Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version: 18-06-2016 Exécuté par jo (2016-06-18 19:01:23) Exécuté depuis C:\Users\jo\Desktop Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 2 (X86) (2009-07-20 00:37:56) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-558791011-2615555572-1791529532-500 - Administrator - Disabled) ASPNET (S-1-5-21-558791011-2615555572-1791529532-1002 - Limited - Enabled) BOB (S-1-5-21-558791011-2615555572-1791529532-1000 - Administrator - Enabled) => C:\Users\BOB Invité (S-1-5-21-558791011-2615555572-1791529532-501 - Limited - Enabled) jo (S-1-5-21-558791011-2615555572-1791529532-1003 - Administrator - Enabled) => C:\Users\jo ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95} AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden AccountService (Version: 1.1.69 - Essentware) Hidden Adobe AIR (HKLM\...\Adobe AIR) (Version: 19.0.0.213 - Adobe Systems Incorporated) Adobe Flash Player 22 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.) Avanquest message (HKLM\...\{20573C69-4A68-4BEF-A23D-365CB66924CD}) (Version: 1.05.0 - Avanquest Software) Capturino version 2.5 (HKLM\...\{0B8D7877-0178-4782-818A-0498F2E33BCC}_is1) (Version: 2.5 - Capturino Software - Jean-Paul Bellenger) CCleaner (HKLM\...\CCleaner) (Version: 5.17 - Piriform) Complément Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Dropbox (HKLM\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.) Dropbox Update Helper (Version: 1.3.27.35 - Dropbox, Inc.) Hidden ESU for Microsoft Vista (HKLM\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard) FileHippo App Manager (HKLM\...\FileHippo.com) (Version: - FileHippo.com) Galerie de photos Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.) Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden InPixio Photo (HKLM\...\{5F0C0CD8-77B1-4C3E-9F01-5AF10D85DBB4}) (Version: 6.05.0 - Avanquest Software) Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden LastPass (Désinstaller uniquement) (HKLM\...\LastPass) (Version: - LastPass) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - ) Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - ) Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft IntelliPoint 8.2 (HKLM\...\Microsoft IntelliPoint 8.2) (Version: 8.20.468.0 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [FRA] (HKLM\...\{BCC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Works (HKLM\...\{3B160861-7250-451E-B5EE-8B92BF30A710}) (Version: 9.7.0621 - Microsoft Corporation) Microsoft Works 6-9 Converter (HKLM\...\{95140000-0137-040C-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation) Mozilla Firefox 46.0.1 (x86 fr) (HKLM\...\Mozilla Firefox 46.0.1 (x86 fr)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla) OpenOffice 4.1.1 (HKLM\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) PCKAVLang.fr (Version: 1.0.0 - Essentware) Hidden Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Rapport (Version: 3.5.1609.65 - Trusteer) Hidden Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) Scan (HKLM\...\{A11409F1-CD33-4076-85CB-4EE4A8439BFE}) (Version: - ) Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden SFR - Media Center (HKLM\...\SFR_Media Center) (Version: 10.4.29.0 - SFR) SFR - Mediacenter Evolution (HKLM\...\SFR_Mediacenter Evolution) (Version: 13.2.26.0 - SFR) Skype™ 7.23 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform) Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1206 - SUPERAntiSpyware.com) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TomTom HOME (HKLM\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Nom de votre société) TomTom HOME (HKLM\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Nom de votre société) TomTom HOME (HKLM\...\{BB05590A-6602-43F3-A400-77EA0976BC0A}) (Version: 2.9.8 - Nom de votre société) TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) Trusteer Sécurité des points d'accès (HKLM\...