Bibou Le Forum
Portail sur la sécurité
 
PortailAccueilRechercherS'enregistrerMembresGroupesConnexion

Partagez | 
 

 (RESOLU) probleme SVchoste.exe

Voir le sujet précédent Voir le sujet suivant Aller en bas 
AuteurMessage
marmor1001
bibounet
bibounet


Masculin
Nombre de messages : 8
Age : 38
Localisation : france rennes 35000
Date d'inscription : 07/06/2008

MessageSujet: (RESOLU) probleme SVchoste.exe   Jeu 10 Juil 2014 - 23:29

Bonjour et merci d avance de votre aide.
je suis sous Windows 7 , j ai voullu telecharger une musique , que je n ai jamais recu et depuis Avast arrete pas de m envoye des message consernant SVchoste.exe , j ai regarde sur comment sa marche pour esaye de suprime et sa n a pas fonctionne , alors je me tourne vers vous , dans l espoire que vous avez une solution , voici les rapport que j ai :

ZHPdiag http://cjoint.com/?DGkxgNVqKiC

OTL :

OTL logfile created on: 10/07/2014 23:10:45 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\MARMOR\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17126)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,49 Gb Total Physical Memory | 2,49 Gb Available Physical Memory | 71,38% Memory free
6,98 Gb Paging File | 5,80 Gb Available in Paging File | 83,13% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 338,74 Gb Free Space | 72,74% Space Free | Partition Type: NTFS
Drive G: | 465,76 Gb Total Space | 389,06 Gb Free Space | 83,53% Space Free | Partition Type: NTFS

Computer Name: MARMOR-PC | User Name: MARMOR | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/07/10 23:08:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MARMOR\Desktop\OTL.exe
PRC - [2014/07/04 18:45:37 | 003,890,208 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/07/02 11:47:16 | 000,861,640 | ---- | M] (PC Utilities Software Limited) -- C:\Program Files\Optimizer Pro\OptProReminder.exe
PRC - [2014/07/02 11:47:16 | 000,421,832 | ---- | M] (PC Utilities Software Limited) -- C:\Program Files\Optimizer Pro\OptProSmartScan.exe
PRC - [2014/05/29 18:52:01 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/03/04 14:34:44 | 001,821,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014/03/04 14:34:44 | 000,943,048 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014/03/04 13:32:56 | 000,411,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
PRC - [2014/02/05 11:32:47 | 002,234,144 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014/02/05 11:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014/02/05 11:32:31 | 015,904,544 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2014/01/10 07:26:44 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2013/12/18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/11/21 09:31:44 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/11/21 09:31:44 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2013/09/16 21:19:26 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/09/16 21:19:22 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013/08/27 15:22:40 | 000,595,968 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\iCLS Client\HeciServer.exe
PRC - [2013/08/02 02:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/03/17 14:33:55 | 000,157,696 | ---- | M] () -- C:\Program Files\IpWrapper\nssm.exe
PRC - [2012/11/23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/14 03:14:24 | 000,157,184 | ---- | M] (Microsoft Corporation) -- c:\program files\windows defender\MpCmdRun.exe


========== Modules (No Company Name) ==========

MOD - [2014/02/27 20:20:26 | 001,091,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\0bedc417d3c5dcb1c9a5f15dd733c556\System.ServiceModel.Web.ni.dll
MOD - [2014/02/27 20:19:47 | 002,997,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\1e5e19d119e04b93da3d45153abd60fd\System.IdentityModel.ni.dll
MOD - [2014/02/27 20:19:45 | 019,693,056 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\24bf0c88c0465485f4b842df043b3f45\System.ServiceModel.ni.dll
MOD - [2014/02/26 21:53:15 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\f4f6ee0df2aa4189bf36e6335cb92761\System.Windows.Forms.ni.dll
MOD - [2014/02/26 21:53:15 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll
MOD - [2014/02/26 21:53:10 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5cd2aee5e7c07227c694d89219688ab3\System.Drawing.ni.dll
MOD - [2014/02/26 21:53:09 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\78652b7fa68ee058bff6a118c657f565\SMDiagnostics.ni.dll
MOD - [2014/02/26 21:53:08 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll
MOD - [2014/02/26 21:53:08 | 000,806,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\34b53ecafa1d7ccc7ca961d722b5d983\System.ServiceModel.Internals.ni.dll
MOD - [2014/02/26 21:53:07 | 007,662,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll
MOD - [2014/02/26 21:53:07 | 002,825,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f6d7bb59f318c130d68816a89335d05e\System.Runtime.Serialization.ni.dll
MOD - [2014/02/26 21:53:04 | 010,060,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll
MOD - [2014/02/26 21:53:04 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll
MOD - [2014/02/26 21:52:59 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
MOD - [2014/01/10 07:28:18 | 000,100,688 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2014/01/10 07:26:44 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2013/12/09 17:49:24 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/09/05 01:14:10 | 004,300,456 | ---- | M] () -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf


========== Services (SafeList) ==========

SRV - [2014/07/09 04:55:12 | 000,262,320 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/05/30 10:28:30 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/05/29 19:36:52 | 000,543,424 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014/05/29 18:52:01 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/03/04 13:32:56 | 000,411,936 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) [Auto | Running] -- C:\Program Files\ma-config.com\MaConfigAgent.exe -- (MaConfigAgent)
SRV - [2014/02/05 11:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014/02/05 11:32:31 | 015,904,544 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2013/12/19 01:41:02 | 030,814,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2013/12/18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/11/21 09:31:44 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2013/10/23 09:15:08 | 000,172,192 | ---- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/09/16 21:19:26 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/09/16 21:19:22 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/08/27 15:23:50 | 000,642,520 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV - [2013/08/27 15:22:40 | 000,595,968 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/03/17 14:33:55 | 000,157,696 | ---- | M] () [Auto | Paused] -- C:\Program Files\IpWrapper\nssm.exe -- (IpWrapper)
SRV - [2012/02/18 21:38:06 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/07/14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007/05/31 17:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 17:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2003/01/17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\papycpu2.sys -- (papycpu2)
SRV - [2003/01/17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown] -- C:\Windows\System32\drivers\papyjoy.sys -- (papyjoy)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\RTL8192su.sys -- (RTL8192su)
DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\MARMOR\AppData\Local\Temp\mbr.sys -- (mbr)
DRV - [2014/05/29 18:52:30 | 000,777,488 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014/05/29 18:52:30 | 000,411,680 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/05/29 18:52:30 | 000,068,312 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswstm.sys -- (aswStm)
DRV - [2014/05/29 18:52:03 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/05/29 18:52:03 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014/05/29 18:52:03 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/05/29 18:52:03 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/05/29 18:52:03 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014/03/04 16:29:02 | 010,523,480 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014/02/24 17:33:46 | 000,016,160 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys -- (ma-config_x86)
DRV - [2013/12/27 20:42:24 | 000,034,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2013/12/11 02:14:26 | 000,065,216 | ---- | M] (Razer, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\RzFilter.sys -- (RzFilter)
DRV - [2013/11/28 15:38:19 | 000,162,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2013/11/21 09:31:26 | 000,489,832 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iaStorA.sys -- (iaStorA)
DRV - [2013/11/21 09:31:26 | 000,024,424 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\iaStorF.sys -- (iaStorF)
DRV - [2013/09/16 21:19:22 | 000,085,464 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TeeDriver.sys -- (MEI)
DRV - [2013/09/06 01:46:44 | 000,288,552 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mvs91xx.sys -- (mvs91xx)
DRV - [2013/08/16 16:37:12 | 000,337,152 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\asmtxhci.sys -- (asmtxhci)
DRV - [2013/08/16 16:37:12 | 000,111,360 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\asmthub3.sys -- (asmthub3)
DRV - [2013/01/06 09:31:12 | 000,121,600 | ---- | M] (WinISO.com) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\WinisoCDBus.sys -- (WinisoCDBus)
DRV - [2010/11/20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2003/01/17 03:59:56 | 000,001,984 | ---- | M] () [Unknown (-1) | Unknown (-1) | Running] -- C:\Windows\System32\drivers\papycpu2.sys -- (papycpu2)
DRV - [2003/01/17 03:59:56 | 000,001,856 | ---- | M] () [Unknown (-1) | Unknown (-1) | Running] -- C:\Windows\System32\drivers\papyjoy.sys -- (papyjoy)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://istart.webssearches.com/web/?type=ds&ts=1405023485&from=wpc&uid=ST500DM002-1BD142_Z2AJD562XXXXZ2AJD562&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)


