Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 07-12-2016
Exécuté par Gérard (12-12-2016 15:43:54)
Exécuté depuis C:\Users\Gérard\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-24 17:51:51)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3081936106-3343042253-2578623530-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3081936106-3343042253-2578623530-503 - Limited - Disabled)
Gérard (S-1-5-21-3081936106-3343042253-2578623530-1001 - Administrator - Enabled) => C:\Users\Gérard
Invité (S-1-5-21-3081936106-3343042253-2578623530-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 16.00 (HKLM-x32\...\7-Zip) (Version: 16.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\{0A9A57A9-8D6E-4CBD-9434-A244E94D2154}) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Antivirus Gratuit (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Avira Launcher (HKLM-x32\...\{5b07d59f-99e0-4c52-ad25-965f7e38d6ac}) (Version: 1.1.51.19070 - Avira Operations GmbH & Co. KG)
Avira Launcher (x32 Version: 1.1.51.19070 - Avira Operations GmbH & Co. KG) Hidden
Blender (HKLM\...\{A92D3758-1EE8-4E41-90B6-2EF40BDDA349}) (Version: 2.76.0 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Canon MG5300 series On-screen Manual (HKLM-x32\...\Canon MG5300 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version: - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Citrix Online Launcher (HKLM-x32\...\{678753E6-E526-4AE5-A144-00240772543A}) (Version: 1.0.393 - Citrix)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
Enregistrement utilisateur de Canon MG5300 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG5300 series) (Version: - )
FileMaker Pro 14 (HKLM-x32\...\{A2692EDD-7F2A-4228-83DE-0EF031C35D3C}_FileMaker) (Version: 14.0.4.0 - FileMaker, Inc.)
FileMaker Pro 14 (Version: 14.0.5.0 - FileMaker, Inc.) Hidden
FileMaker Pro 14 (x32 Version: 14.0.4.0 - FileMaker, Inc.) Hidden
FileMaker Pro 14 (x64) (HKLM\...\{3914F800-A28F-4430-B2C1-CF67318E34E7}_FileMaker) (Version: 14.0.5.0 - FileMaker, Inc.)
FileZilla Client 3.21.0 (HKLM-x32\...\FileZilla Client) (Version: 3.21.0 - Tim Kosse)
Google Chrome (HKLM-x32\...\{2F2AEA1E-FBB8-371D-8357-4C3B4D308E69}) (Version: 66.101.32867 - Google, Inc.)
Google Drive (HKLM-x32\...\{3D7AB4D4-2E45-4986-BAC5-5B3CEED21FAA}) (Version: 1.32.3592.6117 - Google, Inc.)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
LibreOffice 5.0.2.2 (HKLM-x32\...\{71508AE2-346A-4E56-AE95-DBB8DE692258}) (Version: 5.0.2.2 - The Document Foundation)
Logiciel Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{9B3F0A88-790D-3AD9-9F96-B19CF2746452}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Mozilla Firefox 50.0 (x64 fr) (HKLM\...\Mozilla Firefox 50.0 (x64 fr)) (Version: 50.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2 - Mozilla)
NetworkGenie (HKLM-x32\...\{B416A23D-C2BD-4956-8BAE-5C3BAFF1AC1E}) (Version: 1.0.0.8 - MSI)
NVIDIA Pilote 3D Vision 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.90 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Pilote graphique 372.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.90 - NVIDIA Corporation)
OpenOffice 4.1.3 (HKLM-x32\...\{EF451311-C2EC-4245-911F-4847C2294A82}) (Version: 4.13.9783 - Apache Software Foundation)
Panneau de configuration NVIDIA 372.90 (Version: 372.90 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Prism - Convertisseur de fichiers vidéo (HKLM-x32\...\Prism) (Version: 2.50 - NCH Software)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Scribus 1.4.6 (64bit) (HKLM\...\Scribus 1.4.6) (Version: 1.4.6 - The Scribus Team)
Secunia PSI (3.0.0.11005) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11005 - Secunia)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
Trend Micro SafeSync (HKLM\...\HFRS_is1) (Version: 5.1.0.1173 - Trend Micro)
video2brain Desktop App (HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\bfe81a058ff573be) (Version: 1.3.1.85 - Lynda.com)
VirtualGeo³ pour le Géoportail (HKLM-x32\...\VGeo3 GP) (Version: 3.1.0.2040 - Diginext)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WavePad - Logiciel d'édition audio (HKLM-x32\...\WavePad) (Version: 6.01 - NCH Software)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0871A333-F4A0-457B-B0E0-FF6DC92A2E37} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2014-04-24] (Realtek Semiconductor)
Task: {321F8FC2-CF02-494D-9BC0-90D41B91F75D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-11-09] (Microsoft Corporation)
Task: {3929FF87-AEB7-4FA4-BA6E-8B062DB00448} - System32\Tasks\SafeZone scheduled Autoupdate 1477232571 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {3F067872-CFE4-40C9-8B98-993EE3AEAF97} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-13] (Adobe Systems Incorporated)
Task: {43F151E7-E583-4554-8200-4F6F2EFA398D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {63A681E6-148F-4191-A9B7-CD5F02F60F8D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-23] (AVAST Software)
Task: {64E70F90-45FD-4118-8D04-12D41732119C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-24] (Google Inc.)
Task: {7A4F7C1C-061D-4DE3-9F38-F00329588C31} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {7ACEA493-14DE-412E-94CF-3D5AEA67E18A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {B0E2F7DF-96F3-4FD8-AA2F-4641BF769BCB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-24] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-25 16:16 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-24 18:40 - 2016-09-16 23:54 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-09-24 16:39 - 2013-04-29 18:12 - 00282624 _____ () C:\Program Files (x86)\MSI\ControlCenter\Sleep\MSISleepService.exe
2016-10-25 16:16 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-26 15:48 - 2016-10-26 15:48 - 01864384 _____ () C:\Users\Gérard\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-10-24 19:34 - 2016-10-24 19:34 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 18:23 - 2016-11-02 11:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 18:22 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 18:23 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 18:23 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 18:22 - 2016-11-02 11:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 18:22 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 18:23 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-17 09:55 - 2016-11-17 09:56 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-11-17 09:55 - 2016-11-17 09:56 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-17 09:55 - 2016-11-17 09:56 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-10 17:04 - 2016-12-10 17:06 - 00176640 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.11301.0_x64__8wekyb3d8bbwe\CellNativeClientUniversal.dll
2016-10-23 15:19 - 2016-10-23 15:19 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-12-12 14:16 - 2016-12-12 14:16 - 03067904 _____ () C:\Program Files\AVAST Software\Avast\defs\16121200\algo.dll
2016-10-23 15:19 - 2016-10-23 15:19 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-09-24 16:37 - 2005-07-18 21:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2015-09-24 16:39 - 2014-04-21 23:09 - 00150528 _____ () C:\Program Files (x86)\MSI\NetworkGenie\gep.dll
2016-10-26 15:48 - 2016-10-26 15:48 - 01383616 _____ () C:\Users\Gérard\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2016-10-26 15:48 - 2016-10-26 15:48 - 00118976 _____ () C:\Users\Gérard\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileSyncViews.dll
2016-10-23 15:19 - 2016-10-23 15:19 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\82399637.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\82399637.sys => ""="Driver"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\atos.net -> hxxp://*.aw.atos.net
IE trusted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\atosorigin.com -> hxxp://*.aw.atosorigin.com
IE trusted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\geoportail.fr -> hxxp://geoportail.fr
IE trusted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\gouv.fr -> hxxp://*.geoportail.gouv.fr
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\123simsen.com -> www.123simsen.com
Il y a 7914 plus de sites.
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-09-24 14:35 - 2016-10-21 08:21 - 00453264 ___RA C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Il y a 15554 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gérard\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "Fast Boot"
HKLM\...\StartupApproved\Run32: => "KeePass 2 PreLoad"
HKLM\...\StartupApproved\Run32: => "KiesTrayAgent"
HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3081936106-3343042253-2578623530-1001\...\StartupApproved\Run: => "iCloudServices"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => LPort=139
FirewallRules: [{5F5F2A00-37D5-4C5C-9567-ED08572C4F0C}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{58F1F918-88A0-4A16-9BB4-34DD7BF258E7}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{C282F614-13E4-4E15-874F-BA045FA38A07}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{2F0AF052-B2D7-43C4-A5F0-116DE32BC7B0}] => C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{14BC0F37-2B9E-490C-BF7A-893C260442A7}] => LPort=8317
FirewallRules: [TCP Query User{2D14C729-2438-4870-ADCD-610A4E807639}C:\program files\videolan\vlc\vlc.exe] => C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{5EA47E65-EE60-471A-AFA9-607DDDE75A2A}C:\program files\videolan\vlc\vlc.exe] => C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{AB361B8F-1C76-4C98-8D27-3AF0C1E89C03}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{18478CC8-2625-4D0A-88D6-A4EDF3A4FDDA}] => C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{92A21B49-5F6D-45B8-AFF1-EEB9F08C1010}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4ACE20F7-1CFA-482A-A825-B62F535D2E1A}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{68C4836F-D12A-49E6-95AF-E3B48F02505D}C:\program files (x86)\xmind\xmind.exe] => C:\program files (x86)\xmind\xmind.exe
FirewallRules: [UDP Query User{1CB8DD70-0391-4192-87C1-5CED9E9B5999}C:\program files (x86)\xmind\xmind.exe] => C:\program files (x86)\xmind\xmind.exe
FirewallRules: [TCP Query User{32588132-094E-4032-8934-A9DF0C4AE810}C:\program files\filemaker\filemaker pro 14\filemaker pro.exe] => C:\program files\filemaker\filemaker pro 14\filemaker pro.exe
FirewallRules: [UDP Query User{2FE5683F-7FD3-4D92-9EF7-41C351727589}C:\program files\filemaker\filemaker pro 14\filemaker pro.exe] => C:\program files\filemaker\filemaker pro 14\filemaker pro.exe
FirewallRules: [{5BA441C7-6560-4DB4-9664-1D98279A7221}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (12/12/2016 02:30:49 PM) (Source: MsiInstaller) (EventID: 11714) (User: AUTORITE NT)
Description: Produit : LibreOffice 5.1.4.2 -- Erreur 1714.La version précédente de LibreOffice 5.1.4.2 n'a pas pu être supprimée. Contactez votre service de support technique. Erreur système 1612.
Error: (12/12/2016 02:23:40 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:23:40 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:23:36 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:23:36 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:16:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:16:34 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:16:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 02:16:30 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Canon\Solution Menu EX\MFC80U.DLL ».
Assembly dépendant Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (12/12/2016 01:35:49 PM) (Source: MsiInstaller) (EventID: 11714) (User: AUTORITE NT)
Description: Produit : LibreOffice 5.1.4.2 -- Erreur 1714.La version précédente de LibreOffice 5.1.4.2 n'a pas pu être supprimée. Contactez votre service de support technique. Erreur système 1612.
Erreurs système:
=============
Error: (12/12/2016 02:47:02 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:47:00 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:57 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:54 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:51 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:48 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:45 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:46:43 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:44:43 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
Error: (12/12/2016 02:39:13 PM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk2\DR2 comporte un bloc défectueux.
CodeIntegrity:
===================================
Date: 2016-12-12 11:38:16.933
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Gérard\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.103
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.097
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.093
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.087
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.081
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:33:24.078
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\x86_microsoft-windows-utilman_31bf3856ad364e35_10.0.10586.0_none_3310acc4233710cd\Utilman.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:31:51.514
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:31:51.497
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-25 17:31:51.484
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows.old\WINDOWS\WinSxS\wow64_windows-devices-perception_31bf3856ad364e35_10.0.10586.0_none_5c4fdcd072d3b010\Windows.Devices.Perception.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
Processeur: AMD FX(tm)-6300 Six-Core Processor
Pourcentage de mémoire utilisée: 26%
Mémoire physique - RAM - totale: 8140.05 MB
Mémoire physique - RAM - disponible: 5983.52 MB
Mémoire virtuelle totale: 8720.05 MB
Mémoire virtuelle disponible: 6433.09 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:92.52 GB) (Free:49.11 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (Données (D:)) (Fixed) (Total:931.51 GB) (Free:387.97 GB) NTFS
Drive f: () (Fixed) (Total:348.95 GB) (Free:228.92 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 117.4 GB) (Disk ID: 0001F47B)
Partition 1: (Active) - (Size=92.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 MB) - (Type=27)
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: EE9A43B1)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 698.6 GB) (Disk ID: 00015249)
Partition 1: (Active) - (Size=349 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=349.7 GB) - (Type=05)
==================== Fin de Addition.txt ============================