Sujet Précédent Sujet Suivant

Mauvais fonctionnement de mon ordi

Fermé
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 - 13 févr. 2015 à 17:47
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 - 14 févr. 2015 à 13:47
Bonjour,

J'ai un PC portable HP -6730s qui a 4 ans, logiciel d'exploitation VISTA 32 bits.
Je ne sais pas d'où peut provenir les difficultés qui consistent en une grande lenteur et plus terrible le fait qu'au bout d'un moment je ne peux plus rien ouvrir,que ce soit à partir de mes raccourcis la case "ouvrir" n'apparaît plus,je ne peux plus l'arrêter,qu'en je clique sur la flèche de sortie etc..je suis obligé de retirer la batterie et la remettre pour qu'il redémarre normalement.J'ai installé l'anti virus AVAST qui est très performant mais rien n'y fait.
(je ne suis pas content du matériel HP)
Merci pour votre aide
A voir également:

6 réponses

Réponse 1 / 6
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
13 févr. 2015 à 17:48
Hello

On va vérifier

▶ Télécharge ici : FRST (de Farbar)
!!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
0
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 11
13 févr. 2015 à 18:55
Merci pour votre réponse,je n'ai pas pu copier le lien,je vous ai mis l'analyse dans son entier.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-02-2015
Ran by titous (administrator) on PC-DE-TITOUS on 13-02-2015 17:56:11
Running from C:\Users\titous\Documents\Downloads
Loaded Profiles: titous (Available profiles: titous)
Platform: Microsoft® Windows Vista(TM) Édition Familiale Premium Service Pack 1 (X86) OS Language: Français (France)
Internet Explorer Version 7 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
(SafeBoot International) C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Hewlett-Packard Corporation) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accoca.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(Hewlett-Packard Development Company, L.P) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Absolute Software Corp.) C:\Windows\System32\rpcnet.exe
() C:\Users\Default\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe
() C:\Program Files\003\vxlsnyaiet32.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Bioscrypt Inc.) C:\Program Files\Hewlett-Packard\IAM\Bin\asghost.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Orange) C:\Program Files\Orange\MailNotifier\MailNotifier.exe
(Dell) C:\Users\titous\AppData\Local\Apps\2.0\6PBLL29Y.143\BDHGX3VW.4B5\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.0\program\soffice.bin
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [tuto4pc_fr_30] => [X]
HKLM\...\Run: [Windows Defender] => C:\Program Files\windows defender\msascui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [CognizanceTS] => rundll32.exe c:\progra~1\hewlet~1\iam\bin\astsvcc.dll,registermodule
HKLM\...\Run: [hpWirelessAssistant] => c:\program files\hewlett-packard\hp wireless assistant\hpwamain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [IAAnotif] => c:\program files\intel\intel matrix storage manager\iaanotif.exe [178712 2008-04-18] (Intel Corporation)
HKLM\...\Run: [accrdsub] => c:\program files\actividentity\activclient\accrdsub.exe [293168 2007-05-16] (ActivIdentity)
HKLM\...\Run: [PTHOSTTR] => c:\program files\hewlett-packard\hp protecttools security manager\pthosttr.exe [238984 2008-05-08] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [HP Health Check Scheduler] => c:\program files\hewlett-packard\hp health check\hphc_scheduler.exe [70912 2008-04-15] (Hewlett-Packard)
HKLM\...\Run: [File Sanitizer] => c:\program files\hewlett-packard\file sanitizer\coreshredder.exe [10244096 2008-05-02] (Hewlett-Packard)
HKLM\...\Run: [QlbCtrl.exe] => c:\program files\hewlett-packard\hp quick launch buttons\qlbctrl.exe [177456 2008-05-14] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-14] (DivX, LLC)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [978520 2015-01-30] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-02-12] (AVAST Software)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [ehTray.exe] => C:\windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [MailNotifier] => c:\program files\orange\mailnotifier\mailnotifier.exe [884744 2013-08-30] (Orange)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [DellSystemDetect] => C:\Users\titous\AppData\Local\Apps\2.0\6PBLL29Y.143\BDHGX3VW.4B5\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe [254976 2014-05-23] (Dell)
AppInit_DLLs: c:\progra~1\suptab\search~1.dll => c:\progra~1\suptab\search~1.dll File Not Found
AppInit_DLLs: apshook.dll => C:\windows\system32\apshook.dll [81680 2008-05-21] (Bioscrypt Inc.)
Lsa: [Notification Packages] scecli ASWLNPkg
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk
ShortcutTarget: OpenOffice.org 2.0.lnk -> C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51064;https=127.0.0.1:51064;
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
URLSearchHook: HKLM - (No Name) - {1122b43d-30ee-403f-9bfa-3cc99b0caddd} - No File
URLSearchHook: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 - (No Name) - {1122b43d-30ee-403f-9bfa-3cc99b0caddd} - No File
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/webhp{searchTerms}
SearchScopes: HKLM -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = https://search.safefinder.com/?st=ds&q={searchTerms}&installDate=22/02/2013
SearchScopes: HKLM -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://speedial.com/results.php?f=4&q={searchTerms}&a=rckt_dsites03_14_28_ch&cd=2XzuyEtN2Y1L1QzutDtDtBtByCyEyByBtBtCtDyD0D0D0F0AtN0D0Tzu0SzytBtDtN1L2XzutBtFtBtCtFtCyEtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCtAtCtDyB0F0AtAtG0F0CzzyDtGyEtDzz0CtG0C0E0F0DtGtCyEzz0FtD0B0BtCtB0C0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyDtD0AtAyCyCyEtGtAtD0C0EtGtBzz0BzztG0AyCyEzytGyCyEyByEtDzz0EtByDtA0EtB2Q&cr=1911870059&ir=
SearchScopes: HKLM -> {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3298566&CUI=UN32924529333263055&UM=2
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/webhp{searchTerms}
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\.DEFAULT -> {4C4C7AAB-5854-4241-A414-E2F1EF119C4A} URL = http://www.dnsbasic.com/?prt=DNSBASIC111&sp=&keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/webhp{searchTerms}
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = https://search.safefinder.com/?st=ds&q={searchTerms}&installDate=22/02/2013
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = https://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=BC7D002264772105&affID=125035&tsp=5030
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://speedial.com/results.php?f=4&q={searchTerms}otre réponse,voilà le lien que vous me demandez:Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-02-2015
Ran by titous at 2015-02-13 17:57:29
Running from C:\Users\titous\Documents\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
ActivClient 6.1 x86 (Version: 6.01.00034 - ActivIdentity) Hidden
Adobe Flash Player 16 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.05 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Assistant de connexion Windows Live (HKLM\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
barre d'outils Orange (HKLM\...\OrangeToolbarFR) (Version: 1.1 - France Telecom SA)
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Cartes de visite pour les Nuls (HKLM\...\Cartes de visite pour les Nuls_is1) (Version: - Anuman Interactive)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Configuration DivX (HKLM\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)
Copy (Version: 130.0.366.000 - Hewlett-Packard) Hidden
Credential Manager for HP ProtectTools (Version: 4.0.3.1208 - Hewlett-Packard Company) Hidden
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden
DJ_AIO_06_F4500_SW_MIN (Version: 130.0.406.000 - Hewlett-Packard) Hidden
Drive Encryption for HP ProtectTools (Version: 4.0.2 - Hewlett-Packard) Hidden
ESU for Microsoft Vista SP1 (HKLM\...\{01F81577-D786-49D7-BAAF-B8A8B44CE251}) (Version: 1.00.3.1 - Hewlett-Packard)
Étude pour l'amélioration du produit HP Deskjet 2540 series (HKLM\...\{5E5DAF8E-6A1F-48FA-AB28-34BDFB4CC0BC}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
F4500 (Version: 130.0.406.000 - Hewlett-Packard) Hidden
File Sanitizer For HP ProtectTools (HKLM\...\{789C97CE-9E17-4126-BDF4-11FF458BF705}) (Version: 1.0.0.18 - Hewlett-Packard)
Galerie de photos Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hewlett-Packard Active Check for Health Check (Version: 1.1.15.2 - Hewlett-Packard) Hidden
Hewlett-Packard Asset Agent for Health Check (Version: 2.0.63.2 - HP) Hidden
HP 3D DriveGuard (HKLM\...\{4C203E35-B5C7-4E35-9834-619668C0FFEE}) (Version: 3.10 A7 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM\...\{420BBA1D-B275-4891-838C-EA88FE87A632}) (Version: 5.4.0.2423 - Hewlett-Packard)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Deskjet 2540 series Aide (HKLM\...\{2FAD0F16-4309-4D22-AE73-F4CCA737D013}) (Version: 30.0.0 - Hewlett Packard)
HP Deskjet F4500 Printer Driver Software 13.0 Rel .6 (HKLM\...\{7F08A772-2816-4F46-84F1-49578502AD28}) (Version: 13.0 - HP)
HP Doc Viewer (HKLM\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.03.0001 - Hewlett-Packard)
HP Easy Setup - Frontend (HKLM\...\{8BB128BE-2670-485D-A221-B00715BCEBCF}) (Version: 5.4.0.2423 - Hewlett-Packard)
HP Help and Support (HKLM\...\{E333CA5F-00ED-4EEF-90E5-6A33A8FE969F}) (Version: 2.0.9.0 - Hewlett-Packard)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.12992 - HP)
HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP)
hp print screen utility (HKLM\...\hp print screen utility) (Version: - )
HP ProtectTools Security Manager Suite (HKLM\...\{75D7BB3A-9AB7-4ad1-AD5E-0059B90C624B}) (Version: 04.00.01.0026 - Hewlett-Packard)
HP Quick Launch Buttons 6.40 E1 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.40 E1 - Hewlett-Packard)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Software Setup 5.00.A.7 (HKLM\...\{70CEFEBA-F757-4DBE-8A21-027C326137CE}) (Version: 5.00.A.7 - Hewlett-Packard Company)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP User Guides 0108 (HKLM\...\{B79DB290-9F72-4B20-9776-848D7832705B}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.4 - Hewlett-Packard)
HP Webcam (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.39004.0 - Sonix)
HP Webcam Application (HKLM\...\{154E4F71-DFC0-4B31-8D99-F97615031B02}) (Version: 1.0.020.0418 - Chicony Electronics Co.,Ltd.)
HP Wireless Assistant (HKLM\...\{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}) (Version: 3.00 K1 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPNetworkAssistant (Version: 1.1.70 - Hewlett-Packard.) Hidden
HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden
hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 130.0.371.000 - Hewlett-Packard) Hidden
hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden
Installation Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Installation Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
InterVideo Register Manager (Version: 1.0.4.0 - InterVideo Inc.) Hidden
InterVideo WinDVD (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.1242 - InterVideo Inc.)
Java 7 Update 13 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Java(TM) 6 Update 6 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160060}) (Version: 1.6.0.60 - Sun Microsystems, Inc.)
Logiciel de base du périphérique HP Deskjet 2540 series (HKLM\...\{460D6252-ACB1-4A44-96FE-ED781892673C}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2416447) (HKLM\...\M2416447) (Version: - )
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
MixiDJ V30 Toolbar for IE (HKLM\...\IECT3298566) (Version: 6.16.2.2 - MixiDJ V30) <==== ATTENTION
Module linguistique Microsoft .NET Framework 4 Client Profile FRA (HKLM\...\Microsoft .NET Framework 4 Client Profile FRA Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Mozilla Firefox 29.0.1 (x86 fr) (HKLM\...\Mozilla Firefox 29.0.1 (x86 fr)) (Version: 29.0.1 - Mozilla)
msvcrt_installer (HKLM\...\{6068A42A-C1CF-45F2-9859-5DB16287FE5D}) (Version: 1.0.0 - SAH)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Notification Mail (HKLM\...\MailNotifier) (Version: 3.3.0-Fr1.0 - Orange)
OpenOffice.org 2.0 (HKLM\...\{3869903C-0EF4-48D9-A12F-145AD549BA12}) (Version: 2.0.8990 - OpenOffice.org)
Orange update (HKLM\...\OrangeUpdateManager) (Version: 2.3.0.1 - Orange)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Visionneuse Microsoft PowerPoint (HKLM\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VLC media player 1.1.11 (HKLM\...\VLC media player) (Version: 1.1.11 - VideoLAN)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3303526766-3259835323-992382530-1004_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\windows\system32\msxml4.dll (Microsoft Corporation)

