Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:27-01-2016
Exécuté par Jean (2016-01-29 17:29:52)
Exécuté depuis C:\Users\Jean\Desktop
Windows 10 Home (X64) (2015-11-15 10:05:44)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-541818109-849782262-895485877-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-541818109-849782262-895485877-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-541818109-849782262-895485877-1009 - Limited - Enabled)
Invité (S-1-5-21-541818109-849782262-895485877-501 - Limited - Disabled)
Jean (S-1-5-21-541818109-849782262-895485877-1001 - Administrator - Enabled) => C:\Users\Jean

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Pare-feu (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Acronis True Image 2015 (HKLM-x32\...\{0174F517-0B1C-4969-B7C1-03A04EC64A21}Visible) (Version: 18.0.6613 - Acronis)
Acronis True Image 2015 (x32 Version: 18.0.6613 - Acronis) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.286 - Adobe Systems Incorporated)
Afficher le Mode d’emploi (HKLM-x32\...\View User Guide) (Version: 3.60.02.0 - )
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.18.1035 - Bitdefender)
Bitdefender Total Security 2016 (HKLM\...\Bitdefender) (Version: 20.0.21.1191 - Bitdefender)
CanoScan 8800F (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ4805) (Version:  - )
Catalyst Control Center Next Localization BR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2015.1204.1216.22046 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
FastStone Image Viewer 4.8 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.8 - FastStone Soft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.97 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation)
LibreOffice 4.4.6.3 (HKLM-x32\...\{1013DB12-EC2E-455E-B5ED-BFD056DC1A99}) (Version: 4.4.6.3 - The Document Foundation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 43.0.4 (x86 fr) (HKLM-x32\...\Mozilla Firefox 43.0.4 (x86 fr)) (Version: 43.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.4.5848 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 38.5.0 (x86 fr)) (Version: 38.5.0 - Mozilla)
Mozilla Thunderbird 38.5.1 (x86 fr) (HKU\S-1-5-21-541818109-849782262-895485877-1001\...\Mozilla Thunderbird 38.5.1 (x86 fr)) (Version: 38.5.1 - Mozilla)
Orange Installer (HKLM-x32\...\Orange Installer) (Version: 2.0.0.12 - Orange)
RAPID Mode (Version: 1.0.1.81 - Samsung Electronics Co., Ltd.) Hidden
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.05.61 (10/04/2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.71.00(12/09/2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.60.40.03 - Samsung Electronics Co., Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (x32 Version: 1.00.56.01 - Samsung Electronics Co., Ltd.) Hidden
Samsung SCX-3400 Series (HKLM-x32\...\Samsung SCX-3400 Series) (Version: 1.18 (01/07/2013) - Samsung Electronics Co., Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.9.0 - SAMSUNG Electronics Co., Ltd.)
Secunia PSI (3.0.0.10004) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.109 - Skype Technologies S.A.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 7.3.4.0 - 2BrightSparks)
System Requirements Lab for Intel (HKLM-x32\...\{1EBDF6D2-CEA0-484C-A23E-2DDAD7FD0DD0}) (Version: 4.5.22.0 - Husdawg, LLC)
ThunderFix 1.0.0.2 (HKLM-x32\...\{52291FC0-33D3-4A18-9587-5115225545D8}_is1) (Version:  - )
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
XnViewMP 0.72 (HKLM-x32\...\XnViewMP_is1) (Version: 0.72 - Gougelet Pierre-e)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-541818109-849782262-895485877-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Jean\AppData\Local\Microsoft\OneDrive\17.3.6281.1202\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-541818109-849782262-895485877-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Jean\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-541818109-849782262-895485877-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Jean\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0B264453-860D-4BEF-8D34-D12FD3D692E6} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde recettes (1) => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {0C27919E-9251-4F3D-A54A-23F453154827} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {0CFE2E40-6A97-48C5-9F38-DE82315CF1B0} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {15BCE027-72B7-46F5-9EC6-82BC5F172D2E} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde recettes => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {1A77D969-68CE-4B09-A7D6-45B8F6D16F8A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-13] (Microsoft Corporation)
Task: {1DF71864-B0EB-43F3-83F8-0186CA901A44} - System32\Tasks\Driver Booster SkipUAC (Jean) => C:\Program Files (x86)\Driver Booster\DriverBooster.exe
Task: {25D60133-A104-4F98-9881-8A7959F15215} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-07] (Google Inc.)
Task: {27A7B949-0DF9-47B3-9D14-3E761F21F15F} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde musique => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {3863C0BA-16E0-463A-B4F0-E79A0A794C6E} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde Courrier => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {3D51D908-5BAE-4D7E-9161-09D6444485A5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {44CB2F5F-A64F-4149-88F5-327FD1F47CA1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {48FF45E0-25AB-41B2-90B0-530F7FF46698} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde Photos (1) => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {4B28F2B2-054D-4801-A6B5-1A18B332452D} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe [2014-10-30] ()
Task: {502CE80D-48A8-4C2C-A3B2-F046AFA19DC4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {56814482-5081-40B1-A296-9E86E1782F37} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2015-11-09] (Bitdefender)
Task: {6D38DDA6-6F31-4073-8FE1-B6704BED7C45} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-541818109-849782262-895485877-1001Core => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-07] (Google Inc.)
Task: {6ECCAB20-F829-484C-B19A-C3A78D6E2AAC} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {78612481-FD9A-4968-9C14-CFE4761378BC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {7BC54214-425F-405D-BB11-8E5CF2C2BADB} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {7E4D97F1-1FB8-4F27-AD0D-73297E5F3301} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {8F522F2B-F0E6-4CEE-A935-5C5BA7CB694B} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde Photos => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {9907C816-14A6-4E29-AB98-151FC3AC4D8B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {9E6C1522-970E-4809-A425-D6C72F36BA5D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {AF0957AC-883D-498D-B596-9F30A8A35B2F} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde Courrier (1) => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {B1D10AE3-5627-478D-96EC-3242D3DA5571} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {D7781889-07FF-4CBD-8CCC-62A1C8003B9C} - System32\Tasks\2BrightSparks\SyncBackFree\PC-JEAN-Jean\SyncBackFree Sauvegarde musique (1) => C:\Program Files (x86)\SyncBack\SyncBackFree.exe [2015-08-24] (2BrightSparks Pte Ltd)
Task: {D9452A57-1C69-4AF6-AE57-852845811868} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {E443E5F9-35FA-4B55-95BB-4DAB5E2C5CEA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-541818109-849782262-895485877-1001UA => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-07] (Google Inc.)
Task: {E69FD9A2-7DA2-4236-B0B7-E2C8AC595D37} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {EA88C361-8A6F-4292-A801-C5D626FF068A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-07] (Google Inc.)
Task: {EEC805CA-FDC5-4A3C-A32B-3245E9900D52} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {F02B610B-9F91-4963-B6F1-2BE687E66332} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2015-12-04] (Advanced Micro Devices, Inc.)
Task: {FBBBDF7C-A593-4200-9134-8D408E931AA2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-541818109-849782262-895485877-1001Core.job => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-541818109-849782262-895485877-1001UA.job => C:\Users\Jean\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-11-15 12:18 - 2013-09-03 13:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll
2016-01-26 08:25 - 2016-01-26 08:25 - 01119064 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_01851_006\ashttpbr.mdl
2016-01-26 08:25 - 2016-01-26 08:25 - 00794832 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_01851_006\ashttpdsp.mdl
2016-01-26 08:25 - 2016-01-26 08:25 - 03038112 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_01851_006\ashttpph.mdl
2016-01-26 08:25 - 2016-01-26 08:25 - 01648408 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_01851_006\ashttprbl.mdl
2015-04-09 05:27 - 2015-04-09 05:27 - 00022528 _____ () C:\WINDOWS\System32\ssm1mlm.dll
2015-12-03 08:28 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-03 08:28 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-01-13 08:25 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-01-28 11:52 - 2016-01-16 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-12-18 07:59 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2015-12-18 07:59 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-01-13 08:25 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-01-13 08:25 - 2016-01-05 02:24 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-01-28 11:52 - 2016-01-16 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-10-30 10:22 - 2014-10-30 10:22 - 00475928 _____ () C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
2015-06-25 16:34 - 2015-06-25 16:34 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 16:37 - 2015-06-25 16:37 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 16:35 - 2015-06-25 16:35 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 16:38 - 2015-06-25 16:38 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 15:53 - 2015-06-25 15:53 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 15:51 - 2015-06-25 15:51 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-11-22 15:33 - 2015-04-09 05:27 - 01604096 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\ssm1mdu.dll
2012-11-16 09:37 - 2012-11-16 09:37 - 00118784 _____ () C:\Program Files (x86)\Orange\Orange Installer\libgcc_s_dw2-1.dll
2013-10-05 18:17 - 2013-10-05 18:17 - 01000974 _____ () C:\Program Files (x86)\Orange\Orange Installer\libstdc++-6.dll
2015-05-23 17:20 - 2014-10-31 15:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-05-23 17:20 - 2014-05-19 16:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 00:26 - 2014-05-14 00:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2015-10-21 21:29 - 2015-10-21 21:29 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2015-10-21 21:29 - 2015-10-21 21:29 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2015-06-27 00:09 - 2015-06-27 00:09 - 00271872 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-22 23:56 - 2010-11-22 23:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-22 23:57 - 2010-11-22 23:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-22 23:56 - 2010-11-22 23:56 - 00324608 _____ () C:\Program Files (x86)\Raptr\PIL._imaging.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00024064 _____ () C:\Program Files (x86)\Raptr\win32pipe.pyd
2010-11-22 23:57 - 2010-11-22 23:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 01:56 - 2014-06-18 01:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 19:17 - 2011-02-15 19:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 00:06 - 2010-11-23 00:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 00:52 - 2013-05-10 00:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 19:56 - 2013-05-03 19:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 19:57 - 2013-05-03 19:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2013-10-29 16:43 - 2014-09-28 17:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2014-05-23 09:08 - 2013-12-10 00:27 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-07-20 08:08 - 2015-07-20 08:08 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-07-20 08:15 - 2015-07-20 08:15 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2014-10-22 10:46 - 2014-10-22 10:46 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll
2014-09-09 11:00 - 2014-09-09 11:00 - 00023576 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy_stub.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\Jean\Desktop\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\AcronisTrueImage2015_web_trial_fr-FR.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\bitdefender_tsecurity.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\driver-booster_3-0-3-261_fr_430351.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\EPM_V1.03.71.00.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\MaConfig_Win.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\oovoo_3-6-9-10_fr_62320.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\Patch-SetID-Cleaner.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\pmbxie.dll:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\SkypeSetup.exe:BDU
AlternateDataStreams: C:\Users\Jean\Downloads\Thunderbird Setup 38.4.0.exe:BDU

