc. - ASUS FastBoot.) - C:\Windows\system32\FBAgent.exe
O23 - Service: ASLDR Service (ASLDRService) . (.ASUS - ASLDR Service.) - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) . (.ASUS - GFNEXSrv.) - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) . (.Google Inc. - Google Installer.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Manageme (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 327.0.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) . (.NVIDIA Corporation - NVIDIA Settings Update Manager.) - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) . (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Intel(R) Management & Security Application User Notificatio (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
~ Services: 14 Scanned in 01mn 19s



---\\ Windows Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ Task Planned Automatically (039)
[MD5.3ACABCA6A8DB71B7F19C8A7523AE1846] [APT] [ACMON] (.ASUS.) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [691328]
[MD5.D51145F6B0CE987850F13A61DAD5E531] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] [APT] [ASUS Live Update] (...) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768]
[MD5.DF0677FBF770F8BD6C40027D49FA9911] [APT] [ASUS P4G] (.ATK.) -- C:\Program Files\P4G\BatteryLife.exe [339072]
[MD5.868E3486E7EC522330344152A5535783] [APT] [ASUS SmartLogon Console Sensor] (.ASUS.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720]
[MD5.BEE83619A26F90A6C8273F9CA9680397] [APT] [ASUSControlDeck] (.asus.) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [1080448]
[MD5.1AD8512A5C40AD1A0558498D8E0AC2AA] [APT] [avast! Emergency Update] (.AVAST Software.) -- C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [808448]
[MD5.F308D7378BF60B91DA495FCAA1C216E7] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4811032]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.51508F0C2476177E50C31B0BBFBF1BDB] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [107912]
[MD5.00000000000000000000000000000000] [APT] [{1C71B912-9178-4BA6-9A8A-CAF8D607655D}] (...) -- C:\Users\Gabriela\Documents\T'l'chargements\ZHPDiag2(1).exe (.not file.) [0]
[MD5.2473E58E177E8D9C018AC6E9AE3B2630] [APT] [{291635AC-21E9-4105-A9EE-0DD346F8CBAE}] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryBurner.exe [467584]
[MD5.65068E245EFE045E6956190CD0E2FB91] [APT] [{314A0680-A521-4603-8823-3CD30E5A8D8C}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568]
[MD5.00000000000000000000000000000000] [APT] [{45214F6F-338D-4C47-9815-A6CD88E46B31}] (...) -- C:\Users\Gabriela\Documents\IE11-Windows6.1.exe (.not file.) [0]
[MD5.2473E58E177E8D9C018AC6E9AE3B2630] [APT] [{57303715-C129-42E2-A0CB-5230021EC140}] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryBurner.exe [467584]
[MD5.90AE1310A84DAA0E1DE31D94E68E1535] [APT] [{5812B779-1382-4DD0-B2D1-14E8BA785957}] (...) -- C:\Users\Gabriela\AppData\Local\Temp\ICReinstall_adobe_flash_setup(1).exe [759872]
[MD5.90AE1310A84DAA0E1DE31D94E68E1535] [APT] [{63E97D9C-ED97-4AC5-BE2A-67DC07740AEF}] (...) -- C:\Users\Gabriela\AppData\Local\Temp\ICReinstall_adobe_flash_setup(1).exe [759872]
[MD5.65068E245EFE045E6956190CD0E2FB91] [APT] [{6BD5B963-1233-43DA-A783-175DF0B41575}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568]
[MD5.65068E245EFE045E6956190CD0E2FB91] [APT] [{9F08A84D-3B04-4F31-B138-1CA765309EFD}] (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568]
[MD5.2473E58E177E8D9C018AC6E9AE3B2630] [APT] [{BA9DFB7A-2A21-4631-9ABC-23D7078FBBC4}] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryBurner.exe [467584]
[MD5.90AE1310A84DAA0E1DE31D94E68E1535] [APT] [{BD44ABD3-5D66-45E1-B2F4-47946979A473}] (...) -- C:\Users\Gabriela\AppData\Local\Temp\ICReinstall_adobe_flash_setup(1).exe [759872]
[MD5.2473E58E177E8D9C018AC6E9AE3B2630] [APT] [{C5476435-2B56-48A1-B1EC-524FDAC7AEE2}] (.ASUSTek Computer Inc..) -- C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryBurner.exe [467584]
[MD5.00000000000000000000000000000000] [APT] [{D246CBC9-0FDF-451F-B58D-21CCBF01C3A6}] (...) -- C:\Users\Gabriela\Documents\IE11-Windows6.1.exe (.not file.) [0]
[MD5.C155A13687144076286989EF078112C2] [APT] [{E44BF950-630C-4905-91EB-7AA6C5AE2DFC}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe [1917440]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [830]
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [830]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [894]
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [894]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [898]
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [898]
~ Scheduled Task: 120 Scanned in 00mn 25s