==================== Restore Points =========================

02-01-2015 09:35:19 Windows Update
03-01-2015 13:59:23 Windows Update
04-01-2015 08:32:18 Point de contrôle planifié
04-01-2015 17:02:04 Windows Update
05-01-2015 17:52:41 Windows Update
20-01-2015 22:07:05 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
20-01-2015 22:12:34 Windows Update
27-01-2015 18:23:24 Point de contrôle planifié
29-01-2015 10:41:29 Windows Update
04-02-2015 22:48:26 Windows Update
04-02-2015 23:12:27 Windows Update
08-02-2015 17:25:13 Windows Update
09-02-2015 09:47:42 Point de contrôle planifié
09-02-2015 21:13:55 Windows Update
10-02-2015 22:04:22 Windows Update
10-02-2015 22:50:58 Windows Update
11-02-2015 17:12:11 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
11-02-2015 17:34:28 Removed Pro PC Cleaner
11-02-2015 17:47:33 Removed HP 3D DriveGuard
11-02-2015 17:55:09 Removed Microsoft Silverlight
12-02-2015 10:09:45 Opération de restauration
12-02-2015 10:56:10 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
12-02-2015 10:57:00 Windows Update
12-02-2015 11:10:27 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
12-02-2015 11:26:09 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
12-02-2015 13:27:54 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
12-02-2015 13:27:55 Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
12-02-2015 17:05:15 Windows Update
12-02-2015 17:30:06 Windows Update
12-02-2015 17:57:37 avast! antivirus system restore point
13-02-2015 13:30:51 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 11:23 - 2014-05-09 15:12 - 00000761 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {048E1BA9-04FD-48CB-9AF1-F9D608A3AFF1} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - titous => C:\Program Files\Windows Calendar\WinCal.exe [2008-01-21] (Microsoft Corporation)
Task: {04A56387-4E61-4E7F-BC05-848ED66CBB2B} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3303526766-3259835323-992382530-1004 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {15B034ED-4006-4C36-B800-E349BEABDE65} - System32\Tasks\UpdaterEX => C:\Users\titous\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {1D7F24E4-4509-4D64-B76D-3B74E654897B} - System32\Tasks\HPCustParticipation HP Deskjet 2540 series => C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPCustPartic.exe [2013-08-13] (Hewlett-Packard Co.)
Task: {36B3D1E3-A8C8-4C73-89F7-A31BAAF121E6} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3303526766-3259835323-992382530-1004 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {398442A1-B5F2-4663-A3A5-3E5FDDDE0765} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {3CAD3768-F6AA-4E4E-94DC-4D2F01451103} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-02-12] (AVAST Software)
Task: {3DEFEFEA-83BA-4C6B-AB38-C0593A529889} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {3E8B2F06-0D0D-42AE-BE90-D68802779436} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3303526766-3259835323-992382530-1004 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {431648FD-C136-45DB-8F45-65E60B0E1C91} - System32\Tasks\Searchya => C:\Users\titous\AppData\Roaming\Searchya\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {74014D34-E45C-4BFC-A8AC-0BB311D24D8B} - System32\Tasks\ParetoLogic Update Version3 => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2014-12-08] ()
Task: {75394DE9-8083-4EE8-BAA4-F244889A2AA0} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-12] (Adobe Systems Incorporated)
Task: {7D43275E-B29D-4DD2-9720-4E7FC8FB0386} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3303526766-3259835323-992382530-1004 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {8A30240B-7C92-4144-B5F1-E660452D1579} - System32\Tasks\ParetoLogic Update Version3 Startup Task => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2014-12-08] ()
Task: {8F55B9ED-D594-48B8-800A-8B9B30376C96} - System32\Tasks\HPCeeScheduleFortitous => C:\Program Files\Hewlett-Packard\SDP\Ceement\HPCEE.exe [2007-09-21] (Hewlett-Packard)
Task: {96D5929A-EF46-4CCB-82E6-8B0C24E24CDF} - System32\Tasks\{D5D5B922-B9E6-4460-8B6A-804111C52051} => pcalua.exe -a "C:\Users\titous\Downloads\wmp11-windowsxp-x86-FR-FR (1).exe" -d C:\Users\titous\Downloads
Task: {99F67666-BC9D-42D0-8B21-CF9850FFAAB9} - System32\Tasks\avastBCLRestartS-1-5-21-3303526766-3259835323-992382530-1004 => Chrome.exe
Task: {A1226D33-4BF9-4889-A995-B6A80EAFFC02} - System32\Tasks\Printatree => C:\Users\titous\AppData\Roaming\PRINTA~1\PRINTA~1.EXE
Task: {A73281EA-B72F-4412-92B0-D1E45680DFF3} - System32\Tasks\Rocket Updater => C:\Users\titous\AppData\Roaming\RocketUpdater\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {AD775267-19AF-40AF-8390-BFF9C64574A6} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2014-05-23] ()
Task: {B9A99024-F573-4EF0-96D5-5E3DDC9B48A0} - System32\Tasks\ParetoLogic Registration3 => Rundll32.exe "C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll" RunUns
Task: {BA7C6959-18BC-4509-B096-7519D81D3AC0} - System32\Tasks\{10A79BD7-C5A1-43C2-BE6E-FE2FDA6EB02E} => pcalua.exe -a C:\Users\titous\Downloads\WDM_A406.exe -d C:\Users\titous\Downloads
Task: {D288BF70-9C62-48D2-997F-C202705D7959} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15] (Hewlett-Packard)
Task: {E4011A21-5FEF-4D08-A667-4BB97921C11B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-08] (Google Inc.)
Task: {F0585052-CDE4-43C7-B27B-F99443CF57C0} - System32\Tasks\Test TimeTrigger => C:\Users\titous\AppData\Local\Temp\Runner.exe <==== ATTENTION
Task: {FB9CF79D-5E01-4CB9-89B8-8F3138802E1C} - System32\Tasks\{4200D0BB-6A3B-4237-8E75-4E2A4EC6CEB1} => pcalua.exe -a C:\windows\system32\igfxcpl.cpl -c Intel(R) GMA Driver for Mobile

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\windows\Tasks\HPCeeScheduleFortitous.job => C:\Program Files\Hewlett-Packard\SDP\Ceement\HPCEE.exe
Task: C:\windows\Tasks\ParetoLogic Registration3.job => C:\Program Files\Common Files\ParetoLogic\UUS3\UUS3.dll
Task: C:\windows\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\windows\Tasks\ParetoLogic Update Version3.job => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
Task: C:\windows\Tasks\Printatree.job => C:\Users\titous\AppData\Roaming\PRINTA~1\PRINTA~1.EXE
Task: C:\windows\Tasks\Rocket Updater.job => C:\Users\titous\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\UpdaterEX.job => C:\Users\titous\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\windows\Tasks\User_Feed_Synchronization-{5A94CECB-B8CC-425D-941C-F1A6005BBFFA}.job => C:\windows\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) ==============

