Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 17-12-2017 Exécuté par DANIEL (20-12-2017 13:24:25) Exécuté depuis C:\Users\DANIEL\Desktop Windows 7 Home Premium Service Pack 1 (X64) (2010-12-06 11:53:18) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-750368093-3711305697-2502008727-500 - Administrator - Disabled) DANIEL (S-1-5-21-750368093-3711305697-2502008727-1000 - Administrator - Enabled) => C:\Users\DANIEL HomeGroupUser$ (S-1-5-21-750368093-3711305697-2502008727-1002 - Limited - Enabled) Invité (S-1-5-21-750368093-3711305697-2502008727-501 - Limited - Enabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 123 PDF to Image v1.5 (HKLM-x32\...\123 PDF to Image_is1) (Version: - FreePDFtoImage.com) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adblock Plus pour IE (32-bits et 64-bits) (HKLM\...\{1C9A24E0-CA21-414D-8D21-22BF8981FC9F}) (Version: 1.5 - Eyeo GmbH) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated) Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.187 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.) Amazon Kindle (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\Amazon Kindle) (Version: 1.17.0.44170 - Amazon) Ancient Spirits - Columbus' Legacy (HKLM-x32\...\{64F229B7-4386-4086-875F-7F34F1334AF9}_is1) (Version: - Cerasus GmbH) ANT Drivers 0.1.2.0 (HKLM-x32\...\ANT Drivers_is1) (Version: 0.1.2.1 - ANT Drivers) Apple Application Support (32 bits) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team) Bing Bar (HKLM-x32\...\{D6C3C9E7-D334-4918-BD57-5B1EF14C207D}) (Version: 7.1.361.0 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden ByteScout PDF Viewer 2.10.482 (FREEWARE) (HKLM-x32\...\ByteScout PDF Viewer_is1) (Version: - ByteScout) C310 (HKLM-x32\...\{FE651900-D014-482F-AEBC-2928F57D1FB0}) (Version: 140.0.304.000 - Hewlett-Packard) Hidden calibre 64bit (HKLM\...\{E57E92D4-A512-4EFD-8401-92F363EA0B23}) (Version: 2.64.0 - Kovid Goyal) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.0 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.37 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP) Centre Souris et Claviers Microsoft (HKLM\...\{E3047FA0-2D6B-4BD6-8CD4-599955F1CE9D}) (Version: 2.2.173.0 - Microsoft Corporation) Hidden Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation) Champollion 2.0 (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\c8185987b48af87e) (Version: 2.0.17.2 - Paleotech) chartInstall (HKLM-x32\...\{2CF96265-0F15-4645-8440-625BDC5516A2}) (Version: 1.5.6 - MEMSOFT) Ciel Comptes Personnels 8.0 (HKLM-x32\...\{F1062DF9-D2A1-4724-BBAF-B514FBB641BB}) (Version: 8.00.0000 - Ciel) Citrix Receiver 4.5 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.5.0.10018 - Citrix Systems, Inc.) CloudReading (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 1.1.47.1220 - Foxit Corporation) Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - ) CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\CopyTrans Suite) (Version: 3.01 - WindSolutions) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CrystalDiskInfo 6.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.0.4 - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0195 - Disc Soft Ltd) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.77.000 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden devolo dLAN - Assistant de configuration (HKLM-x32\...\dlanconf) (Version: 14.0.0.0 - devolo AG) devolo dLAN Wireless extender - Configuration (HKLM-x32\...\dlanwlancfg) (Version: 1.0.0.0 - devolo AG) devolo EasyShare (HKLM-x32\...\easyshare) (Version: 4.0.0.0 - devolo AG) devolo Informer (HKLM-x32\...\dslmon) (Version: 22.0.0.0 - devolo AG) Doxillion Document Converter (HKLM-x32\...\Doxillion) (Version: 2.17 - NCH Software) Express Burn (HKLM-x32\...\ExpressBurn) (Version: - NCH Software) FormatFactory 3.00 (HKLM-x32\...\FormatFactory) (Version: 3.00 - Free Time) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 6.1.2.1224 - Foxit Corporation) FreeApps (HKLM-x32\...\FreeApp v1) (Version: 1.4.1 - VTools) GenoPresse version 2.0 (HKLM-x32\...\{F8F61B9F-9B09-4693-8ECD-76F1A3DCAEF8}_is1) (Version: 2.0 - Inergo Inc.) Geonaute KeyMaze 300 (HKLM-x32\...\{35DFE767-D0DB-4228-A64E-7E6D50B6FEA4}) (Version: - ) Geonaute Software (HKLM-x32\...\{548CBD79-054A-42F1-A1DA-B4F3FEF490ED}_is1) (Version: - Geonaute) Géorando Finistère - Morbihan (HKLM-x32\...\{1D548AE4-7229-4C15-AC38-A490702F5309}) (Version: 1.00.0000 - IGN France) Hidden Géorando Finistère - Morbihan (HKLM-x32\...\{44CCF010-679F-4935-BDE5-3740EFA1C544}) (Version: 1.00.0000 - IGN France) GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.) Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden GraphWeather Version 2.0.321 (HKLM-x32\...\GraphWeather_is1) (Version: - Antoine Guilmard) Groobax (HKLM-x32\...\Groobax_is1) (Version: - Groobax) Hercules Classic Webcam Drivers (HKLM-x32\...\{5F0EE12C-44B1-4FCB-87E3-4686C888774A}) (Version: 1.00.0000 - Hercules) Hercules Webcam Deluxe (HKLM-x32\...\{E6F043EB-FEF5-4C34-95AF-99B3EB68F7D9}) (Version: 3.2.2.5 - Hercules) Hercules Webcam Station Evolution SE (HKLM-x32\...\{C3C44248-B8F7-4B20-A5C7-994870B60F55}) (Version: 3.2.2.5 - Hercules) Heredis 2017 (HKLM\...\Heredis 2017_is1) (Version: 17 - BSD Concept) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Photosmart Prem C310 All-In-One Driver Software 14.0 Rel. 7 (HKLM\...\{4E484899-4F93-4086-88BA-56BDDF47A776}) (Version: 14.0 - HP) HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.5.37.19 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{B11FEAD6-F19E-473E-A8B1-AE58C058F575}) (Version: 12.8.47.1 - HP Inc.) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Update (HKLM-x32\...\{74DC0593-6BC6-4001-AD5F-D810AFB68D86}) (Version: 5.002.002.002 - Hewlett-Packard) HPAppStudio (HKLM-x32\...\{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}) (Version: 140.0.95.000 - Hewlett-Packard) Hidden HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.211.000 - Hewlett-Packard) Hidden Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation) iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden KeePass Password Safe 1.33 (HKLM-x32\...\KeePass Password Safe_is1) (Version: 1.33 - Dominik Reichl) KeePass Password Safe 2.27 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.27 - Dominik Reichl) La Banque Postale (HKLM-x32\...\{EF8DB698-BBF2-45EB-961D-5360A2C1A762}) (Version: 5.6.0.0 - e-Carte Bleue La Banque Postale) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) LedRenommer version 1.11.0 (HKLM-x32\...\LedRenommer_is1) (Version: 1.11.0 - LED) LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation) Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes) MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden MiCôSystème2 (HKLM-x32\...\{8B464E5E-D368-49A7-B251-56B1C5596076}) (Version: 2.1.0 - MiCô-Soft) Microsoft .NET Framework 4.7 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.7.02053 - Microsoft Corporation) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{9085040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Mozilla Firefox 57.0.2 (x64 fr) (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\Mozilla Firefox 57.0.2 (x64 fr)) (Version: 57.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.5.0.6534 - Mozilla) Mozilla Thunderbird 52.5.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.5.0 (x86 fr)) (Version: 52.5.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MuseScore 1.3 (HKLM-x32\...\MuseScore) (Version: 1.3.0 - Werner Schweer and Others) MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8211 - MyHeritage.com) NetSetMan 3.2.5 (HKLM-x32\...\NetSetMan_is1) (Version: 3.2.5 - Ilja Herlein) Network64 (HKLM\...\{48C0866E-57EB-444C-8371-8E4321066BC3}) (Version: 140.0.215.000 - Hewlett-Packard) Hidden ON_OFF Charge B10.0427.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE) Online Plug-in (HKLM-x32\...\{EADC2DA1-5566-4F3B-8AA3-A2EC15F22760}) (Version: 14.5.0.10018 - Citrix Systems, Inc.) Hidden OpenOffice 4.1.4 (HKLM-x32\...\{DAEDCAF7-E42C-41E1-822C-33658A2C6EAD}) (Version: 4.14.9788 - Apache Software Foundation) paint.net (HKLM\...\{F10AAD91-58DF-44EC-A647-810197141667}) (Version: 4.0.19 - dotPDN LLC) PDF Architect 4 Create Module (HKLM\...\{373FD974-6F3C-4946-99BA-B9E6E2608DE2}) (Version: 4.0.9.25450 - pdfforge GmbH) Hidden PDF Architect 4 Edit Module (HKLM\...\{5FF218A5-86BC-420A-A44A-66EA7C234068}) (Version: 4.0.9.25450 - pdfforge GmbH) Hidden PDF Architect 4 View Module (HKLM\...\{A8104CED-8954-4311-9894-FC1E0FDE3ACB}) (Version: 4.0.9.25450 - pdfforge GmbH) Hidden PDF to Excel Converter (HKLM-x32\...\{E4B114CA-A678-4DA2-A085-253951C1DE1A}_is1) (Version: 3.1 - Blue Label Soft) PhotoFiltre 7 (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\PhotoFiltre 7) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.3.0 - Prolific Technology INC) PL-2303 Vista Driver Installer (HKLM-x32\...\{EEC010D0-1252-4E1D-BAD9-F1B8F414535C}) (Version: 3.2.0.0 - Prolific) PS_AIO_07_C310_SW_Min (HKLM-x32\...