Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-09-2017
Exécuté par katao (11-09-2017 19:54:57)
Exécuté depuis C:\Users\katao\Desktop
Windows 10 Home Version 1703 (X64) (2017-07-20 15:32:43)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2619405974-1694285194-1722495122-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2619405974-1694285194-1722495122-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2619405974-1694285194-1722495122-1003 - Limited - Enabled)
Invité (S-1-5-21-2619405974-1694285194-1722495122-501 - Limited - Disabled)
katao (S-1-5-21-2619405974-1694285194-1722495122-1001 - Administrator - Enabled) => C:\Users\katao
taobo (S-1-5-21-2619405974-1694285194-1722495122-1004 - Limited - Enabled) => C:\Users\taobo

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Amazon Kindle (HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\Amazon Kindle) (Version:  - Amazon)
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{7FBA6627-88F8-0AE0-9326-FB8488DD26E0}) (Version: 3.0.812.0 - ATI Technologies, Inc.)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.6.2310 - AVAST Software)
B110 (HKLM-x32\...\{9F9A2D22-7E30-4546-B817-10644FFB9935}) (Version: 140.0.283.000 - Hewlett-Packard) Hidden
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
C4700 (HKLM-x32\...\{B5978DF3-8A04-4F22-AF67-8CCE52E04B13}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.3.5.0 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.0.0 - Canon Inc.)
Canon iP7200 series On-screen Manual (HKLM-x32\...\Canon iP7200 series On-screen Manual) (Version: 7.5.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version:  - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.0.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.0.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.0.0 - Canon Inc.)
ccc-core-static (HKLM-x32\...\{8BE8CC83-C423-BF43-C1A0-9C072E3785B7}) (Version: 2011.0228.1151.21177 - Nom de votre société) Hidden
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.1.3922 - CyberLink Corp.)
Désinstaller Mediapige.NET (HKLM-x32\...\6BC9621F-4BB5-49B8-8FD1-459C923AC402_is1) (Version:  - Mediapige.NET)
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Disketch Disc Label Software (HKLM-x32\...\Disketch) (Version:  - NCH Software)
Enregistrement utilisateur de Canon iP7200 series (HKLM-x32\...\Enregistrement utilisateur de Canon iP7200 series) (Version:  - Canon Inc.‎)
ESU for Microsoft Windows 7 (HKLM-x32\...\{3877C901-7B90-4727-A639-B6ED2DD59D43}) (Version: 1.0.0 - Hewlett-Packard)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
GeekBuddy (HKLM\...\{266FA04F-F0FA-4F7A-AA1E-387A57F579F2}) (Version: 4.19.131 - Comodo Security Solutions Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connection Manager (HKLM-x32\...\{B65FCAA5-F3A6-4B3F-ABEE-CBC2B085796B}) (Version: 4.1.25.1 - Hewlett-Packard Company)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP On Screen Display (HKLM-x32\...\{ED1BD69A-07E3-418C-91F1-D856582581BF}) (Version: 1.3.5 - Hewlett-Packard Company)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Photosmart C4700 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{68550918-63B5-4762-85CB-3C160AA4B213}) (Version: 14.0 - HP)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7 (HKLM\...\{59C83C08-63F4-4AEC-81D6-392C5E23B843}) (Version: 14.0 - HP)
HP Quick Launch (HKLM-x32\...\{53B17A98-5BF0-40BC-AAFF-850A357975AC}) (Version: 2.7.2 - Hewlett-Packard Company)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Software Framework (HKLM-x32\...\{98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}) (Version: 4.6.10.1 - Hewlett-Packard Company)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{C255181E-049B-4B54-A39C-61A94E32C374}) (Version: 12.7.27.15 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (HKLM-x32\...\{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}) (Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Icecream Ebook Reader version 1.62 (HKLM-x32\...\{B8C30F0F-1F23-49E1-A3ED-44DE17660EE2}_is1) (Version: 1.62 - Icecream Apps)
iCloud (HKLM\...\{4BB313CE-D3D1-424C-8823-15CF85B00B05}) (Version: 6.1.0.30 - Apple Inc.)
IcoFX 2.10 (HKLM-x32\...\IcoFX 2_is1) (Version:  - )
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6319.0 - IDT)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation)
Java 8 Update 77 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.7157.5002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels)
Network64 (HKLM\...\{48C0866E-57EB-444C-8371-8E4321066BC3}) (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.221.000 - Hewlett-Packard) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}) (Version: 3.41.9593 - Apache Software Foundation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.5 - Tracker Software Products Ltd)
PhotoFiltre 7 (HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\PhotoFiltre 7) (Version:  - )
PS_AIO_06_C4700_SW_Min (HKLM-x32\...\{537DB9D6-1AB1-4CE9-8DE7-312256B49A98}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
PS_AIO_07_B110_SW_Min (HKLM-x32\...\{F88E2E04-7EF5-488C-8E38-C94EB808458E}) (Version: 140.0.142.000 - Hewlett-Packard) Hidden
QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.40.126.2011 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.83 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.11.0706 - REALTEK Semiconductor Corp.)
Recovery Manager (HKLM-x32\...\{DBCD5E64-7379-4648-9444-8A6558DCB614}) (Version: 2.0.0 - Hewlett-Packard) Hidden
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Web Plugin (HKLM-x32\...\{B51DD93B-3CB5-4D9D-BFF2-FD19DBBBFD9A}) (Version: 2.9.13008.18866 - Skype Technologies S.A.)
SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.214.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.256.000 - Hewlett-Packard) Hidden
STDU Viewer version 1.6.2.0 (HKLM-x32\...\STDU Viewer_is1) (Version: 1.6.2.0 - STDUtility)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.98 - Synaptics Incorporated)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.212.017 - Hewlett-Packard) Hidden
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{42A2FD03-F0C7-6DD5-8D7B-EBAA992F12AA}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Wondershare Data Recovery(Build 4.2.0.0) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 4.2.0.0 - Wondershare Software Co.,Ltd.)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-09] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-09] (AVAST Software)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  -> Pas de fichier
ContextMenuHandlers1: [


