Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:25-01-2016
Exécuté par Raymond (2016-01-26 09:14:38)
Exécuté depuis C:\Users\Raymond\Downloads
Windows 10 Home (X64) (2015-12-20 03:53:45)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1258690044-2682897043-1428058912-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1258690044-2682897043-1428058912-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1258690044-2682897043-1428058912-1002 - Limited - Enabled)
Invité (S-1-5-21-1258690044-2682897043-1428058912-501 - Limited - Disabled)
Raymond (S-1-5-21-1258690044-2682897043-1428058912-1001 - Administrator - Enabled) => C:\Users\Raymond
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
AIDA64 Extreme v5.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.20 - FinalWire Ltd.)
Alice Greenfingers (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version: - Oberon Media)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AntiCryptoWall (HKLM\...\{BE40AB1F-558F-4434-B72F-461EF97E7796}_is1) (Version: 1.0.9.1 - Bitdefender)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09F}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant Standard Edition 5.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{83331044-D350-569A-3AB2-524C864AC8A5}) (Version: 3.0.800.0 - ATI Technologies, Inc.)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1012.0301 - Micro-Star International Co., Ltd.)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BullGuard Premium Protection (HKLM\...\BullGuard) (Version: 16.0 - BullGuard Ltd.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1102.2101 - Micro-Star International Co., Ltd.)
ccc-core-static (x32 Version: 2010.1110.1539.28046 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Cinema ProII Setup (HKLM-x32\...\{C13926BE-159B-4494-BEEC-AB6E207F70AD}) (Version: 1.0.0.10 - Micro-Star International Co., Ltd.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clavier+ 10.6.8 (HKLM\...\Clavier+_is1) (Version: 10.6.8 - Guillaume Ryder)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Desktop Lighter (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{CFA2CFAB-4B51-47D5-8ECF-5C007F37DB94}) (Version: 1.4 - DiMXSoft)
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI)
EasyViewer (x32 Version: 1.3.0.9 - MSI) Hidden
e-Carte Bleue Société Générale (HKLM-x32\...\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}) (Version: 2.2.7.0 - )
ELAN Touchpad 15.9.5.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.9.5.3 - ELAN Microelectronic Corp.)
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.2.0.0 - )
EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Étude pour l'amélioration du produit HP ENVY 4500 series (HKLM\...\{CBCCA175-DA19-424B-9D9F-5343140C884F}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Home Sweet Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113784233}) (Version: - Oberon Media)
HP ENVY 4500 series Aide (HKLM-x32\...\{BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4}) (Version: 30.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
i-Charger (HKLM-x32\...\i-Charger_is1) (Version: - msi, Inc.)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KLS Mail Backup 3.1.0.1 (HKLM-x32\...\KLS Mail Backup_is1) (Version: - KirySoft)
Logiciel de base du périphérique HP ENVY 4500 series (HKLM\...\{9A9B64A8-A9E8-4588-B924-D1898D3E6355}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Mahjong Escape Ancient China (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}) (Version: - Oberon Media)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MiniTool Power Data Recovery (HKLM-x32\...\MiniTool Power Data Recovery_is1) (Version: - MiniTool Solution Ltd.)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mozilla Firefox 42.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 fr)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
MSI Game Corner Console (HKLM-x32\...\{A86A4C1D-05B5-46B0-A808-1A15DCD17A17}_is1) (Version: 5.5.0.1 - Oberon Media, Inc.)
MSI HOUSE (HKLM-x32\...\{DA5597C9-9216-44FF-9670-D1E48817B998}) (Version: 10.07.1601 - MSI)
msi Software Install (HKLM-x32\...\{A840FFFB-3A80-4C24-AB34-BE9F56BEB4CE}) (Version: 3.1000.1005.1101 - Micro-Star International Co., Ltd.)
NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.5 - NETGEAR)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
PDF Architect 3 (HKLM-x32\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH)
PDF Architect 3 Create Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDF Architect 3 Edit Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDF Architect 3 View Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.1 - pdfforge)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.32.1111.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0168 - )
RogueKiller version 10 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 10 - Adlice Software)
S-Bar (HKLM-x32\...\{297F53AA-3863-4CD5-A506-0F805630F1F4}) (Version: 20.011.02251 - MSI)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.102 - Skype Technologies S.A.)
