> Tous les forums > Forum Sécurité
 Eee PC asus "ne repond pas '
Ajouter un message à la discussion
Page : [1] 
Page 1 sur 1
chantoenia
  Posté le 12/07/2015 @ 14:49 
Aller en bas de la page 
Petite astucienne

bonjour,

Mon Eee PC Assus rame énormement . Je ne peux plus l'utiliser car à chaque fois que je veux ouvrir quelque chose , il met beaucoup de temps et affiche " ne répond pas". Ceci se produit quand j'ouvre Word starter, ou mozilla et même le panneau de configuration. Parfois, cela semble fonctionner a peu prés normalement mais très vite il se bloque ! Pouvez m'aider svp ? Je vous remercie .

Eee PC asus 1025 C

Processeur: Inter Atom CPU N 2800 1,86 GHz
windows édition Starter 2009
systeme exploitation 32 bits



Modifié par chantoenia le 12/07/2015 16:10
Publicité
chantoenia
 Posté le 12/07/2015 à 16:43 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Voici les rapports demandés dans le sujet "aide au diag d'un PC infecté "

~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12)
~ Démarré par Fabienne (Administrator) (2015/07/12 15:40:32)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Fabienne\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Fabienne\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)

---\\ Navigateurs Internet (2) - 1s
MFIE: Mozilla Firefox 32.0.3 (x86 fr) v32.0.3
MSIE: Internet Explorer v11.0.9600.17420

---\\ Informations sur les produits Windows (3) - 51s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Activation Technologies : OK

---\\ Logiciels de protection (3) - 8s
Malwarebytes Anti-Malware version 2.1.8.1057
Microsoft Security Client v4.6.0305.0
Microsoft Security Essentials v4.6.305.0

---\\ Logiciels d'optimisation (1) - 8s
CCleaner v4.18

---\\ Surveillance de Logiciels (2) - 9s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.1 MUI

---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 54 Stepping 1, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 1036228
~ System Restore: Activé (Enable)
~ System drive C: has 72 GB free of 102 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: FAB-NETBOOK
~ User Name: Fabienne
~ Logged in as Administrator

---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 72 GB free of 102 GB (System)
~ Drive D: has 187 GB free of 187 GB

---\\ Recherche particulière de fichiers génériques (23) - 23s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\windows\System32\Wininit.exe [96256]
[MD5.6DD7D61A8EF3DFEC4FAEFEB395E77424] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\windows\System32\wininet.dll [1892864]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\windows\System32\drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\windows\System32\drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\windows\System32\drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\windows\System32\drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\windows\System32\drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\windows\System32\drivers\tdx.sys [74752]
[MD5.C37AEE5966EB5929E2051AC7409B5730] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\windows\System32\drivers\volsnap.sys [246144]

---\\ Processus lancés (15) - 18s
[MD5.8165C8825C726A7D5EFDF863A2D1C28F] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe [92800] [PID.1908]
[MD5.689CA2A0C7ABA6C091FEEEE9439C83DB] - (...) -- C:\Windows\System32\AsusService.exe [224680] [PID.1936]
[MD5.C37CE43FB54066FFB540729C6E6E194E] - (...) -- C:\ExpressGateUtil\VAWinService.exe [91464] [PID.2136]
[MD5.8D82A1DB500C559B0128256444B588E3] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\Asus\InstantOn for EPC\InsOnWMI.exe [100992] [PID.896]
[MD5.382B9E735145F20FB4EDFD81A7E06BBE] - (.AsusTek Computer Inc. - Asus EeePC LiveUpdate for Bios, Driver, Sof.) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080] [PID.444]
[MD5.CE5D8B9FD7E811279E3D768D123502D4] - (.ASUSTeK Computer Inc. - Asus Hotkey Service.) -- C:\Program Files\Asus\HotkeyService\HotkeyService.exe [1263024] [PID.2904]
[MD5.9C727D8EC69EA0F0B4BCB4F26EF5688E] - (.ASUSTeK Computer Inc. - AsEPCMon.) -- C:\Program Files\Asus\HotkeyService\HotKeyMon.exe [101800] [PID.2932]
[MD5.48F3DE1BB07E1BF0ABA70146B5FDED18] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\Asus\SHE\SuperHybridEngine.exe [425400] [PID.704]
[MD5.D398A7354368DD84CA749D09C03A314D] - (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\Asus\CapsHook\CapsHook.exe [445344] [PID.3152]
[MD5.6F4785A8BEFCA2BA6DE09859E5296EAB] - (...) -- C:\ExpressGateUtil\VAWinAgent.exe [45448] [PID.956]
[MD5.3977E6AB25446D645487F313E5E14E06] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11004520] [PID.3964]
[MD5.186183EC3308BDF07B7DFE8963B4DBDE] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [1813800] [PID.3300]
[MD5.F32CBBB62256899E253E6A0A87FEF238] - (.AsusTek Computer Inc. - USB charge for Apple product.) -- C:\Program Files\Asus\USBChargeSetting\iSeriesCharge.exe [99792] [PID.3568]
[MD5.E5CFEBA7AACE574A932E22D39F05B4D8] - (.ELAN Microelectronics Corp. - ETD Control Center Helper.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe [1602344] [PID.3628]
[MD5.F2C82BA7E80C6054D5D20F3FBD4CFD34] - (...) -- C:\Program Files\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe [77664] [PID.3348]

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (10) - 6s
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_203.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (11) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer

---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)

---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Applications lancées au démarrage du sytème (O4) (18) - 4s
O4 - HKLM\..\Run: [GfxServiceInstall] . (...) -- C:\Windows\System32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [HotkeyMon] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [SuperHybridEngine] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [LiveUpdate] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [CapsHook] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [VAWinAgent] . (...) -- C:\ExpressGateUtil\VAWinAgent.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\Asus\APRP\aprp.exe
O4 - HKLM\..\Run: [iSeriesCharge] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1388478540-2806055896-2915544884-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe

---\\ Modification Domaine/Adresses DNS (O17) (3) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Liste des services NT non Microsoft et non désactivés (O23) (6) - 6s
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe

---\\ Tâches planifiées en automatique (O39) (5) - 2s
O39 - APT:Automatic Planified Task - (...) -- C:\windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\Adobe Flash Player Updater [3940]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\CCleanerSkipUAC [2778]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\CreateChoiceProcessTask [3548]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\{714BDD3D-C278-4755-9B05-E013BF9E1B6D} [3146]

---\\ Logiciels installés (O42) (35) - 20s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: ETDWare PS/2-X86 8.0.5.2_WHQL - (.ELAN Microelectronic Corp..) [HKLM] -- Elantech
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: ExpressGateCloud - (.VideACE Co..) [HKLM] -- InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Mozilla Firefox 32.0.3 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 32.0.3 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {107F27B7-8EE4-4B3A-9CE5-497B120369DC}
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: E-Cam - (.AzureWave.) [HKLM] -- {185AFA7A-F63E-450B-94AA-011CAC18090E}
O42 - Logiciel: Skype™ 6.22 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: ExpressGateCloud - (.VideACE Co..) [HKLM] -- {36B0DC39-3282-40EB-8587-B875CE46C3A7}
O42 - Logiciel: LiveUpdate - (.AsusTek Computer Inc..) [HKLM] -- {38E5A3B1-ADF1-47E0-8024-76310A30EB36}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45}
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}
O42 - Logiciel: Hotkey Service - (.AsusTek Computer Inc..) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD}
O42 - Logiciel: InstantOn for EPC - (.ASUS.) [HKLM] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM] -- {7D916FA5-DAE9-4A25-B089-655C70EAF607}
O42 - Logiciel: USBCharge+ - (.AsusTek Computer.) [HKLM] -- {8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}
O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Media Sharing - (.ASUS.) [HKLM] -- {9042F9FE-43CB-4ACF-9978-F62235127F90}
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}

---\\ HKCU & HKLM Software Keys (49) - 20s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\AsusTek Computer
HKLM\SOFTWARE\AsusTek Computer Inc.
HKLM\SOFTWARE\Atheros Communications Inc.
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\AzureWave
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\CoreSecurity
HKLM\SOFTWARE\ECAREME
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\VideACE
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VideACE
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\MB_temp
HKCU\SOFTWARE\AppDataLow\Software

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (154) - 32s
O43 - CFD: 2011/12/30 21:01:38 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2014/09/28 22:26:37 - [] D -- C:\Program Files\Asus
O43 - CFD: 2011/12/30 21:01:56 - [] D -- C:\Program Files\ASUS Media Sharing
O43 - CFD: 2014/09/29 16:30:03 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2014/11/08 15:17:07 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/09/29 17:13:47 - [] D -- C:\Program Files\Defraggler
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2011/12/30 20:41:56 - [] D -- C:\Program Files\E-Cam
O43 - CFD: 2012/06/03 20:06:49 - [] D -- C:\Program Files\Elantech
O43 - CFD: 2012/12/26 12:47:23 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/09/28 22:26:37 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2011/12/30 20:29:51 - [] D -- C:\Program Files\Intel
O43 - CFD: 2014/11/22 09:59:32 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/07/12 14:47:36 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2012/06/06 08:52:35 - [0] D -- C:\Program Files\Microsoft
O43 - CFD: 2013/10/05 16:51:26 - [] D -- C:\Program Files\Microsoft Application Virtualization Client
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2012/06/06 09:32:40 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/09/28 14:21:22 - [] D -- C:\Program Files\Microsoft Security Client
O43 - CFD: 2014/09/28 23:33:44 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2011/12/30 20:37:09 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/09/28 13:48:14 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2014/09/28 13:59:16 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2012/06/03 20:08:25 - [] D -- C:\Program Files\Qualcomm Atheros WiFi Driver Installation
O43 - CFD: 2011/12/30 21:45:29 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2014/11/08 15:17:08 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2011/12/30 21:45:33 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 2009/07/14 06:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/02/09 20:58:39 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2014/09/28 22:23:05 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2014/02/09 20:58:42 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2011/02/11 13:14:27 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2012/09/10 21:04:34 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2012/06/03 20:08:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:46:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/28 22:24:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2011/12/30 21:01:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Media Sharing
O43 - CFD: 2014/09/29 16:30:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2014/09/29 17:07:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
O43 - CFD: 2011/12/30 20:41:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam
O43 - CFD: 2009/07/14 06:42:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2011/12/30 20:29:52 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2009/07/14 06:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012/06/30 08:43:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)
O43 - CFD: 2014/09/28 23:35:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/11/21 19:38:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2012/12/14 17:14:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/03/17 13:47:46 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2011/12/30 20:57:23 - [] D -- C:\ProgramData\ASUS WebStorage
O43 - CFD: 2014/09/28 12:42:44 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/09/28 16:40:53 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/09/28 22:45:20 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2013/02/28 13:26:41 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/12/21 22:05:28 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2012/06/03 20:06:57 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2014/11/21 19:38:19 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/06/06 08:54:23 - [] D -- C:\ProgramData\Trend Micro
O43 - CFD: 2012/06/30 08:38:14 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 2012/06/12 19:25:57 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2011/12/30 21:01:37 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 2014/06/23 20:52:17 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2011/12/30 20:40:50 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/09/28 22:14:11 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2014/11/08 15:17:07 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2012/09/10 21:04:32 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2011/12/30 20:44:47 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2012/06/03 20:09:23 - [] D -- C:\Users\Fabienne\AppData\Roaming\Adobe
O43 - CFD: 2011/12/30 20:57:29 - [] D -- C:\Users\Fabienne\AppData\Roaming\ASUS WebStorage
O43 - CFD: 2011/12/30 20:41:54 - [] D -- C:\Users\Fabienne\AppData\Roaming\E-Cam
O43 - CFD: 2009/07/14 06:54:12 - [] D -- C:\Users\Fabienne\AppData\Roaming\Identities
O43 - CFD: 2011/12/30 20:28:23 - [] D -- C:\Users\Fabienne\AppData\Roaming\InstallShield
O43 - CFD: 2011/12/30 20:43:16 - [] D -- C:\Users\Fabienne\AppData\Roaming\Macromedia
O43 - CFD: 2014/09/28 16:40:53 - [0] D -- C:\Users\Fabienne\AppData\Roaming\Malwarebytes
O43 - CFD: 2015/03/20 00:04:47 - [] SD -- C:\Users\Fabienne\AppData\Roaming\Microsoft
O43 - CFD: 2014/02/09 18:24:58 - [] D -- C:\Users\Fabienne\AppData\Roaming\Mozilla
O43 - CFD: 2014/11/22 12:24:00 - [] D -- C:\Users\Fabienne\AppData\Roaming\Skype
O43 - CFD: 2012/07/12 22:08:13 - [] D -- C:\Users\Fabienne\AppData\Roaming\SoftGrid Client
O43 - CFD: 2012/06/06 09:35:32 - [0] D -- C:\Users\Fabienne\AppData\Roaming\TP
O43 - CFD: 2015/07/12 15:43:01 - [] D -- C:\Users\Fabienne\AppData\Roaming\ZHP
O43 - CFD: 2015/07/12 14:01:39 - [] D -- C:\Users\Fabienne\AppData\Local\Adobe
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Application Data
O43 - CFD: 2011/12/30 21:01:45 - [] D -- C:\Users\Fabienne\AppData\Local\ASUS
O43 - CFD: 2012/07/09 19:02:39 - [] D -- C:\Users\Fabienne\AppData\Local\Atheros
O43 - CFD: 2012/06/03 20:13:42 - [] D -- C:\Users\Fabienne\AppData\Local\Diagnostics
O43 - CFD: 2012/12/21 22:29:53 - [] D -- C:\Users\Fabienne\AppData\Local\Google
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Historique
O43 - CFD: 2015/03/20 00:11:23 - [] D -- C:\Users\Fabienne\AppData\Local\Macromedia
O43 - CFD: 2014/11/22 11:37:39 - [] D -- C:\Users\Fabienne\AppData\Local\Microsoft
O43 - CFD: 2012/06/08 21:34:04 - [] D -- C:\Users\Fabienne\AppData\Local\Microsoft Games
O43 - CFD: 2012/08/19 11:05:47 - [] DC -- C:\Users\Fabienne\AppData\Local\MigWiz
O43 - CFD: 2014/09/29 16:33:19 - [] D -- C:\Users\Fabienne\AppData\Local\Mozilla
O43 - CFD: 2014/02/09 18:28:56 - [] D -- C:\Users\Fabienne\AppData\Local\Programs
O43 - CFD: 2014/11/22 11:57:03 - [] D -- C:\Users\Fabienne\AppData\Local\Skype
O43 - CFD: 2012/06/06 09:34:30 - [] D -- C:\Users\Fabienne\AppData\Local\SoftGrid Client
O43 - CFD: 2015/07/12 15:39:39 - [] D -- C:\Users\Fabienne\AppData\Local\Temp
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/06/03 20:09:10 - [] D -- C:\Users\Fabienne\AppData\Local\VirtualStore
O43 - CFD: 2012/07/11 19:48:59 - [] D -- C:\Users\Fabienne\AppData\Local\Windows Live
O43 - CFD: 2012/06/30 08:27:23 - [0] D -- C:\Users\Fabienne\AppData\Local\{0A13D1B5-C70A-4399-BF66-F4653F6E6809}
O43 - CFD: 2012/07/28 13:28:34 - [0] D -- C:\Users\Fabienne\AppData\Local\{0D6CD0C1-FE3A-41C0-97D2-121F1F5444EF}
O43 - CFD: 2012/07/29 19:33:56 - [0] D -- C:\Users\Fabienne\AppData\Local\{10D37DFE-AB37-4769-AB4B-5AD1F43DA7B3}
O43 - CFD: 2012/07/11 19:49:31 - [0] D -- C:\Users\Fabienne\AppData\Local\{119D59C5-2989-4770-BEC7-A7F378C2AF2B}
O43 - CFD: 2012/07/12 20:38:08 - [0] D -- C:\Users\Fabienne\AppData\Local\{1E2CCF60-5521-486E-9BE2-20F3E856F546}
O43 - CFD: 2012/08/22 12:16:33 - [0] D -- C:\Users\Fabienne\AppData\Local\{2B434B37-3ECA-4CD2-9373-1598AF64E404}
O43 - CFD: 2012/08/02 11:43:40 - [0] D -- C:\Users\Fabienne\AppData\Local\{2C462F19-3ACE-4A4F-888B-887AAABDF47E}
O43 - CFD: 2012/07/12 20:38:18 - [0] D -- C:\Users\Fabienne\AppData\Local\{4454AF97-E645-464A-9D79-6AF75BA2FC1D}
O43 - CFD: 2012/07/09 18:36:41 - [0] D -- C:\Users\Fabienne\AppData\Local\{44B8D84C-7879-458C-8A4A-87358A9D1644}
O43 - CFD: 2012/07/31 11:28:39 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EC40D79-8D86-4B6F-B287-836FC430A781}
O43 - CFD: 2012/07/29 14:38:44 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EDD51E5-6CA3-4A18-8281-9651FEAD8C32}
O43 - CFD: 2012/08/03 09:47:51 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EF58FE0-AA48-4771-BF80-82E404D47518}
O43 - CFD: 2012/07/31 11:28:29 - [0] D -- C:\Users\Fabienne\AppData\Local\{50BA6C6E-31A0-4FD1-B0F6-D5EF830B942D}
O43 - CFD: 2012/06/27 14:47:04 - [0] D -- C:\Users\Fabienne\AppData\Local\{5A5FFFE7-D505-4D3E-A972-4C64948F8836}
O43 - CFD: 2012/07/11 19:47:00 - [0] D -- C:\Users\Fabienne\AppData\Local\{7036F345-263F-4050-A0A4-1A6ACAD1949C}
O43 - CFD: 2012/12/12 16:52:06 - [0] D -- C:\Users\Fabienne\AppData\Local\{74923B26-5E8B-4ECF-998F-43448ECD8ECA}
O43 - CFD: 2012/07/29 23:03:43 - [0] D -- C:\Users\Fabienne\AppData\Local\{7923A86B-7CAA-44E5-A6D7-9BCDA5FE76E0}
O43 - CFD: 2012/07/30 16:33:02 - [0] D -- C:\Users\Fabienne\AppData\Local\{92F5CA9B-A231-423B-A7E8-BDFA1848662E}
O43 - CFD: 2012/07/11 19:46:50 - [0] D -- C:\Users\Fabienne\AppData\Local\{9ACB3BB7-95B0-49C1-8314-948A04A6A3F3}
O43 - CFD: 2012/07/29 14:38:54 - [0] D -- C:\Users\Fabienne\AppData\Local\{A4277B57-6A85-4150-918B-CB35FDAE3AD8}
O43 - CFD: 2012/07/31 10:22:26 - [0] D -- C:\Users\Fabienne\AppData\Local\{A43B90E4-799A-4915-BA31-31342B853EAA}
O43 - CFD: 2012/08/03 22:14:11 - [0] D -- C:\Users\Fabienne\AppData\Local\{A781DE48-F7F3-408B-B2AF-3B422D1CA81D}
O43 - CFD: 2012/07/31 10:22:15 - [0] D -- C:\Users\Fabienne\AppData\Local\{A8364FD3-45AC-42C1-A8C9-8B64B12E9B88}
O43 - CFD: 2012/06/30 08:26:42 - [0] D -- C:\Users\Fabienne\AppData\Local\{B4D4811C-923C-45B3-A79B-5A9F2309FDA9}
O43 - CFD: 2012/08/02 11:43:26 - [0] D -- C:\Users\Fabienne\AppData\Local\{B80BFE20-C423-4E01-B361-3935A27E63EC}
O43 - CFD: 2012/06/27 14:47:01 - [0] D -- C:\Users\Fabienne\AppData\Local\{BA45AB62-F98F-4730-84C4-C2A701060DB7}
O43 - CFD: 2012/08/01 11:23:14 - [0] D -- C:\Users\Fabienne\AppData\Local\{BF691B0D-2B0D-482D-8F81-3D238329036B}
O43 - CFD: 2012/08/01 11:23:24 - [0] D -- C:\Users\Fabienne\AppData\Local\{CBCA1DC6-4FD9-4F84-859F-987EF14D2BC0}
O43 - CFD: 2012/07/28 13:28:24 - [0] D -- C:\Users\Fabienne\AppData\Local\{D049C9D5-9F4C-4A45-AB5A-B1FF4729F2DD}
O43 - CFD: 2012/07/01 16:06:41 - [0] D -- C:\Users\Fabienne\AppData\Local\{D5FEA610-C1B5-4939-BDC5-DB894FB098E4}
O43 - CFD: 2012/07/30 16:33:13 - [0] D -- C:\Users\Fabienne\AppData\Local\{D70D21C4-D4A3-4FEB-871A-64A1898E3E81}
O43 - CFD: 2012/08/03 09:48:03 - [0] D -- C:\Users\Fabienne\AppData\Local\{DBE69928-8607-42E7-AD0F-9977D4F0DA06}
O43 - CFD: 2012/08/03 22:14:22 - [0] D -- C:\Users\Fabienne\AppData\Local\{E96474F1-79BF-447E-9733-6C5C182AB41C}
O43 - CFD: 2012/06/06 10:17:07 - [0] D -- C:\Users\Fabienne\AppData\Local\{EE001B26-480D-4FD2-AE32-8AE95C5DD568}
O43 - CFD: 2012/07/29 23:03:53 - [0] D -- C:\Users\Fabienne\AppData\Local\{EEC5FD1D-A013-420B-94A0-3A208D30BF24}
O43 - CFD: 2012/08/19 09:20:43 - [0] D -- C:\Users\Fabienne\AppData\Local\{F5A20F4B-CEAB-4073-BA26-3045F68A3347}
O43 - CFD: 2012/07/11 19:49:20 - [0] D -- C:\Users\Fabienne\AppData\Local\{F71A218D-A080-40DF-820A-3B3CED75B10D}
O43 - CFD: 2012/07/29 19:33:45 - [0] D -- C:\Users\Fabienne\AppData\Local\{F849EB39-A2FA-4A70-96C7-0D2561D1A4B9}
O43 - CFD: 2012/11/21 19:04:47 - [0] D -- C:\Users\Fabienne\AppData\Local\{F8631955-9FBD-477A-A410-1B7C1AB8DF3A}
O43 - CFD: 2009/07/14 06:42:04 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/11/22 11:38:18 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2009/07/14 06:37:42 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/22 11:38:18 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

---\\ Liste des pilotes du système (SDL) (O58) (74) - 77s
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2012/05/07 15:10:18 A . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\windows\System32\drivers\AiDriver.sys [14720]
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [80256]
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [22400]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2010/06/28 07:24:00 A . (...) -- C:\windows\System32\drivers\AsIO.sys [11456]
O58 - SDL:2010/08/03 07:20:56 A . (...) -- C:\windows\System32\drivers\AsUpIO.sys [11832]
O58 - SDL:2011/10/03 23:46:14 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\drivers\athr.sys [2205696]
O58 - SDL:2009/07/14 00:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2011/03/10 16:17:28 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\windows\System32\drivers\ETD.sys [118568]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2010/11/06 09:39:18 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\windows\System32\drivers\iaStor.sys [354840]
O58 - SDL:2011/03/11 07:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\System32\drivers\iaStorV.sys [332160]
O58 - SDL:2011/12/13 09:11:44 A . (.Intel Corporation - Intel (R) WDDM Kernel Mode Driver.) -- C:\windows\System32\drivers\igddim32.sys [1336320]
O58 - SDL:2011/12/13 09:04:44 A . (.Intel Corporation - Intel (R) WDDM Kernel mode driver.) -- C:\windows\System32\drivers\igdkmd32.sys [417280]
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2011/06/09 01:37:56 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\windows\System32\drivers\IntcDAud.sys [278528]
O58 - SDL:2009/07/20 11:29:40 A . (. - Keyboard Filter Driver.) -- C:\windows\System32\drivers\kbfiltr.sys [13880]
O58 - SDL:2011/11/01 08:36:00 A . (.Atheros Communications, Inc. - Atheros Ar81xx series PCI-E Gigabit Etherne.) -- C:\windows\System32\drivers\L1C62x86.sys [91760]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\windows\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:42 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\windows\System32\drivers\mbamchameleon.sys [94936]
O58 - SDL:2015/07/12 15:41:58 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\windows\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2015/06/18 08:41:54 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\windows\System32\drivers\mwac.sys [51928]
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [117120]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [143744]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2011/10/04 13:18:08 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHDA.sys [3681000]
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\windows\System32\ANSI.SYS [9029]
O58 - SDL:2011/10/03 23:46:14 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\athr.sys [2205696]
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\windows\System32\NTIO804.SYS [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (1) - 101s
O61 - LFC: 2015/07/12 13:47:29 A . (..) -- C:\Users\Fabienne\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [332282]

---\\ Associations Shell Spawning (O67) (10) - 2s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe

---\\ Menu de démarrage Internet (SMI) (O68) (8) - 2s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (2) - 13s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} [DefaultScope] - (Google) - http://www.google.com/

---\\ Enumère les services démarrés par Svchost (SSS) (O83) (32) - 10s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [475136]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [523776]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1973728]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (8) - 68s
SS - Demand [2015/07/12 15:02:57] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2011/12/01 03:10:32] [ 92800] ASUS InstantOn Service (ASUS InstantOn) . (.ASUS.) - C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
SR - Auto [2011/08/09 01:48:20] [ 224680] Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe
SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
SS - Demand [2014/09/28 13:48:06] [ 114288] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - Auto [2014/04/03 20:21:48] [ 315008] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - Auto [2011/03/26 03:55:16] [ 91464] VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe

---\\ Scan Additionnel (O88) (1) - 0s
~ Aucun élément malicieux trouvé.

---\\ Récapitulatif des détections trouvées sur votre station (1) - 0s
~ Aucun élément malicieux trouvé.

~ End of the scan, 24025 items in 491 seconds (526)(0)()

chantoenia
 Posté le 12/07/2015 à 16:44 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

La suite :

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-07-2015
Ran by Fabienne (administrator) on FAB-NETBOOK on 12-07-2015 15:55:25
Running from C:\Users\Fabienne\Downloads
Loaded Profiles: Fabienne (Available Profiles: Fabienne & Invité)
Platform: Microsoft Windows 7 Édition Starter Service Pack 1 (X86) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(ASUS) C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
() C:\Windows\System32\AsusService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
() C:\ExpressGateUtil\VAWinService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(ASUS) C:\Program Files\Asus\InstantOn for EPC\InsOnWMI.exe
(AsusTek Computer Inc.) C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotkeyService.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\SHE\SuperHybridEngine.exe
(ASUS) C:\Program Files\Asus\CapsHook\CapsHook.exe
() C:\ExpressGateUtil\VAWinAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(AsusTek Computer Inc.) C:\Program Files\Asus\USBChargeSetting\iSeriesCharge.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
() C:\Program Files\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_203.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_203.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [GfxServiceInstall] => C:\windows\system32\GfxCUIServiceInstall.vbs [131 2011-12-13] ()
HKLM\...\Run: [HotkeyMon] => C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe [101800 2011-08-09] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotkeyService] => C:\Program Files\ASUS\HotkeyService\HotkeyService.exe [1263024 2011-08-09] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\ASUS\SHE\SuperHybridEngine.exe [425400 2011-08-02] (ASUSTeK Computer Inc.)
HKLM\...\Run: [LiveUpdate] => C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080 2011-11-10] (AsusTek Computer Inc.)
HKLM\...\Run: [CapsHook] => C:\Program Files\ASUS\CapsHook\CapsHook.exe [445344 2010-11-15] (ASUS)
HKLM\...\Run: [VAWinAgent] => C:\ExpressGateUtil\VAWinAgent.exe [45448 2011-08-20] ()
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11004520 2011-09-28] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [1813800 2011-03-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3331312 2011-12-30] (ASUSTek Computer Inc.)
HKLM\...\Run: [iSeriesCharge] => C:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exe [99792 2012-06-28] (AsusTek Computer Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> DefaultScope {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} URL = http://www.google.com/search?hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} URL = http://www.google.com/search?hl=en&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{C0B3BCBA-5DF7-4DC6-8A34-50FF74492582}: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Fabienne\AppData\Roaming\Mozilla\Firefox\Profiles\mv153n8f.default-1436707919684
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll [2015-07-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [92800 2011-12-01] (ASUS)
R2 AsusService; C:\windows\system32\AsusService.exe [224680 2011-08-09] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-03-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiDriver; C:\windows\System32\DRIVERS\AiDriver.sys [14720 2012-05-07] (ASUSTek Computer Inc.)
R1 AsIO; C:\windows\System32\drivers\AsIO.sys [11456 2010-06-28] ()
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11832 2010-08-03] ()
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [118568 2011-03-10] (ELAN Microelectronics Corp.)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
S4 aswSP; No ImagePath

========================== Drivers MD5 =======================

C:\windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\windows\system32\drivers\djsvs.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\AiDriver.sys 68D6075D1FDC90038B0DC5B9D1F17ADF
C:\windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\windows\system32\drivers\appid.sys ==> MD5 is legit
C:\windows\system32\drivers\arc.sys ==> MD5 is legit
C:\windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\windows\System32\drivers\AsIO.sys 956C7177DBDA0F02436868AD644CCF31
C:\windows\System32\drivers\AsUpIO.sys A9A565C669786C402752F609AFDD0DD5
C:\windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\windows\system32\drivers\atapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\athr.sys 9B8C87C27A166CE84BE6EDDBA3854527
C:\windows\system32\drivers\bxvbdx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\windows\system32\drivers\BthEnum.sys ==> MD5 is legit
C:\windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bthpan.sys ==> MD5 is legit
C:\windows\System32\Drivers\BTHport.sys 1153DE2E4F5941E10C399CB5592F78A1
C:\windows\System32\Drivers\BTHUSB.sys C81E9413A25A439F436B1D4B6A0CF9E9
C:\windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\windows\System32\CLFS.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\windows\System32\Drivers\cng.sys 85449EEBE8F8EBD6481EFBF0F352B4EB
C:\windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\windows\System32\drivers\discache.sys ==> MD5 is legit
C:\windows\System32\drivers\disk.sys ==> MD5 is legit
C:\windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\windows\system32\drivers\evbdx.sys ==> MD5 is legit
C:\windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ETD.sys 09E105E3997C2E6E126726EE5DDFAFB6
C:\windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\windows\system32\drivers\flpydisk.sys ==> MD5 is legitB
C:\windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\windows\System32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\windows\System32\drivers\iaStor.sys F4037A3FEDB92DD97C95F320766EA5C9
C:\windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\windows\System32\DRIVERS\igddim32.sys 72A75B01371384ECBCFC6AD2AF6B9389
C:\windows\System32\DRIVERS\igdkmd32.sys 6B78789287D43615E7908CA31C0D5D6D
C:\windows\System32\DRIVERS\igdkmd32.sys 6B78789287D43615E7908CA31C0D5D6D
C:\windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\windows\System32\drivers\RTKVHDA.sys C281E19D77C6B0B0DB5459E7C317CF76
C:\windows\System32\DRIVERS\IntcDAud.sys 8F4D251F1EA15FA97E8399128A72CC83
C:\windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\kbfiltr.sys 3EB803312987FF44265C87CB960DF6AB
C:\windows\System32\Drivers\ksecdd.sys 4120DA10AA42A9996F4575DB9E3E6E6E
C:\windows\System32\Drivers\ksecpkg.sys 1E1845606C5A4579F7F3D95796CC1ED1
C:\windows\System32\DRIVERS\L1C62x86.sys 2D60DFAD37C101E35520E38F12B59770
C:\windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\windows\system32\drivers\mbam.sys B4CD87E78A01562E3DA67FE1C2779204
C:\windows\system32\drivers\mwac.sys 490F0F3ED8A970E2BAA38F719242B8F7
C:\windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\windows\System32\drivers\modem.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\MpFilter.sys 6460D4A5C981567E74A7AC1349DE10F5
C:\windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\mrxdav.sys 21F4B24ACFC79A483515BD986DD9043F
C:\windows\System32\DRIVERS\mrxsmb.sys 5D16C921E3671636C0EBA3BBAAC5FD25
C:\windows\System32\DRIVERS\mrxsmb10.sys 6D17A4791ACA19328C685D256349FEFC
C:\windows\System32\DRIVERS\mrxsmb20.sys B81F204D146000BE76651A50670A5E9E
C:\windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\NisDrvWFP.sys 6A83B8AF342E61DEE353BAA81F67B7DA
C:\windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\windows\system32\drivers\parport.sys ==> MD5 is legit
C:\windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\windows\system32\drivers\parvdm.sys ==> MD5 is legit
C:\windows\System32\drivers\pci.sys ==> MD5 is legit
C:\windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\windows\system32\drivers\processr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rfcomm.sys CB928D9E6DAF51879DD6BA8D02F01321
C:\windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\windows\system32\drivers\serial.sys ==> MD5 is legit
C:\windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\Sftfslh.sys EC5C79BD81F0C55DF53F4818D4F1C2C8
C:\windows\System32\DRIVERS\Sftplaylh.sys A224670FB892A205E4D99E06C0B85C7C
C:\windows\System32\DRIVERS\Sftredirlh.sys 9D354D425FB55CDF0EDC7F67FBC5B04E
C:\windows\System32\DRIVERS\Sftvollh.sys F369D6B89AA610174A4E90C8513B7C7A
C:\windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\windows\system32\drivers\TsUsbGD.sys 01246F0BAAD7B68EC0F472AA41E33282
C:\windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\windows\system32\drivers\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\windows\system32\drivers\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\windows\system32\drivers\usbprint.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\windows\system32\drivers\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\windows\System32\Drivers\usbvideo.sys DE014425522610BEDCA3821BB8C0F1D5
C:\windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\windows\System32\drivers\vga.sys ==> MD5 is legit
C:\windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\windows\system32\drivers\viac7.sys ==> MD5 is legit
C:\windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\windows\System32\drivers\volsnap.sys C37AEE5966EB5929E2051AC7409B5730
C:\windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\windows\System32\DRIVERS\vwifimp.sys A3F04CBEA6C2A10E6CB01F8B47611882
C:\windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\system32\drivers\wd.sys ==> MD5 is legit
C:\windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-12 15:55 - 2015-07-12 15:57 - 00026252 _____ C:\Users\Fabienne\Downloads\FRST.txt
2015-07-12 15:53 - 2015-07-12 15:55 - 00000000 ____D C:\FRST
2015-07-12 15:51 - 2015-07-12 15:52 - 01634816 _____ (Farbar) C:\Users\Fabienne\Downloads\FRST.exe
2015-07-12 15:49 - 2015-07-12 15:49 - 00054183 _____ C:\Users\Fabienne\Desktop\ZHPDiag rapport 12 juillet.txt
2015-07-12 15:48 - 2015-07-12 15:48 - 00054183 _____ C:\Users\Fabienne\Desktop\ZHPDiag.txt
2015-07-12 15:39 - 2015-07-12 15:43 - 00000000 ____D C:\Users\Fabienne\AppData\Roaming\ZHP
2015-07-12 15:39 - 2015-07-12 15:39 - 00000785 _____ C:\Users\Fabienne\Desktop\ZHPDiag.lnk
2015-07-12 15:38 - 2015-07-12 15:38 - 01838592 _____ C:\Users\Fabienne\Downloads\ZHPDiag3.exe
2015-07-12 15:32 - 2015-07-12 15:32 - 00000000 ____D C:\Users\Fabienne\Desktop\Anciennes données de Firefox
2015-07-12 13:56 - 2015-07-12 13:57 - 01187520 _____ (Adobe Systems Incorporated) C:\Users\Fabienne\Downloads\flashplayer18au_ha_install(1).exe

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-12 15:53 - 2012-06-04 12:00 - 01128670 _____ C:\windows\WindowsUpdate.log
2015-07-12 15:46 - 2009-07-14 06:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-12 15:46 - 2009-07-14 06:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-12 15:41 - 2014-09-28 16:41 - 00098520 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-12 15:03 - 2014-02-09 17:23 - 00001002 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-07-12 15:02 - 2013-03-17 13:47 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-07-12 15:02 - 2011-12-30 20:43 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 14:47 - 2014-09-28 16:40 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-12 14:47 - 2014-09-28 16:39 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-07-12 14:01 - 2012-06-03 20:05 - 00000000 ____D C:\Users\Fabienne\AppData\Local\Adobe
2015-07-12 13:48 - 2009-07-27 12:11 - 01701896 _____ C:\windows\system32\PerfStringBackup.INI
2015-07-12 13:42 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-07-12 13:41 - 2009-07-14 06:53 - 00032472 _____ C:\windows\Tasks\SCHEDLGU.TXT
2015-07-12 13:40 - 2012-06-27 14:40 - 00011364 _____ C:\windows\setupact.log
2015-07-05 12:11 - 2012-06-06 09:12 - 00246952 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2015-06-18 08:41 - 2014-09-28 16:39 - 00094936 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-06-18 08:41 - 2014-09-28 16:39 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-06-18 08:41 - 2014-02-09 18:29 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys

Some files in TEMP:
====================
C:\Users\Fabienne\AppData\Local\Temp\msvcp110.dll
C:\Users\Fabienne\AppData\Local\Temp\msvcr110.dll
C:\Users\Fabienne\AppData\Local\Temp\pc-decrapifier.exe
C:\Users\Fabienne\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-26 18:16

==================== End of log ============================

chantoenia
 Posté le 12/07/2015 à 16:45 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

suite:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-07-2015
Ran by Fabienne at 2015-07-12 15:58:40
Running from C:\Users\Fabienne\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-1388478540-2806055896-2915544884-500 - Administrator - Disabled)
Fabienne (S-1-5-21-1388478540-2806055896-2915544884-1000 - Administrator - Enabled) => C:\Users\Fabienne
Invité (S-1-5-21-1388478540-2806055896-2915544884-501 - Limited - Enabled) => C:\Users\Invité

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Out of date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Out of date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.03 - ASUSTeK Computer Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.3.0 - AzureWave)
ETDWare PS/2-X86 8.0.5.2_WHQL (HKLM\...\Elantech) (Version: 8.0.5.2 - ELAN Microelectronic Corp.)
ExpressGateCloud (HKLM\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.7.44.279 - VideACE Co.)
ExpressGateCloud (Version: 2.7.44.279 - VideACE Co.) Hidden
FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek)
FontResizer (Version: 1.01.0011 - ASUSTek) Hidden
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.45 - AsusTek Computer Inc.)
InstantOn for EPC (HKLM\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.6 - ASUS)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.14.8.1064 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.30 - AsusTek Computer Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Media Sharing (HKLM\...\{9042F9FE-43CB-4ACF-9978-F62235127F90}) (Version: 0.65.6 - ASUS)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office « Démarrer en un clic » 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Français (HKLM\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 fr) (HKLM\...\Mozilla Firefox 32.0.3 (x86 fr)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6473 - Realtek Semiconductor Corp.)
Skype™ 6.22 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.105 - Skype Technologies S.A.)
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.19 - AsusTek Computer)
USBCharge+ (HKLM\...\{8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}) (Version: 1.0.0.23 - AsusTek Computer)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

08-11-2014 15:08:35 Windows Update
21-11-2014 20:46:55 Point de contrôle planifié
22-11-2014 09:47:52 Windows Update
26-11-2014 17:15:42 Windows Update
12-07-2015 14:39:43 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1D9C8CF4-FF43-43D8-807A-23B628396CA8} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1388478540-2806055896-2915544884-1000
Task: {25801D3F-851B-43A0-B2FA-AED790783B94} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {46CB3F07-F24E-43BD-BCDD-FB11B219EFA5} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-12] (Adobe Systems Incorporated)
Task: {78665B8C-97CC-43CB-8C4E-2639F15FEAC7} - System32\Tasks\{714BDD3D-C278-4755-9B05-E013BF9E1B6D} => Firefox.exe http://ui.skype.com/ui/0/6.22.81.105/fr/go/help.faq.installer?source=lightinstaller&amp;LastError=1618

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (Whitelisted) ==============

2011-12-30 20:43 - 2011-08-09 01:48 - 00224680 _____ () C:\windows\system32\AsusService.exe
2011-03-26 03:55 - 2011-03-26 03:55 - 00091464 _____ () C:\ExpressGateUtil\VAWinService.exe
2011-03-26 03:55 - 2011-03-26 03:55 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll
2011-03-26 03:55 - 2011-03-26 03:55 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL
2011-11-11 00:00 - 2011-11-11 00:00 - 00181664 _____ () C:\Program Files\Asus\LiveUpdate\Parser.dll
2011-08-20 00:42 - 2011-08-20 00:42 - 00045448 _____ () C:\ExpressGateUtil\VAWinAgent.exe
2014-09-25 20:44 - 2014-09-25 20:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2010-02-28 02:33 - 2010-02-28 02:33 - 00077664 _____ () C:\Program Files\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2014-09-28 13:47 - 2014-09-28 13:48 - 03715184 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2015-07-12 14:00 - 2015-07-12 14:00 - 17418416 _____ () C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{3AC0D5FE-0BD8-451B-868E-AA26E164A68F}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{C7A72BB2-3788-4D88-ADB3-AF8DEA67232C}C:\program files\wisharing\wisharing.exe] => (Block) C:\program files\wisharing\wisharing.exe
FirewallRules: [UDP Query User{B80F0CC4-0E27-4B0F-82C8-5CF02BA31072}C:\program files\wisharing\wisharing.exe] => (Block) C:\program files\wisharing\wisharing.exe
FirewallRules: [{4DFA002B-60D8-40F5-82EA-15B695FF7BC9}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/12/2015 01:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_LanmanServer, version : 6.1.7600.16385, horodatage : 0x4a5bc100
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x440
Heure de début de l’application défaillante : 0xsvchost.exe_LanmanServer0
Chemin d’accès de l’application défaillante : svchost.exe_LanmanServer1
Chemin d’accès du module défaillant: svchost.exe_LanmanServer2
ID de rapport : svchost.exe_LanmanServer3

Error: (03/20/2015 12:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante plugin-container.exe, version : 32.0.3.5379, horodatage : 0x54224e6b
Nom du module défaillant : mozalloc.dll, version : 32.0.3.5379, horodatage : 0x54221b67
Code d’exception : 0x80000003
Décalage d’erreur : 0x0000141b
ID du processus défaillant : 0xb7c
Heure de début de l’application défaillante : 0xplugin-container.exe0
Chemin d’accès de l’application défaillante : plugin-container.exe1
Chemin d’accès du module défaillant: plugin-container.exe2
ID de rapport : plugin-container.exe3

Error: (03/20/2015 12:14:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme firefox.exe version 32.0.3.5379 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : a5c

Heure de début : 01d06290e8acff06

Heure de fin : 372

Chemin d’accès de l’application : C:\Program Files\Mozilla Firefox\firefox.exe

ID de rapport : 4e90ec91-ce85-11e4-8618-c8600024490f

Error: (03/19/2015 11:47:58 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
(Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.

Error: (11/26/2014 05:25:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Skype.exe version 6.22.81.105 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 720

Heure de début : 01d0098879743756

Heure de fin : 520

Chemin d’accès de l’application : C:\Program Files\Skype\Phone\Skype.exe

ID de rapport : 6c890841-7580-11e4-abca-c8600024490f

Error: (11/22/2014 12:30:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Skype.exe version 6.22.81.105 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : f7c

Heure de début : 01d0063a9a67680d

Heure de fin : 618

Chemin d’accès de l’application : C:\Program Files\Skype\Phone\Skype.exe

ID de rapport : 8176ca7c-7232-11e4-abca-c8600024490f

Error: (11/22/2014 12:17:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Skype.exe, version : 6.22.81.105, horodatage : 0x545b43cb
Nom du module défaillant : igdumd32.dll, version : 8.14.8.1064, horodatage : 0x4ee7da60
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0003b355
ID du processus défaillant : 0xf7c
Heure de début de l’application défaillante : 0xSkype.exe0
Chemin d’accès de l’application défaillante : Skype.exe1
Chemin d’accès du module défaillant: Skype.exe2
ID de rapport : Skype.exe3

Error: (11/13/2014 06:45:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
(Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.

Error: (11/07/2014 09:14:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante InsOnSrv.exe, version : 2.1.7.1, horodatage : 0x4ed5f236
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x6cc
Heure de début de l’application défaillante : 0xInsOnSrv.exe0
Chemin d’accès de l’application défaillante : InsOnSrv.exe1
Chemin d’accès du module défaillant: InsOnSrv.exe2
ID de rapport : InsOnSrv.exe3

Error: (11/07/2014 08:39:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante iSeriesCharge.exe, version : 6.0.0.10, horodatage : 0x4febd5f3
Nom du module défaillant : iSeriesCharge.exe, version : 6.0.0.10, horodatage : 0x4febd5f3
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00002bb1
ID du processus défaillant : 0xdb8
Heure de début de l’application défaillante : 0xiSeriesCharge.exe0
Chemin d’accès de l’application défaillante : iSeriesCharge.exe1
Chemin d’accès du module défaillant: iSeriesCharge.exe2
ID de rapport : iSeriesCharge.exe3


System errors:
=============
Error: (07/12/2015 01:43:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Infrastructure de gestion Windows, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/12/2015 01:43:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Service de profil utilisateur, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/12/2015 01:42:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Détection matériel noyau, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/12/2015 01:42:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Serveur, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Infrastructure de gestion Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Thèmes s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Détection matériel noyau s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service de notification d’événements système s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Planificateur de tâches s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service de profil utilisateur s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.


Microsoft Office:
=========================
Error: (07/12/2015 01:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_LanmanServer6.1.7600.163854a5bc100unknown0.0.0.000000000c00000050000000044001d0bc97973c30c8C:\windows\system32\svchost.exeunknowne64274e9-288a-11e5-b974-c8600024490f

Error: (03/20/2015 12:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe32.0.3.537954224e6bmozalloc.dll32.0.3.537954221b67800000030000141bb7c01d06291d2225688C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozalloc.dll55027853-ce85-11e4-8618-c8600024490f

Error: (03/20/2015 12:14:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe32.0.3.5379a5c01d06290e8acff06372C:\Program Files\Mozilla Firefox\firefox.exe4e90ec91-ce85-11e4-8618-c8600024490f

Error: (03/19/2015 11:47:58 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.

Error: (11/26/2014 05:25:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.22.81.10572001d0098879743756520C:\Program Files\Skype\Phone\Skype.exe6c890841-7580-11e4-abca-c8600024490f

Error: (11/22/2014 12:30:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.22.81.105f7c01d0063a9a67680d618C:\Program Files\Skype\Phone\Skype.exe8176ca7c-7232-11e4-abca-c8600024490f

Error: (11/22/2014 12:17:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe6.22.81.105545b43cbigdumd32.dll8.14.8.10644ee7da60c00000050003b355f7c01d0063a9a67680dC:\Program Files\Skype\Phone\Skype.exeC:\windows\system32\igdumd32.dllb8703779-7230-11e4-abca-c8600024490f

Error: (11/13/2014 06:45:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.

Error: (11/07/2014 09:14:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: InsOnSrv.exe2.1.7.14ed5f236unknown0.0.0.000000000c0000005000000006cc01cffaba21ec729bC:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exeunknown49c96b6b-66b2-11e4-b98b-c8600024490f

Error: (11/07/2014 08:39:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iSeriesCharge.exe6.0.0.104febd5f3iSeriesCharge.exe6.0.0.104febd5f3c000000500002bb1db801cffaba2d783c2aC:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exeC:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exe78d99a6e-66ad-11e4-b98b-c8600024490f


==================== Memory info ===========================

Processor: Intel(R) Atom(TM) CPU N2800 @ 1.86GHz
Percentage of memory in use: 92%
Total physical RAM: 1011.94 MB
Available physical RAM: 77.71 MB
Total Virtual: 2179.94 MB
Available Virtual: 352.92 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100 GB) (Free:70.77 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:183.07 GB) (Free:182.98 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: A8D6F410)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=1B)
Partition 3: (Not Active) - (Size=183.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=16 MB) - (Type=EF)

==================== End of log ============================

chantoenia
 Posté le 12/07/2015 à 16:46 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

le dernier:

Users shortcut scan result (x86) Version: 11-07-2015
Ran by Fabienne at 2015-07-12 16:01:23
Running from C:\Users\Fabienne\Downloads
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)



Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\LiveUpdate.lnk -> C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk -> C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk -> C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel Control Center.lnk -> C:\Program Files\Intel\Intel Control Center\IntelControlCenter.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam\E-Cam.lnk -> C:\Program Files\E-Cam\E-CAM.exe (AzureWave)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam\Uninstall E-Cam.lnk -> C:\Program Files\InstallShield Installation Information\{185AFA7A-F63E-450B-94AA-011CAC18090E}\Uninstall\setup.exe (Macrovision Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Uninstall Defraggler.lnk -> C:\Program Files\Defraggler\uninst.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Media Sharing\ASUS Media Sharing.lnk -> C:\Windows\Installer\{9042F9FE-43CB-4ACF-9978-F62235127F90}\_BDA4D59F8840A70098A0D9.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\USBCharge+\USBCharge+.lnk -> C:\Program Files\Asus\USBChargeSetting\USBChargeSetting.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\Super Hybrid Engine\SuperHybridEngine.lnk -> C:\Program Files\Asus\SHE\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\LiveUpdate\Readme.lnk -> C:\Program Files\Asus\LiveUpdate\Help.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\FontResizer\FontResizer.lnk -> C:\Program Files\Asus\FontResizer\FontResizer.exe (ASUSTek.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\CapsHook\CapsHook.lnk -> C:\Program Files\Asus\CapsHook\CapsHook.exe (ASUS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSUpdate for Eee PC\ASUSUpdate.lnk -> C:\Program Files\Asus\ASUSUpdate for Eee PC\Update.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSUpdate for Eee PC\Uninstall ASUSUpdate.lnk -> C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe (InstallShield Software Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\ExpressGateCloud\OS Switch.lnk -> C:\ExpressGateUtil\OS Switch.exe (TODO: <Company name>)
Shortcut: C:\Users\Default\Links\Desktop.lnk -> C:\Users\Fabienne\Desktop ()
Shortcut: C:\Users\Default\Links\Downloads.lnk -> C:\Users\Fabienne\Downloads ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\WiSharing Device.lnk -> C:\Program Files\WiSharing\WiFTPAddDev.exe (No File)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\Trend Micro\Trend Micro Titanium.lnk -> C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (No File)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\Links\Desktop.lnk -> C:\Users\Fabienne\Desktop ()
Shortcut: C:\Users\Fabienne\Links\Downloads.lnk -> C:\Users\Fabienne\Downloads ()
Shortcut: C:\Users\Fabienne\Desktop\Fabienne - Raccourci.lnk -> C:\Users\Fabienne ()
Shortcut: C:\Users\Fabienne\Desktop\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\Desktop\ZHPDiag.lnk -> C:\Users\Fabienne\AppData\Roaming\ZHP\ZHPDiag3.exe ()
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Word\Inventaire%20appartement%20Carroz302365591853204797\Inventaire%20appartement%20Carroz.doc.lnk -> E:\0 Appart CARROZ 10 2009\Inventaire appartement Carroz.doc (No File)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth File Transfer.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\WiSharing Device.lnk -> C:\Program Files\WiSharing\WiFTPAddDev.exe (No File)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (5).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\Links\Desktop.lnk -> C:\Users\Invité\Desktop ()
Shortcut: C:\Users\Invité\Links\Downloads.lnk -> C:\Users\Invité\Downloads ()
Shortcut: C:\Users\Invité\Desktop\E-Cam.lnk -> C:\Program Files\E-Cam\E-CAM.exe (AzureWave)
Shortcut: C:\Users\Invité\Desktop\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\Desktop\Documents Fabienne\sauvegarde usb lycee\Mes images\Échantillons d'images.lnk -> C:\Users\Public\Pictures\Échantillons d'images (No File)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\Trend Micro\Trend Micro Titanium.lnk -> C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (No File)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (5).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\E-Manual.lnk -> C:\Program Files\Asus\E-Manual\E-Manual.pdf ()
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Skype.lnk -> C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe ()




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Excel Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Word Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Bibliothèque multimédia Microsoft.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Bibliothèque multimédia Microsoft 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office 2010 Centre de téléchargement 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Picture Manager.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Picture Manager 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Starter To-Go Device Manager 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\FontResizer\Uninstall FontResizer.lnk -> C:\Program Files\InstallShield Installation Information\{17780F99-A9DF-450B-81B3-6781B20A17A8}\setup.exe (ASUSTek ) -> -runfromtemp -removeonly
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\ExpressGateCloud\Uninstall ExpressGateCloud.lnk -> C:\Program Files\InstallShield Installation Information\{36B0DC39-3282-40EB-8587-B875CE46C3A7}\setup.exe (VideACE Co. ) -> -runfromtemp -l0x0409
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (5).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\Desktop\Microsoft Excel Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\Users\Invité\Desktop\Microsoft Word Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (5).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Defraggler Homepage.url -> hxxp://www.piriform.com/defraggler
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner
InternetURL: C:\Users\Fabienne\Favorites\ASUS Member Home.url -> hxxp://vip.asus.com/user/uhome.aspx
InternetURL: C:\Users\Fabienne\Favorites\Homéopathie - Ingrid Schutt Homéopathe - Montréal.url -> hxxp://www.homeopathe.ca/fr/emergency.html
InternetURL: C:\Users\Fabienne\Favorites\Location appartement résidence sécurisée front de mer piscine privée, location vacances FRONTIGNAN PLAGE - 34 Hérault.url -> hxxp://www.amivac.com/location_tarif.asp?cli=44962&mb=2
InternetURL: C:\Users\Fabienne\Favorites\Links\Sites suggérés.url -> https://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\Invité\Favorites\Links\Sites suggérés.url -> https://ieonline.microsoft.com/#ieslice

==================== End of log =============================

Merci

chantoenia
 Posté le 13/07/2015 à 08:55 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Bonjour

N'ayant eu aucune réponse à mon sujet sur une centaine de visite , je pense que le problème n'est pas solvable.

Bonne journee

Page : [1] 
Page 1 sur 1

Vous devez être connecté pour participer à la discussion.
Cliquez ici pour vous identifier.

Vous n'avez pas de compte ? Créez-en un gratuitement !
Recevoir PC Astuces par e-mail


La Lettre quotidienne +226 000 inscrits
Avec l'actu, des logiciels, des applis, des astuces, des bons plans, ...

Les bonnes affaires
Une fois par semaine, un récap des meilleurs offres.

Les fonds d'écran
De jolies photos pour personnaliser votre bureau. Une fois par semaine.

Les nouveaux Bons Plans
Des notifications pour ne pas rater les bons plans publiés sur le site.

Les bons plans du moment PC Astuces

Tous les Bons Plans
719,99 €Ordinateur portable tactile Lenovo Flex 5 (14 pouces, Ryzen 5 5500u, 8Go RAM, SSD 512 Go) à 719,99 €
Valable jusqu'au 13 Avril

Darty fait une promotion sur l'ordinateur portable Lenovo Flex 5 14 14ALC05 à 719,99 € alors qu'on le trouve habituellement à 899 €. Cet ordinateur portable dispose d'un écran 14 pouces tactile Full HD (1920x1080) IPS, d'un processeur AMD Ryzen 5 5500 U, de 8 Go de RAM, d'un SSD de 512 Go, d'un chip graphique Vega 7, d'une webcam et de connexions Bluetooth, WiFi 6, Ethernet, HDMI, USB 3.1 et USB 3. Le tout tourne sous Windows 10. Grâce à sa charnière à 360°, il peut se transformer en tablette. Autonomie de 9h.


> Voir l'offre
78,99 €SSD Samsung 870 QVO 1 To à 77,99 €
Valable jusqu'au 13 Avril

Amazon fait une promotion sur le SSD Samsung 870 QVO 1 To qui passe à 77,99 € au lieu de 90 €. Ce SSD offre des vitesses de 560 Mo/s en lecture et 530 Mo/s en écriture. Il est garanti 3 ans.


> Voir l'offre
99,99 €Clavier mécanique Corsair K60 RGB Pro à 99,99 €
Valable jusqu'au 13 Avril

Amazon fait une promotion sur le clavier Corsair K60 RGB Pro qui passe à 99,99 € livré gratuitement au lieu de 129 €. Avec son design en aluminium, ce clavier offre une expérience de jeu agréable au quotidien. Il embarque notamment des switches Cherry Viola ainsi qu'un rétroéclairage RGB par touche.


> Voir l'offre

Sujets relatifs
pc lent programme ne répond pas aléatoirement
Pb souris incontrolable sur PC portable ASUS.
Firefox ne répond pas!!
Firefox ne répond pas!!
zhbHelpProcess _ ne répond pas
Restauration d'usine pour ASUS
Processus disque dur asus 100% sans raison et impossibilité msj Windows 8.1
doit on mettre un anti virus sur un portable asus chrombook
PC très lent script ne répond pas
Message : Ne répond pas
Plus de sujets relatifs à Eee PC asus "ne repond pas ''
 > Tous les forums > Forum Sécurité