cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de correction de Farbar Recovery Scan Tool (x64) Version: 01.01.2019
Exécuté par mi (03-01-2019 00:27:09) Run:2
Exécuté depuis C:\Users\toshiba\Desktop
Profils chargés: mi (Profils disponibles: mi)
Mode d'amorçage: Normal
==============================================

fixlist contenu:
*****************
CreateRestorePoint:
CloseProcesses:
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\BootDefragDriver
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\NAVENG
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\NAVEX15
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\speedfan
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\TuneUpUtilitiesDrv
DeleteKey: HKLM\SYSTEM\CurrentControlSet\Services\VBoxAswDrv
S3 Tosrfcom; pas de ImagePath
S0 BootDefragDriver; System32\drivers\BootDefragDriver.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\SDSDefs\20180311.020\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton 360\NortonData\22.5.2.15\Definitions\SDSDefs\20180311.020\EX64.SYS [X]
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [X]
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
StartRegedit:
Windows Registry Editor Version 5.00
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[-HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\microsoft.com\*.update]
"http"=dword:00000002
"https"=dword:00000002
EndRegedit:
DeleteValue: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{2DFF3579-5AA7-45B9-9328-1D38EA230861}
DeleteValue: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{23FD9C33-A9E1-48A1-8404-E5925CF1C8E1}
C:\WINDOWS\System32\Config\systemprofile\AppData\Local\LavasoftTcpService
DeleteKey: HKLM\SOFTWARE\WOW6432Node\SlimWare Utilities Inc
C:\WINDOWS\Installer\112a6891.msp
C:\WINDOWS\Installer\132d6f.msp
C:\WINDOWS\Installer\14b789b4.msp
C:\WINDOWS\Installer\16ba993.msp
C:\WINDOWS\Installer\1c28291f.msp
C:\WINDOWS\Installer\3de3be33.msp
C:\WINDOWS\Installer\4d0d3b72.msp
C:\WINDOWS\Installer\62399d7.msp
C:\WINDOWS\Installer\6911d2c2.msp
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-1360439242-543759846-2576680677-1001\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1360439242-543759846-2576680677-1001 -> {C27349A9-6822-440F-92FD-CCAF63944E46} URL =
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de fichier
Toolbar: HKLM-x32 - Pas de nom - {2DFF3579-5AA7-45B9-9328-1D38EA230861} - Pas de fichier
Toolbar: HKLM-x32 - Pas de nom - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - Pas de fichier
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt => non trouvé(e)
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_3_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 3\resources\pdfarchitect3firefoxextension => non trouvé(e)
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e)
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
CustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Pas de fichierCustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => Pas de fichier
Task: {4EB43600-A4DC-4741-8EB9-AF5267877A3E} - System32\Tasks\{753244DD-7F71-4B48-AD74-0D640D2986C1} => C:\windows\system32\pcalua.exe -a "C:\Users\toshiba\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CY1MLA2O\Plug-in_messagerie_vocale_888.exe" -d C:\Users\toshiba\Desktop
Task: {7F17F7FF-45BC-4EAF-94C8-25E3A3B0EEF7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {B57B6551-511E-4D28-BBCE-BBE57187F153} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2E86669B-9129-4D19-B91E-C4E3CCC593FA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001UA => C:\Users\toshiba\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {EF25A7DD-141A-44FE-AFA3-04DACC03A5DF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001Core => C:\Users\toshiba\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk
C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\Numilog.NumilogeBookReader_fn295wynkd18w\App.lnk
C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.Calendar.lnk
C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.Mail.lnk
C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.People.lnk

*****************

Le Point de restauration a été créé avec succès.
Processus fermé avec succès.
HKLM\SYSTEM\CurrentControlSet\Services\BootDefragDriver => non trouvé(e)
HKLM\SYSTEM\CurrentControlSet\Services\NAVENG => non trouvé(e)
HKLM\SYSTEM\CurrentControlSet\Services\NAVEX15 => non trouvé(e)
HKLM\SYSTEM\CurrentControlSet\Services\speedfan => non trouvé(e)
HKLM\SYSTEM\CurrentControlSet\Services\TuneUpUtilitiesDrv => supprimé(es) avec succès
HKLM\SYSTEM\CurrentControlSet\Services\VBoxAswDrv => impossible à supprimer, clé était peut-être protégé(e)
Tosrfcom => service non trouvé(e).
BootDefragDriver => service non trouvé(e).
NAVENG => service non trouvé(e).
NAVEX15 => service non trouvé(e).
TuneUpUtilitiesDrv => service non trouvé(e).
HKLM\System\CurrentControlSet\Services\VBoxAswDrv => impossible à supprimer, clé était peut-être protégé(e)

====> Registre
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2DFF3579-5AA7-45B9-9328-1D38EA230861}" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{23FD9C33-A9E1-48A1-8404-E5925CF1C8E1}" => non trouvé(e)
"C:\WINDOWS\System32\Config\systemprofile\AppData\Local\LavasoftTcpService" => non trouvé(e)
HKLM\SOFTWARE\WOW6432Node\SlimWare Utilities Inc => supprimé(es) avec succès
"C:\WINDOWS\Installer\112a6891.msp" => non trouvé(e)
"C:\WINDOWS\Installer\132d6f.msp" => non trouvé(e)
"C:\WINDOWS\Installer\14b789b4.msp" => non trouvé(e)
"C:\WINDOWS\Installer\16ba993.msp" => non trouvé(e)
"C:\WINDOWS\Installer\1c28291f.msp" => non trouvé(e)
"C:\WINDOWS\Installer\3de3be33.msp" => non trouvé(e)
"C:\WINDOWS\Installer\4d0d3b72.msp" => non trouvé(e)
"C:\WINDOWS\Installer\62399d7.msp" => non trouvé(e)
"C:\WINDOWS\Installer\6911d2c2.msp" => non trouvé(e)
HKLM\SOFTWARE\Policies\Google => non trouvé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001\SOFTWARE\Policies\Google => non trouvé(e)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => valeur restauré(es) avec succès
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => valeur restauré(es) avec succès
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => non trouvé(e)
"HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => non trouvé(e)
"HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => non trouvé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C27349A9-6822-440F-92FD-CCAF63944E46} => supprimé(es) avec succès
HKLM\Software\Classes\CLSID\{C27349A9-6822-440F-92FD-CCAF63944E46} => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => non trouvé(e)
HKLM\Software\Classes\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => non trouvé(e)
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2DFF3579-5AA7-45B9-9328-1D38EA230861}" => non trouvé(e)
HKLM\Software\Wow6432Node\Classes\CLSID\{2DFF3579-5AA7-45B9-9328-1D38EA230861} => non trouvé(e)
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{23FD9C33-A9E1-48A1-8404-E5925CF1C8E1}" => non trouvé(e)
HKLM\Software\Wow6432Node\Classes\CLSID\{23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} => non trouvé(e)
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com" => non trouvé(e)
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\pdf_architect_3_conv@pdfarchitect.org" => non trouvé(e)
"HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\msktbird@mcafee.com" => non trouvé(e)
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj => non trouvé(e)
HKLM\System\CurrentControlSet\Services\AvastVBoxSvc => impossible à supprimer, clé était peut-être protégé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4} => non trouvé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4} => non trouvé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04} => non trouvé(e)
"HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\toshiba\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Pas de fichierCustomCLSID: HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}" => non trouvé(e)
HKU\S-1-5-21-1360439242-543759846-2576680677-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4} => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EB43600-A4DC-4741-8EB9-AF5267877A3E}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\{753244DD-7F71-4B48-AD74-0D640D2986C1}" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{753244DD-7F71-4B48-AD74-0D640D2986C1}" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F17F7FF-45BC-4EAF-94C8-25E3A3B0EEF7}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B57B6551-511E-4D28-BBCE-BBE57187F153}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2E86669B-9129-4D19-B91E-C4E3CCC593FA}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001UA" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001UA" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF25A7DD-141A-44FE-AFA3-04DACC03A5DF}" => non trouvé(e)
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001Core" => non trouvé(e)
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskUserS-1-5-21-1360439242-543759846-2576680677-1001Core" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\AFPL License.lnk" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\FairPlay License.lnk" => non trouvé(e)
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator\Licenses\GPL License.lnk" => non trouvé(e)
"C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\Numilog.NumilogeBookReader_fn295wynkd18w\App.lnk" => non trouvé(e)
"C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.Calendar.lnk" => non trouvé(e)
"C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.Mail.lnk" => non trouvé(e)
"C:\Users\toshiba\AppData\Local\Microsoft\Windows\Application Shortcuts\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Microsoft.WindowsLive.People.lnk" => non trouvé(e)

Résultats du déplacement planifié des fichiers (Mode d'amorçage: Normal) (Date&Heure: 03-01-2019 00:33:04)


Résultats de la suppression planifiée des clés après redémarrage:

HKLM\SYSTEM\CurrentControlSet\Services\VBoxAswDrv => impossible à supprimer, clé était peut-être protégé(e)
HKLM\System\CurrentControlSet\Services\VBoxAswDrv => impossible à supprimer, clé était peut-être protégé(e)
HKLM\System\CurrentControlSet\Services\AvastVBoxSvc => impossible à supprimer, clé était peut-être protégé(e)

==== Fin de Fixlog 00:33:04 ====

Publicité


Signaler le contenu de ce document

Publicité