SRS Premium Sound Control Panel (HKLM\...\{2998191E-A35E-47E2-BE38-7702C731D722}) (Version: 1.10.13.0 - SRS Labs, Inc.)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Nom de votre société)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tomtomax Maxi-Box v3.4.3 (HKLM-x32\...\{3F2996B3-4900-457F-B33C-5777AB2952A9}_is1) (Version: - Tomtomax et KoakDesign)
Tyre (HKLM-x32\...\Tyre_is1) (Version: 6.4.3.4 - 't Schrijverke)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
UsbFix (HKLM-x32\...\Usbfix) (Version: 8.183 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebTarot 1.33 (HKLM-x32\...\WebTarot_is1) (Version: - AtoutWeb)
Windows 7 Logon Background Changer (HKLM-x32\...\{2E6044C5-3495-485F-91BC-46D1B6430E51}) (Version: 1.5.2 - Julien MANICI)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Raymond\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Raymond\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Raymond\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {115FB6B8-8A43-491D-84D3-63539BC16B64} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {16463D61-07B0-4940-B12F-7A346A0B0B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {19634D11-F90C-4DE0-9201-CB51DAE3B17A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {1B4602A0-7607-4EEB-8D52-6B3A0AF0A5F9} - System32\Tasks\BullGuard\BullGuardUpdate2 => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2016-01-25] (BullGuard Ltd.)
Task: {1B612C08-9819-4979-B8D0-C64547EFABA7} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {287C6755-6191-4F7A-95E8-EF693020C21C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {292818D8-FF56-448E-B34B-A1D0B325EB84} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {29C50B3B-43A4-40B0-B60A-396EBC417C15} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2B6AE073-76EC-4BE1-8151-FA65686EA9F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-26] (Google Inc.)
Task: {35F22F5C-4E32-4F87-99CC-D9DF5C1AE52C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {380E1309-83F3-4F73-9028-51F0F05FDEB9} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {39398004-96F0-4B46-AB0F-2EE70EA762EA} - System32\Tasks\avastBCLRestart_firefox.exe => Firefox.exe
Task: {39D4DEF3-2BE2-44BC-8D52-1C8E4F790B7E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {3A4AE3F7-7246-471A-8DC8-FC2E089353E6} - \Binkiland niri -> Pas de fichier <==== ATTENTION
Task: {3C9975FB-F28E-4FC4-A857-D3D8B7356D6A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {3CF4381D-B102-4B6C-8406-4B3B7FCE5B16} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {666F32AC-8842-455D-818C-5B42C6B78F94} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {67450A5B-E395-4B18-9276-FCD799CBEBBC} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {6C1348DC-79AF-4308-8BCF-3D4E69F247FA} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {78462C2A-DB41-4FAE-9BF9-6EDE45A720F1} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {7CE3AA76-7263-4D49-843D-EE5A142262F2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7F336C21-4C25-4BE9-A9C6-D1ECF9AAD4B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {91CB289B-7225-45CC-B571-28D36130F8C3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {99FCE521-59F6-411E-9C05-E8D968648D7B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A532755C-DC33-43A7-B095-8A5D598E0BD7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {A6CC2779-486C-4B40-A462-F704C0CC6B93} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {AE4017F8-2EA1-414B-BF25-91562A847A87} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {BBDA3DDB-D11D-48E5-8C6C-230AB4B86FF0} - System32\Tasks\{AF82FC09-5748-4720-AB35-FB4E6A4E6FF7} => pcalua.exe -a C:\Users\Raymond\Downloads\ecartebleueSG(2).exe -d C:\Users\Raymond\Downloads
Task: {BBF38A97-3558-41C3-8EE2-1D0323FCD38F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {BEE5A419-38E3-41C7-A9E6-4ED8E8D88562} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {C42D63E5-F85E-4751-8E2F-B3C48F58E66A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {C468DEDA-0239-4120-90E4-F4856D7126B1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C5EB6BD1-AA02-49BF-8CA6-56917FCFA38D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {C9CB14AC-566E-481B-8410-EF7F80FE54DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {D3DC8F7F-C83C-4A58-BAE6-B75C625D3292} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {D680B718-FF3E-4D68-9E51-44B77132CB6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {D684F28D-05C3-41B1-B640-9D3F6EE606C0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {D84ABFC7-AF05-4071-8E2B-0E95E24F1392} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {E1C06548-6819-4811-A046-B1149BC4A8A6} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {E4F10E2F-7902-4D86-AAC5-5889EB72BAF0} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E7AA789B-039A-4905-8371-F8C60969B6B9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {E7E558E9-F7A8-471B-9693-EC2384E3CD53} - System32\Tasks\{43E1B35F-BDA7-4175-AA95-128EA2D5181B} => pcalua.exe -a C:\Users\Raymond\Downloads\ecartebleueSG(1).exe -d C:\Users\Raymond\Downloads
Task: {EF62581E-58E4-452B-A800-375B004D9276} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {EFEF3834-106F-4B73-B4A0-199C2BA5BAF4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001UA => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {F88BCA9A-448E-405C-9063-32254F2D9CF1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-26] (Google Inc.)
Task: {FB774AAD-69FC-4CCD-91FE-3A3F864AA9CC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001Core => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001Core.job => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001UA.job => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\Raymond\Desktop\Pre_Scan_Donate.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN
==================== Modules chargés (Avec liste blanche) ==============
2016-01-25 18:52 - 2016-01-25 18:52 - 00727320 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00083736 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00644888 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00644888 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00064792 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00083736 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-08-21 22:09 - 2015-08-21 22:09 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2015-12-06 09:44 - 2014-08-18 17:50 - 00316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-20 03:58 - 2015-12-20 03:58 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-20 03:58 - 2015-12-20 03:58 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-21 16:05 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-21 16:05 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-13 09:26 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-13 09:27 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-13 09:26 - 2016-01-05 02:24 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-13 09:26 - 2016-01-05 02:26 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00727320 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00306904 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00241368 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00290520 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00122584 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00347864 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00028376 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00483032 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00069336 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00691928 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00282328 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00118488 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00155352 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2015-07-27 13:17 - 2015-02-25 23:00 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00077528 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00061144 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00282328 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00962264 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00253656 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00175832 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2015-12-06 09:44 - 2015-07-15 17:26 - 00450560 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"
==================== EXE Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-14 03:34 - 2015-11-23 13:41 - 00000802 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 news-finances.com/trk/
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Raymond\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS PC Sound.lnk => C:\windows\pss\SRS PC Sound.lnk.CommonStartup
MSCONFIG\startupreg: BingSvc => C:\Users\Raymond\AppData\Local\Microsoft\BingSvc\BingSvc.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cinema ProII AP => C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.5\bin\EpmNews.exe
MSCONFIG\startupreg: EPSON Stylus DX4400 Series => C:\windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\windows\TEMP\E_S3701.tmp" /EF "HKCU"
MSCONFIG\startupreg: Google Update => "C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: NortonOnlineBackup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: S-Bar => %PROGRAMFILES%\S-Bar\S-Bar.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Tomtomax MaxiBox => "C:\Program Files (x86)\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe" /hide /noabout
HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "BullGuardUpdate2"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "MalwareProtectionLive"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "ETDWare"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "NPSStartup"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Wipe Tray Agent.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 - Capture d'écran et lancement.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "EPSON Stylus DX4400 Series"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Safe Startup Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Prevent Restore Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Secret Disk Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Wipe Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => " Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "DLIGHTER"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "AutoStartNPSAgent"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{877283E6-989C-4C51-8B60-835075A5217E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{84FF9E90-C24B-4DC5-8094-AE095F8A53A2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85D6E348-E79B-4A55-BB17-FAD9F94EC8BC}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{80E838FB-1371-4985-AE40-798384CF6B07}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{46FFD94F-1AEE-47D8-BFA5-45BBF48D9662}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6DF0BD3B-E529-4535-BF56-208DFC29739E}] => (Allow) LPort=5357
FirewallRules: [{9AA86FC7-C756-4122-A7D4-DD300FB360DC}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe
FirewallRules: [{0088C0CA-1F74-4C76-9940-1141E680E318}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{0B43A936-8E5B-400E-9C71-DFDE1186FF80}] => (Allow) LPort=2869
FirewallRules: [{A62F3D3D-2C49-49DD-9F30-9CD8403C1894}] => (Allow) LPort=1900
FirewallRules: [{4326B3D5-5299-4D74-9250-0A6FCCC67A80}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{B32711E4-03FD-4E22-9A96-14261BACE7E7}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{06D7B0F0-5345-4FE1-8B24-25A16433D765}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1C92F8D5-4C97-4739-978E-FF098C9E2EA2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7005CBF7-AEE0-4CB7-BE64-9DC20B796D6C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{5DF97FF3-6E24-4909-8AC7-74B9078FD9F5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{A4C0A9E0-3009-4157-A1E6-8480075E5177}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{23E23108-4B9F-46F1-8035-0EFA46E3359C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0B38DA1A-1BCE-49FF-BC6A-C9EC0127E7FB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8DCC44BC-1529-4820-8408-6ABC157D8FDE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{48C75021-9F85-4FCC-B245-AEBAF10936FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{583E7DA4-BA03-4C90-B121-2FC545E26FBB}C:\users\raymond\downloads\pre_scan.exe] => (Allow) C:\users\raymond\downloads\pre_scan.exe
FirewallRules: [UDP Query User{9CF037BE-B2A3-41EA-B824-CD7E28AF9A65}C:\users\raymond\downloads\pre_scan.exe] => (Allow) C:\users\raymond\downloads\pre_scan.exe
FirewallRules: [{9663F2AF-F4E5-4700-B640-F0EFAEB69B7A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{B8459900-A71B-4D23-82EF-5F28A6421CAA}C:\program files (x86)\webtarot\webtarot.exe] => (Allow) C:\program files (x86)\webtarot\webtarot.exe
FirewallRules: [UDP Query User{B27D715E-6F24-4E58-8B62-07CFCCAFB013}C:\program files (x86)\webtarot\webtarot.exe] => (Allow) C:\program files (x86)\webtarot\webtarot.exe
FirewallRules: [TCP Query User{D6EC65AE-0D43-4D85-86BD-056FAA1E3372}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{21C287D0-FAC8-4842-8EDF-09F6F2241EFF}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{2EBC488B-3C96-4317-A47C-C46EADEEAF1B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1693A34C-CF3A-4765-9840-2657A31EA8EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
==================== Points de restauration =========================
09-01-2016 09:15:40 Fin de désinfection
13-01-2016 09:28:32 Windows Update
18-01-2016 10:38:13 Windows Update
26-01-2016 08:34:59 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (01/26/2016 09:09:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 09:07:12 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:54:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:39:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:39:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:35:18 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (01/26/2016 08:24:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:11:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:11:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:09:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Erreurs système:
=============
Error: (01/26/2016 09:09:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 09:07:53 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Accès aux données utilisateur_42c23c s’est arrêté avec l’erreur :
%%1358
Error: (01/26/2016 09:07:12 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:54:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:39:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:39:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:24:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:11:38 AM) (Source: DCOM) (EventID: 10001) (User: Raymond-MSI)
Description: "C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer5App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mcaNon disponibleNon disponible
Error: (01/26/2016 08:11:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:09:50 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Accès aux données utilisateur_42c23c s’est arrêté avec l’erreur :
%%2147746132
CodeIntegrity:
===================================
Date: 2016-01-19 20:17:06.819
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-15 08:30:37.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-09 09:30:08.955
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.604
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.578
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.550
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.465
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:12.384
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:12.359
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: AMD E-350 Processor
Pourcentage de mémoire utilisée: 51%
Mémoire physique - RAM - totale: 3691.75 MB
Mémoire physique - RAM - disponible: 1797.39 MB
Mémoire virtuelle totale: 7403.75 MB
Mémoire virtuelle disponible: 5189.88 MB
==================== Lecteurs ================================
Drive c: (OS_Install) (Fixed) (Total:272.35 GB) (Free:225.33 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Données) (Fixed) (Total:192.88 GB) (Free:189.38 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 870C4A2E)
Partition 1: (Active) - (Size=86 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=272.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=192.9 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================
Exécuté par Raymond (2016-01-26 09:14:38)
Exécuté depuis C:\Users\Raymond\Downloads
Windows 10 Home (X64) (2015-12-20 03:53:45)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1258690044-2682897043-1428058912-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1258690044-2682897043-1428058912-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1258690044-2682897043-1428058912-1002 - Limited - Enabled)
Invité (S-1-5-21-1258690044-2682897043-1428058912-501 - Limited - Disabled)
Raymond (S-1-5-21-1258690044-2682897043-1428058912-1001 - Administrator - Enabled) => C:\Users\Raymond
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: BullGuard Antivirus (Enabled - Up to date) {EDBB5818-2352-E06B-028A-4E6873B92CC5}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: BullGuard Antispyware (Enabled - Up to date) {56DAB9FC-0568-EFE5-383A-751A083E6678}
FW: BullGuard Firewall (Enabled) {D580D93D-693D-E133-29D5-E75D8D6A6BBE}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
AIDA64 Extreme v5.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.20 - FinalWire Ltd.)