\Rapport_msi) (Version: 3.5.1609.65 - Trusteer) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\jo\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-558791011-2615555572-1791529532-1003_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\jo\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05DE68C0-4229-491C-A2DF-C5990AF6A628} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated) Task: {07C8A52C-42C1-4676-A44D-389DD33ECEF9} - System32\Tasks\{E83AD9DB-0B71-40D6-A9A4-70EF0C0076AC} => pcalua.exe -a C:\Users\BOB\Documents\Downloads\windows-media-player-11_windows_media_player_11.0_francais_20085.exe -d C:\Users\BOB\Documents\Downloads Task: {0EF2308C-D1CA-4690-8FE9-6663CF8C9DD2} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => c:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation) Task: {23D10C83-A2E3-456B-AFCC-DFE9A9E2F019} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-04-15] (Piriform Ltd) Task: {25F98A58-ACDA-4118-A656-DC0E0FC1A5B5} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {282160B0-59B8-4B80-99C0-FDB08D715EE5} - System32\Tasks\{7C49421C-6073-48CC-904E-B09634BF9E5C} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.21.0.100&LastError=-3 Task: {2B287642-0532-4CF9-B301-996B9F048D44} - System32\Tasks\Programme de mise a jour PCKeeper => C:\ProgramData\Essentware\installer.exe <==== ATTENTION Task: {301D9E62-9106-4FE7-BE83-8FFF5F10BE9C} - System32\Tasks\shCYY3KojL3yY9b => C:\Users\BOB\AppData\Roaming\IS0suky\vMDb7v4.exe [2015-01-06] ( ) Task: {4D42F815-E063-41C4-BCB5-D8A273C8705D} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.) Task: {4DCCE3FE-E5E1-4C4C-943F-B99755609A84} - \PurpleRain\PurpleRain3 -> Pas de fichier <==== ATTENTION Task: {52784BFA-1C23-441D-8209-674BD0941897} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-25] (Google Inc.) Task: {57524B81-8592-4A7C-949B-5612880EB0FA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2015-09-28] (Dropbox, Inc.) Task: {59CFAABB-68CE-4E6D-A51B-E56795051E08} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated) Task: {5FEE4FE5-3764-4694-A02B-E356CD08527F} - System32\Tasks\{B8B18FC7-C81F-4984-B10D-27E50A134D86} => pcalua.exe -a "C:\Program Files\Passware\un-ariskkey.exe" -d "C:\Program Files\Passware" Task: {6DB8F9FC-6F19-4AEF-8699-00FCC914A5A9} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard) Task: {78AC39FA-9B2B-454E-86E1-3F2D2BD8B0BA} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.) Task: {79593619-0F55-477C-A55E-1B43285BE310} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2015-09-28] (Dropbox, Inc.) Task: {98159754-02E8-48CC-8F2E-EBACC907DBF1} - System32\Tasks\{AA531C01-532D-4812-98B1-C5CED778E7FD} => Chrome.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.22.0.109&LastError=-3 Task: {9E74F0DA-7BD8-4C2C-80DE-1B8AC30BB5C1} - \SUPERAntiSpyware Scheduled Task cb0a4c34-96b7-4148-9c16-f3eded04b233 -> Pas de fichier <==== ATTENTION Task: {9F03A7A3-A475-4300-8504-A70EE976631E} - \SUPERAntiSpyware Scheduled Task d1572ad5-0b15-4b8a-ae74-ea1b54699185 -> Pas de fichier <==== ATTENTION Task: {9F847749-618C-4FF1-B945-654AEED64D54} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-558791011-2615555572-1791529532-1003Core => C:\Users\jo\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-24] (Dropbox, Inc.) Task: {AA83FE18-5DE4-4277-B513-9A41B449C69F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-25] (Google Inc.) Task: {CD294140-33E1-48DD-9F4B-990F6C68FD31} - System32\Tasks\{5C681556-30C8-4109-A713-D113357E24A9} => pcalua.exe -a C:\Windows\system32\DivXControlPanelApplet.cpl -c DivX Control Panel Task: {FFCFAA58-5653-428A-B029-F3CABB111A19} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-558791011-2615555572-1791529532-1003UA => C:\Users\jo\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-24] (Dropbox, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-558791011-2615555572-1791529532-1003Core.job => C:\Users\jo\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-558791011-2615555572-1791529532-1003UA.job => C:\Users\jo\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\jo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail jo.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kmhopmchchfpfdcdjodmpfaaphdclmlj ShortcutWithArgument: C:\Users\jo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=miilmjmgkdhdabfkjkilgecbhbchboem ==================== Modules chargés (Avec liste blanche) ============== 2012-01-04 22:02 - 2007-08-21 14:32 - 00098304 ____C () C:\Windows\System32\redmonnt.dll 2013-03-24 10:49 - 2013-03-24 10:49 - 00157696 ____C () C:\Program Files\IpWrapper\nssm.exe 2015-06-02 15:51 - 2015-06-02 15:51 - 00545792 ____C () C:\Program Files\Trusteer\Rapport\bin\js32.dll 2016-03-31 15:11 - 2014-05-13 12:04 - 00109400 ____C () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-03-31 