iSafeRKScan] -> {5411D116-5A37-47D4-B154-5F7FCD9062F0} =>  -> Pas de fichier
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-09] (AVAST Software)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-11-17] (Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-09] (AVAST Software)
ContextMenuHandlers4: [


iSafeRKScan] -> {5411D116-5A37-47D4-B154-5F7FCD9062F0} =>  -> Pas de fichier
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Pas de fichier
ContextMenuHandlers6: [


iSafeRKScan] -> {5411D116-5A37-47D4-B154-5F7FCD9062F0} =>  -> Pas de fichier
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-09] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0918B55F-CAA7-4BA4-857D-0C2D095B5813} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {1656B9AD-6556-4FBD-8691-78F04DBF8DC1} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] ()
Task: {16C90C26-ADD9-4F2D-869C-E803DB3CFF91} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {17EF1C31-70F1-48B9-86D8-6740A3F284F6} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {180A02F4-2F9B-467D-8167-76DE55641770} - \media enhance-enabler -> Pas de fichier <==== ATTENTION
Task: {1E8ED73E-433D-45FA-9349-34F27D16AF2A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {20C3B182-F358-411F-AB55-0DB7F9D86B3A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {236AB8CA-7880-4E7A-940F-EAA25E101133} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {2375A8A4-E7FD-4C2B-A4F9-33FF11175F94} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {2851FCC9-A789-40F7-A1A8-03F9B75A40CF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {2B0F69B3-85F9-454D-85C9-A840A86EDFA8} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2619405974-1694285194-1722495122-1001UA => C:\Users\katao\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {2B6A61D3-8FA4-48FF-B0C9-83AFF095D83C} - System32\Tasks\SafeZone scheduled Autoupdate 1459154398 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {2DD5B6F3-E3E7-4437-9AAE-7343DDE1E460} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {39F618A3-04CA-4222-BE2D-F474EC57DE36} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3ABA77B2-AB8D-4DAA-BB8D-FF363667655E} - \media enhance-chromeinstaller -> Pas de fichier <==== ATTENTION
Task: {43269FEC-9C92-4543-89AF-4756664DB81B} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {475BDC31-FEB3-4CD4-A909-223F408F62DA} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> Pas de fichier <==== ATTENTION
Task: {49A00BB4-8470-486D-8017-C84AB456010B} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-22] (CyberLink)
Task: {49D8328B-6EEA-42A8-BB82-2FE0F74F3494} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {4C64E7E3-5DC9-4FC2-B79D-6BE4A537529E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4E9297C2-4F48-4493-B25E-B68F11F6F034} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {4FFFB9BB-FF09-4DBB-9C51-03598A7FB1F0} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION
Task: {5BDDD0CD-1D37-4423-82F4-393C05752D9C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {6233F3AE-FC5B-4A3B-B753-70B7005D1CF7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {6A867FA4-0814-4BA2-A6DA-28BD95FFB726} - \COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} -> Pas de fichier <==== ATTENTION
Task: {6B9ECC32-DC10-48FD-BE28-A8C6C19A9818} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {71EC3F8A-97EE-49E3-9611-A69D7A65B41E} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {726EFB77-8A99-4B4E-B9E1-55862CC2A269} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {74D43E99-A258-4B66-ADD4-4AB9D4D89E36} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe
Task: {75E791D2-E06B-47AD-BFE1-95FEFBE45357} - System32\Tasks\{86F96549-8CF9-43F0-9789-66E9DF2BF01D} => C:\WINDOWS\system32\pcalua.exe -a E:\autorun\autorun.exe -d E:\
Task: {7BFA5046-73C0-401D-867F-6A258BA3294A} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8239315D-754D-4962-88B4-B2FCA893560D} - \media enhance-codedownloader -> Pas de fichier <==== ATTENTION
Task: {89A4FFC6-D189-4860-92F2-C3FB89D8AE04} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> Pas de fichier <==== ATTENTION
Task: {8B0883BF-1C4D-4AD5-B7B7-67184170B278} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {8B0F58BE-FFC6-4843-B368-6606A908C746} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {90527773-45AD-4A7C-8A37-810377AC1C5A} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe
Task: {93DACBC5-2712-45B7-AB3B-DDD5DCBC9750} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {94AFEA33-6639-4BD3-94C1-9A2AEBFF0327} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {97F8A21A-6F05-4E8B-911E-859954B55CA2} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9973D832-CC83-4605-A236-E470927602EC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {9D46C5D5-D483-4D76-92AE-C59D2BFAEDE2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {9E6E4496-3F07-4A88-8873-23BC898D41E0} - \WinTaske -> Pas de fichier <==== ATTENTION
Task: {9F06556B-40D7-4809-8308-B417AEC8AB43} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.)
Task: {A16BD664-8509-4386-8D5D-0EFCBFBB40D5} - \COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} -> Pas de fichier <==== ATTENTION
Task: {A2E71F85-CF37-42F4-8940-27ED099D30E7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {A7C78F69-C9AD-4204-9FF9-4AF1B3E4EAB0} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {A956FC0B-9B9F-4E1D-AF18-EF1874AE88D1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {A9F96D98-77E4-4AB1-8ED0-B893A5036CD7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {B045A67D-BB17-4DBE-AD58-655011629385} - System32\Tasks\{4658F261-577C-4296-8E13-7926DAC9D528} => C:\Windows\system32\pcalua.exe -a C:\Users\katao\Downloads\jxpiinstall.exe -d C:\Users\katao\Downloads
Task: {B0A8AEBF-8CF7-4C33-81C7-17F1950A71A9} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B2DE9E2F-E39E-442D-B28B-E8789EE25E2D} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B505C699-22A7-4DB3-A1AB-E0604032CAD6} - \COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} -> Pas de fichier <==== ATTENTION
Task: {B52D41D1-38A0-4539-A5DD-EFAF9C7490BD} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2619405974-1694285194-1722495122-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\RealUpgrade.exe
Task: {C4768A0E-2BBD-430C-9771-EFDCF08AC50A} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> Pas de fichier <==== ATTENTION
Task: {C4F63883-3470-4B2A-8B19-DC1C10C8D84B} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] ()
Task: {C63E6614-A79A-4D22-9345-4B3F68DAF488} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C89C8CA7-E8DC-4BA6-BBED-97480E8CFDD8} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {CCB323BD-9412-4CC3-8A31-BE400E2A44C9} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [2017-06-27] (Tracker Software Products (Canada) Ltd.)
Task: {D2C8CD94-3536-42F2-9EE9-133EFB14E091} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {DA0F6FA0-B389-4DA6-8DAB-271E1CCC4226} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {DC03B6DB-5B55-47F0-AB50-B90C85ECC5F5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DC449252-8734-4F2F-995D-703B5E3B921D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {E09E7FCA-0C68-48C3-9951-A03749BEADA4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2619405974-1694285194-1722495122-1001Core => C:\Users\katao\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {E120B524-3F09-4469-B471-D161DFDE42D4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E2DA1795-FECF-4402-BEBA-48DDCA666672} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {E2E925C4-6AB0-4532-9C59-51E19910F823} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-10] (Adobe Systems Incorporated)
Task: {EB365421-D807-4096-8974-A1AC32E14B79} - \media enhance-firefoxinstaller -> Pas de fichier <==== ATTENTION
Task: {ED1AB923-78FA-4F11-B344-90B641B3F3D3} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EEF77CD4-AC03-48C3-869B-F2360271C252} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION
Task: {F1E62BB9-9F19-4C60-8C1B-E1D4D1490A02} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F5F05E6E-7DCC-43B6-878D-E2C149D58889} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {F77697CD-1DE6-4962-9AA9-5EB9A8F3BB91} - \media enhance-updater -> Pas de fichier <==== ATTENTION
Task: {FE18D29C-28F0-47A4-9178-50EEFA7A9C00} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-09-09] (AVAST Software)
Task: {FFB57379-84C1-4987-ABB0-C76F49740EA0} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2619405974-1694285194-1722495122-1001Core.job => C:\Users\katao\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2619405974-1694285194-1722495122-1001UA.job => C:\Users\katao\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