---\\ ActiveSetup Installed Components (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - Windows Theme API.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Microsoft Internet Explorer FTP Folder Shell Extension.) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Windows Media Player Resources.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - Windows Shell Common Dll.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 9 Scanned in 00mn 00s



---\\ Drivers launched at startup (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (aswRdr) . (.AVAST Software - avast! WFP Redirect Driver.) - C:\Windows\system32\drivers\aswRdr2.sys
O41 - Driver: (aswSnx) . (.AVAST Software - avast! Virtualization Driver.) - C:\Windows\system32\drivers\aswSnx.sys
O41 - Driver: (aswSP) . (.AVAST Software - avast! self protection module.) - C:\Windows\system32\drivers\aswSP.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\System32\DRIVERS\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - QoS Packet Scheduler.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 69 Scanned in 00mn 01s



---\\ Software installed (O42)
O42 - Logiciel: ASUS AI Recovery - (.ASUS.) [HKLM][64Bits] -- {06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}
O42 - Logiciel: ASUS AP Bank - (.ASUSTEK.) [HKLM][64Bits] -- ASUS AP Bank_is1
O42 - Logiciel: ASUS FancyStart - (.ASUSTeK Computer Inc..) [HKLM][64Bits] -- {2B81872B-A054-48DA-BE3B-FA5C164C303A}
O42 - Logiciel: ASUS LifeFrame3 - (.ASUS.) [HKLM][64Bits] -- {1DBD1F12-ED93-49C0-A7CC-56CBDE488158}
O42 - Logiciel: ASUS Live Update - (.ASUS.) [HKLM][64Bits] -- {E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}
O42 - Logiciel: ASUS MultiFrame - (.ASUS.) [HKLM][64Bits] -- {9D48531D-2135-49FC-BC29-ACCDA5396A76}
O42 - Logiciel: ASUS Power4Gear Hybrid - (.ASUS.) [HKLM][64Bits] -- {91EFE3A1-585E-4F66-B5F6-F118F56C4C47}
O42 - Logiciel: ASUS SmartLogon - (.ASUS.) [HKLM][64Bits] -- {64452561-169F-4A36-A2FF-B5E118EC65F5}
O42 - Logiciel: ASUS Splendid Video Enhancement Technology - (.ASUS.) [HKLM][64Bits] -- {0969AF05-4FF6-4C00-9406-43599238DE0D}
O42 - Logiciel: ASUS VIBE - (.Ecareme, Inc..) [HKLM][64Bits] -- ASUS VIBE
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Video Magic - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}
O42 - Logiciel: ASUS Virtual Camera - (.asus.) [HKLM][64Bits] -- {EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}
O42 - Logiciel: ASUS WebStorage - (.ASUS Cloud Corporation.) [HKLM][64Bits] -- ASUS WebStorage
O42 - Logiciel: ASUS_N3_Series - (.ASUS.) [HKLM][64Bits] -- ASUS_N3_Series
O42 - Logiciel: ATK Package - (.ASUS.) [HKLM][64Bits] -- {AB5C933E-5C7D-4D30-B314-9C83A49B94BE}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {A2BCA9F1-566C-4805-97D1-7FDC93386723}
O42 - Logiciel: Adobe Flash Player 15 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 15 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.09) - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1033-7B44-AB0000000001}
O42 - Logiciel: Alcor Micro USB Card Reader - (.Alcor Micro Corp..) [HKLM][64Bits] -- InstallShield_{1F7424F8-F992-48BC-90EF-7C4DB0405E3F}
