Menu

Pc qui rame aide avec diagnostic svp [Résolu]

leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 1 févr. 2018 à 21:29 - Dernière réponse : leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention
- 3 févr. 2018 à 21:01
Bonjour,
Mon pc rame énormément et j'ai effectué un diagnostic via ZHPDiag. Une âme charitable peut-elle me venir en aide pour que je nettoie correctement mon pc et remédie à sa lenteur soudaine.
Merci beaucoup

Mon Pc est un Lenovo G70 avec Windows 10 Famille
Processeeur AMD A8 6410

En plus de ramer énormément, le clavier se met à faire des siennes : lorsque je rallume mon pc, il faut rester longtemps sur une touche pour avoir une lettre.
Pour que cela revienne à la normal, il faut que je retourne dans les paramètres et que j'allume le clavier visuel et que je l'éteigne et là ça remarche normalement..
Voilà entre autres une des anomalies du moment...


Voici le diagnostique :

~ ZHPDiag v2018.1.29.20 Par Nicolas Coolman (2018/01/29)
~ Démarré par famil (Administrator) (2018/02/01 20:53:52)
~ Web: https://www.nicolascoolman.com
~ Blog: https://nicolascoolman.eu/
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Certificate ZHPDiag: Legal
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\famil\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\famil\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 10 Home, 64-bit (Build 16299) =>.Microsoft Corporation

---\\ Navigateurs Internet (3) - 0s
~ GCIE: Google Chrome v64.0.3282.119
~ MSIE: Microsoft Edge v40
~ MSIE: Internet Explorer v11.192.16299.0

---\\ Informations sur les produits Windows (3) - 3s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection (1) - 24s
Windows Defender (Deactivate)

---\\ Informations sur le système (6) - 0s
~ Operating System: AMD64 Family 22 Model 48 Stepping 1, AuthenticAMD
~ Operating System: 64-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 7299.34 MB (43% free) : OK =>.RAM Value
System Restore: Activé (Enable)
System drive C: has 709 GB (78%) free of 908 GB : OK =>.Disk Space

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: LAPTOP-6JFLNKNL
~ User Name: famil
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 709 GB free of 908 GB (System)
~ Drive D: has 23 GB free of 25 GB

---\\ Etat du Centre de Sécurité Windows (7) - 1s
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM64\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

---\\ Recherche particulière de fichiers génériques (25) - 3s
[MD5.92B369312AF5D0B83AEF82D5DE0428D2] - 01/01/2018 - (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\Explorer.exe [3904808] =>.Microsoft Windows®
[MD5.731A783A36A8E69A6434D19D98B12A09] - 29/09/2017 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\WINDOWS\System32\rundll32.exe [71168] =>.Microsoft Corporation
[MD5.BF3E1D9B2360C6BE4CC3094CD2DDC617] - 29/09/2017 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\WINDOWS\System32\Wininit.exe [359584] =>.Microsoft Windows Publisher®
[MD5.CDBD10B47A1BEA8B6A009064E90FA298] - 01/01/2018 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\WINDOWS\System32\wininet.dll [3334144] =>.Microsoft Corporation
[MD5.D0926E8FC082646487BD159538F4D9F5] - 01/01/2018 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\WINDOWS\System32\Winlogon.exe [715776] =>.Microsoft Corporation
[MD5.4D487E7D2B047FB929BE00117C09F9EC] - 29/09/2017 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\WINDOWS\System32\sppcomapi.dll [414720] =>.Microsoft Corporation
[MD5.A94E2533A7604E4AA05DCCC675A9F396] - 24/12/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\System32\dnsapi.dll [739696] =>.Microsoft Windows®
[MD5.0A821BF024E347943D6F5C5180FAEA31] - 24/12/2017 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\WINDOWS\Syswow64\dnsapi.dll [597160] =>.Microsoft Windows®
[MD5.3B34C7B9D7E22AEF58DF0CFC4C7CC82D] - 30/09/2017 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19968] =>.Microsoft Corporation
[MD5.7AE4EBDC221235BF9E1008B515C0B8DB] - 01/01/2018 - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) -- C:\WINDOWS\System32\drivers\AFD.sys [614296] =>.Microsoft Windows®
[MD5.6191B9B2EE0E8CB957C683B9B341CC86] - 29/09/2017 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\WINDOWS\System32\drivers\atapi.sys [28568] =>.Microsoft Windows®
[MD5.9E82A95D77AC78C84BA75FF896B060BF] - 29/09/2017 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\WINDOWS\System32\drivers\Cdfs.sys [93184] =>.Microsoft Corporation
[MD5.6D83565C1652E80447EDEA6947FA89D7] - 29/09/2017 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\WINDOWS\System32\drivers\Cdrom.sys [159744] =>.Microsoft Corporation
[MD5.9910E9CFF5ECDCB225F82E72CE9DE459] - 29/09/2017 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\WINDOWS\System32\drivers\DfsC.sys [151040] =>.Microsoft Corporation
[MD5.99A34FD1F6431A10D8C3BB50E170D0F2] - 29/09/2017 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\WINDOWS\System32\drivers\HDAudBus.sys [86016] =>.Microsoft Corporation
[MD5.56FF074E50F9042FD2856AB3418F4B18] - 29/09/2017 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\WINDOWS\System32\drivers\i8042prt.sys [105984] =>.Microsoft Corporation
[MD5.7BEC2AF23F586EFF0DB4DBF4331B0C70] - 29/09/2017 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\WINDOWS\System32\drivers\IpNat.sys [214016] =>.Microsoft Corporation
[MD5.34898F29BF0E9A84E183046318D17814] - 24/12/2017 - (.Microsoft Corporation - Minirdr SMB Windows NT.) -- C:\WINDOWS\System32\drivers\MRxSmb.sys [495000] =>.Microsoft Windows®
[MD5.7FC54F2AF5EC52C7AC05AD90FFC757E6] - 01/01/2018 - (.Microsoft Corporation - MBT Transport driver.) -- C:\WINDOWS\System32\drivers\netBT.sys [316928] =>.Microsoft Corporation
[MD5.E20EC8E25969ABD9F5FED6EDEA57EC0C] - 01/01/2018 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\WINDOWS\System32\drivers\ntfs.sys [2395032] =>.Microsoft Windows®
[MD5.2E07EC2C1622F5E7B535D62DCD61F3AB] - 29/09/2017 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\WINDOWS\System32\drivers\Parport.sys [98816] =>.Microsoft Corporation
[MD5.E0220BB6580D34001D4D1D133052DAA4] - 29/09/2017 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [106496] =>.Microsoft Corporation
[MD5.DF83769C92527DB50653F8FB57D001FF] - 30/09/2017 - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) -- C:\WINDOWS\System32\drivers\rdpdr.sys [182784] =>.Microsoft Corporation
[MD5.571D82ABAC428D902ACA0CF60373C039] - 29/09/2017 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\WINDOWS\System32\drivers\tdx.sys [121240] =>.Microsoft Windows®
[MD5.5B27846CF4B1C21AFB3A35A8336BA02F] - 24/12/2017 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\WINDOWS\System32\drivers\volsnap.sys [401304] =>.Microsoft Windows®

