Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version:23-09-2015 Exécuté par jean-louis (2015-09-24 11:37:28) Exécuté depuis C:\Users\jean-louis\Downloads Microsoft Windows 8.1 Professionnel avec Media Center (X86) (2013-12-10 12:40:12) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3974272555-2943434140-3627363908-500 - Administrator - Disabled) Invité (S-1-5-21-3974272555-2943434140-3627363908-501 - Limited - Disabled) jean-louis (S-1-5-21-3974272555-2943434140-3627363908-1001 - Administrator - Enabled) => C:\Users\jean-louis ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: ESET Smart Security 7.0 (Disabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} AS: ESET Smart Security 7.0 (Disabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: Pare-feu personnel d'ESET (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 3nity Media Player version 3.15.4.35 (HKLM\...\{D3D81DF1-2CD5-4501-9887-0FF48ACBD25F}_is1) (Version: 3.15.4.35 - 3nity Softwares) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) Adobe Acrobat Reader DC - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated) Adobe AIR (HKLM\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Photoshop CS3 (HKLM\...\Adobe_32e9033392a51340b32fdc6ad893ab7) (Version: 10.0 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM\...\{3540ADD5-822B-47FB-B1C2-CD7B2C8E9FEC}) (Version: 4.0.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{A75CA58D-DB9C-4D14-9428-E0C7B0F623DC}) (Version: 9.0.0.26 - Apple Inc.) Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Assistance Livebox (HKLM\...\Assistance Livebox) (Version: 2.0.2.1 - Orange) Auslogics DiskDefrag (HKLM\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.1.0 - Auslogics Labs Pty Ltd) Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform) Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation) Centre Souris et Claviers Microsoft (Version: 2.3.188.0 - Microsoft Corporation) Hidden D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Dashlane (HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\Dashlane) (Version: 3.5.2.91395 - Dashlane SAS) Dropbox (HKLM\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.) Dropbox Update Helper (Version: 1.3.27.35 - Dropbox, Inc.) Hidden Duplicate Cleaner Free 3.2.6 (HKLM\...\Duplicate Cleaner Free) (Version: 3.2.6 - DigitalVolcano Software Ltd) <==== ATTENTION ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - ) ESET Smart Security (HKLM\...\{2377A8AA-7D8E-45B3-B266-72200B3068D1}) (Version: 7.0.317.4 - ESET, spol s r. o.) FileHippo App Manager (HKLM\...\FileHippo.com) (Version: - FileHippo.com) Font Explorer v.3.3 (HKLM\...\Font Explorer_is1) (Version: - Ivan BUBLOZ) FormatFactory 3.6.0.0 (HKLM\...\FormatFactory) (Version: 3.6.0.0 - Format Factory) Freemake Video Converter version 4.1.7 (HKLM\...\Freemake Video Converter_is1) (Version: 4.1.7 - Ellora Assets Corporation) Galerie de photos (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Google Drive (HKLM\...\{12ADFB82-D5A3-43E4-B2F4-FCD9B690315B}) (Version: 1.24.9931.5480 - Google, Inc.) Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden Heredis 2014 (HKLM\...\Heredis 2014_is1) (Version: - BSD Concept) High-Definition Video Playback 10 (Version: 7.0.11400.29.0 - Nero AG) Hidden InPixio Photo (HKLM\...\{5F0C0CD8-77B1-4C3E-9F01-5AF10D85DBB4}) (Version: 6.05.0 - Avanquest Software) InPixio Photo Clip (HKLM\...\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}) (Version: 2.00 - Avanquest) InstaCards (HKLM\...\{58259C24-7B5E-4977-93B0-E9EEA1B884CE}) (Version: 1.5.0 - Avanquest Software) iTunes (HKLM\...\{9E9CFD9F-64D6-498F-8584-E5CD08BA60BE}) (Version: 12.3.0.44 - Apple Inc.) Java 8 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) Junk Mail filter update (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden LibreOffice 5.0.1.2 (HKLM\...\{927AE35D-72BC-437D-BAC7-EE47D03DEE54}) (Version: 5.0.1.2 - The Document Foundation) Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.4753.1002 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\OneDriveSetup.exe) (Version: 17.3.5951.0827 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x86) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden Mozilla Firefox 41.0 (x86 fr) (HKLM\...