cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-08-2016
Ran by Éric (2016-08-03 07:20:05)
Running from C:\Users\Éric\Downloads
Windows 10 Home Version 1511 (X64) (2015-12-27 16:03:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1710305318-965584943-24782112-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1710305318-965584943-24782112-503 - Limited - Disabled)
Guest (S-1-5-21-1710305318-965584943-24782112-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1710305318-965584943-24782112-1003 - Limited - Enabled)
Éric (S-1-5-21-1710305318-965584943-24782112-1001 - Administrator - Enabled) => C:\Users\Éric

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Antivirus Gratuit (HKLM-x32\...\Avast) (Version: 12.1.2272 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 13.3.0.55 - Citrix Systems, Inc.)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
Data Lifeguard Diagnostic for Windows (HKLM-x32\...\{75B61CF0-B8A8-46E2-8709-C4A79898AC1D}) (Version: 1.17 - Western Digital Corporation)
Dell B1163w Mono MFP (HKLM-x32\...\Dell B1163w Mono MFP) (Version: 1.06 (2013-11-18) - Dell Inc.)
Dell B1163w Mono MFP Scan Assistant (x32 Version: 1.04.52.00 - Dell Inc.) Hidden
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.5.60 - Dell Inc.)
Dell Customer Connect (HKLM-x32\...\{FEFDCDCF-C49C-45D0-AAF8-5345858ADEC7}) (Version: 1.2.1.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{BC8233D8-59BA-4D40-92B9-4FDE7452AA8B}) (Version: 3.0.3999.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{C1C53DA1-9497-4ABB-A3D6-A63039820B37}) (Version: 3.3.7200.0 - Dell Inc.)
Dell Product Registration (HKLM-x32\...\{17FFE63C-6734-4950-B488-134B5A2505F7}) (Version: 2.04.0280 - Aviata Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Dropbox (HKU\S-1-5-21-1710305318-965584943-24782112-1001\...\Dropbox) (Version: 6.4.14 - Dropbox, Inc.)
Dropbox 20 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 0.9.0 - Dropbox, Inc.)
Elevated Installer (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{2639b4f0-83b4-4f3d-942f-e4ba22a40b9b}) (Version: 4.1.19.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
ImpôtRapide 2015 (HKLM-x32\...\{9DF6FA30-3746-4D96-B5B7-C0B88CE0E149}) (Version: 1.00.0000 - Intuit Canada)
Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.24 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.226.0 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{5BBC7722-E4D9-4406-A8B9-1E11A23B9EAF}) (Version: 5.0.32.0 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{06A5031E-3B1E-4FB9-AC4C-BA0FE2706152}) (Version: 17.1.1433.02 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{7250201c-18f4-43c0-8ca8-bd1cb5c3b859}) (Version: 17.12.0 - Intel Corporation)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 72 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418072F0}) (Version: 8.0.720.15 - Oracle Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxx Audio Installer (x64) (Version: 1.6.4616.61 - Waves Audio Ltd.) Hidden
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.227 - McAfee, Inc.)
Microsoft Office Professionnel 2013 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 15.0.4841.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4841.1002 - Microsoft Corporation) Hidden
Online Plug-in (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.26 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21261 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7544 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.114 (x32 Version: 1.48.2066.114 - Avast Software) Hidden
Self-Service Plug-in (x32 Version: 3.3.0.27839 - Citrix Systems, Inc.) Hidden
True Color (HKLM-x32\...\{55c734b2-fcff-447e-81cc-a6f04ebf09fc}) (Version: 6.0.0.6 - Entertainment Experience)
True Color (Version: 6.0.0.6 - Entertainment Experience LLC) Hidden
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Éric\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1710305318-965584943-24782112-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Éric\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04376F2E-8160-4C81-9512-D1C9B47A1986} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1710305318-965584943-24782112-1001UA => C:\Users\Éric\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-25] (Dropbox, Inc.)