Alice Greenfingers (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version: - Oberon Media)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AntiCryptoWall (HKLM\...\{BE40AB1F-558F-4434-B72F-461EF97E7796}_is1) (Version: 1.0.9.1 - Bitdefender)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09F}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant Standard Edition 5.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{83331044-D350-569A-3AB2-524C864AC8A5}) (Version: 3.0.800.0 - ATI Technologies, Inc.)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1012.0301 - Micro-Star International Co., Ltd.)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BullGuard Premium Protection (HKLM\...\BullGuard) (Version: 16.0 - BullGuard Ltd.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1102.2101 - Micro-Star International Co., Ltd.)
ccc-core-static (x32 Version: 2010.1110.1539.28046 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
Cinema ProII Setup (HKLM-x32\...\{C13926BE-159B-4494-BEEC-AB6E207F70AD}) (Version: 1.0.0.10 - Micro-Star International Co., Ltd.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clavier+ 10.6.8 (HKLM\...\Clavier+_is1) (Version: 10.6.8 - Guillaume Ryder)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Desktop Lighter (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{CFA2CFAB-4B51-47D5-8ECF-5C007F37DB94}) (Version: 1.4 - DiMXSoft)
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI)
EasyViewer (x32 Version: 1.3.0.9 - MSI) Hidden
e-Carte Bleue Société Générale (HKLM-x32\...\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}) (Version: 2.2.7.0 - )
ELAN Touchpad 15.9.5.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.9.5.3 - ELAN Microelectronic Corp.)
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.2.0.0 - )
EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Étude pour l'amélioration du produit HP ENVY 4500 series (HKLM\...\{CBCCA175-DA19-424B-9D9F-5343140C884F}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.111 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Home Sweet Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113784233}) (Version: - Oberon Media)
HP ENVY 4500 series Aide (HKLM-x32\...\{BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4}) (Version: 30.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
i-Charger (HKLM-x32\...\i-Charger_is1) (Version: - msi, Inc.)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KLS Mail Backup 3.1.0.1 (HKLM-x32\...\KLS Mail Backup_is1) (Version: - KirySoft)
Logiciel de base du périphérique HP ENVY 4500 series (HKLM\...\{9A9B64A8-A9E8-4588-B924-D1898D3E6355}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Mahjong Escape Ancient China (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}) (Version: - Oberon Media)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MiniTool Power Data Recovery (HKLM-x32\...\MiniTool Power Data Recovery_is1) (Version: - MiniTool Solution Ltd.)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mozilla Firefox 42.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 fr)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
MSI Game Corner Console (HKLM-x32\...\{A86A4C1D-05B5-46B0-A808-1A15DCD17A17}_is1) (Version: 5.5.0.1 - Oberon Media, Inc.)
MSI HOUSE (HKLM-x32\...\{DA5597C9-9216-44FF-9670-D1E48817B998}) (Version: 10.07.1601 - MSI)
msi Software Install (HKLM-x32\...\{A840FFFB-3A80-4C24-AB34-BE9F56BEB4CE}) (Version: 3.1000.1005.1101 - Micro-Star International Co., Ltd.)
NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.5 - NETGEAR)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
PDF Architect 3 (HKLM-x32\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH)
PDF Architect 3 Create Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDF Architect 3 Edit Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDF Architect 3 View Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.1 - pdfforge)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.32.1111.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0168 - )
RogueKiller version 10 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 10 - Adlice Software)
S-Bar (HKLM-x32\...\{297F53AA-3863-4CD5-A506-0F805630F1F4}) (Version: 20.011.02251 - MSI)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.102 - Skype Technologies S.A.)
