|
 Posté le 12/07/2015 @ 14:49 |
| bonjour,
Mon Eee PC Assus rame énormement . Je ne peux plus l'utiliser car à chaque fois que je veux ouvrir quelque chose , il met beaucoup de temps et affiche " ne répond pas". Ceci se produit quand j'ouvre Word starter, ou mozilla et même le panneau de configuration. Parfois, cela semble fonctionner a peu prés normalement mais très vite il se bloque ! Pouvez m'aider svp ? Je vous remercie .
Eee PC asus 1025 C
Processeur: Inter Atom CPU N 2800 1,86 GHz
windows édition Starter 2009
systeme exploitation 32 bits Modifié par chantoenia le 12/07/2015 16:10 |
|
|
|
|
|
Posté le 12/07/2015 à 16:43 |
| Voici les rapports demandés dans le sujet "aide au diag d'un PC infecté "
~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12)
~ Démarré par Fabienne (Administrator) (2015/07/12 15:40:32)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version: Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Fabienne\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Fabienne\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
~ Windows 7, 32-bit Service Pack 1 (Build 7601)
---\\ Navigateurs Internet (2) - 1s
MFIE: Mozilla Firefox 32.0.3 (x86 fr) v32.0.3
MSIE: Internet Explorer v11.0.9600.17420
---\\ Informations sur les produits Windows (3) - 51s
~ Windows Server License Manager Script : OK
System - VBScript Engine not found
Windows Activation Technologies : OK
---\\ Logiciels de protection (3) - 8s
Malwarebytes Anti-Malware version 2.1.8.1057
Microsoft Security Client v4.6.0305.0
Microsoft Security Essentials v4.6.305.0
---\\ Logiciels d'optimisation (1) - 8s
CCleaner v4.18
---\\ Surveillance de Logiciels (2) - 9s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.1 MUI
---\\ Informations sur le système (6) - 0s
~ Operating System: x86 Family 6 Model 54 Stepping 1, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
~ Total physical RAM (KB): 1036228
~ System Restore: Activé (Enable)
~ System drive C: has 72 GB free of 102 GB
---\\ Mode de connexion au système (3) - 0s
~ Computer Name: FAB-NETBOOK
~ User Name: Fabienne
~ Logged in as Administrator
---\\ Enumération des unités disques (2) - 0s
~ Drive C: has 72 GB free of 102 GB (System)
~ Drive D: has 187 GB free of 187 GB
---\\ Recherche particulière de fichiers génériques (23) - 23s
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\windows\Explorer.exe [2616320]
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\windows\System32\rundll32.exe [44544]
[MD5.B5C5DCAD3899512020D135600129D665] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\windows\System32\Wininit.exe [96256]
[MD5.6DD7D61A8EF3DFEC4FAEFEB395E77424] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\windows\System32\wininet.dll [1892864]
[MD5.52449FD429D6053B78AE564DEF303870] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\windows\System32\Winlogon.exe [304128]
[MD5.E3AE23569749DE12D45BA3B489A036AE] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\windows\System32\sppcomapi.dll [193536]
[MD5.129F80D7868E30DF3E3DE33A1D3132B4] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\windows\System32\fr-FR\user32.dll.mui [20480]
[MD5.D0B388DA1D111A34366E04EB4A5DD156] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\windows\System32\drivers\AFD.sys [338944]
[MD5.338C86357871C167A96AB976519BF59E] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\windows\System32\drivers\atapi.sys [21584]
[MD5.77EA11B065E0A8AB902D78145CA51E10] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\windows\System32\drivers\Cdfs.sys [70656]
[MD5.BE167ED0FDB9C1FA1133953C18D5A6C9] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\windows\System32\drivers\Cdrom.sys [108544]
[MD5.F024449C97EC1E464AAFFDA18593DB88] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\windows\System32\drivers\DfsC.sys [78336]
[MD5.9036377B8A6C15DC2EEC53E489D159B5] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\windows\System32\drivers\HDAudBus.sys [108544]
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\windows\System32\drivers\i8042prt.sys [80896]
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\windows\System32\drivers\IpNat.sys [101888]
[MD5.5D16C921E3671636C0EBA3BBAAC5FD25] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\windows\System32\drivers\MRxSmb.sys [123904]
[MD5.280122DDCF04B378EDD1AD54D71C1E54] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\windows\System32\drivers\netBT.sys [187904]
[MD5.C8DFF8D07755A66C7A4A738930F0FEAC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\windows\System32\drivers\ntfs.sys [1212352]
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\windows\System32\drivers\Parport.sys [79360]
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\windows\System32\drivers\Rasl2tp.sys [78848]
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\windows\System32\drivers\smb.sys [71168]
[MD5.B459575348C20E8121D6039DA063C704] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\windows\System32\drivers\tdx.sys [74752]
[MD5.C37AEE5966EB5929E2051AC7409B5730] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\windows\System32\drivers\volsnap.sys [246144]
---\\ Processus lancés (15) - 18s
[MD5.8165C8825C726A7D5EFDF863A2D1C28F] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe [92800] [PID.1908]
[MD5.689CA2A0C7ABA6C091FEEEE9439C83DB] - (...) -- C:\Windows\System32\AsusService.exe [224680] [PID.1936]
[MD5.C37CE43FB54066FFB540729C6E6E194E] - (...) -- C:\ExpressGateUtil\VAWinService.exe [91464] [PID.2136]
[MD5.8D82A1DB500C559B0128256444B588E3] - (.ASUS - ASUS InstantOn Program.) -- C:\Program Files\Asus\InstantOn for EPC\InsOnWMI.exe [100992] [PID.896]
[MD5.382B9E735145F20FB4EDFD81A7E06BBE] - (.AsusTek Computer Inc. - Asus EeePC LiveUpdate for Bios, Driver, Sof.) -- C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080] [PID.444]
[MD5.CE5D8B9FD7E811279E3D768D123502D4] - (.ASUSTeK Computer Inc. - Asus Hotkey Service.) -- C:\Program Files\Asus\HotkeyService\HotkeyService.exe [1263024] [PID.2904]
[MD5.9C727D8EC69EA0F0B4BCB4F26EF5688E] - (.ASUSTeK Computer Inc. - AsEPCMon.) -- C:\Program Files\Asus\HotkeyService\HotKeyMon.exe [101800] [PID.2932]
[MD5.48F3DE1BB07E1BF0ABA70146B5FDED18] - (.ASUSTeK Computer Inc. - Eee Super Hybrid Engine.) -- C:\Program Files\Asus\SHE\SuperHybridEngine.exe [425400] [PID.704]
[MD5.D398A7354368DD84CA749D09C03A314D] - (.ASUS - CapsAndNumKeyNotify.) -- C:\Program Files\Asus\CapsHook\CapsHook.exe [445344] [PID.3152]
[MD5.6F4785A8BEFCA2BA6DE09859E5296EAB] - (...) -- C:\ExpressGateUtil\VAWinAgent.exe [45448] [PID.956]
[MD5.3977E6AB25446D645487F313E5E14E06] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11004520] [PID.3964]
[MD5.186183EC3308BDF07B7DFE8963B4DBDE] - (.ELAN Microelectronics Corp. - ETD Control Center.) -- C:\Program Files\Elantech\ETDCtrl.exe [1813800] [PID.3300]
[MD5.F32CBBB62256899E253E6A0A87FEF238] - (.AsusTek Computer Inc. - USB charge for Apple product.) -- C:\Program Files\Asus\USBChargeSetting\iSeriesCharge.exe [99792] [PID.3568]
[MD5.E5CFEBA7AACE574A932E22D39F05B4D8] - (.ELAN Microelectronics Corp. - ETD Control Center Helper.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe [1602344] [PID.3628]
[MD5.F2C82BA7E80C6054D5D20F3FBD4CFD34] - (...) -- C:\Program Files\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe [77664] [PID.3348]
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (10) - 6s
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_203.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=15.4.3502.0922] - (.Microsoft.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (11) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
---\\ Internet Explorer, Proxy Management (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 1s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=C:\windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.)