Task: {2136C5CC-A2DF-4CD3-B337-C07E7FEC2164} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {350915E2-7E49-405D-B778-68206D1B4E08} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {37B27424-ACC0-4EE7-9DAB-F5A56B1C0C2E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {40D68EC6-05FA-43C2-8142-BFC99BBFF2EB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {599CE08E-6724-4532-BF1E-7DCEF136C567} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {5B8A7CC0-AB39-44F2-AC69-DC0EC0C7E175} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {5C141A5C-B45C-4348-BBFA-9F4A78E333C9} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {5ECFB7F7-D9E5-440E-8F96-A452B03CCA2B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {665C119E-E7AF-4CC2-A3A9-C83B68669AC3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {6769E8A0-46DE-42CF-B928-BBCE15D11778} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-25] (Google Inc.)
Task: {75A0FFF3-20A4-441C-AF05-777B0733FCF2} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-06-14] (Microsoft Corporation)
Task: {780374F9-3099-4F4F-A6FD-5D1B69634E9F} - System32\Tasks\UninstallDDS-C960901F-CE14-4DE1-9729-1305F719A337 => C:\WINDOWS\TEMP\DeleteFolderTask.exe [2015-12-28] () <==== ATTENTION
Task: {798FFD33-4561-4C35-AAD8-E60C84A07734} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-25] (Google Inc.)
Task: {7B1A1134-3A73-4F7E-9A70-220110358DE0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-07-15] (Microsoft Corporation)
Task: {8C985522-C02B-41A1-9095-C36E76441672} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-04-08] ()
Task: {929F6543-EF79-4DEC-82DC-18330889671A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {947A108C-D5F2-4175-A4DA-1E7E14120E0A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-06-14] (Microsoft Corporation)
Task: {9B2FC9D7-F3B4-4966-ACF6-A71409B51397} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2013-03-04] (CyberLink)
Task: {9D8A2FDE-D125-4114-B517-828AF8D235C1} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {A7C24CFB-7D4D-4605-89FD-1011B665995C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation)
Task: {AC4AD7D9-08C4-49C8-AC9F-431298338D0E} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {BA174540-C7C8-4970-B52B-21287B5EF49D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1710305318-965584943-24782112-1001Core => C:\Users\Éric\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-09-25] (Dropbox, Inc.)
Task: {BE3F913D-AE7C-48D1-8626-92F3BCF5CF6A} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-04-01] (Aviata Inc)
Task: {BEB795E6-74F6-45A6-87E7-F029DF946F16} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BFCD1608-CADA-4361-8C55-BB76FA4BB0AE} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {C03B7B81-C45B-45EC-A77E-B80AA58D8565} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {C98A83D2-0220-4246-8B54-7026B405FC7C} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-08-04] (Realtek Semiconductor)
Task: {D82FFD5F-7A32-44AC-B44F-69B254FB0488} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2013-03-22] (CyberLink Corp.)
Task: {E1988FBB-C5E4-4736-81E4-E8678944C9A1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {E6E40947-D26B-43A0-A13D-78C8AC8902C1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E80CA644-7AE3-4B74-B788-B3640150DBA2} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-07-25] (AVAST Software)
Task: {E9C11BDC-99D8-4418-BAF7-7A6C73BBC3DA} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {EAA20762-F642-4F8C-AD8B-D11224CDB706} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-04-01] (Aviata Inc)
Task: {F24BC345-5C24-4D0E-8188-9572582143A4} - System32\Tasks\SafeZone scheduled Autoupdate 1466235658 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-06-17] (Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1710305318-965584943-24782112-1001Core.job => C:\Users\Éric\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-1710305318-965584943-24782112-1001UA.job => C:\Users\Éric\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RunDFS.job => WD cmd /c sc start Dell Foundation Services WORKGROUP ERIC