\Mozilla Firefox 41.0 (x86 fr)) (Version: 41.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 41.0.0.5738 - Mozilla) Mozilla Thunderbird 38.2.0 (x86 fr) (HKLM\...\Mozilla Thunderbird 38.2.0 (x86 fr)) (Version: 38.2.0 - Mozilla) Nero BackItUp 10 (HKLM\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.11600.19.100 - Nero AG) Nero Burning ROM 10 (HKLM\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.0.11100.10.100 - Nero AG) Nero BurnRights 10 (HKLM\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11000.12.100 - Nero AG) Nero CoverDesigner 10 (HKLM\...\{FCF00A6E-FB58-477A-ABE9-232907105521}) (Version: 5.0.10900.11.100 - Nero AG) Nero DiscCopy Gadget 10 (HKLM\...\{92EC1A84-7FFC-42DF-A8F6-79C21C4765A5}) (Version: 3.0.10700.9.100 - Nero AG) Nero DiscSpeed 10 (HKLM\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.0.10800.7.100 - Nero AG) Nero Express 10 (HKLM\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.11000.10.100 - Nero AG) Nero InfoTool 10 (HKLM\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.10800.8.100 - Nero AG) Nero MediaHub 10 (HKLM\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.13400.11.100 - Nero AG) Nero Multimedia Suite 10 (HKLM\...\{277C1559-4CF7-44FF-8D07-98AA9C13AABD}) (Version: 10.0.13100 - Nero AG) Nero Recode 10 (HKLM\...\{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}) (Version: 4.6.10900.4.100 - Nero AG) Nero RescueAgent 10 (HKLM\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.10900.9.100 - Nero AG) Nero SoundTrax 10 (HKLM\...\{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}) (Version: 4.6.10600.2.100 - Nero AG) Nero StartSmart 10 (HKLM\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.11200.12.100 - Nero AG) Nero Update (HKLM\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0017 - Nero AG) Nero Vision 10 (HKLM\...\{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}) (Version: 7.0.11100.8.100 - Nero AG) Nero WaveEditor 10 (HKLM\...\{EDCDFAD5-DF80-4600-A493-E9DAD6810230}) (Version: 5.6.10600.2.100 - Nero AG) NirSoft ProduKey (HKLM\...\NirSoft ProduKey) (Version: - ) Office 15 Click-to-Run Extensibility Component (Version: 15.0.4753.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4753.1002 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (Version: 15.0.4753.1002 - Microsoft Corporation) Hidden Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden PC Sync (HKLM\...\{A4DCAA77-151D-4CE9-8D79-E4ADB48031A2}) (Version: 8.00.0806 - Orange) PDF Pro 10 (HKLM\...\{FC279721-37A6-4777-AFD8-7A56681EBA14}) (Version: 10.8.0000 - PDF Pro Software) PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden Photocite Collection 5.0 (HKLM\...\Photocite Collection 5.0) (Version: 5.0.6 - CEWE COLOR AG u Co. OHG) Photocite Collection 5.1 (HKLM\...\Photocite Collection 5.1) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA) Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.) PrivaZer (HKLM\...\PrivaZer) (Version: 2.37.0.0 - Goversoft LLC) QuickTime 7 (HKLM\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.) RadioSure (HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\RadioSure) (Version: - ) Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SAMSUNG Intelli-studio (HKLM\...\Intelli-studio) (Version: 3.1.32.1 - Samsung Electronics Co., Ltd.) Secunia PSI (3.0.0.9016) (HKLM\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Serveur Média (HKLM\...\TwonkyMediaServeur Média) (Version: 6.0.30.0 - PacketVideo) Simple Sudoku 4.2 (HKLM\...\Simple Sudoku_is1) (Version: - ) Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype Web Plugin (HKLM\...\{F7C13D74-E0FD-4A76-896A-E8687769767D}) (Version: 7.5.0.127 - Skype Technologies S.A.) Skype™ 7.8 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.) Software Update Helper (Version: 1.3.25.0 - Google Inc.) Hidden <==== ATTENTION Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Start Menu X version 5.46 (HKLM\...\{3E494002-985C-4908-B72C-5B4DD15BE090}_is1) (Version: 5.46 - OrdinarySoft) TuneUp Utilities 2014 (fr-FR) (Version: 14.0.1000.353 - TuneUp Software) Hidden TuneUp Utilities 2014 (HKLM\...\TuneUp Utilities) (Version: 14.0.1000.353 - TuneUp Software) TuneUp Utilities 2014 (Version: 14.0.1000.353 - TuneUp Software) Hidden TuneUp Utilities Language Pack (fr-FR) (Version: 13.0.4000.127 - TuneUp Software) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) Windows Live (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation) WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3974272555-2943434140-3627363908-1001_Classes\CLSID\{0825CC0E-34BD-4FE4-B78D-EF6582A94B6A}\InprocServer32 -> C:\Users\jean-louis\AppData\Local\SkypePlugin\7.5.0.127\GatewayActiveX.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3974272555-2943434140-3627363908-1001_Classes\CLSID\{7253b364-18c5-555a-4b07-26abb39c9f99}\InprocServer32 -> C:\Users\jean-louis\AppData\Local\SkypePlugin\7.5.0.127\EdgeBrokerPS.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3974272555-2943434140-3627363908-1001_Classes\CLSID\{8E00BFA9-1C7B-4E45-BF2F-0FAEA236E1CC}\localserver32 -> C:\Users\jean-louis\AppData\Local\SkypePlugin\7.5.0.127\GatewayVersion.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3974272555-2943434140-3627363908-1001_Classes\CLSID\{8F3FBBD3-6F14-4826-9B4E-A5BDB3A3671E}\localserver32 -> C:\Users\jean-louis\AppData\Local\SkypePlugin\7.5.0.127\PluginHost.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3974272555-2943434140-3627363908-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\jean-louis\AppData\Local\SkypePlugin\7.5.0.127\EdgeCalling.exe (Skype Technologies S.A.) ==================== Points de restauration ========================= 23-09-2015 16:59:18 Installed MYPCTuneUp. 23-09-2015 17:51:22 Created by Wise Disk Cleaner 24-09-2015 00:53:21 Revo Uninstaller's restore point - WinThruster 24-09-2015 00:55:56 Revo Uninstaller's restore point - MYSecurityCenter Toolkit version 1.5 24-09-2015 00:57:01 Revo Uninstaller's restore point - MySecurityCenter License Service 24-09-2015 00:58:50 Revo Uninstaller's restore point - MYPCTuneUp 24-09-2015 01:00:59 Revo Uninstaller's restore point - jv16 PowerTools 1.3 24-09-2015 01:02:11 Revo Uninstaller's restore point - jv16 PowerTools 2010 24-09-2015 01:03:37 Revo Uninstaller's restore point - Quicksys RegDefrag 2.9 ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 08:13 - 2015-09-16 18:40 - 00450807 ____R C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activation.nero.com 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com Il y a 1000 plus de lignes. ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0A47C439-A7B0-4F30-ACBC-56DC8271D2EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {14CF6428-FF20-403A-9CAA-2A7DEF6C436D} - System32\Tasks\{AA0B00DA-2FF9-4454-86E2-B99D28C30F14} => pcalua.exe -a "C:\Program Files\Microsoft Office 15\ClientX86\integratedoffice.exe" -c UNINSTALLUI RERUNMODE productreleaseid O365HomePremRetail culture fr-fr operation uninstall_multiple productsdata O365HomePremRetail_fr-fr_x-none Task: {14F2F917-3047-4CAF-B447-1296B3E27C43} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser Task: {1813287F-5509-4FAF-936A-7AF43525BFB0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-08-12] (Microsoft Corporation) Task: {1B177F41-67AC-4606-9652-41370A6A1FE0} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft) Task: {322393A7-0FF0-4EE3-9654-E984B2EBB803} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2015-09-12] (Dropbox, Inc.) Task: {355F26E0-2FA2-46D5-AF56-FEA8E45AF9AE} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation) Task: {42931F70-A188-41AE-98F2-C743F660EACD} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {4462AA57-70FD-439F-9F01-51B2E9CCBC10} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-08-11] (Microsoft Corporation) Task: {44798CB5-EA2B-4694-A67F-71014A7AF6D7} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-22] (Adobe Systems Incorporated) Task: {4DBE0A7B-457A-45C9-A8FB-F2FC49A21E33} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd) Task: {502A33BE-72D4-4728-9B96-02B4E412AB9B} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-08-11] (Microsoft Corporation) Task: {6A230EFB-4A8E-4F66-A586-53BD064A8D96} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.) Task: {6E6A895F-9B7C-4939-A6EE-C439D202226F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {6EDAB7A7-C835-44C3-A1DE-E723515AEDED} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.) Task: {6F227CA0-13C3-4D46-908D-BBDAAB3AB133} - System32\Tasks\MYPCTuneUp-jean-louis-Startup => C:\Program Files\My Security Center\MYPCTuneUp\MYPCTuneUp.exe Task: {712995FD-507A-4A81-84A4-A0EABEC4D120} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {745CCC5C-F22C-40E1-96F2-D32B7CF4208D} - pas de chemin Task: {7B815FE0-09B5-474C-9DD0-F7B8527C070D} - pas de chemin Task: {948E9FEE-FB14-4302-86BC-4D0253B36DD6} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\TuneUp Utilities 2014\OneClick.exe [2015-06-25] (TuneUp Software) Task: {98AC2147-359E-4523-A7DA-BBDB23BEAA92} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {9C9AAFA8-2D6C-46E7-A4F8-7ED0339BF1AB} - System32\Tasks\Auslogics\BoostSpeed\Scan and Repair => Rundll32.exe TaskSchedulerHelper.dll,RunTask "BoostSpeed.exe" "-UseTray -Schedule" Task: {A20A136E-C7EB-4FDC-A402-1F8D7DF64DF4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {A82947F0-2255-41AE-8A69-5C49684F6CFD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation) Task: {ABD962B3-0983-4A08-87D9-FC1242E28315} - System32\Tasks\Programme de mise à jour en ligne de Adobe => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {BD582962-CAFE-4A4E-9DCB-B3D0694E28A8} - System32\Tasks\ESET Windows 10 upgrade – Refresh settings => C:\Program Files\Common Files\AV\ESET Smart Security 7.0\upgrade.exe [2015-09-18] (ESET) Task: {BE19AAFF-335F-4BBE-850F-7469E31D9651} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3974272555-2943434140-3627363908-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe Task: {BEC07931-6305-488A-97A6-BC098B33E0DA} - System32\Tasks\AssistanceLivebox => C:\Program Files\Orange\Assistance Livebox\AssistanceLivebox.exe [2013-06-12] (Orange) Task: {CF7563E6-7247-4BA8-B17E-A1CEEFA3E893} - System32\Tasks\{F2C84B3E-FB69-44B7-AED4-661653C20340} => Firefox.exe http://ui.skype.com/ui/0/7.8.0.102/fr/abandoninstall?source=lightinstaller&page=tsBing Task: {D17E729B-7E20-4C4D-B05D-BB60F27A2B29} - System32\Tasks\GoogleUpdateTaskMachineUA1d0e1255802ae83 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {D7657BE4-852C-436F-8107-8C175415874D} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation) Task: {E2117E4D-B577-4978-84E5-E601C2ADED33} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bf52e8411573 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {F9541C74-0EEF-454A-9A56-66EE62DFD1D7} - System32\Tasks\{A346DBB5-35CE-49FC-8922-90814EB3B33A} => pcalua.exe -a "C:\Program Files\jv16 PowerTools\jv16 PowerTools.exe" -d C:\Users\jean-louis\Desktop Task: {F9E2450E-2E9E-4751-BCBB-9CC87EA0CBD0} - System32\Tasks\GoogleUpdateTaskMachineUA1d0ef18e4b08c20 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {FC64C735-0048-45BB-A029-1A62D3F92CB3} - System32\Tasks\bureau => C:\Windows\System32\bureau.scf [2013-03-22] () Task: {FC7D6FB2-3027-4AF0-A89A-73BC90707E7E} - System32\Tasks\Programme de mise à jour en ligne de FileHippo.com => C:\Program Files\FileHippo.com\UpdateChecker.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0bf52e8411573.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0e1255802ae83.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0ef18e4b08c20.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Modules chargés (Avec liste blanche) ============== 2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-09-15 14:25 - 2015-09-15 14:25 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-03-19 11:15 - 2014-05-20 03:11 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll 2013-06-10 17:58 - 2013-06-10 17:58 - 01966960 _____ () C:\Program Files\Orange\Assistance Livebox\dedicarz\DedicarzService.exe 2013-06-10 17:58 - 2013-06-10 17:58 - 00549888 _____ () C:\Program Files\Orange\Assistance Livebox\dedicarz\netsnmp.dll 2013-06-10 17:58 - 2013-06-10 17:58 - 00182784 _____ () C:\Program Files\Orange\Assistance Livebox\dedicarz\ProxyDetection.dll 2013-06-10 17:58 - 2013-06-10 17:58 - 00157184 _____ () C:\Program Files\Orange\Assistance Livebox\dedicarz\pupnp.dll 2015-09-15 20:46 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2015-09-15 20:46 