15:11 - 2014-05-13 12:04 - 00416600 ____C () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl 2016-03-31 15:11 - 2014-05-13 12:04 - 00167768 ____C () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-03-31 15:11 - 2012-08-23 10:38 - 00574840 ____C () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll 2016-03-31 15:11 - 2012-04-03 17:06 - 00565640 ____C () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2010-07-04 23:32 - 2010-07-04 23:32 - 00010752 ____C () C:\Program Files\Unlocker\UnlockerCOM.dll 2015-07-03 21:39 - 2014-02-10 13:44 - 04592128 ____C () C:\Users\jo\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll 2015-07-03 21:39 - 2014-02-10 13:44 - 00112128 ____C () C:\Users\jo\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll 2016-06-18 13:53 - 2016-06-14 11:36 - 17595072 _____ () C:\Users\jo\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.192\pepflashplayer.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:373E1720 [118] AlternateDataStreams: C:\ProgramData\Temp:A76E9BDB [131] AlternateDataStreams: C:\Users\BOB\Downloads:Shareaza.GUID [16] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Il y a 7904 plus de sites. IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-558791011-2615555572-1791529532-1003\...\123simsen.com -> www.123simsen.com Il y a 7904 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2006-11-02 12:23 - 2016-06-11 17:16 - 00452613 ___RC C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com Il y a 15533 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-558791011-2615555572-1791529532-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\jo\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) MSCONFIG\Services: RapportMgmtService => 2 MSCONFIG\Services: Recovery Service for Windows => 2 MSCONFIG\Services: RichVideo => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: STacSV => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Install LastPass IE RunOnce.lnk => C:\Windows\pss\Install LastPass IE RunOnce.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^BOB^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup MSCONFIG\startupfolder: C:^Users^BOB^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Lanceur.lnk => C:\Windows\pss\Lanceur.lnk.Startup MSCONFIG\startupfolder: C:^Users^BOB^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk => C:\Windows\pss\OpenOffice.org 3.3.lnk.Startup MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AutoStartNPSAgent => C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe MSCONFIG\startupreg: HP Health Check Scheduler => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe MSCONFIG\startupreg: IntelliPoint => "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" MSCONFIG\startupreg: Neuf Media Center => "C:\Program Files\SFR\Media Center\MediaCenter.exe" MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe MSCONFIG\startupreg: PMBVolumeWatcher => C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start MSCONFIG\startupreg: SFR Mediacenter => "C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe" /tray MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray.exe MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files\Unlocker\UnlockerAssistant.exe" MSCONFIG\startupreg: UpdatePSTShortCut => "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" MSCONFIG\startupreg: Windows Defender => %ProgramFiles%\Windows Defender\MSASCui.exe -hide MSCONFIG\startupreg: WirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe FirewallRules: [{0CE0E9B4-3C72-47E5-AFE1-91869AA64A2A}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR.EXE FirewallRules: [{06D38998-A8FD-4521-88DD-BAC82E6595C4}] => (Allow) C:\Program Files\HP\QuickPlay\QP.exe FirewallRules: [{DA7C2E93-AD8B-4423-88AB-007A1246C63B}] => (Allow) C:\Program Files\HP\QuickPlay\QPService.exe FirewallRules: [{392D9945-4CF0-46FF-B7D2-789E9987B3B1}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{E4C1B665-4DBD-4615-90BA-31061D6FA1AF}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{1AB1E964-5F40-42E8-ACEE-7DC0E53AD85D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{1A03CC6F-278A-4871-BA89-C9E675EF0CA5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{E681ADED-35CC-45C2-A98A-EFA985B62C37}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{A4781857-91D0-4FC0-9FF5-F856163DEEC7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{2CB4CF92-62F5-461E-AC15-6B45EA50A7F3}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{9E4FF756-1548-422A-A4B9-71C3B3139925}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{53B71AF9-0424-4993-96BA-C7CC05ED7390}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{74203C55-35DC-48C1-9D44-2B573CC35C03}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [TCP