2015-02-13 11:56 - 2015-02-13 11:56 - 02912256 _____ () C:\Program Files\AVAST Software\Avast\defs\15021300\algo.dll
2015-02-12 11:45 - 2015-02-01 18:39 - 00099496 _____ () C:\Users\Default\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe
2014-05-12 22:40 - 2014-05-12 22:40 - 00541696 _____ () C:\Program Files\003\vxlsnyaiet32.exe
2015-02-12 18:01 - 2015-02-12 18:01 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00241664 _____ () C:\Program Files\Orange\MailNotifier\phonon4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 07388672 _____ () C:\Program Files\Orange\MailNotifier\QtGui4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 02010624 _____ () C:\Program Files\Orange\MailNotifier\QtCore4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00184320 _____ () C:\Program Files\Orange\MailNotifier\ProxyDetection.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00337408 _____ () C:\Program Files\Orange\MailNotifier\QtXml4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00877056 _____ () C:\Program Files\Orange\MailNotifier\QtNetwork4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00022016 _____ () C:\Program Files\Orange\MailNotifier\imageformats\qgif4.dll
2013-08-30 12:39 - 2013-08-30 12:39 - 00178176 _____ () C:\Program Files\Orange\MailNotifier\phonon_backend\phonon_ds94.dll
2014-09-25 19:44 - 2014-09-25 19:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2005-10-20 09:02 - 2005-10-20 09:02 - 00828416 _____ () C:\Program Files\OpenOffice.org 2.0\program\libxml2.dll
2015-02-12 10:28 - 2015-02-04 10:02 - 09170760 _____ () C:\Program Files\Google\Chrome\Application\40.0.2214.111\pdf.dll
2015-02-12 10:28 - 2015-02-04 10:02 - 14965064 _____ () C:\Program Files\Google\Chrome\Application\40.0.2214.111\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:2683706C
AlternateDataStreams: C:\ProgramData\TEMP:373E1720

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\img27.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrateur (S-1-5-21-3303526766-3259835323-992382530-500 - Administrator - Disabled)
Invité (S-1-5-21-3303526766-3259835323-992382530-501 - Limited - Disabled)
titous (S-1-5-21-3303526766-3259835323-992382530-1004 - Administrator - Enabled) => C:\Users\titous

==================== Faulty Device Manager Devices =============

Name: Carte miniport Microsoft Tun
Description: Carte miniport Microsoft Tun
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunmp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Deskjet F4500 series
Description: Deskjet F4500 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Deskjet F4500 series
Description: Deskjet F4500 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/13/2015 05:55:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:54:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:52:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:52:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:22:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabDonnées non valides.

Error: (02/13/2015 05:20:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/13/2015 05:17:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Application défaillante AsGHost.exe, version 3.0.0.61, horodatage 0x4833c92a, module défaillant ItVCard.dll, version 1.1.0.206, horodatage 0x4833c83e, code d'exception 0xc0000005, décalage d'erreur 0x00011546,
ID du processus 0x734, heure de début de l'application 0xAsGHost.exe0.


System errors:
=============
Error: (02/13/2015 05:20:07 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L'arrêt système précédant à 17:18:36 le 13/02/2015 n'était pas prévu.

Error: (02/13/2015 01:16:18 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L'arrêt système précédant à 13:14:30 le 13/02/2015 n'était pas prévu.


Microsoft Office Sessions:
=========================
Error: (02/13/2015 05:55:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:55:24 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:54:32 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:52:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:52:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabUn certificat requis n'est pas dans sa période de validité selon la vérification par rapport à l'horloge système en cours ou le tampon daté dans le fichier signé.

Error: (02/13/2015 05:22:27 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabDonnées non valides.

Error: (02/13/2015 05:20:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/13/2015 05:17:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AsGHost.exe3.0.0.614833c92aItVCard.dll1.1.0.2064833c83ec00000050001154673401d047a669c44d12


CodeIntegrity Errors:
===================================
Date: 2014-02-04 08:58:56.308
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:56.193
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:56.069
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:55.953
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.921
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.797
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.682
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.544
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.325
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.

Date: 2014-02-04 08:58:42.211
Description: Le module d'intégrité du code ne peut pas vérifier l'intégrité image du fichier \Device\HarddiskVolume1\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys car le jeu de hachages d'images par page n'a pas été trouvé sur le système.


==================== Memory info ===========================

Processor: Genuine Intel(R) CPU T1600 @ 1.66GHz
Percentage of memory in use: 57%
Total physical RAM: 3000.46 MB
Available physical RAM: 1285.58 MB
Total Pagefile: 6207.21 MB
Available Pagefile: 4405.67 MB
Total Virtual: 2047.88 MB
Available Virtual: 1900.95 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.88 GB) (Free:153.25 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:9 GB) (Free:1.18 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:1 GB) (Free:0.99 GB) FAT32
Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:464.87 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: 80D2F3EE)
Partition 1: (Active) - (Size=222.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1 GB) - (Type=0C)
Partition 3: (Not Active) - (Size=9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 3A9C5452)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================
0
Réponse 2 / 6
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
13 févr. 2015 à 18:57
On va passer cet outil simple d'utilisation
  • Télécharge cet outil simple d'utilisation https://toolslib.net/downloads/viewdownload/1-adwcleaner/
  • Lance le (Sous vista/seven/8 clic droit dessus, et sur Exécuter en tant qu'administrateur) si tu es sous xp double cliques dessus
  • Puis clique sur nettoyer.
  • Sauvegarde tout travail en cours puis accepte la fermeture des programmes en cours d'exécution.
  • Patiente le temps du nettoyage.
  • Une fois le scan fini, il te sera proposé de redémarrer.
  • Au redémarrage du PC, un rapport s'ouvrira.
  • Poste moi son contenu dans ta prochaine réponse.


Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

0
Réponse 3 / 6
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 11
14 févr. 2015 à 09:02
Bonjour ,

Voilà le rapport de AdwCleaner.
Merci pour l'intérêt que vous portez à mon affaire.
AdwCleaner m'a recommandé une mise à jour de Windows Update,ce que j'ai fait.

