ï»¿RÃ©sultats de l'Analyse supplÃ©mentaire de Farbar Recovery Scan Tool (x64) Version: 24.10.2018
ExÃ©cutÃ© par Emilie (28-10-2018 12:16:06)
ExÃ©cutÃ© depuis E:\
Windows 7 Ultimate Service Pack 1 (X64) (2015-05-24 20:03:40)
Mode d'amorÃ§age: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3959436280-4208717022-1337336285-500 - Administrator - Disabled)
Emilie (S-1-5-21-3959436280-4208717022-1337336285-1000 - Administrator - Enabled) => C:\Users\Emilie
HomeGroupUser$ (S-1-5-21-3959436280-4208717022-1337336285-1002 - Limited - Enabled)
InvitÃ© (S-1-5-21-3959436280-4208717022-1337336285-501 - Limited - Disabled)

==================== Centre de sÃ©curitÃ© ========================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ©.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installÃ©s ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'cachÃ©' ('Hidden') sont susceptibles d'Ãªtre ajoutÃ©s au fichier fixlist.txt pour qu'ils ne soient plus masquÃ©s. Les programmes publicitaires devront Ãªtre dÃ©sinstallÃ©s manuellement.)

Adobe Acrobat Reader DC - FranÃ§ais (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.008.20074 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - ALPS ELECTRIC CO., LTD.)
Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Atheros)
Avira Connect (HKLM-x32\...\{7774002B-60B3-4146-BF82-5BF767D468B8}) (Version: 1.2.77.41287 - Avira Operations GmbH & Co. KG) Hidden
Casto 3D Rangement (HKU\S-1-5-21-3959436280-4208717022-1337336285-1000\...\SquareClock_Production_Castorama_Dressing_Internet) (Version:  - SquareClock SAS)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.18.51 - Conexant)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.67 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Herramientas de correcciÃ³n de Microsoft Office 2016: espaÃ±ol (HKLM-x32\...\{90160000-001F-0C0A-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Support Solutions Framework (HKLM-x32\...\{9AAFAA9D-7B70-4A82-BC9A-EB667F4F4922}) (Version: 12.9.18.3 - HP Inc.)
Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft .NET Framework 4.7 (FranÃ§ais) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professionnel PlusÂ 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Network64 (HKLM\...\{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden
NVIDIA Logiciel systÃ¨me PhysX 9.12.0507 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0507 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 269.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 269.73 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.2.24.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.24.0 - NVIDIA Corporation)
NVIDIA Pilote graphique 269.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 269.73 - NVIDIA Corporation)
Outils de vÃ©rification linguistique 2016 de Microsoft OfficeÂ - FranÃ§ais (HKLM-x32\...\{90160000-001F-040C-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 269.73 (HKLM\...\{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 269.73 - NVIDIA Corporation) Hidden
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.1.28.36004 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{E6BB3749-AC9F-4BDE-84D9-1E22EF689573}) (Version: 5.1.28.35989 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{CC1439A7-3054-4C5F-AF60-7F770DAD7793}) (Version: 5.1.28.35989 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{23AFD2CD-3930-451E-A27C-07A9457CE07F}) (Version: 5.1.28.35989 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.2 - pdfforge GmbH)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.92 - Realtek Semiconductor Corp.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synei System Utilities (HKLM-x32\...\{BFDC3B26-7DB0-43D3-BC84-7E9649C157EA}_is1) (Version: 4.00 - Synei)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM-x32\...\{90160000-001F-0413-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB4092445) 32-Bit Edition (HKLM-x32\...\{90160000-0011-0000-0000-0000000FF1CE}_Office16.PROPLUS_{A61678A6-63B2-4ECD-80E9-E11F461820F9}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4092445) 32-Bit Edition (HKLM-x32\...\{90160000-002A-0000-1000-0000000FF1CE}_Office16.PROPLUS_{A61678A6-63B2-4ECD-80E9-E11F461820F9}) (Version:  - Microsoft)
Update for Skype for Business 2016 (KB4092445) 32-Bit Edition (HKLM-x32\...\{90160000-012B-040C-0000-0000000FF1CE}_Office16.PROPLUS_{A61678A6-63B2-4ECD-80E9-E11F461820F9}) (Version:  - Microsoft)
VAIO Care (HKLM-x32\...\{00B03993-F5A1-47B1-9C54-EC8FBDDDE17E}) (Version: 6.4.2.11150 - Sony Corporation) Hidden
VAIO Care (HKLM-x32\...\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}) (Version: 6.4.2.11150 - Sony Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2016 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2videowin}}_is1) (Version:  - videowinsoft.com)
Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-123B-4321-32A2557A92C7}}_is1) (Version:  - WindowsMovieMaker)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)

==================== PersonnalisÃ© CLSID (Avec liste blanche): ==========================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\context-menu.dll [2017-11-29] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2012-05-12] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

==================== TÃ¢ches planifiÃ©es (Avec liste blanche) =============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

Task: {09FB56DE-E9E7-4392-911A-F397CC3EF9C0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2018-08-30] (HP Inc.)
Task: {1D6C3CA3-0450-4E72-93F8-823AB8E17234} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {234D90AD-079B-4995-ADEE-E2680ED6B5F4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {23CD231E-D3DB-4946-AA83-2A3874E1F2A0} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {27E9334E-576D-44A1-8CD7-8CA8E4D3BBD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-05] (Google Inc.)
Task: {3AB9830D-D02C-4719-8115-280CDD594C1A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe
Task: {6007939C-C5CB-4B8D-AE92-5E54E9EAA3A7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-09-05] (Google Inc.)
Task: {8E0DB38D-F8D5-41FC-B346-5B980BE0B705} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater â Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-10-19] (HP Inc.)
Task: {A75C91E9-FD57-49C5-8AFC-E034B4DF472B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-02] (Adobe Systems Incorporated)
Task: {B1E6004E-271D-4857-AEBC-72430A8DF3D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-10-19] (HP Inc.)
Task: {B41E372C-42C9-40E4-9937-5B1974C7E6FC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {BF5046C7-E1CA-4493-8F53-B6B3685141FC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {C1F67984-0DAF-43EC-964C-B523C9D77922} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2011-02-16] (Sony Corporation)
Task: {C651B45A-EA2B-432C-A594-3C5D2D63BD6B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {E5EC6460-5291-4071-AB4C-7BF46DE79D50} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCOneClick.exe [2011-02-16] (Sony Corporation)
Task: {EA34B7BB-E8D8-467C-A9DD-A683E739B334} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\22.11.2.7\WSCStub.exe
Task: {FB26F3FD-C535-4469-9883-3EA60F419053} - System32\Tasks\{5EEA186B-8853-4694-8E0F-CFBB51979210} => C:\Windows\system32\pcalua.exe -a C:\Users\Emilie\Downloads\REDETH-00247766-0042(1)\REDETH-00247766-0042.EXE -d C:\Users\Emilie\Downloads\REDETH-00247766-0042(1)

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier tÃ¢che (.job) sera dÃ©placÃ©. Le fichier exÃ©cutÃ© par la tÃ¢che ne sera pas dÃ©placÃ©.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Raccourcis & WMI ========================

(Les Ã©lÃ©ments sont susceptibles d'Ãªtre inscrits dans le fichier fixlist.txt afin d'Ãªtre supprimÃ©s ou restaurÃ©s.)


ShortcutWithArgument: C:\Users\Emilie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://launchpage.org/?uid=oTlaAKjtgx1sXu9CbrfPtpkvH9vzPMzzUNHeSWjjfTkFzrIHpTic6fDdsBaudsMG%2Byc%3D

==================== Modules chargÃ©s (Avec liste blanche) ==============

2017-10-02 19:54 - 2017-10-02 19:54 - 000568624 _____ () C:\Users\Emilie\AppData\Roaming\cacaoweb\cacaoweb.exe
2016-12-06 15:09 - 2016-12-06 15:09 - 000069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000297472 _____ () C:\Program Files\Sony\VAIO Care\CRM\ManagedVAIORecoveryMedia.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000192000 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIORecovery.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000070656 _____ () C:\Program Files\Sony\VAIO Care\CRM\Logging.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000063488 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOCommon.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000215040 _____ () C:\Program Files\Sony\VAIO Care\CRM\OsServices.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000043008 _____ () C:\Program Files\Sony\VAIO Care\CRM\PluginFactory.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000260608 _____ () C:\Program Files\Sony\VAIO Care\CRM\RecoveryPartitionManager.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000043520 _____ () C:\Program Files\Sony\VAIO Care\CRM\XMLTools.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000059904 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOInstallAppsDrivers.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000157696 _____ () C:\Program Files\Sony\VAIO Care\CRM\InstallDB.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000138752 _____ () C:\Program Files\Sony\VAIO Care\CRM\InstallationTools.dll
2018-10-17 18:52 - 2011-02-25 16:14 - 000025600 _____ () C:\Program Files\Sony\VAIO Care\CRM\VAIOUtility.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, seul le flux de donnÃ©es additionnel (ADS - Alternate Data Stream) sera supprimÃ©.)


==================== Mode sans Ã©chec (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le "AlternateShell" sera restaurÃ©.)


==================== Association (Avec liste blanche) ===============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre.)


==================== Hosts contenu: ===============================

(Si nÃ©cessaire, la commande Hosts: peut Ãªtre incluse dans le fichier fixlist.txt afin de rÃ©initialiser le fichier hosts.)

2009-07-14 03:34 - 2016-06-14 14:00 - 000000838 ____N C:\Windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3959436280-4208717022-1337336285-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Emilie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Le mÃ©dia n'est pas connectÃ© Ã  internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activÃ©.

==================== MSCONFIG/TASK MANAGER Ã©lÃ©ments dÃ©sactivÃ©s ==

Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ©.

MSCONFIG\startupfolder: C:^Users^Emilie^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^zSpeedup.lnk => C:\Windows\pss\zSpeedup.lnk.Startup
MSCONFIG\startupreg: Apoint => %ProgramFiles%\Apoint\Apoint.exe
MSCONFIG\startupreg: Avira System Speedup Tray => "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.Systray.exe"
MSCONFIG\startupreg: Avira System Speedup User Starter => "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
MSCONFIG\startupreg: Avira SystrayStartTrigger => "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
MSCONFIG\startupreg: cAudioFilterAgent => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: ShStatEXE => "C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
MSCONFIG\startupreg: uTorrent => "C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

==================== RÃ¨glesPare-feu (Avec liste blanche) ===============

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

FirewallRules: [{81F316A7-F3F9-486D-B376-A699239853DD}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{678F5A05-BCF3-45C1-BA7B-89134D17214A}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{23D70087-1393-47D9-9738-E78FF62078AE}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F28D7B76-61A3-44C8-9506-1E4C8D9A8E6F}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2DAF4C1D-4189-461D-89F7-498CF9A39424}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7A3D2858-8A2F-466A-84D2-17AD230E9BE5}] => (Allow) C:\Users\Emilie\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{46508810-5E7B-4ED6-8AFF-6FBC23E0D6CA}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe
FirewallRules: [{DE54618A-CA84-467E-8EC1-43298B9F80BC}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe
FirewallRules: [{00EE40C3-FA86-45C2-9171-D549004652EB}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe
FirewallRules: [{320BA5D4-9882-4907-946A-FA9FE099BC2C}] => (Allow) C:\Program Files (x86)\McAfee\Common Framework\macmnsvc.exe
FirewallRules: [{71D899A9-5BB4-4CA2-B978-72AFD611F76C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe
FirewallRules: [{00EF114E-079E-4C84-98B1-FC536C022DD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe
FirewallRules: [{D875E727-C723-4778-8DDF-5F48A6626664}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{669674C7-69F6-4770-80CE-D3F13D01D9B4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{B5606C2D-F8A2-418A-B0DB-C6A43A8B9D94}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe
FirewallRules: [{7B2167C7-DC04-4519-9508-89EFA5684291}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe
FirewallRules: [{ED93D47B-FEC6-418F-BDD8-B43D736230C6}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{6D14B518-52D6-4365-AEC9-DE782654CF0E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [TCP Query User{104B086E-CF77-4D9F-AD40-42C485174BAF}C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{489C0767-336F-4F00-BDDB-E8A0C2B470F5}C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{CB4351C6-C2B9-4ECA-B70B-01A04DA2A9A0}C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{92D639FA-11C4-4061-8B29-5167D91F8AB3}C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\emilie\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [{8084D880-0B06-4247-8FD7-EABDBEE2EF08}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{20AC3B6A-EA8B-4A24-B3B0-390B195B7920}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe
FirewallRules: [{EDE48A4E-4F90-426E-B2C0-F2BEC1ABBD86}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9B2A0EAD-D5AD-4CBB-A679-FDCAEEA8B2BF}] => (Allow) LPort=2869
FirewallRules: [{D347841C-D704-4116-BC39-5C5E6A5F0207}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{76693712-6E36-43FE-9593-9DA3F0C3B028}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Allow) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [UDP Query User{EFE3FA1B-C3F1-4350-BACE-61677DDE8811}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Allow) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [TCP Query User{DB7168FA-BFFA-4D94-B7D9-3D4B706C7239}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [UDP Query User{67D5D2B5-20DB-47AE-AFED-9B483EAA97ED}C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe] => (Block) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdatertoastnotificationsbridge.exe
FirewallRules: [{3773BBA8-A249-4D51-AA70-921F0F9F9808}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

18-10-2018 07:12:08 Windows Update
18-10-2018 19:54:46 Windows Update
22-10-2018 11:59:53 Programme dâinstallation pour les modules Windows
22-10-2018 12:27:22 OpÃ©ration de restauration
22-10-2018 17:57:27 VAIO Care Automatic Restore Point
22-10-2018 19:04:43 VAIO Care Automatic Restore Point
22-10-2018 19:57:17 OpÃ©ration de restauration
25-10-2018 18:26:32 Programme dâinstallation pour les modules Windows
25-10-2018 18:57:24 Removed McAfee Agent.
25-10-2018 19:05:19 Removed Avira Software Updater
25-10-2018 19:08:18 Removed McAfee Agent.
25-10-2018 19:12:43 Removed McAfee Agent.
25-10-2018 19:14:06 McAfee VirusScan Enterprise supprimÃ©.
25-10-2018 19:21:12 Removed McAfee Agent.
25-10-2018 19:30:50 OpÃ©ration de restauration
27-10-2018 15:56:08 Removed Avira Software Updater
27-10-2018 16:01:03 McAfee VirusScan Enterprise supprimÃ©.
27-10-2018 16:11:23 Removed McAfee Agent.
27-10-2018 16:31:30 VAIO Care Automatic Restore Point
28-10-2018 11:58:13 Windows Update

==================== ÃlÃ©ments en erreur du Gestionnaire de pÃ©riphÃ©riques =============

Name: Generic Bluetooth Adapter
Description: Generic Bluetooth Adapter
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: GenericAdapter
Service: BTHUSB
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

Name: ContrÃ´leur de rÃ©seau
Description: ContrÃ´leur de rÃ©seau
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: ContrÃ´leur Ethernet
Description: ContrÃ´leur Ethernet
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erreurs du Journal des Ã©vÃ©nements: =========================

Erreurs Application:
==================
Error: (10/27/2018 04:11:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont Ã©chouÃ© lors du traitement de lâappel OnIdentity() dans lâobjet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary avgntflt.

System Error:
Le fichier spÃ©cifiÃ© est introuvable.
.

Error: (10/27/2018 04:03:49 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: Event-ID 5022

Error: (10/27/2018 04:01:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont Ã©chouÃ© lors du traitement de lâappel OnIdentity() dans lâobjet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary avgntflt.

System Error:
Le fichier spÃ©cifiÃ© est introuvable.
.

Error: (10/27/2018 03:50:27 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={8B35536C-4EA8-4E4D-ABB9-12716F692564}Â : Lâutilisateur Emilie-PC\Emilie a composÃ© le numÃ©ro de la connexion Connexion haut dÃ©bit. La connexion a Ã©chouÃ©. Code dâerreur retournÃ©Â : 651.

Error: (10/27/2018 03:50:16 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={ECDADB8A-48F2-42D9-BE76-4D6863E341F9}Â : Lâutilisateur Emilie-PC\Emilie a composÃ© le numÃ©ro de la connexion Connexion haut dÃ©bit. La connexion a Ã©chouÃ©. Code dâerreur retournÃ©Â : 651.

Error: (10/27/2018 03:50:12 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={DF236FE0-B590-41E0-AFD8-2C2BA43AC68C}Â : Lâutilisateur Emilie-PC\Emilie a composÃ© le numÃ©ro de la connexion Connexion haut dÃ©bit. La connexion a Ã©chouÃ©. Code dâerreur retournÃ©Â : 651.

Error: (10/27/2018 03:42:40 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={601675FC-14B9-463A-A1E6-2A77F4D5663D}Â : Lâutilisateur Emilie-PC\Emilie a composÃ© le numÃ©ro de la connexion Connexion haut dÃ©bit. La connexion a Ã©chouÃ©. Code dâerreur retournÃ©Â : 651.

Error: (10/27/2018 03:42:39 PM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={9B38DBB7-4A50-484D-A255-ED399CE5AD9B}Â : Lâutilisateur Emilie-PC\Emilie a composÃ© le numÃ©ro de la connexion Connexion haut dÃ©bit. La connexion a Ã©chouÃ©. Code dâerreur retournÃ©Â : 651.


Erreurs systÃ¨me:
=============
Error: (10/28/2018 12:00:40 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Ãchec inattendu. Code dâerreur : 490@01010004

Error: (10/28/2018 11:53:13 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Pml Driver HPZ12 sâest arrÃªtÃ© avec lâerreurÂ : 
Le module spÃ©cifiÃ© est introuvable.

Error: (10/28/2018 11:53:07 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Net Driver HPZ12 sâest arrÃªtÃ© avec lâerreurÂ : 
Le module spÃ©cifiÃ© est introuvable.

Error: (10/28/2018 11:52:29 AM) (Source: BTHUSB) (EventID: 17) (User: )
Description: La carte locale Bluetooth a Ã©chouÃ© d'une maniÃ¨re indÃ©terminÃ©e et ne sera pas utilisÃ©e. Le pilote a Ã©tÃ© dÃ©chargÃ©e.

Error: (10/27/2018 04:58:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Pml Driver HPZ12 sâest arrÃªtÃ© avec lâerreurÂ : 
Le module spÃ©cifiÃ© est introuvable.

Error: (10/27/2018 04:58:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Net Driver HPZ12 sâest arrÃªtÃ© avec lâerreurÂ : 
Le module spÃ©cifiÃ© est introuvable.

Error: (10/27/2018 04:58:12 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: La carte locale Bluetooth a Ã©chouÃ© d'une maniÃ¨re indÃ©terminÃ©e et ne sera pas utilisÃ©e. Le pilote a Ã©tÃ© dÃ©chargÃ©e.

Error: (10/27/2018 04:29:53 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Ãchec inattendu. Code dâerreur : 490@01010004


Windows Defender:
===================================
Date: 2015-05-26 07:24:22.171
Description: 
Lâanalyse Windows Defender a Ã©tÃ© arrÃªtÃ©e avant la fin.
ID de lâanalyseÂ : {6DCC2441-75F4-4DCB-A6EE-67250542BC64}
Type de lâanalyseÂ : Logiciel anti-espion
ParamÃ¨tres de lâanalyseÂ : Analyse rapide
UtilisateurÂ : AUTORITE NT\SERVICE RÃSEAU

Date: 2016-06-14 17:46:44.132
Description: 
Windows Defender a rencontrÃ© une erreur lors de la tentative de mise Ã  jour des signatures.
Nouvelle version des signaturesÂ : 
Version prÃ©cÃ©dente des signaturesÂ : 
Source de la mise Ã  jourÂ : Utilisateur
Type de signatureÂ : 
Type de la mise Ã  jourÂ : 
UtilisateurÂ : AUTORITE NT\SystÃ¨me
Version actuelle du moteurÂ : 
Version prÃ©cÃ©dente du moteurÂ : 1.1.12805.0
Code dâerreurÂ : 0x8050a003
Description de lâerreurÂ : Ce package ne contient pas de fichiers de dÃ©finitions Ã  jour pour ce programme. Pour plus dâinformations, voir Aide et support. 

Date: 2015-10-31 10:34:42.614
Description: 
Windows Defender a rencontrÃ© une erreur lors de la tentative de chargement des signatures et va essayer de revenir Ã  un jeu de signatures correct.
Signatures essayÃ©esÂ : Actuelle
Code dâerreurÂ : 0x80070002
Description de lâerreurÂ : Le fichier spÃ©cifiÃ© est introuvable. 
Version des signaturesÂ : 0.0.0.0
Version du moteurÂ : 0.0.0.0

CodeIntegrity:
===================================

Date: 2016-06-14 18:23:50.029
Description: 
Le module dâintÃ©gritÃ© du code ne peut pas vÃ©rifier lâintÃ©gritÃ© image du fichier \Device\HarddiskVolume2\Windows\System32\gdi32.dll car le jeu de hachages dâimages par page nâa pas Ã©tÃ© trouvÃ© sur le systÃ¨me.

==================== Infos MÃ©moire =========================== 

Processeur: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Pourcentage de mÃ©moire utilisÃ©e: 31%
MÃ©moire physique - RAM - totale: 8173.86 MB
MÃ©moire physique - RAM - disponible: 5627.84 MB
MÃ©moire virtuelle totale: 16345.87 MB
MÃ©moire virtuelle disponible: 13804.48 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:379.22 GB) NTFS
Drive e: () (Removable) (Total:3.73 GB) (Free:3.3 GB) NTFS

\\?\Volume{a2826b6f-0244-11e5-802e-806e6f6e6963}\ (RÃ©servÃ© au systÃ¨me) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: DDEF9603)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 3.7 GB) (Disk ID: 3FED66D2)
Partition 1: (Active) - (Size=3.7 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================