O42 - Logiciel: Boingo Wi-Fi - (.Boingo Wireless, Inc..) [HKLM][64Bits] -- {B653A2EC-D816-4498-A4FD-651047AB9DC9}
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner
O42 - Logiciel: CleanUp! - (...) [HKLM][64Bits] -- CleanUp!
O42 - Logiciel: ControlDeck - (.ASUS.) [HKLM][64Bits] -- {5B65EF64-1DFA-414A-8C94-7BB726158E21}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243}
O42 - Logiciel: CyberLink MediaShow Espresso - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink MediaShow Espresso - (.CyberLink Corp..) [HKLM][64Bits] -- {E3739848-5329-48E3-8D28-5BBD6E8BE384}
O42 - Logiciel: CyberLink PhotoNow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: CyberLink PhotoNow - (.CyberLink Corp..) [HKLM][64Bits] -- {D36DD326-7280-11D8-97C8-000129760CBE}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658}
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink PowerDVD 9 - (.CyberLink Corp..) [HKLM][64Bits] -- {A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: CyberLink PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: ETDWare PS/2-x64 7.0.5.11_WHQL - (.ELAN Microelectronics Corp..) [HKLM][64Bits] -- Elantech
O42 - Logiciel: ExpressGate Cloud - (.Asus.) [HKLM][64Bits] -- InstallShield_{499DED08-6FA8-4749-8E94-8526CC9D1CA8}
O42 - Logiciel: ExpressGate Cloud - (.Asus.) [HKLM][64Bits] -- {499DED08-6FA8-4749-8E94-8526CC9D1CA8}
O42 - Logiciel: Fast Boot - (.ASUS.) [HKLM][64Bits] -- {13F4A7F3-EABC-4261-AF6B-1317777F0755}
O42 - Logiciel: Fresco Logic USB3.0 Host Controller - (.Fresco Logic Inc..) [HKLM][64Bits] -- {ABA951C0-68C7-448E-A840-17C0A73A5C7E}
O42 - Logiciel: Galerie de photos - (.Microsoft Corporation.) [HKLM][64Bits] -- {439B34FF-F74E-4807-B5E2-4B758551DA6B}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {0BE9E708-5DC0-4963-9CFD-0AA519090E79}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT110 - (.Microsoft.) [HKLM][64Bits] -- {8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
O42 - Logiciel: MSVCRT110_amd64 - (.Microsoft.) [HKLM][64Bits] -- {E9FA781F-3E80-4399-825A-AD3E11C28C77}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB2758694) - (.Microsoft Corporation.) [HKLM][64Bits] -- {1D95BA90-F4F8-47EC-A882-441C99D30C1E}
O42 - Logiciel: MSXML 4.0 SP3 Parser (KB973685) - (.Microsoft Corporation.) [HKLM][64Bits] -- {859DFA95-E4A6-48CD-B88E-A3E483E89B44}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.3.1025 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 33.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 33.1 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: NVIDIA 3D Vision Driver 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel
O42 - Logiciel: NVIDIA Graphics Driver 327.02 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver
O42 - Logiciel: NVIDIA Stereoscopic 3D Driver - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIAStereo
O42 - Logiciel: NVIDIA Update 1.14.17 - (.NVIDIA Corporation.) [HKLM][64Bits] -- {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update
O42 - Logiciel: NVIDIA Updatus - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA.Updatus
O42 - Logiciel: Notepad++ - (.Notepad++ Team.) [HKLM][64Bits] -- Notepad++