# AdwCleaner v4.110 - Rapport créé le 14/02/2015 à 08:33:10
# Mis à jour le 05/02/2015 par Xplode
# Base de données : 2015-02-14.2 [Serveur]
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 1 (x86)
# Nom d'utilisateur : titous - PC-DE-TITOUS
# Exécuté depuis : C:\Users\titous\Documents\Downloads\adwcleaner_4.110 (1).exe
# Option : Nettoyer
          • [ Services ] *****
          • [ Fichiers / Dossiers ] *****
          • [ Tâches planifiées ] *****
          • [ Raccourcis ] *****
          • [ Registre ] *****


Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs [bProtectTabs]
          • [ Navigateurs ] *****


-\\ Internet Explorer v7.0.6001.18639


-\\ Mozilla Firefox v29.0.1 (fr)


-\\ Google Chrome v40.0.2214.111


AdwCleaner[R0].txt - [19558 octets] - [14/02/2015 08:15:19]
AdwCleaner[R1].txt - [1067 octets] - [14/02/2015 08:28:20]
AdwCleaner[S0].txt - [19185 octets] - [14/02/2015 08:19:44]
AdwCleaner[S1].txt - [994 octets] - [14/02/2015 08:33:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1053 octets] ##########
0
Réponse 4 / 6
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 11
14 févr. 2015 à 10:47
Bonjour,