Query User{86D101C4-BC79-4FB2-BEC0-0D57FF1BD2D5}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [UDP Query User{CA49D945-59A0-468E-B07D-F99D234A91C7}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [{C8210263-8203-40A6-9344-BC50A6C0E731}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe FirewallRules: [{F5C31E17-B5CB-48A6-811B-C22E13AC80ED}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe FirewallRules: [{C70CF799-8EDB-40D6-9235-1FEF0FDA3F45}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe FirewallRules: [{A8BC8BE8-8E8B-421D-AFF5-C2F0D9EB56AA}] => (Allow) C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe FirewallRules: [{B07D8263-3A1E-4C1E-AE4F-B8CA831810DB}] => (Allow) C:\Program Files\HP\Digital Imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{FB1BFAE3-92CF-4954-AF22-CDAD680638E2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{4129A089-A43C-4A06-8486-191895F35B93}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{BDCB4641-166B-4DEB-A0C2-2E3AC96F53E1}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{0BA63F68-57ED-4CDD-820D-AE6DE8C1D119}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{BA2BF2AB-3DAC-401C-AD88-19B5CFA7C5F5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{FE14BC0A-8687-4C9E-B3AF-4F9F8843A8BF}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{57105D97-91FB-44D0-8F1A-B0C868B49945}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe FirewallRules: [{2B7943D9-2136-4F46-8023-F3C91492B3A2}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe FirewallRules: [{FEB41CA8-63E7-4DEB-9F2C-15495195F5A8}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe FirewallRules: [{248EC088-9429-46EA-8B04-6B86802EA0EC}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{6863DCC7-A953-4ED7-B6F0-DE6C91C654FA}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{13B79895-33A8-4AAE-AD3D-9D9A774C9A96}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{08DF6E04-1E26-4978-BF95-90D6430D368A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{A05C6D81-7A9C-4600-A16D-AC4255A28188}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe FirewallRules: [{E0C20709-425E-4FDC-8597-A275FFC5A7CC}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{61E4F978-45C5-447A-8633-D168736BA609}] => (Allow) LPort=2869 FirewallRules: [{B38A4435-3A70-416B-B064-0A310800E367}] => (Allow) LPort=1900 FirewallRules: [{6FF11C73-3193-44B5-9454-AF716E141F33}] => (Allow) LPort=80 FirewallRules: [{69AA8D9F-8F7B-4C4C-B1D0-E8F7F42959BA}] => (Allow) LPort=80 FirewallRules: [{2DD4A3B2-1100-421C-8AC6-5A6E51480488}] => (Allow) LPort=80 FirewallRules: [{BD2D1ED0-1466-4F9F-A008-64BDE0535493}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe FirewallRules: [TCP Query User{12BFC47A-EDED-4511-ADAD-94B6D1E8F10E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{8A42A596-26F8-4DA2-A504-1EB5BF626C46}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{26CE031F-3C53-453F-9CEB-3D92356897E7}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{3D80B0D1-16E4-4B8C-ABDD-943CD4F12CFC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{8FA3BB7E-3658-4C0F-8959-4D5ADDE55D1F}] => (Allow) C:\Program Files\SFR\Media Center\httpd\httpd.exe FirewallRules: [{6292D9D6-0260-4ECA-97C8-E93DBC15ADE2}] => (Allow) C:\Program Files\SFR\Media Center\httpd\httpd.exe FirewallRules: [{73BF68BA-D5AC-47CE-8BA6-F395AA52C7EE}] => (Allow) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe FirewallRules: [{4D1EC4B1-C16B-45C0-A566-6244FF0722AD}] => (Allow) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe FirewallRules: [TCP Query User{6CD05914-8233-4AAF-A85E-55CB1DD1F741}C:\users\bob\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\bob\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{2B0F6CEF-D8B7-495B-9A66-C694E6758FE4}C:\users\bob\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\bob\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{836F4776-6B95-4EBE-82A6-6D39772328BA}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{FA611CE9-E956-4E98-9B88-9515F734152C}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{7853AF0B-9FB1-48EB-8111-A77806E4DB47}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe FirewallRules: [UDP Query User{6654D802-DF41-4435-A25A-FA503290F835}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe FirewallRules: [{C8EC346B-4758-4613-80CF-94A16BF8CB5B}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe FirewallRules: [{BD8CC767-D348-4959-A36F-FDD5223A0C32}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe FirewallRules: [{81533C19-DAED-47C1-B88F-5D45B1B400A6}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe FirewallRules: [{D0F9CD4C-CF4D-4BD1-9343-EE314CB9BB71}] => (Allow) C:\Program Files\FreeMi UPnP Media Server\FreeMi.WindowsService.exe FirewallRules: [TCP Query User{DD60E3B0-0A41-457F-BC74-72B58EC3D1B4}C:\users\bob\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bob\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{0BC16333-A19D-4246-9818-ABF507EF57C0}C:\users\bob\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bob\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{E713AE96-5D9A-47AA-AA09-A241FEF921F4}C:\users\bob\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bob\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{B51EB173-0AFC-4642-AD83-3BB6E9C44A25}C:\users\bob\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bob\appdata\roaming\spotify\spotify.exe FirewallRules: [{3ABC6A47-247F-4B02-B53F-366E0FC949B0}] => (Allow) C:\Program Files\SFR\Media Center\httpd\httpd.exe FirewallRules: [{48F84566-1012-457C-9C72-4B745822556F}] => (Allow) C:\Program Files\SFR\Media Center\httpd\httpd.exe FirewallRules: [{729D219F-0838-4547-B0F2-5EBB75F4D0EB}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{AB35E581-A65F-4AB6-982F-3D7B90D6C191}] => (Allow) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe FirewallRules: [{D6896AEB-A8C8-45A0-BE2A-0AA8466CCFF4}] => (Allow) C:\Program Files\SFR\Mediacenter Evolution\MediaCenter.exe FirewallRules: [{C4AA0B26-C0B7-4A35-8DD7-AE515D65F40F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{9CC79BEE-FF87-4F04-807D-F486F5BBE749}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{B0C7F288-B480-42D8-BCFF-11825F0B0B4E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{5805DC91-0300-4AA5-BB1B-B1001AC32518}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{FA2BA99D-B800-405A-A5E9-DD9FEA299CAB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{9A67A515-6C50-4824-B1D6-4E1F39AAE661}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{ED369FE0-4BA6-415F-BFEE-368FD28CD35E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{7554B9F3-84DF-4C43-AA0A-199DB3094217}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{59E6B618-A2BD-4DC9-B03A-66C78A350F21}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{971E7CE2-5163-42B1-8722-7B8FEAE10BBE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{A124E4A8-C1AC-43DA-BFFA-F6172022B8B4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{4A437CCD-0E43-40D3-8C70-B8F96CB90C59}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{A36F6F2B-D4EA-487D-9414-E07AC3F48C98}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{3D00BF65-21D8-4C55-A945-4063AB092F6E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{341753E3-0A91-42B6-AB12-AC2352606BBF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{AC5967A3-AAB0-40B7-B51F-5302CCB5A045}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 05-05-2016 17:53:55 Point de contrôle planifié 08-05-2016 15:35:29 Windows Update 11-05-2016 19:29:49 Windows Update 22-05-2016 10:56:45 Windows Update 23-05-2016 10:38:33 Installed Rapport 27-05-2016 15:00:38 Windows Update 30-05-2016 15:56:04 Windows Update 01-06-2016 18:54:40 Point de contrôle planifié 02-06-2016 10:37:04 Installed Rapport 02-06-2016 21:33:08 Windows Update 09-06-2016 13:58:11 Windows Update 10-06-2016 15:41:05 Installed Rapport 13-06-2016 15:23:41 Windows Update 18-06-2016 14:46:05 Revo Uninstaller's restore point - PCKeeper 18-06-2016 14:47:14 Removed PCKeeper 18-06-2016 14:54:53 Removed PCKLang.fr 18-06-2016 14:58:46 Revo Uninstaller's restore point - PCKeeper Antivirus ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: BitDefender AVC HV Description: BitDefender AVC HV Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard system devices) Service: avchv Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/18/2016 05:52:33 PM) (Source: MsiInstaller) (EventID: 11706) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1706.No valid source could be found for product Nero Update. The Windows Installer cannot continue. Error: (06/18/2016 05:49:34 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/18/2016 02:58:41 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {8d83c130-2e2f-41d6-9192-90ec23cb5b1d} Error: (06/18/2016 02:46:01 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {8d83c130-2e2f-41d6-9192-90ec23cb5b1d} Error: (06/18/2016 01:04:29 PM) (Source: MsiInstaller) (EventID: 11706) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1706.No valid source could be found for product Nero Update. The Windows Installer cannot continue. Error: (06/18/2016 01:01:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/17/2016 10:37:58 PM) (Source: nssm) (EventID: 1044) (User: ) Description: Échec de GetProcessTimes(): Descripteur non valide Error: (06/17/2016 02:48:34 PM) (Source: MsiInstaller) (EventID: 11706) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1706.No valid source could be found for product Nero Update. The Windows Installer cannot continue. Error: (06/17/2016 02:46:21 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/17/2016 02:41:34 PM) (Source: nssm) (EventID: 1044) (User: ) Description: Échec de GetProcessTimes(): Descripteur non valide Erreurs système: ============= Error: (06/18/2016 06:22:42 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:21:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:21:15 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:20:49 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:20:08 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:19:36 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:19:07 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:03:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:02:57 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService Error: (06/18/2016 06:02:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: 30000RapportMgmtService CodeIntegrity: =================================== Date: 2016-06-18 19:23:58.994 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Program Files\Trusteer\Rapport\bin\RapportEI.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 19:23:54.006 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Program Files\Trusteer\Rapport\bin\RapportEI.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 19:23:48.831 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Program Files\Trusteer\Rapport\bin\RapportEI.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 19:23:44.698 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Program Files\Trusteer\Rapport\bin\RapportEI.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:40.479 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportKELL.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:38.108 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportKELL.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:35.363 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportKELL.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:32.572 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportKELL.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:29.684 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportHades.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2016-06-18 18:59:27.611 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\RapportHades.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. ==================== Infos Mémoire =========================== Processeur: Pentium(R) Dual-Core CPU T4200 @ 2.00GHz Pourcentage de mémoire utilisée: 41% Mémoire physique - RAM - totale: 2973.98 MB Mémoire physique - RAM - disponible: 1726.49 MB Mémoire virtuelle totale: 6184.2 MB Mémoire virtuelle disponible: 3843.67 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:287.66 GB) (Free:61.8 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (RECOVERY) (Fixed) (Total:10.42 GB) (Free:1.75 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 2FE4BE80) Partition 1: (Active) - (Size=287.7 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=10.4 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================