Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version: 26-01-2019 Exécuté par HAYS G (26-01-2019 16:25:30) Exécuté depuis C:\Users\HAYS G\Desktop Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X86) (2015-05-18 14:49:23) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2952179207-726333325-554689446-500 - Administrator - Disabled) HAYS G (S-1-5-21-2952179207-726333325-554689446-1000 - Administrator - Enabled) => C:\Users\HAYS G Invité (S-1-5-21-2952179207-726333325-554689446-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 2570 (HKLM\...\{EA7FE7AB-34AE-4e14-84C5-187E6EC0AB9B}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden 2570_Help (HKLM\...\{E60B8506-DDC7-433d-AF9E-999D0F543C4A}) (Version: 82.0.242.000 - Hewlett-Packard) Hidden 2570Trb (HKLM\...\{F66D5732-C2A6-4f88-B8FE-AEDA10355FBD}) (Version: 82.0.242.000 - Hewlett-Packard) Hidden 32 Bit HP CIO Components Installer (HKLM\...\{A80FA752-C491-4ED9-ABF0-4278563160B2}) (Version: 7.1.8 - Hewlett-Packard) Hidden 7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) 7-Zip 18.05 (HKLM\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated) Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.101 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated) AIO_CDB_ProductContext (HKLM\...\{E7112940-5F8E-4918-B9FE-251F2F8DC81F}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_CDB_Software (HKLM\...\{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_Scan (HKLM\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden Apple Application Support (32 bits) (HKLM\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{ABDE67C4-5876-4CDB-82A9-0CBACECC1C4A}) (Version: 12.1.0.25 - Apple Inc.) Apple Software Update (HKLM\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) ATI AVIVO Codecs (HKLM\...\{413B1AC7-E076-B765-C6BF-8780AE6124CB}) (Version: 10.10.0.41001 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{CC843AAD-000E-9AC0-ED35-95BFFC4B7019}) (Version: 3.0.745.0 - ATI Technologies, Inc.) ATI Problem Report Wizard (HKLM\...\{0B265E3D-17BD-3B47-D87A-FAC2B8E18124}) (Version: 3.0.745.0 - ATI Technologies) Hidden Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software) Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.) Browser Configuration Utility (HKLM\...\{D793423B-FF18-4A54-B9C9-75B3396BAAC4}) (Version: 1.0.10.0 - DeviceVM Inc.) <==== ATTENTION BufferChm (HKLM\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden CamStudio OSS Desktop Recorder (HKLM\...\{FD9C31B6-F572-414D-81E3-89368C97A125}_is1) (Version: 2.6 Beta r294 - CamStudio Open Source Dev Team) ccc-core-static (HKLM\...\{569FA061-07B7-3992-358E-3A58582B2E6D}) (Version: 2009.1001.2247.39050 - Nom de votre société) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP) CEWE Photo (HKLM\...\CEWE Photo) (Version: 6.2.6 - CEWE Stiftung u Co. KGaA) Convertidor de videos 3.89 (HKLM\...\Convertidor de videos_is1) (Version: - convertidor-de-videos.com) Copy (HKLM\...\{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}) (Version: 130.0.428.000 - Hewlett-Packard) Hidden CyberLink PhotoNow (HKLM\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.0.6904 - CyberLink Corp.) CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3305 - CyberLink Corp.) Destinations (HKLM\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM\...\{2FF8C687-DB7D-4adc-A5DC-57983EC25046}) (Version: 130.0.465.000 - Hewlett-Packard) Hidden DocProc (HKLM\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden Dropbox (HKLM\...\Dropbox) (Version: 65.4.177 - Dropbox, Inc.) Dropbox Update Helper (HKLM\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden EPU-4 Engine (HKLM\...\{8F66047B-1AF3-40D9-80D7-106E2EDC2C2A}) (Version: 1.02.01 - ) Étude pour l'amélioration du produit HP ENVY 5640 series (HKLM\...\{D20613AF-DFBD-4C85-861E-AD62AE90D5E0}) (Version: 40.11.1135.17143 - HP Inc.) Explor@ Park (HKLM\...\VTechDownloadManager) (Version: - VTech) Express Gate (HKLM\...\{99AD9D6D-A456-49EE-8360-F22EE7AA1272}) (Version: 1.4.10.35 - DeviceVM, Inc.) Extension Système de Microsoft Money (HKLM\...\{CF5193F7-6B37-11D5-B7D2-00AA00A204F1}) (Version: 10.0.80 - Microsoft) FastStone Capture 5.3 (French) (HKLM\...\FastStone Capture) (Version: 5.3 (French) - FastStone Soft) Fax (HKLM\...\{440B915A-0C85-45DB-92AE-75AE14704A64}) (Version: 130.0.418.000 - Hewlett-Packard) Hidden FLV-Media-Player (HKLM\...\{AB7A5DBA-BC45-489A-B4D2-2E8F8CABB9EA}) (Version: 2.0.3.2532 - HYBRIDWEB.de) Google Chrome (HKLM\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Earth Pro (HKLM\...\{BF354C72-AC4C-4A87-8D42-B089862BAE58}) (Version: 7.3.2.5491 - Google) Google Photos Backup (HKU\S-1-5-21-2952179207-726333325-554689446-1000\...\Google Photos Backup) (Version: 1.1.4.11 - Google, Inc.) Google Toolbar for Internet Explorer (HKLM\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden GPBaseService2 (HKLM\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden GPU Boost Driver (HKLM\...\{B8887E02-C910-4498-A7C0-186ABFDCD110}) (Version: 1.00.00 - ASUS) HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Dropbox Plugin (HKLM\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP) HP ENVY 5640 series Aide (HKLM\...\{50BB2714-5C7C-4040-965F-A23532545903}) (Version: 34.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP) HP Photo Creations (HKU\S-1-5-21-2952179207-726333325-554689446-1000\...\HP Photo Creations) (Version: 1.0.0.22192 - HP) HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP) HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP) HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Support Assistant (HKLM\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.7.50.3 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM\...\{ED5CE45D-842B-4C18-A002-87E16EA39BB3}) (Version: 12.10.49.21 - Hewlett-Packard Company) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1434 - HP Inc.) HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HPPhotoGadget (HKLM\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabelContent1 (HKLM\...\{681B698F-C997-42C3-B184-B489C6CA24C9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotosmartEssential (HKLM\...\{D79113E7-274C-470B-BD46-01B10219DF6A}) (Version: 2.04.0000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HPSSupply (HKLM\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden HydraVision (HKLM\...\{FB6DE932-24CA-D1C0-2FD8-1DFCE4A33CC5}) (Version: 4.2.114.0 - ATI Technologies Inc.) Hidden Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) iTunes (HKLM\...\{B006B2A5-7EAB-4C80-9C7C-34A95C553F12}) (Version: 12.9.3.3 - Apple Inc.) Java 8 Update 201 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) Logiciel de base du périphérique HP ENVY 5640 series (HKLM\...\{C30A5087-9962-411C-B9D1-0320455AFE91}) (Version: 40.11.1135.17143 - HP Inc.) MarketResearch (HKLM\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden Melody Player (HKLM\...\Melody Player) (Version: 6.3.3i - Myriad SARL) Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation) Microsoft Money (HKLM\...\{E7298FD8-1386-11D5-8D6C-0050DAD32D95}) (Version: 10.0.80 - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (HKLM\...\{9011040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Mozilla Firefox 64.0.2 (x86 fr) (HKLM\...\Mozilla Firefox 64.0.2 (x86 fr)) (Version: 64.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0.2.6947 - Mozilla) Mozilla Thunderbird 60.3.3 (x86 fr) (HKLM\...\Mozilla Thunderbird 60.3.3 (x86 fr)) (Version: 60.3.3 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Network (HKLM\...\{75247E38-5C9B-45D6-ADF8-E11CB56B4990}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden Notification Mail (HKLM\...\MailNotifier) (Version: 4.0.0-Fr1.0 - Orange) OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP) OpenOffice 4.1.2 (HKLM\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation) Orange Inside (HKU\S-1-5-21-2952179207-726333325-554689446-1000\...\Orange Inside) (Version: 2.4.0.0 - Orange) Orange Update (HKLM\...\Orange Update) (Version: 3.3.0.3 - Orange) Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PrintPratic (HKLM\...\PrintPratic) (Version: - Micro Application) QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6069 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) SafeZone Stable 4.58.2552.909 (HKLM\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden Samsung Kies (HKLM\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.17113.1 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Scan (HKLM\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden Serviio (HKLM\...\Serviio) (Version: 1.9.2 - Six Lines Ltd) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP) Smart Switch (HKLM\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17102.8 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17102.8 - Samsung Electronics Co., Ltd.) SmartSound Quicktracks 5 (HKLM\...\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) Hidden SmartSound Quicktracks 5 (HKLM\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.8 - SmartSound Software Inc.) SmartSound Quicktracks Plugin (HKLM\...\{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.3.0 - SmartSound Software Inc) Hidden SmartSound Quicktracks Plugin (HKLM\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.3.0 - SmartSound Software Inc) SmartWebPrinting (HKLM\...\{DC635845-46D3-404B-BCB1-FC4A91091AFA}) (Version: 130.0.457.000 - Hewlett-Packard) Hidden SolutionCenter (HKLM\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden Status (HKLM\...\{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}) (Version: 130.0.469.000 - Hewlett-Packard) Hidden Stellar Phoenix Photo Recovery (HKLM\...\Stellar Phoenix Photo Recovery_is1) (Version: 5.0.0.0 - Stellar Information Systems Ltd) Toolbox (HKLM\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden TrayApp (HKLM\...\{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}) (Version: 130.0.422.000 - Hewlett-Packard) Hidden UnloadSupport (HKLM\...\{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}) (Version: 11.0.0 - Hewlett-Packard) Hidden VeraCrypt (HKLM\...\VeraCrypt) (Version: 1.17 - IDRIX) Visionneuse Microsoft PowerPoint (HKLM\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) VTech Download Agent Library (HKLM\...\{DB083AE1-3354-4AAD-BD44-5F2CC4B2ECE6}) (Version: 1.00.0000 - VTech) Hidden WD Drive Utilities (HKLM\...\{48996CDD-DD81-4197-93FE-0971E73C5CA7}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden WD Drive Utilities (HKLM\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) WD Quick View (HKLM\...\{9C78C31D-53B8-438F-AF1A-5F89ECA6C4F0}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD Security (HKLM\...\{9116D574-CB51-485F-B2A0-4A0B5C8945A2}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{63482A43-9209-4454-827F-1537D1EF564E}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM\...\{4555885d-a64c-4234-9aac-72a8a6b5590b}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WebReg (HKLM\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden WikiMotInstaller version 1.0 (HKLM\...\{B55B479C-5CA9-41BD-9611-24BD3F9C39EA}_is1) (Version: 1.0 - WikiMot) Wondershare Data Recovery(Build 5.0.6.1) (HKLM\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 5.0.6.1 - Wondershare Software Co.,Ltd.) Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version: - ) YT Downloader 3 (HKLM\...\YT Downloader_is1) (Version: - Youtomato) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) HKU\S-1-5-21-2952179207-726333325-554689446-1000\...\ChromeHTML: -> <==== ATTENTION CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\HAYS G\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.27.5\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.5\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.30.3\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.31.5\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.28.1\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.28.13\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.29.5\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.3\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.7\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{9356e2bb-6c9a-43c0-a771-5cacbdab6afe}\InprocServer32 -> C:\Users\HAYS G\AppData\Roaming\HP Photo Creations\RLPNUpload.dll (RocketLife) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{A10E0335-AFCA-4E7E-975F-CA30235FB29A}\InprocServer32 -> C:\Users\HAYS G\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.22.3\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\npGoogleUpdate3.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.32.7\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{cc05a616-ddb3-4cc0-9a21-dc0e9962b444}\InprocServer32 -> C:\Users\HAYS G\AppData\Roaming\HP Photo Creations\ContentMan.dll (RocketLife) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.29.1\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.28.15\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{d79b57ed-727c-4ab8-ba67-e7c6fd30fac1}\localserver32 -> C:\Program Files\TotalAV\TotalAV.exe => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\GoogleUpdateOnDemand.exe (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.23\psuser.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\HAYS G\AppData\Local\Google\Update\1.3.33.17\psuser.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2952179207-726333325-554689446-1000_Classes\CLSID\{ff280b55-14f1-49ae-b40f-15f5294ce630}\InprocServer32 -> C:\Users\HAYS G\AppData\Roaming\HP Photo Creations\RocketEngine.dll (Visan inc.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-22] (AVAST Software) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-22] (AVAST Software) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-22] (AVAST Software) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\HAYS G\AppData\Local\MEGAsync\ShellExtX32.dll -> Pas de fichier ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\ATI.ACE\Core-Static\atiacmxx.dll [2009-10-01] (Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files\Dropbox\Client\DropboxExt.26.0.dll [2019-01-22] (Dropbox, Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-22] (AVAST Software) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {019A9154-4977-4434-BDEC-1BCAEFB52EA2} - System32\Tasks\HP AR Program Upload - a42f7af01214471a84b2dd24a7f71f3bbdeb705c61074d50bfaa91481efc52bb => C:\Program Files\HP\HP ENVY 5640 series\bin\HPRewards.exe [2017-05-23] (HP Inc.) Task: {02579B2E-36B9-4AAE-945A-1705AF3E2EC2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-12-10] (HP Inc.) Task: {06D86AD9-1D41-46D3-A740-7CC4825C9358} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {18DF850B-FBC1-40B0-BA06-7770A23CFD98} - System32\Tasks\APSnotifierPP3 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {1BE01A1C-4A3E-4E59-A48C-80FBD32DC599} - System32\Tasks\{1263EFA5-1961-0F07-8B45-4546375A4B8C} => C:\PROGRA~1\COMMON~1\Tolek\peteminu.exe Task: {1CE0D963-4C53-43F9-994A-9FAEAAE6A4EF} - System32\Tasks\{2289BB8B-F7BE-488E-872D-E41CF8A5A203} => C:\Windows\system32\pcalua.exe -a "C:\Users\HAYS G\Downloads\PC_Sync_Orange (3).exe" -d "C:\Users\HAYS G\Desktop" Task: {23D80470-2438-4297-96CF-57263B65B795} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-16] () Task: {281D41FE-C93F-4BEE-A75E-C954221382A0} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_114_Plugin.exe [2019-01-13] (Adobe Systems Incorporated) Task: {2BA4824E-DEAE-441B-B8A4-997509889F3D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {3518D0FF-AD84-406C-A1F1-8559C4BE5443} - System32\Tasks\HPCeeScheduleForHAYS G => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {3B03CC0E-BD4B-4F0A-8575-8CD79501BCC9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-12-24] (HP Inc.) Task: {3FDBB279-4A07-4643-AD61-61DEE5479A52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {444323B7-34A8-4FCE-82EE-37876A4DFC56} - System32\Tasks\APSnotifierPP1 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: {475D0F7F-9463-4168-9D19-BE053EE868D5} - System32\Tasks\HPCustParticipation HP ENVY 5640 series => C:\Program Files\HP\HP ENVY 5640 series\Bin\HPCustPartic.exe [2017-05-23] (HP Inc.) Task: {485CB275-CDCB-4563-8FE7-9EA8D8FEDEC7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2019-01-10] (Piriform Software Ltd) Task: {4DB8632E-CD88-4274-AA75-E6A35DD6BED8} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2016-10-15] (Dropbox, Inc.) Task: {5127925D-3F33-4141-BC8C-4CBD82825066} - System32\Tasks\{30489DF0-C701-431E-B38F-C5D62BE59ED8} => C:\Windows\system32\pcalua.exe -a D:\Drivers\GPU_Boost\setup.exe -d D:\Drivers\GPU_Boost\ Task: {523CF619-F2E7-4D63-B7AE-3301C57E93BA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2952179207-726333325-554689446-1000UA => C:\Users\HAYS G\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {58EB2ABF-CFC3-4D4C-ABC3-DCE61F367440} - System32\Tasks\SafeZone scheduled Autoupdate 1458682664 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe Task: {67A60D46-D101-4F68-82DA-B7BB3EFC3441} - System32\Tasks\{3E735B9A-9DCD-4DCE-AAD9-F6125765A407} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E} Task: {6CBE2C6C-7A4A-4842-AED2-04121B637794} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\HAYS [Argument = G\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe] Task: {709A9D27-B7C7-4C6F-B33F-FF86ABF59CC6} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat <==== ATTENTION Task: {769F0096-C5F5-47AD-8458-6EF5A129C5D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-12-10] (HP Inc.) Task: {7769C84B-1A46-4979-AD75-6FAB17AE64C8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2019-01-13] (Adobe Systems Incorporated) Task: {7CE22C46-078D-42E6-B924-FD7DF76DFDDA} - System32\Tasks\ASUS\ASUS SIX Engine => C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe [2010-02-03] (ASUSTeK Computer Inc.) Task: {80F454D5-7637-474B-8911-0E6698317D9F} - System32\Tasks\{AE9CB73F-FEFD-4912-807F-2D8CB226EDCB} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Microsoft Office\Office\Install\Acme.exe" -c /w Off97Pro.STF Task: {83918216-6C7D-45E7-9767-5B69D1340158} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2952179207-726333325-554689446-1000Core => C:\Users\HAYS G\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {8A009F9B-1E06-45BF-AC7F-11466392FA50} - System32\Tasks\HP Photo Creations Communicator => C:\Users\HAYS G\AppData\Roaming\HP Photo Creations\Communicator.exe [2011-11-15] () Task: {90D4D4F6-7A10-4631-A06C-506C5DF923F1} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service" Task: {90D4D4F6-7A10-4631-A06C-506C5DF923F1} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service" Task: {9D2B4099-4607-41D6-B5AB-1CFA1E33B04F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.) Task: {9E79DA62-130D-4E19-9A4E-E6016ACC14DF} - System32\Tasks\{2AA5471E-EF2C-497E-A602-3D2A52F40532} => C:\Windows\system32\pcalua.exe -a D:\setup.exe -d D:\ Task: {A8C9C6B5-B175-475B-A1FF-2302B2F02A1C} - System32\Tasks\HP AR Program Upload - 93636e0def3c4d55a30a1726d1997d1ef0ee6e3aa8e446c68763fe5d79ec56c4 => C:\Program Files\HP\HP ENVY 5640 series\bin\HPRewards.exe [2017-05-23] (HP Inc.) Task: {B9E96B69-2138-44D1-B3F2-009E104E8121} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-17] (AVAST Software) Task: {BC162023-2D48-4063-A8E5-B2FD658C8A41} - System32\Tasks\{11EBD637-FB3A-4A91-BA4B-10EE978A1CCD} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2019-01-22] (AVAST Software) Task: {BF084860-1954-4616-AF86-D9838F572025} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {D0807078-437E-48AC-B544-F4FDC42FAB39} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2019-01-02] (HP Inc.) Task: {D678FFC2-9564-461B-9D14-924C06EE77B8} - System32\Tasks\{75DEDC87-2518-4811-A875-146E7492E037} => C:\Windows\system32\pcalua.exe -a D:\Setup.exe -d D:\ Task: {E3E426DA-CE2B-4F22-A6E9-8484596917D8} - System32\Tasks\{0C4B5EA4-FC67-4CA7-93C9-F7C34D95416C} => C:\Windows\system32\pcalua.exe -a "C:\Users\HAYS G\Downloads\PC_Sync_Orange (4).exe" -d "C:\Users\HAYS G\Desktop" Task: {E91CF571-26C8-45FC-8C5F-FA9F45858E1A} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files\Dropbox\Update\DropboxUpdate.exe [2016-10-15] (Dropbox, Inc.) Task: {ED688941-FEA0-4617-BCDA-577848B8EA64} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {F3D1E0DC-AC9D-4E4B-BD3F-C2A22D196B7E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-22] (AVAST Software) Task: {F4885BE6-22C5-40AB-95A5-5FAF3DCB38B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2019-01-10] (Piriform Ltd) Task: {F7D00424-0007-4BE6-A30C-3163B77705C4} - System32\Tasks\{FC4FE959-8D57-4DB1-8336-1D41C06A2BD9} => C:\Windows\system32\pcalua.exe -a "C:\Users\HAYS G\Downloads\PDR9_ContentPack_1519.2427_VDE100318-02.exe" -d "C:\Users\HAYS G\Desktop" Task: {FC278E52-03A0-4CA6-8D59-60637AB82DD6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {FF31C8B0-FB93-4ED8-AE57-80A3FD7C2357} - System32\Tasks\APSnotifierPP2 => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files\AnyProtectEx\AnyProtect.exe <==== ATTENTION Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\Users\HAYS G\AppData\Roaming\HP Photo Creations\Communicator.exe Task: C:\Windows\Tasks\HPCeeScheduleForHAYS G.job => C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\Windows\Tasks\{1263EFA5-1961-0F07-8B45-4546375A4B8C}.job => C:\PROGRA~1\COMMON~1\Tolek\peteminu.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\HAYS G\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Mes sites Web sur MSN\target.lnk -> hxxp://www.msnusers.co ShortcutWithArgument: C:\Users\HAYS G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.mystartsearch.com/?type=sc&ts=1436284770&z=40b11fb957917a556735febgez0caq3ofb1z3m7m1g&from=slb2&uid=HitachiXHDS721010CLA332_JP9921HD3PHJMH3PHJMHX ShortcutWithArgument: C:\Users\HAYS G\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://r.orange.fr/r/Oodc_oi_promoHP_shortcut?ref=O_OI_defaultPage_CHe32_w7e32_promoHP_shortcut ShortcutWithArgument: C:\Users\HAYS G\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://r.orange.fr/r/Oodc_oi_promoHP_shortcut?ref=O_OI_defaultPage_CHe32_w7e32_promoHP_shortcut ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://r.orange.fr/r/Oodc_oi_promoHP_shortcut?ref=O_OI_defaultPage_CHe32_w7e32_promoHP_shortcut ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxps://r.orange.fr/r/Oodc_oi_promoHP_shortcut?ref=O_OI_defaultPage_CHe32_w7e32_promoHP_shortcut ==================== Modules chargés (Avec liste blanche) ============== 1996-12-16 23:00 - 1996-12-16 23:00 - 000022016 _____ () C:\Windows\system32\docobj.dll 2019-01-22 17:20 - 2019-01-22 17:20 - 000570248 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2019-01-22 17:20 - 2019-01-22 17:20 - 000475016 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll 2019-01-22 17:20 - 2019-01-22 17:20 - 001030536 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll 2019-01-22 17:20 - 2019-01-22 17:20 - 001793928 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll 2019-01-26 13:34 - 2019-01-26 13:34 - 005764752 _____ () C:\Program Files\AVAST Software\Avast\defs\19012600\algo.dll 2015-05-20 08:03 - 2009-03-19 21:35 - 000208896 _____ () C:\Program Files\ASUS\EPU-4 Engine\AiNap.dll 2015-05-20 08:03 - 2009-03-19 21:35 - 000008704 _____ () C:\Program Files\ASUS\EPU-4 Engine\vvc.dll 2015-05-20 08:03 - 2009-01-15 13:55 - 000565248 _____ () C:\Program Files\ASUS\EPU-4 Engine\pngio.dll 2015-05-20 08:03 - 2009-09-30 04:33 - 000024576 ____N () C:\Windows\system32\AsIo.dll 2015-05-20 08:03 - 2009-03-25 15:53 - 000053248 _____ () C:\Program Files\ASUS\EPU-4 Engine\AsSpindownTimeout.dll 2018-04-30 19:10 - 2018-04-30 19:10 - 000413696 _____ () C:\Program Files\Serviio\bin\ServiioService.exe 2018-05-03 16:25 - 2018-05-03 16:25 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2019-01-23 00:41 - 2019-01-22 14:14 - 001213768 _____ () C:\Program Files\Dropbox\Client\dropbox_watchdog.dll 2019-01-23 00:41 - 2019-01-22 14:14 - 002103112 _____ () C:\Program Files\Dropbox\Client\dropbox_crashpad.dll 2019-01-23 00:37 - 2019-01-22 14:16 - 000023376 _____ () C:\Program Files\Dropbox\Client\tornado.speedups.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000025456 _____ () C:\Program Files\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000148968 _____ () C:\Program Files\Dropbox\Client\_cffi_backend.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 001878888 _____ () C:\Program Files\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000025960 _____ () C:\Program Files\Dropbox\Client\cryptography.hazmat.bindings._padding.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000118232 _____ () C:\Program Files\Dropbox\Client\pywintypes36.dll 2019-01-23 00:37 - 2019-01-22 14:14 - 000109024 _____ () C:\Program Files\Dropbox\Client\win32api.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000082760 _____ () C:\Program Files\Dropbox\Client\fastpath.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000418776 _____ () C:\Program Files\Dropbox\Client\pythoncom36.dll 2019-01-23 00:41 - 2019-01-22 14:15 - 000074072 _____ () C:\Program Files\Dropbox\Client\psutil._psutil_windows.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000027616 _____ () C:\Program Files\Dropbox\Client\win32event.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000049128 _____ () C:\Program Files\Dropbox\Client\win32process.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000026600 _____ () C:\Program Files\Dropbox\Client\win32clipboard.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000131552 _____ () C:\Program Files\Dropbox\Client\win32file.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000182752 _____ () C:\Program Files\Dropbox\Client\win32gui.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000027616 _____ () C:\Program Files\Dropbox\Client\win32pipe.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000119272 _____ () C:\Program Files\Dropbox\Client\win32security.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:16 - 000401752 _____ () C:\Program Files\Dropbox\Client\win32com.shell.shell.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000028640 _____ () C:\Program Files\Dropbox\Client\win32job.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:16 - 000034664 _____ () C:\Program Files\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000062304 _____ () C:\Program Files\Dropbox\Client\winshell.compiled._winshell.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000023520 _____ () C:\Program Files\Dropbox\Client\mmapfile.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 001457488 _____ () C:\Program Files\Dropbox\Client\dbxlog._dbxlog.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000027488 _____ () C:\Program Files\Dropbox\Client\crashpad.compiled._Crashpad.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000053736 _____ () C:\Program Files\Dropbox\Client\win32service.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000065504 _____ () C:\Program Files\Dropbox\Client\win32evtlog.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000025944 _____ () C:\Program Files\Dropbox\Client\cpuid.compiled._cpuid.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:16 - 000068968 _____ () C:\Program Files\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000028520 _____ () C:\Program Files\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000032224 _____ () C:\Program Files\Dropbox\Client\win32ts.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 001755472 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtCore.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000101200 _____ () C:\Program Files\Dropbox\Client\PyQt592.sip.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 001885520 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtGui.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000523600 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtNetwork.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 003755344 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWidgets.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000061408 _____ () C:\Program Files\Dropbox\Client\win32print.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000169304 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000061784 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebEngineCore.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000042840 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebChannel.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000202584 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtPrintSupport.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000117584 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebKit.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000214872 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebKitWidgets.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000099664 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWinExtras.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000029544 _____ () C:\Program Files\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000028008 _____ () C:\Program Files\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000033632 _____ () C:\Program Files\Dropbox\Client\winreindex.compiled._winreindex.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:14 - 000027624 _____ () C:\Program Files\Dropbox\Client\win32profile.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:16 - 000025960 _____ () C:\Program Files\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000025448 _____ () C:\Program Files\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000025960 _____ () C:\Program Files\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000031600 _____ () C:\Program Files\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000486880 _____ () C:\Program Files\Dropbox\Client\winxpgui.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000051552 _____ () C:\Program Files\Dropbox\Client\winrpcserver.compiled._RPCServer.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000029040 _____ () C:\Program Files\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 011941712 _____ () C:\Program Files\Dropbox\Client\nucleus_python.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000029024 _____ () C:\Program Files\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:14 - 000036312 _____ () C:\Program Files\Dropbox\Client\librsync.dll 2019-01-23 00:37 - 2019-01-22 14:16 - 000025960 _____ () C:\Program Files\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000433992 _____ () C:\Program Files\Dropbox\Client\dropbox_sqlite_ext.DLL 2019-01-23 00:37 - 2019-01-22 14:16 - 000038240 _____ () C:\Program Files\Dropbox\Client\wind3d11.compiled._wind3d11.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000026432 _____ () C:\Program Files\Dropbox\Client\libEGL.DLL 2019-01-23 00:41 - 2019-01-22 14:15 - 001967936 _____ () C:\Program Files\Dropbox\Client\libGLESv2.dll 2019-01-23 00:41 - 2019-01-22 14:15 - 000054096 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtWebEngine.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:17 - 000029544 _____ () C:\Program Files\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp36-win32.pyd 2019-01-23 00:37 - 2019-01-22 14:16 - 000025448 _____ () C:\Program Files\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000557392 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtQuick.cp36-win32.pyd 2019-01-23 00:41 - 2019-01-22 14:15 - 000335184 _____ () C:\Program Files\Dropbox\Client\PyQt5.QtQml.cp36-win32.pyd 2019-01-15 01:28 - 2019-01-15 01:28 - 001042744 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-12-08 01:49 - 2017-12-08 01:49 - 000076088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2019-01-23 16:35 - 2019-01-23 16:35 - 001042744 _____ () C:\Program Files\iTunes\libxml2.dll 2019-01-23 16:35 - 2019-01-23 16:35 - 000076088 _____ () C:\Program Files\iTunes\zlib1.dll 2019-01-10 11:01 - 2019-01-10 11:01 - 000107712 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2018-12-13 08:03 - 2018-12-12 05:58 - 004430304 _____ () C:\Program Files\Google\Chrome\Application\71.0.3578.98\libglesv2.dll 2018-12-13 08:03 - 2018-12-12 05:58 - 000097248 _____ () C:\Program Files\Google\Chrome\Application\71.0.3578.98\libegl.dll 2015-10-21 15:50 - 2015-10-21 15:50 - 000988160 _____ () C:\Program Files\OpenOffice 4\program\libxml2.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:58DD92AC [0] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-2952179207-726333325-554689446-1000\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:04 - 2019-01-04 16:51 - 000000826 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\ATI.ACE\Core-Static;C:\Program Files\QuickTime\QTSystem\ HKU\S-1-5-21-2952179207-726333325-554689446-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\HAYS G\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AMD External Events Utility => 2 MSCONFIG\Services: Apple Mobile Device => 2 MSCONFIG\Services: BCUService => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: dbupdate => 2 MSCONFIG\Services: dbupdatem => 3 MSCONFIG\Services: DbxSvc => 2 MSCONFIG\Services: DvmMDES => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: Orange update Core Service => 2 MSCONFIG\Services: RichVideo => 2 MSCONFIG\Services: UNS => 2 MSCONFIG\Services: WDBackup => 2 MSCONFIG\Services: WDDriveService => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupreg: BCU => "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe" MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR MSCONFIG\startupreg: DriveUtilitiesHelper => C:\Program Files\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe MSCONFIG\startupreg: Dropbox => "C:\Program Files\Dropbox\Client\Dropbox.exe" /systemstartup MSCONFIG\startupreg: Google Update => "C:\Users\HAYS G\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: HP ENVY 5640 series (NET) => "C:\Program Files\Hp\HP ENVY 5640 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH5546W1DJ05ZC:NW" -scfn "HP ENVY 5640 series (NET)" -AutoStart 1 MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch MSCONFIG\startupreg: MailNotifier => C:\Program Files\Orange\MailNotifier\MailNotifier.exe MSCONFIG\startupreg: MoneyStartUp10.0 => "C:\Program Files\Microsoft Money\System\Activation.exe" MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun MSCONFIG\startupreg: StartCCC => "C:\ATI.ACE\Core-Static\CLIStart.exe" MSRun MSCONFIG\startupreg: WD Drive Unlocker => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe MSCONFIG\startupreg: WD Quick View => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{27ADD773-9331-4D3D-BEAD-33F433347F5E}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) FirewallRules: [{33C97DCB-8F19-4392-9BC0-275A16035CD4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) FirewallRules: [{C6F96D18-E81F-4C82-A507-7DF013AD9B08}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) FirewallRules: [{E0305032-07EE-42EE-8E0A-49CB6D694D46}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe (Hewlett-Packard Co.) FirewallRules: [{73ACBC22-ED69-4468-B5FF-C2BB3B6497CB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe (Hewlett-Packard Co.) FirewallRules: [{5E6C8928-9A04-4FFB-BA10-1FD7594ADF5C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe (Hewlett-Packard Co.) FirewallRules: [{3A23D6BB-6132-426F-8833-85BEBF98E696}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) FirewallRules: [{4FF7C584-2291-447A-AF61-312EF118010D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett-Packard Co.) FirewallRules: [{26800940-CD21-4617-B5C7-133F1BCB23B7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe () FirewallRules: [{E20F1990-CBE4-4791-B33D-4ADD6F3547EE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe (Hewlett-Packard Co.) FirewallRules: [{C5F244F6-23CB-40A7-BFC1-3565E15F0F4C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe (Hewlett-Packard Co.) FirewallRules: [{937E382C-E14B-46F4-A9B5-E6DD658B0BEE}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe (Hewlett-Packard Co.) FirewallRules: [{684EEB13-21FB-4D80-B9DE-0948A19EA001}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) FirewallRules: [{C0291316-8F4C-4B69-A78B-65A8034D0875}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe (Hewlett-Packard Development Co. L.P.) FirewallRules: [{C3276392-B4DB-436C-98A8-E241A03025C7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe (Hewlett-Packard Development Co. L.P.) FirewallRules: [{98A6E3C1-5655-4B4B-A5C5-2812C9F38AD7}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe (Hewlett-Packard Development Co. L.P.) FirewallRules: [{9E2B2D96-A699-4FD1-A8AE-8FE8202B5121}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe (Hewlett-Packard Co.) FirewallRules: [{A722DBC0-3D7E-4393-8CC5-1EDBB1E71475}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe (Hewlett-Packard Co.) FirewallRules: [{88D2FCCE-4FB2-4179-9DCC-6473BF01B973}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe (Hewlett-Packard Development Co. L.P.) FirewallRules: [{C1505959-9E53-4998-8242-30E310A597B6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett-Packard Co.) FirewallRules: [{3D5B5409-CC1A-49B3-B2E2-5A73AEF9B6E4}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard) FirewallRules: [{D36770B4-31EF-4A3C-BF23-1A704F607327}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett-Packard Co.) FirewallRules: [{70A6D0E2-62FE-4685-A666-E19ADF2B048B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett-Packard Co.) FirewallRules: [{6D93D7BD-06CC-4A67-A65F-B8B9E70C9437}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe (Hewlett-Packard) FirewallRules: [{F73C421C-3EC2-4169-B6D5-7BF5AFA28DC5}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Co.) FirewallRules: [{5A3CF165-FC1D-4B83-A696-90C0F4B44483}] => (Allow) C:\Program Files\Hp\Digital Imaging\{B61ED343-0B14-4241-999C-490CB1A20DA4}\setup\hpznui01.exe (Hewlett-Packard) FirewallRules: [{6B50C963-1907-4D25-9152-22F001F47554}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{E96E2B7B-B17D-45E0-9185-7CAA6C6E847B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.) FirewallRules: [{4AA94A29-A6A4-4384-BA2A-66CE75332370}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS7C96\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{DE0DBBC4-24F2-495C-A7DF-6C152304D3A9}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS7C96\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6082DEC1-DB99-4CFD-AAC0-9EA109AE0A1E}] => (Allow) C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe (Hewlett-Packard) FirewallRules: [{E0915F87-51DC-4491-8AED-9CABB0870CC0}] => (Allow) C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe (Hewlett-Packard) FirewallRules: [{57D19812-ECA7-4F53-A7B1-C1875536C1DE}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3F3D\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{A39FFBD2-71E5-44CB-BF52-649ADEB970B2}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3F3D\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{EB8E5135-BEB9-4D6E-B074-D32FAC8C8C66}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{D0321F6D-B6D3-4072-B1FF-211CC4386541}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{7D8D4BFF-AA1B-432B-A6B0-29AEAFE8EE55}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS1DAD\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{EB048437-FEE5-4F67-B266-CA94EFEB907A}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS1DAD\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{76293C60-5FA4-4744-A935-9AEE261B4B8F}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS32C0\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6FC80069-5D9C-4F3B-B40A-F6C6B4791887}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS32C0\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{F86FD812-D706-4362-B50C-8F3118B79C0B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{3270CB36-FC8E-4B99-864F-B8D47961B30A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{1980A23E-A512-4727-85D4-3DCB53267C4D}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3741\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{7D3A8BA1-BFB6-4B77-8D4D-566212DFBF0C}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3741\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{26AB6064-3358-46A8-B82F-4C46E38CA0AA}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS37D4\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{80EB423C-1396-423D-9A0F-DD8117125691}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS37D4\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{5798FF0E-F1E2-4763-9A4E-D5C1BE24535E}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS105E\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{698E887A-EB6C-45DA-B91F-95C243A60609}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS105E\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{244D8EE4-C9AD-45CB-9C80-A78776D6C920}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS485A\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6DAD6640-2757-45E7-8ADD-0BC34139F61B}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS485A\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{9CCD1623-B72B-43AB-A723-F0FFFB15800A}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3A1A\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6011FC5B-E6CD-4C25-AA8A-C90B1777CEA6}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS3A1A\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6BEEF4BB-309A-436B-A4BB-57E5A14ABF52}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS5458\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{9A1CA8C3-A514-40A6-8B5F-2D6D3B8CA7E6}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS5458\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{CE18CC2E-ED01-46D5-B3C4-AFCD98DD7FEA}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS5B2D\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{37500FAB-E19B-4B37-9465-793D91D60FB2}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS5B2D\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{A0E3D090-7968-4989-A4B7-200594F954E6}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS7D3C\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{6F6FB33B-9473-4141-A725-B1AA1015B866}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS7D3C\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{F9F410BC-AE99-4993-B830-03FCD1801E29}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS1A70\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{D61E1154-019D-4FBF-B58B-78BA77773783}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS1A70\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{FB5FDE1B-5C06-4FF8-84CA-0C44DE22C89E}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR9.EXE (CyberLink Corp.) FirewallRules: [{AA5E00F9-6413-4016-B7FE-520A666E9CC1}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609\SZBrowser.exe Pas de fichier FirewallRules: [{074B4A62-A62B-47B4-918C-CD3E2A2CBCA5}] => (Allow) C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe Pas de fichier FirewallRules: [{52489340-AA71-4AF5-B0B4-0E983E372DD7}] => (Allow) C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe Pas de fichier FirewallRules: [{0CCB600B-8C4B-4872-A612-A4E822DAEC29}] => (Allow) C:\Users\HAYS G\AppData\Local\Chromium\Application\chrome.exe Pas de fichier FirewallRules: [{E80579C9-EBF9-45E4-A19F-D130A27BF529}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe Pas de fichier FirewallRules: [TCP Query User{E41B654A-4AE6-4B56-9E54-3C615242F0EA}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation) FirewallRules: [UDP Query User{18B6B902-51C7-4889-95AD-DAD2C54FA067}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation) FirewallRules: [{9E72786B-B859-45BA-A536-4D2D90730447}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) FirewallRules: [{121F1878-14AD-4177-85D2-3D5F746DAEF7}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS129E\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [{CF0DE56F-9DD8-4E9B-9340-37199E980DDD}] => (Allow) C:\Users\HAYS G\AppData\Local\Temp\7zS129E\HPDiagnosticCoreUI.exe Pas de fichier FirewallRules: [TCP Query User{584FB00C-65FA-487A-B6F2-B45D5441EAEF}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe (Oracle Corporation) FirewallRules: [UDP Query User{218DC9C3-0F7A-4B73-900D-58C8DBF49E05}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe (Oracle Corporation) FirewallRules: [{45526075-D37D-485E-82F1-09DFBF16563A}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () FirewallRules: [{329379F4-57A8-43EB-8AF4-ED0A8D88E512}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () FirewallRules: [{518E4374-BC3C-4298-AFFB-D0F5F9AF29B6}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe (Six Lines Ltd) FirewallRules: [{FC664B25-875F-4998-8DA5-CA47505FF09A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) FirewallRules: [{60E618AE-3DBB-4403-8DD1-4222ABC757F6}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\DeviceSetup.exe (HP Inc.) FirewallRules: [{CB551649-7333-45E2-86C9-16554508D1E1}] => (Allow) LPort=5357 FirewallRules: [{7F033C30-8918-40D3-AA46-BDBFCB280E36}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc.) FirewallRules: [{7517FF15-F819-4981-9DD4-D4C726064BC2}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{5A89EFE3-93CF-4679-AF62-DBF312B3B75A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software) FirewallRules: [{A8DF9FD8-D2FF-4A71-AFE0-41A5950AE5A5}] => (Allow) C:\Program Files\Dropbox\Client\Dropbox.exe (Dropbox, Inc.) FirewallRules: [{9F2F001F-AEAA-4A35-BFAE-659237D74432}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc.) FirewallRules: [{A82CA0D4-CB7C-48B8-9459-37C5CF2E47D3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) FirewallRules: [{98A2AE63-F5E5-40D8-9A9F-8740E801571C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd) StandardProfile\AuthorizedApplications: [C:\Program Files\Youtomato\YT Downloader\YTDownloader.exe] => Enabled:YT Downloader ==================== Points de restauration ========================= 03-12-2018 11:54:09 Point de contrôle planifié 10-12-2018 18:58:11 Point de contrôle planifié 19-12-2018 09:42:11 Point de contrôle planifié 26-12-2018 16:49:00 Point de contrôle planifié 04-01-2019 18:21:26 Point de contrôle planifié 13-01-2019 11:19:00 Point de contrôle planifié 21-01-2019 17:47:20 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: innfd_1_10_0_14 Description: innfd_1_10_0_14 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: innfd_1_10_0_14 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/25/2019 12:52:14 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 6.1.7601.23537 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 13a0 Heure de début : 01d4b4a3b3486ed9 Heure de fin : 8 Chemin d’accès de l’application : C:\Windows\explorer.exe ID de rapport : 952921e6-2097-11e9-b7d9-20cf30e3aa28 Error: (01/25/2019 12:47:08 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 6.1.7601.23537 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 67c Heure de début : 01d4b4a2e53afc89 Heure de fin : 0 Chemin d’accès de l’application : C:\Windows\explorer.exe ID de rapport : e308fd74-2096-11e9-b7d9-20cf30e3aa28 Error: (01/25/2019 12:41:22 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 6.1.7601.23537 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1d18 Heure de début : 01d4b4a27c71b8c0 Heure de fin : 0 Chemin d’accès de l’application : C:\Windows\explorer.exe ID de rapport : 148743d0-2096-11e9-b7d9-20cf30e3aa28 Error: (01/25/2019 12:38:26 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 6.1.7601.23537 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1cd4 Heure de début : 01d4b4a24d997568 Heure de fin : 11 Chemin d’accès de l’application : C:\Windows\explorer.exe ID de rapport : a3f31ac1-2095-11e9-b7d9-20cf30e3aa28 Error: (01/25/2019 12:37:07 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Explorer.EXE version 6.1.7601.23537 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 79c Heure de début : 01d4b3f78de01ebb Heure de fin : 83 Chemin d’accès de l’application : C:\Windows\Explorer.EXE ID de rapport : 866d73a7-2095-11e9-b7d9-20cf30e3aa28 Error: (01/25/2019 11:26:51 AM) (Source: Service1) (EventID: 0) (User: ) Description: Service cannot be started. Descripteur non valide Error: (01/24/2019 04:19:53 PM) (Source: Service1) (EventID: 0) (User: ) Description: Service cannot be started. Descripteur non valide Error: (01/23/2019 10:05:24 PM) (Source: Service1) (EventID: 0) (User: ) Description: Service cannot be started. Descripteur non valide Erreurs système: ============= Error: (01/25/2019 01:03:56 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Windows Update est en attente de démarrage. Error: (01/25/2019 01:03:53 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/25/2019 01:01:11 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 40. Error: (01/25/2019 12:54:55 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger : innfd_1_10_0_14 Error: (01/25/2019 12:54:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Installer TrueKey n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/25/2019 12:54:19 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 12:52:37 le ‎25/‎01/‎2019 n’était pas prévu. Error: (01/25/2019 12:45:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service avast! Antivirus. Error: (01/25/2019 12:44:42 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service avast! Antivirus. Windows Defender: =================================== Date: 2015-12-10 03:27:41.851 Description: L’analyse Windows Defender a été arrêtée avant la fin. ID de l’analyse : {BCBE988D-00E9-41F8-AF88-DC0062A23FAC} Type de l’analyse : Logiciel anti-espion Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\SERVICE RÉSEAU Date: 2015-12-01 13:52:55.869 Description: L’analyse Windows Defender a détecté un logiciel espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=SoftwareBundler:Win32/Pokavampo&threatid=222268 Nom : SoftwareBundler:Win32/Pokavampo ID : 222268 Gravité : Élevée Catégorie : Programme d’installation de logiciels indésirables regroupés Chemin d’accès trouvé : file:C:\Users\HAYS G\AppData\Roaming\9827BC20-1436284778-11D5-B318-20CF30E3AA28\hnsaA56B.tmp;process:pid:2664,ProcessStart:130934448333592858;service:vicoqudu Type de détection : Concret Source de détection : Système État : Inconnu Utilisateur : AUTORITE NT\Système Nom du processus : C:\Windows\System32\svchost.exe Date: 2015-12-01 13:51:56.350 Description: L’analyse Windows Defender a détecté un logiciel espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=SoftwareBundler:Win32/Pokavampo&threatid=222268 Nom : SoftwareBundler:Win32/Pokavampo ID : 222268 Gravité : Élevée Catégorie : Programme d’installation de logiciels indésirables regroupés Chemin d’accès trouvé : file:C:\Users\HAYS G\AppData\Roaming\9827BC20-1436284778-11D5-B318-20CF30E3AA28\hnsaA56B.tmp;process:pid:2664,ProcessStart:130934448333592858 Type de détection : Concret Source de détection : Système État : Inconnu Utilisateur : AUTORITE NT\Système Nom du processus : C:\Windows\System32\svchost.exe Date: 2015-09-16 05:06:44.235 Description: L’analyse Windows Defender a détecté un logiciel espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/SupTab&threatid=214126 Nom : BrowserModifier:Win32/SupTab ID : 214126 Gravité : Élevée Catégorie : Modificateur de navigateur Chemin d’accès trouvé : file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\309.json;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\bg.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\bg1.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\bk_shadow.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\button.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\button1.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\checkbox.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\checkbox_select.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\checked.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\close.png;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\code\code1.jpg;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\code\code2.jpg;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\code\code3.jpg;file:C:\Users\HAYS G\AppData\Roaming\mystartsearch\images\code\code4.jpg;file:C:\Users\HAYS G\AppData\Roaming\mysta Type de détection : Concret Source de détection : Système État : Inconnu Utilisateur : AUTORITE NT\SERVICE RÉSEAU Nom du processus : c:\program files\windows defender\MpCmdRun.exe Date: 2015-08-19 02:44:08.798 Description: L’analyse Windows Defender a détecté un logiciel espion ou un autre logiciel potentiellement indésirable. Pour plus d’informations, consultez les informations suivantes : http://go.microsoft.com/fwlink/?linkid=37020&name=BrowserModifier:Win32/MyStartSearch!blnk&threatid=221923 Nom : BrowserModifier:Win32/MyStartSearch!blnk ID : 221923 Gravité : Élevée Catégorie : Modificateur de navigateur Chemin d’accès trouvé : containerfile:C:\Users\HAYS G\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk;file:C:\Users\HAYS G\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk->[CMDEmbedded] Type de détection : Concret Source de détection : Système État : Inconnu Utilisateur : AUTORITE NT\SERVICE RÉSEAU Nom du processus : c:\program files\windows defender\MpCmdRun.exe ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5 CPU 750 @ 2.67GHz Pourcentage de mémoire utilisée: 74% Mémoire physique - RAM - totale: 3549.99 MB Mémoire physique - RAM - disponible: 920.05 MB Mémoire virtuelle totale: 7098.31 MB Mémoire virtuelle disponible: 3415.46 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:931.41 GB) (Free:127.03 GB) NTFS \\?\Volume{0521217d-fd69-11e4-ac4f-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 810425BF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================