---\\ Hosts file redirection (O1) (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)
---\\ Applications lancées au démarrage du sytème (O4) (18) - 4s
O4 - HKLM\..\Run: [GfxServiceInstall] . (...) -- C:\Windows\System32\GfxCUIServiceInstall.vbs
O4 - HKLM\..\Run: [HotkeyMon] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [HotkeyService] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [SuperHybridEngine] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [LiveUpdate] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [CapsHook] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [VAWinAgent] . (...) -- C:\ExpressGateUtil\VAWinAgent.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [ASUSPRP] . (.ASUSTek Computer Inc. - ASUS Product Register Program.) -- C:\Program Files\Asus\APRP\aprp.exe
O4 - HKLM\..\Run: [iSeriesCharge] . (.ASUSTek Computer Inc. - AsusSender.) -- C:\windows\System32\AsusSender.exe
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- C:\Program Files\Microsoft Security Client\msseces.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1388478540-2806055896-2915544884-1000\..\Run: [CCleaner Monitoring] . (.Piriform Ltd - CCleaner.) -- C:\Program Files\CCleaner\CCleaner.exe
---\\ Modification Domaine/Adresses DNS (O17) (3) - 1s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
---\\ Liste des services NT non Microsoft et non désactivés (O23) (6) - 6s
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) . (.ASUS - ASUS InstantOn Program.) - C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
O23 - Service: Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe
O23 - Service: (MBAMScheduler) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe
---\\ Tâches planifiées en automatique (O39) (5) - 2s
O39 - APT:Automatic Planified Task - (...) -- C:\windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\Adobe Flash Player Updater [3940]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\CCleanerSkipUAC [2778]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\CreateChoiceProcessTask [3548]
O39 - APT:Automatic Planified Task - (...) -- C:\windows\System32\Tasks\{714BDD3D-C278-4755-9B05-E013BF9E1B6D} [3146]
---\\ Logiciels installés (O42) (35) - 20s
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Flash Player 18 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Defraggler - (.Piriform.) [HKLM] -- Defraggler
O42 - Logiciel: ETDWare PS/2-X86 8.0.5.2_WHQL - (.ELAN Microelectronic Corp..) [HKLM] -- Elantech
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: ExpressGateCloud - (.VideACE Co..) [HKLM] -- InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM] -- Microsoft Security Client
O42 - Logiciel: Mozilla Firefox 32.0.3 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 32.0.3 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM] -- {107F27B7-8EE4-4B3A-9CE5-497B120369DC}
O42 - Logiciel: FontResizer - (.ASUSTek.) [HKLM] -- {17780F99-A9DF-450B-81B3-6781B20A17A8}
O42 - Logiciel: E-Cam - (.AzureWave.) [HKLM] -- {185AFA7A-F63E-450B-94AA-011CAC18090E}
O42 - Logiciel: Skype™ 6.22 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}
O42 - Logiciel: Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver - (.Atheros Communications Inc..) [HKLM] -- {3108C217-BE83-42E4-AE9E-A56A2A92E549}
O42 - Logiciel: ExpressGateCloud - (.VideACE Co..) [HKLM] -- {36B0DC39-3282-40EB-8587-B875CE46C3A7}
O42 - Logiciel: LiveUpdate - (.AsusTek Computer Inc..) [HKLM] -- {38E5A3B1-ADF1-47E0-8024-76310A30EB36}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: CapsHook - (.AsusTek Computer.) [HKLM] -- {4B5092B6-F231-4D18-83BC-2618B729CA45}
O42 - Logiciel: ASUSUpdate for Eee PC - (.ASUSTeK Computer Inc..) [HKLM] -- {587178E7-B1DF-494E-9838-FA4DD36E873C}
O42 - Logiciel: Hotkey Service - (.AsusTek Computer Inc..) [HKLM] -- {71C0E38E-09F2-4386-9977-404D4F6640CD}
O42 - Logiciel: InstantOn for EPC - (.ASUS.) [HKLM] -- {749F674B-2674-47E8-879C-5626A06B2A91}
O42 - Logiciel: Qualcomm Atheros WiFi Driver Installation - (.Qualcomm Atheros.) [HKLM] -- {7D916FA5-DAE9-4A25-B089-655C70EAF607}
O42 - Logiciel: USBCharge+ - (.AsusTek Computer.) [HKLM] -- {8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}
O42 - Logiciel: Super Hybrid Engine - (.AsusTek Computer.) [HKLM] -- {88F08F98-12BC-4613-81A2-8F9B88CFC73E}
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Media Sharing - (.ASUS.) [HKLM] -- {9042F9FE-43CB-4ACF-9978-F62235127F90}
O42 - Logiciel: Adobe Reader 9.1 MUI - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}
O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM] -- {FE23D063-934D-4829-A0D8-00634CE79B4A}
---\\ HKCU & HKLM Software Keys (49) - 20s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\ASUS
HKLM\SOFTWARE\AsusTek Computer
HKLM\SOFTWARE\AsusTek Computer Inc.
HKLM\SOFTWARE\Atheros Communications Inc.
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\AVAST Software
HKLM\SOFTWARE\AzureWave
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\CoreSecurity
HKLM\SOFTWARE\ECAREME
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\Malwarebytes' Anti-Malware (Trial)
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Qualcomm Atheros WiFi Driver Installation
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\VideACE
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\ASUS
HKCU\SOFTWARE\ECAREME
HKCU\SOFTWARE\Elantech
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\VideACE
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\MB_temp
HKCU\SOFTWARE\AppDataLow\Software
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (154) - 32s
O43 - CFD: 2011/12/30 21:01:38 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2014/09/28 22:26:37 - [] D -- C:\Program Files\Asus
O43 - CFD: 2011/12/30 21:01:56 - [] D -- C:\Program Files\ASUS Media Sharing
O43 - CFD: 2014/09/29 16:30:03 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2014/11/08 15:17:07 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2014/09/29 17:13:47 - [] D -- C:\Program Files\Defraggler
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 2011/12/30 20:41:56 - [] D -- C:\Program Files\E-Cam
O43 - CFD: 2012/06/03 20:06:49 - [] D -- C:\Program Files\Elantech
O43 - CFD: 2012/12/26 12:47:23 - [] D -- C:\Program Files\Google
O43 - CFD: 2014/09/28 22:26:37 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2011/12/30 20:29:51 - [] D -- C:\Program Files\Intel
O43 - CFD: 2014/11/22 09:59:32 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2015/07/12 14:47:36 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2012/06/06 08:52:35 - [0] D -- C:\Program Files\Microsoft
O43 - CFD: 2013/10/05 16:51:26 - [] D -- C:\Program Files\Microsoft Application Virtualization Client
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2012/06/06 09:32:40 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2014/09/28 14:21:22 - [] D -- C:\Program Files\Microsoft Security Client
O43 - CFD: 2014/09/28 23:33:44 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2011/12/30 20:37:09 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2014/09/28 13:48:14 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2014/09/28 13:59:16 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2012/06/03 20:08:25 - [] D -- C:\Program Files\Qualcomm Atheros WiFi Driver Installation
O43 - CFD: 2011/12/30 21:45:29 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2014/11/08 15:17:08 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2011/12/30 21:45:33 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 2009/07/14 06:53:23 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/02/09 20:58:39 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2014/09/28 22:23:05 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2014/02/09 20:58:42 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/07/14 06:52:30 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2012/09/10 21:04:33 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 2011/02/11 13:14:27 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2012/09/10 21:04:34 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2012/06/03 20:08:47 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/07/14 06:46:36 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2014/09/28 22:24:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
O43 - CFD: 2011/12/30 21:01:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Media Sharing
O43 - CFD: 2014/09/29 16:30:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2014/09/29 17:07:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
O43 - CFD: 2011/12/30 20:41:56 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam
O43 - CFD: 2009/07/14 06:42:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2011/12/30 20:29:52 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
O43 - CFD: 2009/07/14 06:42:30 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2012/06/30 08:43:00 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)
O43 - CFD: 2014/09/28 23:35:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2014/11/21 19:38:06 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2012/12/14 17:14:29 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2013/03/17 13:47:46 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2011/12/30 20:57:23 - [] D -- C:\ProgramData\ASUS WebStorage
O43 - CFD: 2014/09/28 12:42:44 - [] D -- C:\ProgramData\AVAST Software
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2014/09/28 16:40:53 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2014/09/28 22:45:20 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2013/02/28 13:26:41 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2012/12/21 22:05:28 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2012/06/03 20:06:57 - [] D -- C:\ProgramData\Qualcomm Atheros
O43 - CFD: 2014/11/21 19:38:19 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2009/07/14 06:53:55 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2012/06/06 08:54:23 - [] D -- C:\ProgramData\Trend Micro
O43 - CFD: 2012/06/30 08:38:14 - [] D -- C:\ProgramData\VirtualizedApplications
O43 - CFD: 2012/06/12 19:25:57 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2011/12/30 21:01:37 - [] D -- C:\Program Files\Common Files\Adobe AIR
O43 - CFD: 2014/06/23 20:52:17 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2011/12/30 20:40:50 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2014/09/28 22:14:11 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2014/11/08 15:17:07 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2009/07/14 04:37:05 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2012/09/10 21:04:32 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2011/12/30 20:44:47 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2012/06/03 20:09:23 - [] D -- C:\Users\Fabienne\AppData\Roaming\Adobe
O43 - CFD: 2011/12/30 20:57:29 - [] D -- C:\Users\Fabienne\AppData\Roaming\ASUS WebStorage
O43 - CFD: 2011/12/30 20:41:54 - [] D -- C:\Users\Fabienne\AppData\Roaming\E-Cam
O43 - CFD: 2009/07/14 06:54:12 - [] D -- C:\Users\Fabienne\AppData\Roaming\Identities
O43 - CFD: 2011/12/30 20:28:23 - [] D -- C:\Users\Fabienne\AppData\Roaming\InstallShield
O43 - CFD: 2011/12/30 20:43:16 - [] D -- C:\Users\Fabienne\AppData\Roaming\Macromedia
O43 - CFD: 2014/09/28 16:40:53 - [0] D -- C:\Users\Fabienne\AppData\Roaming\Malwarebytes
O43 - CFD: 2015/03/20 00:04:47 - [] SD -- C:\Users\Fabienne\AppData\Roaming\Microsoft
O43 - CFD: 2014/02/09 18:24:58 - [] D -- C:\Users\Fabienne\AppData\Roaming\Mozilla
O43 - CFD: 2014/11/22 12:24:00 - [] D -- C:\Users\Fabienne\AppData\Roaming\Skype
O43 - CFD: 2012/07/12 22:08:13 - [] D -- C:\Users\Fabienne\AppData\Roaming\SoftGrid Client
O43 - CFD: 2012/06/06 09:35:32 - [0] D -- C:\Users\Fabienne\AppData\Roaming\TP
O43 - CFD: 2015/07/12 15:43:01 - [] D -- C:\Users\Fabienne\AppData\Roaming\ZHP
O43 - CFD: 2015/07/12 14:01:39 - [] D -- C:\Users\Fabienne\AppData\Local\Adobe
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Application Data
O43 - CFD: 2011/12/30 21:01:45 - [] D -- C:\Users\Fabienne\AppData\Local\ASUS
O43 - CFD: 2012/07/09 19:02:39 - [] D -- C:\Users\Fabienne\AppData\Local\Atheros
O43 - CFD: 2012/06/03 20:13:42 - [] D -- C:\Users\Fabienne\AppData\Local\Diagnostics
O43 - CFD: 2012/12/21 22:29:53 - [] D -- C:\Users\Fabienne\AppData\Local\Google
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Historique
O43 - CFD: 2015/03/20 00:11:23 - [] D -- C:\Users\Fabienne\AppData\Local\Macromedia
O43 - CFD: 2014/11/22 11:37:39 - [] D -- C:\Users\Fabienne\AppData\Local\Microsoft
O43 - CFD: 2012/06/08 21:34:04 - [] D -- C:\Users\Fabienne\AppData\Local\Microsoft Games
O43 - CFD: 2012/08/19 11:05:47 - [] DC -- C:\Users\Fabienne\AppData\Local\MigWiz
O43 - CFD: 2014/09/29 16:33:19 - [] D -- C:\Users\Fabienne\AppData\Local\Mozilla
O43 - CFD: 2014/02/09 18:28:56 - [] D -- C:\Users\Fabienne\AppData\Local\Programs
O43 - CFD: 2014/11/22 11:57:03 - [] D -- C:\Users\Fabienne\AppData\Local\Skype
O43 - CFD: 2012/06/06 09:34:30 - [] D -- C:\Users\Fabienne\AppData\Local\SoftGrid Client
O43 - CFD: 2015/07/12 15:39:39 - [] D -- C:\Users\Fabienne\AppData\Local\Temp
O43 - CFD: 2012/06/03 20:05:47 - [0] SHD -- C:\Users\Fabienne\AppData\Local\Temporary Internet Files
O43 - CFD: 2012/06/03 20:09:10 - [] D -- C:\Users\Fabienne\AppData\Local\VirtualStore
O43 - CFD: 2012/07/11 19:48:59 - [] D -- C:\Users\Fabienne\AppData\Local\Windows Live
O43 - CFD: 2012/06/30 08:27:23 - [0] D -- C:\Users\Fabienne\AppData\Local\{0A13D1B5-C70A-4399-BF66-F4653F6E6809}
O43 - CFD: 2012/07/28 13:28:34 - [0] D -- C:\Users\Fabienne\AppData\Local\{0D6CD0C1-FE3A-41C0-97D2-121F1F5444EF}
O43 - CFD: 2012/07/29 19:33:56 - [0] D -- C:\Users\Fabienne\AppData\Local\{10D37DFE-AB37-4769-AB4B-5AD1F43DA7B3}
O43 - CFD: 2012/07/11 19:49:31 - [0] D -- C:\Users\Fabienne\AppData\Local\{119D59C5-2989-4770-BEC7-A7F378C2AF2B}
O43 - CFD: 2012/07/12 20:38:08 - [0] D -- C:\Users\Fabienne\AppData\Local\{1E2CCF60-5521-486E-9BE2-20F3E856F546}
O43 - CFD: 2012/08/22 12:16:33 - [0] D -- C:\Users\Fabienne\AppData\Local\{2B434B37-3ECA-4CD2-9373-1598AF64E404}
O43 - CFD: 2012/08/02 11:43:40 - [0] D -- C:\Users\Fabienne\AppData\Local\{2C462F19-3ACE-4A4F-888B-887AAABDF47E}
O43 - CFD: 2012/07/12 20:38:18 - [0] D -- C:\Users\Fabienne\AppData\Local\{4454AF97-E645-464A-9D79-6AF75BA2FC1D}
O43 - CFD: 2012/07/09 18:36:41 - [0] D -- C:\Users\Fabienne\AppData\Local\{44B8D84C-7879-458C-8A4A-87358A9D1644}
O43 - CFD: 2012/07/31 11:28:39 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EC40D79-8D86-4B6F-B287-836FC430A781}
O43 - CFD: 2012/07/29 14:38:44 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EDD51E5-6CA3-4A18-8281-9651FEAD8C32}
O43 - CFD: 2012/08/03 09:47:51 - [0] D -- C:\Users\Fabienne\AppData\Local\{4EF58FE0-AA48-4771-BF80-82E404D47518}
O43 - CFD: 2012/07/31 11:28:29 - [0] D -- C:\Users\Fabienne\AppData\Local\{50BA6C6E-31A0-4FD1-B0F6-D5EF830B942D}
O43 - CFD: 2012/06/27 14:47:04 - [0] D -- C:\Users\Fabienne\AppData\Local\{5A5FFFE7-D505-4D3E-A972-4C64948F8836}
O43 - CFD: 2012/07/11 19:47:00 - [0] D -- C:\Users\Fabienne\AppData\Local\{7036F345-263F-4050-A0A4-1A6ACAD1949C}
O43 - CFD: 2012/12/12 16:52:06 - [0] D -- C:\Users\Fabienne\AppData\Local\{74923B26-5E8B-4ECF-998F-43448ECD8ECA}
O43 - CFD: 2012/07/29 23:03:43 - [0] D -- C:\Users\Fabienne\AppData\Local\{7923A86B-7CAA-44E5-A6D7-9BCDA5FE76E0}
O43 - CFD: 2012/07/30 16:33:02 - [0] D -- C:\Users\Fabienne\AppData\Local\{92F5CA9B-A231-423B-A7E8-BDFA1848662E}
O43 - CFD: 2012/07/11 19:46:50 - [0] D -- C:\Users\Fabienne\AppData\Local\{9ACB3BB7-95B0-49C1-8314-948A04A6A3F3}
O43 - CFD: 2012/07/29 14:38:54 - [0] D -- C:\Users\Fabienne\AppData\Local\{A4277B57-6A85-4150-918B-CB35FDAE3AD8}
O43 - CFD: 2012/07/31 10:22:26 - [0] D -- C:\Users\Fabienne\AppData\Local\{A43B90E4-799A-4915-BA31-31342B853EAA}
O43 - CFD: 2012/08/03 22:14:11 - [0] D -- C:\Users\Fabienne\AppData\Local\{A781DE48-F7F3-408B-B2AF-3B422D1CA81D}
O43 - CFD: 2012/07/31 10:22:15 - [0] D -- C:\Users\Fabienne\AppData\Local\{A8364FD3-45AC-42C1-A8C9-8B64B12E9B88}
O43 - CFD: 2012/06/30 08:26:42 - [0] D -- C:\Users\Fabienne\AppData\Local\{B4D4811C-923C-45B3-A79B-5A9F2309FDA9}
O43 - CFD: 2012/08/02 11:43:26 - [0] D -- C:\Users\Fabienne\AppData\Local\{B80BFE20-C423-4E01-B361-3935A27E63EC}
O43 - CFD: 2012/06/27 14:47:01 - [0] D -- C:\Users\Fabienne\AppData\Local\{BA45AB62-F98F-4730-84C4-C2A701060DB7}
O43 - CFD: 2012/08/01 11:23:14 - [0] D -- C:\Users\Fabienne\AppData\Local\{BF691B0D-2B0D-482D-8F81-3D238329036B}
O43 - CFD: 2012/08/01 11:23:24 - [0] D -- C:\Users\Fabienne\AppData\Local\{CBCA1DC6-4FD9-4F84-859F-987EF14D2BC0}
O43 - CFD: 2012/07/28 13:28:24 - [0] D -- C:\Users\Fabienne\AppData\Local\{D049C9D5-9F4C-4A45-AB5A-B1FF4729F2DD}
O43 - CFD: 2012/07/01 16:06:41 - [0] D -- C:\Users\Fabienne\AppData\Local\{D5FEA610-C1B5-4939-BDC5-DB894FB098E4}
O43 - CFD: 2012/07/30 16:33:13 - [0] D -- C:\Users\Fabienne\AppData\Local\{D70D21C4-D4A3-4FEB-871A-64A1898E3E81}
O43 - CFD: 2012/08/03 09:48:03 - [0] D -- C:\Users\Fabienne\AppData\Local\{DBE69928-8607-42E7-AD0F-9977D4F0DA06}
O43 - CFD: 2012/08/03 22:14:22 - [0] D -- C:\Users\Fabienne\AppData\Local\{E96474F1-79BF-447E-9733-6C5C182AB41C}
O43 - CFD: 2012/06/06 10:17:07 - [0] D -- C:\Users\Fabienne\AppData\Local\{EE001B26-480D-4FD2-AE32-8AE95C5DD568}
O43 - CFD: 2012/07/29 23:03:53 - [0] D -- C:\Users\Fabienne\AppData\Local\{EEC5FD1D-A013-420B-94A0-3A208D30BF24}
O43 - CFD: 2012/08/19 09:20:43 - [0] D -- C:\Users\Fabienne\AppData\Local\{F5A20F4B-CEAB-4073-BA26-3045F68A3347}
O43 - CFD: 2012/07/11 19:49:20 - [0] D -- C:\Users\Fabienne\AppData\Local\{F71A218D-A080-40DF-820A-3B3CED75B10D}
O43 - CFD: 2012/07/29 19:33:45 - [0] D -- C:\Users\Fabienne\AppData\Local\{F849EB39-A2FA-4A70-96C7-0D2561D1A4B9}
O43 - CFD: 2012/11/21 19:04:47 - [0] D -- C:\Users\Fabienne\AppData\Local\{F8631955-9FBD-477A-A410-1B7C1AB8DF3A}
O43 - CFD: 2009/07/14 06:42:04 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2014/11/22 11:38:18 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2009/07/14 06:37:42 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/11/22 11:38:18 - [] RD -- C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
---\\ Liste des pilotes du système (SDL) (O58) (74) - 77s
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\windows\System32\drivers\adp94xx.sys [422976]
O58 - SDL:2009/07/14 03:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\windows\System32\drivers\adpahci.sys [297552]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\windows\System32\drivers\adpu320.sys [146512]
O58 - SDL:2012/05/07 15:10:18 A . (.ASUSTek Computer Inc. - ASUS Charger driver.) -- C:\windows\System32\drivers\AiDriver.sys [14720]
O58 - SDL:2009/07/14 03:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\windows\System32\drivers\aliide.sys [14400]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\windows\System32\drivers\amdsata.sys [80256]
O58 - SDL:2009/07/14 03:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\windows\System32\drivers\amdsbs.sys [159312]
O58 - SDL:2011/03/11 07:38:37 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\windows\System32\drivers\amdxata.sys [22400]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\windows\System32\drivers\arc.sys [76368]
O58 - SDL:2009/07/14 03:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\windows\System32\drivers\arcsas.sys [86608]
O58 - SDL:2010/06/28 07:24:00 A . (...) -- C:\windows\System32\drivers\AsIO.sys [11456]
O58 - SDL:2010/08/03 07:20:56 A . (...) -- C:\windows\System32\drivers\AsUpIO.sys [11832]
O58 - SDL:2011/10/03 23:46:14 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\drivers\athr.sys [2205696]
O58 - SDL:2009/07/14 00:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\windows\System32\drivers\b57nd60x.sys [229888]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2009/07/14 00:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2009/07/14 02:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\windows\System32\drivers\BrSerId.sys [272128]
O58 - SDL:2009/07/14 00:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2009/07/14 00:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\windows\System32\drivers\bxvbdx.sys [430080]
O58 - SDL:2009/07/14 03:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\windows\System32\drivers\cmdide.sys [15952]
O58 - SDL:2009/07/14 03:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\windows\System32\drivers\djsvs.sys [70720]
O58 - SDL:2009/07/14 03:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\windows\System32\drivers\elxstor.sys [453712]
O58 - SDL:2011/03/10 16:17:28 A . (.ELAN Microelectronics Corp. - ETD Kernel Center.) -- C:\windows\System32\drivers\ETD.sys [118568]
O58 - SDL:2009/07/14 00:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\windows\System32\drivers\evbdx.sys [3100160]
O58 - SDL:2009/07/14 00:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\windows\System32\drivers\hcw85cir.sys [26624]
O58 - SDL:2009/07/14 03:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\windows\System32\drivers\HpSAMD.sys [67152]
O58 - SDL:2010/11/06 09:39:18 A . (.Intel Corporation - Intel Rapid Storage Technology driver - x86.) -- C:\windows\System32\drivers\iaStor.sys [354840]
O58 - SDL:2011/03/11 07:38:51 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\windows\System32\drivers\iaStorV.sys [332160]
O58 - SDL:2011/12/13 09:11:44 A . (.Intel Corporation - Intel (R) WDDM Kernel Mode Driver.) -- C:\windows\System32\drivers\igddim32.sys [1336320]
O58 - SDL:2011/12/13 09:04:44 A . (.Intel Corporation - Intel (R) WDDM Kernel mode driver.) -- C:\windows\System32\drivers\igdkmd32.sys [417280]
O58 - SDL:2009/07/14 03:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\windows\System32\drivers\iirsp.sys [41040]
O58 - SDL:2011/06/09 01:37:56 A . (.Intel(R) Corporation - Intel(R) Display Audio Driver.) -- C:\windows\System32\drivers\IntcDAud.sys [278528]
O58 - SDL:2009/07/20 11:29:40 A . (. - Keyboard Filter Driver.) -- C:\windows\System32\drivers\kbfiltr.sys [13880]
O58 - SDL:2011/11/01 08:36:00 A . (.Atheros Communications, Inc. - Atheros Ar81xx series PCI-E Gigabit Etherne.) -- C:\windows\System32\drivers\L1C62x86.sys [91760]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\windows\System32\drivers\lsi_fc.sys [95824]
O58 - SDL:2009/07/14 03:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas.sys [89168]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\windows\System32\drivers\lsi_sas2.sys [54864]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\windows\System32\drivers\lsi_scsi.sys [96848]
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\windows\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:42 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\windows\System32\drivers\mbamchameleon.sys [94936]
O58 - SDL:2015/07/12 15:41:58 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\windows\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\windows\System32\drivers\megasas.sys [30800]
O58 - SDL:2009/07/14 03:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\windows\System32\drivers\MegaSR.sys [235584]
O58 - SDL:2015/06/18 08:41:54 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\windows\System32\drivers\mwac.sys [51928]
O58 - SDL:2009/07/14 03:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\windows\System32\drivers\nfrd960.sys [44624]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\windows\System32\drivers\nvraid.sys [117120]
O58 - SDL:2011/03/11 07:39:00 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\windows\System32\drivers\nvstor.sys [143744]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\windows\System32\drivers\ql2300.sys [1383488]
O58 - SDL:2009/07/14 03:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\windows\System32\drivers\ql40xx.sys [106064]
O58 - SDL:2011/10/04 13:18:08 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\windows\System32\drivers\RTKVHDA.sys [3681000]
O58 - SDL:2009/07/13 22:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\windows\System32\drivers\sisraid2.sys [40016]
O58 - SDL:2009/07/14 03:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\windows\System32\drivers\sisraid4.sys [77888]
O58 - SDL:2009/07/14 03:19:04 A . (.Promise Technology - Promise SuperTrak EX Series Driver for Win.) -- C:\windows\System32\drivers\stexstor.sys [21072]
O58 - SDL:2009/07/14 03:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\windows\System32\drivers\viaide.sys [16976]
O58 - SDL:2009/07/14 03:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\windows\System32\drivers\vsmraid.sys [141904]
O58 - SDL:2009/07/13 23:40:41 A . (...) -- C:\windows\System32\ANSI.SYS [9029]
O58 - SDL:2011/10/03 23:46:14 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\windows\System32\athr.sys [2205696]
O58 - SDL:2009/07/13 23:40:44 A . (...) -- C:\windows\System32\country.sys [27097]
O58 - SDL:2009/07/13 23:40:40 A . (...) -- C:\windows\System32\HIMEM.SYS [4768]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\windows\System32\KEY01.SYS [42809]
O58 - SDL:2009/07/13 23:40:43 A . (...) -- C:\windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2009/07/13 23:40:23 A . (...) -- C:\windows\System32\NTDOS.SYS [27866]
O58 - SDL:2009/07/13 23:40:31 A . (...) -- C:\windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2009/07/13 23:40:35 A . (...) -- C:\windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2009/07/13 23:40:39 A . (...) -- C:\windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2009/07/13 23:40:27 A . (...) -- C:\windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2009/07/13 23:40:11 A . (...) -- C:\windows\System32\NTIO.SYS [33952]
O58 - SDL:2009/07/13 23:40:15 A . (...) -- C:\windows\System32\NTIO404.SYS [34672]
O58 - SDL:2009/07/13 23:40:17 A . (...) -- C:\windows\System32\NTIO411.SYS [35776]
O58 - SDL:2009/07/13 23:40:19 A . (...) -- C:\windows\System32\NTIO412.SYS [35536]
O58 - SDL:2009/07/13 23:40:13 A . (...) -- C:\windows\System32\NTIO804.SYS [34672]
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (1) - 101s
O61 - LFC: 2015/07/12 13:47:29 A . (..) -- C:\Users\Fabienne\AppData\Local\Microsoft\Windows\1036\StructuredQuerySchema.bin [332282]
---\\ Associations Shell Spawning (O67) (10) - 2s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKLM\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
---\\ Menu de démarrage Internet (SMI) (O68) (8) - 2s
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (2) - 13s
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} [DefaultScope] - (Google) - http://www.google.com/
---\\ Enumère les services démarrés par Svchost (SSS) (O83) (32) - 10s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [62464]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll [67584]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [168960]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [593408]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL [679424]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll [475136]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [286208]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [75264]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll [49664]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll [300544]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [242176]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll [523776]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll [1973728]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll [585728]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [328192]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll [499712]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll [21504]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [47104]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [114688]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll [49664]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [61440]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [98304]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [164352]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [750592]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL [71168]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [113664]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [168960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [102912]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [37376]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [76800]
---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (8) - 68s
SS - Demand [2015/07/12 15:02:57] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - Auto [2011/12/01 03:10:32] [ 92800] ASUS InstantOn Service (ASUS InstantOn) . (.ASUS.) - C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
SR - Auto [2011/08/09 01:48:20] [ 224680] Asus Launcher Service (AsusService) . (...) - C:\Windows\System32\AsusService.exe
SR - Auto [2015/06/18 08:39:46] [ 1871160] (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
SS - Auto [2015/06/18 08:39:50] [ 1133880] (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
SS - Demand [2014/09/28 13:48:06] [ 114288] Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SS - Auto [2014/04/03 20:21:48] [ 315008] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe
SR - Auto [2011/03/26 03:55:16] [ 91464] VideAceWindowsService (VideAceWindowsService) . (...) - C:\ExpressGateUtil\VAWinService.exe
---\\ Scan Additionnel (O88) (1) - 0s
~ Aucun élément malicieux trouvé.
---\\ Récapitulatif des détections trouvées sur votre station (1) - 0s
~ Aucun élément malicieux trouvé.
~ End of the scan, 24025 items in 491 seconds (526)(0)() |
|
Posté le 12/07/2015 à 16:44 |
| La suite :
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-07-2015
Ran by Fabienne (administrator) on FAB-NETBOOK on 12-07-2015 15:55:25
Running from C:\Users\Fabienne\Downloads
Loaded Profiles: Fabienne (Available Profiles: Fabienne & Invité)
Platform: Microsoft Windows 7 Édition Starter Service Pack 1 (X86) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(ASUS) C:\Program Files\Asus\InstantOn for EPC\InsOnSrv.exe
() C:\Windows\System32\AsusService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
() C:\ExpressGateUtil\VAWinService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(ASUS) C:\Program Files\Asus\InstantOn for EPC\InsOnWMI.exe
(AsusTek Computer Inc.) C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotkeyService.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\HotkeyService\HotKeyMon.exe
(ASUSTeK Computer Inc.) C:\Program Files\Asus\SHE\SuperHybridEngine.exe
(ASUS) C:\Program Files\Asus\CapsHook\CapsHook.exe
() C:\ExpressGateUtil\VAWinAgent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(AsusTek Computer Inc.) C:\Program Files\Asus\USBChargeSetting\iSeriesCharge.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
() C:\Program Files\Common Files\microsoft shared\Virtualization Handler\OFFICEVIRT.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_203.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_18_0_0_203.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [GfxServiceInstall] => C:\windows\system32\GfxCUIServiceInstall.vbs [131 2011-12-13] ()
HKLM\...\Run: [HotkeyMon] => C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe [101800 2011-08-09] (ASUSTeK Computer Inc.)
HKLM\...\Run: [HotkeyService] => C:\Program Files\ASUS\HotkeyService\HotkeyService.exe [1263024 2011-08-09] (ASUSTeK Computer Inc.)
HKLM\...\Run: [SuperHybridEngine] => C:\Program Files\ASUS\SHE\SuperHybridEngine.exe [425400 2011-08-02] (ASUSTeK Computer Inc.)
HKLM\...\Run: [LiveUpdate] => C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe [1095080 2011-11-10] (AsusTek Computer Inc.)
HKLM\...\Run: [CapsHook] => C:\Program Files\ASUS\CapsHook\CapsHook.exe [445344 2010-11-15] (ASUS)
HKLM\...\Run: [VAWinAgent] => C:\ExpressGateUtil\VAWinAgent.exe [45448 2011-08-20] ()
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11004520 2011-09-28] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [1813800 2011-03-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [ASUSPRP] => C:\Program Files\ASUS\APRP\APRP.EXE [3331312 2011-12-30] (ASUSTek Computer Inc.)
HKLM\...\Run: [iSeriesCharge] => C:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exe [99792 2012-06-28] (AsusTek Computer Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [974432 2014-08-22] (Microsoft Corporation)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://eeepc.asus.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> DefaultScope {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} URL = http://www.google.com/search?hl=en&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP07&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-1388478540-2806055896-2915544884-1000 -> {D1A55AF9-0F51-4345-A76C-9A4CFCE1347F} URL = http://www.google.com/search?hl=en&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{C0B3BCBA-5DF7-4DC6-8A34-50FF74492582}: [DhcpNameServer] 192.168.1.1 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Fabienne\AppData\Roaming\Mozilla\Firefox\Profiles\mv153n8f.default-1436707919684
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll [2015-07-12] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll No File
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ASUS InstantOn; C:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exe [92800 2011-12-01] (ASUS)
R2 AsusService; C:\windows\system32\AsusService.exe [224680 2011-08-09] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22192 2014-08-22] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [288120 2014-08-22] (Microsoft Corporation)
R2 VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [91464 2011-03-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiDriver; C:\windows\System32\DRIVERS\AiDriver.sys [14720 2012-05-07] (ASUSTek Computer Inc.)
R1 AsIO; C:\windows\System32\drivers\AsIO.sys [11456 2010-06-28] ()
R1 AsUpIO; C:\windows\System32\drivers\AsUpIO.sys [11832 2010-08-03] ()
R3 ETD; C:\windows\System32\DRIVERS\ETD.sys [118568 2011-03-10] (ELAN Microelectronics Corp.)
R3 kbfiltr; C:\windows\System32\DRIVERS\kbfiltr.sys [13880 2009-07-20] ( )
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [231800 2014-07-17] (Microsoft Corporation)
S4 aswSP; No ImagePath
========================== Drivers MD5 =======================
C:\windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\windows\system32\drivers\afd.sys D0B388DA1D111A34366E04EB4A5DD156
C:\windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\windows\system32\drivers\djsvs.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\AiDriver.sys 68D6075D1FDC90038B0DC5B9D1F17ADF
C:\windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\windows\system32\drivers\appid.sys ==> MD5 is legit
C:\windows\system32\drivers\arc.sys ==> MD5 is legit
C:\windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\windows\System32\drivers\AsIO.sys 956C7177DBDA0F02436868AD644CCF31
C:\windows\System32\drivers\AsUpIO.sys A9A565C669786C402752F609AFDD0DD5
C:\windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\windows\system32\drivers\atapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\athr.sys 9B8C87C27A166CE84BE6EDDBA3854527
C:\windows\system32\drivers\bxvbdx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\windows\system32\drivers\BthEnum.sys ==> MD5 is legit
C:\windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\bthpan.sys ==> MD5 is legit
C:\windows\System32\Drivers\BTHport.sys 1153DE2E4F5941E10C399CB5592F78A1
C:\windows\System32\Drivers\BTHUSB.sys C81E9413A25A439F436B1D4B6A0CF9E9
C:\windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\windows\system32\drivers\cdrom.sys ==> MD5 is legit
C:\windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\windows\System32\CLFS.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\windows\System32\Drivers\cng.sys 85449EEBE8F8EBD6481EFBF0F352B4EB
C:\windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\CompositeBus.sys ==> MD5 is legit
C:\windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\windows\System32\drivers\discache.sys ==> MD5 is legit
C:\windows\System32\drivers\disk.sys ==> MD5 is legit
C:\windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\windows\system32\drivers\evbdx.sys ==> MD5 is legit
C:\windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ETD.sys 09E105E3997C2E6E126726EE5DDFAFB6
C:\windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\windows\system32\drivers\flpydisk.sys ==> MD5 is legitB
C:\windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\windows\System32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\windows\System32\DRIVERS\HDAudBus.sys ==> MD5 is legit
C:\windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\windows\System32\drivers\iaStor.sys F4037A3FEDB92DD97C95F320766EA5C9
C:\windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\windows\System32\DRIVERS\igddim32.sys 72A75B01371384ECBCFC6AD2AF6B9389
C:\windows\System32\DRIVERS\igdkmd32.sys 6B78789287D43615E7908CA31C0D5D6D
C:\windows\System32\DRIVERS\igdkmd32.sys 6B78789287D43615E7908CA31C0D5D6D
C:\windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\windows\System32\drivers\RTKVHDA.sys C281E19D77C6B0B0DB5459E7C317CF76
C:\windows\System32\DRIVERS\IntcDAud.sys 8F4D251F1EA15FA97E8399128A72CC83
C:\windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\kbfiltr.sys 3EB803312987FF44265C87CB960DF6AB
C:\windows\System32\Drivers\ksecdd.sys 4120DA10AA42A9996F4575DB9E3E6E6E
C:\windows\System32\Drivers\ksecpkg.sys 1E1845606C5A4579F7F3D95796CC1ED1
C:\windows\System32\DRIVERS\L1C62x86.sys 2D60DFAD37C101E35520E38F12B59770
C:\windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\windows\system32\drivers\mbam.sys B4CD87E78A01562E3DA67FE1C2779204
C:\windows\system32\drivers\mwac.sys 490F0F3ED8A970E2BAA38F719242B8F7
C:\windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\windows\System32\drivers\modem.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\MpFilter.sys 6460D4A5C981567E74A7AC1349DE10F5
C:\windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\mrxdav.sys 21F4B24ACFC79A483515BD986DD9043F
C:\windows\System32\DRIVERS\mrxsmb.sys 5D16C921E3671636C0EBA3BBAAC5FD25
C:\windows\System32\DRIVERS\mrxsmb10.sys 6D17A4791ACA19328C685D256349FEFC
C:\windows\System32\DRIVERS\mrxsmb20.sys B81F204D146000BE76651A50670A5E9E
C:\windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\mssmbios.sys ==> MD5 is legit
C:\windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\windows\System32\drivers\ndis.sys 8C9C922D71F1CD4DEF73F186416B7896
C:\windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\NisDrvWFP.sys 6A83B8AF342E61DEE353BAA81F67B7DA
C:\windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\windows\system32\drivers\parport.sys ==> MD5 is legit
C:\windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\windows\system32\drivers\parvdm.sys ==> MD5 is legit
C:\windows\System32\drivers\pci.sys ==> MD5 is legit
C:\windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\windows\system32\drivers\processr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\rfcomm.sys CB928D9E6DAF51879DD6BA8D02F01321
C:\windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\windows\system32\drivers\serial.sys ==> MD5 is legit
C:\windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\Sftfslh.sys EC5C79BD81F0C55DF53F4818D4F1C2C8
C:\windows\System32\DRIVERS\Sftplaylh.sys A224670FB892A205E4D99E06C0B85C7C
C:\windows\System32\DRIVERS\Sftredirlh.sys 9D354D425FB55CDF0EDC7F67FBC5B04E
C:\windows\System32\DRIVERS\Sftvollh.sys F369D6B89AA610174A4E90C8513B7C7A
C:\windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\swenum.sys ==> MD5 is legit
C:\windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\termdd.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\windows\system32\drivers\TsUsbGD.sys 01246F0BAAD7B68EC0F472AA41E33282
C:\windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\windows\system32\drivers\umpass.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\windows\system32\drivers\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\windows\system32\drivers\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\windows\system32\drivers\usbprint.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\windows\system32\drivers\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\windows\System32\Drivers\usbvideo.sys DE014425522610BEDCA3821BB8C0F1D5
C:\windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\windows\System32\drivers\vga.sys ==> MD5 is legit
C:\windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\windows\system32\drivers\viac7.sys ==> MD5 is legit
C:\windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\windows\System32\drivers\volsnap.sys C37AEE5966EB5929E2051AC7409B5730
C:\windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\vwififlt.sys 7090D3436EEB4E7DA3373090A23448F7
C:\windows\System32\DRIVERS\vwifimp.sys A3F04CBEA6C2A10E6CB01F8B47611882
C:\windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\windows\system32\drivers\wd.sys ==> MD5 is legit
C:\windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three Months Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-12 15:55 - 2015-07-12 15:57 - 00026252 _____ C:\Users\Fabienne\Downloads\FRST.txt
2015-07-12 15:53 - 2015-07-12 15:55 - 00000000 ____D C:\FRST
2015-07-12 15:51 - 2015-07-12 15:52 - 01634816 _____ (Farbar) C:\Users\Fabienne\Downloads\FRST.exe
2015-07-12 15:49 - 2015-07-12 15:49 - 00054183 _____ C:\Users\Fabienne\Desktop\ZHPDiag rapport 12 juillet.txt
2015-07-12 15:48 - 2015-07-12 15:48 - 00054183 _____ C:\Users\Fabienne\Desktop\ZHPDiag.txt
2015-07-12 15:39 - 2015-07-12 15:43 - 00000000 ____D C:\Users\Fabienne\AppData\Roaming\ZHP
2015-07-12 15:39 - 2015-07-12 15:39 - 00000785 _____ C:\Users\Fabienne\Desktop\ZHPDiag.lnk
2015-07-12 15:38 - 2015-07-12 15:38 - 01838592 _____ C:\Users\Fabienne\Downloads\ZHPDiag3.exe
2015-07-12 15:32 - 2015-07-12 15:32 - 00000000 ____D C:\Users\Fabienne\Desktop\Anciennes données de Firefox
2015-07-12 13:56 - 2015-07-12 13:57 - 01187520 _____ (Adobe Systems Incorporated) C:\Users\Fabienne\Downloads\flashplayer18au_ha_install(1).exe
==================== Three Months Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-12 15:53 - 2012-06-04 12:00 - 01128670 _____ C:\windows\WindowsUpdate.log
2015-07-12 15:46 - 2009-07-14 06:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-12 15:46 - 2009-07-14 06:34 - 00016160 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-12 15:41 - 2014-09-28 16:41 - 00098520 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-12 15:03 - 2014-02-09 17:23 - 00001002 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-07-12 15:02 - 2013-03-17 13:47 - 00778416 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-07-12 15:02 - 2011-12-30 20:43 - 00142512 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-07-12 14:47 - 2014-09-28 16:40 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-12 14:47 - 2014-09-28 16:39 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-07-12 14:01 - 2012-06-03 20:05 - 00000000 ____D C:\Users\Fabienne\AppData\Local\Adobe
2015-07-12 13:48 - 2009-07-27 12:11 - 01701896 _____ C:\windows\system32\PerfStringBackup.INI
2015-07-12 13:42 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-07-12 13:41 - 2009-07-14 06:53 - 00032472 _____ C:\windows\Tasks\SCHEDLGU.TXT
2015-07-12 13:40 - 2012-06-27 14:40 - 00011364 _____ C:\windows\setupact.log
2015-07-05 12:11 - 2012-06-06 09:12 - 00246952 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe
2015-06-18 08:41 - 2014-09-28 16:39 - 00094936 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2015-06-18 08:41 - 2014-09-28 16:39 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2015-06-18 08:41 - 2014-02-09 18:29 - 00023256 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
Some files in TEMP:
====================
C:\Users\Fabienne\AppData\Local\Temp\msvcp110.dll
C:\Users\Fabienne\AppData\Local\Temp\msvcr110.dll
C:\Users\Fabienne\AppData\Local\Temp\pc-decrapifier.exe
C:\Users\Fabienne\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-26 18:16
==================== End of log ============================ |
|
Posté le 12/07/2015 à 16:45 |
| suite:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-07-2015
Ran by Fabienne at 2015-07-12 15:58:40
Running from C:\Users\Fabienne\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrateur (S-1-5-21-1388478540-2806055896-2915544884-500 - Administrator - Disabled)
Fabienne (S-1-5-21-1388478540-2806055896-2915544884-1000 - Administrator - Enabled) => C:\Users\Fabienne
Invité (S-1-5-21-1388478540-2806055896-2915544884-501 - Limited - Enabled) => C:\Users\Invité
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Out of date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Out of date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Reader 9.1 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
ASUSUpdate for Eee PC (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 1.06.03 - ASUSTeK Computer Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
CapsHook (HKLM\...\{4B5092B6-F231-4D18-83BC-2618B729CA45}) (Version: 1.0.0.7 - AsusTek Computer)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
E-Cam (HKLM\...\{185AFA7A-F63E-450B-94AA-011CAC18090E}) (Version: 2.0.3.0 - AzureWave)
ETDWare PS/2-X86 8.0.5.2_WHQL (HKLM\...\Elantech) (Version: 8.0.5.2 - ELAN Microelectronic Corp.)
ExpressGateCloud (HKLM\...\InstallShield_{36B0DC39-3282-40EB-8587-B875CE46C3A7}) (Version: 2.7.44.279 - VideACE Co.)
ExpressGateCloud (Version: 2.7.44.279 - VideACE Co.) Hidden
FontResizer (HKLM\...\InstallShield_{17780F99-A9DF-450B-81B3-6781B20A17A8}) (Version: 1.01.0011 - ASUSTek)
FontResizer (Version: 1.01.0011 - ASUSTek) Hidden
Hotkey Service (HKLM\...\{71C0E38E-09F2-4386-9977-404D4F6640CD}) (Version: 1.45 - AsusTek Computer Inc.)
InstantOn for EPC (HKLM\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.6 - ASUS)
Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.14.8.1064 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
LiveUpdate (HKLM\...\{38E5A3B1-ADF1-47E0-8024-76310A30EB36}) (Version: 1.30 - AsusTek Computer Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Media Sharing (HKLM\...\{9042F9FE-43CB-4ACF-9978-F62235127F90}) (Version: 0.65.6 - ASUS)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office « Démarrer en un clic » 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Français (HKLM\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 fr) (HKLM\...\Mozilla Firefox 32.0.3 (x86 fr)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Qualcomm Atheros WiFi Driver Installation (HKLM\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6473 - Realtek Semiconductor Corp.)
Skype™ 6.22 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.105 - Skype Technologies S.A.)
Super Hybrid Engine (HKLM\...\{88F08F98-12BC-4613-81A2-8F9B88CFC73E}) (Version: 2.19 - AsusTek Computer)
USBCharge+ (HKLM\...\{8165EFD2-0EB8-4C4F-A0E4-0E641B117ED2}) (Version: 1.0.0.23 - AsusTek Computer)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
08-11-2014 15:08:35 Windows Update
21-11-2014 20:46:55 Point de contrôle planifié
22-11-2014 09:47:52 Windows Update
26-11-2014 17:15:42 Windows Update
12-07-2015 14:39:43 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1D9C8CF4-FF43-43D8-807A-23B628396CA8} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1388478540-2806055896-2915544884-1000
Task: {25801D3F-851B-43A0-B2FA-AED790783B94} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {46CB3F07-F24E-43BD-BCDD-FB11B219EFA5} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-12] (Adobe Systems Incorporated)
Task: {78665B8C-97CC-43CB-8C4E-2639F15FEAC7} - System32\Tasks\{714BDD3D-C278-4755-9B05-E013BF9E1B6D} => Firefox.exe http://ui.skype.com/ui/0/6.22.81.105/fr/go/help.faq.installer?source=lightinstaller&LastError=1618
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (Whitelisted) ==============
2011-12-30 20:43 - 2011-08-09 01:48 - 00224680 _____ () C:\windows\system32\AsusService.exe
2011-03-26 03:55 - 2011-03-26 03:55 - 00091464 _____ () C:\ExpressGateUtil\VAWinService.exe
2011-03-26 03:55 - 2011-03-26 03:55 - 00157000 _____ () C:\ExpressGateUtil\libexpat.dll
2011-03-26 03:55 - 2011-03-26 03:55 - 00061768 _____ () C:\ExpressGateUtil\netProfileDatabase.DLL
2011-11-11 00:00 - 2011-11-11 00:00 - 00181664 _____ () C:\Program Files\Asus\LiveUpdate\Parser.dll
2011-08-20 00:42 - 2011-08-20 00:42 - 00045448 _____ () C:\ExpressGateUtil\VAWinAgent.exe
2014-09-25 20:44 - 2014-09-25 20:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2010-02-28 02:33 - 2010-02-28 02:33 - 00077664 _____ () C:\Program Files\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
2014-09-28 13:47 - 2014-09-28 13:48 - 03715184 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2015-07-12 14:00 - 2015-07-12 14:00 - 17418416 _____ () C:\windows\system32\Macromed\Flash\NPSWF32_18_0_0_203.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1388478540-2806055896-2915544884-1000\Control Panel\Desktop\\Wallpaper -> %windir%\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{3AC0D5FE-0BD8-451B-868E-AA26E164A68F}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{C7A72BB2-3788-4D88-ADB3-AF8DEA67232C}C:\program files\wisharing\wisharing.exe] => (Block) C:\program files\wisharing\wisharing.exe
FirewallRules: [UDP Query User{B80F0CC4-0E27-4B0F-82C8-5CF02BA31072}C:\program files\wisharing\wisharing.exe] => (Block) C:\program files\wisharing\wisharing.exe
FirewallRules: [{4DFA002B-60D8-40F5-82EA-15B695FF7BC9}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/12/2015 01:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_LanmanServer, version : 6.1.7600.16385, horodatage : 0x4a5bc100
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x440
Heure de début de l’application défaillante : 0xsvchost.exe_LanmanServer0
Chemin d’accès de l’application défaillante : svchost.exe_LanmanServer1
Chemin d’accès du module défaillant: svchost.exe_LanmanServer2
ID de rapport : svchost.exe_LanmanServer3
Error: (03/20/2015 12:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante plugin-container.exe, version : 32.0.3.5379, horodatage : 0x54224e6b
Nom du module défaillant : mozalloc.dll, version : 32.0.3.5379, horodatage : 0x54221b67
Code d’exception : 0x80000003
Décalage d’erreur : 0x0000141b
ID du processus défaillant : 0xb7c
Heure de début de l’application défaillante : 0xplugin-container.exe0
Chemin d’accès de l’application défaillante : plugin-container.exe1
Chemin d’accès du module défaillant: plugin-container.exe2
ID de rapport : plugin-container.exe3
Error: (03/20/2015 12:14:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme firefox.exe version 32.0.3.5379 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.
ID de processus : a5c
Heure de début : 01d06290e8acff06
Heure de fin : 372
Chemin d’accès de l’application : C:\Program Files\Mozilla Firefox\firefox.exe
ID de rapport : 4e90ec91-ce85-11e4-8618-c8600024490f
Error: (03/19/2015 11:47:58 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
(Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.
Error: (11/26/2014 05:25:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Skype.exe version 6.22.81.105 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.
ID de processus : 720
Heure de début : 01d0098879743756
Heure de fin : 520
Chemin d’accès de l’application : C:\Program Files\Skype\Phone\Skype.exe
ID de rapport : 6c890841-7580-11e4-abca-c8600024490f
Error: (11/22/2014 12:30:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Skype.exe version 6.22.81.105 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.
ID de processus : f7c
Heure de début : 01d0063a9a67680d
Heure de fin : 618
Chemin d’accès de l’application : C:\Program Files\Skype\Phone\Skype.exe
ID de rapport : 8176ca7c-7232-11e4-abca-c8600024490f
Error: (11/22/2014 12:17:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Skype.exe, version : 6.22.81.105, horodatage : 0x545b43cb
Nom du module défaillant : igdumd32.dll, version : 8.14.8.1064, horodatage : 0x4ee7da60
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0003b355
ID du processus défaillant : 0xf7c
Heure de début de l’application défaillante : 0xSkype.exe0
Chemin d’accès de l’application défaillante : Skype.exe1
Chemin d’accès du module défaillant: Skype.exe2
ID de rapport : Skype.exe3
Error: (11/13/2014 06:45:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
(Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.
Error: (11/07/2014 09:14:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante InsOnSrv.exe, version : 2.1.7.1, horodatage : 0x4ed5f236
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x6cc
Heure de début de l’application défaillante : 0xInsOnSrv.exe0
Chemin d’accès de l’application défaillante : InsOnSrv.exe1
Chemin d’accès du module défaillant: InsOnSrv.exe2
ID de rapport : InsOnSrv.exe3
Error: (11/07/2014 08:39:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante iSeriesCharge.exe, version : 6.0.0.10, horodatage : 0x4febd5f3
Nom du module défaillant : iSeriesCharge.exe, version : 6.0.0.10, horodatage : 0x4febd5f3
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00002bb1
ID du processus défaillant : 0xdb8
Heure de début de l’application défaillante : 0xiSeriesCharge.exe0
Chemin d’accès de l’application défaillante : iSeriesCharge.exe1
Chemin d’accès du module défaillant: iSeriesCharge.exe2
ID de rapport : iSeriesCharge.exe3
System errors:
=============
Error: (07/12/2015 01:43:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Infrastructure de gestion Windows, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Error: (07/12/2015 01:43:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Service de profil utilisateur, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Error: (07/12/2015 01:42:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Détection matériel noyau, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Error: (07/12/2015 01:42:22 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Serveur, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Infrastructure de gestion Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Thèmes s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Détection matériel noyau s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service de notification d’événements système s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Planificateur de tâches s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (07/12/2015 01:41:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service de profil utilisateur s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.
Microsoft Office:
=========================
Error: (07/12/2015 01:41:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_LanmanServer6.1.7600.163854a5bc100unknown0.0.0.000000000c00000050000000044001d0bc97973c30c8C:\windows\system32\svchost.exeunknowne64274e9-288a-11e5-b974-c8600024490f
Error: (03/20/2015 12:14:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe32.0.3.537954224e6bmozalloc.dll32.0.3.537954221b67800000030000141bb7c01d06291d2225688C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozalloc.dll55027853-ce85-11e4-8618-c8600024490f
Error: (03/20/2015 12:14:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: firefox.exe32.0.3.5379a5c01d06290e8acff06372C:\Program Files\Mozilla Firefox\firefox.exe4e90ec91-ce85-11e4-8618-c8600024490f
Error: (03/19/2015 11:47:58 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.
Error: (11/26/2014 05:25:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.22.81.10572001d0098879743756520C:\Program Files\Skype\Phone\Skype.exe6c890841-7580-11e4-abca-c8600024490f
Error: (11/22/2014 12:30:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Skype.exe6.22.81.105f7c01d0063a9a67680d618C:\Program Files\Skype\Phone\Skype.exe8176ca7c-7232-11e4-abca-c8600024490f
Error: (11/22/2014 12:17:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe6.22.81.105545b43cbigdumd32.dll8.14.8.10644ee7da60c00000050003b355f7c01d0063a9a67680dC:\Program Files\Skype\Phone\Skype.exeC:\windows\system32\igdumd32.dllb8703779-7230-11e4-abca-c8600024490f
Error: (11/13/2014 06:45:36 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Il n’existe actuellement aucune connexion réseau active. Le service de transfert intelligent d’arrière plan (BITS) recommencera plus tard, lorsqu’une carte sera connectée.
Error: (11/07/2014 09:14:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: InsOnSrv.exe2.1.7.14ed5f236unknown0.0.0.000000000c0000005000000006cc01cffaba21ec729bC:\Program Files\ASUS\InstantOn for EPC\InsOnSrv.exeunknown49c96b6b-66b2-11e4-b98b-c8600024490f
Error: (11/07/2014 08:39:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iSeriesCharge.exe6.0.0.104febd5f3iSeriesCharge.exe6.0.0.104febd5f3c000000500002bb1db801cffaba2d783c2aC:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exeC:\Program Files\ASUS\USBChargeSetting\iSeriesCharge.exe78d99a6e-66ad-11e4-b98b-c8600024490f
==================== Memory info ===========================
Processor: Intel(R) Atom(TM) CPU N2800 @ 1.86GHz
Percentage of memory in use: 92%
Total physical RAM: 1011.94 MB
Available physical RAM: 77.71 MB
Total Virtual: 2179.94 MB
Available Virtual: 352.92 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:100 GB) (Free:70.77 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:183.07 GB) (Free:182.98 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: A8D6F410)
Partition 1: (Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=15 GB) - (Type=1B)
Partition 3: (Not Active) - (Size=183.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=16 MB) - (Type=EF)
==================== End of log ============================ |
|
Posté le 12/07/2015 à 16:46 |
| le dernier:
Users shortcut scan result (x86) Version: 11-07-2015
Ran by Fabienne at 2015-07-12 16:01:23
Running from C:\Users\Fabienne\Downloads
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\LiveUpdate.lnk -> C:\Program Files\Asus\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat.com.lnk -> C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk -> C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk -> C:\Windows\System32\WindowsAnytimeUpgradeUI.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\Silverlight.Configuration.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel\Intel Control Center.lnk -> C:\Program Files\Intel\Intel Control Center\IntelControlCenter.exe (Intel Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam\E-Cam.lnk -> C:\Program Files\E-Cam\E-CAM.exe (AzureWave)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\E-Cam\Uninstall E-Cam.lnk -> C:\Program Files\InstallShield Installation Information\{185AFA7A-F63E-450B-94AA-011CAC18090E}\Uninstall\setup.exe (Macrovision Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Uninstall Defraggler.lnk -> C:\Program Files\Defraggler\uninst.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Media Sharing\ASUS Media Sharing.lnk -> C:\Windows\Installer\{9042F9FE-43CB-4ACF-9978-F62235127F90}\_BDA4D59F8840A70098A0D9.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\USBCharge+\USBCharge+.lnk -> C:\Program Files\Asus\USBChargeSetting\USBChargeSetting.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\Super Hybrid Engine\SuperHybridEngine.lnk -> C:\Program Files\Asus\SHE\SuperHybridEngine.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\LiveUpdate\Readme.lnk -> C:\Program Files\Asus\LiveUpdate\Help.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\FontResizer\FontResizer.lnk -> C:\Program Files\Asus\FontResizer\FontResizer.exe (ASUSTek.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\CapsHook\CapsHook.lnk -> C:\Program Files\Asus\CapsHook\CapsHook.exe (ASUS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSUpdate for Eee PC\ASUSUpdate.lnk -> C:\Program Files\Asus\ASUSUpdate for Eee PC\Update.exe (ASUSTeK Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\ASUSUpdate for Eee PC\Uninstall ASUSUpdate.lnk -> C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe (InstallShield Software Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\ExpressGateCloud\OS Switch.lnk -> C:\ExpressGateUtil\OS Switch.exe (TODO: <Company name>)
Shortcut: C:\Users\Default\Links\Desktop.lnk -> C:\Users\Fabienne\Desktop ()
Shortcut: C:\Users\Default\Links\Downloads.lnk -> C:\Users\Fabienne\Downloads ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\WiSharing Device.lnk -> C:\Program Files\WiSharing\WiFTPAddDev.exe (No File)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\Trend Micro\Trend Micro Titanium.lnk -> C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (No File)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\Links\Desktop.lnk -> C:\Users\Fabienne\Desktop ()
Shortcut: C:\Users\Fabienne\Links\Downloads.lnk -> C:\Users\Fabienne\Downloads ()
Shortcut: C:\Users\Fabienne\Desktop\Fabienne - Raccourci.lnk -> C:\Users\Fabienne ()
Shortcut: C:\Users\Fabienne\Desktop\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\Desktop\ZHPDiag.lnk -> C:\Users\Fabienne\AppData\Roaming\ZHP\ZHPDiag3.exe ()
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Word\Inventaire%20appartement%20Carroz302365591853204797\Inventaire%20appartement%20Carroz.doc.lnk -> E:\0 Appart CARROZ 10 2009\Inventaire appartement Carroz.doc (No File)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth File Transfer.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\WiSharing Device.lnk -> C:\Program Files\WiSharing\WiFTPAddDev.exe (No File)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (5).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\Links\Desktop.lnk -> C:\Users\Invité\Desktop ()
Shortcut: C:\Users\Invité\Links\Downloads.lnk -> C:\Users\Invité\Downloads ()
Shortcut: C:\Users\Invité\Desktop\E-Cam.lnk -> C:\Program Files\E-Cam\E-CAM.exe (AzureWave)
Shortcut: C:\Users\Invité\Desktop\Microsoft Security Essentials.lnk -> C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\Desktop\Documents Fabienne\sauvegarde usb lycee\Mes images\Échantillons d'images.lnk -> C:\Users\Public\Pictures\Échantillons d'images (No File)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\Trend Micro\Trend Micro Titanium.lnk -> C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe (No File)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (2).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (3).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (4).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer (5).lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\Defraggler.lnk -> C:\Program Files\Defraggler\Defraggler.exe (Piriform Ltd)
Shortcut: C:\Users\Public\Desktop\E-Manual.lnk -> C:\Program Files\Asus\E-Manual\E-Manual.pdf ()
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Skype.lnk -> C:\Windows\Installer\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}\SkypeIcon.exe ()
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Excel Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Word Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Bibliothèque multimédia Microsoft.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Bibliothèque multimédia Microsoft 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office 2010 Centre de téléchargement 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Picture Manager.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Picture Manager 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Office Starter To-Go Device Manager 2010 90140066040C0000"
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\FontResizer\Uninstall FontResizer.lnk -> C:\Program Files\InstallShield Installation Information\{17780F99-A9DF-450B-81B3-6781B20A17A8}\setup.exe (ASUSTek ) -> -runfromtemp -removeonly
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\ExpressGateCloud\Uninstall ExpressGateCloud.lnk -> C:\Program Files\InstallShield Installation Information\{36B0DC39-3282-40EB-8587-B875CE46C3A7}\setup.exe (VideACE Co. ) -> -runfromtemp -l0x0409
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (5).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Fabienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\Desktop\Microsoft Excel Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Excel Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\Users\Invité\Desktop\Microsoft Word Starter 2010.lnk -> C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVH.EXE (Microsoft Corporation) -> "Microsoft Word Starter 2010 90140066040C0000"
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -extoff
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk -> C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) -> /sendto:
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (2).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (3).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (4).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player (5).lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\Users\Invité\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler\Defraggler Homepage.url -> hxxp://www.piriform.com/defraggler
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner
InternetURL: C:\Users\Fabienne\Favorites\ASUS Member Home.url -> hxxp://vip.asus.com/user/uhome.aspx
InternetURL: C:\Users\Fabienne\Favorites\Homéopathie - Ingrid Schutt Homéopathe - Montréal.url -> hxxp://www.homeopathe.ca/fr/emergency.html
InternetURL: C:\Users\Fabienne\Favorites\Location appartement résidence sécurisée front de mer piscine privée, location vacances FRONTIGNAN PLAGE - 34 Hérault.url -> hxxp://www.amivac.com/location_tarif.asp?cli=44962&mb=2
InternetURL: C:\Users\Fabienne\Favorites\Links\Sites suggérés.url -> https://ieonline.microsoft.com/#ieslice
InternetURL: C:\Users\Invité\Favorites\Links\Sites suggérés.url -> https://ieonline.microsoft.com/#ieslice
==================== End of log =============================
Merci |
|
Posté le 13/07/2015 à 08:55 |
| Bonjour
N'ayant eu aucune réponse à mon sujet sur une centaine de visite , je pense que le problème n'est pas solvable. 
Bonne journee |
|
Eee PC asus "ne repond pas '
À LA UNE
PRATIQUE
LOGITHÈQUE
TABLETTE ET MOBILE
BONS PLANS
FONDS D'ÉCRAN
JEUX
FORUM
