Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-01-2017 Exécuté par momo (02-01-2017 11:31:01) Exécuté depuis C:\Users\momo\Downloads Windows 8.1 (Update) (X64) (2015-08-08 15:11:25) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-274939595-3069958545-1358819302-500 - Administrator - Disabled) Invité (S-1-5-21-274939595-3069958545-1358819302-501 - Limited - Disabled) momo (S-1-5-21-274939595-3069958545-1358819302-1001 - Administrator - Enabled) => C:\Users\momo ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: IObit Malware Fighter (Enabled - Up to date) {4D381C57-3C7A-6F22-07EB-639F49E836D4} AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Ad-Aware Antivirus (HKLM\...\{AD9CEBD6-442D-4979-9D1D-E1050F2E272D}_AdAwareUpdater) (Version: 11.15.1046.10613 - Lavasoft) AdAwareInstaller (Version: 11.15.1046.10613 - Lavasoft) Hidden AdAwareUpdater (Version: 11.15.1046.10613 - Lavasoft) Hidden Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.010.20056 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.) Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.1.0 - IObit) AntimalwareEngine (Version: 3.0.129.0 - Lavasoft) Hidden AOL - Assistant de désinstallation (HKLM-x32\...\Programme de désinstallation AOL) (Version: - ) AOL Desktop (HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\AOLDesktop) (Version: 11.0.839 - AOL) Avery Wizard 5.0 (HKLM-x32\...\{FC3B3A5D-7058-4627-9F1E-F95CC38B6054}) (Version: 5.0.5 - Avery) AVS Video Converter 9.4.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 9.4.1.594 - Online Media Technologies Ltd.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Caricature Photo 2017 6.6.0.2 (HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\Caricature Photo 2017_is1) (Version: - www.logicielphoto.fr) CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP) Dashlane (HKU\.DEFAULT\...\Dashlane) (Version: 4.5.0.13208 - Dashlane SAS) Deformer 4 (HKLM-x32\...\{E3276AC4-34AE-4D15-BBEC-DBD41BA17665}) (Version: 4.0.0 - STOIK) Driver Booster 4.1 (HKLM-x32\...\Driver Booster_is1) (Version: 4.1.0 - IObit) Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.) Exterminate It! (HKLM-x32\...\Exterminate It!) (Version: 2.12.06.06 - CURIOLAB S.M.B.A.) File Uploader (HKLM-x32\...\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}) (Version: 1.2.0 - Nikon) Free Window Registry Repair (HKLM-x32\...\Free Window Registry Repair) (Version: - ) GIF Movie Gear 4.1.2 (HKLM-x32\...\GIF Movie Gear_is1) (Version: - gamani productions) Glary Utilities PRO 5.63 (HKLM-x32\...\Glary Utilities 5) (Version: 5.63.0.84 - Glarysoft Ltd) Heavy Weather Pro WS 2800 EU (HKLM-x32\...\Heavy Weather Pro WS 2800_is1) (Version: - LaCrosse Technology EU) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.2.8.25 - HP) HP Support Solutions Framework (HKLM-x32\...\{EB72DB50-C935-4C26-8349-69828F198902}) (Version: 12.4.18.7 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IObit Malware Fighter 4 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 4.4 - IObit) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.510 - IObit) IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.40 - Irfan Skiljan) KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.8.2.0 - QFX Software Corporation) Learn2 Player (Uninstall Only) (HKLM-x32\...\StreetPlugin) (Version: - ) Logiciel de base du périphérique HP ENVY 4500 series (HKLM\...\{9A9B64A8-A9E8-4588-B924-D1898D3E6355}) (Version: 32.3.198.49673 - Hewlett-Packard Co.) Logiciel Webcam Essentiel B (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.54300.122 - Sonix) MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{7BF71297-FF1F-4C90-B92A-E2FF86BA2E2A}) (Version: 7.0.1.27 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.1.27 - MAGIX AG) Hidden Malware Protection Live (HKLM-x32\...\MalwareProtectionLive) (Version: - ) <==== ATTENTION Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office 97 Standard (HKLM-x32\...\Office8.0) (Version: - ) Microsoft Office Famille et Étudiant 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Office Proof (English) 2010 (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}) (Version: - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) MiVue Manager (HKLM-x32\...\{123BDDDC-D02F-4C6E-A011-9CB265E2483E}) (Version: 1.0.33.10 - Mio Technology Corporation) Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MyBuy 1.11.50 (HKLM-x32\...\MyBuy_is1) (Version: - MYBUY COPYRIGHT 2016) Myibay Auction bid sniper for eBay 1.0.43 (HKLM-x32\...\myibay eBay bid sniper_is1) (Version: 1.0.43 (Build 498) - myibay.com) Need4 Video Converter 9 (HKLM-x32\...\Need4 Video Converter 9) (Version: 9 - Need4Video) New Sign install (HKLM-x32\...\New Sign install) (Version: - ) Nikon Transfer (HKLM-x32\...\{E9757890-7EC5-46C8-99AB-B00F07B6525C}) (Version: 1.4.0 - Nikon) OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation) Oracle VM VirtualBox 5.0.26 (HKLM\...\{257A247A-9BC8-4506-B4EC-F4A725976174}) (Version: 5.0.26 - Oracle Corporation) Paint Shop Pro 5.01 CD (HKLM-x32\...\Paint Shop Pro 5.01) (Version: - ) Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security) RealPlayer Basic (HKLM-x32\...\RealPlayer 6.0) (Version: - ) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.) RegSeeker (HKLM-x32\...\RegSeeker) (Version: 2.57.2212 - HoverDesk) SFR - Kit de connexion (HKLM-x32\...\SFR_Kit) (Version: 11.5.2.1 - SFR) Sierra Print Artist 6.0 (HKLM-x32\...\Print Artist 6.0) (Version: - ) Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.4.0 - IObit) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 3.1.0.2 - IObit) Swiff Player 1.7.2 (HKLM-x32\...\Swiff Player_is1) (Version: 1.7.2 - GlobFX Technologies) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.7.5 - Nikon) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Driver Package - Silicon Laboratories (silabenm) Ports (12/10/2012 6.6.1.0) (HKLM\...\D680DEE0F68D64EC53D0C5769879D15D387054CC) (Version: 12/10/2012 6.6.1.0 - Silicon Laboratories) YTD Video Downloader 5.8.2 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.8.2 - GreenTree Applications SRL) <==== ATTENTION ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0414A10C-ADD2-4C06-BBDA-E33423B2F52A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-11-04] (Glarysoft Ltd) Task: {093667BF-956E-410A-A58B-6F0DEEA6291B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.) Task: {0B2AA218-2255-49BD-89FF-E7CCF73B7A49} - \ASC9_SkipUac_momo -> Pas de fichier <==== ATTENTION Task: {0DB12262-3DC3-4222-B43A-B65DF76EC9B0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2014-06-24] (Safer-Networking Ltd.) Task: {0E9348DC-C3B7-4C17-BEAA-B3D7BE44D38B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {1A42F216-78C1-44EC-9E1D-3B9EDECA5734} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-274939595-3069958545-1358819302-1001 Task: {1EDDD164-B374-4926-A997-922C6BDA4501} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2014-06-24] (Safer-Networking Ltd.) Task: {270D489D-7D31-48D5-9732-466909418506} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {2A01F9A7-9080-404F-B6EF-B8AAAAC314FA} - System32\Tasks\{16A31F25-7164-4AC7-AC13-C95964A1B2B6} => Firefox.exe hxxp://ui.skype.com/ui/0/7.24.0.104/fr/abandoninstall?source=lightinstaller&page=tsBing Task: {39686DBD-6188-42E8-817C-E1589B53798B} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2016-07-22] (IObit) Task: {3A8531AC-367D-42F5-B99B-AF9C1A5A35B1} - System32\Tasks\PC Health Advisor Defrag => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe Task: {3D365F45-BAB1-48CB-81C8-B41D1F0E9F9D} - System32\Tasks\{9DBF69D1-146F-4612-812A-687CF06278A3} => pcalua.exe -a "C:\Program Files (x86)\Common Files\aolshare\Aolunins_fr.exe" Task: {5AD890AF-985B-44A7-99EC-8FBEE2C4DB18} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-22] (Adobe Systems Incorporated) Task: {6B8EF70A-BC19-45C2-BE67-5793FCA5E4DA} - System32\Tasks\Driver Booster SkipUAC (momo) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-12-02] (IObit) Task: {86C25C27-E3C5-42BC-87C0-C00765524913} - System32\Tasks\ASC10_SkipUac_momo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-12-26] (IObit) Task: {89C0E051-2418-4B1E-90A2-11A4D4BE05D5} - System32\Tasks\MPLClient => C:\Program Files (x86)\MalwareProtectionLive\MalwareProtectionClient.exe [2016-12-14] () Task: {8CD056C2-039D-41D6-BCE7-1D25306F83C2} - System32\Tasks\Uninstaller_SkipUac_momo => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit) Task: {8ECBA6C1-79B2-40D9-A3B3-816B5CA251C8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-04-06] (Hewlett-Packard) Task: {A3FBCA79-71FE-418F-8826-110A6C6651CF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd) Task: {AD54311E-4499-4A15-A543-0000E93DD904} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit) Task: {C331982A-A1D6-4227-BAA6-830EB5FAAA71} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-11-04] (Glarysoft Ltd) Task: {DB1086F8-608E-4764-9CFF-1862D220BBD4} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-21] (IObit) Task: {E241EA81-E142-46E2-A115-23A82DFF81FC} - System32\Tasks\QuickSettingTaskASC => C:\Program Files (x86)\IObit\Advanced SystemCare\QuickSettings.exe [2016-12-20] (IObit) Task: {EFD6B8EA-7384-465A-9329-9CB3873AE1CE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {F1DC5FF5-0CB4-44A5-BB90-A758D80C468C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {FC4AE14E-E866-41FE-B66B-574D716C4AFB} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-11-21] (IObit) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\PC Health Advisor Defrag.job => C:\Program Files (x86)\ParetoLogic\PCHA\PCHA.exe Task: C:\Windows\Tasks\Uninstaller_SkipUac_momo.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-12-15 13:02 - 2016-12-15 13:02 - 00630976 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareService.exe 2016-12-15 13:06 - 2016-12-15 13:06 - 00122104 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_thread-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00030968 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_system-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00067832 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_date_time-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00145144 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_filesystem-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00733432 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_log-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00525048 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_locale-vc140-mt-1_61.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00039672 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_chrono-vc140-mt-1_61.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 11504888 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareServiceKernel.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 03713272 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\RCF.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 01001208 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_regex-vc140-mt-1_61.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01061624 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareActivation.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00634616 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareApplicationUpdater.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00843000 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareGamingMode.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00120568 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareReset.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00142584 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareTime.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01025272 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareDefinitionsUpdater.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00904440 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareDefinitionsUpdaterScheduler.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01468664 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareIgnoreList.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00252664 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareQuarantine.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01644280 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareAntiMalwareEngine.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00223992 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareAntiRootkitEngine.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01192184 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareScannerHistory.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01370360 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareScanner.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00039672 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_timer-vc140-mt-1_61.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01030904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareScannerScheduler.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01212152 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareRealTimeProtection.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 02879736 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareIncompatibles.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01524472 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareAntiSpam.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01456376 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareAntiPhishing.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 03462904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareParentalControl.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01599224 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareWebProtection.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01339640 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareEmailProtection.dll 2016-12-15 13:06 - 2016-12-15 13:06 - 00073464 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\boost_iostreams-vc140-mt-1_61.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01645816 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareNetworkProtection.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01042680 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwarePromo.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 00475384 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareFeedback.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 03165944 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareThreatWorkAlliance.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01325304 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwarePinCode.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01044216 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareNotice.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01597688 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareAvcEngine.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01496312 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareRealTimeProtectionHistory.dll 2016-12-15 13:05 - 2016-12-15 13:05 - 01380088 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\AdAwareStatistics.dll 2016-12-14 23:37 - 2016-12-14 23:37 - 01597984 _____ () C:\Program Files (x86)\MalwareProtectionLive\MalwareProtectionClient.exe 2016-01-06 17:41 - 2016-01-06 17:41 - 00062168 _____ () C:\Program Files\CCleaner\branding.dll 2016-12-06 15:09 - 2016-12-06 15:09 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2016-12-29 18:08 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2016-12-29 18:08 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2016-12-29 18:08 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2016-01-01 10:38 - 2015-11-06 12:05 - 00618784 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2016-07-01 12:39 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-07-01 12:39 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-07-06 21:13 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-07-06 21:13 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2016-07-06 21:13 - 2012-04-03 16:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-09-16 19:41 - 2009-08-27 20:04 - 00159744 _____ () C:\Program Files (x86)\HeavyWeatherWV5\sHID.dll 2016-12-13 18:09 - 2016-12-13 18:09 - 01014304 _____ () C:\Program Files (x86)\MalwareProtectionLive\mplsettings.dll 2016-12-02 13:02 - 2016-01-11 17:03 - 00899872 _____ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll 2016-12-02 13:02 - 2016-01-11 17:02 - 00630048 _____ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll 2016-07-29 18:55 - 2015-12-29 10:30 - 00355616 _____ () C:\program files (x86)\iobit\Classic Start\madExcept_.bpl 2016-07-29 18:55 - 2015-12-29 10:29 - 00190240 _____ () C:\program files (x86)\iobit\Classic Start\madBasic_.bpl 2016-07-29 18:55 - 2015-12-29 10:30 - 00057632 _____ () C:\program files (x86)\iobit\Classic Start\madDisAsm_.bpl 2016-07-29 18:56 - 2015-12-29 10:30 - 00275576 _____ () C:\program files (x86)\iobit\Classic Start\sqlite3.dll 2016-07-29 18:56 - 2015-12-29 10:30 - 00059680 _____ () C:\program files (x86)\iobit\Classic Start\parseAuto.dll 2016-07-29 18:56 - 2015-12-29 10:30 - 00625440 _____ () C:\program files (x86)\iobit\Classic Start\ProductStatistics.dll 2016-07-29 18:56 - 2015-12-29 10:31 - 00047904 _____ () C:\program files (x86)\iobit\Classic Start\winkey.dll 2016-12-29 18:08 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll 2016-12-29 18:08 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll 2016-11-16 17:38 - 2016-03-31 17:57 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\webres.dll 2016-11-16 17:38 - 2016-03-31 17:57 - 00188704 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll 2016-11-16 17:38 - 2016-03-31 17:57 - 00151840 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll 2016-11-16 17:38 - 2016-03-31 17:57 - 00625440 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\ProductStatistics.dll 2016-12-29 18:08 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll 2016-12-29 18:08 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll 2004-01-09 21:02 - 2004-01-09 21:02 - 00045056 _____ () C:\Program Files (x86)\AOL 9.0 VRc\zlib.dll 2002-04-22 22:08 - 2002-04-22 22:08 - 00053248 _____ () C:\Program Files (x86)\AOL 9.0 VRc\xmlparse.dll 2002-04-22 22:08 - 2002-04-22 22:08 - 00081920 _____ () C:\Program Files (x86)\AOL 9.0 VRc\xmltok.dll 2007-05-24 09:01 - 2007-05-24 09:01 - 00090112 _____ () C:\Program Files (x86)\AOL 9.0 VRc\Components\Tier2Svc.dll 2007-05-24 09:01 - 2007-05-24 09:01 - 00061440 _____ () C:\Program Files (x86)\AOL 9.0 VRc\Components\DataSvcs.dll 2016-12-31 20:24 - 2007-05-24 03:49 - 00131072 _____ () c:\program files (x86)\common files\aol\1439125545\ee\services\proxyprovider\ver1_0_0_1\proxyprovider.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:05E9FFE5 [146] AlternateDataStreams: C:\ProgramData\TEMP:DBC416F8 [128] AlternateDataStreams: C:\Users\momo\Downloads\HiJackThis.exe:BDU [0] AlternateDataStreams: C:\Users\momo\Downloads\install_flash_player.exe:BDU [0] AlternateDataStreams: C:\Users\momo\Downloads\registry-defrag.exe:BDU [0] AlternateDataStreams: C:\Users\momo\Downloads\RegpairSetup.exe:BDU [0] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LavasoftAdAwareService11 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LavasoftAdAwareService11 => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\.DEFAULT\...\01i.info -> 01i.info IE restricted site: HKU\.DEFAULT\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\05p.com -> 05p.com IE restricted site: HKU\.DEFAULT\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\.DEFAULT\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\.DEFAULT\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\.DEFAULT\...\0calories.net -> 0calories.net IE restricted site: HKU\.DEFAULT\...\0cj.net -> 0cj.net IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1-se.com -> 1-se.com Il y a 11461 plus de sites. IE trusted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\ebay.fr -> hxxp://www.ebay.fr IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\1-se.com -> 1-se.com Il y a 11462 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 14:25 - 2016-12-28 14:03 - 00453906 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com Il y a 15573 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-274939595-3069958545-1358819302-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\momo\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\z-au revoir.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: AOLSAV => c:\progra~2\techci~1\aolsav\aolagent.exe MSCONFIG\startupreg: HostManager => c:\program files (x86)\common files\aol\1439125545\ee\aolsoftware.exe MSCONFIG\startupreg: Nikon Transfer Monitor => c:\program files (x86)\common files\nikon\monitor\nkmonitor.exe MSCONFIG\startupreg: QuickTime Task => "c:\program files (x86)\quicktime\qttask.exe" -atboottime MSCONFIG\startupreg: snp2uvc => c:\program files (x86)\common files\snp2uvc\vsnp2uvc.exe MSCONFIG\startupreg: tsnp2uvc => c:\program files (x86)\common files\snp2uvc\tsnp2uvc.exe HKLM\...\StartupApproved\StartupFolder: => "Démarrage d'Office.lnk" HKLM\...\StartupApproved\StartupFolder: => "Microsoft Recherche accélérée.lnk" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "CSRHarmonySkypePlugin" HKLM\...\StartupApproved\Run32: => "AOLSAV" HKLM\...\StartupApproved\Run32: => "HostManager" HKLM\...\StartupApproved\Run32: => "AOLDialer" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "Nikon Transfer Monitor" HKLM\...\StartupApproved\Run32: => "snp2uvc" HKLM\...\StartupApproved\Run32: => "MalwareProtectionLive" HKLM\...\StartupApproved\Run32: => "tsnp2uvc" HKU\S-1-5-21-274939595-3069958545-1358819302-1001\...\StartupApproved\StartupFolder: => "Alertes de surveillance de l'encre - HP ENVY 4500 series.lnk" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{C69BF05C-CB26-41F0-8CD5-1D5AD0433879}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0A4DD451-8519-41D0-8DF4-600D11020F44}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0D33B4D4-64FF-4B0C-81F8-4562D270A64B}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{5ACFB2C7-2D9D-4A9B-A824-47397BB0A8E3}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{3A7BD41F-9CDB-4520-BD32-F0D79E274D61}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{FFEE572C-0975-42C6-888A-C173D7272DE2}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{CF53E486-E2D7-410A-BD3D-0F96466934CB}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{2FBFC0BA-523A-4F4C-94A5-EBB2B8763CFB}] => C:\Program Files (x86)\AOL 9.0 VR\waol.exe FirewallRules: [{DA194075-BA77-408A-9816-09C1DF1AB2E9}] => C:\Program Files (x86)\AOL 9.0 VRa\waol.exe FirewallRules: [{826CCF01-C28E-4491-AAB1-B90C9A98C04C}] => C:\Program Files (x86)\AOL 9.0 VRa\waol.exe FirewallRules: [{69317E85-0BA4-4774-8C3F-738188D211C0}] => C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe FirewallRules: [{65928997-8D9A-46AF-8D4B-03A26773FA17}] => LPort=5357 FirewallRules: [{617E2436-7969-428F-B056-296DC63997F2}] => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{387C1059-2818-48AD-92CA-7904C8601E1F}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B4A022AD-D568-4C05-9904-2B90DC4ADFE3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{3C2163D2-E0B4-497A-81C5-910B22D131A2}] => LPort=139 FirewallRules: [{B636A5DB-9BE8-4571-AABF-96F7AF5BB047}] => %SystemDrive%\MyBuy\MyBuy.exe FirewallRules: [{031DDDA9-0F22-4ACC-AA8B-21323660735F}] => %SystemDrive%\MyBuy\MyBuy.exe FirewallRules: [{62336C8B-D930-481C-9709-EA1953931486}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DA5523D5-CFD0-449B-9767-DEBE32CC645A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{98870BDD-282E-4000-A433-9F8453143261}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{CAF89F61-D18B-4D22-AA66-9BAE627EA114}] => C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B5C96A9C-3135-4C95-ACE1-648BABC37679}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe FirewallRules: [{058286BB-ED0D-4E86-B9EF-A07582C16B28}] => C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe FirewallRules: [{494599D7-A110-468B-A65C-88081AACE63D}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe FirewallRules: [{0C984595-A61C-489D-A6DB-D241BF81A400}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe FirewallRules: [{361B20ED-701D-414D-B6B9-339CB913829D}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe FirewallRules: [{D8A94CF7-748C-4363-9CF2-F228B030AA7E}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DBDownloader.exe FirewallRules: [{C9496274-F42F-425E-83C4-D2E54D6BB902}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe FirewallRules: [{C23DEA68-AADB-42C2-9474-7ECADBDBB5F8}] => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\AutoUpdate.exe FirewallRules: [{061B9890-16F3-4761-9B0A-D59F07E9BF56}] => C:\Users\momo\Downloads\flashplayer24_xa_install.exe FirewallRules: [{A7188DC9-55DA-4B83-B19D-266D2D7F1593}] => C:\Users\momo\Downloads\flashplayer24_xa_install.exe FirewallRules: [{88697C6B-6748-4E4C-975E-C056E3739836}] => C:\Users\momo\Downloads\flashplayer24_xa_install.exe FirewallRules: [{432D60EF-4B8C-425D-BCCC-86A7028C7CCD}] => C:\Users\momo\Downloads\flashplayer24_xa_install.exe FirewallRules: [{1B91B627-73B2-48A3-8B18-C2E9ABCACB9F}] => C:\Program Files (x86)\AOL 9.0 VRb\waol.exe FirewallRules: [{55F2ED82-B263-44F7-9687-B674F9D18024}] => C:\Program Files (x86)\AOL 9.0 VRb\waol.exe FirewallRules: [{2DAFD45F-0394-4E27-A998-B8D6075247BC}] => C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe FirewallRules: [{2B71C5A8-8AC1-42AB-B65C-B1C56D365F86}] => C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe FirewallRules: [{59F06F02-2CF3-4926-BD30-BEFA9CCE93FF}] => C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe FirewallRules: [{C8032DDC-ED98-4314-9FF3-EB8C61C75D47}] => C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe FirewallRules: [{F58F7613-0D38-4621-955D-D32CD6C8F8D9}] => C:\Program Files (x86)\Common Files\AOL\1439125545\ee\aolsoftware.exe FirewallRules: [{58B3D1FF-61E2-4B9B-B409-F8D5E65847BF}] => C:\Program Files (x86)\Common Files\AOL\1439125545\ee\aolsoftware.exe FirewallRules: [{C7B435AF-DDAA-4C5E-B652-5033F462975B}] => C:\Program Files (x86)\AOL 9.0 VRc\waol.exe FirewallRules: [{A47C3EA7-E033-4606-9043-9BA7064708BE}] => C:\Program Files (x86)\AOL 9.0 VRc\waol.exe FirewallRules: [{8C9199B6-19A0-47C4-883A-3F0DCC08A249}] => C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe FirewallRules: [{EBB771AB-29B7-4F04-B67C-C40EAA813414}] => C:\Program Files (x86)\Common Files\AOL\TopSpeed\3.0\aoltpsd3.exe FirewallRules: [{7E6DBC9E-8D5B-4D8E-88B1-C469856BBBE0}] => C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe FirewallRules: [{793A05E7-1304-451D-B298-43F2B5A050A6}] => C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe FirewallRules: [{A42F7096-CC9C-4BC4-8E86-8E723A53F419}] => C:\Program Files (x86)\Common Files\AOL\System Information\sinf.exe FirewallRules: [{4CF2452D-959E-40B4-8DFE-51D28BBBE9A6}] => C:\Program Files (x86)\Common Files\AOL\System Information\sinf.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 17-12-2016 20:38:17 Made by Regsofts 19-12-2016 15:02:42 Made by Regsofts 21-12-2016 21:46:43 Made by Regsofts 23-12-2016 17:37:58 Made by Regsofts 24-12-2016 20:15:28 Driver Booster : Realtek High Definition Audio 25-12-2016 22:19:40 WinThruster (64-bit) Backup 26-12-2016 13:09:54 WinThruster (64-bit) Backup 27-12-2016 09:32:37 WinThruster (64-bit) Backup 28-12-2016 08:51:08 WinThruster (64-bit) Backup 28-12-2016 09:18:04 WinThruster (64-bit) Backup 28-12-2016 13:45:36 WinThruster (64-bit) Backup 28-12-2016 18:10:29 WinThruster (64-bit) Backup 29-12-2016 08:43:06 Driver Booster : Carte réseau sans fil 802.11n 30-12-2016 17:38:07 PC Health Advisor Backup 31-12-2016 20:21:15 Made by Regsofts ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/02/2017 09:11:42 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SettingSyncHost.exe, version : 6.3.9600.17415, horodatage : 0x54503b4a Nom du module défaillant : msTextPrediction.dll, version : 6.3.9600.17415, horodatage : 0x54503f0a Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000005e0bb ID du processus défaillant : 0xd0c Heure de début de l’application défaillante : 0x01d264cf6fcaaf99 Chemin d’accès de l’application défaillante : C:\Windows\System32\SettingSyncHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\msTextPrediction.dll ID de rapport : 1784c216-d0c3-11e6-85da-d850e6c3e070 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/02/2017 09:07:58 AM) (Source: Windows Search Service) (EventID: 3079) (User: ) Description: Les notifications ne sont pas actives pour le volume C:\. Contexte : Application Windows Détails : Paramètre incorrect. (HRESULT : 0x80070057) (0x80070057) Error: (01/01/2017 09:01:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SettingSyncHost.exe, version : 6.3.9600.17415, horodatage : 0x54503b4a Nom du module défaillant : msTextPrediction.dll, version : 6.3.9600.17415, horodatage : 0x54503f0a Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000005e0bb ID du processus défaillant : 0x116c Heure de début de l’application défaillante : 0x01d264027db6c598 Chemin d’accès de l’application défaillante : C:\Windows\System32\SettingSyncHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\msTextPrediction.dll ID de rapport : 918f35c8-cff8-11e6-85d9-d850e6c3e070 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/01/2017 08:41:54 AM) (Source: ESENT) (EventID: 455) (User: ) Description: SettingSyncHost (4460) {D77D8F49-F9DF-4380-8533-023911A3C17C}: L'Erreur -1811 (0xfffff8ed) s'est produite lors de l'ouverture du fichier journal C:\Users\momo\AppData\Local\Microsoft\Windows\SettingSync\metastore\edb00007.log. Error: (01/01/2017 08:40:52 AM) (Source: Windows Search Service) (EventID: 3079) (User: ) Description: Les notifications ne sont pas actives pour le volume C:\. Contexte : Application Windows Détails : Paramètre incorrect. (HRESULT : 0x80070057) (0x80070057) Error: (12/31/2016 08:44:07 AM) (Source: Windows Search Service) (EventID: 3079) (User: ) Description: Les notifications ne sont pas actives pour le volume C:\. Contexte : Application Windows Détails : Paramètre incorrect. (HRESULT : 0x80070057) (0x80070057) Error: (12/31/2016 08:37:27 AM) (Source: Windows Search Service) (EventID: 3079) (User: ) Description: Les notifications ne sont pas actives pour le volume C:\. Contexte : Application Windows Détails : Paramètre incorrect. (HRESULT : 0x80070057) (0x80070057) Error: (12/31/2016 08:25:29 AM) (Source: Windows Search Service) (EventID: 7010) (User: ) Description: Impossible d’initialiser l’index. Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/31/2016 08:25:29 AM) (Source: Windows Search Service) (EventID: 3058) (User: ) Description: Impossible d’initialiser l’application. Contexte : Application Windows Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Error: (12/31/2016 08:25:29 AM) (Source: Windows Search Service) (EventID: 3028) (User: ) Description: Impossible d’initialiser l’objet rassembleur. Contexte : Application Windows, Catalogue SystemIndex Détails : L’objet spécifié est introuvable. Spécifiez le nom d’un objet existant. (HRESULT : 0x80040d06) (0x80040d06) Erreurs système: ============= Error: (01/02/2017 09:10:06 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service IMF Service s’est terminé de façon inattendue pour la 1ème fois. Error: (01/02/2017 08:41:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service ASCTRM n’a pas pu démarrer en raison de l’erreur : Le chargement du pilote a été bloqué Error: (01/02/2017 08:41:53 AM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\Drivers\ASCTRM.SYS Error: (01/01/2017 06:54:55 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:54:53 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:54:28 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:52:35 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:51:34 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:51:31 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (01/01/2017 06:51:07 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. CodeIntegrity: =================================== Date: 2016-02-03 20:42:37.673 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 20:31:05.180 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 20:17:21.541 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 20:10:54.500 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 19:01:43.271 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 17:35:29.453 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 17:14:35.563 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 16:55:56.701 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-03 16:05:49.926 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: AMD A4-3420 APU with Radeon(tm) HD Graphics Pourcentage de mémoire utilisée: 28% Mémoire physique - RAM - totale: 8150.52 MB Mémoire physique - RAM - disponible: 5791.91 MB Mémoire virtuelle totale: 16342.52 MB Mémoire virtuelle disponible: 12740.84 MB ==================== Lecteurs ================================ Drive c: (windows) (Fixed) (Total:1352.61 GB) (Free:1273.22 GB) NTFS Drive d: (001) (Fixed) (Total:0.02 GB) (Free:0 GB) NTFS Drive e: (momo) (Fixed) (Total:1336.13 GB) (Free:1079.4 GB) NTFS Drive k: (obelix ) (Fixed) (Total:1863.01 GB) (Free:1435.28 GB) NTFS Drive l: (asterix_500go) (Fixed) (Total:465.76 GB) (Free:210.93 GB) NTFS Drive n: (WD-My Book-videos) (Fixed) (Total:931.48 GB) (Free:226.39 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 2794.5 GB) (Disk ID: 1A98F793) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 0002DE38) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (Size: 465.8 GB) (Disk ID: 493D165F) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 1863 GB) (Disk ID: 451E24C6) Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================