SRS Premium Sound Control Panel (HKLM\...\{2998191E-A35E-47E2-BE38-7702C731D722}) (Version: 1.10.13.0 - SRS Labs, Inc.)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Nom de votre société)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tomtomax Maxi-Box v3.4.3 (HKLM-x32\...\{3F2996B3-4900-457F-B33C-5777AB2952A9}_is1) (Version: - Tomtomax et KoakDesign)
Tyre (HKLM-x32\...\Tyre_is1) (Version: 6.4.3.4 - 't Schrijverke)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
UsbFix (HKLM-x32\...\Usbfix) (Version: 8.183 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebTarot 1.33 (HKLM-x32\...\WebTarot_is1) (Version: - AtoutWeb)
Windows 7 Logon Background Changer (HKLM-x32\...\{2E6044C5-3495-485F-91BC-46D1B6430E51}) (Version: 1.5.2 - Julien MANICI)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version: - )
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Raymond\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Raymond\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Raymond\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {115FB6B8-8A43-491D-84D3-63539BC16B64} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2014-07-21] (Hewlett-Packard Development Company, LP)
Task: {16463D61-07B0-4940-B12F-7A346A0B0B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {19634D11-F90C-4DE0-9201-CB51DAE3B17A} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {1B4602A0-7607-4EEB-8D52-6B3A0AF0A5F9} - System32\Tasks\BullGuard\BullGuardUpdate2 => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2016-01-25] (BullGuard Ltd.)
Task: {1B612C08-9819-4979-B8D0-C64547EFABA7} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {287C6755-6191-4F7A-95E8-EF693020C21C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {292818D8-FF56-448E-B34B-A1D0B325EB84} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {29C50B3B-43A4-40B0-B60A-396EBC417C15} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {2B6AE073-76EC-4BE1-8151-FA65686EA9F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-26] (Google Inc.)
Task: {35F22F5C-4E32-4F87-99CC-D9DF5C1AE52C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {380E1309-83F3-4F73-9028-51F0F05FDEB9} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {39398004-96F0-4B46-AB0F-2EE70EA762EA} - System32\Tasks\avastBCLRestart_firefox.exe => Firefox.exe
Task: {39D4DEF3-2BE2-44BC-8D52-1C8E4F790B7E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {3A4AE3F7-7246-471A-8DC8-FC2E089353E6} - \Binkiland niri -> Pas de fichier <==== ATTENTION
Task: {3C9975FB-F28E-4FC4-A857-D3D8B7356D6A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {3CF4381D-B102-4B6C-8406-4B3B7FCE5B16} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {666F32AC-8842-455D-818C-5B42C6B78F94} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {67450A5B-E395-4B18-9276-FCD799CBEBBC} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {6C1348DC-79AF-4308-8BCF-3D4E69F247FA} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {78462C2A-DB41-4FAE-9BF9-6EDE45A720F1} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {7CE3AA76-7263-4D49-843D-EE5A142262F2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {7F336C21-4C25-4BE9-A9C6-D1ECF9AAD4B4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {91CB289B-7225-45CC-B571-28D36130F8C3} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-20] (Adobe Systems Incorporated)
Task: {99FCE521-59F6-411E-9C05-E8D968648D7B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A532755C-DC33-43A7-B095-8A5D598E0BD7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {A6CC2779-486C-4B40-A462-F704C0CC6B93} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {AE4017F8-2EA1-414B-BF25-91562A847A87} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {BBDA3DDB-D11D-48E5-8C6C-230AB4B86FF0} - System32\Tasks\{AF82FC09-5748-4720-AB35-FB4E6A4E6FF7} => pcalua.exe -a C:\Users\Raymond\Downloads\ecartebleueSG(2).exe -d C:\Users\Raymond\Downloads
Task: {BBF38A97-3558-41C3-8EE2-1D0323FCD38F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {BEE5A419-38E3-41C7-A9E6-4ED8E8D88562} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {C42D63E5-F85E-4751-8E2F-B3C48F58E66A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {C468DEDA-0239-4120-90E4-F4856D7126B1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {C5EB6BD1-AA02-49BF-8CA6-56917FCFA38D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {C9CB14AC-566E-481B-8410-EF7F80FE54DD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {D3DC8F7F-C83C-4A58-BAE6-B75C625D3292} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {D680B718-FF3E-4D68-9E51-44B77132CB6C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {D684F28D-05C3-41B1-B640-9D3F6EE606C0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {D84ABFC7-AF05-4071-8E2B-0E95E24F1392} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {E1C06548-6819-4811-A046-B1149BC4A8A6} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {E4F10E2F-7902-4D86-AAC5-5889EB72BAF0} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {E7AA789B-039A-4905-8371-F8C60969B6B9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {E7E558E9-F7A8-471B-9693-EC2384E3CD53} - System32\Tasks\{43E1B35F-BDA7-4175-AA95-128EA2D5181B} => pcalua.exe -a C:\Users\Raymond\Downloads\ecartebleueSG(1).exe -d C:\Users\Raymond\Downloads
Task: {EF62581E-58E4-452B-A800-375B004D9276} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {EFEF3834-106F-4B73-B4A0-199C2BA5BAF4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001UA => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {F88BCA9A-448E-405C-9063-32254F2D9CF1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-26] (Google Inc.)
