cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:23-11-2015
Exécuté par Carine_2 (2015-11-25 12:13:01)
Exécuté depuis C:\Users\Carine_2\Desktop
Windows 10 Home (X64) (2015-08-13 21:19:13)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3579438023-3875171005-2551607491-500 - Administrator - Disabled) => C:\Users\Administrator
Carine (S-1-5-21-3579438023-3875171005-2551607491-1001 - Administrator - Enabled) => C:\Users\Carine
Carine_2 (S-1-5-21-3579438023-3875171005-2551607491-1004 - Administrator - Enabled) => C:\Users\Carine_2
DefaultAccount (S-1-5-21-3579438023-3875171005-2551607491-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3579438023-3875171005-2551607491-1051 - Limited - Enabled)
Invité (S-1-5-21-3579438023-3875171005-2551607491-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Ad-Aware Antivirus (Disabled - Out of date) {B0CC18C6-E527-6EE6-874C-9D19920E5619}
AS: Ad-Aware Antivirus (Disabled - Out of date) {0BADF922-C31D-6168-BDFC-A66BE9891CA4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
FW: Ad-Aware Firewall (Disabled) {88F799E3-AF48-6FBE-AC13-342C6CDD1162}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Ad-Aware Antivirus (HKLM\...\{30B9595A-D4B5-4198-8F3C-2219C78590C9}_AdAwareUpdater) (Version: 11.9.662.8718 - Lavasoft)
AdAwareInstaller (Version: 11.9.662.8718 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.9.662.8718 - Lavasoft) Hidden
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
AntimalwareEngine (Version: 3.0.98.0 - Lavasoft) Hidden
Apple Application Support (HKLM-x32\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.2 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.5 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0004 - ASUS)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.7 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.9.120 - ASUS Cloud Corporation)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.10.168 - ASUSTEK)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\Dropbox) (Version: 2.10.52 - Dropbox, Inc.)
Dropbox (HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Dropbox) (Version: 2.10.52 - Dropbox, Inc.)
eMail Extractor 3.6.6 (HKLM-x32\...\eMail Extractor_is1) (Version: - Max Programming LLC)
FileZilla Client 3.13.1 (HKLM-x32\...\FileZilla Client) (Version: 3.13.1 - Tim Kosse)
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36354 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.17 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 10.4.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.4.0 - )
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MaxBulk Mailer 8.4.6 (HKLM-x32\...\MaxBulk Mailer_is1) (Version: - Max Programming LLC)
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.6001.1038 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
MonAlbumPhoto (HKLM-x32\...\MonAlbumPhoto_is1) (Version: 6.3.4.3 - MonAlbumPhoto)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.2.0 - Mozilla)
Mozilla Thunderbird 38.3.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 38.3.0 (x86 fr)) (Version: 38.3.0 - Mozilla)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6001.1038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6001.1038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6001.1038 - Microsoft Corporation) Hidden
Orange Inside (HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Orange Inside) (Version: V1.4.0.4 - Orange)
Orange Installer (HKLM-x32\...\Orange Installer) (Version: 2.0.0.11 - Orange)
Orange Plug-in messagerie vocale 888 (HKLM-x32\...\{16E79B1D-D1C2-4CA6-8B23-F4D890E0DCB9}) (Version: - )
Package de pilotes Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.40 - Ralink)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.8400.27023 - Realtek Semiconductor Corp.)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.49.0 - SAMSUNG Electronics Co., Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.15 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.15.102 - Skype Technologies S.A.)
Web Companion (HKLM-x32\...\{4eb20e37-bc04-4f90-bba1-abc8135326a8}) (Version: 2.1.1199.2443 - Lavasoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Carine_2\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Carine_2\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Carine_2\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Points de restauration =========================

05-11-2015 11:41:56 Point de contrôle planifié
12-11-2015 11:45:23 Windows Update
20-11-2015 13:04:09 Point de contrôle planifié
23-11-2015 14:41:09 AA11