---\\ Liste des services NT non Microsoft et non désactivés (16) - 4s
O23 - Service: McAfee Application Installer Cleanup (0145281516918821) (0145281516918821mcinstcleanup) . (.McAfee, Inc. - McAfee Installer.) - C:\Windows\Temp\0145281516918821mcinst.exe =>.McAfee, Inc.®
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\System32\atiesrxx.exe =>.AMD
O23 - Service: AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc. - Service Fusion Utility.) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.®
O23 - Service: AVG Antivirus (AVG Antivirus) . (.AVG Technologies CZ, s.r.o. - AVG Service.) - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe =>.AVG Technologies CZ, s.r.o.®
O23 - Service: AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o. - AVG Service Process.) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe =>.AVG Netherlands B.V.®
O23 - Service: AvrcpService (AvrcpService) . (.Realtek Semiconductor Corporation - Realtek Bluetooth AVRCP Service.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe =>.Realtek Semiconductor Corp®
O23 - Service: BTDevManager (BTDevManager) . (.Realtek All Rights Reserved - Realtek Bluetooth BTDevManager Service Appl.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe =>.Realtek Semiconductor Corp®
O23 - Service: CCSDK (CCSDK) . (.Lenovo - CCSDK.) - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe =>.LENOVO®
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc. - Conexant Audio Message Service.) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems Inc.
O23 - Service: Elan Service (ETDService) . (.ELAN Microelectronics Corp. - Elan Service.) - C:\Program Files\Elantech\ETDService.exe =>.ELAN Microelectronics Corporation®
O23 - Service: GDCAgent (GDCAgent) . (.Lenovo - GDCAgent.) - C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe =>.LENOVO®
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
O23 - Service: System Interface Foundataion Service (ImControllerService) . (...) - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
O23 - Service: McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc. - McAfee WebAdvisor.) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe =>.McAfee, Inc.®
O23 - Service: Conexant SmartAudio service (SAService) . (...) - C:\Windows\System32\SASrv.exe (.not file.) =>.Conexant Systems, Inc.
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies CZ, s.r.o. - AVG PC TuneUp Service.) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (18) - 20s
SS - Auto [25/01/2018] [ 1031928] McAfee Application Installer Cleanup (0145281516918821) (0145281516918821mcinstcleanup) . (.McAfee, Inc..) - C:\Windows\Temp\0145281516918821mcinst.exe =>.McAfee, Inc.®
SR - Auto [08/12/2015] [ 305168] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\System32\atiesrxx.exe =>.Microsoft Windows Hardware Compatibility Publisher®
SR - Auto [16/11/2015] [ 351944] AMD FUEL Service (AMD FUEL Service) . (.Advanced Micro Devices, Inc..) - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe =>.Advanced Micro Devices, Inc.®
SR - Auto [30/07/2017] [ 264432] AVG Antivirus (AVG Antivirus) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe =>.AVG Technologies CZ, s.r.o.®
SR - Demand [30/07/2017] [ 7481648] avgbIDSAgent (avgbIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe =>.AVG Technologies CZ, s.r.o.®
SR - Auto [25/01/2018] [ 1428264] AVG Service (avgsvc) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe =>.AVG Netherlands B.V.®
SR - Auto [02/03/2015] [ 41176] AvrcpService (AvrcpService) . (.Realtek Semiconductor Corporation.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe =>.Realtek Semiconductor Corp®
SR - Auto [02/06/2015] [ 117976] BTDevManager (BTDevManager) . (.Realtek All Rights Reserved.) - C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe =>.Realtek Semiconductor Corp®
SS - Auto [06/12/2016] [ 680288] CCSDK (CCSDK) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe =>.LENOVO®
SR - Auto [20/10/2014] [ 207576] @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) . (.Conexant Systems Inc..) - C:\WINDOWS\system32\CxAudMsg64.exe =>.Conexant Systems, Inc.®
SR - Auto [03/05/2016] [ 134888] Elan Service (ETDService) . (.ELAN Microelectronics Corp..) - C:\Program Files\Elantech\ETDService.exe =>.ELAN Microelectronics Corporation®
SR - Auto [29/07/2015] [ 1155512] GDCAgent (GDCAgent) . (.Lenovo.) - C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe =>.LENOVO®
SS - Auto [17/10/2017] [ 144200] Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Demand [17/10/2017] [ 144200] Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc®
SS - Auto [05/06/2017] [ 57160] System Interface Foundataion Service (ImControllerService) . (...) - C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
SS - Demand [07/08/2015] [ 271296] LSCWinService (LSCWinService) . (.Lenovo.) - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe =>.LENOVO®
SR - Auto [04/01/2018] [ 604312] McAfee SiteAdvisor Service (McAfee SiteAdvisor Service) . (.McAfee, Inc..) - C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe =>.McAfee, Inc.®
SR - Auto [22/01/2018] [ 5614592] AVG PC TuneUp Service (TuneUp.UtilitiesSvc) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe =>.AVG Netherlands B.V.®