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-12-31 01:14 - 2014-12-31 01:14 - 00034304 _____ () C:\WINDOWS\System32\sdm3mlm.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-05-10 19:10 - 2016-05-24 09:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-12-25 02:27 - 2014-12-25 02:27 - 00094160 _____ () C:\Program Files\TrueColor\TrueColorALS.exe
2015-10-30 03:18 - 2015-10-30 03:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2014-11-14 17:51 - 2014-11-14 17:51 - 00466432 _____ () C:\WINDOWS\system32\DPPPlugin.dll
2016-07-12 21:22 - 2016-07-01 00:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-12 21:22 - 2016-07-01 00:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-18 14:33 - 2016-05-18 14:33 - 00959168 _____ () C:\Users\Éric\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-07-12 21:22 - 2016-06-30 23:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-12-27 14:19 - 2015-12-27 14:19 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-12 21:23 - 2016-06-30 23:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-12 21:22 - 2016-06-30 23:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-12 21:22 - 2016-06-30 23:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-12 21:22 - 2016-06-30 23:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-18 00:35 - 2015-12-19 02:08 - 00402344 _____ () C:\WINDOWS\system32\igfxTray.exe
2012-03-09 09:58 - 2012-03-09 09:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-03-09 09:58 - 2012-03-09 09:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2016-07-19 19:38 - 2016-07-19 19:39 - 03893952 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.41051.0_x64__8wekyb3d8bbwe\gfxim.dll
2016-04-17 11:57 - 2016-04-08 10:10 - 00025512 _____ () C:\Program Files (x86)\Garmin\Express SelfUpdater\esu.exe
2016-04-18 17:00 - 2016-04-18 17:01 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-07-25 22:43 - 2016-07-25 22:43 - 00146232 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-25 22:43 - 2016-07-25 22:43 - 00479288 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-08-03 07:00 - 2016-08-03 07:00 - 03004416 _____ () C:\Program Files\AVAST Software\Avast\defs\16080301\algo.dll
2014-09-03 14:03 - 2014-09-03 14:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-07-25 22:43 - 2016-07-25 22:43 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-06-20 07:24 - 2016-06-15 05:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-20 07:24 - 2016-06-15 05:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-05-18 14:33 - 2016-05-18 14:33 - 00679624 _____ () C:\Users\Éric\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2015-12-12 17:52 - 2016-06-06 21:58 - 00034768 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-07-08 16:16 - 2016-06-06 21:58 - 00134088 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-07-08 16:16 - 2016-06-06 21:59 - 00019408 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-07-08 16:16 - 2016-06-06 21:58 - 00116688 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-12 17:52 - 2016-06-06 21:58 - 00093640 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-12 17:52 - 2016-06-06 21:58 - 00018376 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-12 17:52 - 2016-07-05 14:00 - 00019760 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00105928 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-07-08 16:16 - 2016-06-06 21:58 - 00392144 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-12 17:52 - 2016-07-05 14:00 - 00381752 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-12 17:52 - 2016-06-06 21:58 - 00692688 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-07-08 16:16 - 2016-07-05 13:59 - 00020816 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-12 17:52 - 2016-06-06 21:59 - 00123856 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-07-08 16:16 - 2016-07-05 13:59 - 01682760 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-07-08 16:16 - 2016-07-05 13:59 - 00020808 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-12 17:52 - 2016-07-05 14:00 - 00021840 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00052024 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00038696 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-07-08 16:16 - 2016-06-06 22:00 - 00020936 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00024528 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00114640 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00124880 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00021832 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00024016 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00175560 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00030160 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00043472 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00048592 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00023872 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00026456 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00057808 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00024016 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-07-08 16:16 - 2016-07-05 13:59 - 00246592 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00028616 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32ts.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00020800 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00019776 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00020800 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2015-12-12 17:52 - 2016-06-06 21:58 - 00134608 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2016-07-08 16:16 - 2016-06-06 21:59 - 00240584 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2016-07-08 16:16 - 2016-07-05 13:59 - 00020280 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-12 17:52 - 2016-07-05 14:00 - 00023376 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00350152 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-02-20 22:48 - 2016-07-05 14:00 - 00022352 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00024392 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-07-08 16:16 - 2016-06-06 22:01 - 00036296 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\librsync.dll
2016-07-08 16:16 - 2016-07-05 14:00 - 00031568 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\enterprise_data.compiled._enterprise_data.pyd
2016-07-08 16:16 - 2016-03-11 20:46 - 00293392 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\EnterpriseDataAdapter.dll