Task: {FB774AAD-69FC-4CCD-91FE-3A3F864AA9CC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001Core => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001Core.job => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1258690044-2682897043-1428058912-1001UA.job => C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\Raymond\Desktop\Pre_Scan_Donate.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxps://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN
==================== Modules chargés (Avec liste blanche) ==============
2016-01-25 18:52 - 2016-01-25 18:52 - 00727320 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00083736 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00644888 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00644888 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00064792 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00083736 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2015-08-21 22:09 - 2015-08-21 22:09 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-10-30 08:18 - 2015-10-30 08:18 - 00218456 _____ () c:\windows\system32\WerEtw.dll
2015-12-06 09:44 - 2014-08-18 17:50 - 00316120 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvc.exe
2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-20 03:58 - 2015-12-20 03:58 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-20 03:58 - 2015-12-20 03:58 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-12-21 16:05 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-21 16:05 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-13 09:26 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-13 09:27 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-13 09:26 - 2016-01-05 02:24 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-01-13 09:26 - 2016-01-05 02:26 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-25 18:52 - 2016-01-25 18:52 - 00727320 _____ () C:\Program Files\BullGuard Ltd\BullGuard\SQLite.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00306904 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00241368 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00290520 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00122584 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00347864 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00028376 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00483032 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00069336 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00691928 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00282328 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00118488 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00155352 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2015-07-27 13:17 - 2015-02-25 23:00 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00077528 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00061144 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00282328 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00962264 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00253656 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2015-07-27 13:17 - 2015-07-16 09:31 - 00175832 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2015-12-06 09:44 - 2015-07-15 17:26 - 00450560 _____ () C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"
==================== EXE Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-14 03:34 - 2015-11-23 13:41 - 00000802 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 news-finances.com/trk/
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Raymond\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS PC Sound.lnk => C:\windows\pss\SRS PC Sound.lnk.CommonStartup
MSCONFIG\startupreg: BingSvc => C:\Users\Raymond\AppData\Local\Microsoft\BingSvc\BingSvc.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cinema ProII AP => C:\Program Files (x86)\MSI\Cinema ProII\CinemaProII.exe
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 10.5\bin\EpmNews.exe
MSCONFIG\startupreg: EPSON Stylus DX4400 Series => C:\windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\windows\TEMP\E_S3701.tmp" /EF "HKCU"
MSCONFIG\startupreg: Google Update => "C:\Users\Raymond\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
MSCONFIG\startupreg: NortonOnlineBackup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: S-Bar => %PROGRAMFILES%\S-Bar\S-Bar.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: Tomtomax MaxiBox => "C:\Program Files (x86)\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe" /hide /noabout
HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "BullGuardUpdate2"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "MalwareProtectionLive"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "ETDWare"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "NPSStartup"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Wipe Tray Agent.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 - Capture d'écran et lancement.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "EPSON Stylus DX4400 Series"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Safe Startup Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Prevent Restore Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Secret Disk Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Wipe Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => " Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "DLIGHTER"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "AutoStartNPSAgent"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{877283E6-989C-4C51-8B60-835075A5217E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{84FF9E90-C24B-4DC5-8094-AE095F8A53A2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{85D6E348-E79B-4A55-BB17-FAD9F94EC8BC}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{80E838FB-1371-4985-AE40-798384CF6B07}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{46FFD94F-1AEE-47D8-BFA5-45BBF48D9662}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{6DF0BD3B-E529-4535-BF56-208DFC29739E}] => (Allow) LPort=5357
FirewallRules: [{9AA86FC7-C756-4122-A7D4-DD300FB360DC}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe
FirewallRules: [{0088C0CA-1F74-4C76-9940-1141E680E318}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{0B43A936-8E5B-400E-9C71-DFDE1186FF80}] => (Allow) LPort=2869
FirewallRules: [{A62F3D3D-2C49-49DD-9F30-9CD8403C1894}] => (Allow) LPort=1900
FirewallRules: [{4326B3D5-5299-4D74-9250-0A6FCCC67A80}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{B32711E4-03FD-4E22-9A96-14261BACE7E7}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{06D7B0F0-5345-4FE1-8B24-25A16433D765}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{1C92F8D5-4C97-4739-978E-FF098C9E2EA2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7005CBF7-AEE0-4CB7-BE64-9DC20B796D6C}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{5DF97FF3-6E24-4909-8AC7-74B9078FD9F5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{A4C0A9E0-3009-4157-A1E6-8480075E5177}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{23E23108-4B9F-46F1-8035-0EFA46E3359C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0B38DA1A-1BCE-49FF-BC6A-C9EC0127E7FB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{8DCC44BC-1529-4820-8408-6ABC157D8FDE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{48C75021-9F85-4FCC-B245-AEBAF10936FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{583E7DA4-BA03-4C90-B121-2FC545E26FBB}C:\users\raymond\downloads\pre_scan.exe] => (Allow) C:\users\raymond\downloads\pre_scan.exe
FirewallRules: [UDP Query User{9CF037BE-B2A3-41EA-B824-CD7E28AF9A65}C:\users\raymond\downloads\pre_scan.exe] => (Allow) C:\users\raymond\downloads\pre_scan.exe
FirewallRules: [{9663F2AF-F4E5-4700-B640-F0EFAEB69B7A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{B8459900-A71B-4D23-82EF-5F28A6421CAA}C:\program files (x86)\webtarot\webtarot.exe] => (Allow) C:\program files (x86)\webtarot\webtarot.exe
FirewallRules: [UDP Query User{B27D715E-6F24-4E58-8B62-07CFCCAFB013}C:\program files (x86)\webtarot\webtarot.exe] => (Allow) C:\program files (x86)\webtarot\webtarot.exe
FirewallRules: [TCP Query User{D6EC65AE-0D43-4D85-86BD-056FAA1E3372}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{21C287D0-FAC8-4842-8EDF-09F6F2241EFF}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{2EBC488B-3C96-4317-A47C-C46EADEEAF1B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1693A34C-CF3A-4765-9840-2657A31EA8EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
==================== Points de restauration =========================
09-01-2016 09:15:40 Fin de désinfection
13-01-2016 09:28:32 Windows Update
18-01-2016 10:38:13 Windows Update
26-01-2016 08:34:59 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (01/26/2016 09:09:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 09:07:12 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:54:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:39:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:39:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:35:18 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (01/26/2016 08:24:37 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:11:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:11:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (01/26/2016 08:09:38 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Raymond-MSI)
Description: Échec de l’activation de l’application Microsoft.Messaging_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Erreurs système:
=============
Error: (01/26/2016 09:09:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 09:07:53 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Accès aux données utilisateur_42c23c s’est arrêté avec l’erreur :
%%1358
Error: (01/26/2016 09:07:12 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:54:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:39:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:39:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:24:37 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:11:38 AM) (Source: DCOM) (EventID: 10001) (User: Raymond-MSI)
Description: "C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe" -ServerName:SkypeHost.ServerServer5App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mcaNon disponibleNon disponible
Error: (01/26/2016 08:11:38 AM) (Source: DCOM) (EventID: 10010) (User: Raymond-MSI)
Description: App.AppXtjcey7sh4wvcw7hy21b0nmp0bq18dyzd.mca
Error: (01/26/2016 08:09:50 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Accès aux données utilisateur_42c23c s’est arrêté avec l’erreur :
%%2147746132
CodeIntegrity:
===================================
Date: 2016-01-19 20:17:06.819
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-15 08:30:37.806
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-01-09 09:30:08.955
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.604
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.578
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.550
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.508
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:13.465
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:12.384
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-01-07 08:41:12.359
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: AMD E-350 Processor
Pourcentage de mémoire utilisée: 51%
Mémoire physique - RAM - totale: 3691.75 MB
Mémoire physique - RAM - disponible: 1797.39 MB
Mémoire virtuelle totale: 7403.75 MB
Mémoire virtuelle disponible: 5189.88 MB
==================== Lecteurs ================================
Drive c: (OS_Install) (Fixed) (Total:272.35 GB) (Free:225.33 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Données) (Fixed) (Total:192.88 GB) (Free:189.38 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 870C4A2E)
Partition 1: (Active) - (Size=86 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=272.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=192.9 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================