[2014/05/29 13:14:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MARMOR\AppData\Roaming\mozilla\Firefox\Profiles\extensions
[2013/05/07 09:04:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MARMOR\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions
[2012/07/23 13:51:51 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Users\MARMOR\AppData\Roaming\mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com
[2014/05/29 13:14:46 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MARMOR\AppData\Roaming\mozilla\Firefox\Profiles\0\extensions
[2012/07/02 21:52:15 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [IMSS] C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe (Intel Corporation)
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [ShadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [tuto4pc_fr_23]  File not found
O4 - HKCU..\Run: [Optimizer Pro] C:\Program Files\Optimizer Pro\OptProLauncher.exe (PC Utilities Software Limited)
O4 - HKLM..\RunOnce: [B Register C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax] "C:\Windows\system32\rundll32.exe" "C:\Program Files\DivX\DivX Transcode Engine\plugins\mc_demux_mp2_ds.ax",DllRegisterServer File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra 'Tools' menuitem : Console Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: PokerStars.fr - {90EAE591-7E7E-434a-8E28-ECFD00071806} - C:\Program Files\PokerStars.FR\PokerStarsUpdate.exe (PokerStars)
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{72EFB38F-C16F-4309-A5B0-019F478CC46F}: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{72EFB38F-C16F-4309-A5B0-019F478CC46F}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{806C026E-8F60-4D30-8FE7-B2BF7D5D11B5}: DhcpNameServer = 109.0.66.20 109.0.66.10
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/02/22 00:54:19 | 000,000,000 | -H-D | M] - G:\autorun -- [ NTFS ]
O32 - AutoRun File - [2010/08/14 03:14:44 | 000,000,036 | RH-- | M] () - G:\autorun.inf -- [ NTFS ]
O33 - MountPoints2\{01377035-5988-11e1-bb5f-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{01377035-5988-11e1-bb5f-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Bin\assetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/07/10 23:08:04 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\MARMOR\Desktop\OTL.exe
[2014/07/10 22:54:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2014/07/10 22:54:12 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
[2014/07/10 22:54:12 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Roaming\ZHP
[2014/07/10 22:34:45 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\Documents\Optimizer Pro
[2014/07/10 22:34:44 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Roaming\Optimizer Pro
[2014/07/10 22:31:01 | 000,110,296 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/07/10 22:30:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/07/10 22:30:51 | 000,074,456 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys
[2014/07/10 22:30:50 | 000,051,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mwac.sys
[2014/07/10 22:30:50 | 000,023,256 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2014/07/10 22:30:50 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes Anti-Malware
[2014/07/10 22:29:13 | 017,292,760 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\MARMOR\Desktop\mbam-setup-2.0.2.1012.exe
[2014/07/10 22:19:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LiveSupport
[2014/07/10 22:19:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
[2014/07/10 22:19:26 | 000,000,000 | ---D | C] -- C:\Program Files\Optimizer Pro
[2014/07/10 22:18:51 | 000,000,000 | ---D | C] -- C:\Program Files\SupTab
[2014/07/10 22:01:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Adblocker
[2014/07/10 22:01:52 | 000,000,000 | ---D | C] -- C:\Program Files\Adblocker
[2014/07/10 21:55:37 | 000,000,000 | ---D | C] -- C:\Program Files\VauDixx
[2014/07/10 21:49:15 | 000,000,000 | ---D | C] -- C:\ProgramData\20ea0c2deb80f2f1
[2014/07/10 21:49:14 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Local\Torch
[2014/07/10 21:49:14 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Local\Comodo
[2014/07/10 21:49:14 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Local\Chromatic Browser