O42 - Logiciel: QuickTime 7 - (.Apple Inc..) [HKLM][64Bits] -- {111EE7DF-FC45-40C7-98A7-753AC46B12FB}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Right Backup - (.Systweak Software.) [HKLM][64Bits] -- 980124D4-3D52-4c2d-AD41-9E90BDF4C031_Systweak_Ri~01F2B2E8_is1
O42 - Logiciel: Skype Click to Call - (.Microsoft Corporation.) [HKLM][64Bits] -- {6D1221A9-17BF-4EC0-81F2-27D30EC30701}
O42 - Logiciel: Skype(TM) 6.21 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: SonicMaster - (.Virage Logic, Corp..) [HKLM][64Bits] -- {09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}
O42 - Logiciel: USB2.0 UVC 2M WebCam - (.Sonix.) [HKLM][64Bits] -- USB2.0 UVC 2M WebCam
O42 - Logiciel: VLC media player - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN
O42 - Logiciel: WinFlash - (.ASUS.) [HKLM][64Bits] -- {8F21291E-0444-4B1D-B9F9-4370A73E346D}
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM][64Bits] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Wireless Console 3 - (.ASUS.) [HKLM][64Bits] -- {20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}
O42 - Logiciel: avast! Free Antivirus v9.0.2021 - (.AVAST Software.) [HKLM][64Bits] -- Avast
O42 - Logiciel: syncables desktop SE - (.syncables.) [HKLM][64Bits] -- {BBED4F90-7AE5-40BF-AFB7-1B495692F4AB}
~ Logic: 52 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\ASUS]
[HKCU\Software\ATK0100]
[HKCU\Software\AVAST Software]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\ECAREME]
[HKCU\Software\Elantech]
[HKCU\Software\GoBoingo]
[HKCU\Software\Google]
[HKCU\Software\IM Providers]
[HKCU\Software\Intel\Indeo\4.1]
[HKCU\Software\Intel]
[HKCU\Software\Licenses]
[HKCU\Software\Local AppWizard-Generated Applications]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Opera Software]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\PrcFountain]
[HKCU\Software\Realtek]
[HKCU\Software\Skype]
[HKCU\Software\Stellar information Systems ltd.]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\stevengould.org]
[HKCU\Software\telecharger-gratuit]
[HKLM\Software\ASUS]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATK0100]
[HKLM\Software\BrowserChoice]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\CoreSecurity]
[HKLM\Software\Cyberlink]
[HKLM\Software\DTS]
[HKLM\Software\ECAREME]
[HKLM\Software\Google]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\Netscape]
[HKLM\Software\ODBC]
[HKLM\Software\Opera Software]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SONIX]
[HKLM\Software\SRS Labs]
[HKLM\Software\SonicFocus]
[HKLM\Software\Sonic]
[HKLM\Software\Waves Audio]
[HKLM\Software\Wow6432Node\ASUS]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\AsLdr]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\ECAREME]
[HKLM\Software\Wow6432Node\GoBoingo]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\NVIDIA Corporation]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\Opera Software]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Stellar information Systems ltd.]
[HKLM\Software\Wow6432Node\VideACE]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\syncables]
[HKLM\Software\Wow6432Node]
~ Key Software: 244 Scanned in 00mn 01s



---\\ Contents of the Common Files folders (O43)
O43 - CFD: 05/10/2014 - 12:57:42 - [] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 27/09/2010 - 18:10:48 - [] ----D C:\Program Files (x86)\AmIcoSingLun
O43 - CFD: 07/10/2014 - 14:12:47 - [] ----D C:\Program Files (x86)\ASUS
O43 - CFD: 27/09/2010 - 17:49:39 - [] ----D C:\Program Files (x86)\Boingo
O43 - CFD: 12/11/2014 - 17:52:27 - [] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 27/09/2010 - 17:39:59 - [] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 27/09/2010 - 18:14:54 - [] ----D C:\Program Files (x86)\EBI
O43 - CFD: 09/11/2014 - 17:37:40 - [] ----D C:\Program Files (x86)\Google
O43 - CFD: 27/09/2010 - 18:17:45 - [] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 15/10/2014 - 20:51:39 - [] ----D C:\Program Files (x86)\Intel
O43 - CFD: 14/11/2014 - 17:02:58 - [] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/11/2014 - 12:40:46 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware
O43 - CFD: 07/10/2014 - 14:12:20 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 27/09/2010 - 17:27:36 - [] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 05/10/2014 - 02:32:24 - [] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 05/10/2014 - 01:46:17 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 05/10/2014 - 03:01:44 - [] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 12/11/2014 - 15:07:59 - [] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 12/11/2014 - 15:07:58 - [] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 27/09/2010 - 17:53:57 - [] ----D C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 17/11/2014 - 13:24:59 - [0] ----D C:\Program Files (x86)\New folder
O43 - CFD: 14/11/2014 - 18:15:51 - [] ----D C:\Program Files (x86)\Notepad++
O43 - CFD: 15/10/2014 - 20:33:32 - [] ----D C:\Program Files (x86)\NVIDIA Corporation
O43 - CFD: 08/11/2014 - 21:54:06 - [] ----D C:\Program Files (x86)\Opera
O43 - CFD: 16/10/2014 - 22:15:08 - [] ----D C:\Program Files (x86)\QuickTime
O43 - CFD: 27/09/2010 - 18:10:05 - [] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 09/10/2014 - 15:32:52 - [] R---D C:\Program Files (x86)\Skype
O43 - CFD: 13/10/2014 - 12:23:20 - [] ----D C:\Program Files (x86)\Stellar Phoenix Windows Data Recovery
O43 - CFD: 27/09/2010 - 17:51:51 - [] ----D C:\Program Files (x86)\syncables
O43 - CFD: 27/09/2010 - 18:10:41 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 08/10/2014 - 20:20:35 - [] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 06/10/2014 - 13:14:01 - [] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 08/10/2014 - 10:59:16 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/10/2014 - 19:17:24 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 08/10/2014 - 10:59:15 - [] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 08/10/2014 - 10:59:16 - [] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 08/10/2014 - 10:59:16 - [] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 16/11/2014 - 17:46:53 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 05/10/2014 - 12:58:20 - [] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 27/09/2010 - 17:49:01 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 27/09/2010 - 18:15:21 - [] ----D C:\Program Files (x86)\Common Files\ControlDeck
O43 - CFD: 27/09/2010 - 18:13:59 - [] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 27/09/2010 - 18:03:38 - [] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 06/10/2014 - 13:09:35 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 27/09/2010 - 17:50:08 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 27/09/2010 - 18:08:31 - [] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 09/10/2014 - 15:31:45 - [] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 08/10/2014 - 20:21:56 - [] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 05/10/2014 - 01:43:56 - [] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 05/10/2014 - 13:08:56 - [] ----D C:\ProgramData\Adobe
O43 - CFD: 27/09/2010 - 18:10:47 - [] ----D C:\ProgramData\AmUStor
O43 - CFD: 16/10/2014 - 21:50:45 - [] ----D C:\ProgramData\Apple
O43 - CFD: 16/10/2014 - 21:55:50 - [] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Application Data
O43 - CFD: 09/10/2014 - 14:38:15 - [] ----D C:\ProgramData\ASUS WebStorage
O43 - CFD: 05/10/2014 - 15:45:12 - [] ----D C:\ProgramData\AVAST Software
O43 - CFD: 08/11/2014 - 21:49:52 - [] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 05/10/2014 - 16:19:45 - [] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Documents
O43 - CFD: 27/09/2010 - 18:15:00 - [0] ----D C:\ProgramData\EBI
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Favorites
O43 - CFD: 27/09/2010 - 17:49:39 - [] ----D C:\ProgramData\GoBoingo
O43 - CFD: 27/09/2010 - 17:49:15 - [] ----D C:\ProgramData\Google
O43 - CFD: 15/10/2014 - 20:55:48 - [] ----D C:\ProgramData\Intel
O43 - CFD: 16/11/2014 - 22:03:23 - [] ----D C:\ProgramData\Malwarebytes
O43 - CFD: 09/10/2014 - 12:37:44 - [] -S--D C:\ProgramData\Microsoft
O43 - CFD: 05/10/2014 - 02:54:10 - [] ----D C:\ProgramData\Mozilla
O43 - CFD: 17/11/2014 - 12:28:09 - [] ----D C:\ProgramData\NVIDIA
O43 - CFD: 27/09/2010 - 18:05:50 - [] ----D C:\ProgramData\NVIDIA Corporation
O43 - CFD: 27/09/2010 - 18:16:04 - [] ----D C:\ProgramData\P4G
O43 - CFD: 27/09/2010 - 18:15:00 - [0] ----D C:\ProgramData\RSMR
O43 - CFD: 12/10/2014 - 23:01:57 - [] ----D C:\ProgramData\Skype
O43 - CFD: 27/09/2010 - 18:10:28 - [] ----D C:\ProgramData\SonicFocus
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 27/09/2010 - 17:39:49 - [] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [] -SH-D C:\ProgramData\Templates
O43 - CFD: 13/10/2014 - 12:17:26 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 14/07/2009 - 05:57:13 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 27/09/2010 - 18:15:03 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 27/09/2010 - 18:15:29 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Splendid Utility
O43 - CFD: 27/09/2010 - 18:18:57 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Utility
O43 - CFD: 27/09/2010 - 17:38:44 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Video Magic
O43 - CFD: 05/10/2014 - 15:49:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
O43 - CFD: 27/09/2010 - 17:49:39 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Boingo
O43 - CFD: 29/07/2009 - 06:08:01 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 09/11/2014 - 17:38:09 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 27/09/2010 - 18:03:39 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 14/07/2009 - 05:57:09 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 17/11/2014 - 12:40:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 05/10/2014 - 02:35:47 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 14/11/2014 - 18:15:46 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
O43 - CFD: 16/10/2014 - 22:15:35 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
O43 - CFD: 11/10/2014 - 17:21:45 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 08/11/2014 - 22:14:45 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 27/09/2010 - 17:51:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\syncables
O43 - CFD: 14/07/2009 - 08:44:38 - [0] R-H-D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 17/11/2014 - 15:07:26 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
O43 - CFD: 27/09/2010 - 18:10:37 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virage Logic, Corp
O43 - CFD: 06/10/2014 - 13:15:24 - [] R---D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 16/11/2014 - 17:46:53 - [] ----D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP =>.Nicolas Coolman
O43 - CFD: 05/10/2014 - 17:24:46 - [] ----D C:\Users\Gabriela\AppData\Roaming\Adobe
O43 - CFD: 03/11/2014 - 22:02:20 - [] ----D C:\Users\Gabriela\AppData\Roaming\Apple Computer
O43 - CFD: 09/10/2014 - 14:38:23 - [] ----D C:\Users\Gabriela\AppData\Roaming\Asus WebStorage
O43 - CFD: 05/10/2014 - 15:49:43 - [] ----D C:\Users\Gabriela\AppData\Roaming\AVAST Software
O43 - CFD: 05/10/2014 - 16:19:49 - [] ----D C:\Users\Gabriela\AppData\Roaming\CyberLink
O43 - CFD: 06/10/2014 - 15:10:45 - [] ----D C:\Users\Gabriela\AppData\Roaming\EeeStorageUploader
O43 - CFD: 05/10/2014 - 16:17:03 - [] ----D C:\Users\Gabriela\AppData\Roaming\Google
O43 - CFD: 05/10/2014 - 01:49:09 - [] ----D C:\Users\Gabriela\AppData\Roaming\Identities
O43 - CFD: 05/10/2014 -