==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2014-10-31 17:26 - 2014-10-31 17:26 - 00000308 ____N C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00A4B6C7-D44A-4AE2-ACC6-077A008B49E9} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {07B22E64-2555-466F-88B4-F61003F6563D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-08-12] (AsusTek)
Task: {09D560C3-76FE-402F-9DE9-596EE1ECC9EE} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-11-01] (Microsoft Corporation)
Task: {13B061A6-7714-48FF-B6C4-307FD325DC4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {191726F8-48E1-471B-B903-60B01ED586E1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {1C3E7FA5-9AFB-4B87-8CC8-69571CED5C08} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {2C61F3B9-21BC-468E-A61E-529F8BA1C926} - \MySearchDial -> Pas de fichier <==== ATTENTION
Task: {30297B69-8208-44E5-ABCE-B5C2DB8F5919} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-11-01] (Microsoft Corporation)
Task: {3F1C5912-AD75-4965-971B-803E4CCE0ADF} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3579438023-3875171005-2551607491-1004
Task: {433AD122-11A1-49E9-9306-CDBEB5E99008} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-28] (AVAST Software)
Task: {441C06E2-17D6-484F-95D9-981E0E7DB4FF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {48F36200-194C-4DA9-A47B-F7BBF11D7C7E} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-07-25] (ASUSTeK Computer Inc.)
Task: {51BEEFF4-450A-4AEF-BEF5-E6505A917103} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {52698F9A-BFCB-45C3-A753-52E04863365A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-12] (Microsoft Corporation)
Task: {56AD584A-FAF7-497E-8F9C-680A2518DDFE} - System32\Tasks\avastBCLRestartS-1-5-21-3579438023-3875171005-2551607491-1004 => Chrome.exe
Task: {59F9CC67-68CC-4325-A811-2E3F5F3024CA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {5FD42DF9-35C6-4609-BAE9-E930BEBA6073} - \AutoKMS -> Pas de fichier <==== ATTENTION
Task: {661DB628-3B50-4FF7-945C-A0974AEEEB79} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {673FEA77-50ED-412D-83FA-5A806F74860A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {69308075-C744-46EA-ABBA-44A23917F76E} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {6CC582B6-25A5-4687-9D18-2EDDF3C024F4} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {6F410F36-AF44-4761-8CBD-B6441EFF6A91} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {8403FA17-25EC-4CBD-A8E7-70E8988FE727} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\Carine\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [2013-06-21] (Orange)
Task: {95B0DF88-9891-4FB3-95E0-FD4C6C781FF0} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2012-04-16] (Intel Corporation)
Task: {996BF2EC-F03F-4798-B829-0C9C05F016A2} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {A94DDC10-8678-4EA8-9D22-E940E0CC81C7} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {AEB927EE-7C30-4AF8-B93D-EC2F9E74497C} - \MixVideoPlayer Update -> Pas de fichier <==== ATTENTION
Task: {AEC1CE20-EDC6-4298-B504-39C60C117F5C} - \BackgroundContainer Startup Task -> Pas de fichier <==== ATTENTION
Task: {B07DF4C2-549A-4ACC-9B66-DF29443DFE71} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS)
Task: {C332E2CC-FF2D-4BD1-83EF-86601F50A25D} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3579438023-3875171005-2551607491-1001
Task: {CEE8816A-75B0-4013-882F-2E806244EEAD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {D2FD35B3-32B2-45A3-8BEF-BCCB1852A6A0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-11] (Adobe Systems Incorporated)
Task: {D8DEAABF-BA9E-42A9-8AE4-D443C5841794} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {DA8E3BD2-EAA7-4EC0-99C4-608112A4BE24} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [2013-11-04] ()
Task: {DB90E236-3CDB-4533-AA87-CD2EAA75D1F7} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2015-11-01] (Microsoft Corporation)
Task: {F6CB9018-E07D-46D0-8B90-1DD375A05F0E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {F81D48BC-8022-418D-A324-DF5664689B93} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC7_SkipUac_Carine.job => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2015-08-13 23:13 - 2015-07-15 03:04 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-11-18 09:48 - 2015-11-01 02:11 - 00161448 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-08-19 08:10 - 2015-08-11 10:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00017168 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
2015-11-23 14:57 - 2015-11-23 14:57 - 00008976 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Service.Logger.dll
2015-10-01 14:58 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2012-08-24 17:26 - 2012-08-24 17:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2012-04-16 14:45 - 2012-04-16 14:45 - 00119808 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
2015-08-24 14:56 - 2015-08-24 14:56 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-06-01 20:00 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-07-17 18:34 - 2015-07-17 18:34 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2015-10-01 14:58 - 2015-09-17 07:48 - 02494712 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-11-19 11:59 - 2015-11-19 11:59 - 02794744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.662.8718\AdAwareShellExtension.dll
2015-11-19 11:59 - 2015-11-19 11:59 - 03549904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.662.8718\RCF.dll
2015-11-19 11:59 - 2015-11-19 11:59 - 00123656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.662.8718\boost_filesystem-vc120-mt-1_57.dll
2015-11-19 11:59 - 2015-11-19 11:59 - 00025856 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.9.662.8718\boost_system-vc120-mt-1_57.dll
2015-10-01 14:57 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-10-01 14:58 - 2015-09-17 06:44 - 06569472 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-01 14:57 - 2015-09-17 06:42 - 00471040 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-01 14:57 - 2015-09-17 06:42 - 01808384 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-01 14:58 - 2015-09-17 06:43 - 02274816 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 12:00 - 2015-07-10 17:28 - 00210432 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-10-01 14:58 - 2015-09-17 06:43 - 02028544 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesService.dll
2015-10-01 14:57 - 2015-09-17 06:42 - 00619008 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SignalsManager.dll
2015-10-01 14:58 - 2015-09-17 06:43 - 00928768 _____ () C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RulesBackgroundTasks.dll
2015-08-30 08:48 - 2015-08-30 08:49 - 00016896 _____ () C:\Program Files\WindowsApps\BooStudioLLC.TorrexPro_1.1.9.0_x86__b6e429xa66pga\Torrex.exe
2015-10-28 17:37 - 2015-10-28 17:37 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-10-28 17:37 - 2015-10-28 17:37 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-23 13:18 - 2015-11-23 13:18 - 02994176 _____ () C:\Program Files\AVAST Software\Avast\defs\15112300\algo.dll
2015-11-24 00:13 - 2015-11-24 00:13 - 02994688 _____ () C:\Program Files\AVAST Software\Avast\defs\15112301\algo.dll
2015-11-25 10:36 - 2015-11-25 10:36 - 02995712 _____ () C:\Program Files\AVAST Software\Avast\defs\15112500\algo.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 02603520 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtCore4.dll
2012-04-16 11:42 - 2012-04-16 11:42 - 00015872 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\featureController.dll
2011-08-15 20:12 - 2011-08-15 20:12 - 01006592 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtNetwork4.dll
2011-08-15 20:15 - 2011-08-15 20:15 - 00382464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtXml4.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00322048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\log4cplus.dll
2011-08-17 16:41 - 2011-08-17 16:41 - 00400384 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\sqlite3.dll
2011-08-17 16:48 - 2011-08-17 16:48 - 00195584 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\libgsoap.dll
2011-08-15 19:23 - 2011-08-15 19:23 - 00062464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\zlib1.dll
2012-04-16 11:41 - 2012-04-16 11:41 - 00484864 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\DeviceProfile.dll
2012-04-16 11:56 - 2012-04-16 11:56 - 00500032 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
2012-04-16 11:38 - 2012-04-16 11:38 - 00013824 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\eventsSender.dll
2011-07-19 16:05 - 2011-07-19 16:05 - 14978048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtWebKit4.dll
2011-08-15 20:17 - 2011-08-15 20:17 - 09224704 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtGui4.dll
2011-07-19 16:04 - 2011-07-19 16:04 - 00317952 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\phonon4.dll
2012-08-24 17:17 - 2012-08-24 17:17 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00107280 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00259856 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Business.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00050448 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.adblocker.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00022288 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.AvastWrapper.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00012560 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.Utils.SqlLite.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00120080 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.PUP.Management.dll
2015-11-23 14:57 - 2015-11-23 14:57 - 00029968 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.Repositories.dll
2015-10-28 17:37 - 2015-10-28 17:37 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-09-25 08:05 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-10-06 08:49 - 2015-10-06 08:49 - 00153768 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-10-06 08:49 - 2015-10-06 08:49 - 00023208 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2015-08-30 08:48 - 2015-08-30 08:49 - 23941120 _____ () C:\Program Files\WindowsApps\BooStudioLLC.TorrexPro_1.1.9.0_x86__b6e429xa66pga\Torrex.dll
2015-08-22 00:39 - 2015-08-22 00:39 - 03354288 _____ () C:\Program Files\WindowsApps\BooStudioLLC.TorrexPro_1.1.9.0_x86__b6e429xa66pga\Microsoft.Advertising.dll
2015-08-30 08:48 - 2015-08-30 08:49 - 00168448 _____ () C:\Program Files\WindowsApps\BooStudioLLC.TorrexPro_1.1.9.0_x86__b6e429xa66pga\SubtitlesRenderer.dll
2015-08-24 14:56 - 2015-08-24 14:56 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2015-11-12 10:58 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 10:58 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\TEMP:8178B8D6
AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\100sexlinks.com -> 100sexlinks.com

Il y a 4788 plus de sites.

IE trusted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\webcompanion.com -> hxxp://webcompanion.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Carine_2\Pictures\Saved Pictures\MARIAGE LETI PIERRE 12 09 15 NOIR BLANC (25).JPG
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Carine_2\Pictures\Saved Pictures\MARIAGE LETI PIERRE 12 09 15 NOIR BLANC (25).JPG
HKU\S-1-5-21-3579438023-3875171005-2551607491-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "Badoo Desktop"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "KiesPreload"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "KiesAirMessage"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => ""
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\StartupApproved\StartupFolder: => "OneNote 2010 - Capture d’écran et lancement.lnk"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\StartupApproved\Run: => "RoboForm"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004\...\StartupApproved\Run: => "msnmsgr"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\StartupFolder: => "OneNote 2010 - Capture d’écran et lancement.lnk"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "RoboForm"
HKU\S-1-5-21-3579438023-3875171005-2551607491-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\StartupApproved\Run: => "msnmsgr"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{11691367-1F45-4BAF-81C3-A5FE76C19762}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{F4AA2536-21D9-486E-BFCB-926711EED127}] => (Allow) LPort=1900
FirewallRules: [{90D674D7-4065-49D0-9C17-8DC72485FBE4}] => (Allow) LPort=2869
FirewallRules: [{51625154-AC96-46E6-8136-FE886CE9911A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{AB93C404-B960-4395-B221-79B59F49516A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{5DA18E3A-8685-4332-84DA-1F6C4245E401}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{65AF9B18-9E93-43FC-9B8B-8DCEC0C47576}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{2C5DF48A-E8DE-4628-B387-AAD7F2FF30CD}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{4E1E8D24-DD6D-4496-84EA-893C0E210DC9}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{45B803DC-5AEE-44BD-8E0A-D3CFBC4082B9}] => (Allow) LPort=60543
FirewallRules: [{BFE63AC1-76FA-4D38-8728-9E6B8BA5FC2E}] => (Allow) LPort=5000
FirewallRules: [{DDB9506D-C770-4DFA-A099-62790D3D98DB}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{9EDA5F9D-32BB-46F9-ABF6-3C3EAF90F5A8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{36AADE24-694C-4780-9781-813B08C25D6A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{E69429B6-A850-4EBE-AB36-7C9940821F56}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{B3DD325C-0CEB-4510-A04C-950ECB4FC866}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{E8E78FAF-9595-4424-9065-D42EEC30F153}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{3683EC71-977B-4E97-97C4-4C73A23BDB2C}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Intel(R) Management Engine Interface
Description: Intel(R) Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (11/25/2015 00:17:01 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -338) dans une arbre B (B-tree) (ObjId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (4944 => 2145, svchost0).

Error: (11/25/2015 00:17:01 PM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (1648) SRUJet: Une demande de nœud sur une page vide (Pgno : 2145) a été générée (erreur -351) pour un arbre B (B-tree) (ObjectId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat. Cette erreur est généralement due à la perte d’une E/S du
matériel de stockage. Veuillez vérifier les révisions de microprogramme actuelles auprès de votre fournisseur de matériel, effectuez des modifications des paramètres de cache de votre contrôleur, utilisez un matériel résistant aux incidents prenant en charge
ForcedUnit Access et/ou remplacez le matériel défaillant.

