Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-08-2017 Exécuté par Suzanne (08-08-2017 13:58:36) Exécuté depuis C:\Users\Suzanne\Downloads Windows 10 Home Version 1703 (X64) (2017-08-03 11:23:03) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-178627839-4076603327-3758630505-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-178627839-4076603327-3758630505-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-178627839-4076603327-3758630505-1002 - Limited - Enabled) Invité (S-1-5-21-178627839-4076603327-3758630505-501 - Limited - Disabled) Suzanne (S-1-5-21-178627839-4076603327-3758630505-1000 - Administrator - Enabled) => C:\Users\Suzanne ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated) AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Canon MP630 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP630_series) (Version: - ) Canon MX360 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX360_series) (Version: - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft) Détection de l'application Winamp (HKU\S-1-5-21-178627839-4076603327-3758630505-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Dropbox (HKU\S-1-5-21-178627839-4076603327-3758630505-1000\...\Dropbox) (Version: 31.4.25 - Dropbox, Inc.) EBP Compta Pratic 2015 7.0 (OL Technology) (HKLM\...\{FBFB6966-A3CA-416D-B015-4D47EC320744}) (Version: 7.0.0 - EBP) Hidden EBP Compta Pratic 2015 7.0 (OL Technology) (HKLM-x32\...\EBP Compta Pratic 2015 7.0 (OL Technology)) (Version: 7.0.0 - EBP) FileMaker Pro 12 Advanced (HKLM-x32\...\{EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}) (Version: 12.0.4.0 - FileMaker, Inc.) Hidden FileMaker Pro 12 Advanced (HKLM-x32\...\{EC21B3F4-6A5B-4D77-A796-BB4F1A646C8B}_FileMaker) (Version: 12.0.4.0 - FileMaker, Inc.) Fotogalerija Windows Live (HKLM-x32\...\{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotogràfica del Windows Live (HKLM-x32\...\{4736B0ED-F6A1-48EC-A1B7-C053027648F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie foto Windows Live (HKLM-x32\...\{CB66242D-12B1-4494-82D2-6F53A7E024A3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Hotspot 4G BTelecom (HKLM-x32\...\Hotspot 4G BTelecom) (Version: 1.12.00.479 - Huawei Technologies Co.,Ltd) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office PowerPoint Viewer 2007 (French) (HKLM-x32\...\{95120000-00AF-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-178627839-4076603327-3758630505-1000\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{AF6919D0-5691-4F35-9D65-54F981013514}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 FRA (HKLM\...\{2906A05E-2D38-4B47-85A2-D3485E372C8F}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 FRA (HKLM\...\{0D4447E0-A261-43A4-AEBC-F76E983901F0}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Works (HKLM-x32\...\{3B160861-7250-451E-B5EE-8B92BF30A710}) (Version: 9.7.0621 - Microsoft Corporation) Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Moveslink2 (HKU\S-1-5-21-178627839-4076603327-3758630505-1000\...\09caaf8ee8bfbd57) (Version: 1.4.4.199 - Suunto) Mozilla Firefox 55.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 55.0 (x86 fr)) (Version: 55.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0 - Mozilla) PhotoFiltre 7 (HKU\S-1-5-21-178627839-4076603327-3758630505-1000\...\PhotoFiltre 7) (Version: - ) Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Pošta Windows Live (HKLM-x32\...\{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6521 - Realtek Semiconductor Corp.) SafeZone Stable 3.55.2393.609 (HKLM-x32\...\SafeZone 3.55.2393.609) (Version: 3.55.2393.609 - Avast Software) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer) Utilitaire de mise à jour des logiciels EBP 1.1.3 (HKLM\...\{5E39F2FB-0D5B-413E-903C-3F495017109C}) (Version: 1.1.3 - EBP) Hidden Utilitaire de mise à jour des logiciels EBP 1.1.3 (HKLM-x32\...\Utilitaire de mise à jour des logiciels EBP 1.1.3) (Version: 1.1.3 - EBP) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version: - Yahoo Inc.) Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотогалерия на Windows Live (HKLM-x32\...\{4444F27C-B1A8-464E-9486-4C37BAB39A09}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) CustomCLSID: HKU\S-1-5-21-178627839-4076603327-3758630505-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll (Dropbox,Inc.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-28] (AVASTSoftware) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-28] (AVASTSoftware) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\System32\EhStorShell.dll [2017-03-18] (MicrosoftCorporation) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ShellIconOverlayIdentifiers-x32-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32-x32-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32-x32-x32-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32-x32-x32-x32-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32-x32-x32-x32-x32-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ShellIconOverlayIdentifiers-x32-x32-x32-x32-x32-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2016-07-30] (IvoSoft) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-28] (AVASTSoftware) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Windows Defender\ShellExt.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers1: [ModernSharing] -> {e2bf9676-5f8f-435c-97eb-11607a5bedf7} => C:\WINDOWS\system32\ntshrui.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers1: [Open With] -> {09799AFB-AD67-11d1-ABCD-00C04FC30936} => C:\WINDOWS\system32\shell32.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers1: [Sharing] -> {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} => C:\WINDOWS\system32\ntshrui.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (AlexanderRoshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (AlexanderRoshal) ContextMenuHandlers1-x32: [WorkFolders] -> {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} => C:\Windows\System32\WorkfoldersShell.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers1-x32-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ContextMenuHandlers2: [EnhancedStorageShell] -> {2854F705-3548-414C-A113-93E27C808C85} => C:\Windows\System32\EhStorShell.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Windows Defender\ShellExt.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers2: [Sharing] -> {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} => C:\WINDOWS\system32\ntshrui.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-28] (AVASTSoftware) ContextMenuHandlers3: [CopyAsPathMenu] -> {f3d06e7c-1e45-4a26-847e-f9fcdee59be0} => C:\WINDOWS\system32\shell32.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers3: [SendTo] -> {7BA4C740-9E81-11CF-99D3-00AA004AE837} => C:\WINDOWS\system32\shell32.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers3-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Windows Defender\ShellExt.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers4: [Sharing] -> {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} => C:\WINDOWS\system32\ntshrui.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers4: [WorkFolders] -> {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} => C:\Windows\System32\WorkfoldersShell.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers4-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (AdvancedMicroDevices,Inc.) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [New] -> {D969A300-E7FF-11d0-A93B-00A0C90F2719} => C:\WINDOWS\system32\shell32.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers5: [Sharing] -> {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6} => C:\WINDOWS\system32\ntshrui.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers5: [WorkFolders] -> {E61BF828-5E63-4287-BEF1-60B1A4FDE0E3} => C:\Windows\System32\WorkfoldersShell.dll [2017-03-18] (MicrosoftCorporation) ContextMenuHandlers5-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-28] (AVASTSoftware) ContextMenuHandlers6: [Library Location] -> {3dad6c5d-2167-4cae-9914-f99e41c12cfa} => C:\WINDOWS\system32\shell32.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers6: [PintoStartScreen] -> {470C0EBD-5D73-4d58-9CED-E91E22E23282} => C:\Windows\System32\appresolver.dll [2017-07-11] (MicrosoftCorporation) ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2016-07-30] (IvoSoft) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (AlexanderRoshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (AlexanderRoshal) ContextMenuHandlers6-x32-x32: [XXX Groove GFS Context Menu Handler XXX] -> {6C467336-8281-4E60-8204-430CED96822D} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (MicrosoftCorporation) ContextMenuHandlers1_S-1-5-21-178627839-4076603327-3758630505-1000: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ContextMenuHandlers1_S-1-5-21-178627839-4076603327-3758630505-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ContextMenuHandlers4_S-1-5-21-178627839-4076603327-3758630505-1000: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ContextMenuHandlers4_S-1-5-21-178627839-4076603327-3758630505-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ContextMenuHandlers5_S-1-5-21-178627839-4076603327-3758630505-1000: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\17.3.6943.0625_1\amd64\FileSyncShell64.dll [2017-08-03] (MicrosoftCorporation) ContextMenuHandlers5_S-1-5-21-178627839-4076603327-3758630505-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\DropboxExt64.17.0.dll [2017-08-04] (Dropbox,Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {00327313-7ED5-4C93-9A37-E46C43EE4BE0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {03A27619-8317-4B76-8A4A-AC204C77F591} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => C:\Program Files\Windows Media Player\wmpnscfg.exe [2017-03-18] (MicrosoftCorporation) Task: {05C35C43-30B0-478C-A045-7452BCE45E4E} - System32\Tasks\Microsoft\Windows\Defrag\ScheduledDefrag => C:\WINDOWS\system32\defrag.exe [2017-03-18] (MicrosoftCorp.) Task: {06C8EEFC-36ED-4DF9-B1D2-CACA35914A08} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION Task: {0714B785-A036-42F0-BE9A-973166736EB8} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {0C518199-F01B-42CF-9CB7-16710B002812} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\WINDOWS\system32\MDMAgent.exe [2017-03-18] (MicrosoftCorporation) Task: {0CC2C164-C391-4AE1-AC44-61014D23FC1F} - System32\Tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization => C:\WINDOWS\system32\defrag.exe [2017-03-18] (MicrosoftCorp.) Task: {11A3F79A-1C12-47F1-B7DD-A7ADE08A6323} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {132A3302-26C0-4CD8-A0C5-784CFC8492A0} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2017-07-11] (MicrosoftCorporation) Task: {140AB2F7-3F37-42EA-BEED-0CF7DE2A8391} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {19A83AC3-5FF2-48A6-99D4-35106658F876} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (MicrosoftCorporation) Task: {1AEC25EB-B543-48CE-B1AD-0C8B24CBE719} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (GoogleInc.) Task: {1DD5EF5B-D510-4050-86E6-8C60384BE2D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (GoogleInc.) Task: {21677D7C-F8CD-4E90-B9C4-38A4DE0100EB} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {240478A4-B7D2-43B1-AF21-626C77E72C1F} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics => C:\WINDOWS\system32\disksnapshot.exe [2017-03-18] (MicrosoftCorporation) Task: {2532DB2F-A598-4946-BA1F-6EBE9D19C34C} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\WINDOWS\System32\WindowsActionDialog.exe [2017-03-18] (MicrosoftCorporation) Task: {2762FB89-4E1A-4908-8AB6-02BEFCBE1405} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-07-28] (AVASTSoftware) Task: {2926D946-27DF-46C8-B6DA-C6AB337DA47C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {2C25FA25-A1CE-4E57-A019-80E6EBE790AF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {2E26BD25-0AB4-4C99-929A-C911A76E64AC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display => C:\windows\system32\MusNotification.exe [2017-07-11] (MicrosoftCorporation) Task: {310A8E57-ACE8-48A3-B90D-50EDA1E3A403} - System32\Tasks\User_Feed_Synchronization-{BDA94C3B-F00F-435C-A5D4-01E4FA88FB23} => C:\WINDOWS\system32\msfeedssync.exe [2017-03-18] (MicrosoftCorporation) Task: {3309730B-D58E-4C6C-B3FE-CEA96081D2EA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-178627839-4076603327-3758630505-1000UA => C:\Users\Suzanne\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox,Inc.) Task: {33C04DDB-DE68-4033-8570-ADDDBFF99E1B} - System32\Tasks\Microsoft\Windows\NlaSvc\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [2017-03-18] (MicrosoftCorporation) Task: {349AB94E-2380-425A-92F4-701C832CE0EA} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {35026019-9297-4AB4-8843-6C8A1A654AC7} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {3A93DEA0-D82D-408C-8460-261B7C556FE7} - System32\Tasks\UALU notificatin => C:\Program Files\Packard Bell\Packard Bell Updater\UALU.exe [2012-02-07] (AcerIncorporated) Task: {3AEEF4D4-C4A8-42A1-8A1E-80CA054C2E9C} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\WINDOWS\system32\srtasks.exe [2017-03-18] (MicrosoftCorporation) Task: {3EA82649-A360-4898-A6FB-C273024D1364} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitor => C:\WINDOWS\System32\wpcmon.exe [2017-03-18] (MicrosoftCorporation) Task: {4051EB0B-2917-432F-B9F9-431C7E3C9181} - System32\Tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask => C:\WINDOWS\system32\RAServer.exe [2017-03-18] (MicrosoftCorporation) Task: {4A5D4628-E32A-4422-9B01-D37DD4C1CE75} - System32\Tasks\Microsoft\Windows\WwanSvc\NotificationTask => C:\WINDOWS\System32\WiFiTask.exe [2017-03-18] (MicrosoftCorporation) Task: {4B6926D3-D490-4D93-82CE-D109F1D1BC80} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\WINDOWS\System32\sihclient.exe [2017-07-11] (MicrosoftCorporation) Task: {4D97C092-FEEC-4D56-8255-64A0889B21D7} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {4E36EDFC-DC44-4641-9779-B06826BBE396} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\MpCmdRun.exe [2017-07-11] (MicrosoftCorporation) Task: {52C4776E-11B1-402C-A230-0A0306A146C4} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator => C:\WINDOWS\System32\wsqmcons.exe [2017-03-18] (MicrosoftCorporation) Task: {5360900F-2C8A-440A-970A-FB678ACBC5EA} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {5454E375-E003-4E06-AFD4-90C88BE6BF83} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5796B685-8658-448E-BBE4-3EB405D84F8D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5B8DFA04-1D9A-4CB6-96BE-BDE73E8730D9} - System32\Tasks\Microsoft\Windows\UNP\RunCampaignManager => C:\WINDOWS\System32\UNP\UNPCampaignManager.exe [2017-05-20] (MicrosoftCorporation) Task: {5BC5A21F-4785-41A6-B4B1-62FB9B08FABD} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\WINDOWS\System32\dsregcmd.exe [2017-03-18] (MicrosoftCorporation) Task: {5C326114-085E-444C-9B7A-D3E2E59C549E} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\WINDOWS\system32\devicecensus.exe [2017-07-11] (MicrosoftCorporation) Task: {5D81326C-D6EC-49A0-AAB5-D8A874E06E83} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => C:\WINDOWS\system32\MusNotification.exe [2017-07-11] (MicrosoftCorporation) Task: {601452C6-3666-40C1-AF9A-CF816328C2BC} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Packard Bell\Packard Bell Recovery Management\NotificationCenter\Notification.exe [2012-01-19] (Acer) Task: {64A81A33-4D38-4682-B31C-B61141F98190} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {6724662A-71DE-4498-855E-DC5B9E5CB0D4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {6772AC65-7600-4DF2-9BD5-F17292FAAE4B} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\WINDOWS\system32\speech_onecore\common\SpeechModelDownload.exe [2017-03-18] (MicrosoftCorporation) Task: {6A2053CF-A228-41FB-AF48-21226EC44F5D} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION Task: {6F5EF518-2D4E-4224-9C82-A9BA152044E3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {70E0A093-79B7-461E-A9C7-B67CD7B1511E} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload => C:\WINDOWS\system32\dmclient.exe [2017-03-18] (MicrosoftCorporation) Task: {7230C4CE-B33D-49D0-952C-F7032D51FB76} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {7351033D-F289-47B1-926B-15BFB7D6C8E1} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {74D4268D-61E7-40D2-82E1-B04EF09A34B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (AdobeSystemsIncorporated) Task: {755E9A37-7E7F-4D02-ACA8-CE6615B46B1E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {799AC654-A37D-49AA-B0F3-433D7D5EBBD9} - System32\Tasks\Microsoft\Windows\WCM\WiFiTask => C:\WINDOWS\System32\WiFiTask.exe [2017-03-18] (MicrosoftCorporation) Task: {7C57F1FA-F0C0-4C0A-B450-7A448B979E10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\MpCmdRun.exe [2017-07-11] (MicrosoftCorporation) Task: {80E5FB01-DF9C-493E-B826-DD7094E7A8DB} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver => C:\WINDOWS\system32\DFDWiz.exe [2017-03-20] (MicrosoftCorporation) Task: {829C695F-E874-432A-9A9F-7862D04236B9} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\WINDOWS\system32\dstokenclean.exe [2017-03-18] (MicrosoftCorporation) Task: {829ECA81-A68A-4985-906C-72ACBCEAA6F6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-178627839-4076603327-3758630505-1000 => C:\Users\Suzanne\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2017-08-03] (MicrosoftCorporation) Task: {847C6336-E77C-4FD8-9C9E-8D5BA71FAE98} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION Task: {85B9B9BA-6EF6-4DAB-B69B-0E6B35F00CDF} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {87488988-70F6-44C5-A1BD-E328BE17C205} - System32\Tasks\Microsoft\Windows\AppID\PolicyConverter => C:\WINDOWS\system32\appidpolicyconverter.exe [2017-03-18] (MicrosoftCorporation) Task: {88209412-5377-4AA1-B01E-F5D5A6F39E21} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceAgentTask => C:\WINDOWS\system32\SpaceAgent.exe [2017-03-18] (MicrosoftCorporation) Task: {88D1B06D-FABE-44C1-BB35-C27FC074B47F} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\WINDOWS\system32\ClipRenew.exe [2017-03-20] (MicrosoftCorporation) Task: {88E18EB0-E633-47C9-8FE5-84CEAB8F5EF7} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [2017-03-18] (MicrosoftCorporation) Task: {896ED842-4861-49E9-A2C1-0AE31689F876} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\WINDOWS\system32\ClipUp.exe [2017-03-18] (MicrosoftCorporation) Task: {8D0A4706-A2F2-469A-90D9-AFA8F1D8C98E} - System32\Tasks\SafeZone scheduled Autoupdate 1466155084 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-06-13] (AvastSoftware) Task: {8DCF0A7E-B81F-4849-8A9E-437DCBBA1C0C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {8EE52AD7-9F81-40D3-AE0C-9F5DB09BC56F} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\WINDOWS\system32\cleanmgr.exe [2017-03-18] (MicrosoftCorporation) Task: {92FD9B21-3FFA-468F-9926-358F77F81E1D} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\WINDOWS\System32\XblGameSaveTask.exe [2017-03-18] (MicrosoftCorporation) Task: {936FF605-A684-4476-8E62-E051A903B3D3} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\WINDOWS\system32\tzsync.exe [2017-03-18] (MicrosoftCorporation) Task: {938954E2-DAFB-4BCD-8740-6AC11EBFE13C} - System32\Tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck => C:\WINDOWS\system32\appidcertstorecheck.exe [2017-03-18] (MicrosoftCorporation) Task: {9AFFE954-F29B-4865-AA67-66E66C120275} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {9CF304F4-4D08-4DBB-A568-102240A2160B} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe [2017-03-18] (MicrosoftCorporation) Task: {9FAF6E32-0EA0-44AF-9AFB-0F8FB553C03C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {A1A28132-7332-4BA0-B0C1-618774AED976} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A24DF45B-F891-4F89-990D-94E0D6C87CC6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {B0B01AAA-FF6C-4441-B75E-44A24B0B37CD} - System32\Tasks\Microsoft\Windows\DUSM\dusmtask => C:\WINDOWS\System32\dusmtask.exe [2017-03-18] (MicrosoftCorporation) Task: {B4831EF1-CB62-470B-94EA-4AA42500627E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {B5EA650A-8EE9-4BA5-BAA0-2A8ACE00500D} - System32\Tasks\Microsoft\Windows\SpacePort\SpaceManagerTask => C:\WINDOWS\system32\spaceman.exe [2017-03-18] (MicrosoftCorporation) Task: {B84314FB-9F7F-4051-9378-C67671213C20} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (AdobeSystemsIncorporated) Task: {BCC432F2-7A57-4195-881F-9013CF46F613} - System32\Tasks\Microsoft\Windows\MUI\LPRemove => C:\WINDOWS\system32\lpremove.exe [2017-03-18] (MicrosoftCorporation) Task: {BD69C6ED-AD55-467C-B787-533200C3B376} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\WINDOWS\System32\XblGameSaveTask.exe [2017-03-18] (MicrosoftCorporation) Task: {BF599174-2CF1-407D-8321-9BC34D4660B1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-16] (AVASTSoftware) Task: {C05E2FFD-7D0D-4F6B-952B-A3318F829D19} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Cellular => C:\WINDOWS\system32\ProvTool.exe [2017-03-18] (MicrosoftCorporation) Task: {C1000F6A-E7E4-4486-BE51-94782864F0CE} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {C162FF56-952F-4ABA-AE13-AA8CB0F4C087} - System32\Tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers => C:\WINDOWS\System32\drvinst.exe [2017-03-18] (MicrosoftCorporation) Task: {C42799B6-75B2-42CF-8197-3BE332E05553} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {C97B639A-C1BF-4E0C-ACFD-CF5B27B65B3C} - System32\Tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting => C:\WINDOWS\system32\wermgr.exe [2017-03-18] (MicrosoftCorporation) Task: {CDC553D2-B5AD-4AF3-BB6D-5AA47466C1F9} - System32\Tasks\Microsoft\Windows\Management\Provisioning\Logon => C:\WINDOWS\system32\ProvTool.exe [2017-03-18] (MicrosoftCorporation) Task: {CFE9501D-B60F-45DB-B48F-19C572F7F30E} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\WINDOWS\system32\AppHostRegistrationVerifier.exe [2017-03-18] (MicrosoftCorporation) Task: {D1AA48D5-A9A6-4EBC-8A1A-F739B152E25B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D2C50CE0-7E9B-4F0D-A2A4-95AC59829444} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => C:\WINDOWS\system32\BthUdTask.exe [2017-03-18] (MicrosoftCorporation) Task: {D3499107-F46C-46B0-9F48-E24C7F74CA48} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot => C:\windows\system32\MusNotification.exe [2017-07-11] (MicrosoftCorporation) Task: {D5EBF28C-A33D-4CBA-8355-0F457EE12498} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\WINDOWS\system32\compattelrunner.exe [2017-07-11] (MicrosoftCorporation) Task: {DE280E27-41E3-43DD-8D0C-7D14FBD3A6ED} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {DE46B5EA-DBD9-44C9-BA1B-9DA013F53BE7} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink) Task: {E11183CC-FCAC-479E-B422-6A72654C14EA} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\WINDOWS\System32\LocationNotificationWindows.exe [2017-03-18] (MicrosoftCorporation) Task: {E233B4EF-3E85-4DCE-8837-9470331EF7D5} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {E7D51B0A-27ED-4F80-878B-24A4A0BB9277} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-178627839-4076603327-3758630505-1000Core => C:\Users\Suzanne\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox,Inc.) Task: {E89B3E5A-B7F3-4399-A215-C0F26BD86BEC} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E9B02B81-DCEA-460A-AF93-CB53CFE8B11E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {EC11A6F7-343D-49E9-A974-A3716157F2C1} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\WINDOWS\system32\compattelrunner.exe [2017-07-11] (MicrosoftCorporation) Task: {EE2FD02E-031D-4753-9D3C-321E67BFE9F5} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install => C:\WINDOWS\system32\usoclient.exe [2017-03-18] (MicrosoftCorporation) Task: {EE607BC0-3404-4B26-87BB-24B51FB998D5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {F050E734-38F6-4230-9C8B-0157ECB59B0B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\MpCmdRun.exe [2017-07-11] (MicrosoftCorporation) Task: {F3970AA5-8D84-4889-B956-6BA2DE1AD2F4} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {F478CB9A-00B5-424C-A757-BDA9BD05EF8A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {F565576A-1B16-46D2-A84C-6C5D39F69BA0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F8346A2B-1ED6-4F7E-B810-A2EDD52F6BA3} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F88E01C2-99E3-4AF6-BFAA-7ACC8EF521D4} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\WINDOWS\system32\dmclient.exe [2017-03-18] (MicrosoftCorporation) Task: {F8C70D21-8024-409A-8019-74DCC03C74C7} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F9015704-44A7-4962-B811-A4C0206CF851} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\WINDOWS\System32\sihclient.exe [2017-07-11] (MicrosoftCorporation) Task: {FA03BAF1-894C-455E-822F-50B898C24BA7} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FC6864DB-B202-4D99-B9FA-1C57365DBDD0} - System32\Tasks\NBAgent => C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2012-01-16] (NeroAG) Task: {FF1522D7-8B1F-4BCE-BD02-9531709C4C9B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-178627839-4076603327-3758630505-1000Core.job => C:\Users\Suzanne\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-178627839-4076603327-3758630505-1000UA.job => C:\Users\Suzanne\AppData\Local\Dropbox\Update\DropboxUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2013-02-06 08:10 - 2013-02-06 08:10 - 000351824 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-07-18 10:27 - 2017-07-18 10:28 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-07-18 10:27 - 2017-07-18 10:28 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-07-18 10:27 - 2017-07-18 10:28 - 043573248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-07-18 10:27 - 2017-07-18 10:28 - 002435584 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\skypert.dll 2017-06-09 11:50 - 2012-08-23 10:38 - 000574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2017-06-09 11:50 - 2014-05-13 12:04 - 000109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2017-06-09 11:50 - 2014-05-13 12:04 - 000416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2017-06-09 11:50 - 2014-05-13 12:04 - 000167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2017-06-09 11:50 - 2012-04-03 17:06 - 000565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 000170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 001065936 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll 2017-07-16 11:35 - 2017-07-16 11:35 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 000192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 000224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 000292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-07-28 23:38 - 2017-07-28 23:38 - 000689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2012-06-13 20:01 - 2012-02-07 11:39 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-178627839-4076603327-3758630505-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 212.27.40.240 - 212.27.40.241 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{A5F450E6-2106-48F1-B4E7-6B46981F33D4}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609_0\SZBrowser.exe FirewallRules: [{B9F6655F-42CE-4DB7-87E5-B14B2597C886}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609\SZBrowser.exe FirewallRules: [{611A772E-317E-47EF-9DE3-F365F1FD98A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [UDP Query User{36A12B02-5DA0-4340-ADBD-DB3AF70C22D1}C:\users\suzanne\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\suzanne\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [TCP Query User{52E84B9F-EBE3-4A58-AEC4-4530806F55B6}C:\users\suzanne\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\suzanne\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{68A88D7F-6FFD-4387-8B2A-1F2C8A138847}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{C4ABB6ED-9F54-421F-820B-0E9E3BD6CA29}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe FirewallRules: [{5DC11E78-DC9B-4B27-8042-59DD803FFDDF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{418CAC5B-D272-46D6-BF9E-068B7721713C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe FirewallRules: [{61E9363D-FCB5-49A2-A617-72A57042B48E}] => (Allow) C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{2ED5C33F-A094-4B14-BB99-54C14F736AF4}] => (Allow) C:\Users\Suzanne\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{4156E18B-D9B3-42BE-8B82-C7808500269D}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{10D17F04-DD51-4456-87E9-5747496D0DFF}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [UDP Query User{621CC1EF-81B6-4B85-881F-6D68C42A7AF5}C:\windows\keygen.exe] => (Allow) C:\windows\keygen.exe FirewallRules: [TCP Query User{AC2F3EB7-81AF-455E-B635-AF3AA41668A7}C:\windows\keygen.exe] => (Allow) C:\windows\keygen.exe FirewallRules: [UDP Query User{0518988B-C5A1-4ECA-8B6E-8C13C483CF5A}C:\program files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\javaw.exe FirewallRules: [TCP Query User{AC831CAF-D6D5-455F-96A3-32A7DEBD14A2}C:\program files (x86)\jdownloader\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\jdownloader\jre\bin\javaw.exe FirewallRules: [{C5E1A68C-AADA-4234-B2BD-6BCD2891DE65}] => (Allow) C:\Program Files (x86)\Iminent\Iminent.exe FirewallRules: [{EE1B996C-7BE6-4547-BD01-A9D9D0602C6D}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{99D27920-B27E-4E39-B047-A85B5A297E08}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{7D396022-8788-4FBA-B025-5B11D837784D}] => (Allow) LPort=1900 FirewallRules: [{51A52B44-B01E-49B3-B930-5BBF7B0AE896}] => (Allow) LPort=2869 FirewallRules: [{1940791B-A93C-4AAB-82C5-5AABB67622EE}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0189CA54-AC40-42C4-BFB8-E5B3F79E1F19}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D6560D0F-AA84-4C77-91B9-9CD1BB600976}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{28028E5D-6409-4DC9-9B52-CD165B23C185}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{198A9574-1499-464F-822E-CBB7E3D7989B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D73CF8F5-6BBF-467F-AC5F-6170C24D3C34}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{0CD5D39A-DCC4-499F-B091-4FCB4FF3A379}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{75311539-9E57-4439-9222-79C4EE450BFB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 06-08-2017 18:18:38 Point de contrôle planifié 08-08-2017 13:49:44 JRT Pre-Junkware Removal ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/08/2017 11:52:39 AM) (Source: MsiInstaller) (EventID: 11921) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1921.Service Nero Update (NAUpdate) could not be stopped. Verify that you have sufficient privileges to stop system services. Error: (08/08/2017 11:44:23 AM) (Source: MsiInstaller) (EventID: 11921) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1921.Service Nero Update (NAUpdate) could not be stopped. Verify that you have sufficient privileges to stop system services. Error: (08/08/2017 11:28:44 AM) (Source: MsiInstaller) (EventID: 11921) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1921.Service Nero Update (NAUpdate) could not be stopped. Verify that you have sufficient privileges to stop system services. Error: (08/03/2017 04:36:41 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe, version : 10.0.15063.0, horodatage : 0x02799ef5 Nom du module défaillant : ntdll.dll, version : 10.0.15063.447, horodatage : 0xa329d3a8 Code d’exception : 0xc0000409 Décalage d’erreur : 0x00000000000aa020 ID du processus défaillant : 0x1484 Heure de début de l’application défaillante : 0x01d30c4aa9f48570 Chemin d’accès de l’application défaillante : c:\windows\system32\svchost.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 264bf77f-f832-4c87-aa9b-ec3426bb0e94 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/03/2017 01:26:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.483, horodatage : 0x595f2577 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x2360 Heure de début de l’application défaillante : 0x01d30c4b6438e316 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe Chemin d’accès du module défaillant: unknown ID de rapport : eb962f6c-7441-4f7d-b356-d58dcd2be90f Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : ContentProcess Error: (08/03/2017 01:26:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.483, horodatage : 0x595f2577 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x2360 Heure de début de l’application défaillante : 0x01d30c4b6438e316 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe Chemin d’accès du module défaillant: unknown ID de rapport : 57cc7d35-274c-4271-b6f5-6b4432407f40 Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : ContentProcess Error: (08/03/2017 01:24:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.483, horodatage : 0x595f2577 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x23d0 Heure de début de l’application défaillante : 0x01d30c4b0d742089 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe Chemin d’accès du module défaillant: unknown ID de rapport : f5843159-0b34-49e7-9ed3-19e526b61240 Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : ContentProcess Error: (08/03/2017 01:24:22 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.483, horodatage : 0x595f2577 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x23d0 Heure de début de l’application défaillante : 0x01d30c4b0d742089 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe Chemin d’accès du module défaillant: unknown ID de rapport : 89f4d2b3-7c96-47ee-a59a-c5c03fa80df8 Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : ContentProcess Error: (08/03/2017 01:20:13 PM) (Source: MsiInstaller) (EventID: 11921) (User: AUTORITE NT) Description: Product: Nero Update -- Error 1921.Service Nero Update (NAUpdate) could not be stopped. Verify that you have sufficient privileges to stop system services. Error: (08/03/2017 01:13:03 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: ) Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A Erreurs système: ============= Error: (08/08/2017 11:37:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service SDWSCService n’a pas pu démarrer en raison de l’erreur : Un certificat requis n’est pas dans sa période de validité selon la vérification par rapport à l’horloge système en cours ou le tampon daté dans le fichier signé. Error: (08/08/2017 11:37:32 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (08/08/2017 11:37:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (08/08/2017 11:21:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service SDWSCService n’a pas pu démarrer en raison de l’erreur : Un certificat requis n’est pas dans sa période de validité selon la vérification par rapport à l’horloge système en cours ou le tampon daté dans le fichier signé. Error: (08/08/2017 11:21:06 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (08/08/2017 11:20:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (08/07/2017 12:17:32 PM) (Source: DCOM) (EventID: 10010) (User: Suzanne-PC) Description: Le serveur {3EB3C877-1F16-487C-9050-104DBCD66683} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (08/07/2017 12:17:32 PM) (Source: DCOM) (EventID: 10010) (User: Suzanne-PC) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (08/07/2017 12:17:32 PM) (Source: DCOM) (EventID: 10010) (User: Suzanne-PC) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (08/07/2017 12:17:32 PM) (Source: DCOM) (EventID: 10010) (User: Suzanne-PC) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. CodeIntegrity: =================================== Date: 2017-08-08 13:57:48.278 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 13:57:48.276 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 13:57:48.258 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 13:57:48.256 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 12:25:21.658 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 12:21:33.441 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 12:21:33.438 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 11:37:35.547 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 11:29:13.212 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-08-08 11:29:13.206 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz Pourcentage de mémoire utilisée: 46% Mémoire physique - RAM - totale: 4060.43 MB Mémoire physique - RAM - disponible: 2181.16 MB Mémoire virtuelle totale: 8156.43 MB Mémoire virtuelle disponible: 6092.57 MB ==================== Lecteurs ================================ Drive c: (Packard Bell) (Fixed) (Total:456.45 GB) (Free:355.47 GB) NTFS Drive d: (DATA) (Fixed) (Total:456.96 GB) (Free:297.68 GB) NTFS Drive h: (TOURO) (Fixed) (Total:465.76 GB) (Free:246.77 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C3D01D20) Partition 1: (Not Active) - (Size=18 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E4FAC7D9) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================