Je vous remercie pour l'aide que vous m'avez apporté.Il semblerait qu'avec toutes les manips effectuées ça aille mieux,même beaucoup mieux,un petit bémol cependant c'est la lenteur toute relative malgré tout.
Cordialement
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
lilidurhone Messages postés 43347 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 31 octobre 2024 3 806
14 févr. 2015 à 10:50
Refais frst
0
Réponse 6 / 6
titous Messages postés 75 Date d'inscription lundi 12 novembre 2007 Statut Membre Dernière intervention 19 janvier 2016 11
14 févr. 2015 à 13:47
Voilà les résultats obtenus.
Cordialement
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [ehTray.exe] => C:\windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [MailNotifier] => c:\program files\orange\mailnotifier\mailnotifier.exe [884744 2013-08-30] (Orange)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Run: [DellSystemDetect] => C:\Users\titous\AppData\Local\Apps\2.0\6PBLL29Y.143\BDHGX3VW.4B5\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe [254976 2014-05-23] (Dell)
AppInit_DLLs: apshook.dll => C:\windows\system32\apshook.dll [81680 2008-05-21] (Bioscrypt Inc.)
Lsa: [Notification Packages] scecli ASWLNPkg
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.0.lnk
ShortcutTarget: OpenOffice.org 2.0.lnk -> C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:51064;https=127.0.0.1:51064;
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/?trackid=sp-006
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp{searchTerms}
HKU\S-1-5-21-3303526766-3259835323-992382530-1004\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/webhp{searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\.DEFAULT -> {4C4C7AAB-5854-4241-A414-E2F1EF119C4A} URL = http://www.dnsbasic.com/?prt=DNSBASIC111&sp=&keywords={searchTerms}
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> {A1B3AB51-D450-4A88-A47F-2343A9F9CB59} URL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
SearchScopes: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = https://www.google.com/webhp{searchTerms}
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Dell Barre d'outils -> {09B71986-2AC5-482d-B6CB-42EA34F4F85B} -> No File
BHO: BHO_Startup Class -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: Credential Manager for HP ProtectTools -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Toolbar: HKLM - Dell Barre d'outils - {09B71986-2AC5-482d-B6CB-42EA34F4F85B} - No File
Toolbar: HKLM - barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll (Orange)
Toolbar: HKU\S-1-5-21-3303526766-3259835323-992382530-1004 -> barre d'outils Orange - {D3028143-6145-4318-99D3-3EDCE54A95A9} - C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll (Orange)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\titous\AppData\Roaming\Mozilla\Firefox\Profiles\61hzdvr8.default
FF SelectedSearchEngine: Google (avast)
FF Homepage: https://www.google.com/?trackid=sp-006
FF DefaultSearchEngine: Google (avast)
FF DefaultSearchUrl: https://www.google.com/search/?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF Keyword.URL: https://www.google.com/search/?trackid=sp-006
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\titous\AppData\Roaming\Mozilla\Firefox\Profiles\61hzdvr8.default\searchplugins\deezer.xml
FF SearchPlugin: C:\Users\titous\AppData\Roaming\Mozilla\Firefox\Profiles\61hzdvr8.default\searchplugins\google-avast.xml
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-04-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-02-12]
FF HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3321904&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPB6660B82-8A4F-420E-948C-AA6EBCB8B6D4&SSPV=
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3321904&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPB6660B82-8A4F-420E-948C-AA6EBCB8B6D4&SSPV=", "hxxp://mystart.incredibar.com/mb174?a=6OyUgPAXEk&i=26", "hxxp://searchfunmoods.com/?f=1&a=ironpub12&ir=ironpub12&cd=2XzuyEtN2Y1L1QzutD0CyCtDyByCyCtB0DtAyEyC0B0FtD0CtN0D0Tzu0CtAyDyBtN1L2XzutBtFtBtFtCtFyEtDyB&cr=1675076505", "hxxp://www.searchya.com/?f=1&a=grupo1y&cd=2XzuyEtN2Y1L1QzutDtDtBtByCyEyByBtBtCtDyD0D0D0F0AtN0D0Tzu0CyEtCzztN1L2XzutBtFtBtFtCtFyDtDtAtN1L1Czu1N1C2Y1E1FtC2U&cr=25433866&ir=", "hxxp://home.sweetim.com/?crg=3.1010006.10037&barid={E246118A-8E08-11E2-B0F8-002264772105}", "hxxp://www1.delta-search.com/?affID=119556&babsrc=HP_ss&mntrId=BC7D002264772105", "hxxp://search.conduit.com/?ctid=CT3321904&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP6960B3AA-5868-4E78-9175-5FFF8FE079D0&SSPV=", "hxxp://www.sweet-page.com/?type=hppp&ts=1400856973&from=sof&uid=HitachiXHTS543225L9A300_081111FB0E00LKJJUR6BX", "hxxp://www.sweet-page.com/?type=hppp&ts=1400857729&from=sof&uid=HitachiXHTS543225L9A300_081111FB0E00LKJJUR6BX", "hxxp://www.sweet-page.com/?type=hppp&ts=1400909063&from=sof&uid=HitachiXHTS543225L9A300_081111FB0E00LKJJUR6BX", "hxxp://rocket-find.com/?f=7&a=rckt_dsites03_14_28_ch&cd=2XzuyEtN2Y1L1QzutDtDtBtByCyEyByBtBtCtDyD0D0D0F0AtN0D0Tzu0SzytBtDtN1L2XzutBtFtBtCtFtCyEtFtDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StCtAtCtDyB0F0AtAtG0F0CzzyDtGyEtDzz0CtG0C0E0F0DtGtCyEzz0FtD0B0BtCtB0C0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyCyDtD0AtAyCyCyEtGtAtD0C0EtGtBzz0BzztG0AyCyEzytGyCyEyByEtDzz0EtByDtA0EtB2Q&cr=1911870059&ir="
CHR Profile: C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-08]
CHR Extension: (Google Drive) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-08]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-11]
CHR Extension: (YouTube) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-08]
CHR Extension: (Reverso) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\bokkioefleolhofkhnpjolheddnikbad [2014-07-08]
CHR Extension: (Recherche Google) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-08]
CHR Extension: (busuu.com (fr)) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\epadnjldocmkadjbopkanclaamocokoo [2014-07-08]
CHR Extension: (Avast Online Security) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-12]
CHR Extension: (ReversoEN) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaddnbbpdfpfibcllhkgbjdhemholcll [2014-07-08]
CHR Extension: (Google Wallet) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-08]
CHR Extension: (AIO Search) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\obhijjefkkokfaiffkcemldacdabpeei [2014-07-08]
CHR Extension: (Gmail) - C:\Users\titous\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-08]
CHR HKLM\...\Chrome\Extension: [bokkioefleolhofkhnpjolheddnikbad] - C:\Users\titous\AppData\Local\CRE\bokkioefleolhofkhnpjolheddnikbad.crx [2014-06-26]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-02-12]
CHR HKLM\...\Chrome\Extension: [jaddnbbpdfpfibcllhkgbjdhemholcll] - C:\Users\titous\AppData\Local\CRE\jaddnbbpdfpfibcllhkgbjdhemholcll.crx [2014-05-07]
CHR HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Chrome\Extension: [bokkioefleolhofkhnpjolheddnikbad] - C:\Users\titous\AppData\Local\CRE\bokkioefleolhofkhnpjolheddnikbad.crx [2014-06-26]
CHR HKU\S-1-5-21-3303526766-3259835323-992382530-1004\...\Chrome\Extension: [jaddnbbpdfpfibcllhkgbjdhemholcll] - C:\Users\titous\AppData\Local\CRE\jaddnbbpdfpfibcllhkgbjdhemholcll.crx [2014-05-07]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 accoca; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [182576 2007-05-16] (ActivIdentity)
R2 ASBroker; c:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [111888 2008-05-21] (Bioscrypt Inc.)
R2 ASChannel; c:\Program Files\Hewlett-Packard\IAM\Bin\AsChnl.dll [137488 2008-05-21] (Bioscrypt Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-02-12] (AVAST Software)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard) [File not signed]
R2 HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [34184 2008-05-14] (Hewlett-Packard Development Company, L.P)
R2 HpFkCryptService; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [256512 2008-05-14] (SafeBoot International)
R2 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [77824 2008-05-02] (Hewlett-Packard) [File not signed]
R3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL [694784 2009-09-20] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22184 2015-01-30] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [284472 2015-01-30] (Microsoft Corporation)
S2 Orange update Core Service; C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe [729112 2015-02-05] (Orange SA)
S2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 rpcnet; C:\windows\system32\rpcnet.exe [69792 2014-08-20] (Absolute Software Corp.)
R2 Verifies and fixes application compatibility issues; C:\Users\Default\AppData\Roaming\Compatibility Verifier\compatibilitychecksvc.exe [99496 2015-02-01] () [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\windows\system32\drivers\aswHwid.sys [24184 2015-02-12] ()
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [73480 2015-02-12] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr.sys [55240 2015-02-12] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [49944 2015-02-12] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [787800 2015-02-12] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [423784 2015-02-12] (AVAST Software)
R1 aswTdi; C:\windows\system32\drivers\aswTdi.sys [57928 2015-02-12] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [206248 2015-02-12] ()
R0 MpFilter; C:\windows\System32\DRIVERS\MpFilter.sys [239224 2014-11-15] (Microsoft Corporation)
R1 MpKsl2a6a58ea; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C4E35AD-9729-450C-BA14-25F62E40B2D0}\MpKsl2a6a58ea.sys [39464 2015-02-14] (Microsoft Corporation)
S1 MpKsl9a02e81f; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C4E35AD-9729-450C-BA14-25F62E40B2D0}\MpKsl9a02e81f.sys [39464 2015-02-13] () [File not signed]
R1 RsvLock; C:\windows\system32\Drivers\RsvLock.sys [12496 2008-05-14] (SafeBoot International)
R0 SafeBoot; C:\windows\system32\Drivers\SafeBoot.sys [108752 2008-05-14] () [File not signed]
R0 SbAlg; C:\windows\system32\Drivers\SbAlg.sys [51376 2008-05-14] (SafeBoot N.V.)
R0 SbFsLock; C:\windows\system32\Drivers\SbFsLock.sys [12928 2008-05-14] (SafeBoot International)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1804160 2008-04-10] ()
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 08:14 - 2015-02-14 08:59 - 00000000 ____D () C:\AdwCleaner
2015-02-13 17:51 - 2015-02-14 13:43 - 00000000 ____D () C:\FRST
2015-02-13 13:53 - 2015-02-13 13:53 - 00002423 _____ () C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Good State - create an account.lnk
2015-02-13 13:53 - 2015-02-13 13:53 - 00002393 _____ () C:\Users\titous\Desktop\Good State - create an account.lnk
2015-02-13 08:27 - 2015-02-13 10:49 - 00608354 _____ () C:\windows\debug.log
2015-02-12 18:11 - 2015-02-12 18:11 - 00000000 ____D () C:\Users\titous\AppData\Roaming\Dropbox
2015-02-12 18:03 - 2015-02-12 18:03 - 00001871 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-02-12 18:03 - 2015-02-12 18:03 - 00000000 ____D () C:\Users\titous\AppData\Roaming\AVAST Software
2015-02-12 18:03 - 2015-02-12 18:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-02-12 18:03 - 2015-02-12 18:03 - 00000000 _____ () C:\windows\setuperr.log
2015-02-12 18:03 - 2015-02-12 18:03 - 00000000 _____ () C:\windows\setupact.log
2015-02-12 18:01 - 2015-02-12 18:02 - 00787800 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2015-02-12 18:01 - 2015-02-12 18:02 - 00423784 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2015-02-12 18:01 - 2015-02-12 18:02 - 00073480 _____ (AVAST Software) C:\windows\system32\Drivers\aswmonflt.sys
2015-02-12 18:01 - 2015-02-12 18:01 - 00291352 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2015-02-12 18:01 - 2015-02-12 18:01 - 00206248 _____ () C:\windows\system32\Drivers\aswVmm.sys
2015-02-12 18:01 - 2015-02-12 18:01 - 00057928 _____ (AVAST Software) C:\windows\system32\Drivers\aswTdi.sys
2015-02-12 18:01 - 2015-02-12 18:01 - 00055240 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr.sys
2015-02-12 18:01 - 2015-02-12 18:01 - 00049944 _____ () C:\windows\system32\Drivers\aswRvrt.sys
2015-02-12 18:01 - 2015-02-12 18:01 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2015-02-12 18:01 - 2015-02-12 18:01 - 00024184 _____ () C:\windows\system32\Drivers\aswHwid.sys
2015-02-12 17:57 - 2015-02-12 17:57 - 00000000 ____D () C:\Program Files\AVAST Software
2015-02-12 17:56 - 2015-02-12 17:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-02-12 17:47 - 2015-02-12 17:47 - 00002191 _____ () C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MaxLaRadio, la radio des seniors.lnk
2015-02-12 17:47 - 2015-02-12 17:47 - 00002161 _____ () C:\Users\titous\Desktop\MaxLaRadio, la radio des seniors.lnk
2015-02-12 17:08 - 2015-02-12 17:08 - 00000000 ____D () C:\38913106f5543ee7b3
2015-02-12 17:00 - 2015-02-12 17:00 - 00002597 _____ () C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bienvenue sur Facebook. Connectez-vous, inscrivez-vous ou découvrez !.lnk
2015-02-12 17:00 - 2015-02-12 17:00 - 00002567 _____ () C:\Users\titous\Desktop\Bienvenue sur Facebook. Connectez-vous, inscrivez-vous ou découvrez !.lnk
2015-02-12 13:17 - 2015-02-14 08:50 - 00000472 _____ () C:\windows\Tasks\ParetoLogic Update Version3 Startup Task.job
2015-02-12 13:11 - 2015-02-12 19:37 - 00001180 _____ () C:\windows\PFRO.log
2015-02-12 10:31 - 2015-02-12 10:31 - 00002455 _____ () C:\Users\titous\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webmail Free.fr.lnk
2015-02-12 10:31 - 2015-02-12 10:31 - 00002425 _____ () C:\Users\titous\Desktop\Webmail Free.fr.lnk
2015-02-11 21:44 - 2015-02-11 21:44 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2015-02-11 21:44 - 2015-02-11 21:44 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Adobe
2015-02-11 17:54 - 2015-02-11 17:55 - 00000979 _____ () C:\ProgramData\hpzinstall.log
2015-02-11 16:29 - 2015-02-13 13:25 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Compatibility Verifier
2015-02-08 17:14 - 2015-02-08 17:14 - 00000000 ____D () C:\Users\CLMENC~1
2015-01-27 17:35 - 2015-02-13 12:33 - 00000112 _____ () C:\ProgramData\3NID37w.dat
2015-01-25 17:12 - 2015-02-12 18:53 - 00000365 _____ () C:\Users\titous\AppData\Roaming\RDHG
2015-01-25 17:12 - 2015-02-12 18:53 - 00000365 _____ () C:\Users\titous\AppData\Roaming\ERRO
2015-01-25 17:12 - 2015-02-12 18:53 - 00000365 _____ () C:\Users\titous\AppData\Roaming\CYZJLWZE
2015-01-25 17:12 - 2015-01-25 17:12 - 00002086 _____ () C:\Users\titous\AppData\Roaming\OPNBW
2015-01-25 17:12 - 2015-01-25 17:12 - 00002086 _____ () C:\Users\titous\AppData\Roaming\HJZREXU
2015-01-25 17:12 - 2015-01-25 17:12 - 00002086 _____ () C:\Users\titous\AppData\Roaming\BC
2015-01-20 22:08 - 2015-02-12 11:12 - 00000000 ____D () C:\ProgramData\Package Cache

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-14 13:36 - 2014-08-14 07:44 - 00017408 _____ () C:\windows\system32\rpcnetp.exe
2015-02-14 13:36 - 2006-11-02 13:47 - 00003344 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-14 13:36 - 2006-11-02 13:47 - 00003344 _____ () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-14 10:46 - 2014-07-08 18:41 - 00001056 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-14 10:23 - 2008-04-16 00:16 - 01617208 _____ () C:\windows\system32\PerfStringBackup.INI
2015-02-14 09:36 - 2013-10-04 17:07 - 00001002 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2015-02-14 08:54 - 2012-11-16 13:48 - 01735949 _____ () C:\windows\WindowsUpdate.log
2015-02-14 08:52 - 2014-09-18 13:05 - 00000000 ____D () C:\Users\titous\AppData\Roaming\OpenOffice.org2
2015-02-14 08:50 - 2014-07-08 18:41 - 00001052 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-14 08:49 - 2014-08-20 16:58 - 00069792 _____ (Absolute Software Corp.) C:\windows\system32\rpcnet.dll
2015-02-14 08:49 - 2008-06-18 16:33 - 00000000 ____D () C:\ProgramData\hpqLog
2015-02-14 08:49 - 2006-11-02 14:01 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-02-14 08:47 - 2006-11-02 14:01 - 00032562 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2015-02-13 18:15 - 2012-11-16 20:46 - 00023040 _____ () C:\Users\titous\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-13 08:47 - 2013-02-07 14:57 - 00009065 _____ () C:\Users\titous\Documents\Env.BATEL.odt
2015-02-12 20:39 - 2013-07-18 18:28 - 00000000 ____D () C:\Users\titous\AppData\Roaming\vlc
2015-02-12 18:00 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Sidebar
2015-02-12 17:09 - 2013-07-18 18:01 - 00000000 ____D () C:\windows\system32\MRT
2015-02-12 17:07 - 2014-10-24 07:41 - 00001826 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-02-12 17:07 - 2013-03-22 08:39 - 00002155 _____ () C:\windows\epplauncher.mif
2015-02-12 17:06 - 2013-03-22 08:39 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2015-02-12 13:12 - 2012-11-16 13:59 - 00000000 ____D () C:\Users\titous
2015-02-12 12:37 - 2013-10-04 17:07 - 00701616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2015-02-12 12:37 - 2013-10-04 17:07 - 00071344 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2015-02-12 10:28 - 2014-07-08 18:42 - 00001969 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-02-12 10:25 - 2013-01-02 16:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
2015-02-12 10:20 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\system32\Msdtc
2015-02-12 10:18 - 2006-11-02 11:22 - 41418752 _____ () C:\windows\system32\config\software_previous
2015-02-12 10:18 - 2006-11-02 11:22 - 41418752 _____ () C:\windows\system32\config\components_previous
2015-02-12 10:18 - 2006-11-02 11:22 - 16252928 _____ () C:\windows\system32\config\system_previous
2015-02-12 10:18 - 2006-11-02 11:22 - 00524288 _____ () C:\windows\system32\config\default_previous
2015-02-12 10:18 - 2006-11-02 11:22 - 00262144 _____ () C:\windows\system32\config\security_previous
2015-02-12 10:18 - 2006-11-02 11:22 - 00262144 _____ () C:\windows\system32\config\sam_previous
2015-02-12 10:14 - 2014-07-08 18:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-12 10:14 - 2014-07-08 18:17 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-02-12 10:14 - 2014-05-24 14:16 - 00000000 ___HD () C:\Users\titous\Desktop\Radio Courtoisie, la radio libre du pays réel et de la francophonie_fichiers
2015-02-12 10:14 - 2014-05-24 14:08 - 00000000 ___HD () C:\Users\titous\Desktop\PRO BTP - Particuliers _ Salarié _ Mon Compte Salarié_fichiers
2015-02-12 10:14 - 2014-05-24 13:59 - 00000000 ___HD () C:\Users\titous\Desktop\réunica_fichiers
2015-02-12 10:14 - 2014-05-24 13:57 - 00000000 ___HD () C:\Users\titous\Desktop\MES SERVICES - L'Assurance retraite_fichiers
2015-02-12 10:14 - 2014-05-24 13:46 - 00000000 ___HD () C:\Users\titous\Desktop\Bienvenue sur Facebook. Connectez-vous, inscrivez-vous ou découvrez !_fichiers
2015-02-12 10:14 - 2013-02-11 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-02-12 10:14 - 2013-02-11 19:13 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-02-12 10:14 - 2012-11-16 19:10 - 00000000 ____D () C:\Program Files\Google
2015-02-12 10:14 - 2008-06-18 17:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-02-12 10:14 - 2008-06-18 17:13 - 00000000 ____D () C:\Program Files\HP
2015-02-12 10:14 - 2008-06-18 16:14 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2015-02-12 10:14 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\system32\spool
2015-02-12 10:14 - 2006-11-02 12:18 - 00000000 ____D () C:\windows\registration
2015-02-11 22:23 - 2013-01-05 09:14 - 00000000 ____D () C:\Users\titous\AppData\Local\Adobe
2015-02-09 11:06 - 2015-01-05 11:14 - 00000052 _____ () C:\windows\system32\DOErrors.log
2015-01-29 17:49 - 2006-11-02 11:24 - 113756392 _____ (Microsoft Corporation) C:\windows\system32\mrt.exe
2015-01-27 17:42 - 2013-09-12 10:12 - 00000000 ____D () C:\Users\titous\Documents\Mes numérisations

==================== Files in the root of some directories =======

2015-01-25 17:12 - 2015-01-25 17:12 - 0002086 _____ () C:\Users\titous\AppData\Roaming\BC
2015-01-25 17:12 - 2015-02-12 18:53 - 0000365 _____ () C:\Users\titous\AppData\Roaming\CYZJLWZE
2015-01-25 17:12 - 2015-02-12 18:53 - 0000365 _____ () C:\Users\titous\AppData\Roaming\ERRO
2015-01-25 17:12 - 2015-01-25 17:12 - 0002086 _____ () C:\Users\titous\AppData\Roaming\HJZREXU
2015-01-25 17:12 - 2015-01-25 17:12 - 0002086 _____ () C:\Users\titous\AppData\Roaming\OPNBW
2015-01-25 17:12 - 2015-02-12 18:53 - 0000365 _____ () C:\Users\titous\AppData\Roaming\RDHG
2014-07-30 19:41 - 2014-10-28 08:41 - 0000105 _____ () C:\Users\titous\AppData\Roaming\WB.CFG
2012-11-16 14:10 - 2012-11-16 14:10 - 0000000 _____ () C:\Users\titous\AppData\Local\AtStart.txt
2013-05-17 19:51 - 2013-05-17 19:51 - 0000552 _____ () C:\Users\titous\AppData\Local\d3d8caps.dat
2013-05-17 08:35 - 2014-04-09 17:43 - 0000680 _____ () C:\Users\titous\AppData\Local\d3d9caps.dat
2012-11-16 20:46 - 2015-02-13 18:15 - 0023040 _____ () C:\Users\titous\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-11-16 14:10 - 2012-11-16 14:10 - 0000000 _____ () C:\Users\titous\AppData\Local\DSwitch.txt
2013-10-04 11:24 - 2013-10-04 11:24 - 0000094 _____ () C:\Users\titous\AppData\Local\fusioncache.dat
2012-11-16 14:10 - 2012-11-16 14:10 - 0000000 _____ () C:\Users\titous\AppData\Local\QSwitch.txt
2013-04-23 22:22 - 2013-04-23 22:22 - 0000000 _____ () C:\ProgramData\382a5e302a5f2d213d3c213c_c
2015-01-27 17:35 - 2015-02-13 12:33 - 0000112 _____ () C:\ProgramData\3NID37w.dat
2014-05-23 16:33 - 2014-05-23 16:33 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-02-11 17:54 - 2015-02-11 17:55 - 0000979 _____ () C:\ProgramData\hpzinstall.log
2012-12-30 14:54 - 2012-12-30 14:54 - 0000000 _____ () C:\ProgramData\UpdaterLog.txt

Files to move or delete:
====================
C:\ProgramData\3NID37w.dat


Some content of TEMP:
====================
C:\Users\titous\AppData\Local\Temp\Quarantine.exe
C:\Users\titous\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-14 08:54

==================== End Of Log ============================
0

Discussions similaires

Durée de Fonctionnement cpu
Theodose3 -
Aubin -

7 réponses
Durée de fonctionnement
mohmed950 -
Haldriel -

3 réponses