\{582BA1F1-FAB4-41AD-A5E3-4A9535343461}) (Version: 140.0.304.000 - Hewlett-Packard) Hidden QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.56.316.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7746 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.) Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.80.000 - Hewlett-Packard) Hidden Self-Service Plug-in (HKLM-x32\...\{6A23E16C-62CB-466F-BF8F-C5BC2BA930B2}) (Version: 4.5.0.14155 - Citrix Systems, Inc.) Hidden SFR - Kit de connexion (HKLM-x32\...\SFR_Kit) (Version: 11.5.2.1 - SFR) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) SimpleOCR 3.1 (HKLM-x32\...\SimpleOCR 3.1) (Version: - ) Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) SmartWebPrinting (HKLM-x32\...\{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}) (Version: 140.0.186.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.214.000 - Hewlett-Packard) Hidden Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform) Spotify (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB) Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.256.000 - Hewlett-Packard) Hidden STDU Viewer version 1.6.375.0 (HKLM-x32\...\STDU Viewer_is1) (Version: 1.6.375.0 - STDUtility) Stream What You Hear (SWYH) version 1.3 (HKLM-x32\...\{5FBEA9D3-668E-4B88-BF6C-E1BCF441ECFD}_is1) (Version: 1.3 - Sebastien.warin.fr) Switch - Convertisseur de fichiers audio (HKLM-x32\...\Switch) (Version: - NCH Software) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 8.5.5.0 - 2BrightSparks) Syncios version 4.2.7 (HKLM-x32\...\{068A5D84-8419-4BDE-9689-FE65F412EFBB}_is1) (Version: 4.2.7 - Anvsoft, Inc.) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer) TerraExplorer (HKLM-x32\...\TerraExplorer) (Version: 5.1.3 - Skyline Software Systems, Inc.) tiptoi® Manager 3.1.1 (HKLM-x32\...\9978-5763-2995-5228) (Version: 3.1.1 - Ravensburger AG) Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden Transcript 2.3.2 (HKLM-x32\...\Transcript) (Version: 2.3.2 - Jacob Boerema) TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 4.0.10 - Tweaking.com) UK's Kalender 2.5.1 (HKLM-x32\...\UK's Kalender_is1) (Version: - Ulrich Krebs) Ultracopier 1.2.2.2 (HKLM-x32\...\Ultracopier) (Version: 1.2.2.2 - Ultracopier) Unity Web Player (HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Updater (HKLM-x32\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.53 - Creative Island Media, LLC) <==== ATTENTION VisuGed v9.16.1 (HKLM-x32\...\VisuGed_is1) (Version: - La boîte à outils du généalogiste) VLC media player 1.1.7 (HKLM-x32\...\VLC media player) (Version: 1.1.7 - VideoLAN) WavePad - Logiciel d'édition audio (HKLM-x32\...\WavePad) (Version: - NCH Software) WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.212.017 - Hewlett-Packard) Hidden Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - ) XnView 2.13 (HKLM-x32\...\XnView_is1) (Version: 2.13 - Gougelet Pierre-e) ZebHelpProcess 2016 (HKLM-x32\...\ZebHelpProcess_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\ChromeHTML: -> <==== ATTENTION ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> Pas de fichier ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2013-12-10] (Foxit Corporation) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers1: [Glary Utilities 3] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers1: [PDFArchitect4_ManagerExt] -> {3AECFCB3-8472-48E9-BC7B-5A3CD945C886} => C:\Program Files\PDF Architect 4\creator-context-menu.dll [2015-10-19] (pdfforge GmbH) ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit) ContextMenuHandlers1: [UnLockerMenu] -> {A6FF0E3A-8437-482C-8E04-4F9E15C57538} => -> Pas de fichier ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] () ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers2: [Glary Utilities 3] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation) ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} => -> Pas de fichier ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] () ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2014-02-03] (Intel Corporation) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers6: [Glary Utilities 3] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\Windows\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2010-03-15] () ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2010-03-15] () ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {108055FE-E06F-4548-8B4A-6EED69DADDD7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {19E15D44-4211-403A-9DB9-131CA92E5C61} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-11-08] (Piriform Ltd) Task: {1FB8457B-1BF0-46CD-B167-217A3B071084} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => c:\Program Files\Microsoft Device Center\devicecenter.exe Task: {28356C28-AC25-466D-B2D5-201D37372D95} - System32\Tasks\HPCeeScheduleForDANIEL => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.) Task: {2A4F3906-6E08-4A9B-AF8C-FFF93545204C} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation) Task: {37AE38F2-E654-459D-AC38-50BDE859DCAA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {3BA752ED-CBAA-4436-B9D9-B72ED3928F9C} - System32\Tasks\{E3F026FB-9DC8-4E74-87FC-87CD9FDCB29C} => C:\Windows\system32\pcalua.exe -a "D:\USB_Driver\PL-2303 Driver Installer_v20019v2028.exe" -d D:\USB_Driver Task: {3C2C3DFA-82C4-48A7-9B3C-DDE8526EC0CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {40DC5D99-3D81-4021-9BEB-41094CF0E189} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-21] () Task: {4BA38D80-A8A2-4EB2-9F66-7DC4C8BFF479} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {4D16F51A-4DBA-4485-BB89-409DDA37EF11} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(1): %windir%\system32\GWX\GWXUXWorker.exe -> /ScheduleUpgradeReminderTime Task: {4D16F51A-4DBA-4485-BB89-409DDA37EF11} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => Command(2): C:\Windows\system32\GWX\GWXDetector.exe Task: {5E5686D7-D196-40C8-B36F-89B9026917CD} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {65871715-F68E-41C8-AA57-9970B7675BA2} - System32\Tasks\{4E44F1C4-423C-4E67-A367-B62318C99158} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\BSD Concept\Heredis 2015\Heredis15.exe" -d "C:\Program Files (x86)\BSD Concept\Heredis 2015" Task: {674EB229-1AC0-4BE0-97D3-CAEFF6BCC583} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe Task: {81392CB2-6DD0-4C1A-AEB8-2D769F47F882} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {9342E4AE-8B3A-4C68-8F01-6FEF5DF5ECBE} - C:\Windows\System32\Tasks\Microsoft\Windows\PLA\System\{FCDCEE76-1D64-4E1C-AF5A-8E7B43550C31}_System Diagnostics => Command(1): C:\Windows\system32\rundll32.exe -> C:\Windows\system32\pla.dll,PlaHost "system\System Diagnostics" "$(Arg0)" Task: {9342E4AE-8B3A-4C68-8F01-6FEF5DF5ECBE} - C:\Windows\System32\Tasks\Microsoft\Windows\PLA\System\{FCDCEE76-1D64-4E1C-AF5A-8E7B43550C31}_System Diagnostics => Command(2): C:\Windows\system32\schtasks.exe -> /delete /f /tn "\Microsoft\Windows\PLA\System\{FCDCEE76-1D64-4E1C-AF5A-8E7B43550C31}_System Diagnostics" Task: {957C991F-BEE1-4FD3-9E1E-129D1BE634D7} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\WR_Tray_Icon.exe [2017-05-02] (Tweaking.com) Task: {9B33A1BB-4EF9-4FD3-93B9-0045ED8AF8FA} - System32\Tasks\{801F963E-727F-4DB6-BC0D-D3A818526B9D} => C:\Windows\system32\pcalua.exe -a "C:\Users\DANIEL\Downloads\Install_CopyTransControlCenter (1).exe" -d C:\Users\DANIEL\Downloads Task: {A299C672-B617-4731-B1D7-480BA4888434} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {A2E1358F-CD4D-4D34-8628-00CA81CBF30E} - System32\Tasks\{1C9ADE26-B68D-4E6D-9936-D68690DAB611} => C:\Windows\system32\pcalua.exe -a C:\Windows\SysWOW64\BDEADMIN.CPL -c BDE Administrator Task: {AFBD2B53-37D2-4648-B6CC-1D560810AAE6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-15] (Adobe Systems Incorporated) Task: {B54E1296-0666-4F98-8B56-AC548001F85A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {B584C5D6-283A-43E1-8DED-4F4F9D3D6B37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {B94EE31F-E5FE-4BCF-8538-A8DEC6A52FEF} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2010-11-20] (Microsoft Corporation) Task: {B9E67967-1676-4A1E-B00D-4F48A53538EB} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {C1E2AE72-0B4C-4B03-8330-365DC499D21D} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {C5812362-FA9E-4E61-B187-FA1655AC782F} - System32\Tasks\{0AB0AE53-0F5E-44A0-9A9F-1B6BCAB1030C} => C:\Windows\system32\pcalua.exe -a D:\Installation.exe -d D:\ Task: {C682F75B-F1F3-4C7D-99D0-5C5D00CA0DE7} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft) Task: {C9B413CE-B446-4791-997D-D4134EA3BAE2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-11-08] (HP Inc.) Task: {CF7E1C58-5954-4C9B-9EFA-228EE0B8B715} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-11-08] (Piriform Ltd) Task: {D10D92BC-CE28-4334-8EED-7B219218B6DD} - System32\Tasks\{76E2B284-FBA1-4FED-8A25-489F3EC41C98} => C:\Windows\system32\pcalua.exe -a C:\Users\DANIEL\Downloads\OOo_3.3.0_Win_x86_install_fr.exe -d C:\Users\DANIEL\Downloads Task: {E0CA9629-E1E9-4585-883D-FE63B64EF5BA} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(1): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshConfig Task: {E0CA9629-E1E9-4585-883D-FE63B64EF5BA} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(2): %windir%\system32\GWX\GWXConfigManager.exe -> /RefreshContent Task: {E0CA9629-E1E9-4585-883D-FE63B64EF5BA} - C:\Windows\System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => Command(3): C:\Windows\system32\GWX\GWXDetector.exe Task: {EB207652-755A-4D4E-A683-F73909A19710} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-10-11] (HP Inc.) Task: {F5A5F718-AAF3-469F-986B-4D8CEF6E0057} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {FABFCA88-41A5-4AA9-B66C-6028F437B3F4} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => C:\Windows\system32\GWX\GWXUXWorker.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\HPCeeScheduleForDANIEL.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\DANIEL\Documents\MAAF\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm ==================== Modules chargés (Avec liste blanche) ============== 2010-12-06 13:41 - 2010-03-15 11:28 - 000166400 _____ () C:\Program Files\WinRAR\rarext.dll 2009-10-30 04:08 - 2009-10-30 04:08 - 000022016 _____ () C:\Windows\System32\ml163sl6.dll 2015-01-20 22:35 - 2015-01-20 22:35 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 05:45 - 2015-10-13 05:45 - 001328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-12-11 19:08 - 2017-10-04 13:15 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-12-11 19:08 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-12-20 12:40 - 2017-12-20 12:40 - 002950528 _____ () C:\Users\DANIEL\Downloads\ZHPDiag3(1).exe 2010-12-06 13:41 - 2010-03-15 11:28 - 000141824 _____ () C:\Program Files\WinRAR\rarext32.dll 2017-10-12 05:23 - 2017-10-12 05:23 - 000988160 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxml2.dll 2017-10-12 05:23 - 2017-10-12 05:23 - 000170496 _____ () C:\Program Files (x86)\OpenOffice 4\program\libxslt.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> 008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> 00hq.com IE restricted site: HKU\.DEFAULT\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\.DEFAULT\...\01i.info -> 01i.info IE restricted site: HKU\.DEFAULT\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\.DEFAULT\...\05p.com -> 05p.com IE restricted site: HKU\.DEFAULT\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\.DEFAULT\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\.DEFAULT\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\.DEFAULT\...\0calories.net -> 0calories.net IE restricted site: HKU\.DEFAULT\...\0cj.net -> 0cj.net IE restricted site: HKU\.DEFAULT\...\0scan.com -> 0scan.com IE restricted site: HKU\.DEFAULT\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1-se.com -> 1-se.com IE restricted site: HKU\.DEFAULT\...\1001movie.com -> 1001movie.com IE restricted site: HKU\.DEFAULT\...\1001night.biz -> 1001night.biz IE restricted site: HKU\.DEFAULT\...\100gal.net -> 100gal.net IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> 100sexlinks.com Il y a 4788 plus de sites. IE trusted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\proginov.fr -> hxxps://wi.proginov.fr IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-750368093-3711305697-2502008727-1000\...\100sexlinks.com -> 100sexlinks.com Il y a 4788 plus de sites. ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2017-12-19 18:20 - 000000855 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-750368093-3711305697-2502008727-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DANIEL\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: !BingBar => "C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0oemBingBarSetup-Partner.EXE" /C:"BBSetup.exe cabLocation=.\BingBarPartnerConfig.cab ui=false ismu=2" MSCONFIG\startupreg: Adobe ARM => c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe MSCONFIG\startupreg: APSDaemon => c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe MSCONFIG\startupreg: GUDelayStartup => "c:\program files (x86)\glary utilities 5\startupmanager.exe" -delayrun MSCONFIG\startupreg: HotKeysCmds => c:\windows\system32\hkcmd.exe MSCONFIG\startupreg: IgfxTray => c:\windows\system32\igfxtray.exe MSCONFIG\startupreg: ISUSPM Startup => c:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload MSCONFIG\startupreg: Persistence => c:\windows\system32\igfxpers.exe MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s MSCONFIG\startupreg: SearchSettings => MSCONFIG\startupreg: SkyDrive => "c:\users\daniel\appdata\local\microsoft\skydrive\skydrive.exe" /background MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Speech Recognition => "c:\windows\speech\common\sapisvr.exe" -speechux -startup MSCONFIG\startupreg: Spotify => "c:\users\daniel\appdata\roaming\spotify\spotify.exe" /uri spotify:autostart MSCONFIG\startupreg: Spotify Web Helper => c:\users\daniel\appdata\roaming\spotify\data\spotifywebhelper.exe MSCONFIG\startupreg: swg => c:\program files (x86)\google\googletoolbarnotifier\googletoolbarnotifier.exe MSCONFIG\startupreg: Updater => c:\programdata\updater\updater.exe ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{D0CB7F44-BC4E-4B0C-A08A-5493759D50DD}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Block) C:\program files (x86)\google\google earth\client\googleearth.exe FirewallRules: [UDP Query User{8E98EA53-A604-4F04-A2AD-284A951414BB}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Block) C:\program files (x86)\google\google earth\client\googleearth.exe FirewallRules: [TCP Query User{661D5E46-723D-4D06-99F5-7F701A3DAFBC}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Block) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [UDP Query User{980A97A2-A7D0-4EAD-A76B-C39D4DBDB5C6}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Block) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [{E545E3C8-9182-42F7-9228-271F9316307B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{70AEF1CA-7FCC-4E24-8688-E4F6F68192CB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{93B982CE-53F1-485F-B283-1656A7A41963}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{FE45D113-B5D6-4F5C-BC48-A92EAA328816}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{CEE506AD-1098-4F27-A5E2-B0A4339429BE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{13799E68-F52C-401A-81DD-0B7A088F9463}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{6B81092B-A672-4AEB-9975-C1BF983FEAC7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{8D27B2E1-C81A-4750-AC9D-0F50A003D7AB}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{7AB2A298-3FB0-40EE-8BD4-067EFBC478CD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{161F7F72-5EE2-4F0B-8EFC-688BB45F47C3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{29428A92-C2C9-4F17-AB5D-F599E03CEBE1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{C2253F7B-764E-4F47-BDA3-666A50985321}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [TCP Query User{5762BE54-FDC6-4FDC-8481-2F035D41C748}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe FirewallRules: [UDP Query User{828DA5D9-8130-4BAD-B0E3-732511617F73}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe FirewallRules: [TCP Query User{6ED9DE5A-3600-4140-ACD3-C9443CB7141E}C:\program files (x86)\hercules\webcam station evolution se\stationevse.exe] => (Block) C:\program files (x86)\hercules\webcam station evolution se\stationevse.exe FirewallRules: [UDP Query User{41EE94B9-3F09-4D81-AC98-825D2C53B79D}C:\program files (x86)\hercules\webcam station evolution se\stationevse.exe] => (Block) C:\program files (x86)\hercules\webcam station evolution se\stationevse.exe FirewallRules: [{E99AEB9D-7983-4153-ADA9-C5CF0E8CE52B}] => (Allow) C:\Program Files (x86)\devolo\dlanwlancfg\dlanwlancfg.exe FirewallRules: [{27C85975-FF1E-4B68-8711-AAF1F2EDCA13}] => (Allow) C:\Program Files (x86)\devolo\informer\devinf.exe FirewallRules: [{087F4167-83B3-4216-88B6-44018DC90BFE}] => (Allow) C:\Program Files (x86)\devolo\informer\devinf.exe FirewallRules: [{EF7D82CA-D467-44E8-AF52-EDEAF2CD8086}] => (Allow) C:\Program Files (x86)\devolo\easyshare\easyshare.exe FirewallRules: [{32827ED7-5A99-4FC8-A3CB-C26B1A58C1B5}] => (Allow) C:\Program Files (x86)\devolo\easyshare\easyshare.exe FirewallRules: [TCP Query User{48F09149-DE40-4FDD-8465-91A7BC74DB52}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Allow) C:\program files (x86)\cobian backup 11\cbremotemanager.exe FirewallRules: [UDP Query User{B596F2EB-E4A4-467D-BE11-B022EE39A795}C:\program files (x86)\cobian backup 11\cbremotemanager.exe] => (Allow) C:\program files (x86)\cobian backup 11\cbremotemanager.exe FirewallRules: [TCP Query User{D21B971C-9EA9-454E-984D-BBC9A85F9569}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe FirewallRules: [UDP Query User{7A4ADD83-E117-4CFF-8230-FF3A9B8F2C20}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe FirewallRules: [TCP Query User{8EECA930-87A4-439B-8F88-6E99EC9847AE}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Block) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [UDP Query User{6FE68D51-4775-46AD-99DE-6C5312588B76}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Block) C:\program files (x86)\google\google earth\plugin\geplugin.exe FirewallRules: [{8768BD5C-D0ED-4809-A2E0-C02E9A03EB26}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{790721AD-381E-474E-B862-97421483A9CE}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{69707E23-A9DC-4FF5-B669-75BCD51F53E8}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{33951A04-6E1E-43CD-8260-ADFFC8EF9F76}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [TCP Query User{2858207C-9315-4C5F-BA82-3141D8FD2EF4}C:\users\daniel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{7D331A6C-A4B5-4293-AC9A-293B8DBD1A62}C:\users\daniel\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\daniel\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{B9B5B0E5-CB86-4E6C-85B0-945CD31CD62F}C:\users\daniel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\daniel\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{AEE86BD5-4957-47E1-9DDF-846743AD09F1}C:\users\daniel\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\daniel\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{C53AB151-AD64-4EFA-B210-C1A147FAA0AC}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe FirewallRules: [UDP Query User{7888A82A-A34D-44EF-B196-0716598C097F}C:\program files (x86)\stream what you hear\swyh.exe] => (Allow) C:\program files (x86)\stream what you hear\swyh.exe FirewallRules: [{EEFDB77D-9D9F-41D2-AD69-60368919F7A6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{DC3A17F1-8D32-41B9-A5FE-E2D4F9CFC47C}] => (Allow) LPort=2869 FirewallRules: [{7F1FC65B-05E6-4815-9F52-9A03E8242529}] => (Allow) LPort=1900 FirewallRules: [{474E2AE2-F507-4961-96A2-1A3610CEBBA2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3CA76D7A-CCA2-4179-967A-02083C91FD4D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{411AAE4B-19DE-42EC-ADCB-7716819CB40F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{6964B1F2-180A-41B2-8E02-E81DEA44BEC5}C:\program files (x86)\stream what you hear\swyh.exe] => (Block) C:\program files (x86)\stream what you hear\swyh.exe FirewallRules: [UDP Query User{66E71F24-3C9F-4217-9E52-9C1EE895E755}C:\program files (x86)\stream what you hear\swyh.exe] => (Block) C:\program files (x86)\stream what you hear\swyh.exe FirewallRules: [{0FC6E24F-8422-4CDD-AB0D-1D21C030B128}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F07DCFE1-74CF-4B9C-8CCE-926F82F6A9AD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{7E3C2B4F-CD8B-45E6-850C-D83B3869C63C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{EE6D311D-E2A8-48CA-982B-F246DF8D8018}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C5BEFA67-19E3-4535-B368-4DEEAE9C9817}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{A9BA06D3-ECD2-47F7-821A-56F8A1E7BA5F}C:\program files (x86)\bsd concept\heredis 2017\heredis17.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2017\heredis17.exe FirewallRules: [UDP Query User{B8ADC272-B6D3-454E-8A9F-132674A3BEA6}C:\program files (x86)\bsd concept\heredis 2017\heredis17.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2017\heredis17.exe FirewallRules: [{F7C11B60-D670-4482-8451-CEDADDEFEE83}] => (Allow) D:\setup\hpznui40.exe FirewallRules: [{814AB84C-468A-4787-85DE-B3C05E522684}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 29-11-2017 11:15:45 Supprimé OpenOffice 4.1.4 29-11-2017 11:20:34 Installé OpenOffice 4.1.4 30-11-2017 12:46:15 Windows Update 05-12-2017 12:47:13 Windows Update 09-12-2017 12:46:57 Windows Update 12-12-2017 19:45:27 Windows Update 13-12-2017 03:00:12 Windows Update 14-12-2017 13:18:18 Windows Update 18-12-2017 03:34:08 Windows Update 20-12-2017 13:07:21 Avant désinfection ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: ATAPI DVD A DH16A6S ATA Device Description: Lecteur de CD-ROM Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Lecteurs de CD-ROM standard) Service: cdrom Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Lecteur de CD-ROM Description: Lecteur de CD-ROM Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Lecteurs de CD-ROM standard) Service: cdrom Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. Name: Photosmart Prem C310 series Description: Photosmart Prem C310 series Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318} Manufacturer: HP Service: Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/20/2017 12:39:33 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme ZHPDiag3.exe version 2017.12.18.218 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : ff4 Heure de début : 01d379870065f7aa Heure de fin : 16 Chemin d’accès de l’application : C:\Users\DANIEL\Downloads\ZHPDiag3.exe ID de rapport : 52c076ed-e57a-11e7-866a-1c6f6545e2a9 Error: (12/20/2017 12:09:49 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme CKScanner.exe version 2.5.1.1 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 172c Heure de début : 01d37982fa33a52a Heure de fin : 0 Chemin d’accès de l’application : C:\Users\DANIEL\Downloads\CKScanner.exe ID de rapport : 4907fae5-e576-11e7-866a-1c6f6545e2a9 Error: (12/20/2017 12:09:21 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme CKScanner.exe version 2.5.1.1 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 178c Heure de début : 01d37982d9fba515 Heure de fin : 63 Chemin d’accès de l’application : C:\Users\DANIEL\Downloads\CKScanner.exe ID de rapport : 2fbafa9b-e576-11e7-866a-1c6f6545e2a9 Error: (12/20/2017 10:17:41 AM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (12/19/2017 11:35:36 PM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (12/19/2017 06:46:15 PM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (12/19/2017 06:45:42 PM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (12/19/2017 06:43:17 PM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: Impossible d’obtenir les informations de registre des compteurs de performances pour WSearchIdxPi pour l’instance en raison de l’erreur suivante : L’opération a réussi. 0x0. Error: (12/19/2017 06:42:57 PM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Impossible d’initialiser le contrôle des performances pour l’objet rassembleur. Les compteurs ne sont pas chargés ou l’objet mémoire partagée ne peut pas être ouvert. Cela affecte seulement la disponibilité des compteurs. Redémarrez l’ordinateur. Contexte : Application , Catalogue SystemIndex Error: (12/19/2017 06:42:55 PM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: Impossible d’initialiser le contrôle des performances pour le service rassembleur, car les compteurs ne sont pas chargés ou l’objet mémoire partagée ne peut pas être ouvert. Cela affecte seulement la disponibilité des compteurs de performances. Redémarrez l’ordinateur. Erreurs système: ============= Error: (12/20/2017 09:00:16 AM) (Source: DCOM) (EventID: 10010) (User: ) Description: Le serveur {B019E3BF-E7E5-453C-A2E4-D2C18CA0866F} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/19/2017 06:43:30 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger : cdrom Error: (12/19/2017 06:42:31 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Adobe Acrobat Update Service. Error: (12/19/2017 06:39:46 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:39:16 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:38:46 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:38:16 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:37:46 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:37:16 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/19/2017 06:36:46 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. CodeIntegrity: =================================== Date: 2015-01-05 18:28:09.289 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-01-05 18:28:09.195 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2012-07-25 17:20:24.374 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\DANIEL\AppData\Local\Temp\OnlineScanner\Anti-Virus\fsgk.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2012-07-25 17:20:24.327 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\DANIEL\AppData\Local\Temp\OnlineScanner\Anti-Virus\fsgk.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz Pourcentage de mémoire utilisée: 82% Mémoire physique - RAM - totale: 3831.49 MB Mémoire physique - RAM - disponible: 654 MB Mémoire virtuelle totale: 7661.17 MB Mémoire virtuelle disponible: 3664.19 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:465.16 GB) (Free:314.25 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 92F68A23) Partition 1: (Active) - (Size=612 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================