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2015-09-15 20:46 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl 2015-06-25 07:53 - 2015-06-25 07:53 - 00586040 _____ () C:\Program Files\TuneUp Utilities 2014\avgreplibx.dll 2010-12-14 23:47 - 2010-12-14 23:47 - 01451608 _____ () C:\Program Files\Serveur Media\TwonkyMediaServer.exe 2015-09-15 20:46 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll 2015-09-15 20:46 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2015-09-03 23:35 - 2015-09-03 17:47 - 00227648 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\Dashlane.exe 2015-09-09 13:43 - 2015-09-03 17:44 - 00337728 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:44 - 00421696 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:45 - 00443200 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:45 - 31364416 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:45 - 00276288 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:44 - 05763392 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:44 - 06979904 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.3.5.2.91395.dll 2015-09-03 23:35 - 2015-09-03 17:47 - 00285504 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\DashlanePlugin.exe 2015-09-09 13:43 - 2015-09-03 17:45 - 13231424 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:45 - 02072896 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.3.5.2.91395.dll 2015-09-09 13:43 - 2015-09-03 17:45 - 00338240 _____ () C:\Users\jean-louis\AppData\Roaming\Dashlane\3.5.2.91395\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.3.5.2.91395.dll 2015-09-24 11:26 - 2015-09-24 11:26 - 01936896 _____ () C:\Users\jean-louis\Downloads\ZHPDiag3.exe ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\jean-louis\OneDrive:ms-properties ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" ==================== EXE Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Il y a 7866 plus de sites sensibles. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jean-louis\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\StartupFolder: => "Install LastPass FF RunOnce.lnk" HKLM\...\StartupApproved\StartupFolder: => "Install LastPass IE RunOnce.lnk" HKLM\...\StartupApproved\StartupFolder: => "PC Sync.lnk" HKLM\...\StartupApproved\StartupFolder: => "Agent Serveur Média.lnk" HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk" HKLM\...\StartupApproved\Run: => "egui" HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run: => "Adobe ARM" HKLM\...\StartupApproved\Run: => "CommonToolkitTray" HKLM\...\StartupApproved\Run: => "sfagent" HKLM\...\StartupApproved\Run: => "Classic Start Menu" HKLM\...\StartupApproved\Run: => "vspdfprsrv.exe" HKLM\...\StartupApproved\Run: => "Eraser" HKLM\...\StartupApproved\Run: => "NBAgent" HKLM\...\StartupApproved\Run: => "ProductUpdater" HKLM\...\StartupApproved\Run: => "Dropbox" HKLM\...\StartupApproved\Run: => "SDTray" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "StartMenuX" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "F.lux" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "FileHippo.com" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "orangeinside" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "Orange Installer" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "Google+ Auto Backup" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "Dashlane" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "StartMenuX36" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "StartMenuX23" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "StartMenuX42" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "StartMenuX44" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "Avanquest Message" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "BingSvc" HKU\S-1-5-21-3974272555-2943434140-3627363908-1001\...\StartupApproved\Run: => "DashlanePlugin" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{CC32343D-3573-410F-AA9E-0E5D490F1C19}] => (Allow) C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{CADA8FF3-2D14-40E2-ABD2-BAD5DF6093DD}] => (Allow) C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{D4D9851F-7F9D-42E5-B9B6-7EB547B7A3D8}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{29959DB0-701D-4E22-96D1-AA224EE6285D}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{3AD1D539-23AA-4A16-A261-18A7472ACA24}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{1994FC0C-C99D-45DC-AD55-56C43ECD8C91}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{08B1C8D5-2D66-4D81-8F87-8AC2D94E4531}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\DedicarzService.exe FirewallRules: [{48CB8C28-C450-46E8-BB59-2BF0674E65FA}] => (Allow) C:\Program Files\Orange\Assistance Livebox\dedicarz\DedicarzService.exe FirewallRules: [{7E074ABB-AEF3-41DA-9CD1-862D8FB6E7A1}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{A3ACD974-92A4-45B2-8364-B97E1BC0DF58}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{B313E9E9-1058-4463-8521-521646E0E831}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{84DB0AC6-A62F-4645-8438-82D6B7480FB8}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{5A7C0D1E-6406-4A29-A813-D57A00EB7B4F}C:\program files\orange\assistance livebox\dist\st2.exe] => (Allow) C:\program files\orange\assistance livebox\dist\st2.exe FirewallRules: [UDP Query User{61B4F194-238C-482C-86CC-A10493C8F488}C:\program files\orange\assistance livebox\dist\st2.exe] => (Allow) C:\program files\orange\assistance livebox\dist\st2.exe FirewallRules: [{DEC86353-0006-4EE0-B39D-DD91571F6F4E}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{502E0967-9BD0-447E-9245-0A1DDB900738}] => (Allow) LPort=2869 FirewallRules: [{C03EA857-84C9-4052-BE5C-60646EDF58A7}] => (Allow) LPort=1900 FirewallRules: [{D79CFB84-ACB8-43E5-9367-38AEA5EACF5F}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe FirewallRules: [{AB82BED4-03FC-4E51-8F60-A77B3140E255}] => (Allow) C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe FirewallRules: [{295A409E-66A7-4833-B41F-CF91E6BAE265}] => (Allow) C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe FirewallRules: [{6E87F5EB-23F5-4E28-88BF-694AA7A40937}] => (Allow) C:\Program Files\Serveur Media\twonkymediaserver.exe FirewallRules: [{968A6C9D-BF92-49FD-B4B3-204B815B8E40}] => (Allow) C:\Program Files\Serveur Media\twonkymediaserver.exe FirewallRules: [{D41A0562-B879-487F-AFCF-6242E166A0EA}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{770D0496-1FA6-4529-B675-D5EE101E557D}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{E964B2D6-F2C9-4B4B-BD33-27FAE700D994}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{B019D712-1AFD-4CFD-BCB5-E90AF7A68309}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{BE80C041-1A13-4161-A64F-96EA5F9AFB7D}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{60015322-0BC1-42A6-AC69-7738BD6BEF81}] => (Allow) C:\Program Files\AnyDesk\AnyDesk.exe FirewallRules: [{DFF5A486-F502-407B-8B5F-D86D2B6E7B01}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{DFC29213-A058-4117-97B4-2277D2AC17B1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{67A5DE45-D036-43C5-8710-08F601A56597}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{E5F0C2F1-4F3E-45CF-A51B-FE13E5ABC6BC}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{90B7A487-AE41-451A-AE29-891C777C44C2}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{B07173A2-EE70-423E-A27C-10022F721B6E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{44CFFB72-06A2-49D4-AB2C-4C02310FE44C}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{9AB990F1-EF20-4DA4-9FCE-35F58BA32D82}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe FirewallRules: [{3CEC34AA-441C-40A5-9E04-DEACEFA4A21E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DD6CEA62-7D8E-4C78-9A6A-CD5B90BCFAF6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3ED32C03-C03D-4612-B6E3-944657C8F16E}] => (Allow) C:\Program Files\iTunes\iTunes.exe StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/24/2015 01:59:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante PSIA.exe, version : 3.0.0.9016, horodatage : 0x52a1d50f Nom du module défaillant : ntdll.dll, version : 6.3.9600.17936, horodatage : 0x55a68dcb Code d’exception : 0xc0000005 Décalage d’erreur : 0x000299e9 ID du processus défaillant : 0xc6c Heure de début de l’application défaillante : 0xPSIA.exe0 Chemin d’accès de l’application