[2014/07/03 18:33:33 | 002,425,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014/07/03 18:33:33 | 000,045,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2014/07/03 18:33:27 | 000,581,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2014/07/03 18:33:27 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2014/07/03 18:33:27 | 000,036,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2014/07/03 18:33:16 | 000,179,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2014/07/03 18:33:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2014/06/29 13:13:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014/06/29 13:13:47 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2014/06/29 13:06:43 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Roaming\Audacity
[2014/06/27 19:17:03 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Local\SingularityViewer
[2014/06/27 19:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Singularity Viewer
[2014/06/27 19:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\Singularity
[2014/06/27 17:00:07 | 000,000,000 | ---D | C] -- C:\Program Files\Winamax Poker
[2014/06/14 03:00:17 | 000,000,000 | ---D | C] -- C:\Users\MARMOR\AppData\Local\Adobe
[2014/06/11 23:18:09 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/06/11 23:18:09 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014/06/11 23:18:08 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/06/11 23:18:08 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/06/11 23:18:08 | 000,368,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014/06/11 23:18:08 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/06/11 23:18:08 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/06/11 23:18:08 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/06/11 23:18:08 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/06/11 23:18:07 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/06/11 23:18:07 | 001,964,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/06/11 23:18:07 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/06/11 23:18:07 | 000,595,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/06/11 23:18:07 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/06/11 23:18:07 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/06/11 23:18:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/06/11 23:18:06 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/06/11 23:18:06 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014/06/11 23:18:05 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014/06/11 23:18:04 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/06/11 23:18:03 | 004,244,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/06/11 23:17:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2014/06/11 23:17:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2014/06/11 23:17:02 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014/06/11 23:17:02 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014/06/11 23:17:02 | 000,187,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/07/10 23:08:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MARMOR\Desktop\OTL.exe
[2014/07/10 23:04:35 | 000,029,952 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/10 23:04:35 | 000,029,952 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/10 23:02:39 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2014/07/10 22:55:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/07/10 22:54:13 | 000,001,937 | ---- | M] () -- C:\Users\MARMOR\Desktop\ZHPFix.lnk
[2014/07/10 22:54:13 | 000,001,810 | ---- | M] () -- C:\Users\MARMOR\Desktop\ZHPDiag.lnk
[2014/07/10 22:48:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/10 22:48:01 | 2810,093,568 | -HS- | M] () -- C:\hiberfil.sys
[2014/07/10 22:31:54 | 000,110,296 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/07/10 22:30:54 | 000,001,064 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/07/10 22:30:24 | 017,292,760 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\MARMOR\Desktop\mbam-setup-2.0.2.1012.exe
[2014/07/10 22:21:38 | 000,739,397 | ---- | M] () -- C:\Users\MARMOR\Desktop\OneClick2RP.exe
[2014/07/10 22:19:34 | 000,001,883 | ---- | M] () -- C:\Users\MARMOR\Desktop\LiveSupport.lnk
[2014/07/10 22:19:27 | 000,001,024 | ---- | M] () -- C:\Users\MARMOR\Desktop\Optimizer Pro.lnk
[2014/07/10 21:49:16 | 000,000,426 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2014/07/10 20:51:23 | 001,341,484 | ---- | M] () -- C:\Users\MARMOR\Desktop\sic.wav
[2014/07/10 20:29:45 | 000,014,057 | ---- | M] () -- C:\Users\MARMOR\Desktop\michael-jackson-xscape-2014-deluxe-edition.torrent
[2014/07/09 04:55:12 | 000,699,056 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014/07/09 04:55:12 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014/07/08 15:54:41 | 000,361,438 | ---- | M] () -- C:\Users\MARMOR\Desktop\mmmmmmm Si proche.png
[2014/06/29 13:13:54 | 000,001,028 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/06/27 19:16:58 | 000,001,207 | ---- | M] () -- C:\Users\Public\Desktop\Singularity Viewer.lnk
[2014/06/27 17:00:07 | 000,000,891 | ---- | M] () -- C:\Users\Public\Desktop\Winamax Poker.lnk
[2014/06/27 11:53:40 | 000,065,176 | ---- | M] () -- C:\Users\MARMOR\Desktop\ghe-3[1].jpg
[2014/06/26 20:17:59 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Second Life Viewer.lnk
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/07/10 23:02:39 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin
[2014/07/10 22:54:13 | 000,001,937 | ---- | C] () -- C:\Users\MARMOR\Desktop\ZHPFix.lnk
[2014/07/10 22:54:13 | 000,001,810 | ---- | C] () -- C:\Users\MARMOR\Desktop\ZHPDiag.lnk
[2014/07/10 22:30:54 | 000,001,064 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/07/10 22:21:37 | 000,739,397 | ---- | C] () -- C:\Users\MARMOR\Desktop\OneClick2RP.exe
[2014/07/10 22:19:34 | 000,001,883 | ---- | C] () -- C:\Users\MARMOR\Desktop\LiveSupport.lnk
[2014/07/10 22:19:27 | 000,001,024 | ---- | C] () -- C:\Users\MARMOR\Desktop\Optimizer Pro.lnk
[2014/07/10 21:49:16 | 000,000,426 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014/07/10 20:46:01 | 001,341,484 | ---- | C] () -- C:\Users\MARMOR\Desktop\sic.wav
[2014/07/10 20:29:44 | 000,014,057 | ---- | C] () -- C:\Users\MARMOR\Desktop\michael-jackson-xscape-2014-deluxe-edition.torrent
[2014/07/08 15:54:40 | 000,361,438 | ---- | C] () -- C:\Users\MARMOR\Desktop\mmmmmmm Si proche.png
[2014/06/29 13:13:54 | 000,001,028 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/06/27 19:16:58 | 000,001,207 | ---- | C] () -- C:\Users\Public\Desktop\Singularity Viewer.lnk
[2014/06/27 11:54:06 | 000,065,176 | ---- | C] () -- C:\Users\MARMOR\Desktop\ghe-3[1].jpg
[2014/05/29 18:52:06 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2013/07/20 12:19:27 | 000,001,856 | ---- | C] () -- C:\Windows\System32\drivers\papyjoy.sys
[2013/07/20 12:19:26 | 000,001,984 | ---- | C] () -- C:\Windows\System32\drivers\papycpu2.sys
[2013/07/20 12:15:00 | 000,000,019 | ---- | C] () -- C:\Windows\Sierra.ini
[2013/07/13 18:58:59 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2013/07/13 18:58:59 | 000,243,200 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2013/07/13 18:58:59 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
[2013/07/13 18:58:58 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2013/07/13 18:58:56 | 000,112,640 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2013/05/01 18:01:14 | 000,000,000 | ---- | C] () -- C:\ProgramData\25282139202054382a_c
[2013/03/21 11:10:53 | 000,180,632 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013/03/21 11:10:53 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2012/12/28 22:11:50 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/03/25 04:09:54 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/06/29 13:09:24 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\Audacity
[2013/12/09 18:52:51 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\AVAST Software
[2014/07/10 22:46:16 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\BitTorrent
[2012/04/18 08:20:04 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\Canneverbe Limited
[2013/07/23 11:50:23 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\Firestorm
[2012/11/29 17:36:12 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\fr.barrierepoker.air.D043989C8F5E91300BF71855036B28F854BB8613.1
[2012/02/17 21:13:32 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\GetRightToGo
[2013/03/17 14:33:43 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\npm
[2013/03/17 14:35:19 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\npm-cache
[2012/06/04 18:11:48 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\OpenOffice.org
[2014/07/10 22:34:44 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\Optimizer Pro
[2013/05/01 17:58:38 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\player
[2012/05/05 12:54:17 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\SecondLife
[2013/08/30 21:02:34 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\Sony
[2012/02/28 19:22:29 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\TuneUp Software
[2014/05/05 17:39:22 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\wam
[2014/05/05 17:39:22 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\wam.04351C371E530C3762CBA45FA283ED972DCDEFB6.1
[2013/12/03 20:53:21 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\wargaming.net
[2012/12/29 11:10:54 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\WinISO Computing
[2012/07/18 12:10:52 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\WPTFrance
[2014/07/10 23:02:54 | 000,000,000 | ---D | M] -- C:\Users\MARMOR\AppData\Roaming\ZHP

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 131 bytes -> C:\ProgramData\TEMP:373E1720

< End of report >
Revenir en haut Aller en bas
oskare68
Moderateurs (trices)
Moderateurs (trices)
avatar

Masculin
Nombre de messages : 2650
Age : 54
Localisation : France (Alsace)
Humeur : C'est selon...
Date d'inscription : 30/04/2010

MessageSujet: Re: (RESOLU) probleme SVchoste.exe   Sam 12 Juil 2014 - 11:01

Bjr Marmor1001

1) Commence par désinstaller Optimizer Pro via le panneau de config >>> programmes et fonctionnalités
2) -Téléchargez AdwCleaner (d'Xplode) sur votre bureau.  >>> http://general-changelog-team.fr/fr/outils/3-adwcleaner
   -Lancez le, cliquez sur [Nettoyage] puis patientez le temps du scan.
   -Une fois le scan fini, un rapport s'ouvrira.
3) Lance ZHPFix à partir du raccourci sur ton Bureau (si tu es sous Windows Vista ou Windows 7, fais le par un clic-droit.Copie les lignes suivantes en bleu (surligner et copier) :


Script ZHPFix
SysRestore
FirewallRAZ
EmptyFlash
EmptyTemp
EmptyPrefetch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1]   =>PUP.OptimizerPro^
[HKCU\Software\PartyFrance]   =>Casino.OnlineGames
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191}]   =>PUP.CrossRider
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011341191}]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191}]   =>PUP.CrossRider
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:tuto4pc_fr_23   =>PUP.AgenceExclusive^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Optimizer Pro   =>PUP.OptimizerPro^
C:\Program Files\Optimizer Pro   =>PUP.OptimizerPro^
C:\Program Files\SupTab   =>PUP.SupTab^
C:\Users\MARMOR\AppData\Roaming\Optimizer Pro   =>PUP.OptimizerPro^
C:\Program Files\Optimizer Pro\OptProSmartScan.exe   =>PUP.OptimizerPro^
C:\Program Files\Optimizer Pro\OptProReminder.exe   =>PUP.OptimizerPro^
C:\Program Files\Optimizer Pro\OptProLauncher.exe   =>PUP.OptimizerPro^
[HKCU\Software\LiveSupport]   =>PUP.LiveSupport^
[HKCU\Software\Optimizer Pro]   =>PUP.OptimizerPro^
[HKCU\Software\RegisteredApplicationsEx]   =>PUP.SfKpCouponApp^
[HKLM\Software\SupDp]   =>PUP.SupTab^
[HKLM\Software\aartemisSoftware]   =>PUP.AArtemis^
[HKLM\Software\supWPM]   =>PUP.WpManager^
C:\Windows\Installer\10f937a.msi   =>Adware.SocialSkinz^


• Clique sur Importer, (vérifie que le script soit collé dans le cadre) .
• Clique sur le bouton « GO » pour lancer le nettoyage.

Post moi:
- Le rapport de suppression ZhpFix
- Le rapport de suppression Adw-Cleaner
- Un nouveau ZhpDiag
Utilises Ci-joint.com pour poster les rapports stp

__________________________________________________________________________________________________________________
Revenir en haut Aller en bas
oskare68
Moderateurs (trices)
Moderateurs (trices)
avatar

Masculin
Nombre de messages : 2650
Age : 54
Localisation : France (Alsace)
Humeur : C'est selon...
Date d'inscription : 30/04/2010

MessageSujet: Re: (RESOLU) probleme SVchoste.exe   Ven 18 Juil 2014 - 10:56

Tjrs avec nous Marmor 1001 ?

__________________________________________________________________________________________________________________
Revenir en haut Aller en bas
oskare68
Moderateurs (trices)
Moderateurs (trices)
avatar

Masculin
Nombre de messages : 2650
Age : 54
Localisation : France (Alsace)
Humeur : C'est selon...
Date d'inscription : 30/04/2010

MessageSujet: Re: (RESOLU) probleme SVchoste.exe   Sam 9 Aoû 2014 - 10:42

@ Marmor

Si pour une raison ou une autre le sujet devait être ré-ouvert,faites-en la demande auprès d'un modérateur ou administrateur.
Cdlt

__________________________________________________________________________________________________________________
Revenir en haut Aller en bas
Contenu sponsorisé




MessageSujet: Re: (RESOLU) probleme SVchoste.exe   

Revenir en haut Aller en bas
 
(RESOLU) probleme SVchoste.exe
Voir le sujet précédent Voir le sujet suivant Revenir en haut 
Page 1 sur 1
 Sujets similaires
-
» (resolu) probleme d'affichage des images
» resolu-probleme-de-smileys
» [resolu] probleme ouverture de lien en android?
» (RESOLU) probleme SVchoste.exe
» [RESOLU] probleme dans :.file Generale.pictureBOx.xml

Permission de ce forum:Vous ne pouvez pas répondre aux sujets dans ce forum
Bibou le forum :: 
La sécurité
 :: Aide à la désinfection :: Sujets résolus ou anciens
-
Sauter vers: