Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16-09-2017 Exécuté par POPOTE ET POLOCHON (16-09-2017 18:03:15) Exécuté depuis C:\Users\POPOTE ET POLOCHON\Desktop Windows 10 Home Version 1703 (X64) (2017-06-17 20:10:36) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1920399345-1923923730-3221148203-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1920399345-1923923730-3221148203-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1920399345-1923923730-3221148203-1067 - Limited - Enabled) Invité (S-1-5-21-1920399345-1923923730-3221148203-501 - Limited - Disabled) POPOTE ET POLOCHON (S-1-5-21-1920399345-1923923730-3221148203-1000 - Administrator - Enabled) => C:\Users\POPOTE ET POLOCHON ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated) Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0609.2011 - Acer Incorporated) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Photoshop CS (HKLM-x32\...\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}) (Version: CS - Adobe Systems, Inc.) Advanced HTML Editor 0.7 (HKLM-x32\...\036E5EF9-6240-4213-B23E-DCBDBCFA68CE_is1) (Version: 0.7.0 - eDisplay) Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version: - ) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.6.2310 - AVAST Software) AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform) clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated) clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated) clear.fi SDK - MVP 2 (HKLM-x32\...\{A3AD65CC-B2CE-49da-AE4E-CC2ECF4EC0F8}) (Version: 2.0.1505 - CyberLink Corp.) Hidden clear.fi SDK- Movie 2 (HKLM-x32\...\{DAF7BB88-6392-40aa-A714-8392C4BDBD2C}) (Version: 2.0.1502 - CyberLink Corp.) Hidden CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation) EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - ) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION) EPSON XP-530 Series Printer Uninstall (HKLM\...\EPSON XP-530 Series) (Version: - Seiko Epson Corporation) Explor@ Park (HKLM-x32\...\VTechDownloadManager) (Version: - VTech) FileZilla Client 3.27.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.27.0.1 - Tim Kosse) Fotogalerija Windows Live (HKLM-x32\...\{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Freemake Video Converter version 4.0.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.0.4 - Ellora Assets Corporation) Gadwin PrintScreen (HKLM-x32\...\Gadwin PrintScreen) (Version: 4.6 - Gadwin Systems, Inc.) Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotogràfica del Windows Live (HKLM-x32\...\{4736B0ED-F6A1-48EC-A1B7-C053027648F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie foto Windows Live (HKLM-x32\...\{CB66242D-12B1-4494-82D2-6F53A7E024A3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.91 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3510 - Acer Incorporated) Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation) Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2598 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation) Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation) Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation) Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ma Livebox (HKLM-x32\...\ma Livebox) (Version: 3.4.8.0 - Orange) Macromedia Dreamweaver 8 (HKLM-x32\...\{5FD788ED-1A37-4496-9BDD-463F493B27FA}) (Version: 8.0.0.2751 - ) Macromedia Extension Manager (HKLM-x32\...\{3C8C9FB3-5FDF-40B4-B314-EAD722728C76}) (Version: 1.7.270 - Nom de votre société) Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.53.0.0 - Seiko Epson Corporation) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.8326.2107 - Microsoft Corporation) Microsoft Office Professionnel 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office XP Media Content (HKLM-x32\...\{9030040C-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2619.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation) Microsoft Publisher 2002 (HKLM-x32\...\{90190409-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.7 - F.J. Wechselberger) MyWinLocker (HKLM\...\{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}) (Version: 4.0.14.27 - Egis Technology Inc.) Hidden MyWinLocker 4 (HKLM-x32\...\{39F15B50-A977-4CA6-B1C3-6A8724CDA025}) (Version: 4.0.14.27 - Egis Technology Inc.) Hidden MyWinLocker Suite (HKLM-x32\...\{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.18 - Egis Technology Inc.) Hidden MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.18 - Egis Technology Inc.) NETGEAR Powerline Utility (HKLM-x32\...\{2753B568-6F85-4E31-A114-A7F8D8606DDD}) (Version: 3.1.0.4 - NETGEAR Powerline) Hidden NETGEAR Powerline Utility (HKLM-x32\...\InstallShield_{2753B568-6F85-4E31-A114-A7F8D8606DDD}) (Version: 3.1.0.4 - NETGEAR Powerline) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden Orange Inside (HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\Orange Inside) (Version: 2.1.1.0 - Orange) Orange Player (HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\2260595420.video-a-la-demande.orange.fr) (Version: - video-a-la-demande.orange.fr) Orange Player Interface (HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\1386764596.video-a-la-demande.orange.fr) (Version: - video-a-la-demande.orange.fr) Orange update (HKLM-x32\...\OrangeUpdateManager) (Version: 2.3.0.7 - Orange) OVH MoM (HKLM-x32\...\OVH MoM) (Version: 4.1.15 - ) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.0 - pdfforge GmbH) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Pošta Windows Live (HKLM-x32\...\{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Shredder (HKLM\...\{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}) (Version: 2.0.8.9 - Egis Technology Inc.) Hidden Shredder (HKLM-x32\...\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}) (Version: 2.0.8.9 - Egis Technology Inc.) Hidden Switch - Convertisseur de fichiers audio (HKLM-x32\...\Switch) (Version: 4.68 - NCH Software) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) VTech Download Agent Library (HKLM-x32\...\{DB083AE1-3354-4AAD-BD44-5F2CC4B2ECE6}) (Version: 1.00.0000 - VTech) Hidden Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Фотогалерия на Windows Live (HKLM-x32\...\{4444F27C-B1A8-464E-9486-4C37BAB39A09}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-12] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-12] (AVAST Software) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => -> Pas de fichier ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => -> Pas de fichier ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => -> Pas de fichier ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => -> Pas de fichier ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-12] (AVAST Software) ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) ContextMenuHandlers1-x32: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) ContextMenuHandlers1-x32: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Pas de fichier ContextMenuHandlers1-x32: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-12] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ContextMenuHandlers3: [MWLIVShellExt] -> {B1B294FE-EC1E-4fef-AF68-D34CE3E38157} => -> Pas de fichier ContextMenuHandlers3: [ShredderContextMenu] -> {521065F1-DE6C-4E46-BBCB-89B0D0BE860D} => -> Pas de fichier ContextMenuHandlers4: [WinRAR] -> _{B41DB860-64E4-11D2-9906-E49FADC173CA} => -> Pas de fichier ContextMenuHandlers4: [WinRAR32] -> _{B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-12] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05A1B83A-C36D-4FE5-BFC9-0A18445F288C} - System32\Tasks\{15E85593-9A5A-4C4A-908A-52442D2DD8DA} => C:\Windows\system32\pcalua.exe -a E:\SETUP.EXE -d E:\ Task: {0B079825-FB02-4CA1-BE80-7D29C3DCB5FB} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {0C6BDDB2-1F13-449E-BD30-2657F2C64C5B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {1E89F138-80BD-42AC-AE53-539214310D4F} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink) Task: {22D0757C-5936-4233-A166-233EFB59DFA4} - \Test TimeTrigger -> Pas de fichier <==== ATTENTION Task: {2642B25E-8228-46A3-A92C-18E97AC478AE} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-29] (Egis Technology Inc.) Task: {268EFA90-A379-46FB-8D8E-07757F6452F2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {2C69E621-6377-4B75-A1A7-5ED9BE1331FE} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {2D0AFA4E-F155-432B-B579-1AD834BB2344} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {2F6728CD-BFA2-4FAA-8DBE-C4EEBA4F290B} - System32\Tasks\{2BEE42C7-EEC7-42DA-84BA-784EB0CC156B} => C:\Windows\system32\pcalua.exe -a C:\Windows\IsUn040c.exe -c -fC:\KA\CPJARDIN\DeIsL3.isu Task: {32BEF7C9-8496-40FA-88A6-A81807448578} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {34204E11-7D0C-4305-B955-5EA891F877AC} - System32\Tasks\avastBCLRestartS-1-5-21-1920399345-1923923730-3221148203-1000 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {3A3D8D13-14CB-45B7-A7CB-10C944CB2BE0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {3BCE47FD-73A1-4E19-9E44-F4F10A193F10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {3DC54E32-7C05-418B-9D2F-930A45AD3A72} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {404249CB-49D8-4135-9411-C0BC9625FE4A} - System32\Tasks\EPSON XP-530 Series Update {78A75858-63A8-4581-9F75-B3646F02066A} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE [2013-11-21] (SEIKO EPSON CORPORATION) Task: {41CC7CCC-0ED2-454B-8A62-63C0B83DB298} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-14] (Adobe Systems Incorporated) Task: {4B97A025-7ADC-4B6F-BABF-83C545F14289} - System32\Tasks\EPSON XP-530 Series Update {B033974F-E4F1-4E74-B2C2-BCF0FF88A3D3} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE [2013-11-21] (SEIKO EPSON CORPORATION) Task: {4C5F4E10-342F-4F3C-9146-A56C5FF46B4A} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-09-08] (Microsoft Corporation) Task: {4FF0A417-BFD3-406B-9204-AA2C4D52F70F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {559FBE16-E27E-4E39-9E45-D182DB7438D3} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {55FE15C6-CC4C-473D-9C19-C98D98170B77} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-14] (Google Inc.) Task: {56C079AD-116F-4B1E-89AB-D376A611B7ED} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {58749378-F17F-43C3-B073-AA0B2993A7B4} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {592D74B2-EDE7-4E22-B48C-72C74BC1E4F5} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-29] (Egis Technology Inc.) Task: {5A5F5CF2-4834-4A82-BFF8-B7C43FFDD631} - System32\Tasks\{CBFB8284-6966-4330-A804-9B8BC0A6F512} => C:\Program Files (x86)\Microsoft Office\Office10\MSPUB.EXE Task: {5B3F1B3F-6969-47C6-95E1-DC252C47728B} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5D8DF775-6A1A-4BC4-8976-C660B2583B41} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-09-12] (AVAST Software) Task: {612228E1-41C4-43D8-A2FC-9CC08138E209} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {659481A4-D806-4C60-8F83-FA3A721EF71C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-07] (Piriform Ltd) Task: {71FC61B7-92FC-484D-853F-3A575932BE46} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-09-12] (Microsoft Corporation) Task: {7B1974E4-20CE-455A-977C-1805E39C311B} - System32\Tasks\{EF1E24E5-528F-492A-AB47-B9F540F9EF9F} => C:\Windows\system32\pcalua.exe -a "C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y8NJAKVR\eMule0.50a-Installer.exe" -d "C:\Users\POPOTE ET POLOCHON\Desktop" Task: {7BF555D9-6F5F-4285-96B3-B294A18F28C4} - System32\Tasks\{77BF80E1-8713-4FEE-B02C-D97F4D4526FA} => C:\Windows\system32\pcalua.exe -a "C:\Users\POPOTE ET POLOCHON\Downloads\epson375747eu.exe" -d "C:\Users\POPOTE ET POLOCHON\Downloads" Task: {809A8840-1912-4F97-94BB-77B1F55683A9} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {82E1CFF1-A4EC-4663-AE3C-43FAD20659F1} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {850A4808-B57F-4303-9772-166C2C444114} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {8CDF6157-A867-4789-B36C-18C64050CB4C} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {933BC5A8-8B9A-47E5-BB26-9584259ACC58} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {961D7CD8-386F-4D50-ADE8-A9523A237CF3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-15] () Task: {9C07BD7A-CFD4-4173-863A-A7573FD2AB81} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {9DA1C87F-2A62-4B24-AF9F-865DC3112ED2} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {A0D6258A-3622-4B87-95E4-05F51D53201E} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {A2E85F9A-6969-4BB0-824A-AADF764398EF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-14] (Google Inc.) Task: {A40B5332-796A-4C7D-B5D1-5CBE7C89AF2B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {A647FBB1-3A30-4362-8454-713112A3EC8C} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A870DF21-0FA8-4EB9-9C08-C8B933DA3F29} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {ADF00ECC-D939-4947-9227-915EA93EA96A} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-07] (Acer Incorporated) Task: {B69276CF-F085-4423-A7A0-DAB5B10F0913} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {B8BA9CB6-B4CD-4991-A19C-B0730DAA076D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {BDC6FA9D-EDF6-4C49-8885-3E37A41596E1} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C2681B20-D14E-4A5F-954C-4E150B7B2C05} - System32\Tasks\{28EF9C12-4F6E-47C0-9321-6135D991BDD4} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\MyBrowser\MyBrowser\Application\39.5.2171.95\Installer\setup.exe" -c --uninstall --system-level Task: {C384F163-8A9F-46CF-9B70-88C592EEF39D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {C5160321-5D89-4728-87E4-4B3C42ED7CEC} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {C9CF0D79-9FD3-4340-A61A-60CB7DE43E3E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {CBAD1842-4127-4796-A8CF-4CA6274BC01F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {CE009234-CBA6-4585-AA1C-EBE089DB61CB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {CF5DEF5E-3554-4EDD-9B71-D9368B83A77A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DAA9228C-FDE5-45DC-AA0F-375F1779BD6B} - System32\Tasks\{030ABE63-A6EF-4CD1-95BA-0CBBFD004341} => C:\Program Files (x86)\Microsoft Office\Office10\MSPUB.EXE Task: {DD734396-4186-48A3-B3C8-6EA6AFAFC670} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation) Task: {E114AA23-1276-4E1B-8AE1-E2A6840E6FB5} - System32\Tasks\SafeZone scheduled Autoupdate 1458725207 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {E155A623-35A9-4CC6-98DC-635CEF354A7E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-09-08] (Microsoft Corporation) Task: {E6585838-3F26-4960-9735-472E7D7025D5} - System32\Tasks\EPSON XP-530 Series Update {F81A585C-A0C0-47A5-A566-6D6F456A5CAA} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE [2013-11-21] (SEIKO EPSON CORPORATION) Task: {E9110364-42AE-4762-8A55-642356EAED51} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\POPOTE [Argument = ET POLOCHON\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe] Task: {EBFC7604-0D6A-449A-90EE-04751AF8BA42} - System32\Tasks\maLivebox => C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe [2017-02-07] (Orange) Task: {F12CF482-FDBB-4A47-8389-DBFBB8D132AE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F271BDD6-3502-473C-825F-F805A16B53B0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-15] () Task: {F38B0354-A50F-4042-B746-A307B0A098C8} - System32\Tasks\0 => c:\program files (x86)\internet explorer\iexplore.exe <==== ATTENTION Task: {F583535C-645B-40D8-BF81-85FA276C5056} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {F6191C3C-7B3A-4BDD-816B-798B21D17979} - System32\Tasks\S-1-5-21-1920399345-1923923730-3221148203-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation) Task: {F70BC7F8-05C4-49BA-B5FA-320022C76F15} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-09-15] (Microsoft Corporation) Task: {FE633B2A-2981-4C5A-B879-4F1126055690} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-530 Series Update {78A75858-63A8-4581-9F75-B3646F02066A}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE:/EXE:{78A75858-63A8-4581-9F75-B3646F02066A} /F:UpdateMAISON\POPOTEETPOLOCHO$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-530 Series Update {B033974F-E4F1-4E74-B2C2-BCF0FF88A3D3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE:/EXE:{B033974F-E4F1-4E74-B2C2-BCF0FF88A3D3} /F:UpdateMAISON\POPOTEETPOLOCHO$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-530 Series Update {F81A585C-A0C0-47A5-A566-6D6F456A5CAA}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSPME.EXE:/EXE:{F81A585C-A0C0-47A5-A566-6D6F456A5CAA} /F:UpdateMAISON\POPOTEETPOLOCHO$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\POPOTE ET POLOCHON\Favorites\Site de téléchargement NCH Software.lnk -> hxxp://www.nch.com.au/fr/index.htm Shortcut: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Windows\Network Shortcuts\My Web Sites on MSN\target.lnk -> hxxp://www.msnusers.co Shortcut: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Mes sites Web sur MSN\target.lnk -> hxxp://fr.msnusers.co ShortcutWithArgument: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://r.orange.fr/r/Oodc_IEshortcut_oi_v2?ref=O_OI_defaultPage_IE_odc_shortcut ShortcutWithArgument: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://r.orange.fr/r/Oodc_IEshortcut_oi_v2?ref=O_OI_defaultPage_IE_odc_shortcut ShortcutWithArgument: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ==================== Modules chargés (Avec liste blanche) ============== 2008-09-08 10:19 - 2008-09-08 10:19 - 000022016 _____ () C:\WINDOWS\System32\cl31cl6.dll 2016-02-15 21:01 - 2016-02-15 21:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll 2014-09-15 11:01 - 2014-09-15 11:01 - 001970544 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe 2012-06-24 21:12 - 2012-02-07 12:04 - 000128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 2017-09-15 18:11 - 2017-08-24 11:27 - 002264528 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2013-09-05 01:17 - 2013-09-05 01:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2017-04-30 13:19 - 2017-04-30 13:19 - 000052392 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2012-09-15 17:08 - 2008-06-20 01:41 - 000062464 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2012-02-07 04:17 - 2012-02-07 04:17 - 000636520 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe 2016-02-24 11:43 - 2016-01-18 14:48 - 000317824 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe 2017-09-07 18:12 - 2017-09-07 18:12 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2017-09-14 08:20 - 2017-09-14 08:21 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-09-14 08:20 - 2017-09-14 08:21 - 010634752 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll 2017-09-14 08:20 - 2017-09-14 08:21 - 002640896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.21.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll 2017-09-15 07:59 - 2017-09-15 08:00 - 001226440 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8500.40855.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll 2017-09-09 08:37 - 2017-09-09 08:37 - 000020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-09-09 08:37 - 2017-09-09 08:37 - 029621760 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-08-18 08:37 - 2017-08-18 08:38 - 000358912 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll 2017-08-18 08:37 - 2017-08-18 08:38 - 002536448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2017-09-09 08:37 - 2017-09-09 08:37 - 020305920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2017-08-18 08:37 - 2017-08-18 08:38 - 002415104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2017-09-09 08:37 - 2017-09-09 08:37 - 003028992 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2017-06-06 04:55 - 2017-06-06 04:56 - 003139496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-06-06 04:55 - 2017-06-06 04:56 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 2017-08-18 08:37 - 2017-08-18 08:38 - 001370112 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35071.16410.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2011-12-23 10:24 - 2011-12-23 10:24 - 000119808 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe 2014-09-15 11:01 - 2014-09-15 11:01 - 000182784 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\ProxyDetection.dll 2014-09-15 11:01 - 2014-09-15 11:01 - 000157184 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\pupnp.dll 2014-09-15 11:01 - 2014-09-15 11:01 - 000549888 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\netsnmp.dll 2012-06-24 21:12 - 2012-02-07 11:39 - 001198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2017-07-12 18:27 - 2017-07-12 18:27 - 004889584 _____ () c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\WebKit.dll 2017-09-12 16:31 - 2017-09-12 16:31 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-09-12 16:31 - 2017-09-12 16:31 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-07-10 19:22 - 2017-07-10 19:22 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-09-12 16:32 - 2017-09-12 16:32 - 000211904 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-09-12 16:32 - 2017-09-12 16:32 - 000241960 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-09-12 16:32 - 2017-09-12 16:32 - 000685688 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-04-30 17:33 - 2014-10-31 16:37 - 001498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2016-04-30 17:33 - 2014-05-19 17:19 - 000137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000013312 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\jetvm\jvm.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000073216 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\java.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000067072 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\zip.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000132608 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\NetworkAPI.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000019456 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\NetWPSAPI.dll 2017-02-07 13:52 - 2017-02-07 13:52 - 000151552 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\Tools.DLL 2012-02-07 04:18 - 2012-02-07 04:18 - 000151656 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll 2016-02-24 11:43 - 2015-12-14 08:05 - 000120832 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\QtSolutions_SOAP-2.7.dll 2016-02-24 11:43 - 2014-04-22 04:14 - 000065536 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\QHttpServer.dll 2016-02-24 11:43 - 2014-05-06 07:39 - 000861184 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\platforms\qwindows.dll 2016-02-24 11:43 - 2014-05-06 07:38 - 000021504 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qgif.dll 2016-02-24 11:43 - 2014-05-06 07:38 - 000020992 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qico.dll 2016-02-24 11:43 - 2014-05-06 07:38 - 000204800 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qjpeg.dll 2016-02-24 11:43 - 2014-05-06 12:44 - 000218112 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qmng.dll 2016-02-24 11:43 - 2014-05-06 07:58 - 000015872 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qsvg.dll 2016-02-24 11:43 - 2014-05-06 12:44 - 000015360 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qtga.dll 2016-02-24 11:43 - 2014-05-06 12:44 - 000307712 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qtiff.dll 2016-02-24 11:43 - 2014-05-06 12:44 - 000014848 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\imageformats\qwbmp.dll 2016-02-24 11:43 - 2014-05-06 08:31 - 000015872 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\sensors\qtsensors_dummy.dll 2016-02-24 11:43 - 2014-05-06 07:38 - 000036352 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\bearer\qgenericbearer.dll 2016-02-24 11:43 - 2014-05-06 07:38 - 000038912 _____ () C:\Program Files (x86)\VTech\DownloadManager\System\plugins\bearer\qnativewifibearer.dll 2013-09-05 01:14 - 2013-09-05 01:14 - 004300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2011-08-15 20:12 - 2011-08-15 20:12 - 002603520 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtCore4.dll 2011-11-25 13:29 - 2011-11-25 13:29 - 000015872 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\featureController.dll 2011-08-15 20:12 - 2011-08-15 20:12 - 001006592 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtNetwork4.dll 2011-08-15 20:15 - 2011-08-15 20:15 - 000382464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtXml4.dll 2011-08-17 16:41 - 2011-08-17 16:41 - 000400384 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\sqlite3.dll 2011-08-17 16:48 - 2011-08-17 16:48 - 000322048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\log4cplus.dll 2011-08-17 16:48 - 2011-08-17 16:48 - 000195584 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\libgsoap.dll 2011-08-15 19:23 - 2011-08-15 19:23 - 000062464 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\zlib1.dll 2011-11-25 13:28 - 2011-11-25 13:28 - 000484352 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\DeviceProfile.dll 2011-11-25 13:42 - 2011-11-25 13:42 - 000499976 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\plugin\PServerPlugin.dll 2011-11-25 13:26 - 2011-11-25 13:26 - 000013824 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\eventsSender.dll 2011-07-19 16:05 - 2011-07-19 16:05 - 014978048 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtWebKit4.dll 2011-08-15 20:17 - 2011-08-15 20:17 - 009224704 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\QtGui4.dll 2011-07-19 16:04 - 2011-07-19 16:04 - 000317952 _____ () C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\phonon4.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\localhost -> hxxp://localhost ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\POPOTE ET POLOCHON\AppData\Roaming\Microsoft\Windows Live Photo Gallery\Papier peint de la Galerie de photos Windows Live.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "Persistence" HKU\S-1-5-21-1920399345-1923923730-3221148203-1000\...\StartupApproved\StartupFolder: => "GAD Caisse.lnk" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{92E941F2-B662-4A96-B9E0-E7BD10EA856E}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{0170558A-6ECF-48BF-AB15-CD367FB94A01}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{2EB50EB4-A2C7-4DD8-B9C8-4736D5D6F03D}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{62BF687A-6995-44F2-819F-A1F8EFB98735}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{7008786B-7C52-4389-A676-C1189C36438E}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{7F52E8DA-42A6-4816-95D9-74C34F87E13E}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{0545D305-DB43-4565-82F0-08E4C77E1263}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F49338F2-FCF1-464D-A773-F0EA2E39A32F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [UDP Query User{E36D6889-6479-49D8-97AE-76ED120B8FB2}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Block) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [TCP Query User{41C02F30-C101-434F-ACB7-ACCAE5097C1C}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Block) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [{46EB9E7C-C554-4E33-B458-2499B7E609A4}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe FirewallRules: [{4BEDE6BF-5BA2-473F-81BA-2F76BE8A21AE}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe FirewallRules: [UDP Query User{3A98F740-C7CE-42BE-A53E-067620E9B4A3}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{00BA48D1-354C-478B-83BE-EB4A7AB5B545}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{CE95AC89-E69D-4F1F-90C5-D4B90E3CBB9F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0A1D5830-6CFF-4003-BFA1-44650AD74B0F}] => (Allow) LPort=2869 FirewallRules: [{8D214E05-5040-47E2-99B9-2B16D96AE222}] => (Allow) LPort=1900 FirewallRules: [{AE48D3B2-3BE9-4CCF-92BF-A3A7E3FABF2A}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{133B2542-B23A-4FFA-8340-FA3E9072E637}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{4EE3391D-405A-47A0-AE6F-D437CB1C9AD9}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{676AC7B0-51B3-41ED-A570-0E175901F3DC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe FirewallRules: [{0255F560-585C-4E43-BFD2-67A49486975E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{150ADDCE-76B4-4574-90AF-403F03E98153}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe FirewallRules: [{FBAF6240-41A6-46C8-9E41-58A9BB131789}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{AEDFE71E-47A4-4C93-8374-803F8B7AF38D}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe FirewallRules: [{B14AED8F-82EB-4887-9CD9-3898E41BB383}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{6BDF6A68-CBFF-4706-80B0-D33E2F983C96}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe FirewallRules: [{0754AF55-1915-4E62-9377-1F94A225846F}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\VideoPlayer.exe FirewallRules: [{B9DB6B66-976A-487B-8B21-8CCF8EA189FC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\MusicPlayer.exe FirewallRules: [{FA49AD3C-EEB5-4F1C-921D-2D0194ED5F08}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{B8AD40E6-D0EB-4057-AB6C-C58FA8AFC2C5}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{7A8F7A56-845E-4271-ACE3-3DEED5562781}] => (Allow) C:\RD-HomeManager\HomeManager.exe FirewallRules: [{032AB6E3-C9C3-433F-A254-A62DB07C9BE9}] => (Allow) C:\RD-HomeManager\HomeManager.exe FirewallRules: [{3FF211E0-56B5-4F68-ACAC-F2A1B26AE0AA}] => (Allow) C:\RD-HomeManager\HomeManager.exe FirewallRules: [{44FCC4A0-97D2-407A-9F24-E5521DD884E2}] => (Allow) C:\RD-HomeManager\HomeManager.exe FirewallRules: [TCP Query User{B38D426A-E3E1-4D28-A0D6-37A8D12A9C9E}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe FirewallRules: [UDP Query User{7988E6C3-E83A-4637-A495-9D7DBA791F45}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe FirewallRules: [TCP Query User{CB3DCAC6-E621-477E-9B6E-0AB38DF546DC}C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe FirewallRules: [UDP Query User{DA1AFFAB-2B03-4C18-9C7A-52BB0E96D7CA}C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe] => (Allow) C:\program files (x86)\macromedia\dreamweaver 8\dreamweaver.exe FirewallRules: [{8169F8C1-605D-4B55-99C9-9A2641C993A1}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{F7F580F5-116B-4420-9471-70B0D7B53A47}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{B27462AE-A82C-45AB-8833-B6587B432E5D}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{D84D8375-A136-4E22-99B8-F42885E14DF6}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{4BFF6C74-1214-46A1-8356-E21D152EEE91}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{60D0228F-E109-4313-9756-69915BAA02B2}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{4E41EA57-B628-4A4B-B818-C1295E9D6340}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{668D5A85-FF4E-4AE5-A579-7A6396DACADB}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{94071A4F-24FA-4A77-8970-BD16C0684A5A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{15ECBAE3-A16B-4C11-A573-F465466B8575}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{AF6D9067-8521-4BF3-B918-961A0F8DBB28}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{4AC32765-C981-46C1-96A7-7CFCEA3D9405}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [TCP Query User{359F5ED9-9C56-4A1D-933D-A40FE19B4E89}C:\rd-homemanager\homemanager\homemanager.exe] => (Allow) C:\rd-homemanager\homemanager\homemanager.exe FirewallRules: [UDP Query User{C2C6F82F-6A4E-49C4-AC7C-8EF773D82DFC}C:\rd-homemanager\homemanager\homemanager.exe] => (Allow) C:\rd-homemanager\homemanager\homemanager.exe FirewallRules: [{0D4AB732-15AF-4067-98B6-4C4B7DFADBCC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{A60E8B8B-DE68-4BF6-B183-78E6D79F0478}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F0132C2C-6F9B-4442-B9B7-88B9A0575EEA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{623D86C4-D3A8-405C-A986-35B1B8B6C82F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{3E5467D7-DCF8-4272-A3ED-44A510A0D528}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8D62B3E5-0287-4DC5-A3FA-E133FEB47742}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DF819388-F341-437A-848C-4BC80CD0E99A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{256428EE-638B-408A-8134-F45C5E31CBC0}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{23ACF534-45A8-4548-B88A-2861F2081697}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{6F21120E-0A28-420A-A827-D40F41A02898}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{AE617A3C-E56E-4B13-A7DA-2C85DB97C01D}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{C7A17B60-A8B9-4341-9D4E-BD5F5B492488}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [TCP Query User{1D37491B-082A-41CB-A6B7-C1CAE3098BFD}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe FirewallRules: [UDP Query User{CE0CCF28-6706-4107-BCD1-42C588B25D06}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe FirewallRules: [{5F38E756-9F5E-4525-BCE0-F881E82B51EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8D5079D8-0307-4EF6-988B-EA3068280EF3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{B2701504-408B-43DF-8039-04C3AF4AB6D7}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{A8A7DAB8-08E3-46F6-9D75-2E2288B167D1}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{4E0D09A3-1D1F-4835-B8A0-E9A9F81DF3F7}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{565DDA16-F0D5-423E-B410-AE84D9F8AD28}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{5719EF05-5265-4B65-B54E-B499B1DCC2F7}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{314C4CEE-0677-4916-B745-253317C9E9F8}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{8A3DF724-2BB9-4680-AA81-A194651061D1}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{F242F34F-E9B6-4935-8B8F-F14B70A7C4F0}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{E6C86CEB-4CDD-42D2-944C-1F57E9ECFA81}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [{49F2FDC6-4429-4F2F-A18A-0221A87EB517}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{793F0362-5793-4CB8-B1E6-C1260E61E227}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe FirewallRules: [{0BB3FCAB-EB60-4FF9-929E-AD33A98B8373}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 02-09-2017 18:46:25 Windows Update 06-09-2017 09:55:22 Windows Update 09-09-2017 10:01:30 Windows Update 12-09-2017 14:58:03 Windows Update 15-09-2017 17:44:30 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/16/2017 01:29:35 PM) (Source: ESENT) (EventID: 215) (User: ) Description: wlcomm (8616) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live\Contacts\default\15.4\: La sauvegarde a été interrompue, car elle a été abandonnée par le client ou la connexion avec le client a échoué. Error: (09/16/2017 01:29:35 PM) (Source: ESENT) (EventID: 217) (User: ) Description: wlcomm (8616) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live\Contacts\default\15.4\: Erreur (-1032) lors de la sauvegarde d’une base de données (fichier C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live\Contacts\default\15.4\DBStore\contacts.edb). Il ne sera pas possible de restaurer la base de données. Error: (09/16/2017 01:29:35 PM) (Source: ESENT) (EventID: 488) (User: ) Description: wlcomm (8616) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live\Contacts\default\15.4\: Une tentative de création du fichier « C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live\Contacts\default\15.4\DBStore\contacts.pat » a échoué en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de création de fichier échouera en indiquant l’erreur -1032 (0xfffffbf8). Error: (09/16/2017 01:29:32 PM) (Source: ESENT) (EventID: 215) (User: ) Description: wlmail (9668) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Calendars\: La sauvegarde a été interrompue, car elle a été abandonnée par le client ou la connexion avec le client a échoué. Error: (09/16/2017 01:29:32 PM) (Source: ESENT) (EventID: 217) (User: ) Description: wlmail (9668) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Calendars\: Erreur (-1032) lors de la sauvegarde d’une base de données (fichier C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Calendars\DBStore\WLCalendarStore.edb). Il ne sera pas possible de restaurer la base de données. Error: (09/16/2017 01:29:32 PM) (Source: ESENT) (EventID: 488) (User: ) Description: wlmail (9668) C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Calendars\: Une tentative de création du fichier « C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Calendars\DBStore\WLCalendarStore.pat » a échoué en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de création de fichier échouera en indiquant l’erreur -1032 (0xfffffbf8). Error: (09/16/2017 01:24:32 PM) (Source: ESENT) (EventID: 215) (User: ) Description: wlmail (9668) WindowsLiveMail0: La sauvegarde a été interrompue, car elle a été abandonnée par le client ou la connexion avec le client a échoué. Error: (09/16/2017 01:24:32 PM) (Source: ESENT) (EventID: 217) (User: ) Description: wlmail (9668) WindowsLiveMail0: Erreur (-1032) lors de la sauvegarde d’une base de données (fichier C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Mail.MSMessageStore). Il ne sera pas possible de restaurer la base de données. Error: (09/16/2017 01:24:32 PM) (Source: ESENT) (EventID: 488) (User: ) Description: wlmail (9668) WindowsLiveMail0: Une tentative de création du fichier « C:\Users\POPOTE ET POLOCHON\AppData\Local\Microsoft\Windows Live Mail\Mail.pat » a échoué en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de création de fichier échouera en indiquant l’erreur -1032 (0xfffffbf8). Error: (09/16/2017 11:09:33 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: POPOTEETPOLOCHO) Description: Échec de l’activation de l’application Microsoft.MicrosoftEdge_8wekyb3d8bbwe!ContentProcess avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Erreurs système: ============= Error: (09/16/2017 09:41:27 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/16/2017 09:41:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (09/16/2017 09:40:23 AM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Le service aswbIDSAgent ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Message Queuing s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Application Virtualization Client s’est terminé de façon inattendue pour la 1ème fois. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Office Software Protection Platform s’est terminé de façon inattendue pour la 1ème fois. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Management and Security Application User Notification Service s’est terminé de façon inattendue pour la 1ème fois. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Live Updater Service s’est terminé de façon inattendue pour la 1ème fois. Error: (09/16/2017 09:39:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) ME Service s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2017-09-16 11:09:17.119 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 11:09:16.539 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:16:28.123 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:15:55.375 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:15:54.909 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:15:14.285 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:14:09.994 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:13:13.209 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:12:51.626 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-09-16 09:12:49.064 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Celeron(R) CPU G460 @ 1.80GHz Pourcentage de mémoire utilisée: 32% Mémoire physique - RAM - totale: 8069.2 MB Mémoire physique - RAM - disponible: 5485.57 MB Mémoire virtuelle totale: 16261.2 MB Mémoire virtuelle disponible: 13242.04 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:456.45 GB) (Free:324.34 GB) NTFS Drive d: (DATA) (Fixed) (Total:456.96 GB) (Free:436.29 GB) NTFS Drive g: (Disque local) (Fixed) (Total:76.69 GB) (Free:27.82 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 825DF144) Partition 1: (Not Active) - (Size=18 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 76.7 GB) (Disk ID: 2F78D81B) Partition 1: (Not Active) - (Size=76.7 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================