J'espère que cette fois-ci c'est bon! Merci de ta patience. J'attends la suite @+

Gretchen17

Rien

Le lien fourni est à mettre ici une fois que tu as hébergé ton rapport

Report of ZHPDiag v2014.11.15.164 - Nicolas Coolman (15/11/2014)
~ Launched by Gabriela (17/11/2014 16:12:35)
~ Facebook : https://www.facebook.com/nicolascoolman1
~ Web forum address : https://nicolascoolman.eu

Tu ne vois toujours rien? Est-ce bien le bon lien cette fois-ci? Je commence à désespérer.
zhpadsreport.txt ou bien celui plus haut? Merci de me dire où je vais là. Je suis pas mal paumée...@+

https://www.cjoint.com/?3KrvStCBIIp

Bon, c'est ce lien que j'ai obtenu en suivant tes indications. Sûre de rien bien entendu....
@+

Commentaire après le téléchargement: ' ce pack SP3 est conçu pour une plateforme matérielle différente' - merci de me répondre@+

Non, j'ai dit au tout début, j'ai un Windows 7, édition familiale premium. Je note une petite amélioration, mais le démarrage est toujours très lent. Autrement ça rame un peu moins. Peux-tu me dire ce qu'il y a encore à faire, puisque je n'ai pas de Vista, et que le Pack était une erreur de chargement. Existe-t-il quelque chose pour Windows 7?
Et pourrais-tu me dire ce qui n'allait pas et si tu peux me donner un conseil?
Merci @+

Excuse-moi, Guillaume5188, où lis-tu Microsoft Windows XP etc.....?

Bonjour,
Depuis 2 ans environ. Mais il a crashé il y a quelques mois. J'ai suivi un conseil sur CCM , cliqué sur F9 et F8, je crois, et il a pu redémarrer, mais formaté. Et grâce à ma sauvegarde externe il a refonctionné. Depuis il a toujours assez bien marché, mais il était plus lent qu'avant..J'ai Mozilla Firefox comme navigateur et Google Chrome qui est utile aussi.
@+ j'espère, Bonne journée! Merci de me dire ce que tu penses de tout ça?
Gretchen17

As-tu reçu ce rapport de ZHPDiag? Sinon je repasse par l'autre lien. Merci de me dire si tu reçois ou non ce rapport d'aujourd'hui. ZHPDiag a planté et je devais reprendre. @+
Gretchen17

http://www.cjoint.com/data3/3KsmShKhmsk_zhpdiag.txt

@+ Si tu peux, dis-moi ce que tout ce que nous avons fait jusqu'ici a donné? En bref bien sûr!
Merci beaucoup pour ta patience!
Gretchen17

Rapport de ZHPFix 2014.10.18.9 par Nicolas Coolman, Update du 18/10/2014
Fichier d'export Registre :
Run by Gabriela at 18/11/2014 13:27:49
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Recycle Bin emptied (00mn 09s)
Prefetcher emptied
Repair of browser shortcuts

========== Registry keys ==========
REMOVES: CLSID BHO: {b608cc98-54de-4775-96c9-097de398500c}

========== Registry values ==========
ABSENT value Standard Profile: FirewallRaz :
ABSENT value Domain Profile: FirewallRaz :
REMOVES: FirewallRaz (None) : {95497E61-7E14-4BEC-85A5-6994C01FA965}
REMOVES: FirewallRaz (Private) : TCP Query User{ABD83037-A69E-47AB-9D3E-4D509558CE37}C:\users\graziel1744\appdata\roaming\cacaoweb\cacaoweb.exe
REMOVES: FirewallRaz (Private) : UDP Query User{6B8B429E-E9E7-4D75-8BDD-13B31B49BBFB}C:\users\graziel1744\appdata\roaming\cacaoweb\cacaoweb.exe
REMOVES: FirewallRaz (Private) : TCP Query User{1220A03A-A468-4E65-ADF4-D76195953A77}C:\users\gabriela\appdata\roaming\cacaoweb\cacaoweb.exe
REMOVES: FirewallRaz (Private) : UDP Query User{ED6B8173-C792-45E9-9BA1-BF2CA5C2DB0B}C:\users\gabriela\appdata\roaming\cacaoweb\cacaoweb.exe
REMOVES: FirewallRaz (Private) : {D719CA3D-E1AD-4A86-A060-2325FD5EF757}
REMOVES: FirewallRaz (Private) : {272F4F73-52FD-43F3-B37A-7F0D8FC517D9}
REMOVES: FirewallRaz (Private) : {4846831E-39A4-4BC5-96B8-C24AD92C65CE}
REMOVES: FirewallRaz (Private) : {59536867-1EA4-4872-B338-5C47E81E7453}
REMOVES: FirewallRaz (Private) : {6D1D5EC3-95E7-4F17-874E-B01AB487D9B7}
REMOVES: FirewallRaz (Private) : {04A4BC24-4A57-48C7-87C9-DF73D9F194D0}