Error: (11/25/2015 00:17:01 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -327) dans une arbre B (B-tree) (ObjId : 15, PgnoRoot : 57) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (7621 => 8014, svchost0).

Error: (11/25/2015 00:16:01 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -338) dans une arbre B (B-tree) (ObjId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (4944 => 2145, svchost0).

Error: (11/25/2015 00:16:01 PM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (1648) SRUJet: Une demande de nœud sur une page vide (Pgno : 2145) a été générée (erreur -351) pour un arbre B (B-tree) (ObjectId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat. Cette erreur est généralement due à la perte d’une E/S du
matériel de stockage. Veuillez vérifier les révisions de microprogramme actuelles auprès de votre fournisseur de matériel, effectuez des modifications des paramètres de cache de votre contrôleur, utilisez un matériel résistant aux incidents prenant en charge
ForcedUnit Access et/ou remplacez le matériel défaillant.

Error: (11/25/2015 00:16:00 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -327) dans une arbre B (B-tree) (ObjId : 15, PgnoRoot : 57) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (7621 => 8014, svchost0).

Error: (11/25/2015 00:15:01 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -338) dans une arbre B (B-tree) (ObjId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (4944 => 2145, svchost0).

Error: (11/25/2015 00:15:01 PM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (1648) SRUJet: Une demande de nœud sur une page vide (Pgno : 2145) a été générée (erreur -351) pour un arbre B (B-tree) (ObjectId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat. Cette erreur est généralement due à la perte d’une E/S du
matériel de stockage. Veuillez vérifier les révisions de microprogramme actuelles auprès de votre fournisseur de matériel, effectuez des modifications des paramètres de cache de votre contrôleur, utilisez un matériel résistant aux incidents prenant en charge
ForcedUnit Access et/ou remplacez le matériel défaillant.

Error: (11/25/2015 00:15:00 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -327) dans une arbre B (B-tree) (ObjId : 15, PgnoRoot : 57) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (7621 => 8014, svchost0).

Error: (11/25/2015 00:14:00 PM) (Source: ESENT) (EventID: 447) (User: )
Description: svchost (1648) SRUJet: Lien de page incorrect (erreur -338) dans une arbre B (B-tree) (ObjId : 13, PgnoRoot : 55) de la base de données C:\WINDOWS\system32\SRU\SRUDB.dat (4944 => 2145, svchost0).


Erreurs système:
=============
Error: (11/25/2015 11:25:54 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Carine_2\AppData\Local\Temp\catchme.sys

Error: (11/25/2015 11:25:54 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Carine_2\AppData\Local\Temp\catchme.sys

Error: (11/25/2015 11:25:49 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Carine_2\AppData\Local\Temp\catchme.sys

Error: (11/25/2015 11:24:44 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Ad-Aware Service 11 s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/25/2015 10:59:31 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: 1053gupdate/comsvc{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (11/25/2015 10:59:31 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Google Update Service (gupdate) n’a pas pu démarrer en raison de l’erreur :
%%1053

Error: (11/25/2015 10:59:31 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Google Update Service (gupdate).

Error: (11/24/2015 07:15:37 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (11/24/2015 05:03:49 PM) (Source: DCOM) (EventID: 10010) (User: CARINE)
Description: App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca

Error: (11/24/2015 04:07:36 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4


CodeIntegrity:
===================================
Date: 2015-11-25 11:25:54.204
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Carine_2\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-25 11:25:54.002
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Carine_2\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-11-25 11:25:49.384
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Carine_2\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Celeron(R) CPU B830 @ 1.80GHz
Pourcentage de mémoire utilisée: 69%
Mémoire physique - RAM - totale: 3979.82 MB
Mémoire physique - RAM - disponible: 1194.6 MB
Mémoire virtuelle totale: 6283.82 MB
Mémoire virtuelle disponible: 2416.19 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:185.96 GB) (Free:73.56 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Data) (Fixed) (Total:258.45 GB) (Free:218.96 GB) NTFS
Drive e: () (Removable) (Total:1.83 GB) (Free:0.28 GB) FAT

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: F97C441A)

Partition: GPT.

========================================================
Disk: 1 (Size: 1.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité