API tools faq
paste
ChaotiCc

Untitled

ChaotiCc
Mar 24th, 2013
87
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 27.96 KB | None | 0 0
raw download clone embed print report
  1. Rapport de ZHPDiag v2013.3.24.78 par Nicolas Coolman, Update du 24/03/2013
  2. Run by Pierre-Louis at 24/03/2013 11:26:50
  3. Windows 7 Business Edition, 64-bit Service Pack 1 (Build 7601)
  4. State : Version à jour.
  5. High Elevated Privileges : OK
  6. UAC : Activate by user
  7.  
  8. Boot mode: Normal (Normal boot)
  9. Logged in as Administrator
  10.  
  11.  
  12. ---\\ Web Browser
  13. MSIE: Internet Explorer v10.0.9200.16521
  14. MFIE: Mozilla Firefox 16.0.2 v16.0.2
  15. OBIE: Safari v5.34.57.2
  16.  
  17. ---\\ Processus lancés
  18. [MD5.8C9231025FAF86B78906B6C847531FFB] - (.ASUSTeK Computer Inc. - ASUS Routine Controller.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2935424] [PID.2064]
  19. [MD5.39BEFB9F1D770CAAEB9D9B31AE41FC7C] - (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\steam.exe [1632680] [PID.2552]
  20. [MD5.3D710201E462BF75843CFDF7EA83928B] - (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe [19357112] [PID.3064]
  21. [MD5.4458989C34FA84B5A75DD3ABCFBE786A] - (.Pas de propriétaire - Pando Media Booster.) -- C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624] [PID.3612]
  22. [MD5.497F27E279C0F921E2130BB89C1CB5CA] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664] [PID.3244]
  23. [MD5.58C27029A6BD35FD26B5949080FC8708] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe [10220896] [PID.3280]
  24. [MD5.215A1B2BFFFE12452D93E067C49A5715] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648] [PID.4264]
  25. [MD5.8D7D6DF429B7D3CAC942FC5822B99DC8] - (.Xfire Inc. - Xfire.) -- C:\Program Files (x86)\Xfire\Xfire.exe [3560832] [PID.4872]
  26. [MD5.9F2C250F5FAC85A874CE161AA43F6835] - (.Pas de propriétaire - ESL Wire In-Game Helper.) -- C:\Program Files\EslWire\inGame32.exe [24480] [PID.2772]
  27. [MD5.3F188126510FA73A469F42DE42252937] - (.ASUSTeK Computer Inc. - AI Suite II.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe [1504640] [PID.344]
  28. [MD5.1886DA4ADB90A186E52674FC3A8AFE98] - (.ASUSTeK Computer Inc. - AlertHelper.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe [1112704] [PID.6652]
  29. [MD5.B95AC0CDB8F068F0C024CD344B354298] - (.Google Inc. - Google Chrome.) -- C:\Users\Pierre-Louis\AppData\Local\Google\Chrome\Application\chrome.exe [1274320] [PID.4844]
  30. [MD5.C0E392910782C2BB9A28C8538CC1E1A1] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240] [PID.7412]
  31. [MD5.A43766DD166FF32CAC42D6BED786340D] - (.ASUSTeK Computer Inc. - AsAutoHide.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsAPHider\AsAPHider.exe [354944] [PID.7944]
  32. [MD5.9747A241A357C5846DF23B899C2E6CA9] - (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files (x86)\Glary Utilities\Integrator.exe [500512] [PID.7608]
  33. [MD5.EC4961D7E0F6ACEF4E8446E062048D88] - (...) -- C:\Users\Pierre-Louis\Downloads\adwcleaner.exe [609993] [PID.7884]
  34. [MD5.20454822EC195F460A60B21E20CF18BD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [5977088] [PID.4488]
  35. [MD5.B1EA9681502EE57F87DB71D726288A5B] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1868]
  36. [MD5.31E2470E61D5A390405BA41C279D8446] - (...) -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736] [PID.2056]
  37. [MD5.0466B91EE5767A769E9F8EDB8EF94DDB] - (.ASUSTeK Computer Inc. - Pas de description.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936] [PID.2204]
  38. [MD5.AD8947D621FDCA48F1F39F4624B60AA1] - (.ASUSTeK Computer Inc. - AsSysCtr Application.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe [149120] [PID.2260]
  39. [MD5.55B8384F53CF6405A7729F1CECEB0FA0] - (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) -- C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe [324608] [PID.2284]
  40. [MD5.78ABBE558F57144047F10A0F50FE4B2F] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720] [PID.2528]
  41. [MD5.205E1B699FD3F2F9B036EEA2EC30C620] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.2724]
  42. [MD5.23E3C83DFF7B09A97B01A85ED8A44478] - (.Skype Technologies S.A. - Skype C2C Service.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3289208] [PID.2776]
  43. [MD5.6B1B2F8D62D606B200C2072564090104] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [3560288] [PID.2888]
  44. [MD5.3346201D0BA2E631C6D6D43ED8CB7E08] - (.TeamViewer GmbH - TeamViewer 8.) -- C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe [185696] [PID.212]
  45. [MD5.96C52CF44E4C8A9837B6B8E3EBDA0B87] - (.Valve Corporation - Steam Client Service (buildbot_winslave04_s.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [543656] [PID.5384]
  46. [MD5.777788D9B63CCEEEF2DB353BA4EDD454] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [14904] [PID.4260]
  47. [MD5.2C24DC448DBE8DB9BE1441B824C57E79] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277824] [PID.5672]
  48. [MD5.7AAD86CEABAB0E83605B2FD4BB5D5A34] - (.NVIDIA Corporation - NVIDIA Settings Update Manager.) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [1266464] [PID.3436]
  49. [MD5.E1A119AD21F5AFE22EB516C549306D3D] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [365376] [PID.556]
  50. ~ Processes Running: Scanned in 00mn 00s
  51.  
  52.  
  53.  
  54. ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
  55. C:\Users\Pierre-Louis\AppData\Local\Google\Chrome\User Data\Default\Preferences
  56. G1 - GCS: Preference [User Data\Default] None
  57. ~ Google Browser: Scanned in 00mn 00s
  58.  
  59.  
  60.  
  61. ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
  62. C:\Users\Pierre-Louis\AppData\Roaming\Mozilla\Firefox\Profiles\oi3dn7v4.default\prefs.js
  63. C:\Users\Pierre-Louis\AppData\Roaming\Mozilla\Firefox\Profiles\oi3dn7v4.default\user.js
  64. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazondotcom.xml
  65. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml
  66. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay.xml
  67. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml
  68. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\twitter.xml
  69. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia.xml
  70. M3 - MFPP: Plugins - [Pierre-Louis] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo.xml
  71. P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll
  72. P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com # win64 # 6.5.1.1.) -- C:\Program Files\ma-config.com\x64\nphardwaredetection.dll
  73. P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Pierre-Louis\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
  74. P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Pierre-Louis\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
  75. P2 - FPN: [HKCU] [pandonetworks.com/PandoWebPlugin] - (.Pando Networks - Pando Web Plugin.) -- C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
  76. P2 - FPN: [HKCU] [ubisoft.com/uplaypc] - (.Ubisoft - Uplay PC Plugin.) -- C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
  77. ~ Firefox Browser: Scanned in 00mn 00s
  78.  
  79.  
  80.  
  81. ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
  82. R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
  83. R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
  84. R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
  85. R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
  86. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
  87. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
  88. R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
  89. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
  90. R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
  91. R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
  92. R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
  93. R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 0
  94. ~ IE Browser: Scanned in 00mn 00s
  95.  
  96.  
  97.  
  98. ---\\ Internet Explorer, Proxy Management (R5)
  99. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
  100. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
  101. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
  102. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
  103. R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
  104. ~ Proxy management: Scanned in 00mn 00s
  105.  
  106.  
  107.  
  108. ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
  109. F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
  110. F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
  111. F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
  112. ~ Keys: Scanned in 00mn 00s
  113.  
  114.  
  115.  
  116. ---\\ Browser Helper Objects de navigateur (O2)
  117. O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  118. O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
  119. O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  120. O2 - BHO: SkypeIEPluginBHO [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype Click to Call for Internet Explorer.) -- C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
  121. O2 - BHO: Logitech SetPoint [64Bits] - {AF949550-9094-4807-95EC-D1C317803333} . (.Logitech, Inc. - Logitech SetPoint.) -- C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll
  122. O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
  123. O2 - BHO: PricePeep [64Bits] - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} . (.PricePeep - PricePeep.) -- C:\Program Files (x86)\PricePeep\pricepeep.dll
  124. ~ BHO: Scanned in 00mn 00s
  125.  
  126.  
  127.  
  128. ---\\ Applications démarrées par registre & par dossier (O4)
  129. O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Realtek HD Audio Manager.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
  130. O4 - HKLM\..\Run: [RtHDVBg_DTS] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
  131. O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe
  132. O4 - HKLM\..\Run: [EvtMgr6] . (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
  133. O4 - HKLM\..\Run: [Logitech Download Assistant] . (.Logitech, Inc. - Logitech Download Assistant.) -- C:\Windows\System32\LogiLDA.dll
  134. O4 - HKLM\..\Run: [OODefragTray] . (.O&O Software GmbH - O&O Defrag TrayIcon (x64).) -- C:\Program Files\OO Software\Defrag\oodtray.exe
  135. O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper (buildbot_winslav.) -- C:\Program Files (x86)\Steam\Steam.exe
  136. O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files\Windows Sidebar\sidebar.exe
  137. O4 - HKCU\..\Run: [GoogleDriveSync] . (.Google - Google Drive.) -- C:\Program Files (x86)\Google\Drive\googledrivesync.exe
  138. O4 - HKCU\..\Run: [Wunderlist] . (.6 Wunderkinder GmbH - Wunderlist 2.) -- C:\Users\Pierre-Louis\AppData\Local\Apps\2.0\17YZB7OD.Q5T\7WNQG0M3.RD8\wund..tion_45ec1bcecca77a53_0002.0000_cfc3f94db0ac68af\Wunderlist.exe
  139. O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Google Installer.) -- C:\Users\Pierre-Louis\AppData\Local\Google\Update\GoogleUpdate.exe
  140. O4 - HKCU\..\Run: [NetLimiter] . (.Locktime Software - NetLimiter 3 Client.) -- C:\Program Files\NetLimiter 3\NLClientApp.exe
  141. O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
  142. O4 - HKCU\..\Run: [ESL Wire] . (.Turtle Entertainment GmbH - ESL Wire Gaming Client.) -- C:\Program Files\EslWire\wire.exe
  143. O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  144. O4 - HKLM\..\Wow6432Node\Run: [Startup Defender] . (.Zards Software - Startup Defender.) -- C:\Windows\startupdefender.exe
  145. O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - Delayed launcher.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
  146. O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
  147. O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
  148. O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
  149. O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
  150. O4 - HKUS\S-1-5-21-1240532077-1297433831-3247876549-1006\..\Run: [Sidebar] . (.Microsoft Corporation - Windows Desktop Gadgets.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
  151. O4 - HKUS\S-1-5-21-1240532077-1297433831-3247876549-1006\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
  152. ~ Application: Scanned in 00mn 00s
  153.  
  154.  
  155.  
  156. ---\\ Autres liens utilisateurs (O4)
  157. O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Private Character Editor.) -- C:\Windows\system32\eudcedit.exe
  158. O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
  159. O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\Pierre-Louis\AppData\Local\Google\Chrome\Application\chrome.exe
  160. O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Windows Explorer.) -- C:\Windows\explorer.exe
  161. O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  162. O4 - GS\Programs: PlanetSide 2 PSG.lnk . (.Sony Online Entertainment - Sony Online Entertainment LaunchPad.) -- C:\Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2 PSG\LaunchPad.exe
  163. O4 - GS\QuickLaunch: Guitar Pro 6.lnk . (...) -- C:\Program Files (x86)\Guitar Pro 6\GuitarPro.exe
  164. O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  165. O4 - GS\QuickLaunch: Tunngle beta.lnk . (.Tunngle.net GmbH - Tunngle GUI.) -- C:\Program Files (x86)\Tunngle\Tunngle.exe
  166. O4 - GS\QuickLaunch: µTorrent.lnk . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
  167. O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  168. O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
  169. O4 - GS\Desktop: ArgoUML.lnk . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\javaw.exe
  170. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Arma 2 DayZ Mod.url . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Pierre-Louis\Desktop\Arma 2 DayZ Mod.url
  171. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Arma 2 Operation Arrowhead.url . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Pierre-Louis\Desktop\Arma 2 Operation Arrowhead.url
  172. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\ARMA 2.url . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\Pierre-Louis\Desktop\ARMA 2.url
  173. O4 - GS\Desktop: Assassin's Creed III.lnk . (.Ubisoft - Autopatch system.) -- C:\Program Files (x86)\Ubisoft\Assassin's Creed III\AssassinsCreed3.exe
  174. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Borderlands 2.url . (.Ubisoft - Autopatch system.) -- C:\Users\Pierre-Louis\Desktop\Borderlands 2.url
  175. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Braid.url . (.Ubisoft - Autopatch system.) -- C:\Users\Pierre-Louis\Desktop\Braid.url
  176. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Chivalry Medieval Warfare.url . (...) -- C:\Users\Pierre-Louis\Desktop\Chivalry Medieval Warfare.url
  177. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Company of Heroes Opposing Fronts.url . (...) -- C:\Users\Pierre-Louis\Desktop\Company of Heroes Opposing Fronts.url
  178. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Company of Heroes Tales of Valor.url . (...) -- C:\Users\Pierre-Louis\Desktop\Company of Heroes Tales of Valor.url
  179. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Company of Heroes.url . (...) -- C:\Users\Pierre-Louis\Desktop\Company of Heroes.url
  180. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Counter-Strike Global Offensive.url . (...) -- C:\Users\Pierre-Louis\Desktop\Counter-Strike Global Offensive.url
  181. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Darksiders.url . (...) -- C:\Users\Pierre-Louis\Desktop\Darksiders.url
  182. O4 - GS\Desktop: demos - Shortcut.lnk . (...) -- C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo\demos
  183. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Deus Ex Human Revolution.url . (...) -- C:\Users\Pierre-Louis\Desktop\Deus Ex Human Revolution.url
  184. O4 - GS\Desktop: Glary Utilities.lnk . (.Glarysoft Ltd - Glary Utilities.) -- C:\Program Files (x86)\Glary Utilities\Integrator.exe
  185. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Grand Theft Auto IV.url . (.Glarysoft Ltd - Glary Utilities.) -- C:\Users\Pierre-Louis\Desktop\Grand Theft Auto IV.url
  186. O4 - GS\Desktop: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
  187. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Killing Floor.url . (.Microsoft Corporation - Internet Explorer.) -- C:\Users\Pierre-Louis\Desktop\Killing Floor.url
  188. O4 - GS\Desktop: League of Legends.lnk . (...) -- C:\Riot Games\League of Legends\lol.launcher.exe
  189. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Left 4 Dead 2.url . (...) -- C:\Users\Pierre-Louis\Desktop\Left 4 Dead 2.url
  190. O4 - GS\Desktop: MagicDraw UML.lnk . (...) -- C:\Program Files (x86)\MagicDraw UML 16.5\bin\mduml.exe
  191. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Mass Effect 2.url . (...) -- C:\Users\Pierre-Louis\Desktop\Mass Effect 2.url
  192. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Mass Effect.url . (...) -- C:\Users\Pierre-Louis\Desktop\Mass Effect.url
  193. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Metro 2033.url . (...) -- C:\Users\Pierre-Louis\Desktop\Metro 2033.url
  194. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Mirror's Edge.url . (...) -- C:\Users\Pierre-Louis\Desktop\Mirror's Edge.url
  195. O4 - GS\Desktop: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  196. O4 - GS\Desktop: MSI Afterburner.lnk . (...) -- C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
  197. O4 - GS\Desktop: Music - Shortcut.lnk . (...) -- C:\Users\Pierre-Louis\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms
  198. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Natural Selection 2.url . (...) -- C:\Users\Pierre-Louis\Desktop\Natural Selection 2.url
  199. O4 - GS\Desktop: OCCT.lnk . (.OCCT - Ocbase - Adrien Mercier - OCCT.) -- C:\Program Files (x86)\OCCTPT\OCCT.exe
  200. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Operation Flashpoint Dragon Rising.url . (.OCCT - Ocbase - Adrien Mercier - OCCT.) -- C:\Users\Pierre-Louis\Desktop\Operation Flashpoint Dragon Rising.url
  201. O4 - GS\Desktop: Origin.lnk . (.Electronic Arts - Origin.) -- C:\Program Files (x86)\Origin\Origin.exe
  202. O4 - GS\Desktop: PlanetSide 2 PSG.lnk . (.Sony Online Entertainment - Sony Online Entertainment LaunchPad.) -- C:\Users\Public\Sony Online Entertainment\Installed Games\PlanetSide 2 PSG\LaunchPad.exe
  203. O4 - GS\Desktop: Play ManiaPlanet.lnk . (...) -- C:\Program Files (x86)\ManiaPlanet\ManiaPlanetLauncher.exe
  204. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Portal 2.url . (...) -- C:\Users\Pierre-Louis\Desktop\Portal 2.url
  205. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\R.U.S.E.url . (...) -- C:\Users\Pierre-Louis\Desktop\R.U.S.E.url
  206. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Red Faction Armageddon.url . (...) -- C:\Users\Pierre-Louis\Desktop\Red Faction Armageddon.url
  207. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\S.T.A.L.K.E.R. Shadow of Chernobyl.url . (...) -- C:\Users\Pierre-Louis\Desktop\S.T.A.L.K.E.R. Shadow of Chernobyl.url
  208. O4 - GS\Desktop: Safari.lnk . (...) -- C:\Windows\Installer\{C779648B-410E-4BBA-B75B-5815BCEFE71D}\SafariIco.exe
  209. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Saints Row The Third.url . (...) -- C:\Users\Pierre-Louis\Desktop\Saints Row The Third.url
  210. O4 - GS\Desktop: Secure Download Manager.lnk . (...) -- C:\Users\Pierre-Louis\AppData\Roaming\Microsoft\Installer\{B40B74C3-6627-491A-9093-0C5E1F2FDCBB}\_ECCAE3900910FFC97F52B3.exe
  211. O4 - GS\Desktop: Sins of a Solar Empire.lnk . (.Stardock Entertainment, Inc. - Sins of a Solar Empire Autorun/Launcher.) -- C:\Program Files (x86)\Stardock Games\Sins of a Solar Empire\SINS_Launcher.exe
  212. O4 - GS\Desktop: TERA.lnk . (.Solid State Networks - TERA.) -- C:\Program Files (x86)\TERA\TERA-Launcher.exe
  213. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Titan Quest.url . (...) -- C:\Users\Pierre-Louis\Desktop\Titan Quest.url
  214. O4 - Global Startup: C:\Users\Pierre-Louis\Desktop\Unreal Tournament 3 Black Edition.url . (...) -- C:\Users\Pierre-Louis\Desktop\Unreal Tournament 3 Black Edition.url
  215. O4 - GS\Desktop: Windows 7 USB DVD Download Tool.lnk . (.Microsoft Corporation - Microsoft Store ISO Backup Tool.) -- C:\Users\Pierre-Louis\AppData\Local\Apps\Windows 7 USB DVD Download Tool\Windows7-USB-DVD-Download-Tool.exe
  216. ~ Global Startup: Scanned in 00mn 00s
  217.  
  218.  
  219.  
  220. ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
  221. ~ IE Control Panel: 2 Legitimates Scanned in 00mn 00s
  222.  
  223.  
  224.  
  225. ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
  226. O9 - Extra button: Skype Click to Call [64Bits] - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- c:\program files (x86)\skype\toolbars\internet explorer x64\icon.ico
  227. ~ IE Extra Buttons: Scanned in 00mn 00s
  228.  
  229.  
  230.  
  231. ---\\ Winsock hijacker (Layered Service Provider) (O10)
  232. O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - E-mail Naming Shim Provider.) -- C:\Windows\system32\napinsp.dll
  233. O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
  234. O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - PNRP Name Space Provider.) -- C:\Windows\system32\pnrpnsp.dll
  235. O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Microsoft Windows Sockets 2.0 Service Provider.) -- C:\Windows\system32\mswsock.dll
  236. ~ Winsock: 16 Legitimates Scanned in 00mn 00s
  237.  
  238.  
  239.  
  240. ---\\ Modification Domaine/Adresses DNS (O17)
  241. O17 - HKLM\System\CCS\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: NameServer = 8.8.4.4,8.8.8.8
  242. O17 - HKLM\System\CCS\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: DhcpNameServer = 192.168.1.1
  243. O17 - HKLM\System\CS1\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: NameServer = 8.8.4.4,8.8.8.8
  244. O17 - HKLM\System\CS1\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: DhcpNameServer = 192.168.1.1
  245. O17 - HKLM\System\CS2\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: NameServer = 8.8.4.4,8.8.8.8
  246. O17 - HKLM\System\CS2\Services\Tcpip\..\{5D6420E0-6663-4728-9329-2BBAD1385BF9}: DhcpNameServer = 192.168.1.1
  247. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  248. ~ Domain: Scanned in 00mn 00s
  249.  
  250.  
  251.  
  252. ---\\ Protocole additionnel (O18)
  253. O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Microsoft (R) HTML Viewer.) -- C:\Windows\System32\mshtml.dll
  254. O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
  255. ~ Protocole Additionnel: Scanned in 00mn 00s
  256.  
  257.  
  258.  
  259. ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
  260. O20 - Winlogon Notify: LBTWlgn . (.Logitech, Inc. - Logitech Bluetooth Service.) -- c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
  261. ~ Winlogon: Scanned in 00mn 00s
  262.  
  263.  
  264.  
  265. ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
  266. ~ SSODL: 2 Legitimates Scanned in 00mn 00s
  267.  
  268.  
  269.  
  270. ---\\ Liste des services NT non Microsoft et non désactivés (O23)
  271. O23 - Service: ASUS Com Service (asComSvc) . (...) - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
  272. O23 - Service: ASUS System Control Service (AsSysCtrlService) . (.ASUSTeK Computer Inc. - AsSysCtr Application.) - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
  273. O23 - Service: AsusFanControlService (AsusFanControlService) . (.ASUSTeK Computer Inc. - ASUS Motherboard Fan Control Service.) - C:\Program Files (x86)\ASUS\AsusFanControlService\1.01.08\AsusFanControlService.exe
  274. O23 - Service: DTSAudioSvc (DTSAudioSvc) . (.DTS, Inc - DTS Audio Service.) - C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
  275. O23 - Service: ESL Wire Helper Service (EslWireHelper) . (...) - C:\Program Files\EslWire\service\WireHelperSvc.exe
  276. O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  277. O23 - Service: NetLimiter 3 Service (nlsvc) . (.Locktime Software - NetLimiter 3 Service.) - C:\Program Files\NetLimiter 3\nlsvc.exe
  278. O23 - Service: O&O Defrag (OODefragAgent) . (.O&O Software GmbH - O&O Defrag Agent (x64).) - C:\Program Files\OO Software\Defrag\oodag.exe
  279. O23 - Service: (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)
  280. ~ Services: 44 Legitimates Scanned in 00mn 02s
  281.  
  282.  
  283.  
  284. ---\\ Enumération Active Desktop & MHTML Editor (O24)
  285. ~ Desktop Component: 2 Legitimates Scanned in 00mn 00s
  286.  
  287.  
  288.  
  289. End of the scan (288 lines in 00mn 02s)(0)
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!