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-541818109-849782262-895485877-1001\...\ma-config.com -> hxxp://ma-config.com
IE trusted site: HKU\S-1-5-21-541818109-849782262-895485877-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2013-08-22 14:25 - 2016-01-29 16:46 - 00001782 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-541818109-849782262-895485877-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jean\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\p1000375.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu is disabled.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "CDAServer"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-541818109-849782262-895485877-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-541818109-849782262-895485877-1001\...\StartupApproved\Run: => "EEDSpeedLauncher"
HKU\S-1-5-21-541818109-849782262-895485877-1001\...\StartupApproved\Run: => "Orange Installer"
HKU\S-1-5-21-541818109-849782262-895485877-1001\...\StartupApproved\Run: => "OneDrive"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8A8424C1-5DB7-4CEC-85E1-380074A939DD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{988FE819-1A27-43A2-9B77-B6E83DCA9C35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AEBD3485-3F0F-4C5B-A90D-086B375746F7}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{801B5A18-4C32-4089-BE40-7B63E4EC5A72}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{13A0FF2C-1058-4DC2-B5F0-19B284618B24}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{368BD709-8055-452A-B2F1-CA9D45AF2B8B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{7878C0EA-00CF-4F1C-A6C7-CAADA84D3088}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{2ED871EC-4C2D-4E74-A463-EEEEC56194A1}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{1593670B-7569-494B-97D9-8F5998D24AFA}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{FB5A983F-A8B0-4442-9E2A-57196EF90EE7}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{4489A6C9-9E13-4045-AB94-1EC9A1239333}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{7008B866-4A38-4A97-B6DB-10FC88E45966}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{763B6DDD-3EA4-4D68-8EA0-F6A70680C386}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{A6626D3E-CA98-4276-B892-10917DAEA393}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{37117551-C0BF-4F8B-9D54-6A02EFCEF64E}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{C38B2343-A80C-4EC8-BE84-715CF3E250C2}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{21FF1D37-25BA-45F5-A588-E5B332B6E248}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{88D304F1-30C4-4C82-AE6E-C7BD23CFA0DC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{25920B11-8884-453F-A838-D86F45845FDE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{C9472E94-18C2-438F-8E90-5D86D2C54EAC}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe
FirewallRules: [{0A2CCFC6-E80B-49F4-B21E-D5152AEE60E1}] => (Allow) LPort=48113
FirewallRules: [{7FC64485-F5BF-415E-BAF4-735614DCF753}] => (Allow) LPort=48114
FirewallRules: [{6C53B0B4-031D-46E2-BB1A-2E3AE70A4CCD}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3E24F2AF-9733-4767-A803-51CC49AC3B78}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DCB723E4-6FF7-4412-AA8E-06042EAE16FC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{993E7B3E-1422-4F3B-871E-1166EAF9FA0C}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{4BA45A50-96C6-4231-A299-0B601607759C}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{67A2712F-D45B-4785-8D3E-13F560098738}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{24C970C2-ABD5-455C-AF9B-BFD9A72CF076}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{7B92C481-4F54-4B8F-87C0-23FBA4A3FD77}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{EAE54F49-675B-4B43-9F8E-7878F093AA67}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe
FirewallRules: [{8B78E22E-EB26-406F-BA19-F7873242189F}] => (Allow) C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe

==================== Points de restauration =========================

29-01-2016 14:42:06 Fin de désinfection

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (01/29/2016 02:42:06 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.

System Error:
Accès refusé.
.

Error: (01/29/2016 10:16:22 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8

Error: (01/29/2016 10:16:22 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (01/28/2016 11:52:49 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.

System Error:
Accès refusé.
.

Error: (01/28/2016 09:44:04 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (01/28/2016 09:43:59 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (01/28/2016 09:43:00 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (01/28/2016 09:39:17 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (01/28/2016 09:39:11 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (01/28/2016 09:39:11 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-JEAN)
Description: Échec de l’activation de l’application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927149 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.


Erreurs système:
=============
Error: (01/29/2016 02:46:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service tib_mounter n’a pas pu démarrer en raison de l’erreur : 
%%1058

Error: (01/29/2016 02:46:07 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service HomeGroupListener s’est arrêté avec l’erreur spécifique au service suivante : 
%%2147944153

Error: (01/29/2016 02:45:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Accès aux données utilisateur_37e4c s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (01/29/2016 02:45:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Stockage des données utilisateur_37e4c s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (01/29/2016 02:45:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Données de contacts_37e4c s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (01/29/2016 02:45:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_37e4c s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.

Error: (01/29/2016 02:45:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible

Error: (01/29/2016 09:25:34 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Jean\AppData\Local\Temp\catchme.sys

Error: (01/29/2016 09:25:34 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Jean\AppData\Local\Temp\catchme.sys

Error: (01/29/2016 09:23:27 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Jean\AppData\Local\Temp\catchme.sys


CodeIntegrity:
===================================
  Date: 2016-01-29 09:25:34.278
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Jean\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-29 09:25:34.269
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Jean\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-29 09:23:27.433
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Jean\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-28 15:46:19.489
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

  Date: 2016-01-28 15:46:19.486
  Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Raptr\ltc_help64-106568.dll that did not meet the Store signing level requirements.

  Date: 2016-01-28 14:15:16.982
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-01-17 08:32:41.168
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-01-16 08:55:14.796
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-01-16 08:21:34.173
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

  Date: 2016-01-13 13:36:37.915
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 21%
Mémoire physique - RAM - totale: 16328.97 MB
Mémoire physique - RAM - disponible: 12839.36 MB
Mémoire virtuelle totale: 18760.97 MB
Mémoire virtuelle disponible: 15465.46 MB

==================== Lecteurs ================================

Drive c: (Samsung SSD850) (Fixed) (Total:237.46 GB) (Free:187.03 GB) NTFS
Drive d: (Samsung SSD840) (Fixed) (Total:214.06 GB) (Free:140.83 GB) NTFS
Drive i: (Plextor SSD) (Fixed) (Total:111.79 GB) (Free:73.59 GB) NTFS
Drive j: (SSD Intel) (Fixed) (Total:149.05 GB) (Free:129.22 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: E4BFBC3F)

Partition: GPT.

========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: E4BFBC3F)

Partition: GPT.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 46D520D0)
Partition 1: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 119.2 GB) (Disk ID: FC8C0C9C)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================