Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version: 05-03-2017 Exécuté par widen-finalis (08-03-2017 12:44:19) Exécuté depuis C:\Users\widen-finalis\Desktop Microsoft Windows 7 Édition Starter Service Pack 1 (X86) (2016-12-12 14:03:03) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Acronis Agent User (S-1-5-21-4183021106-2149456055-877251859-1002 - Administrator - Enabled) => C:\Users\Acronis Agent User Administrateur (S-1-5-21-4183021106-2149456055-877251859-500 - Administrator - Disabled) Invité (S-1-5-21-4183021106-2149456055-877251859-501 - Limited - Disabled) widen-finalis (S-1-5-21-4183021106-2149456055-877251859-1000 - Administrator - Enabled) => C:\Users\widen-finalis ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: COMODO Antivirus (Disabled - Up to date) {D0CC7563-ABD2-DEBE-138E-FDD553335AF2} AV: Spybot - Search and Destroy (Enabled - Up to date) {1A0DDE8C-B4BA-EFDD-22A8-0F557C7985F0} AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Comodo Defense+ (Enabled - Up to date) {6BAD9487-8DE8-D130-293E-C6A728B4104F} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: COMODO Firewall (Disabled) {E8F7F446-E1BD-DFE6-38D1-54E0ADE01D89} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) ABBYY FineReader 14 (HKLM\...\{F14000FE-0001-0000-0000-074957833700}) (Version: 14.1.556 - ABBYY Production LLC) Absolute Uninstaller 5.3.1.20 (HKLM\...\Absolute Uninstaller) (Version: 5.3.1.20 - Glarysoft Ltd) Ace Utilities (HKLM\...\Ace Utilities_is1) (Version: 6.2.0 - Acelogix Software) Acer Crystal Eye webcam Ver:1.1.192.810 (HKLM\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.192.810 - Chicony Electronics Co.,Ltd.) Acer ePower Management (HKLM\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated) Acer eRecovery Management (HKLM\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated) Acer VCM (HKLM\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3002 - Acer Incorporated) Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Acronis Backup Agent (HKLM\...\9EBDE6F5-EAE6-4326-A3A1-DEAA29F32D1D_BackupAndRecovery) (Version: 12.0.3894 - Acronis) Acronis Backup Agent (Version: 12.0.3894 - Acronis) Hidden Ad-Aware Browser (HKLM\...\{6cad8877-df4a-448a-9559-33b19147e61f}) (Version: 45.2.1.14 - Lavasoft) Adblock Plus pour IE (32-bits) (HKLM\...\{568931B9-F1D1-4646-904C-8BDE897F50D3}) (Version: 1.4 - Eyeo GmbH) Adobe AIR (HKLM\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated) Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.221 - Adobe Systems Incorporated) Adobe Reader 9.1 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated) Advanced SystemCare 10 (HKLM\...\Advanced SystemCare_is1) (Version: 10.2.0 - IObit) AndroidInstaller (Version: 1.00.022 - Nom de votre société) Hidden Any Audio Converter 6.0.7 (HKLM\...\Any Audio Converter) (Version: 6.0.7 - Anvsoft) Any Video Converter 5.8.1 (HKLM\...\Any Video Converter) (Version: 5.8.1 - Anvsoft) AOMEI Backupper Professional (HKLM\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.) AOMEI Partition Assistant Standard Edition 6.1 (HKLM\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.) Apowersoft Online Launcher version 1.4.4 (HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\{20BF67A8-D81A-4489-8225-FABAA0896E2D}_is1) (Version: 1.4.4 - APOWERSOFT LIMITED) Ashampoo Burning Studio 2017 (HKLM\...\{91B33C97-C878-6579-69BA-23E5405C7AAB}_is1) (Version: 18.0.0 - Ashampoo GmbH & Co. KG) Ashampoo Photo Commander 15 (HKLM\...\{0A11EA01-E0CE-916E-BC94-74670FA71836}_is1) (Version: 15.0.3 - Ashampoo GmbH & Co. KG) Ashampoo Privacy Protector (HKLM\...\{91B33C97-87C8-5585-2940-1AE1120D4DCC}_is1) (Version: 1.1.3 - Ashampoo GmbH & Co. KG) Ashampoo Privacy Protector 2015 v.1.1.3 (HKLM\...\{91B33C97-1187-82D5-494C-E86DE5C5262D}_is1) (Version: 1.1.3 - Ashampoo GmbH & Co. KG) Ashampoo Snap Business (HKLM\...\{0A11EA01-9B01-B80D-170B-AB6360C6FF0D}_is1) (Version: 9.0.3 - Ashampoo GmbH & Co. KG) Assistant de connexion Windows Live (HKLM\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.35 - Atheros Communications Inc.) Auslogics Browser Care (HKLM\...\{C8B1B0C7-D33B-431B-B1AD-F11256E6E3B3}_is1) (Version: 2.4.0.0 - Auslogics Labs Pty Ltd) Auto Power-on & Shut-down 2.83 (HKLM\...\Auto Power-on & Shut-down_is1) (Version: - LifSoft, Inc.) AutoIt v3.3.14.2 (HKLM\...\AutoItv3) (Version: 3.3.14.2 - AutoIt Team) Avast Browser Cleanup (HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\Avast Browser Cleanup) (Version: 12.1.2272.125 - AVAST Software) Backup4all 6 (Version: 6.4.320 - Softland) Hidden Backup4all 6.4 (HKLM\...\{ba31c7cc-75bd-4795-9c4b-1213c81731ca}) (Version: 6.4.320.0 - Softland) BDAntiRansomware (HKLM\...\{BE40AB1F-558F-4434-B72F-461EF97E7796}_is1) (Version: 1.0.12.1 - Bitdefender) Bing Bureau (HKLM\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.4.167.0 - Microsoft Corporation) BLACK WHITE projects 4 elements (32-Bit) (HKLM\...\SILVER_PROJECTS_4_2_28B15F1D_is1) (Version: 4.41 - Franzis Verlag GmbH) CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform) CCleaner Cloud (HKLM\...\CCleaner Cloud) (Version: 1.5.0.2664 - Piriform) cCloud (HKLM\...\{CF6C1B06-4F86-4C41-BD21-9E40500006B5}) (Version: 3.0.8.84 - COMODO) chip 1-click download service (HKLM\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: - ) Clipà.Vu Clipboard for Windows Desktop (HKLM\...\{c14efb16-8c1c-499e-a441-4b3e1e3006f0}) (Version: 4.1.1571 - Jan Zeman) Clipdiary 5.0 (HKLM\...\Clipdiary) (Version: 5.0 - Tiushkov Nikolay) COMODO BackUp (HKLM\...\{B79E9FF2-D932-4FD5-BCAF-4DE6F2FBE521}) (Version: 4.4.1.23 - COMODO) Comodo Dragon (HKLM\...\Comodo Dragon) (Version: 52.15.25.664 - Comodo) COMODO Internet Security Complete (HKLM\...\COMODO Internet Security) (Version: 10.0.0.6092 - COMODO Security Solutions Inc.) COMODO Internet Security Complete (Version: 10.0.0.6092 - COMODO Security Solutions Inc.) Hidden COMODO Secure Shopping (HKLM\...\Comodo Secure_Shopping_list_uninstall) (Version: 1.1.405760.79 - Comodo) COMODO Secure Shopping (Version: 1.1.79.0 - COMODO) Hidden Copy Handler 1.40 (HKLM\...\{9CF6A157-F0E8-4216-B229-C0CA8204BE2C}_is1) (Version: 1.40 - Józef Starosczyk) CreateInstall Free (HKLM\...\CreateInstall Free) (Version: 7.8.0 - Novostrim, OOO) CyberLink Application Manager (HKLM\...\InstallShield_{D25D3E15-CABD-420c-B62C-70C1C5EE63FD}) (Version: 1.0.4110.0 - CyberLink Corp.) CyberLink Christmas Pack (HKLM\...\{2F6F3512-9FB8-45F5-82C1-F9F8FDA7B392}) (Version: 2.0 - CyberLink Corp.) CyberLink Holiday Pack Vol. 3 (HKLM\...\{4441574D-727E-4DD3-AAFD-4E240EE3B588}) (Version: 2.0 - CyberLink Corp.) CyberLink LabelPrint 2.5 (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.0.10521 - CyberLink Corp.) CyberLink PhotoDirector 8 (HKLM\...\{80986AB6-3CB0-49db-AB48-1600844D6374}) (Version: 8.0.2031.0 - CyberLink Corp.) DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 8.1.1.0666 - Disc Soft Ltd) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Dimo Video Converter Ultimate version 2.7.2 (HKLM\...\{'appid'}_is1) (Version: 2.7.2 - DimoSoft, Inc.) Disk SpeedUp 5.0.1.58 (HKLM\...\Disk SpeedUp) (Version: 5.0.1.58 - Glarysoft Ltd) Do Your Data Recovery Trial 5.0 (HKLM\...\Do Your Data Recovery Trial 5.0_is1) (Version: - DoYourData) Driver Easy 5.1.7 (HKLM\...\DriverEasy_is1) (Version: 5.1.7 - Easeware) Dropbox (HKLM\...\Dropbox) (Version: 22.3.20 - Dropbox, Inc.) Dropbox Update Helper (Version: 1.3.65.1 - Dropbox, Inc.) Hidden EaseUS EverySync 3.0 (HKLM\...\EaseUS EverySync_is1) (Version: - EaseUS) EaseUS Partition Master 11.9 (HKLM\...\EaseUS Partition Master_is1) (Version: - EaseUS) EaseUS Todo Backup Free 8.6 (HKLM\...\EaseUS Todo Backup_is1) (Version: 8.6 - CHENGDU YIWO Tech Development Co., Ltd) EaseUS Todo PCTrans 9.0 (HKLM\...\EaseUS Todo PCTrans_is1) (Version: - EaseUS) Easy Photo Unblur 1.0 (HKLM\...\Easy Photo Unblur_is1) (Version: 1.0 - SoftOrbits) EMET 5.5 (HKLM\...\{E27E74F0-0EAD-4C5D-8F6F-1C9192D24AA5}) (Version: 5.5 - Microsoft Corporation) ENE USB Card Reader Driver (HKLM\...\3B29FD3CCF1F5B855DA0C521597413EBABE97DFB) (Version: 5.89.0.70 - ENE) Epson Event Manager (HKLM\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation) Epson E-Web Print (HKLM\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION) Epson Print CD (HKLM\...\{D16A31F9-276D-4968-A753-FFEAC56995D0}) (Version: 2.44.00 - Seiko Epson Corporation) EPSON Scan (HKLM\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Epubor Ultimate (HKLM\...\Epubor Ultimate) (Version: 3.0.8.1129 - Epubor Inc.) ETDWare PS/2-x86 7.0.6.5_WHQL (HKLM\...\Elantech) (Version: 7.0.6.5 - ELAN Microelectronics Corp.) Exécution du SDK Intel® RealSense™ 2014 (HKLM\...\ARP_for_prd_rs_sdk_runtime_v4_4.0.0.112526) (Version: 4.0.0.112526 - Intel Corporation) Express Burn - Logiciel de gravure de disques (HKLM\...\ExpressBurn) (Version: 5.07 - NCH Software) Express Zip - Compresseur de fichiers (HKLM\...\ExpressZip) (Version: 2.17 - NCH Software) ExtremeCopy (HKLM\...\{9B4091A4-9556-402F-B703-31C203BDE889}) (Version: 2.3.4 - Easersoft) FF Copy (HKLM\...\{08C03D14-B619-4CD6-938F-C2BB569364E0}) (Version: 1.0.0 - FF Projects) FileASSASSIN (HKLM\...\FileASSASSIN) (Version: 1.06 - Malwarebytes) FileHippo App Manager (HKLM\...\FileHippo.com) (Version: - FileHippo.com) FileZilla Client 3.24.1 (HKLM\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse) FolderIco 5.1 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex) FormatFactory 4.0.0.0 (HKLM\...\FormatFactory) (Version: 4.0.0.0 - Free Time) Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 8.2.0.2051 - Foxit Software Inc.) Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: - FreeDownloadManager.ORG) Free Partition Manager version 5.1.1.8 (HKLM\...\{AmazingPartitionManager}_is1) (Version: 5.1.1.8 - www.Amazing-Share.com) Free Video Converter V 2.3 (HKLM\...\Free Video Converter_is1) (Version: 2.3.0.0 - Kastor Soft) Free Video Flip and Rotate (HKLM\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd) Free Video to MP3 Converter (HKLM\...\Free Video to MP3 Converter_is1) (Version: 5.0.99.823 - Digital Wave Ltd) Galerie de photos Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden GeekBuddy (HKLM\...\Geekbuddy) (Version: 4.29.218 - Comodo Security Solutions Inc) GeekBuddy (Version: 4.29.218 - Comodo Security Solutions Inc) Hidden Glary Disk Cleaner 5.0.1.60 (HKLM\...\Glary Disk Cleaner) (Version: 5.0.1.60 - Glarysoft Ltd) Glary Tracks Eraser 5.0.1.42 (HKLM\...\Glary Tracks Eraser) (Version: 5.0.1.42 - Glarysoft Ltd) Glary Undelete 5.0.1.19 (HKLM\...\Glary Undelete) (Version: 5.0.1.19 - Glarysoft Ltd) Glary Utilities 5.70 (HKLM\...\Glary Utilities 5) (Version: 5.70.0.91 - Glarysoft Ltd) herdProtect Anti-Malware Scanner (HKLM\...\herdProtectScan) (Version: 1.0 - Reason Company Software Inc.) HitFactor 4.3.0 (HKLM\...\HitFactor 4.3.0) (Version: 4.3.0.0 - BelaDaddy Software) HitmanPro.Alert 3 (HKLM\...\HitmanPro.Alert) (Version: 3.6.1.574 - SurfRight B.V.) HoboGUI 1.02 (HKLM\...\HoboGUI) (Version: 1.02 - tmoral) IM-Magic Partition Resizer Professional 2017 (HKLM\...\IM_Magic_PR) (Version: 2017 - IM-Magic Inc.) Inno Setup version 5.5.9 (HKLM\...\Inno Setup 5_is1) (Version: 5.5.9 - jrsoftware.org) Installation Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation) Installation Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.14.10.2117 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation) Internet Security Essentials (HKLM\...\ComodoIse) (Version: 1.1.404762.41 - Comodo) IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 6.2.0.940 - IObit) iPDF Viewer (HKLM\...\iPDF Viewer) (Version: 2.0.8.20 - IVY Software) iSkysoft Free Video Downloader(Build 4.9.1.0) (HKLM\...\iSkysoft Free Video Downloader_is1) (Version: 4.9.1.0 - iSkysoft Software) iSkysoft Helper Compact 2.5.2 (HKLM\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.2 - iSkysoft) iSkysoft iMedia Converter Deluxe(Build 9.0.0.1) (HKLM\...\iSkysoft iMedia Converter Deluxe_is1) (Version: 9.0.0.1 - iSkysoft Software) ISO Opener (HKLM\...\{CE235F00-F8CD-41AF-83D5-236D90E33BFB}_is1) (Version: - www.isoopener.com) IZArc 4.2 (HKLM\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.2 - Ivan Zahariev) Jing (HKLM\...\{22800204-9E53-45C7-B6F3-5BB0F1C1A147}) (Version: 2.8.13007.1 - TechSmith Corporation) KeyScrambler (HKLM\...\KeyScrambler) (Version: 3.10.0.0 - QFX Software Corporation) Kit de déploiement et d’évaluation Windows - Windows 10 (HKLM\...\{39ebb79f-797c-418f-b329-97cfdf92b7ab}) (Version: 10.1.14393.0 - Microsoft Corporation) Launch Manager (HKLM\...\LManager) (Version: 4.0.14 - Acer Inc.) Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.) LogoMaker 4.0 (HKLM\...\LogoMaker_is1) (Version: - Avanquest) Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 6.3 - Paramount Software (UK) Ltd.) Macrium Reflect Free Edition (Version: 6.3.1665 - Paramount Software (UK) Ltd.) Hidden Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes) Manager (Version: 5.0.15.31893 - 2017 pdfforge GmbH. All rights reserved) Hidden Manuels EPSON (HKLM\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.52.0.0 - SEIKO EPSON CORPORATION) McAfee WebAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.235 - McAfee, Inc.) MEO Encryption Software (HKLM\...\Meo) (Version: 2.17 - NCH Software) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{E721A8AA-2632-4798-B439-6D4C8A689BB8}) (Version: 11.2.5058.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual Studio Code (HKLM\...\{F8A2A208-72B3-4D61-95FC-8A65D340689B}_is1) (Version: 1.10.1 - Microsoft Corporation) MiniCopier (HKLM\...\{0B11329E-1DDE-448A-95E6-AA003C63A6A7}_is1) (Version: - Adrian Courreges) MobaXterm (HKLM\...\{7F6E8FAE-C96A-4B24-B59B-A6E035504B26}) (Version: 9.4.0.0 - Mobatek) Mozilla Firefox 52.0 (x86 fr) (HKLM\...\Mozilla Firefox 52.0 (x86 fr)) (Version: 52.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.0.0.6270 - Mozilla) Mozilla Thunderbird 45.7.1 (x86 en-US) (HKLM\...\Mozilla Thunderbird 45.7.1 (x86 en-US)) (Version: 45.7.1 - Mozilla) Music Recorder (HKLM\...\{F1F805B8-92AC-4EEF-8CCE-4538F6EBEBA0}) (Version: 14.1.7200.0 - Audials AG) MyWinLocker (Version: 3.1.212.0 - Egis Technology Inc.) Hidden MyWinLocker Suite (HKLM\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.) MyWinLocker Suite (Version: 3.1.212.0 - Egis Technology Inc.) Hidden Nero 2017 (HKLM\...\{6B81BDC4-3368-4898-8F16-48962F789221}) (Version: 18.0.06100 - Nero AG) NiceCopier (HKLM\...\NiceCopier_is1) (Version: 15.02.27 - ) Notepad++ (32-bit x86) (HKLM\...\Notepad++) (Version: 7.3.2 - Notepad++ Team) Orion File Recovery Software (HKLM\...\Orion) (Version: 1.11 - NCH Software) OSToto Software Box - 3.0.2.16 (HKLM\...\OSToto Software Box) (Version: 3.0.2.16 - OSToto Co., Ltd.) Outil de téléchargement Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) PDF Architect 5 (HKLM\...\PDF Architect 5) (Version: 5.0.21.32007 - pdfforge GmbH) PDF Architect 5 Create Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDF Architect 5 Edit Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDF Architect 5 View Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.1 - pdfforge GmbH) PerigeeCopy 1.7 (HKLM\...\PerigeeCopy) (Version: 1.7 - Jeremy Stanley) PhotoDonut (HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\PhotoDonut 1.1) (Version: 1.1 - Xycod) PhotoFiltre (HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\PhotoFiltre) (Version: - ) Pixillion - Convertisseur d'images (HKLM\...\Pixillion) (Version: 4.03 - NCH Software) Prism - Convertisseur de fichiers vidéo (HKLM\...\Prism) (Version: 2.69 - NCH Software) Protected Folder (HKLM\...\Protected Folder_is1) (Version: - IObit) PuTTY release 0.68 (HKLM\...\{55717628-7AE6-4BCF-A046-FA2768945E76}) (Version: 0.68.0.0 - Simon Tatham) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6171 - Realtek Semiconductor Corp.) Rebit Pro (32-bit) (HKLM\...\{AE7F7F16-8015-44F2-A5E5-306F50ED8E41}) (Version: 5.1.14505.3001 - Rebit, Inc.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) RegSeeker (HKLM\...\RegSeeker) (Version: 2.57.2212 - HoverDesk) Roadkil's Unstoppable Copier Version 5.2 (HKLM\...\{A306FD29-7D3A-4287-91AC-9A0180931395}_is1) (Version: - Roadkil.Net) RogueKiller version 12.9.9.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.9.9.0 - Adlice Software) RogueKillerPE version 1.27.0.0 (HKLM\...\BEC55C5D-D6D0-4A41-B82C-264EC5EE8052_is1) (Version: 1.27.0.0 - Adlice Software) Scadarlia version 1.1.2 (HKLM\...\{AAC7A336-EC23-4829-865A-EAE041171023}_is1) (Version: 1.1.2 - Kalidor WEB, Ltd.) ShadowCopy (HKLM\...\{117CE366-3EED-48C5-BF6A-E0F47A0E68A4}) (Version: 2.02.000 - Runtime Software) ShadowExplorer 0.9 (HKLM\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com) Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden Silent Install Builder (HKLM\...\{2452C59D-4620-4A9A-A97F-B925390619E1}) (Version: 4.6.2.0 - APREL Tehnologija d.o.o.) Sketch Drawer 4.2 (HKLM\...\Sketch Drawer_is1) (Version: 4.2 - SoftOrbits) Slowin' Killer (HKLM\...\Slowin Killer) (Version: 2.1.3 - Security-HelpZone) Software Informer 1.5.1324.0 (HKLM\...\Software Informer_is1) (Version: - Informer Technologies, Inc.) Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) SQL Server Browser for SQL Server 2012 (HKLM\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.2.5058.0 - Microsoft Corporation) Subtitle Workshop 6.0b (HKLM\...\SubtitleWorkshop) (Version: - ) SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk) Supercopier 1.2.1.0 (HKLM\...\Supercopier) (Version: 1.2.1.0 - Supercopier) Switch - Convertisseur de fichiers audio (HKLM\...\Switch) (Version: 5.17 - NCH Software) TeamViewer 12 (HKLM\...\TeamViewer) (Version: 12.0.72365 - TeamViewer) Tenorshare Video Converter Standard (HKLM\...\Tenorshare Video Converter Standard) (Version: - Tenorshare, Inc.) TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version: - Code Sector) Tipard Screen Capture 1.1.10 (HKLM\...\{1A816973-A2D6-4ACE-9D41-9B356530D941}_is1) (Version: 1.1.10 - Tipard Studio) TreeSize Free V3.4.5 (HKLM\...\TreeSize Free_is1) (Version: 3.4.5 - JAM Software) TweakBit Anti-Malware (HKLM\...\{650775E7-DB5D-4FF0-AC89-62137B45D32E}_is1) (Version: 2.0.0.0 - Auslogics Labs Pty Ltd) Tweaking.com - Windows Repair (HKLM\...\Tweaking.com - Windows Repair) (Version: 3.9.0 - Tweaking.com) UCheck version 1.2.1.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 1.2.1.0 - Adlice Software) Ultracopier 1.2.1.0 (HKLM\...\Ultracopier) (Version: 1.2.1.0 - Ultracopier) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Video Watermark Pro (HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\VideoWatermarkPro) (Version: - WonderFox Soft, Inc. All Rights Reserved.) Vimeo Download (HKLM\...\Vimeo Download_is1) (Version: 2.1.30.1215 - Digital Wave Ltd) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) VoodooShield version 3.50 (HKLM\...\{A8644328-A66F-490E-B8FA-901FF649189D}_is1) (Version: 3.50 - VoodooSoft, LLC) Web Companion (HKLM\...\{3cdbf25c-7ea4-4b1c-8fed-fd18ee20a975}) (Version: 2.3.1479.2868 - Lavasoft) Windows Live FolderShare (HKLM\...\{76810709-A7D3-468D-9167-A1780C1E766C}) (Version: 14.0.8117.416 - Microsoft Corporation) WinMend File Copy 2.3.0 (HKLM\...\WinMend File Copy_is1) (Version: - WinMend.com) WinRAR 5.40 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) WinRoboCopy 1.3.5953.40896 (HKLM\...\{AA3E7279-7040-4054-ACE3-3F408C00F22B}) (Version: 1.3.5953.40896 - Katic Software, LLC) WinToHDD version 2.3 Beta (HKLM\...\WinToHDD_is1) (Version: 2.3 Beta - The EasyUEFI Development Team.) WinToUSB version 3.5 (HKLM\...\WinToUSB_is1) (Version: 3.5 - The EasyUEFI Development Team.) WinUtilities Free Edition 14.5 (HKLM\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version: 14.5 - YL Computing, Inc) WinX DVD Copy Pro 3.7.1 (HKLM\...\WinX DVD Copy Pro_is1) (Version: - Digiarty Software,Inc.) WinZip 21.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2410C}) (Version: 21.0.12288 - WinZip Computing, S.L. ) Wise Folder Hider Pro (HKLM\...\Wise Folder Hider Pro_is1) (Version: 3.41 - WiseCleaner.com, Inc.) Wise JetSearch 2.29 (HKLM\...\Wise JetSearch_is1) (Version: 2.29 - WiseCleaner.com, Inc.) Wise Memory Optimizer 3.32 (HKLM\...\Wise Memory Optimizer_is1) (Version: 3.32 - WiseCleaner.com, Inc.) Wise Video Downloader 1.61 (HKLM\...\Wise Video Downloader_is1) (Version: 1.61 - WiseCleaner.com, Inc.) Wondershare Data Recovery(Build 5.0.7.8) (HKLM\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 5.0.7.8 - Wondershare Software Co.,Ltd.) Wondershare Fantashow(Build 2.0.1) (HKLM\...\Wondershare Fantashow_is1) (Version: - Wondershare Software) Wondershare Filmora(Build 7.8.9) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.5.2 (HKLM\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) Wondershare MobileTrans ( Version 7.8.0 ) (HKLM\...\{18CDCEAA-A9E4-4A4C-AC0E-C15E87C30EA5}_is1) (Version: 7.8.0 - Wondershare) Wondershare PDF to Word (Build 4.1.0) (HKLM\...\{90599D63-1879-4B90-BE4F-051CE70FA576}_is1) (Version: 4.1.0 - Wondershare Software) Wondershare PDFelement(Build 5.12.1) (HKLM\...\{5CA0183F-6D90-4615-91A5-F1A8A2014E83}_is1) (Version: 5.12.1.1603 - Wondershare Software Co.,Ltd.) Wondershare Player(Build 1.6.1) (HKLM\...\Wondershare Player_is1) (Version: 1.6.1.0 - Wondershare) Wondershare TidyMyMusic(Build 1.5.0.1) (HKLM\...\Wondershare TidyMyMusic_is1) (Version: 1.5.0.1 - Wondershare Software) Wondershare Video Converter Free(Build 6.0.1.0) (HKLM\...\Wondershare Video Converter Free_is1) (Version: 6.0.1.0 - Wondershare Software) Zemana AntiMalware (HKLM\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.72.101 - Zemana Ltd.) ZHPFix 2015 (HKLM\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-4183021106-2149456055-877251859-1000_Classes\CLSID\{13D67BB7-DB5F-48AA-884D-7A5D94168509}\InprocServer32 -> C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\iebho.dll () CustomCLSID: HKU\S-1-5-21-4183021106-2149456055-877251859-1000_Classes\CLSID\{1DDB65A1-B63C-8DA3-E588-C9AD78DD8C4A}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4183021106-2149456055-877251859-1000_Classes\CLSID\{8A862E2D-CEB8-480D-AA78-A24367C6EF3C}\InprocServer32 -> C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\iedownloadmanager.dll () ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0749515F-F47C-4DDB-AAE6-39D0E3CD7F21} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-03-06] (Dropbox, Inc.) Task: {09EE78A0-0F5E-4DF5-A3A8-46E7DF5CD02A} - System32\Tasks\avast! BCU UpdateS-1-5-21-4183021106-2149456055-877251859-1000 => C:\Users\widen-finalis\AppData\Roaming\AVAST Software\Browser Cleanup\BCUUpdate.exe [2015-03-18] (AVAST Software) Task: {0DAEB288-0616-4174-ADC8-7CC3AD556835} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.) Task: {107C8B37-D91D-4198-A796-138C59BAE6A7} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-12-28] (COMODO) Task: {15382135-FF77-448D-A276-F4F4217C8750} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2016-12-28] (COMODO) Task: {1BE4E445-6E3A-4098-8A1D-1F332569CE2F} - System32\Tasks\ASC10_SkipUac_widen-finalis => C:\Program Files\IObit\Advanced SystemCare\ASC.exe [2017-02-13] (IObit) Task: {1F2FC5A0-B2AD-48AB-9892-5E666A0AE8C9} - System32\Tasks\Driver Easy Scheduled Scan => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: {2B6C967F-2D94-4EC0-A742-D3194ED518FA} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\Windows\system32\EOSNotify.exe [2016-06-25] (Microsoft Corporation) Task: {2E878D2D-446F-4E7D-9D91-569015F60CF9} - System32\Tasks\NCH Software\OrionSevenDays => C:\Program Files\NCH Software\Orion\Orion.exe [2016-08-20] (NCH Software) Task: {3D21225C-A54B-4DDB-933B-78356811E7CD} - System32\Tasks\NCH Software\PrismSevenDays => C:\Program Files\NCH Software\Prism\Prism.exe [2016-12-03] (NCH Software) Task: {3F657685-0D08-4E16-B67E-44DCC79DA76C} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2015-03-12] (Tweaking.com) Task: {4BC96598-1F9C-499C-B112-383DECF9DB58} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-12-28] (COMODO) Task: {50966B82-8F30-4CE7-A5DE-D06C9CDF4FA6} - System32\Tasks\NCH Software\SwitchSevenDays => C:\Program Files\NCH Software\Switch\Switch.exe [2017-03-02] (NCH Software) Task: {51DE5F02-E8D0-4086-852C-B7205D732521} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.) Task: {5A77F9AA-3EDF-4789-8B37-D07E43DC2495} - System32\Tasks\SoftwareInformerService => C:\Program Files\Software Informer\softinfo.exe [2017-01-25] (Informer Technologies, Inc.) Task: {6188BA49-99E2-4398-B73F-42D152074C8B} - System32\Tasks\NCH Software\PixillionSevenDays => C:\Program Files\NCH Software\Pixillion\Pixillion.exe [2017-02-28] (NCH Software) Task: {646C3B60-9012-407C-9805-D812A961B43C} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2017-03-06] (Dropbox, Inc.) Task: {75B14D71-774E-4533-AA2E-EF886214F0D7} - System32\Tasks\Ashampoo Privacy Protector 2015 Weekly Security Scan => C:\Program Files\Ashampoo\Ashampoo Privacy Protector 2015\PrivacyProtector2015.exe [2017-02-21] (Ashampoo GmbH & Co. KG) Task: {82DA93F4-C788-4F69-9ABB-DF895A3A9EA1} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-12-28] (COMODO) Task: {8B1CBF5B-47E1-43E6-A375-71D387F95F1C} - System32\Tasks\{BB8CC02D-1A15-40D3-8895-C2817B2D3DC1} => pcalua.exe -a "F:\data copy tools for photodirector 9 & youcam 8\setup.exe" -d "F:\data copy tools for photodirector 9 & youcam 8" Task: {9BA10C42-91C7-4A6E-A65F-DAC0AE5ACE96} - System32\Tasks\NCH Software\MeoSevenDays => C:\Program Files\NCH Software\Meo\Meo.exe [2016-10-19] (NCH Software) Task: {AC9C1233-850E-4DEA-A5CF-EF4C33001471} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd) Task: {B2FA1F7E-D6A1-400B-8A35-E129F3AB3CA1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {B8689C2C-E912-41F4-958A-E06BB2E0B9BA} - System32\Tasks\avastBCLS-1-5-21-4183021106-2149456055-877251859-1000 => C:\Users\widen-finalis\AppData\Roaming\AVAST Software\Browser Cleanup\BCUSched.exe [2017-03-02] (AVAST Software) Task: {BE80F31A-8BD3-4E5C-A0FB-8FEDCAA4B94E} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2016-12-28] (COMODO) Task: {D11318C3-B0EE-486C-B00B-FC5A8865331B} - \Auslogics\Browser Care\Start Browser Care оn widen-finalis logon -> Pas de fichier <==== ATTENTION Task: {D82719D9-9A98-40A8-81FA-E1DB025D0CC8} - System32\Tasks\NCH Software\ExpressBurnSevenDays => C:\Program Files\NCH Software\ExpressBurn\ExpressBurn.exe [2016-09-10] (NCH Software) Task: {E29C2FB9-FFAC-4630-B733-3BC9385A78BA} - System32\Tasks\TweakBit\Anti-Malware\Start Anti-Malware оn widen-finalis logon => C:\Program Files\TweakBit\Anti-Malware\AntiMalware.exe <==== ATTENTION Task: {E959494E-41E3-43D7-AF75-57C8605A5BB6} - System32\Tasks\FreeDownloadManagerNetworkMonitor => C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\winwfpmonitor.exe [2017-02-22] (FreeDownloadManager.org) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Driver Easy Scheduled Scan.job => C:\Program Files\Easeware\DriverEasy\DriverEasy.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\widen-finalis\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm Shortcut: C:\Users\widen-finalis\Favorites\Site de téléchargement NCH Software.lnk -> hxxp://www.nchsoftware.com/fr/index.htm ==================== Modules chargés (Avec liste blanche) ============== 2017-03-06 04:36 - 2016-11-17 10:58 - 00238792 _____ () c:\program files\ivy software\ipdf viewer\tipsdll.dll 2017-03-06 04:36 - 2016-11-17 10:58 - 00261320 _____ () c:\program files\ivy software\ipdf viewer\CheckUpdate.dll 2016-12-28 00:14 - 2016-12-28 00:14 - 00098488 _____ () C:\Program Files\COMODO\COMODO Internet Security\cavwpps.dll 2016-12-28 00:14 - 2016-12-28 00:14 - 00150200 _____ () C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll 2017-02-21 22:13 - 2017-02-21 22:13 - 00048296 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll 2011-02-14 12:45 - 2011-02-14 12:45 - 02248704 _____ () C:\Program Files\Rebit\Rebit Pro\QtCore4.dll 2011-02-14 12:45 - 2011-02-14 12:45 - 00969728 _____ () C:\Program Files\Rebit\Rebit Pro\QtNetwork4.dll 2011-02-14 12:45 - 2011-02-14 12:45 - 00611328 _____ () C:\Program Files\Rebit\Rebit Pro\QtSql4.dll 2010-07-04 22:32 - 2010-07-04 22:32 - 00010752 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll 2016-12-14 19:00 - 2012-01-20 14:55 - 00427520 _____ () C:\Program Files\TeraCopy\TeraCopyExt.dll 2017-03-02 20:51 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2017-03-02 20:51 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl 2017-03-07 06:48 - 2017-03-07 06:48 - 00076800 _____ () C:\Program Files\NCH Software\Meo\meodll.dll 2017-03-02 20:37 - 2012-07-20 13:42 - 00652800 _____ () C:\Program Files\IZArc\IZArcCM.dll 2017-03-06 07:08 - 2015-02-27 14:38 - 00214528 _____ () C:\Windows\System32\ISCM32.dll 2017-03-02 21:06 - 2017-03-07 06:47 - 00083968 _____ () C:\Program Files\NCH Software\ExpressZip\ezcm.dll 2017-02-12 23:31 - 2017-02-12 23:31 - 00267952 _____ () C:\Program Files\Notepad++\NppShell_06.dll 2017-02-06 13:59 - 2017-02-06 14:01 - 00130928 _____ () C:\Program Files\Zemana AntiMalware\ZAMShellExt32.dll 2016-03-16 10:20 - 2016-03-16 10:20 - 00067256 _____ () C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav 2017-03-02 20:51 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2017-03-02 20:51 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll 2017-03-02 20:51 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2017-03-06 05:33 - 2015-10-19 15:45 - 00992808 _____ () C:\Program Files\EaseUS\EaseUS EverySync\bin\EaseUSEverySyncCache.exe 2017-02-21 07:24 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files\IObit\Advanced SystemCare\webres.dll 2017-02-21 07:24 - 2016-12-20 16:36 - 01362720 _____ () C:\Program Files\IObit\Advanced SystemCare\Scan.dll 2017-02-21 07:24 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files\IObit\Advanced SystemCare\ProductStatistics.dll 2017-02-23 05:34 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files\IObit\IObit Uninstaller\madExcept_.bpl 2017-02-23 05:34 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files\IObit\IObit Uninstaller\madBasic_.bpl 2017-02-23 05:34 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files\IObit\IObit Uninstaller\madDisAsm_.bpl 2017-02-23 05:34 - 2016-05-23 21:49 - 00899872 _____ () C:\Program Files\IObit\IObit Uninstaller\webres.dll 2017-02-23 05:34 - 2016-10-18 16:57 - 00631072 _____ () C:\Program Files\IObit\IObit Uninstaller\ProductStatistics.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-4183021106-2149456055-877251859-1000\...\localhost -> localhost ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-02-10 11:50 - 2017-03-04 05:06 - 00000832 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-4183021106-2149456055-877251859-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: Free Download Manager => "C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe" --minimized MSCONFIG\startupreg: SDTray => "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" MSCONFIG\startupreg: Sidebar => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{551016F6-BC7B-4008-90D1-4AAB9F83C198}] => (Allow) C:\Program Files\Softland\Backup4all 6\Backup4all.exe FirewallRules: [{CAE36E3D-555A-4719-A608-07D7C6C257BB}] => (Allow) C:\Program Files\Softland\Backup4all 6\bBackup.exe FirewallRules: [{59DB3161-5060-423F-8873-3F3842B43E4B}] => (Allow) C:\Program Files\Softland\Backup4all 6\bTest.exe FirewallRules: [{2BD1BC7B-705B-42C2-A9A5-29F0848D5955}] => (Allow) C:\Program Files\Softland\Backup4all 6\bRestore.exe FirewallRules: [{36A78004-A5C5-48D4-A280-94D5B1781511}] => (Allow) C:\Program Files\Softland\Backup4all 6\bCleanup.exe FirewallRules: [{ADDDAF82-24CD-46A9-AEF7-E69E104B5D57}] => (Allow) C:\Program Files\OSTotoSoft\Software Box\SoftwareBox.exe FirewallRules: [{2D497D03-3157-4736-8BFF-330E3D3835A0}] => (Allow) C:\Program Files\OSTotoSoft\Software Box\DTLService.exe FirewallRules: [{3820B7E4-E0D2-4F2F-BBE1-FA790E8EDC7F}] => (Allow) C:\Program Files\OSTotoSoft\Software Box\download\MiniThunderPlatform.exe FirewallRules: [{F661CF4D-A698-4B54-AC9A-DCCAD749E0C4}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe FirewallRules: [{8B6A5229-F78A-4FA5-BA93-1B98E2A43A36}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TbService.exe FirewallRules: [{589B35AD-1C6B-4982-B341-D785CE6676E7}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TbService.exe FirewallRules: [{29720235-BD17-4E15-ADEB-94FAE4724DAA}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TBConsoleUI.exe FirewallRules: [{96DDF684-9D09-4D62-9FBA-FD09408E1DCF}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TBConsoleUI.exe FirewallRules: [{FBDC8A79-EC2D-43F8-8863-5DC7006DE66E}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe FirewallRules: [{9D198404-1B24-400A-B531-379B6D76DBD0}] => (Allow) C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe FirewallRules: [{85252C82-EDCA-4580-96E7-689E4191620A}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe FirewallRules: [{636690E3-1FD8-4D20-BC07-B9E7624EB388}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{CA15A81C-30D6-4A9D-8D7B-5ABC89449024}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe FirewallRules: [{B344FE95-286E-4067-95B2-D0CB292B3758}] => (Allow) C:\Program Files\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [{D55D4E5B-EDF8-4AE6-BD9E-15F78B6DE777}] => (Allow) C:\Program Files\FormatFactory\FormatFactory.exe FirewallRules: [{46ACA287-8BA4-48CF-88EF-BE59E5A43115}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{D61AB327-D317-4837-AFE0-2C89C92868F3}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe FirewallRules: [{C1F3D73A-EBB4-4158-8D20-095382FA52C4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F7650335-D67E-4224-A788-90E333C5C831}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{B0C43778-F1F9-4ED9-8C7F-00176F87DD13}C:\program files\roguekiller\roguekiller.exe] => (Allow) C:\program files\roguekiller\roguekiller.exe FirewallRules: [UDP Query User{F79C2BC8-CC1A-44D7-B859-D9B7CDB5349A}C:\program files\roguekiller\roguekiller.exe] => (Allow) C:\program files\roguekiller\roguekiller.exe FirewallRules: [{FA0E281E-E7CB-4A86-9847-3BB4A4ACBF33}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{2CA945F9-6AAB-467E-89B0-A665F35F4373}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{D2D3A20A-3EFC-43CE-B827-DE62566CFB93}C:\program files\easeus\easeus todo pctrans\bin\pctrans.exe] => (Allow) C:\program files\easeus\easeus todo pctrans\bin\pctrans.exe FirewallRules: [UDP Query User{67C89BE8-0987-4FBF-BAD7-00E5AC181B09}C:\program files\easeus\easeus todo pctrans\bin\pctrans.exe] => (Allow) C:\program files\easeus\easeus todo pctrans\bin\pctrans.exe StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 07-03-2017 06:41:04 Installed EMET 5.5 07-03-2017 06:58:24 Installed Jing 08-03-2017 09:01:13 Installed Laplink PCmover Professional. 08-03-2017 10:20:12 Installed Laplink PCmover Professional. ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/08/2017 10:21:20 AM) (Source: MsiInstaller) (EventID: 10005) (User: youcam8wait) Description: Produit : Laplink PCmover Professional -- Erreur 2755. Server returned unexpected error 110 attempting to install package C:\Users\widen-finalis\AppData\Local\Downloaded Installations\{F5543DB3-D0D5-4449-8DDA-E02D5FD77112}\default.msi. Error: (03/08/2017 09:38:21 AM) (Source: MsiInstaller) (EventID: 11714) (User: youcam8wait) Description: Produit : Laplink PCmover Professional -- Erreur 1714. Impossible de supprimer la version antérieure de Laplink PCmover Professional. Contactez votre groupe de support technique. Erreur système : 1612. Error: (03/07/2017 08:00:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:52:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:44:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:36:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:28:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:20:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:12:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/07/2017 07:04:19 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Erreurs système: ============= Error: (03/08/2017 09:53:55 AM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 20. Error: (03/08/2017 09:46:47 AM) (Source: Ntfs) (EventID: 55) (User: ) Description: La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez l’utilitaire chkdsk sur le volume D:. Error: (03/08/2017 09:46:26 AM) (Source: Ntfs) (EventID: 55) (User: ) Description: La structure du système de fichiers sur le disque est endommagée et inutilisable. Exécutez l’utilitaire chkdsk sur le volume D:. Error: (03/08/2017 08:52:14 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: Le serveur {995C996E-D918-4A8C-A302-45719A6F4EA7} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/08/2017 08:24:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Disc Soft Pro Bus Service s’est terminé de façon inattendue pour la 1ème fois. Error: (03/08/2017 08:24:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Microsoft EMET Service s’est terminé de façon inattendue pour la 1ème fois. Error: (03/08/2017 08:24:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Spybot-S&D 2 Scanner Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service. Error: (03/08/2017 08:24:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service COMODO Internet Security Helper Service s’est terminé de façon inattendue pour la 1ème fois. Error: (03/08/2017 08:24:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Disque virtuel s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service. Error: (03/08/2017 08:24:18 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2017-03-08 11:54:10.309 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\cssguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 11:54:10.119 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\iseguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 11:54:09.805 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\api-ms-win-core-synch-l1-2-0.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 11:54:09.222 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\api-ms-win-core-synch-l1-2-0.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:23:02.913 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\cssguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:23:02.897 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\iseguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:23:02.866 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\api-ms-win-core-synch-l1-2-0.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:23:02.429 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\api-ms-win-core-synch-l1-2-0.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:10:31.297 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\cssguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2017-03-08 10:10:31.297 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\iseguard32.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. ==================== Infos Mémoire =========================== Processeur: Intel(R) Atom(TM) CPU N450 @ 1.66GHz Pourcentage de mémoire utilisée: 92% Mémoire physique - RAM - totale: 1013.09 MB Mémoire physique - RAM - disponible: 78.2 MB Mémoire virtuelle totale: 2081.68 MB Mémoire virtuelle disponible: 576.2 MB ==================== Lecteurs ================================ Drive a: (youcam 8 setup) (Fixed) (Total:1.96 GB) (Free:1.88 GB) NTFS Drive c: (Acer) (Fixed) (Total:211.06 GB) (Free:131.4 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive g: () (Removable) (Total:1.83 GB) (Free:1.59 GB) FAT Drive w: () (Network) (Total:3.7 GB) (Free:0 GB) Drive x: (SYSTEM & ANDROID) (Fixed) (Total:4.1 GB) (Free:0 GB) NTFS Drive y: () (Network) (Total:30.02 GB) (Free:0.23 GB) Drive z: (youcam 8 programfiles) (Fixed) (Total:2.77 GB) (Free:2.69 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: B7B45E2D) Partition 1: (Not Active) - (Size=13 GB) - (Type=27) Partition 2: (Active) - (Size=4.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=215.8 GB) - (Type=OF Extended) ======================================================== Disk: 1 (Size: 1.8 GB) (Disk ID: 08148028) Partition 1: (Not Active) - (Size=1.8 GB) - (Type=06) ==================== Fin de Addition.txt ============================