========== Folders ==========
No folders empty CLSID Local user

========== Files ==========
REMOVES: c:\windows\prefetch\cacaoweb.exe-8b84a0d2.pf
Deletes temporary Windows (320) (486 111 208 octets)

========== Scheduled task ==========
REMOVES: {45214F6F-338D-4C47-9815-A6CD88E46B31}
REMOVES: {5812B779-1382-4DD0-B2D1-14E8BA785957}
REMOVES: {63E97D9C-ED97-4AC5-BE2A-67DC07740AEF}
REMOVES: {BD44ABD3-5D66-45E1-B2F4-47946979A473}
REMOVES: {D246CBC9-0FDF-451F-B58D-21CCBF01C3A6}


========== Summary ==========
1 : Registry keys
13 : Registry values
1 : Folders
2 : Files
5 : Scheduled task


End of clean in 00mn 49s

========== Path to file report ==========
C:\Users\Gabriela\AppData\Roaming\ZHP\ZHPFix[R1].txt - 18/11/2014 13:27:59 [2328]

Oui, tout va un peu plus vite sauf au démarrage. Merci, tu veux dire que tout est fini? Et tu ne pourrais pas me dire en quelques mots ce qui n'allait pas?

Une question: dois-je passer par la fenêtre de UAC à chaque fois que je veux ouvrir une page, n'importe laquelle? J'ai essayé de changer cela, mais il semble que c'est une mesure de sécurité. Ceci est sans doute un détail.

Autrement, en cas de nouveau problème, vaut-il mieux passer par CCM ou installer moi-même ce que tu m'as demandé de faire depuis quelques jours? Dois-je faire attention à certainesd choses, en éviter? Merci encore pour ta grande patience, (excuse encore une fois mon ignorance dans tant de domaines et manipulations. Heureusement que j'ai l'impression d'avoir appris quelque chose grâce à toi, Guillaume5188!).

PS. Un truc n'est pas clair pour moi: pourquoi et où mettre la copie que tu m'as postée plus haut? Le Script de ZHPFix en grosses lettres?

# DelFix v10.8 - Logfile created 18/11/2014 at 14:21:44
# Updated 29/07/2014 by Xplode
# Username : Gabriela - GABRIELA-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\AdwCleaner
Deleted : C:\Users\Gabriela\AppData\Roaming\ZHP
Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
Deleted : C:\Program Files (x86)\ZHPDiag
Deleted : C:\PhysicalDisk0_MBR.bin
Deleted : C:\Users\Gabriela\Desktop\ZHPDiag.lnk
Deleted : C:\Users\Gabriela\Desktop\ZHPDiag.txt
Deleted : C:\Users\Gabriela\Desktop\ZHPFixReport.txt
Deleted : C:\Users\Public\Desktop\ZHPFix.lnk
Deleted : C:\Users\Gabriela\Documents\Téléchargements\ZHPFix.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1

########## - EOF - ##########

Ciao Guillaume5188,
et encore un grand merci. Je mettrai le sujet en résolu. Navrée de te poser une dernière question: Pourquoi, en téléchargeant un moyen de protéger Google Chrome ou Mozilla Firefox (lu et suggéré par Malekal etc.. 'comment sécuriser son ordinateur?', y a-t-il EULA qu'il faut accepter en cliquant sur 'suivant'? C'est souvent ainsi et cela me dérange, ne connaissant pas ce que je télécharge en même temps. Tu m'excuseras, mais j'ai l'impression que tout ça, les cookies etc... font vivre Malekal... le site et le site CCM aussi. Est-ce que je me trompe? Ou n'ai-je pas le droit à poser ce genre de question?
Bonne journée, j'espère tout de même une réponse. Encore merci pour tout!
Gretchen17

Dernier Commentaire: je lirai certains programmes pour savoir de quoi il s'agit. Merci! Oui, les publicités semblent inévitables, on peut juste limiter si possible!
Merci! Bonne continuation!
Gretchen17