défaillante : PSIA.exe1 Chemin d’accès du module défaillant: PSIA.exe2 ID de rapport : PSIA.exe3 Nom complet du package défaillant : PSIA.exe4 ID de l’application relative au package défaillant : PSIA.exe5 Error: (09/24/2015 01:45:45 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme CCleaner.exe version 5.9.0.5343 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 15b8 Heure de début : 01d0f6597d0e8046 Heure de fin : 15 Chemin d’accès de l’application : C:\Program Files\CCleaner\CCleaner.exe ID de rapport : 0373bdb8-624d-11e5-b4c8-7071bc55c6dc Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (09/24/2015 01:03:38 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 01:02:11 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 01:00:59 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 12:58:50 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 12:57:01 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 12:55:56 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 12:53:30 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (09/24/2015 12:53:21 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {2d9c41d5-cc0f-4c83-aca1-153ebb839b54} Erreurs système: ============= Error: (09/24/2015 10:42:32 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Détection de services interactifs s’est arrêté avec l’erreur : %%1 Error: (09/24/2015 10:37:59 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Spybot-S&D 2 Scanner Service n’a pas pu démarrer en raison de l’erreur : %%1053 Error: (09/24/2015 10:37:59 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Scanner Service. Error: (09/24/2015 10:37:09 AM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: AUTORITE NT) Description: Le service du Planificateur de tâches n’a pas pu charger de tâches au démarrage du service. Données supplémentaires : Valeur de l’erreur : 2147942402. Error: (09/24/2015 01:44:51 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Détection de services interactifs s’est arrêté avec l’erreur : %%1 Error: (09/24/2015 01:40:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Spybot-S&D 2 Scanner Service n’a pas pu démarrer en raison de l’erreur : %%1053 Error: (09/24/2015 01:40:45 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Scanner Service. Error: (09/24/2015 01:40:13 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Spybot-S&D 2 Scanner Service n’a pas pu démarrer en raison de l’erreur : %%1053 Error: (09/24/2015 01:40:13 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Spybot-S&D 2 Scanner Service. Error: (09/24/2015 01:39:26 AM) (Source: Microsoft-Windows-TaskScheduler) (EventID: 413) (User: AUTORITE NT) Description: Le service du Planificateur de tâches n’a pas pu charger de tâches au démarrage du service. Données supplémentaires : Valeur de l’erreur : 2147942402. CodeIntegrity: =================================== Date: 2014-01-27 10:52:50.907 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:52:50.833 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:52:00.749 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:52:00.683 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:52:00.604 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:52:00.542 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:51:28.420 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 10:51:28.243 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 09:37:38.451 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2014-01-27 09:37:38.264 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Pentium(R) Dual-Core CPU E5500 @ 2.80GHz Pourcentage de mémoire utilisée: 63% Mémoire physique - RAM - totale: 3062.3 MB Mémoire physique - RAM - disponible: 1104.29 MB Mémoire virtuelle totale: 6134.3 MB Mémoire virtuelle disponible: 3956.8 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:94.52 GB) (Free:14.29 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (DONNEES) (Fixed) (Total:187.83 GB) (Free:175.75 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7A9ED8BA) Partition 1: (Active) - (Size=94.5 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=187.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================