2016-07-08 16:16 - 2016-07-05 14:00 - 00084280 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-07-08 16:16 - 2016-07-05 14:00 - 01826096 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-12 17:52 - 2016-06-06 21:59 - 00083912 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\sip.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 03928880 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 01971504 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00531248 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00132912 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00223544 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00207672 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-12 17:52 - 2016-06-06 22:00 - 00060880 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\win32print.pyd
2016-04-16 18:23 - 2016-07-05 14:00 - 00025928 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\windisplaytoast.compiled._DisplayToast.pyd
2015-12-12 17:52 - 2016-07-05 14:00 - 00024904 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00546096 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-07-08 16:16 - 2016-07-05 14:00 - 00357680 _____ () C:\Users\Éric\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2016-02-22 19:21 - 2016-02-22 19:21 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2016-07-12 20:50 - 2016-07-06 18:01 - 17602240 _____ () C:\Users\Éric\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll
2016-02-22 19:23 - 2016-02-22 19:23 - 00325824 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2015-03-25 08:17 - 2013-03-04 23:40 - 00626240 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-03-05 14:41 - 2013-03-05 14:41 - 00015424 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2016-04-18 17:00 - 2016-04-18 17:01 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-18 17:00 - 2016-04-18 17:01 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1710305318-965584943-24782112-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Dell\Win LTBLUE 1920x1200.jpg
DNS Servers: 10.248.20.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "mcpltui_exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{6F9E7117-DDD2-47CA-B3F3-2DAF7C815779}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{E36B24C8-9FD1-44F5-9829-F06BD46EEA79}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD Cinema\PowerDVDCinema12.exe
FirewallRules: [{97EC8F68-CA6A-4B8C-9AE0-358ECD00A25E}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{DA1D3169-A2C0-4786-B8BC-89CCFAAB34A8}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{667D6907-8743-45C1-A897-40739595181A}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{BA0CC611-50D4-4A0A-A464-0D499F171FBE}] => (Allow) C:\Users\Éric\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{526D3D53-D7EB-4A0F-BEC9-ED7E55480FD5}] => (Allow) C:\Users\Éric\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{E1303A96-BE18-4EC6-81B8-2C3DA44CA271}] => (Allow) C:\Users\Éric\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C6A2A81C-B941-4AAE-A260-BBCF8EA896EB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{81A20D1B-F99E-4266-8C95-DFA2216B0689}C:\users\éric\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\éric\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{DB5323E9-986F-46D0-ACB9-EEECFDE7F544}C:\users\éric\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\éric\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{7D72817B-47E0-40B2-BB1B-D5C14165106C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{51E618EE-59CA-492F-826C-A02EC7DCB0CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9BAEA290-ED5E-4837-BA7A-7BA4EE456821}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{7664D5C3-976A-4D8A-9C0B-566BE7B659A2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AC153BAD-E1E3-48A1-9624-745A79B2D79E}] => (Allow) C:\Windows\twain_32\Dell\B1163W\ScanCDLM\ScanCDLM.exe
FirewallRules: [{F8609679-BB85-4381-87E1-AE426200363E}] => (Allow) C:\Windows\twain_32\Dell\B1163W\ScanCDLM\ScanCDLM.exe
FirewallRules: [{8CBA63DA-9D9B-4F5D-89E0-2326FBA445C2}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{4D637093-34F7-4A0A-8482-2128A209F634}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{29D926FB-BA50-49BD-B7E8-E47E704E1B0B}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.Application.exe
FirewallRules: [{C8432546-6666-4FE1-B029-DBC989EA4AF5}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.Application.exe
FirewallRules: [{5797AE10-211E-4982-AEDE-0A940A9F3B89}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.OrderSupplies.exe
FirewallRules: [{A77ECD4F-F98C-45CB-AF39-CF5A5B84776B}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.OrderSupplies.exe
FirewallRules: [{C6E361D9-3566-4A58-83CD-C9AFD241DED7}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.Alert.exe
FirewallRules: [{9E4155CF-2E3D-41FD-80A1-AA45CAEE8A9E}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\Dell.Alert.exe
FirewallRules: [{E26B55BC-ACBE-49BF-B433-283A86E7E223}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\uninstall.exe
FirewallRules: [{10D1FB25-09F8-47C3-B788-3DB0782F0557}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\uninstall.exe
FirewallRules: [{4A4628D5-7F53-4150-874D-0C0F2350435F}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\CDAS2PC\Dell.CDAS2PC.exe
FirewallRules: [{FA0EDA4F-3C0F-4117-9267-C8408A9ED896}] => (Allow) C:\Program Files (x86)\Dell\Dell Printer Manager\CDAS2PC\Dell.CDAS2PC.exe
FirewallRules: [{A73EBE8C-76EE-40C6-AC4A-78E16D887883}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\TORDER\Torder.exe
FirewallRules: [{F13F73E3-593A-41E1-B95B-76BECD72CC2A}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\TORDER\Torder.exe
FirewallRules: [{B5B559B8-4453-4DD4-9757-0D3E54DD2A1E}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\TORDER\uninstall.exe
FirewallRules: [{25377B0C-212D-43AB-B1CC-11FF88128CEF}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\TORDER\uninstall.exe
FirewallRules: [{2CF88793-8A3E-4C37-9911-80E455431D58}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\Dell Scan Assistant\USDAgent.exe
FirewallRules: [{68BAF1A2-5C1E-410B-870C-56A0F5B5AAA3}] => (Allow) C:\Program Files (x86)\Dell\Dell B1163w Mono MFP\Dell Scan Assistant\USDAgent.exe
FirewallRules: [{F4B2332A-BEC6-49ED-8DDE-B992FD0C31FA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{B4929451-FC6B-46B3-A015-BCF436E57469}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Restore Points =========================

05-07-2016 21:40:30 Scheduled Checkpoint
15-07-2016 15:18:05 Windows Update
15-07-2016 15:19:08 Windows Update
22-07-2016 15:57:15 Scheduled Checkpoint
28-07-2016 06:57:08 ZHPFix Restore System Point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/03/2016 07:19:55 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (07/31/2016 03:19:59 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIC)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (07/31/2016 03:17:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIC)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2147024891 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (07/30/2016 08:33:27 AM) (Source: TrueColorALS) (EventID: 4) (User: )
Description: TrueColorALSCUISDKaccess(): Getting access to the pipe failed. Error:1073741825 (0x40000001) and Error: 2 (0x2)

Error: (07/30/2016 08:33:25 AM) (Source: TrueColorALS) (EventID: 4) (User: )
Description: TrueColorALSCUISDKaccess(): Getting access to the pipe failed. Error:1073741825 (0x40000001) and Error: 2 (0x2)

Error: (07/30/2016 08:33:22 AM) (Source: TrueColorALS) (EventID: 4) (User: )
Description: TrueColorALSCUISDKaccess(): Getting access to the pipe failed. Error:1073741825 (0x40000001) and Error: 2 (0x2)

Error: (07/30/2016 08:07:27 AM) (Source: TrueColorALS) (EventID: 4) (User: )
Description: TrueColorALSCUISDKaccess(): Getting access to the pipe failed. Error:1073741825 (0x40000001) and Error: 2 (0x2)

Error: (07/30/2016 08:05:53 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.0.10100.24) TYPE: ERROR

DPTF Build Version: 8.0.10100.24
DPTF Build Date: Aug 7 2014 11:13:11
Source File: ..\..\..\Sources\Manager\WIPolicyCreate.cpp @ line 44
Executing Function: WIPolicyCreate::execute
Message: Unhandled exception caught during execution of work item
Policy File Name: C:\Program Files (x86)\Intel\Intel(R) Dynamic Platform and Thermal Framework\ufx64\DptfPolicyActive.dll
Framework Event: PolicyCreate [24]
Exception Function: PolicyManager::createPolicy
Exception Text:

DPTF Build Version: 8.0.10100.24
DPTF Build Date: Aug 7 2014 11:13:11
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 392
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_ACPI_OBJECT_NOT_FOUND [1106]

Error: (07/29/2016 10:18:44 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ERIC)
Description: Activation of app Microsoft.Windows.Photos_8wekyb3d8bbwe!App failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.

Error: (07/29/2016 08:11:59 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.0.10100.24) TYPE: ERROR

DPTF Build Version: 8.0.10100.24
DPTF Build Date: Aug 7 2014 11:13:11
Source File: ..\..\..\Sources\Manager\WIPolicyCreate.cpp @ line 44
Executing Function: WIPolicyCreate::execute
Message: Unhandled exception caught during execution of work item
Policy File Name: C:\Program Files (x86)\Intel\Intel(R) Dynamic Platform and Thermal Framework\ufx64\DptfPolicyActive.dll
Framework Event: PolicyCreate [24]
Exception Function: PolicyManager::createPolicy
Exception Text:

DPTF Build Version: 8.0.10100.24
DPTF Build Date: Aug 7 2014 11:13:11
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 392
Executing Function: EsifServices::primitiveExecuteGet
Message: Error returned from ESIF services interface function call
Participant: NoParticipant
Domain: NoDomain
ESIF Primitive: GET_ACTIVE_RELATIONSHIP_TABLE [89]
ESIF Instance: 255
ESIF Return Code: ESIF_E_ACPI_OBJECT_NOT_FOUND [1106]


System errors:
=============
Error: (08/02/2016 10:18:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Access_1d46b75 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 10:18:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Storage_1d46b75 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 10:18:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Contact Data_1d46b75 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 10:18:02 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_1d46b75 service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 10:18:02 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable

Error: (08/02/2016 08:29:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Access_127254b service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 08:29:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The User Data Storage_127254b service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 08:29:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Contact Data_127254b service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 08:29:58 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Sync Host_127254b service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (08/02/2016 08:29:58 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable


CodeIntegrity:
===================================
Date: 2016-07-28 06:58:31.719
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Users\Éric\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-07-19 20:18:34.258
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-07-16 10:34:26.466
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-22 18:43:18.444
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-18 03:41:57.799
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-18 03:31:21.596
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-20 22:06:08.014
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 13:27:30.382
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-13 19:04:16.588
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-12 18:40:43.332
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Percentage of memory in use: 34%
Total physical RAM: 12199.83 MB
Available physical RAM: 8023.9 MB
Total Virtual: 14055.83 MB
Available Virtual: 9741.43 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:919.14 GB) (Free:792.72 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A12149EE)

Partition: GPT.

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité