Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:07-02-2016
Exécuté par Julie (2016-02-16 12:04:37)
Exécuté depuis C:\Users\Julie\Desktop
Windows 8.1 (X64) (2014-05-02 12:57:14)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-447743119-2744269165-2209408058-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-447743119-2744269165-2209408058-1003 - Limited - Enabled)
Invité (S-1-5-21-447743119-2744269165-2209408058-501 - Limited - Disabled)
Julie (S-1-5-21-447743119-2744269165-2209408058-1001 - Administrator - Enabled) => C:\Users\Julie
Sylvie (S-1-5-21-447743119-2744269165-2209408058-1004 - Limited - Enabled) => C:\Users\Sylvie

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: McAfee Anti-Virus et Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus et Anti-Spyware (Disabled - Out of date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Pare-feu McAfee  (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-447743119-2744269165-2209408058-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version:  - )
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5.6902 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.5.3303 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2.3302 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.109 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
GoPro App (x32 Version: 5.7.549 - GoPro, Inc.) Hidden
GoPro Studio 2.5.7 (HKLM-x32\...\{b996dca2-156c-4d2c-b9a3-59fac08cef33}) (Version: 2.5.7.549 - GoPro, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: 1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-447743119-2744269165-2209408058-1001\...\HPConnectedMusic) (Version: 1.1 (build 112) hp - Meridian Audio Ltd)
HP Documentation (HKLM-x32\...\{CCE5C597-03EA-423E-BA80-6FCD280A8465}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7127.4628 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.00.57 - Hewlett-Packard)
HP System Event Utility (HKLM-x32\...\{C78E8F51-3EAD-4F0C-83F0-EF371075E0B4}) (Version: 1.0.10 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{7A75E042-0D30-43C2-BD2A-684F4BE38FF7}) (Version: 2.3.1 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Inst5675 (Version: 8.00.57 - Softex Inc.) Hidden
Inst5676 (Version: 8.00.57 - Softex Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3309 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: 12.8.958 - McAfee, Inc.)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-447743119-2744269165-2209408058-1001\...\PhotoFiltre 7) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7032 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.00.12.0906 - REALTEK Semiconductor Corp.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version:  - Microsoft) Hidden
SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.15.0 - Synaptics Incorporated)
Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{8B3A877E-1B73-464A-AD21-9F26A0682AC6}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114732) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114732) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB3114732) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{AD89B6F9-C98A-4506-ABDE-782B0959CC84}) (Version:  - Microsoft)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinZip Driver Updater (HKLM\...\WinZip Driver Updater) (Version: 5.3.2.54 - VAPC (Lux) S.a.r.L)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {015F3B86-112D-4542-86E0-DC8A86294D26} - \RocketTab Update Task -> Pas de fichier <==== ATTENTION
Task: {0A052B56-AAE5-4DF5-8A05-9CB936251816} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {127FA244-1200-455F-9664-E700442AC4EB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFReport.exe [2016-01-12] (Hewlett-Packard Company)
Task: {1D5E251D-BFCB-4822-9244-F584B7D0EF82} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-01-06] (HP Inc.)
Task: {22CD63B3-2BC8-46B9-99D6-34D6DF5262A6} - System32\Tasks\Start WinZip Driver Updater Update => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [2015-12-09] ()
Task: {29CE37D7-5F66-4F18-8E90-89D3ED5B26F0} - System32\Tasks\{F9DFDEE5-3F3F-4528-B9EA-5D1AAA8E826C} => pcalua.exe -a C:\Users\Julie\AppData\Roaming\istartsurf\UninstallManager.exe -c  -ptid=smt
Task: {3145FA8D-9446-4758-8D35-1E2660FDBA1C} - System32\Tasks\Start WinZip Driver Updater Schedule => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [2015-12-09] ()
Task: {32BC0EBD-3007-48EE-8964-C4EF1F39C2A9} - \ProPCCleaner_Start -> Pas de fichier <==== ATTENTION
Task: {3C6E1A9B-B85C-4E59-A77D-3AB591F7FFDE} - System32\Tasks\Start WinZip Driver Updater( SR ) for PC-JUJU@Julie => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [2015-12-09] ()
Task: {3E38DECA-0A4E-4264-9F18-E8EB03B6FAE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2015-11-30] (Hewlett-Packard)
Task: {5766A295-1309-48A8-B661-1C8FAD2940C1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {5FAF6C9D-C5EF-436D-885C-8D9D6AF55E31} - System32\Tasks\{B098ACED-1E42-4AA6-8367-E0BDC30EEF44} => pcalua.exe -a C:\Users\Julie\AppData\Roaming\istartsurf\UninstallManager.exe -c  -ptid=obw
Task: {66A67727-F3C1-4F12-8526-984B068AC3AA} - \LaunchPreSignup -> Pas de fichier <==== ATTENTION
Task: {6F59534A-B619-4F95-861B-B2B242A0D039} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-01-24] (AVAST Software)
Task: {723588EA-7DB6-4196-9550-64DCA3C029B8} - \RocketTab -> Pas de fichier <==== ATTENTION
Task: {74A8C71A-B52B-484C-9A05-24B992C07EC8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {76BB37C5-7D17-4EF5-A070-CC015276AEDF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-09-11] (Microsoft Corporation)
Task: {7F2FAF8C-1700-44A1-AFAF-0D0C2C1B24ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-01-06] (HP Inc.)
Task: {8855E629-6AAC-4CFD-82A2-CB731898BA9D} - \SmartWeb Upgrade Trigger Task -> Pas de fichier <==== ATTENTION
Task: {8885570A-3965-41CD-9890-29864576D37A} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-20] (Synaptics Incorporated)
Task: {89C9F43A-3E21-4379-B450-F3730075B0C7} - \ProPCCleaner_Popup -> Pas de fichier <==== ATTENTION
Task: {8E65AC64-4CF2-495A-BC11-C665A2EFDE10} - System32\Tasks\{2E6D0E1E-6D75-468C-A9E9-B8EF9F6526DE} => pcalua.exe -a "c:\Program Files\Common Files\Microsoft Shared\VSTO\10.0\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA\install.exe"
Task: {8F849D01-CA34-4391-BBEA-DC57EFA346AB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {97E82195-C030-4AC5-97B0-3AC10C3C3580} - System32\Tasks\Start WinZip Driver Updater for PC-JUJU@Julie(logon) => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [2015-12-09] ()
Task: {ADAF66C6-F3F2-42C3-9758-68566A635F69} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {B2EA8DBA-6AEA-4E33-B9EA-E425D2E8FE7F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-14] (Adobe Systems Incorporated)
Task: {BA376F5F-12E0-436E-850F-2883617A43AB} - System32\Tasks\HPCeeScheduleForJulie => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {BAAB809B-7CBA-429C-AC97-958F684A221B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => C:\Windows\system32\GWX\GWXUXWorker.exe [2015-12-05] (Microsoft Corporation)
Task: {C0BC3460-373B-43FA-84BA-9322A4AC5244} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-21] (Google Inc.)
Task: {C5820498-E3D9-4F8D-829E-2AAA8331262F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-21] (Google Inc.)
Task: {CB0D780F-778E-4980-B8D9-CA5CAB095B0F} - System32\Tasks\Start WinZip Driver Updater( SR ) for PC-JUJU@Julie at logon => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe [2015-12-09] ()
Task: {DC7C8B37-8CFD-4E5D-9C2B-AFC5D3585411} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2016-02-15] (Enigma Software Group USA, LLC.)
Task: {E1DB187E-3F1D-48A6-940F-0CC395ED890B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {EBC11DD2-EE43-46A5-9514-6E48EF478AC3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2016-02-14] (Microsoft Corporation)
Task: {FB6E0108-A598-4544-A302-0506581AF3AE} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForJulie.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\Start WinZip Driver Updater for PC-JUJU@Julie(logon).job => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe
Task: C:\Windows\Tasks\Start WinZip Driver Updater( SR ) for PC-JUJU@Julie at logon.job => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe-runExecutable SRTray.exe
Task: C:\Windows\Tasks\Start WinZip Driver Updater( SR ) for PC-JUJU@Julie.job => C:\Program Files\WinZip Driver Updater\DriverUpdater.exe-runExecutable SRTray.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2013-10-14 11:23 - 2013-10-14 11:23 - 00109568 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachesrvr.exe
2013-10-14 11:24 - 2013-10-14 11:24 - 00627200 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cachedrv.dll
2013-10-14 11:25 - 2013-10-14 11:25 - 02541056 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll
2013-10-14 11:22 - 2013-10-14 11:22 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll
2013-10-14 11:22 - 2013-10-14 11:22 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll
2013-10-14 11:22 - 2013-10-14 11:22 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll
2013-10-14 11:35 - 2013-10-14 11:35 - 00306064 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll
2013-10-14 11:35 - 2013-10-14 11:35 - 01297296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-11-20 14:57 - 2015-11-20 14:57 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-06-18 20:53 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-02-15 19:43 - 2015-12-09 16:32 - 20354560 _____ () C:\Program Files\WinZip Driver Updater\DriverUpdater.exe
2013-10-14 11:30 - 2013-10-14 11:30 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe
2015-10-02 23:15 - 2015-10-02 23:15 - 02287616 _____ () C:\Program Files (x86)\GoPro\Tools\Importer\gopro-lib-win-analytics.dll
2016-02-10 22:01 - 2016-02-09 12:58 - 01632584 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\libglesv2.dll
2016-02-10 22:01 - 2016-02-09 12:58 - 00087880 _____ () C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\libegl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\Temp:ADCAEB69
AlternateDataStreams: C:\ProgramData\Temp:F0D7EE30

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2013-08-22 14:25 - 2016-02-15 15:37 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-447743119-2744269165-2209408058-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Julie\AppData\Roaming\Microsoft\Windows Live Photo Gallery\Photo Gallery Wallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\...\StartupApproved\Run: => "iTunesHelper"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DCCC5F14-149F-48F3-86B4-8E2D38A45988}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A19707E1-0C07-4904-BD7C-D8A87CBD38AE}] => (Allow) LPort=2869
FirewallRules: [{5B0A8184-9D4F-4AC2-A1FF-A875D31E30FA}] => (Allow) LPort=1900
FirewallRules: [{4B501766-87B3-46ED-91CC-CCBAE1A4C937}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{87B055B9-1BF2-4453-8422-E065708F87BD}] => (Allow) C:\Program Files (x86)\HPConnectedMusic\HPConnectedMusic.exe
FirewallRules: [{BF907505-483C-4C0E-9A94-2BDF864EA81D}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{92989659-D1C1-4D50-BE43-BCAEC24C69D8}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{1BC8A6F8-D266-4D28-A9CC-03D4F7B50E34}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{0932AFAB-FDF6-4497-90B8-4040DF007520}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{1AA74750-AAE3-4435-AB1E-FBE1390C948C}] => (Allow) C:\Users\Julie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D4D78BA9-FE9D-46CD-8152-B48279CABC22}] => (Allow) C:\Users\Julie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DAD3F6EC-59BB-4B2D-8665-F296DA0EA7D2}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{9A1B595E-9D82-4AEB-B342-B1561F412100}] => (Allow) LPort=1688
FirewallRules: [{A8CAB46C-54C1-4694-8494-B31A05CC35B9}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{DF7A401E-3698-4C23-B17C-2FBDA34CD1CB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{0B745C2B-9402-46BA-A64E-7EAF842BF924}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{A58A869C-B859-4556-A0D8-C82F254F5B13}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{02B45BEA-8D33-4E8F-B65F-1391C64B30DF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{413F9A55-D169-42BF-AD82-8A8FB9BA2FFF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{D9D7BD4D-0742-4A1B-9991-F62C5B006598}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{307A4833-CFAF-41DE-A480-EC893A963A33}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FA8BC6C4-5ACD-4B12-90D7-518989259F2C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{23F38F33-0906-49EA-9457-094AA721802C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{EE11636B-A685-44BE-9C44-658550804B02}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{6C1B9AB4-05E2-413B-BE53-04E0AEA4231D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{5DEA5D29-B5BA-4CD3-B446-7CB7821CAC51}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{036E5383-E8E7-40EC-9983-94807AA75A1C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

02-01-2016 20:07:12 Windows Update
13-01-2016 14:33:54 Windows Update
16-01-2016 22:06:30 Windows Update
01-02-2016 16:53:26 Removed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
03-02-2016 17:26:33 Removed Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
11-02-2016 16:18:27 Windows Update
14-02-2016 18:06:07 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: hp CDDVDW SU-208FB
Description: Lecteur de CD-ROM
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Lecteurs de CD-ROM standard)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (02/16/2016 11:25:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49003454

Error: (02/16/2016 11:25:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49003454

Error: (02/16/2016 11:25:39 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/15/2016 07:28:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1184141

Error: (02/15/2016 07:28:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1184141

Error: (02/15/2016 07:28:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/15/2016 07:28:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1182688

Error: (02/15/2016 07:28:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1182688

Error: (02/15/2016 07:28:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/15/2016 07:28:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1181282


Erreurs système:
=============
Error: (02/16/2016 11:26:33 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (02/14/2016 01:45:57 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: {209500FC-6B45-4693-8871-6296C4843751}

Error: (02/13/2016 08:48:33 PM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: AUTORITE NT)
Description: L’initialisation du client CBS a échoué. Dernière erreur : 0x80080005

Error: (02/13/2016 08:48:33 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (02/13/2016 08:48:11 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 30) (User: AUTORITE NT)
Description: Le service de journalisation des événements a rencontré une erreur (5) lors de l’activation de l’éditeur {0BF2FB94-7B60-4B4D-9766-E82F658DF540} sur le canal Microsoft-Windows-Kernel-ShimEngine/Operational. Cette erreur n’affecte pas le fonctionnement du canal, mais a une incidence sur la capacité de l’éditeur de déclencher des événements sur le canal. Ce problème se produit généralement lorsque le fournisseur utilise la sécurité du fournisseur ETW et qu’il n’a pas accordé d’autorisations d’activation à l’identité du service Journal des événements.

Error: (02/13/2016 08:47:52 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 30) (User: AUTORITE NT)
Description: Le service de journalisation des événements a rencontré une erreur (5) lors de l’activation de l’éditeur {0BF2FB94-7B60-4B4D-9766-E82F658DF540} sur le canal Microsoft-Windows-Kernel-ShimEngine/Operational. Cette erreur n’affecte pas le fonctionnement du canal, mais a une incidence sur la capacité de l’éditeur de déclencher des événements sur le canal. Ce problème se produit généralement lorsque le fournisseur utilise la sécurité du fournisseur ETW et qu’il n’a pas accordé d’autorisations d’activation à l’identité du service Journal des événements.

Error: (02/13/2016 08:37:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070013 : Mise à jour pour Skype for Business 2015 (KB3114732) Édition 64 bits.

Error: (02/13/2016 08:37:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070013 : Mise à jour pour Microsoft Office 2013 (KB3114717) Édition 64 bits.

Error: (02/13/2016 08:37:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070013 : Mise à jour pour Microsoft Outlook 2013 (KB3114729) Édition 64 bits.

Error: (02/13/2016 08:37:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070013 : Mise à jour pour Microsoft InfoPath 2013 (KB3039714) Édition 64 bits.


CodeIntegrity:
===================================
  Date: 2016-02-15 20:27:55.872
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:27:54.638
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:06:17.229
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:06:14.725
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:05:27.476
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:05:24.888
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:00:57.844
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:00:55.091
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:00:51.341
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2016-02-15 20:00:49.639
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Pentium(R) CPU N3510 @ 1.99GHz
Pourcentage de mémoire utilisée: 56%
Mémoire physique - RAM - totale: 3992.59 MB
Mémoire physique - RAM - disponible: 1730.54 MB
Mémoire virtuelle totale: 5459.05 MB
Mémoire virtuelle disponible: 3037.67 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:448.57 GB) (Free:372.68 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:16.42 GB) (Free:1.91 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 5319ADA7)

Partition: GPT.

==================== Fin de Addition.txt ============================