ShortcutWithArgument: C:\Users\katao\AppData\Local\Google\Chrome\User Data\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list

==================== Modules chargés (Avec liste blanche) ==============

2015-01-03 15:42 - 2015-01-03 15:42 - 000140456 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2011-02-28 13:01 - 2011-02-28 13:01 - 000079872 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Services.dll
2011-02-28 13:01 - 2011-02-28 13:01 - 000073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll
2017-09-11 19:42 - 2017-09-04 10:12 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libglesv2.dll
2017-09-11 19:42 - 2017-09-04 10:12 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libegl.dll
2017-09-09 09:36 - 2017-07-28 11:18 - 031134720 _____ () C:\Users\katao\AppData\Local\Google\Chrome\User Data\PepperFlash\26.0.0.151\pepflashplayer.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-07-04 22:21 - 2017-07-04 22:21 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000211904 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000241960 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000233768 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-09-09 09:20 - 2017-09-09 09:20 - 000685688 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-11-17 02:29 - 2016-11-17 02:29 - 001041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-11-17 02:28 - 2016-11-17 02:28 - 000189752 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxslt.dll
2016-10-05 19:18 - 2016-10-05 19:18 - 000080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\WINDOWS\OptR29ab.rra:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\SysWOW64\d3dx9_33.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\OptMon64.sys:$CmdTcID [64]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\...\123simsen.com -> www.123simsen.com

Il y a 7866 plus de sites.


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 04:34 - 2017-07-07 18:02 - 000450637 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	123haustiereundmehr.com
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123moviedownload.com
127.0.0.1	www.123moviedownload.com

Il y a 15461 plus de lignes.


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2619405974-1694285194-1722495122-1001\Control Panel\Desktop\\Wallpaper -> c:\users\katao\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{269ffa56-ec03-41a7-a356-d3b9d5a51ecd}.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 212.27.40.240 - 212.27.40.241
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^RealPlayer Cloud Service UI.lnk => C:\Windows\pss\RealPlayer Cloud Service UI.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^katao^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Horloge La Poste.lnk => C:\Windows\pss\Horloge La Poste.lnk.Startup
MSCONFIG\startupfolder: C:^Users^katao^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: Badoo Desktop => C:\ProgramData\Badoo\Badoo Desktop\1.6.58.1220\Badoo.Desktop.exe
MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: COMODO Internet Security => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
MSCONFIG\startupreg: ExpressZipUninstall => cmd.exe /C rmdir /S /Q "C:\Program Files (x86)\NCH Software\ExpressZip"
MSCONFIG\startupreg: ExpressZipUninstall2 => cmd.exe /C rmdir /Q "C:\Program Files (x86)\NCH Software\ExpressZip"
MSCONFIG\startupreg: ExpressZipUninstall3 => cmd.exe /C rmdir /S /Q "C:\Users\katao\AppData\Roaming\NCH Software\Program Files\ExpressZip"
MSCONFIG\startupreg: ExpressZipUninstall4 => cmd.exe /C rmdir /Q "C:\Users\katao\AppData\Roaming\NCH Software\Program Files"
MSCONFIG\startupreg: ExpressZipUninstall5 => cmd.exe /C rmdir /Q "C:\Users\katao\AppData\Roaming\NCH Software"
MSCONFIG\startupreg: Facebook Update => "C:\Users\katao\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: HPersonalOrganizer => "C:\Program Files (x86)\Hyperpractical\The Hyperpractical Personal Organizer\Hyperpratical.PersonalOrganizer.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spybot-S&D Cleaning => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{15DCC844-7BF3-4BE4-94B2-08C0BFDE83B1}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{7D1FA51F-0728-4E29-B752-E7BA48256031}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\{59C83C08-63F4-4AEC-81D6-392C5E23B843}\setup\hpznui40.exe
FirewallRules: [{44B5BCF7-B5F7-4D66-BC61-6132656C883B}] => (Allow) C:\Program Files (x86)\SkypeWebPlugin\SkypeWebPlugin.exe
FirewallRules: [{D169603B-B295-4932-B1F5-F991A3C68607}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{0A35CE05-1937-4B5C-A8EF-FE341BD88F22}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{F8C07D68-F772-401A-B278-40304871B445}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{A056E253-D40C-4FA0-9471-6E0BDD137C9D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{D5A44671-569C-4379-8A3C-50352B3D484C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{A564797E-ECAD-4D87-9A9E-09D2796827F8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{263F9E12-CBEE-414A-A7FF-7E23D9CA09AC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{9DF2E5D3-DB5E-4850-9F96-9047E0283059}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{5BA1EDAF-F677-427E-BD40-64172485C899}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{3AFA65B4-292C-4A6A-AAF1-726B778C19E4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{734764C1-A91F-46EA-BB06-9EEF261713AA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{2F070F4E-6150-4AE3-979E-53DFFF9E3068}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{8D9AEEF0-CED8-46EE-89A0-7F6D3E95F671}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{7D4F65F7-8B9A-4794-A8D0-57E9F487B038}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [{0B073B4F-E8F8-407F-9E48-7AAF6C08388B}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{83B287FD-89A4-4C33-892F-713CDFD6ACF0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

19-08-2017 10:54:37 Point de contrôle planifié
10-09-2017 03:47:20 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (09/11/2017 07:33:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: KATAO-HP)
Description: Échec de l’activation de l’application Microsoft.Windows.Photos_8wekyb3d8bbwe!App avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (09/10/2017 06:23:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Nom du module défaillant : sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000000d6ee
ID du processus défaillant : 0x1f24
Heure de début de l’application défaillante : 0x01d32a50ff5723e5
Chemin d’accès de l’application défaillante : C:\Program Files\IDT\WDM\sttray64.exe
Chemin d’accès du module défaillant: C:\Program Files\IDT\WDM\sttray64.exe
ID de rapport : 5886d8c8-511d-4117-b4e5-cab66111907b
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/10/2017 06:22:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Nom du module défaillant : sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000000d6ee
ID du processus défaillant : 0x1f24
Heure de début de l’application défaillante : 0x01d32a50ff5723e5
Chemin d’accès de l’application défaillante : C:\Program Files\IDT\WDM\sttray64.exe
Chemin d’accès du module défaillant: C:\Program Files\IDT\WDM\sttray64.exe
ID de rapport : 110a50f9-55c1-4b63-b55f-4f586924c89a
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/10/2017 06:20:16 PM) (Source: STacSV) (EventID: 32767) (User: AUTORITE NT)
Description: Connection to the Storage interface failed

Error: (09/10/2017 02:12:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Nom du module défaillant : sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000000d6ee
ID du processus défaillant : 0x1f38
Heure de début de l’application défaillante : 0x01d32a2e0c53662f
Chemin d’accès de l’application défaillante : C:\Program Files\IDT\WDM\sttray64.exe
Chemin d’accès du module défaillant: C:\Program Files\IDT\WDM\sttray64.exe
ID de rapport : 32d2452b-22d1-4012-95c6-12789635d0f8
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/10/2017 02:12:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Nom du module défaillant : sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000000d6ee
ID du processus défaillant : 0x1f38
Heure de début de l’application défaillante : 0x01d32a2e0c53662f
Chemin d’accès de l’application défaillante : C:\Program Files\IDT\WDM\sttray64.exe
Chemin d’accès du module défaillant: C:\Program Files\IDT\WDM\sttray64.exe
ID de rapport : 535ce0d7-8490-48c3-956e-7d62202e3608
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (09/10/2017 02:05:27 PM) (Source: STacSV) (EventID: 32767) (User: AUTORITE NT)
Description: Connection to the Storage interface failed

Error: (09/10/2017 12:04:02 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: KATAO-HP)
Description: Le package Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe+ContentProcess#{00071401-0001-0000-c9d9-340000000000} a été interrompu, car sa suspension a été trop longue.

Error: (09/09/2017 09:54:52 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: KATAO-HP)
Description: Le package Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe+ContentProcess#{00061401-0001-0000-68f0-110000000000} a été interrompu, car sa suspension a été trop longue.

Error: (09/09/2017 09:13:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Nom du module défaillant : sttray64.exe, version : 1.0.6319.0, horodatage : 0x4d0b34e1
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000000d6ee
ID du processus défaillant : 0x1e74
Heure de début de l’application défaillante : 0x01d3299f864a4998
Chemin d’accès de l’application défaillante : C:\Program Files\IDT\WDM\sttray64.exe
Chemin d’accès du module défaillant: C:\Program Files\IDT\WDM\sttray64.exe
ID de rapport : de1e73a7-4af0-4c94-98c7-4ddd23e94da5
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (09/10/2017 06:20:19 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : 
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.

Error: (09/10/2017 06:20:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : 
Cette demande n’est pas prise en charge.

Error: (09/10/2017 02:05:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : 
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.

Error: (09/10/2017 02:05:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : 
Cette demande n’est pas prise en charge.

Error: (09/10/2017 02:04:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Application Virtualization Client s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/10/2017 02:04:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Message Queuing s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (09/10/2017 02:04:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Client Virtualization Handler s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/10/2017 02:04:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service de l’iPod s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/10/2017 02:04:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service AMD Reservation Manager s’est terminé de façon inattendue pour la 1ème fois.

Error: (09/10/2017 02:04:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service IconMan_R s’est terminé de façon inattendue pour la 1ème fois.


CodeIntegrity:
===================================
  Date: 2017-07-25 18:38:45.254
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-25 09:22:08.015
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WinMetadata\Windows.Graphics.winmd because the set of per-page image hashes could not be found on the system.

  Date: 2017-07-25 09:22:02.201
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.


==================== Infos Mémoire =========================== 

Processeur: AMD Athlon(tm) II P360 Dual-Core Processor
Pourcentage de mémoire utilisée: 62%
Mémoire physique - RAM - totale: 3834.9 MB
Mémoire physique - RAM - disponible: 1424.8 MB
Mémoire virtuelle totale: 7674.9 MB
Mémoire virtuelle disponible: 4975.11 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:581.8 GB) (Free:255.94 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (RECOVERY) (Fixed) (Total:14.07 GB) (Free:1.53 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive e: (KUNG_FU_PANDA_2) (CDROM) (Total:7.02 GB) (Free:0 GB) UDF

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 12106479)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=581.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

==================== Fin de Addition.txt ============================