---\\ Tâches planifiées en automatique (Registre) (23) - 9s
O38 - TASK: {03BEE134-7E58-4B39-B068-33DC3FC1D22C} [64Bits][\GoogleUpdateTaskMachineCore] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] =>.Google Inc.
O38 - TASK: {041AAF65-A289-4455-B6EF-3E1715087EA6} [64Bits][\Lenovo\LSC\LSCHardwareScanPostpone] - (.LenovoSolutionCenter - LSCHardwareScanPostpone.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9476544] =>.LenovoSolutionCenter
O38 - TASK: {221E70FB-194B-4AF8-92E4-6BC2B8E99423} [64Bits][\Lenovo\Lenovo Customer Feedback Program 64 35] - (.Lenovo - Lenovo.TVT.CustomerFeedback.Agent.) -- C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832] =>.Lenovo
O38 - TASK: {29568C87-B4A6-4975-A3F1-6F936C75D910} [64Bits][\Lenovo\Lenovo Solution Center Launcher] - (.Lenovo - Lenovo Solution Center.) -- C:\Program Files\Lenovo\lenovo solution center\App\LSCService.exe [270272] =>.Lenovo
O38 - TASK: {2A5CCDD2-B335-48D5-9EB0-936DB29C5D77} [64Bits][\Lenovo\LSC\Lenovo Solution Center Notifications] - (.Lenovo - Lenovo Solution Center Notifications.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384] =>.Lenovo
O38 - TASK: {2D61DAF1-DADA-433C-AFE9-428591A6618C} [64Bits][\CyberLink\Photo Master Gadget startup] - (.CyberLink Corp. - Lenovo Photo Master Update.) -- C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterWorker.exe [745240] =>.CyberLink Corp.
O38 - TASK: {41E68A6F-33D9-4C86-A97A-C38A70F58F27} [64Bits][\AVG\Overseer] - (.AVG Technologies CZ, s.r.o. - AVG Overseer.) -- C:\Program Files\Common Files\avg\overseer\overseer.exe [1846216] =>.AVG Technologies CZ, s.r.o.
O38 - TASK: {4D9A8A42-7259-4A15-AEDC-428897D3C3E7} [64Bits][\{497B5B7F-FED0-ECD4-E26E-32DF6D6B0FF1}] - (...) -- C:\ProgramData\{80F0B79A-375B-0031-BA93-4A7D8D08E64A}\07DC92C1-B077-256A-AD31-8EAC155C2585.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {560305E0-3B59-452C-BD15-25018C008DAF} [64Bits][\AVG EUpdate Task] - (.AVG Technologies CZ, s.r.o. - AVG Setup Process.) -- C:\Program Files (x86)\AVG\Setup\avgsetupx.exe [4071992] =>.AVG Technologies CZ, s.r.o.
O38 - TASK: {5B51A1F2-EA44-4603-89FC-D5416FE073BE} [64Bits][\AVGPCTuneUp_Task_BkGndMaintenance] - (.AVG Technologies CZ, s.r.o. - AVG PC TuneUp.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2670080] =>.AVG Technologies CZ, s.r.o.
O38 - TASK: {7996ED50-8BBD-426D-BDE0-33B27EF1F4D4} [64Bits][\Antivirus Emergency Update] - (.AVG Technologies CZ, s.r.o. - AVG Emergency Update.) -- C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2368848] =>.AVG Technologies CZ, s.r.o.
O38 - TASK: {7BBFC3CB-950A-4456-BC8F-7A3E0EC1A76F} [64Bits][\{626639A8-D5CD-8E03-CA82-B94803DD74A7}] - (...) -- C:\ProgramData\{F9B98E89-4E12-3922-683C-0FD166536FAD}\92A0197A-250B-AED1-750F-120F22C607C2.exe (.not file.) [0] (.Orphan.) =>.SUP.Orphan
O38 - TASK: {8660A1B4-A9F6-4EB9-920B-F60EEDC2561B} [64Bits][\Lenovo\ImController\TimeBasedEvents\0428ee86-f7fe-41d0-a6e4-008e62e97ac2] - (.Lenovo Group Limited - <?xml version="1.0" encoding="utf-16"?>
<Su.) -- C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160] Lenovo Group Limited =>Lenovo Group Limited
O38 - TASK: {92C789D6-4EFE-4C3C-A4BC-308612D329D2} [64Bits][\GoogleUpdateTaskMachineUA] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200] Lenovo Group Limited =>.Google Inc.
O38 - TASK: {9EBD3650-026B-4C05-88BA-6EC578715898} [64Bits][\Eiphcoegepy] - (.System - Eiphcoegepy.) -- msiexec [0] Lenovo Group Limited
O38 - TASK: {CD5907CE-F03D-4616-9F16-124F512C9454} [64Bits][\Lenovo\REACHit Agent Update] - (.Lenovo - REACHit Agent.) -- C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664] Lenovo Group Limited =>.Lenovo
O38 - TASK: {D815F434-B6F1-454F-AB26-7FAD86F9856A} [64Bits][\Samsung Update] - (.LAPTOP-6JFLNKNL\famil - .) -- msiexec [0] Lenovo Group Limited
O38 - TASK: {D8F9E1FD-6FDF-4FF5-A55B-1F905DFB760C} [64Bits][\Lenovo\ImController\TimeBasedEvents\331b93cb-3ecc-4378-8545-f969399861a0] - (.Lenovo Group Limited - <?xml version="1.0" encoding="utf-16"?>
<Su.) -- C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160] Lenovo Group Limited =>Lenovo Group Limited
O38 - TASK: {DE936CD6-8999-4332-83E1-9901B7FDE547} [64Bits][\Lenovo\REACHit Agent Startup] - (.Lenovo - REACHit Agent.) -- C:\Program Files (x86)\Lenovo\REACHit\webAgent.exe [564664] Lenovo Group Limited =>.Lenovo
O38 - TASK: {E3B1F04D-CFB7-452F-810B-2D1BD9975686} [64Bits][\Lenovo\LSC\LSCHardwareScan] - (.LenovoSolutionCenter - LSCHardwareScan.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [9476544] Lenovo Group Limited =>.LenovoSolutionCenter
O38 - TASK: {EBAE8BDC-D88E-4F69-9593-FA49B77E5DC4} [64Bits][\Dersstdward Controls] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Mijottenury\xsercuch.exe [679560] Lenovo Group Limited =>.Google Inc.
O38 - TASK: {F051613E-6DCA-4381-BDF7-B046342744FB} [64Bits][\PDVDServ12 Task] - (.CyberLink Corp. - PowerDVD Service.) -- C:\Program Files (x86)\Lenovo\PowerDVD12\PDVD12Serv.exe [85432] Lenovo Group Limited =>.CyberLink Corp.
O38 - TASK: {F41BB9AE-C122-45E2-9615-F7C382F0AD18} [64Bits][\Lenovo\ImController\TimeBasedEvents\bd81f25d-1085-4459-9251-bbaaeb9ead84] - (.Lenovo Group Limited - <?xml version="1.0" encoding="utf-16"?>
<Su.) -- C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [57160] Lenovo Group Limited =>Lenovo Group Limited

---\\ Applications lancées au démarrage du système (22) - 3s
O4 - HKLM\..\Run: [SecurityHealth] . (.Microsoft Corporation - Windows Defender notification icon.) -- C:\Program Files\Windows Defender\MSASCuiL.exe =>.Microsoft Windows®
O4 - HKLM\..\Run: [ForteConfig] . (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe =>.Fortemedia Inc®
O4 - HKLM\..\Run: [cAudioFilterAgent] . (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe =>.Conexant Systems, Inc.®
O4 - HKLM\..\Run: [RtsFT] . (.Realtek semiconductor - RTFTrack.) -- C:\WINDOWS\RTFTrack.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [LenovoUtility] . (.Copyright 2014 - Lenovo Utility.) -- C:\Program Files\Lenovo\LenovoUtility\utility.exe =>.LENOVO®
O4 - HKLM\..\Run: [ETDCtrl] . (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe =>.ELAN Microelectronics Corporation®
O4 - HKLM\..\Run: [BtServer] . (.Realtek Semiconductor Corporation - Realtek Bluetooth BTServer Application.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe =>.Realtek Semiconductor Corp®
O4 - HKLM\..\Run: [AvgUi] . (.AVG Technologies CZ, s.r.o. - AVG Ui (Re)Starter.) -- C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe =>.AVG Netherlands B.V.®
O4 - HKLM\..\Run: [AVGUI.exe] . (.AVG Technologies CZ, s.r.o. - AvLaunch component.) -- C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe =>.AVG Technologies CZ, s.r.o.®
O4 - HKLM\..\Run: [SmartAudio] . (.Conexant Systems, Inc. - SmartAudio CPL (32bit).) -- C:\Program Files\CONEXANT\SAII\SACpl.exe =>.Conexant Systems, Inc.®
O4 - HKCU\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKCU\..\Run: [PhotoMasterImportAgent] . (.CyberLink Corp. - Lenovo Photo Master Import Agent.) -- C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe =>.CyberLink Corp.®
O4 - HKCU\..\RunOnce: [Uninstall 17.3.7131.1115\amd64] . (...) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64
O4 - HKCU\..\RunOnce: [Uninstall 17.3.7131.1115] . (...) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\17.3.7131.1115
O4 - HKLM\..\Wow6432Node\Run: [CLMLServer_For_P2G8] . (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe =>.CyberLink Corp.®
O4 - HKLM\..\Wow6432Node\Run: [CLVirtualDrive] . (.CyberLink Corp. - CyberLink Virtual Drive.) -- C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe =>.CyberLink Corp.®
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] . (.Microsoft Corporation - Microsoft OneDrive Setup.) -- C:\Windows\SysWOW64\OneDriveSetup.exe =>.Microsoft Windows®
O4 - HKUS\S-1-5-21-1744859533-4181601242-1035777186-1002\..\Run: [OneDrive] . (.Microsoft Corporation - Microsoft OneDrive.) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - HKUS\S-1-5-21-1744859533-4181601242-1035777186-1002\..\Run: [PhotoMasterImportAgent] . (.CyberLink Corp. - Lenovo Photo Master Import Agent.) -- C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe =>.CyberLink Corp.®
O4 - HKUS\S-1-5-21-1744859533-4181601242-1035777186-1002\..\RunOnce: [Uninstall 17.3.7131.1115\amd64] . (...) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64
O4 - HKUS\S-1-5-21-1744859533-4181601242-1035777186-1002\..\RunOnce: [Uninstall 17.3.7131.1115] . (...) -- C:\Users\famil\AppData\Local\Microsoft\OneDrive\17.3.7131.1115

---\\ Processus lancés (39) - 10s
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [0] [PID.1884] =>.AMD
[MD5.00000000000000000000000000000000] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [0] [PID.1964] =>.AMD
[MD5.96B223D663983E2BA2A8DE74FEE31324] - (.Advanced Micro Devices, Inc. - Service Fusion Utility.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [351944] [PID.3020] =>.Advanced Micro Devices, Inc.®
[MD5.00000000000000000000000000000000] - (.Conexant Systems Inc. - Conexant Audio Message Service.) -- C:\WINDOWS\system32\CxAudMsg64.exe [0] [PID.3036] =>.Conexant Systems Inc.
[MD5.3CA1424FABB0A803294F42047EE0024F] - (.Conexant Systems, Inc. - SmartAudio Service Application.) -- C:\Windows\SysWOW64\SASrv.exe [423128] [PID.1960] =>.Conexant Systems, Inc.®
[MD5.3D837353E6AEC177FDC2EE8D397A7C8C] - (.ELAN Microelectronics Corp. - Elan Service.) -- C:\Program Files\Elantech\ETDService.exe [134888] [PID.1976] =>.ELAN Microelectronics Corporation®
[MD5.4B2469B9858FF03AA83947A05BE60447] - (.Realtek Semiconductor Corporation - Realtek Bluetooth AVRCP Service.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe [41176] [PID.3180] =>.Realtek Semiconductor Corp®
[MD5.06E59719C1A85041CE668AF1F4ABE8D8] - (.Realtek All Rights Reserved - Realtek Bluetooth BTDevManager Service Appl.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe [117976] [PID.3196] =>.Realtek Semiconductor Corp®
[MD5.D56EE61F9B62AD677395BF003A49B4A7] - (.Lenovo - GDCAgent.) -- C:\Program Files (x86)\Lenovo\GDCAgentSetupRed\GDCAgent.exe [1155512] [PID.5680] =>.LENOVO®
[MD5.1DB4D24FA0C5318E0A1A8A5FFAD5D13F] - (.McAfee, Inc. - McAfee WebAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe [604312] [PID.5872] =>.McAfee, Inc.®
[MD5.7A9A819E06F9E4B42D21F73DA9250650] - (.McAfee, Inc. - McAfee WebAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe [2186664] [PID.2452] =>.McAfee, Inc.®
[MD5.4B92F12C160B675A1BAEEEC29D2C8714] - (.ELAN Microelectronics Corp. - ETD Control Center Helper.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe [2654432] [PID.7072] =>.ELAN Microelectronics Corporation®
[MD5.AC5952762C83EE7FABC82801F9CDB9C4] - (.ELAN Microelectronics Corp. - ETDIntelligent.) -- C:\Program Files\Elantech\ETDIntelligent.exe [2267368] [PID.7096] =>.ELAN Microelectronics Corporation®
[MD5.42361B4BD80768E82B80285851037665] - (.Copyright (C) 2010 - FMAPP Application.) -- C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056] [PID.9616] =>.Fortemedia Inc®
[MD5.B58355B1B1C91433B4B119083C7F28B3] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) -- C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe [919768] [PID.9724] =>.Conexant Systems, Inc.®
[MD5.DB834E58419DF8853FDAA9E5F1B45161] - (.Realtek semiconductor - RTFTrack.) -- C:\Windows\RTFTrack.exe [5158144] [PID.9808] =>.Realtek Semiconductor Corp®
[MD5.772123B2276B94C797659AEDC0D49943] - (.Copyright 2014 - Lenovo Utility.) -- C:\Program Files\Lenovo\LenovoUtility\utility.exe [791848] [PID.9868] =>.LENOVO®
[MD5.8413F26550442F9C9AA16F3D1FCACB3E] - (.AVG Technologies CZ, s.r.o. - AVG Antivirus.) -- C:\Program Files (x86)\AVG\Antivirus\avgui.exe [9271528] [PID.9992] =>.AVG Technologies CZ, s.r.o.®
[MD5.854C5EA13F305433DDB2D752A30033D0] - (.CyberLink Corp. - Lenovo Photo Master Import Agent.) -- C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMasterImportAgent.exe [675608] [PID.10204] =>.CyberLink Corp.®
[MD5.22817081C475BA9506C34BBECC99279B] - (.CyberLink - CyberLink MediaLibrary Service.) -- C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344] [PID.8936] =>.CyberLink Corp.®
[MD5.34D296AFC913E302953C70463EF09A48] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [96056] [PID.8900] =>.Hewlett-Packard Company®
[MD5.ABDC111C5833BAB2212F37EC0B345513] - (.Lenovo - Lenovo Solution Center Notifications.) -- C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1320384] [PID.8740] =>.LENOVO®
[MD5.2F7C4D8DB27E2118EC2126077D5FF636] - (.AVG Technologies CZ, s.r.o. - AVG PC TuneUp Service.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5614592] [PID.8824] =>.AVG Netherlands B.V.®
[MD5.2B5B06B6CC7DDEC7A2E4033DA3FD7F2E] - (.AVG Technologies CZ, s.r.o. - AVG PC TuneUp.) -- C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe [2963968] [PID.13860] =>.AVG Netherlands B.V.®
[MD5.D1EB3EB64982B48704C79F23575EA878] - (.Copyright (C) Lenovo Group Ltd. 2018 - Companion.) -- C:\Program Files\WindowsApps\E046963F.LenovoCompanion_4.9.183.0_x86__k1h2ywk1493x8\Lenovo.Discovery.exe [23552] [PID.1612]
[MD5.C263253E8E959062C9490E56EA97E183] - (.AVG Technologies CZ, s.r.o. - AVG Service Process.) -- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1428264] [PID.7912] =>.AVG Netherlands B.V.®
[MD5.E28A9CC2EB02B194EB61D2D092300E78] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1800312] [PID.10440] =>.AVG Netherlands B.V.®
[MD5.03CD1A4B00B93A5D1EB8F0F343F2F8DC] - (...) -- C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe [477184] [PID.13232] =>.Microsoft Corporation
[MD5.67DE031EB8D0BD26C7E317A4295E9584] - (...) -- C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1712.3351.0_x64__8wekyb3d8bbwe\Calculator.exe [4307968] [PID.11916] =>.Microsoft Corporation
[MD5.BCD340300881BF94AB1C23C4D1D0E82C] - (.Realtek Semiconductor Corporation - Realtek Bluetooth BTServer Application.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe [229080] [PID.4728] =>.Realtek Semiconductor Corp®
[MD5.60D00FC4F97B33B2CBB949855025F2D7] - (.Copyright (C) 2011 - SkypePlugin.exe.) -- C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe [277720] [PID.9736] =>.Realtek Semiconductor Corp®
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.9956] =>.Google Inc®
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.11028] =>.Google Inc®
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.15332] =>.Google Inc®
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.13356] =>.Google Inc®
[MD5.960C0EC38AD73F535638E2814B8E7249] - (.McAfee, Inc. - SiteAdvisor.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe [642344] [PID.8632] =>.McAfee, Inc.®
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.7672] =>.Google Inc®
[MD5.51D72D55976CED4F775A8ED66FAD76F3] - (.Nicolas Coolman - ZHPDiag.) -- C:\Users\famil\Downloads\ZHPDiag3.exe [2968960] [PID.1292] =>.Nicolas Coolman
[MD5.FB0FD50767863CAB6F2F240C4E50CF15] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1581912] [PID.9016] =>.Google Inc®

---\\ Google Chrome, Démarrage,Recherche,Extensions (16) - 1s
G0 - GCSP: Preferences [User Data\Default][HomePage] http://accounts.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://apis.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://clients5.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://lh3.googleusercontent.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ogs.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://ssl.gstatic.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.com =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.google.fr =>.Google Inc.
G0 - GCSP: Preferences [User Data\Default][HomePage] http://www.gstatic.com =>.Google Inc.
G2 - GCE: Preference [famil][User Data\Default] [aohghmighlieiainnegkcijnfilokake] =>.Google Inc. {Docs}
G2 - GCE: Preference [famil][User Data\Default] [bgnkhhnnamicmpeenaelnjfhikgbkllg] Performix LLC =>.adguard.com {AdBlocker}
G2 - GCE: Preference [famil][User Data\Default] [cfhdojbkjhnklbpkdaibdccddilifddb] eyeo GmbH =>.eyeo GmbH {AdBlock Plus}
G2 - GCE: Preference [famil][User Data\Default] [fheoggkfdfchfphceeifdbepaooicaho] McAfee® WebAdvisor =>.McAfee Inc.
G2 - GCE: Preference [famil][User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] Michael Gundlach =>.Wladimir Palant {AdBlock}
G2 - GCE: Preference [famil][User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] =>.Google Inc. {Wallet}
G2 - GCE: Preference [famil][User Data\Default] [pkedcjkdefgpdelpbcmbmeomcjbeemfm] Chrome Media Router =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (2) - 4s
P2 - EXT FILE: (.Microsoft Corporation - The plugin allows you to have a better expe.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npMeetingJoinPluginOC.dll =>.Microsoft Corporation®
P2 - EXT FILE: (.Adblock Plus - Ads were yesterday!.) -- C:\Users\famil\AppData\Roaming\Mozilla\Firefox\Profiles\cya203hk.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi =>.Adblock Plus

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (8) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ =>.Microsoft Corporation
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.ourluckysites.com/ =>Hijacker.OurLuckySites
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://mystart.lenovo.com =>.Lenovo Group Limited
R3 - URLSearchHook: (no name)[HKCU] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.16299.15 (WinBuild.160101.0800)) -- C:\Windows\System32\ieframe.dll =>.Microsoft Corporation

---\\ Microsoft Edge, Plugin,Favoris,Démarrage,Recherche,Extension (1) - 0s
E0 - Microsoft Edge: HKU\S-1-5-21-1744859533-4181601242-1035777186-1002\HomeButtonPage = about:tabs =>..Microsoft Corporation

---\\ Internet Explorer,Proxy Management (3) - 0s
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKLM\SYSTEM\CurrentControlSet\services\NlaSvc\Parameters\Internet\ManualProxies [] =>.Microsoft

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) =>.Microsoft Corporation
F2 - REG:system.ini: VMApplet=

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (3) - 0s
O2 - BHO: Lync Click to Call BHO [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Skype for Business.) -- C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll =>.Microsoft Corporation®
O2 - BHO: McAfee WebAdvisor BHO [64Bits] - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} . (.McAfee, Inc. - WebAdvisor.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll =>.McAfee, Inc.®
O2 - BHO: (no name) [64Bits] - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (.Orphan.)

---\\ Raccourcis Global Startup (77) - 8s
O4 - GS\Desktop [Administrateur]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Desktop [Administrateur]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\famil\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [Administrateur]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [Administrateur]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [Administrateur]: Lenovo Photo Master.lnk . (.CyberLink Corp. - Lenovo Photo Master.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMaster.exe =>.CyberLink Corp.®
O4 - GS\TaskBar [Administrateur]: Manuels d'utilisateur.lnk . (.Lenovo - UserGuide.) C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe =>.LENOVO®
O4 - GS\TaskBar [Administrateur]: OpenOffice 4.1.2.lnk . (.Apache Software Foundation - OpenOffice 4.1.2.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\TaskBar [Administrateur]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\TaskBar [Administrateur]: PowerPoint 2013.lnk . (...) C:\WINDOWS\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [Administrateur]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\TaskBar [Administrateur]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Programs [Administrateur]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [famil]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Desktop [famil]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\famil\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [famil]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [famil]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [famil]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [famil]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [famil]: Lenovo Photo Master.lnk . (.CyberLink Corp. - Lenovo Photo Master.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMaster.exe =>.CyberLink Corp.®
O4 - GS\TaskBar [famil]: Manuels d'utilisateur.lnk . (.Lenovo - UserGuide.) C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe =>.LENOVO®
O4 - GS\TaskBar [famil]: OpenOffice 4.1.2.lnk . (.Apache Software Foundation - OpenOffice 4.1.2.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\TaskBar [famil]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\TaskBar [famil]: PowerPoint 2013.lnk . (...) C:\WINDOWS\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [famil]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\TaskBar [famil]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Programs [famil]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Desktop [WDAGUtilityAccount]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Desktop [WDAGUtilityAccount]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag.) C:\Users\famil\AppData\Roaming\ZHP\ZHPDiag3.exe =>.Nicolas Coolman
O4 - GS\Quicklaunch [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\sendTo [WDAGUtilityAccount]: Destinataire de télécopie.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\Windows\System32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\sendTo [WDAGUtilityAccount]: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe /SendTo =>.Microsoft Corporation
O4 - GS\TaskBar [WDAGUtilityAccount]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\TaskBar [WDAGUtilityAccount]: Lenovo Photo Master.lnk . (.CyberLink Corp. - Lenovo Photo Master.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMaster.exe =>.CyberLink Corp.®
O4 - GS\TaskBar [WDAGUtilityAccount]: Manuels d'utilisateur.lnk . (.Lenovo - UserGuide.) C:\Program Files (x86)\Lenovo\UserGuide\UserGuide.exe =>.LENOVO®
O4 - GS\TaskBar [WDAGUtilityAccount]: OpenOffice 4.1.2.lnk . (.Apache Software Foundation - OpenOffice 4.1.2.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\TaskBar [WDAGUtilityAccount]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\TaskBar [WDAGUtilityAccount]: PowerPoint 2013.lnk . (...) C:\WINDOWS\Installer\{90150000-0011-0000-1000-0000000FF1CE}\pptico.exe =>.Microsoft Corporation®
O4 - GS\TaskBar [WDAGUtilityAccount]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\TaskBar [WDAGUtilityAccount]: WINWORD - Raccourci.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE =>.Microsoft Corporation
O4 - GS\Programs [WDAGUtilityAccount]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\CommonDesktop [Public]: Achat de consommables - HP DeskJet 3630 series.lnk . (.HP Inc. - .) C:\Program Files (x86)\HP\HP DeskJet 3630 series\Bin\hpqDTSS.exe =>.HP Inc.
O4 - GS\CommonDesktop [Public]: AVG PC TuneUp.lnk . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /tu =>.AVG Netherlands B.V.®
O4 - GS\CommonDesktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\CommonDesktop [Public]: HP DeskJet 3630 series.lnk . (.HP Inc. - .) C:\Program Files (x86)\HP\HP DeskJet 3630 series\Bin\HP DeskJet 3630 series.exe -Start UDCDevicePage =>.HP Inc.
O4 - GS\CommonDesktop [Public]: HP Photo Creations.lnk . (.Visan / RocketLife - PhotoProduct.exe.) C:\Program Files (x86)\HP Photo Creations\PhotoProduct.exe =>.Visan Industries®
O4 - GS\CommonDesktop [Public]: HP Print and Scan Doctor.lnk . (...) C:\Program Files (x86)\HP\Diagnostics\PSDR\HPPSDr.exe {0375245BFA2FCF3DE7FEE078C9FF9890}
O4 - GS\CommonDesktop [Public]: Lenovo Photo Master.lnk . (.CyberLink Corp. - Lenovo Photo Master.) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\PhotoMaster.exe =>.CyberLink Corp.®
O4 - GS\CommonDesktop [Public]: OneKey Recovery.lnk . (.CyberLink - OneKey Recovery.) C:\Program Files\Lenovo\OneKey App\OneKey Recovery\OneKey Recovery.exe =>.CyberLink Corp.®
O4 - GS\CommonDesktop [Public]: OpenOffice 4.1.2.lnk . (.Apache Software Foundation - OpenOffice 4.1.2.) C:\Program Files (x86)\OpenOffice 4\program\soffice.exe =>.Apache Software Foundation
O4 - GS\CommonDesktop [Public]: VLC media player.lnk . (.VideoLAN - VLC media player.) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe =>.VideoLAN®
O4 - GS\Programs [Public]: OneDrive.lnk . (.Microsoft Corporation - Microsoft OneDrive.) C:\Users\famil\AppData\Local\Microsoft\OneDrive\OneDrive.exe =>.Microsoft Corporation®
O4 - GS\Accessories [Public]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) C:\WINDOWS\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Math Input Panel.lnk . (.Microsoft Corporation - .) C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\mip.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) C:\WINDOWS\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Quick Assist.lnk . (.Microsoft Corporation - Quick Assist.) C:\WINDOWS\system32\quickassist.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.) C:\WINDOWS\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture d’écran.) C:\WINDOWS\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Steps Recorder.lnk . (.Microsoft Corporation - Enregistreur d’actions.) C:\WINDOWS\system32\psr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) C:\WINDOWS\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) C:\WINDOWS\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.) C:\WINDOWS\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Access 2016.lnk . (.Microsoft Corporation - Microsoft Access.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSACCESS.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: AVG PC TuneUp.lnk . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe /tu =>.AVG Netherlands B.V.®
O4 - GS\ProgramsCommon [Public]: Excel 2016.lnk . (.Microsoft Corporation - Microsoft Excel.) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe =>.Google Inc®
O4 - GS\ProgramsCommon [Public]: Immersive Control Panel.lnk . (.Microsoft Corporation - Windows Control Panel.) C:\WINDOWS\System32\Control.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: OneNote 2016.lnk . (.Microsoft Corporation - Microsoft OneNote.) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Outlook 2016.lnk . (.Microsoft Corporation - Microsoft Outlook.) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: PowerPoint 2016.lnk . (.Microsoft Corporation - Microsoft PowerPoint.) C:\Program Files (x86)\Microsoft Office\root\Office16\POWERPNT.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Publisher 2016.lnk . (.Microsoft Corporation - Microsoft Publisher.) C:\Program Files (x86)\Microsoft Office\root\Office16\MSPUB.EXE =>.Microsoft Corporation®
O4 - GS\ProgramsCommon [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) C:\Program Files (x86)\Windows Media Player\wmplayer.exe /prefetch:1 =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Windows Movie Maker 2.6.lnk . (.Microsoft Corporation - Windows Movie Maker.) C:\WINDOWS\Installer\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}\MOVIEMK.exe =>.Microsoft Corporation
O4 - GS\ProgramsCommon [Public]: Word 2016.lnk . (.Microsoft Corporation - Microsoft Word.) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE =>.Microsoft Corporation®

---\\ Modification Domaine/Adresses DNS (8) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{18f887b5-fa0b-4789-8a88-2b6272f3cef0}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{2dcf149f-081c-4766-bc0a-a425f7d821fd}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{66e94074-04fc-4fd0-9ec9-f367987cb4ba}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{c3f18a7d-ad3b-4e17-a3c5-9bbc75c1e853}: NameServer = 82.163.143.176 82.163.142.178 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{18f887b5-fa0b-4789-8a88-2b6272f3cef0}: DhcpNameServer = 82.163.143.176 =>Adware.DNSUnlocker
O17 - HKLM\System\CCS\Services\Tcpip\..\{2dcf149f-081c-4766-bc0a-a425f7d821fd}: DhcpNameServer = 192.168.1.1 =>.Local IP Adress
O17 - HKLM\System\CCS\Services\Tcpip\..\{c3f18a7d-ad3b-4e17-a3c5-9bbc75c1e853}: DhcpNameServer = 82.163.143.176 =>Adware.DNSUnlocker

---\\ Protocole additionnel (26) - 1s
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll =>.Microsoft Corporation
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll =>.Microsoft Corporation
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll =>.Microsoft Corporation®
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll =>.Microsoft Corporation
O18 - Handler: osf [64Bits] - {D924BDC6-C83A-4BD5-90D0-095128A113D1} . (.Microsoft Corporation - Microsoft Office 2013 component.) -- C:\Program Files\Microsoft Office\Office15\MSOSB.DLL =>.Microsoft Corporation®
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: sacore [64Bits] - {5513F07E-936B-4E52-9B00-067394E91CC5} . (.McAfee, Inc. - WebAdvisor.) -- c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll =>.McAfee, Inc.®
O18 - Handler: tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll =>.Microsoft Corporation
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll =>.Microsoft Corporation
O18 - Handler: windows.tbauth [64Bits] - {14654CA6-5711-491D-B89A-58E571679951} . (.Microsoft Corporation - TBAuth protocol handler.) -- C:\Windows\System32\tbauth.dll =>.Microsoft Corporation
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807583E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL =>.Microsoft Corporation®

---\\ Logiciels installés (68) - 23s
O42 - Logiciel: AMD Catalyst Control Center - (.ATI Technologies.) [HKLM][64Bits] -- {F5CA94C5-16F4-B374-289F-C6CEC49D1A34} =>.ATI Technologies
O42 - Logiciel: AMD Fuel - (.Advanced Micro Devices Inc.) [HKLM][64Bits] -- {71853948-28BF-DA7E-8E07-6B309A4549F5} =>.Advanced Micro Devices Inc
O42 - Logiciel: AVG - (.AVG Technologies.) [HKLM][64Bits] -- {136B57DF-DA9E-4361-A165-09AB4422BCD1} =>.AVG Technologies
O42 - Logiciel: AVG AntiVirus Gratuit - (.AVG Technologies.) [HKLM][64Bits] -- AVG Antivirus =>.AVG Netherlands B.V.®
O42 - Logiciel: AVG PC TuneUp - (.AVG Technologies.) [HKLM][64Bits] -- {9C775BB6-1453-45EB-8C78-A5CC5199113D} =>.AVG Technologies
O42 - Logiciel: AVG PC TuneUp - (.AVG Technologies.) [HKLM][64Bits] -- AVG PC TuneUp =>.AVG Netherlands B.V.®
O42 - Logiciel: Cisco EAP-FAST Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {64BF0187-F3D2-498B-99EA-163AF9AE6EC9} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco LEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {AF312B06-5C5C-468E-89B3-BE6DE2645722} =>.Cisco Systems, Inc.
O42 - Logiciel: Cisco PEAP Module - (.Cisco Systems, Inc..) [HKLM][64Bits] -- {0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F} =>.Cisco Systems, Inc.
O42 - Logiciel: Conexant HD Audio - (.Conexant.) [HKLM][64Bits] -- CNXT_AUDIO_HDA =>.Conexant Systems, Inc.®
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.®
O42 - Logiciel: CyberLink Power2Go 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2} =>.CyberLink Corp.®
O42 - Logiciel: Dolby Digital Plus Advanced Audio - (.Dolby Laboratories Inc.) [HKLM][64Bits] -- {B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2} =>.Dolby Laboratories Inc
O42 - Logiciel: Étude pour l'amélioration du produit HP DeskJet 3630 series - (.HP Inc..) [HKLM][64Bits] -- {A90C7D4F-30F2-4A8E-A7D6-003F67E9433C} =>.HP Inc.
O42 - Logiciel: FMW 1 - (.AVG Technologies.) [HKLM][64Bits] -- {273A8690-0AA7-4325-95ED-238F69490C0E} =>.AVG Technologies
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome =>.Google Inc®
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} =>.Google Inc.
O42 - Logiciel: HP DeskJet 3630 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {08F5B0C6-D24D-4327-BA56-F8E00C1A6878} =>.Hewlett Packard
O42 - Logiciel: HP Dropbox Plugin - (.HP.) [HKLM][64Bits] -- {6401399A-F5DA-4C04-87AA-E8107DF00751} =>.HP
O42 - Logiciel: HP Google Drive Plugin - (.HP.) [HKLM][64Bits] -- {63BCC696-0FB4-4E9C-8144-2DA4F248FC17} =>.HP
O42 - Logiciel: HP Photo Creations - (.HP.) [HKLM][64Bits] -- HP Photo Creations =>.Visan Industries®
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {912D30CF-F39E-4B31-AD9A-123C6B794EE2} =>.Hewlett-Packard
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- {46F4D124-20E5-4D12-BE52-EC177A7A4B42} =>.CyberLink Corp.®
O42 - Logiciel: Lenovo OneKey Recovery - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42} =>.CyberLink Corp.®
O42 - Logiciel: Lenovo pointing device - (.ELAN Microelectronic Corp..) [HKLM][64Bits] -- Elantech =>.ELAN Microelectronics Corporation®
O42 - Logiciel: Lenovo PowerDVD12 - (.CyberLink Corp..) [HKLM][64Bits] -- {B46BEA36-0B71-4A4E-AE41-87241643FA0A} =>.CyberLink Corp.®
O42 - Logiciel: Lenovo PowerDVD12 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A} =>.CyberLink Corp.®
O42 - Logiciel: Lenovo QuickOptimizer - (.Lenovo.) [HKLM][64Bits] -- {8D2C871B-1B9F-45AC-9C43-2BB18089CDFA} =>.Lenovo
O42 - Logiciel: Lenovo Solution Center - (.Lenovo.) [HKLM][64Bits] -- {F925868A-2F2C-414B-A5A7-C613039CE9E4} =>.Lenovo
O42 - Logiciel: Lenovo System Interface Foundation - (.Lenovo.) [HKLM][64Bits] -- {C2E5CA37-C862-4A69-AC6D-24F450A20C16} =>.Lenovo
O42 - Logiciel: LenovoUtility - (.Lenovo.) [HKLM][64Bits] -- {6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} =>.Lenovo
O42 - Logiciel: LenovoUtility - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{6ADA7E88-8D16-4D0D-BC90-2B93AC5E56DA} =>.Lenovo
O42 - Logiciel: Logiciel de base du périphérique HP DeskJet 3630 series - (.HP Inc..) [HKLM][64Bits] -- {A571C4EB-3B62-4CA2-A2B3-ADB55387339B} =>.HP Inc.
O42 - Logiciel: Manuels d'utilisateur - (.Lenovo.) [HKLM][64Bits] -- {F07C2CF8-4C53-4EC3-8162-A6221E36EB88} =>.Lenovo
O42 - Logiciel: McAfee WebAdvisor - (.McAfee, Inc..) [HKLM][64Bits] -- {35ED3F83-4BDC-4c44-8EC6-6A8301C7413A} =>.McAfee, Inc.®
O42 - Logiciel: Metric Collection SDK 35 - (.Lenovo Group Limited.) [HKLM][64Bits] -- {C2B5B5B0-2545-4E94-B4BA-548D4BF0B196} =>.Lenovo Group Limited
O42 - Logiciel: Microsoft Access MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0015-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft DCF MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0090-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Excel MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0016-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Groove MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00BA-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft InfoPath MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0044-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Lync MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft OneDrive - (.Microsoft Corporation.) [HKCU][64Bits] -- OneDriveSetup.exe =>.Microsoft Corporation®
O42 - Logiciel: Microsoft OneNote MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-00A1-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Outlook MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001A-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft PowerPoint MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0018-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Publisher MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-0019-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Microsoft Word MUI (French) 2013 - (.Microsoft Corporation.) [HKLM][64Bits] -- {90150000-001B-040C-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: OEM Application Profile - (.Advanced Micro Devices Inc.) [HKLM][64Bits] -- {B4B7FD8F-06FC-E277-4F29-8F75F8281D8F} =>.Advanced Micro Devices Inc
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-0000-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Extensibility Component 64-bit Registration - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-00DD-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Licensing Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008F-0000-1000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: Office 16 Click-to-Run Localization Component - (.Microsoft Corporation.) [HKLM][64Bits] -- {90160000-008C-040C-0000-0000000FF1CE} =>.Microsoft Corporation
O42 - Logiciel: OpenOffice 4.1.2 - (.Apache Software Foundation.) [HKLM][64Bits] -- {DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E} =>.Apache Software Foundation
O42 - Logiciel: REACHit - (.Lenovo.) [HKLM][64Bits] -- {4532E4C5-C84D-4040-A044-ECFCC5C6995B} =>.Lenovo
O42 - Logiciel: REALTEK Bluetooth Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- {9D3D8C60-A5EF-4123-B2B9-172095903AB} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {5BC2B5AB-80DE-4E83-B8CF-426902051D0A} =>.Realtek Semiconductor Corp®
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} =>.Realtek
O42 - Logiciel: Realtek PCI-E Wireless LAN Driver - (.REALTEK Semiconductor Corp..) [HKLM][64Bits] -- InstallShield_{70714FB7-4084-4202-A599-2D5935DECB67} =>.Realtek Semiconductor Corp.®
O42 - Logiciel: Security Update for Skype for Business 2015 (KB3213568) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{70EE6BB9-3D3C-4BA1-8B88-2647A0567100} =>.Microsoft Corporation®
O42 - Logiciel: SHAREit - (.Lenovo.) [HKLM][64Bits] -- SHAREit_is1 =>.LENOVO®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: Update for Skype for Business 2015 (KB4011638) 64-Bit Edition - (.Microsoft.) [HKLM][64Bits] -- {90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{8B0F5A1C-5EFC-423D-91C5-EAB7F8CEC9E7} =>.Microsoft Corporation®
O42 - Logiciel: User Manuals - (.Lenovo.) [HKLM][64Bits] -- InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88} =>.Lenovo
O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologie
Afficher la suite 

13 réponses

Répondre au sujet
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention - 1 févr. 2018 à 22:34
0
Utile
1
Salut,

Supprime ZHPDiag :

Suis le tutoriel FRST. ( prends le temps de lire attentivement - tout y est bien expliqué ).

Télécharge et lance le scan FRST,
Attendre la fin du scan, un message indique que l'analyse est terminée.

Trois rapports FRST seront générés :
  • FRST.txt
  • Shortcut.txt
  • Additionnal.txt


Envoie ces 3 rapports sur le site https://pjjoint.malekal.com/ afin de les partager.
En retour donne les 3 liens pjjoint qui mènent aux rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.


Commenter la réponse de Malekal_morte-
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention - Modifié par Malekal_morte- le 3/02/2018 à 17:37
0
Utile
3
Ton ordinateur est infecté,

Tu as des programmes qui ont été installés à l'achat de l'ordinateur ou installés par la suite et qui sont pas forcément utiles.
Ils encombrent Windows et peuvent le ralentir.
Tu peux donc les désinstaller.
Vas dans le Panneau de configuration
puis programmes et fonctionnalités.
Désinstalle :

AVG PC TuneUp
CyberLink
McAfee WebAdvisor


Voici la correction à effectuer avec FRST. Tu peux t'aider de cette note explicative avec des captures d'écran.
Relance FRST puis sur ton clavier appuyer sur la touche CTRL + Y.
Le bloc-note va s'ouvrir, copie/colle ceci.

CreateRestorePoint:
CloseProcesses:
Task: {9EBD3650-026B-4C05-88BA-6EC578715898} - System32\Tasks\Eiphcoegepy => "msiexec" /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=WDCXWD10JPCX-24UE4T0_WD-WX41A1634D4734D47&d=20170413 /q <==== ATTENTION
Task: {7BBFC3CB-950A-4456-BC8F-7A3E0EC1A76F} - System32\Tasks\{626639A8-D5CD-8E03-CA82-B94803DD74A7} => C:\ProgramData\{F9B98E89-4E12-3922-683C-0FD166536FAD}\92A0197A-250B-AED1-750F-120F22C607C2.exe <==== ATTENTION
C:\ProgramData\{F9B98E89-4E12-3922-683C-0FD166536FAD}
Task: {4D9A8A42-7259-4A15-AEDC-428897D3C3E7} - System32\Tasks\{497B5B7F-FED0-ECD4-E26E-32DF6D6B0FF1} => C:\ProgramData\{80F0B79A-375B-0031-BA93-4A7D8D08E64A}\07DC92C1-B077-256A-AD31-8EAC155C2585.exe <==== ATTENTION
C:\ProgramData\{80F0B79A-375B-0031-BA93-4A7D8D08E64A}
Task: {DAA4DB76-B308-43ED-A21B-5EB3255ACD95} - System32\Tasks\{7D787F47-090B-050E-0A11-78090879110E}
Hosts:
EmptyTemp:
RemoveProxy:
Reboot:


Enregistre le contenu par le menu fichier puis enregistrer.

Ferme le bloc-note, retourne sur FRST et clique sur le bouton "Corriger / Fix"
Un redémarrage sera peut-être nécessaire et automatique.
Un fichier texte apparaît, copie/colle le contenu ici dans un nouveau message.

Redémarre l'ordinateur.

Télécharge et installe MBAM. La version gratuite permet de nettoyer ( décoche bien la proposition d'essai de la version Premium à la fin de l'installation ) :

Mettre à jour MBAM à jour puis lancer une analyse.
A la fin du scan, clique sur "Mettre en quarantaine" en bas à droite.
Redémarrer l'ordinateur si nécessaire puis relancer Malwarebytes.

Vas chercher le rapport dans l'onglet "Compte-Rendus".
A gauche "Compte Rendus d'analyses", double-clique sur l'examen dans la liste.
Puis en bas "Exporter fichier texte", enregistre sur le bureau.
Va sur https://pjjoint.malekal.com/, clic sur Parcourir, vas chercher le rapprot Malwarebytes engistré.
Clique sur "Envoyer". Dans un nouveau message ici en réponse, donne le lien pjjoint afin de pouvoir consulter le rapport.


leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 19:16
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention > leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 20:15
ok passe à MBAM.
leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 20:23
Commenter la réponse de Malekal_morte-
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention - 3 févr. 2018 à 20:25
0
Utile
2
ok tu notes un changement ou pas ?

Installe "Real Temp" ou "Coretemp" pour Monitorer la température de l'ordinateur.
Voir à combien monte la température de l'ordinateur lors de son utilisation. Celle-ci ne doit pas dépasser les 60 degrés Celsius. Si possible joindre au message une capture d'écran du logiciel.

leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 20:27
Ok Oui , Il est un peu plus réactif déjà !
leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 20:33
capture Coretemp (le lien Real Temp ne fonctionne pas = Not Found)
https://pjjoint.malekal.com/files.php?id=20180203_c9e9g13t11z15
Commenter la réponse de Malekal_morte-
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention - 3 févr. 2018 à 20:33
0
Utile
1
ok je pense qu'on est au bout =)
leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 20:39
super merci beaucoup !
Commenter la réponse de Malekal_morte-
Malekal_morte- 146989 Messages postés mercredi 17 mai 2006Date d'inscriptionModérateurStatut 17 février 2018 Dernière intervention - 3 févr. 2018 à 20:43
0
Utile
1
de rien =)


Supprime le dossier C:\FRST


Quelques conseils :

Pour ne plus te faire avoir.
A lire - Programmes parasites / PUPs : Dossier Adwares/PUPs : programmes indésirables et parasites
(Surtout active les détections LPIs pour détecter les programmes parasites et publicitaires)



leolouislou 8 Messages postés jeudi 1 février 2018Date d'inscription 3 février 2018 Dernière intervention - 3 févr. 2018 à 21:01
Merci bonne soirée
Commenter la réponse de Malekal_morte-