Sujet Précédent Sujet Suivant

Ordinateur lent

Fermé
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015 - 4 mars 2015 à 21:01
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 - 6 mars 2015 à 21:33
Bonjour,
depuis quelques jours mon ordinateur est vraiment très lent. J'ai l'impression que c'est depuis que j'ai désinstallé avast et que je l'ai remplacé par avira.

Quelqu'un pourrait m'aider ?

Merci d'avance.
A voir également:

12 réponses

Réponse 1 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
6 mars 2015 à 21:33
oui
1
Réponse 2 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
4 mars 2015 à 21:03
Bonsoir

On va vérifier
▶ Télécharge ici : FRST (de Farbar)
!!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
4 mars 2015 à 21:29
Voici le résultat des rapports :

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01
Ran by Aurélie (administrator) on PC-STÉPHANIE on 04-03-2015 21:08:00
Running from C:\Users\Aurélie\Downloads
Loaded Profiles: Aurélie (Available profiles: UpdatusUser & Aurélie & Invité)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Tor\tor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Spotify Ltd) C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Aurélie\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [127792 2015-02-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Spotify Web Helper] => C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-16] (Spotify Ltd)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Allmyapps] => "C:\Users\Aurélie\AppData\Roaming\Allmyapps\Allmyapps.exe" startup
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Allmyapps Update] => "C:\Users\Aurélie\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe" check startup
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Facebook Update] => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-07-22] (Facebook Inc.)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Spotify] => C:\Users\Aurélie\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-16] (Spotify Ltd)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [cacaoweb] => C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe [504112 2015-03-04] ()
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\MountPoints2: {61bd0281-6b21-11e3-824e-806e6f6e6963} - "E:\Autorun.exe"
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-12-10] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Aurélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop_01131122.lnk
ShortcutTarget: lollipop_01131122.lnk -> C:\Users\Aurélie\AppData\Local\Lollipop\lollipop_01131122.exe (No File)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-2335475428-801239694-1111027699-1005\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-2335475428-801239694-1111027699-1005] => http=127.0.0.1:55824;https=127.0.0.1:55824
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com?fr=hp-avast&type=avastbcl
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: No Name -> {5385bc42-9c06-4f54-a356-f0d4138b478d} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKU\S-1-5-21-2335475428-801239694-1111027699-1005 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-2335475428-801239694-1111027699-1005: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Aurélie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Extension: Widget context - C:\Users\Aurélie\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2014-01-13]
FF Extension: Avira Browser Safety - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\abs@avira.com [2015-03-02]
FF Extension: cacaoweb - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\cacaoweb@cacaoweb.org [2015-02-07]
FF Extension: Firefox Update Hotfix - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox-hotfix@mozilla.org [2013-11-05]
FF Extension: BuzzSearch - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox@mybuzzsearch.com [2013-11-20]
FF Extension: Camfrog Web Plugin for Mozilla Firefox - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\NPCamfrogWeb@camfrogweb.com [2013-07-23]
FF Extension: Snap.Do - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\{c0c7f968-c74a-a833-a9bf-7cc3d594759c} [2014-01-27]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\adblockpopups@jessehakanen.net.xpi [2013-11-15]
FF Extension: Firefox Update Hotfix - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox-hotfix@mozilla.org.xpi [2013-11-05]
FF Extension: SnapDo - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox@splashurl.com.xpi [2014-01-29]
FF Extension: Adblock Plus - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-17]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2014-02-12]
FF Extension: FrameFox - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{D6F4FFAF-E3C9-4f3d-AD5B-F78CD969D7BF} [2014-01-05]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2013-04-29]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [Not Found]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-15]
CHR Extension: (AdBlock) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-26]
CHR Extension: (Google Wallet) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jofdlbdmefjogcipddjnblinigmpagoj] - C:\Program Files (x86)\Lyrmix\Chrome.crx [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [184056 2015-02-12] (Avira Operations GmbH & Co. KG)
R3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2013-01-18] (Research In Motion Limited) [File not signed]
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-04-29] (Freemake) [File not signed]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-10] () [File not signed] <==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\wsadb.sys [40232 2013-11-10] (Google Inc)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131608 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S1 ElRawDisk; \??\C:\Windows\system32\drivers\rsdrvx64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-04 21:08 - 2015-03-04 21:09 - 00025522 _____ () C:\Users\Aurélie\Downloads\FRST.txt
2015-03-04 21:07 - 2015-03-04 21:08 - 00000000 ____D () C:\FRST
2015-03-04 21:07 - 2015-03-04 21:07 - 02092544 _____ (Farbar) C:\Users\Aurélie\Downloads\FRST64.exe
2015-03-04 00:06 - 2015-03-04 00:00 - 00043064 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-03-02 17:41 - 2015-03-02 17:41 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\Avira
2015-03-02 17:37 - 2014-11-24 10:23 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-03-02 17:37 - 2014-11-24 10:23 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-03-02 17:37 - 2014-11-24 10:23 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-02-28 20:23 - 2015-02-28 20:23 - 00174029 _____ () C:\Users\Aurélie\Downloads\Page titre.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00089349 _____ () C:\Users\Aurélie\Downloads\pzge 2.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00043019 _____ () C:\Users\Aurélie\Downloads\Page 4 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00032434 _____ () C:\Users\Aurélie\Downloads\Page 3.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00025000 _____ () C:\Users\Aurélie\Downloads\Page2.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00024725 _____ () C:\Users\Aurélie\Downloads\Page 3 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00014348 _____ () C:\Users\Aurélie\Downloads\Page 1 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00011886 _____ () C:\Users\Aurélie\Downloads\page 4.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00011851 _____ () C:\Users\Aurélie\Downloads\Page 5.odt
2015-02-28 20:22 - 2015-02-28 20:22 - 00012249 _____ () C:\Users\Aurélie\Downloads\Page 1.odt
2015-02-28 00:24 - 2015-02-28 00:24 - 00001227 _____ () C:\Users\Public\Desktop\Avira.lnk
2015-02-28 00:22 - 2015-03-02 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-02-28 00:22 - 2015-03-02 17:37 - 00000000 ____D () C:\ProgramData\Avira
2015-02-28 00:22 - 2015-03-02 17:37 - 00000000 ____D () C:\Program Files (x86)\Avira
2015-02-28 00:22 - 2015-02-28 00:22 - 04582672 _____ (Avira Operations & Co. KG) C:\Users\Aurélie\Downloads\avira_fr_av_5876209197__ws.exe
2015-02-28 00:22 - 2015-02-28 00:22 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-28 00:14 - 2015-02-28 00:14 - 05040384 _____ (AVAST Software) C:\Users\Aurélie\Downloads\avastclear.exe
2015-02-27 07:25 - 2015-02-27 07:25 - 00000000 ____D () C:\Users\Aurélie\Downloads\[www.Cpasbien.pw] Pretty.Little.Liars.S05E14.FASTSUB.VOSTFR.HDTV.XviD-ADDiCTiON
2015-02-25 21:54 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-25 21:54 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-25 21:54 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-25 21:54 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-25 21:54 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-25 21:54 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-02-17 16:39 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-17 16:39 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 00:24 - 2015-02-14 00:24 - 00000000 ____D () C:\ProgramData\Browser
2015-02-11 21:02 - 2015-02-04 00:38 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-02-11 21:02 - 2015-02-04 00:08 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-02-11 21:02 - 2015-02-04 00:08 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 00894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-02-11 21:01 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 21:01 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 21:01 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 21:01 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 14:49 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 14:49 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 14:49 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 14:49 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 14:49 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 14:49 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 14:49 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 14:49 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 14:49 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 14:49 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 14:49 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 14:49 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 14:49 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 14:49 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-02-11 14:49 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-02-11 14:49 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-11 14:49 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-11 14:49 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-02-11 14:49 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-02-11 14:49 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-02-11 14:49 - 2014-10-29 02:31 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-02-11 14:49 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-02-11 14:49 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-02-11 14:49 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-02-11 14:49 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-02-11 14:49 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-02-11 14:48 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-02-11 14:48 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-02-11 14:48 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-02-11 14:48 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-02-11 14:48 - 2015-01-12 03:34 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-02-11 14:48 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-02-11 14:48 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-02-11 14:48 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-02-11 14:48 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-02-11 14:48 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-02-11 14:48 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-02-11 14:48 - 2015-01-12 02:58 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-02-11 14:48 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-02-11 14:48 - 2015-01-12 02:51 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-02-11 14:48 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-02-11 14:48 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-02-11 14:48 - 2015-01-12 02:48 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-02-11 14:48 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-02-11 14:48 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-02-11 14:48 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-02-11 14:48 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-02-11 14:48 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-02-11 14:48 - 2015-01-12 02:27 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-02-11 14:48 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-02-11 14:48 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-02-11 14:48 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-02-11 14:48 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-02-11 14:48 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-02-11 14:48 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-02-11 14:48 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-02-11 14:48 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-02-11 14:48 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-02-11 14:48 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-02-11 14:48 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-02-11 14:47 - 2015-01-10 09:22 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-02-07 01:56 - 2015-03-04 19:10 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\cacaoweb
2015-02-07 01:56 - 2015-03-04 10:33 - 00504112 _____ () C:\Users\Aurélie\Desktop\cacaoweb.exe
2015-02-07 01:56 - 2015-02-07 01:56 - 00504112 _____ () C:\Users\Aurélie\Downloads\cacaoweb (3).exe
2015-02-02 18:06 - 2015-02-02 18:06 - 00000000 ____D () C:\TVWizard

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-04 21:10 - 2013-04-17 12:25 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\Spotify
2015-03-04 21:06 - 2013-04-17 12:11 - 00001096 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-04 21:05 - 2013-12-22 16:57 - 01327833 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-04 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-03-04 19:12 - 2013-12-28 14:39 - 00003960 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{68DDE38C-C0C2-4DFF-97E5-F5604342A2A7}
2015-03-04 14:30 - 2013-04-17 12:02 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2335475428-801239694-1111027699-1005
2015-03-04 10:33 - 2013-12-22 17:33 - 00000000 __RDO () C:\Users\Aurélie\SkyDrive
2015-03-04 10:33 - 2013-04-17 11:54 - 00000507 _____ () C:\Users\Aurélie\AppData\Roaming\sp_data.sys
2015-03-04 10:32 - 2013-08-28 14:14 - 00000418 _____ () C:\WINDOWS\Tasks\Lyrics Plus Update.job
2015-03-04 10:32 - 2013-04-17 12:11 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-04 03:29 - 2014-01-15 13:23 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-03 23:46 - 2013-07-22 22:41 - 00000962 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005UA.job
2015-03-03 23:46 - 2013-07-22 22:41 - 00000940 _____ () C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005Core.job
2015-03-03 10:53 - 2013-11-14 08:32 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-03 10:53 - 2013-11-14 08:13 - 00812350 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-03-03 10:53 - 2013-11-14 08:13 - 00159412 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-03-02 19:51 - 2013-11-13 23:22 - 00564152 _____ () C:\WINDOWS\PFRO.log
2015-03-02 19:51 - 2013-08-22 15:46 - 00389510 _____ () C:\WINDOWS\setupact.log
2015-03-02 19:51 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-02 19:51 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-03-02 19:45 - 2015-01-05 17:46 - 00000000 ____D () C:\Program Files (x86)\9cba5105-4067-4507-9884-11af581b5f5b
2015-03-02 14:18 - 2013-04-17 12:26 - 00000000 ____D () C:\Users\Aurélie\AppData\Local\Spotify
2015-03-01 22:13 - 2013-05-14 16:49 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\vlc
2015-02-28 21:06 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-02-28 20:23 - 2013-04-29 23:27 - 02808320 ___SH () C:\Users\Aurélie\Downloads\Thumbs.db
2015-02-27 23:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-02-27 08:07 - 2015-01-04 21:13 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\uTorrent
2015-02-25 22:54 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-02-22 22:42 - 2013-08-27 20:38 - 00000000 ___RD () C:\Users\Aurélie\Documents\Notes
2015-02-20 01:09 - 2014-09-15 20:30 - 00000000 ___RD () C:\Users\Aurélie\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2015-02-18 13:40 - 2014-02-18 15:12 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2015-02-17 01:14 - 2013-08-22 15:44 - 00388424 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-02-12 19:25 - 2013-08-18 22:01 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-12 19:19 - 2014-12-17 12:45 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-02-12 19:19 - 2014-07-09 18:09 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-02-12 19:19 - 2013-04-19 16:59 - 116773704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-07 17:29 - 2014-01-15 13:23 - 00003890 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-02-03 20:31 - 2014-12-17 12:49 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-02-03 20:31 - 2014-12-17 12:49 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

==================== Files in the root of some directories =======

2014-09-01 09:18 - 2014-09-01 09:18 - 0002086 _____ () C:\Users\Aurélie\AppData\Roaming\CJJ
2015-01-05 17:47 - 2015-01-05 17:47 - 1569760 _____ () C:\Users\Aurélie\AppData\Roaming\CJJ.exe
2013-07-20 10:23 - 2013-07-20 10:23 - 0000021 _____ () C:\Users\Aurélie\AppData\Roaming\my_intel.sys
2013-09-10 00:02 - 2014-04-27 12:12 - 0000539 _____ () C:\Users\Aurélie\AppData\Roaming\Rim.Desktop.Exception.log
2013-11-20 17:22 - 2014-03-15 12:15 - 0001937 _____ () C:\Users\Aurélie\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2013-09-10 00:02 - 2014-04-27 12:12 - 0000539 _____ () C:\Users\Aurélie\AppData\Roaming\Rim.DesktopHelper.Exception.log
2013-09-10 13:34 - 2014-04-27 12:12 - 0000462 _____ () C:\Users\Aurélie\AppData\Roaming\Rim.Transcoder.Exception.log
2013-04-17 11:54 - 2015-03-04 10:33 - 0000507 _____ () C:\Users\Aurélie\AppData\Roaming\sp_data.sys
2013-08-16 12:36 - 2013-08-20 12:26 - 0000074 _____ () C:\Users\Aurélie\AppData\Roaming\WB.CFG
2013-08-18 09:36 - 2013-08-18 09:36 - 0000005 _____ () C:\Users\Aurélie\AppData\Roaming\WBPU-Q5-TTL.DAT
2013-08-16 12:36 - 2013-08-28 12:55 - 0000005 _____ () C:\Users\Aurélie\AppData\Roaming\WBPU-TTL.DAT
2014-09-01 09:18 - 2014-09-01 09:18 - 0001248 _____ () C:\Users\Aurélie\AppData\Roaming\YNEKPLL
2015-01-05 17:46 - 2015-01-05 17:46 - 2064352 _____ () C:\Users\Aurélie\AppData\Roaming\YNEKPLL.exe
2013-06-02 11:48 - 2014-04-27 12:08 - 0016384 _____ () C:\Users\Aurélie\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-17 01:52 - 2012-07-30 07:03 - 0000217 _____ () C:\ProgramData\SetStretch.cmd
2012-08-17 01:52 - 2009-07-22 11:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe


Some content of TEMP:
====================
C:\Users\Aurélie\AppData\Local\Temp\21946.exe
C:\Users\Aurélie\AppData\Local\Temp\23222.exe
C:\Users\Aurélie\AppData\Local\Temp\AutoRun.exe
C:\Users\Aurélie\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Aurélie\AppData\Local\Temp\avgnt.exe
C:\Users\Aurélie\AppData\Local\Temp\BoxoreInstaller.exe
C:\Users\Aurélie\AppData\Local\Temp\BuenoSearchTB.exe
C:\Users\Aurélie\AppData\Local\Temp\CertMgr.Exe
C:\Users\Aurélie\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsyjykc.dll
C:\Users\Aurélie\AppData\Local\Temp\First15.exe
C:\Users\Aurélie\AppData\Local\Temp\GetCC.dll
C:\Users\Aurélie\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Aurélie\AppData\Local\Temp\optprosetup.exe
C:\Users\Aurélie\AppData\Local\Temp\paint.net.4.0.3.install.exe
C:\Users\Aurélie\AppData\Local\Temp\Quarantine.exe
C:\Users\Aurélie\AppData\Local\Temp\SendMsg.dll
C:\Users\Aurélie\AppData\Local\Temp\sqlite3.dll
C:\Users\Aurélie\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\Aurélie\AppData\Local\Temp\Unipack_Installer.exe
C:\Users\Aurélie\AppData\Local\Temp\utt6D8A.tmp.exe
C:\Users\Aurélie\AppData\Local\Temp\vbmz10.exe
C:\Users\Aurélie\AppData\Local\Temp\VP6Install.exe
C:\Users\Aurélie\AppData\Local\Temp\VP6VFW.dll
C:\Users\stéphanie\AppData\Local\Temp\1366313473itinstallerp.exe
C:\Users\stéphanie\AppData\Local\Temp\1366313873itinstallerp.exe
C:\Users\stéphanie\AppData\Local\Temp\1366369156itinstallerp.exe
C:\Users\stéphanie\AppData\Local\Temp\26384-672334-skype.exe
C:\Users\stéphanie\AppData\Local\Temp\27127-660909-internet-explorer.exe
C:\Users\stéphanie\AppData\Local\Temp\54425-667390-photoscape.exe
C:\Users\stéphanie\AppData\Local\Temp\BackupSetup.exe
C:\Users\stéphanie\AppData\Local\Temp\BoxoreInstaller.exe
C:\Users\stéphanie\AppData\Local\Temp\BrokerMediumIntegrity.exe
C:\Users\stéphanie\AppData\Local\Temp\CleanSchedule.exe
C:\Users\stéphanie\AppData\Local\Temp\FreemakeVideoConverter_4.0.1.1.exe
C:\Users\stéphanie\AppData\Local\Temp\GenericUninstall.exe
C:\Users\stéphanie\AppData\Local\Temp\ICReinstall_7z922.exe
C:\Users\stéphanie\AppData\Local\Temp\IminentSetup-1-.exe
C:\Users\stéphanie\AppData\Local\Temp\IminentSetup.exe
C:\Users\stéphanie\AppData\Local\Temp\Installer.exe
C:\Users\stéphanie\AppData\Local\Temp\installerp.exe
C:\Users\stéphanie\AppData\Local\Temp\Install_BubbleDock.exe
C:\Users\stéphanie\AppData\Local\Temp\Install_BubbleDock[1].exe
C:\Users\stéphanie\AppData\Local\Temp\instloffer.exe
C:\Users\stéphanie\AppData\Local\Temp\lpi.exe
C:\Users\stéphanie\AppData\Local\Temp\LrcsPls.exe
C:\Users\stéphanie\AppData\Local\Temp\LyricsPal.exe
C:\Users\stéphanie\AppData\Local\Temp\lyricstmp.exe
C:\Users\stéphanie\AppData\Local\Temp\lyrmixTemp.exe
C:\Users\stéphanie\AppData\Local\Temp\Messenger-full-installer.exe
C:\Users\stéphanie\AppData\Local\Temp\mgsqlite3.dll
C:\Users\stéphanie\AppData\Local\Temp\mypcbackup.exe
C:\Users\stéphanie\AppData\Local\Temp\OptimizerPro.exe
C:\Users\stéphanie\AppData\Local\Temp\plushd.exe
C:\Users\stéphanie\AppData\Local\Temp\Quarantine.exe
C:\Users\stéphanie\AppData\Local\Temp\rcpsetup_softonic_sd_new.exe
C:\Users\stéphanie\AppData\Local\Temp\Setup(1).exe
C:\Users\stéphanie\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\stéphanie\AppData\Local\Temp\silent_pricora_deltaArgs_FR.exe
C:\Users\stéphanie\AppData\Local\Temp\SkypeSetup.exe
C:\Users\stéphanie\AppData\Local\Temp\uninstaller.exe
C:\Users\stéphanie\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\stéphanie\AppData\Local\Temp\vcredist_x64.exe
C:\Users\stéphanie\AppData\Local\Temp\vlc-2.0.2-win32.exe
C:\Users\stéphanie\AppData\Local\Temp\wajam_download.exe
C:\Users\stéphanie\AppData\Local\Temp\WSSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-28 00:30

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-03-2015 01
Ran by Aurélie at 2015-03-04 21:19:50
Running from C:\Users\Aurélie\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Allmyapps (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Allmyapps) (Version: 2.0.0.30 - Allmyapps SAS)
Avira (HKLM-x32\...\{d9ed6dcf-6bfc-4fbb-802e-81dd5b767d6e}) (Version: 1.1.32.25147 - Avira Operations & Co. KG)
Avira (x32 Version: 1.1.32.25147 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Dropbox (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
java Packages (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\java Packages) (Version: - ) <==== ATTENTION
Lollipop (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\lollipop_01131122) (Version: - Lollipop Network, S.L.) <==== ATTENTION
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Skype(TM) 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: - )
Snap.Do Engine (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\{f7ee94f3-abee-4dd0-bf32-0f467cb125e8}) (Version: 10.206.1.14585 - ReSoft Ltd.) <==== ATTENTION
Spotify (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Windows Driver Package - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) (HKLM\...\C01F56FBD9B141017E63E2A1A141E59934D4DC67) (Version: 10/29/2012 1.0.0.148 - ASUS)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

18-02-2015 12:39:17 Windows Update
25-02-2015 22:52:25 Windows Update
04-03-2015 00:21:52 Avira Free Antivirus - 04/03/2015 00:21

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-02-13 21:42 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07E2810A-1491-4FC2-B8D8-1E4421655840} - \Plus-HD-1.3-codedownloader No Task File <==== ATTENTION
Task: {07ED87CC-6340-4289-BD98-314BE701E78C} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {08E3F162-D5D4-468F-98F4-09DA31705E8B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {09D07EA8-F5A8-4FD6-ABD6-B81AE506F892} - \Plus-HD-1.3-firefoxinstaller No Task File <==== ATTENTION
Task: {292EB0C2-5D4E-4163-B6A7-0FE232E89027} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {2AEE50F5-68D7-42E0-B596-EE41A630289B} - System32\Tasks\{80FF6D66-33B8-47CB-B4B9-50D301C2DA90} => pcalua.exe -a C:\ProgramData\TVWizard\uninstall.exe -c /kb=y /ic=1 <==== ATTENTION
Task: {2F10702D-10AF-4C25-9077-4182F9026E3D} - \Pricora 1.4-firefoxinstaller No Task File <==== ATTENTION
Task: {2FEBC99E-3784-4259-9A32-88DE7AAF04DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-17] (Google Inc.)
Task: {30AD7086-EFAC-48B5-A89F-60702BC40126} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2335475428-801239694-1111027699-1005
Task: {3C720901-150A-4493-9DB4-57C91FF85304} - \Pricora 1.4-chromeinstaller No Task File <==== ATTENTION
Task: {4ED1A89F-7027-47DA-85F9-998E902924A5} - \Feven 1.8-chromeinstaller No Task File <==== ATTENTION
Task: {5C3C74B9-9017-4B30-80B8-E11251B2BDA5} - \Feven 1.8-firefoxinstaller No Task File <==== ATTENTION
Task: {5D4892B5-8ACE-4863-ADB4-A9C2F7D61A8C} - \Plus-HD-1.3-updater No Task File <==== ATTENTION
Task: {72A2A6DC-A01C-4750-A9FF-B82E6382BA98} - \Feven 1.8-updater No Task File <==== ATTENTION
Task: {74AAAEA6-6A89-432C-B251-6C55B95CEABC} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {790922FB-B2B8-41DD-A0A0-2D19C884BCA6} - \Plus-HD-1.3-chromeinstaller No Task File <==== ATTENTION
Task: {7C474548-B6D2-4700-B993-1165BB4CC6A5} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005Core => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-22] (Facebook Inc.)
Task: {85612AC8-1E4F-49F6-BDE4-6571FDEFEDAF} - \Feven 1.8-enabler No Task File <==== ATTENTION
Task: {92CACED8-850B-4E5F-9BB7-2B9B1D12D01A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-17] (Google Inc.)
Task: {99E5B873-0CAF-4595-9923-E0B9C50315E7} - \Plus-HD-3.5-firefoxinstaller No Task File <==== ATTENTION
Task: {9AC64B5A-81ED-4B06-98D2-89EF2FD481A2} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005UA => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-22] (Facebook Inc.)
Task: {A6F25EEC-1C53-4E96-9595-B8277F5AAFDE} - \Pricora 1.4-enabler No Task File <==== ATTENTION
Task: {A890BAFB-3EE5-4F11-AC7C-79FAEC3F92BD} - \Plus-HD-3.5-chromeinstaller No Task File <==== ATTENTION
Task: {AE2FA1BE-A96F-46DC-A240-9225F7D97087} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {BDC2E378-6697-4DAA-A431-534A45E78B08} - System32\Tasks\Updater12765.exe => C:\Users\stéphanie\AppData\Local\Updater12765\Updater12765.exe <==== ATTENTION
Task: {C01DF97B-11FA-4786-B79F-1E72205A33CE} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {C0F66F51-C08A-4D7C-AEA8-96BC802A7CB3} - System32\Tasks\{5C0C790B-9761-41AD-9D37-EC77C86A3589} => pcalua.exe -a C:\Users\Aurélie\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=tugs <==== ATTENTION
Task: {C9021C19-E8D9-4F0C-BAA3-DA439EE81066} - \Feven 1.8-codedownloader No Task File <==== ATTENTION
Task: {CA62BF71-E10B-4EDF-9DA3-8112C4BA564F} - System32\Tasks\{6F5E9AC9-AAA4-4544-8B88-32E0A25698E1} => pcalua.exe -a "C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\Silverlight.Configuration.exe" -c -uninstallApp 1609107295.portal.qtrax.com
Task: {CC6DA866-05D2-4EF8-A64B-1AEA0BAF128F} - \Plus-HD-1.3-enabler No Task File <==== ATTENTION
Task: {CCBB59CF-A938-4E76-A4C0-3E85E288F80F} - System32\Tasks\Lyrics Plus Update => C:\Program Files (x86)\LyricsPlus\LyricsPls.exe <==== ATTENTION
Task: {CFDBB29A-512D-4832-ACE9-44C861D21F59} - \Plus-HD-1.7-chromeinstaller No Task File <==== ATTENTION
Task: {D138BF1E-CBA6-487C-BD83-ED6D0CF8FDBD} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07] (Adobe Systems Incorporated)
Task: {DA5A8C08-D7C1-40BA-A68C-B72BA768C1E4} - \Pricora 1.4-codedownloader No Task File <==== ATTENTION
Task: {F2B9B404-C63A-4116-AD98-4A91B360EEC7} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AllmyappsUpdateTask.job => C:\Users\Aurélie\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe
Task: C:\WINDOWS\Tasks\CJJ.job => C:\Users\Aurýÿlie\AppData\Roaming\CJJ.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005Core.job => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005UA.job => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Lyrics Plus Update.job => C:\Program Files (x86)\LyricsPlus\LyricsPls.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\YNEKPLL.job => C:\Users\Aurýÿlie\AppData\Roaming\YNEKPLL.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) ==============

2014-02-18 15:14 - 2012-03-28 13:49 - 00140456 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2013-09-10 23:01 - 2013-09-10 23:01 - 03233806 _____ () C:\Program Files (x86)\Tor\tor.exe
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-22 16:58 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-02-07 01:56 - 2015-03-04 03:15 - 00504112 _____ () C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe
2013-09-29 21:15 - 2014-12-16 16:46 - 00374840 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2012-12-16 08:57 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-09-11 15:01 - 2012-09-11 15:01 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2013-04-17 12:26 - 2014-12-16 16:46 - 36966968 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libcef.dll
2014-07-18 00:20 - 2014-12-16 16:46 - 00867896 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2013-09-29 21:15 - 2014-12-16 16:46 - 00886840 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-29 21:15 - 2014-12-16 16:46 - 00108600 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libegl.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00050640 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\chrome_elf.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00716240 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\libglesv2.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\libegl.dll
2014-01-07 00:32 - 2013-12-19 05:54 - 04060112 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\pdf.dll
2014-01-07 00:32 - 2013-12-19 05:54 - 00394192 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\ppGoogleNaClPluginChrome.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 01647056 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:4ABA35EE
AlternateDataStreams: C:\Users\Aurélie\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\stéphanie\Downloads\No Subject.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Aurélie\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\papier peint de la galerie de photos.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"

==================== Accounts: =============================

Administrateur (S-1-5-21-2335475428-801239694-1111027699-500 - Administrator - Disabled)
Aurélie (S-1-5-21-2335475428-801239694-1111027699-1005 - Administrator - Enabled) => C:\Users\Aurélie
HomeGroupUser$ (S-1-5-21-2335475428-801239694-1111027699-1022 - Limited - Enabled)
Invité (S-1-5-21-2335475428-801239694-1111027699-501 - Limited - Enabled) => C:\Users\Invité
UpdatusUser (S-1-5-21-2335475428-801239694-1111027699-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/04/2015 08:55:52 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (03/04/2015 02:53:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 5d0

Heure de début : 01d0561b2b6d925e

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rappor
0
Stashion Messages postés 89 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 8 mars 2015 5
5 mars 2015 à 21:45
Je rêve où c'est la plus longue réponse du monde ?
0
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804 > Stashion Messages postés 89 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 8 mars 2015
5 mars 2015 à 22:33
Non non tu ne rêve pas ^^
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015 > Stashion Messages postés 89 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 8 mars 2015
5 mars 2015 à 22:35
Mdr, sûrement
0
Stashion Messages postés 89 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 8 mars 2015 5
Modifié par Stashion le 6/03/2015 à 17:56
Attends je vais battre le record, j'ai juste à appuyer sur une touche et attendre.
0
Réponse 3 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
4 mars 2015 à 21:55
héberge les rapports
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
4 mars 2015 à 22:07
Voilà ce que j'ai obtenu avec Cjoint, j'espère que c'est bien ça.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-03-2015 01
Ran by Aurélie at 2015-03-04 21:19:50
Running from C:\Users\Aurélie\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Allmyapps (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Allmyapps) (Version: 2.0.0.30 - Allmyapps SAS)
Avira (HKLM-x32\...\{d9ed6dcf-6bfc-4fbb-802e-81dd5b767d6e}) (Version: 1.1.32.25147 - Avira Operations & Co. KG)
Avira (x32 Version: 1.1.32.25147 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Dropbox (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
java Packages (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\java Packages) (Version: - ) <==== ATTENTION
Lollipop (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\lollipop_01131122) (Version: - Lollipop Network, S.L.) <==== ATTENTION
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Skype(TM) 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: - )
Snap.Do Engine (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\{f7ee94f3-abee-4dd0-bf32-0f467cb125e8}) (Version: 10.206.1.14585 - ReSoft Ltd.) <==== ATTENTION
Spotify (HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Windows Driver Package - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) (HKLM\...\C01F56FBD9B141017E63E2A1A141E59934D4DC67) (Version: 10/29/2012 1.0.0.148 - ASUS)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2335475428-801239694-1111027699-1005_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

18-02-2015 12:39:17 Windows Update
25-02-2015 22:52:25 Windows Update
04-03-2015 00:21:52 Avira Free Antivirus - 04/03/2015 00:21

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-02-13 21:42 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07E2810A-1491-4FC2-B8D8-1E4421655840} - \Plus-HD-1.3-codedownloader No Task File <==== ATTENTION
Task: {07ED87CC-6340-4289-BD98-314BE701E78C} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {08E3F162-D5D4-468F-98F4-09DA31705E8B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: {09D07EA8-F5A8-4FD6-ABD6-B81AE506F892} - \Plus-HD-1.3-firefoxinstaller No Task File <==== ATTENTION
Task: {292EB0C2-5D4E-4163-B6A7-0FE232E89027} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {2AEE50F5-68D7-42E0-B596-EE41A630289B} - System32\Tasks\{80FF6D66-33B8-47CB-B4B9-50D301C2DA90} => pcalua.exe -a C:\ProgramData\TVWizard\uninstall.exe -c /kb=y /ic=1 <==== ATTENTION
Task: {2F10702D-10AF-4C25-9077-4182F9026E3D} - \Pricora 1.4-firefoxinstaller No Task File <==== ATTENTION
Task: {2FEBC99E-3784-4259-9A32-88DE7AAF04DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-17] (Google Inc.)
Task: {30AD7086-EFAC-48B5-A89F-60702BC40126} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2335475428-801239694-1111027699-1005
Task: {3C720901-150A-4493-9DB4-57C91FF85304} - \Pricora 1.4-chromeinstaller No Task File <==== ATTENTION
Task: {4ED1A89F-7027-47DA-85F9-998E902924A5} - \Feven 1.8-chromeinstaller No Task File <==== ATTENTION
Task: {5C3C74B9-9017-4B30-80B8-E11251B2BDA5} - \Feven 1.8-firefoxinstaller No Task File <==== ATTENTION
Task: {5D4892B5-8ACE-4863-ADB4-A9C2F7D61A8C} - \Plus-HD-1.3-updater No Task File <==== ATTENTION
Task: {72A2A6DC-A01C-4750-A9FF-B82E6382BA98} - \Feven 1.8-updater No Task File <==== ATTENTION
Task: {74AAAEA6-6A89-432C-B251-6C55B95CEABC} - \AdobeFlashPlayerUpdate 2 No Task File <==== ATTENTION
Task: {790922FB-B2B8-41DD-A0A0-2D19C884BCA6} - \Plus-HD-1.3-chromeinstaller No Task File <==== ATTENTION
Task: {7C474548-B6D2-4700-B993-1165BB4CC6A5} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005Core => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-22] (Facebook Inc.)
Task: {85612AC8-1E4F-49F6-BDE4-6571FDEFEDAF} - \Feven 1.8-enabler No Task File <==== ATTENTION
Task: {92CACED8-850B-4E5F-9BB7-2B9B1D12D01A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-04-17] (Google Inc.)
Task: {99E5B873-0CAF-4595-9923-E0B9C50315E7} - \Plus-HD-3.5-firefoxinstaller No Task File <==== ATTENTION
Task: {9AC64B5A-81ED-4B06-98D2-89EF2FD481A2} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005UA => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-22] (Facebook Inc.)
Task: {A6F25EEC-1C53-4E96-9595-B8277F5AAFDE} - \Pricora 1.4-enabler No Task File <==== ATTENTION
Task: {A890BAFB-3EE5-4F11-AC7C-79FAEC3F92BD} - \Plus-HD-3.5-chromeinstaller No Task File <==== ATTENTION
Task: {AE2FA1BE-A96F-46DC-A240-9225F7D97087} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {BDC2E378-6697-4DAA-A431-534A45E78B08} - System32\Tasks\Updater12765.exe => C:\Users\stéphanie\AppData\Local\Updater12765\Updater12765.exe <==== ATTENTION
Task: {C01DF97B-11FA-4786-B79F-1E72205A33CE} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {C0F66F51-C08A-4D7C-AEA8-96BC802A7CB3} - System32\Tasks\{5C0C790B-9761-41AD-9D37-EC77C86A3589} => pcalua.exe -a C:\Users\Aurélie\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=tugs <==== ATTENTION
Task: {C9021C19-E8D9-4F0C-BAA3-DA439EE81066} - \Feven 1.8-codedownloader No Task File <==== ATTENTION
Task: {CA62BF71-E10B-4EDF-9DA3-8112C4BA564F} - System32\Tasks\{6F5E9AC9-AAA4-4544-8B88-32E0A25698E1} => pcalua.exe -a "C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\Silverlight.Configuration.exe" -c -uninstallApp 1609107295.portal.qtrax.com
Task: {CC6DA866-05D2-4EF8-A64B-1AEA0BAF128F} - \Plus-HD-1.3-enabler No Task File <==== ATTENTION
Task: {CCBB59CF-A938-4E76-A4C0-3E85E288F80F} - System32\Tasks\Lyrics Plus Update => C:\Program Files (x86)\LyricsPlus\LyricsPls.exe <==== ATTENTION
Task: {CFDBB29A-512D-4832-ACE9-44C861D21F59} - \Plus-HD-1.7-chromeinstaller No Task File <==== ATTENTION
Task: {D138BF1E-CBA6-487C-BD83-ED6D0CF8FDBD} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07] (Adobe Systems Incorporated)
Task: {DA5A8C08-D7C1-40BA-A68C-B72BA768C1E4} - \Pricora 1.4-codedownloader No Task File <==== ATTENTION
Task: {F2B9B404-C63A-4116-AD98-4A91B360EEC7} - \AdobeFlashPlayerUpdate No Task File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AllmyappsUpdateTask.job => C:\Users\Aurélie\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe
Task: C:\WINDOWS\Tasks\CJJ.job => C:\Users\Aurýÿlie\AppData\Roaming\CJJ.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005Core.job => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-2335475428-801239694-1111027699-1005UA.job => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Lyrics Plus Update.job => C:\Program Files (x86)\LyricsPlus\LyricsPls.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\YNEKPLL.job => C:\Users\Aurýÿlie\AppData\Roaming\YNEKPLL.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) ==============

2014-02-18 15:14 - 2012-03-28 13:49 - 00140456 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2013-09-10 23:01 - 2013-09-10 23:01 - 03233806 _____ () C:\Program Files (x86)\Tor\tor.exe
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-12-22 16:58 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-02-07 01:56 - 2015-03-04 03:15 - 00504112 _____ () C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe
2013-09-29 21:15 - 2014-12-16 16:46 - 00374840 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2012-12-16 08:57 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-09-11 15:01 - 2012-09-11 15:01 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2013-12-10 08:13 - 2013-12-10 08:13 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2013-04-17 12:26 - 2014-12-16 16:46 - 36966968 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libcef.dll
2014-07-18 00:20 - 2014-12-16 16:46 - 00867896 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2013-09-29 21:15 - 2014-12-16 16:46 - 00886840 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-29 21:15 - 2014-12-16 16:46 - 00108600 _____ () C:\Users\Aurélie\AppData\Roaming\Spotify\Data\libegl.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00050640 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\chrome_elf.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00716240 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\libglesv2.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\libegl.dll
2014-01-07 00:32 - 2013-12-19 05:54 - 04060112 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\pdf.dll
2014-01-07 00:32 - 2013-12-19 05:54 - 00394192 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\ppGoogleNaClPluginChrome.dll
2014-01-07 00:32 - 2013-12-19 05:53 - 01647056 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.5\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:4ABA35EE
AlternateDataStreams: C:\Users\Aurélie\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\stéphanie\Downloads\No Subject.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Aurélie\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\papier peint de la galerie de photos.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"

==================== Accounts: =============================

Administrateur (S-1-5-21-2335475428-801239694-1111027699-500 - Administrator - Disabled)
Aurélie (S-1-5-21-2335475428-801239694-1111027699-1005 - Administrator - Enabled) => C:\Users\Aurélie
HomeGroupUser$ (S-1-5-21-2335475428-801239694-1111027699-1022 - Limited - Enabled)
Invité (S-1-5-21-2335475428-801239694-1111027699-501 - Limited - Enabled) => C:\Users\Invité
UpdatusUser (S-1-5-21-2335475428-801239694-1111027699-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/04/2015 08:55:52 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (03/04/2015 02:53:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 5d0

Heure de début : 01d0561b2b6d925e

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rapport : 2e81efba-c211-11e4-bf0a-08606e102984

Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

Error: (03/04/2015 00:22:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l'appel OnIdentity() dans l'objet System Writer.


Details:
AddWin32ServiceFiles: Unable to back up image of service DiiFjT since QueryServiceConfig API failed

System Error:
Le fichier spécifié est introuvable.
.

Error: (03/04/2015 00:08:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1278

Heure de début : 01d0560636d48f72

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rapport : 2b385b7d-c1fa-11e4-bf0a-08606e102984

Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 07:50:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme wwahost.exe version 6.3.9600.17031 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 5e0

Heure de début : 01d055c5b6575b34

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\WINDOWS\syswow64\wwahost.exe

ID de rapport : 316cb573-c1d6-11e4-bf0a-08606e102984

Nom complet du package défaillant : Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5c

ID de l'application relative au package défaillant : App

Error: (03/03/2015 07:50:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1968

Heure de début : 01d0559f5ce397ce

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rapport : 2e94fde3-c1d6-11e4-bf0a-08606e102984

Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 10:54:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme wwahost.exe version 6.3.9600.17031 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : e10

Heure de début : 01d0559740109fcc

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\WINDOWS\syswow64\wwahost.exe

ID de rapport : 35f85d28-c18b-11e4-bf0a-08606e102984

Nom complet du package défaillant : Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5c

ID de l'application relative au package défaillant : App

Error: (03/03/2015 07:20:16 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 1638

Heure de début : 01d05578aeedd73a

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rapport : 588b1b5d-c16d-11e4-bf0a-08606e102984

Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 06:48:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LiveComm.exe version 17.5.9600.20689 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 18fc

Heure de début : 01d05574d84a369e

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

ID de rapport : e701f4af-c168-11e4-bf0a-08606e102984

Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 06:48:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme wwahost.exe version 6.3.9600.17031 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.

ID de processus : 11fc

Heure de début : 01d05574f2dea977

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\WINDOWS\syswow64\wwahost.exe

ID de rapport : e7275d66-c168-11e4-bf0a-08606e102984

Nom complet du package défaillant : Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5c

ID de l'application relative au package défaillant : App


System errors:
=============
Error: (03/04/2015 00:23:47 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service DiiFjT s'est terminé de façon inattendue pour la 1ème fois.

Error: (03/02/2015 10:23:41 PM) (Source: DCOM) (EventID: 10010) (User: PC-STÉPHANIE)
Description: App.AppX54xz6wnkhmw763c2y8tb018n7d71dtx7.wwa

Error: (03/02/2015 10:02:18 PM) (Source: Schannel) (EventID: 4116) (User: PC-STÉPHANIE)
Description: Le certificat reçu à partir du serveur distant ne contient par le nom attendu. Il n'est par conséquent pas possible de déterminer si nous sommes connecté au serveur correct. Le nom de serveur attendu est client.wns.windows.com. La demande de connexion SSL a échoué. Les données jointes contiennent le certificat du serveur.

Error: (03/02/2015 10:02:18 PM) (Source: Schannel) (EventID: 4120) (User: PC-STÉPHANIE)
Description: Une alerte irrécupérable a été générée et envoyée au point de terminaison distant. Ceci peut entraîner l'arrêt de la connexion. Le code d'erreur irrécupérable défini par le protocole TLS est 43. L'état d'erreur de Windows SChannel est 552.

Error: (03/02/2015 09:00:34 PM) (Source: DCOM) (EventID: 10010) (User: PC-STÉPHANIE)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/02/2015 09:00:32 PM) (Source: DCOM) (EventID: 10010) (User: PC-STÉPHANIE)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/02/2015 08:59:29 PM) (Source: Schannel) (EventID: 4116) (User: PC-STÉPHANIE)
Description: Le certificat reçu à partir du serveur distant ne contient par le nom attendu. Il n'est par conséquent pas possible de déterminer si nous sommes connecté au serveur correct. Le nom de serveur attendu est client.wns.windows.com. La demande de connexion SSL a échoué. Les données jointes contiennent le certificat du serveur.

Error: (03/02/2015 08:59:29 PM) (Source: Schannel) (EventID: 4120) (User: PC-STÉPHANIE)
Description: Une alerte irrécupérable a été générée et envoyée au point de terminaison distant. Ceci peut entraîner l'arrêt de la connexion. Le code d'erreur irrécupérable défini par le protocole TLS est 43. L'état d'erreur de Windows SChannel est 552.

Error: (03/02/2015 07:55:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service NVIDIA Update Service Daemon n'a pas pu démarrer en raison de l'erreur :
%%1069

Error: (03/02/2015 07:55:32 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Le service nvUpdatusService n'a pas pu ouvrir de session en tant que .\UpdatusUser avec le mot de passe actuellement configuré en raison de l'erreur suivante :
%%1326

Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC).


Microsoft Office Sessions:
=========================
Error: (03/04/2015 08:55:52 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (03/04/2015 02:53:04 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.206895d001d0561b2b6d925e4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe2e81efba-c211-11e4-bf0a-08606e102984microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (03/04/2015 00:22:20 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service DiiFjT since QueryServiceConfig API failed

System Error:
Le fichier spécifié est introuvable.

Error: (03/04/2015 00:08:19 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689127801d0560636d48f724294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe2b385b7d-c1fa-11e4-bf0a-08606e102984microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 07:50:56 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.170315e001d055c5b6575b344294967295C:\WINDOWS\syswow64\wwahost.exe316cb573-c1d6-11e4-bf0a-08606e102984Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5cApp

Error: (03/03/2015 07:50:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689196801d0559f5ce397ce4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe2e94fde3-c1d6-11e4-bf0a-08606e102984microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 10:54:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.17031e1001d0559740109fcc4294967295C:\WINDOWS\syswow64\wwahost.exe35f85d28-c18b-11e4-bf0a-08606e102984Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5cApp

Error: (03/03/2015 07:20:16 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20689163801d05578aeedd73a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe588b1b5d-c16d-11e4-bf0a-08606e102984microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 06:48:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.2068918fc01d05574d84a369e4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exee701f4af-c168-11e4-bf0a-08606e102984microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (03/03/2015 06:48:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.1703111fc01d05574f2dea9774294967295C:\WINDOWS\syswow64\wwahost.exee7275d66-c168-11e4-bf0a-08606e102984Microsoft.SkypeApp_3.1.0.1007_x86__kzf8qxf38zg5cApp


CodeIntegrity Errors:
===================================
Date: 2014-08-02 13:53:04.013
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:03.772
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:03.523
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:03.267
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:03.029
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:02.724
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:02.388
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:02.089
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:01.844
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-08-02 13:53:01.665
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01
Ran by Aurélie (administrator) on PC-STÉPHANIE on 04-03-2015 21:08:00
Running from C:\Users\Aurélie\Downloads
Loaded Profiles: Aurélie (Available profiles: UpdatusUser & Aurélie & Invité)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Tor\tor.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Spotify Ltd) C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Aurélie\AppData\Roaming\Spotify\spotify.exe
() C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Research In Motion Limited) C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\AsusWSPanel.exe [3417984 2012-08-28] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [267792 2013-01-17] (Research In Motion Limited)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [127792 2015-02-12] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Spotify Web Helper] => C:\Users\Aurélie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-16] (Spotify Ltd)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Allmyapps] => "C:\Users\Aurélie\AppData\Roaming\Allmyapps\Allmyapps.exe" startup
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Allmyapps Update] => "C:\Users\Aurélie\AppData\Roaming\Allmyapps\AllmyappsUpdater.exe" check startup
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Facebook Update] => C:\Users\Aurélie\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-07-22] (Facebook Inc.)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [Spotify] => C:\Users\Aurélie\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-16] (Spotify Ltd)
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Run: [cacaoweb] => C:\Users\Aurélie\AppData\Roaming\cacaoweb\cacaoweb.exe [504112 2015-03-04] ()
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\MountPoints2: {61bd0281-6b21-11e3-824e-806e6f6e6963} - "E:\Autorun.exe"
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-12-10] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\Aurélie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop_01131122.lnk
ShortcutTarget: lollipop_01131122.lnk -> C:\Users\Aurélie\AppData\Local\Lollipop\lollipop_01131122.exe (No File)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.9.120\ASUSWSShellExt64.dll (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Aurélie\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-2335475428-801239694-1111027699-1005\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [S-1-5-21-2335475428-801239694-1111027699-1005] => http=127.0.0.1:55824;https=127.0.0.1:55824
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2335475428-801239694-1111027699-1005\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.yahoo.com?fr=hp-avast&type=avastbcl
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO-x32: No Name -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: No Name -> {5385bc42-9c06-4f54-a356-f0d4138b478d} -> No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKU\S-1-5-21-2335475428-801239694-1111027699-1005 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKU\S-1-5-21-2335475428-801239694-1111027699-1005: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Aurélie\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Extension: Widget context - C:\Users\Aurélie\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi [2014-01-13]
FF Extension: Avira Browser Safety - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\abs@avira.com [2015-03-02]
FF Extension: cacaoweb - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\cacaoweb@cacaoweb.org [2015-02-07]
FF Extension: Firefox Update Hotfix - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox-hotfix@mozilla.org [2013-11-05]
FF Extension: BuzzSearch - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox@mybuzzsearch.com [2013-11-20]
FF Extension: Camfrog Web Plugin for Mozilla Firefox - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\NPCamfrogWeb@camfrogweb.com [2013-07-23]
FF Extension: Snap.Do - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\{c0c7f968-c74a-a833-a9bf-7cc3d594759c} [2014-01-27]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\adblockpopups@jessehakanen.net.xpi [2013-11-15]
FF Extension: Firefox Update Hotfix - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox-hotfix@mozilla.org.xpi [2013-11-05]
FF Extension: SnapDo - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\firefox@splashurl.com.xpi [2014-01-29]
FF Extension: Adblock Plus - C:\Users\Aurélie\AppData\Roaming\Mozilla\Firefox\Profiles\aqndae1a.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-11-17]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2014-02-12]
FF Extension: FrameFox - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{D6F4FFAF-E3C9-4f3d-AD5B-F78CD969D7BF} [2014-01-05]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2013-04-29]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF HKU\S-1-5-21-2335475428-801239694-1111027699-1005\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [Not Found]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-01-15]
CHR Extension: (AdBlock) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-26]
CHR Extension: (Google Wallet) - C:\Users\Aurélie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jofdlbdmefjogcipddjnblinigmpagoj] - C:\Program Files (x86)\Lyrmix\Chrome.crx [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [184056 2015-02-12] (Avira Operations GmbH & Co. KG)
R3 Blackberry Device Manager; C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [577536 2013-01-18] (Research In Motion Limited) [File not signed]
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [101888 2013-04-29] (Freemake) [File not signed]
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 tor; C:\Program Files (x86)\Tor\tor.exe [3233806 2013-09-10] () [File not signed] <==== ATTENTION
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 androidusb; C:\Windows\System32\Drivers\wsadb.sys [40232 2013-11-10] (Google Inc)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131608 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-11-24] (Avira Operations GmbH & Co. KG)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [78336 2013-01-03] (Research In Motion Limited)
R3 RimVSerPort; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S1 ElRawDisk; \??\C:\Windows\system32\drivers\rsdrvx64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-04 21:08 - 2015-03-04 21:09 - 00025522 _____ () C:\Users\Aurélie\Downloads\FRST.txt
2015-03-04 21:07 - 2015-03-04 21:08 - 00000000 ____D () C:\FRST
2015-03-04 21:07 - 2015-03-04 21:07 - 02092544 _____ (Farbar) C:\Users\Aurélie\Downloads\FRST64.exe
2015-03-04 00:06 - 2015-03-04 00:00 - 00043064 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2015-03-02 17:41 - 2015-03-02 17:41 - 00000000 ____D () C:\Users\Aurélie\AppData\Roaming\Avira
2015-03-02 17:37 - 2014-11-24 10:23 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2015-03-02 17:37 - 2014-11-24 10:23 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2015-03-02 17:37 - 2014-11-24 10:23 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2015-02-28 20:23 - 2015-02-28 20:23 - 00174029 _____ () C:\Users\Aurélie\Downloads\Page titre.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00089349 _____ () C:\Users\Aurélie\Downloads\pzge 2.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00043019 _____ () C:\Users\Aurélie\Downloads\Page 4 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00032434 _____ () C:\Users\Aurélie\Downloads\Page 3.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00025000 _____ () C:\Users\Aurélie\Downloads\Page2.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00024725 _____ () C:\Users\Aurélie\Downloads\Page 3 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00014348 _____ () C:\Users\Aurélie\Downloads\Page 1 (1).odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00011886 _____ () C:\Users\Aurélie\Downloads\page 4.odt
2015-02-28 20:23 - 2015-02-28 20:23 - 00011851 _____ () C:\Users\Aurélie\Downloads\Page 5.odt
2015-02-28 20:22 - 2015-02-28 20:22 - 00012249 _____ () C:\Users\Aurélie\Downloads\Page 1.odt
2015-02-28 00:24 - 2015-02-28 00:24 - 00001227 _____ () C:\Users\Public\Desktop\Avira.lnk
2015-02-28 00:22 - 2015-03-02 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-02-28 00:22 - 2015-03-02 17:37 - 00000000 ____D () C:\ProgramData\Avira
2015-02-28 00:22 - 2015-03-02 17:37 - 00000000 ____D () C:\Program Files (x86)\Avira
2015-02-28 00:22 - 2015-02-28 00:22 - 04582672 _____ (Avira Operations & Co. KG) C:\Users\Aurélie\Downloads\avira_fr_av_5876209197__ws.exe
2015-02-28 00:22 - 2015-02-28 00:22 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-28 00:14 - 2015-02-28 00:14 - 05040384 _____ (AVAST Software) C:\Users\Aurélie\Downloads\avastclear.exe
2015-02-27 07:25 - 2015-02-27 07:25 - 00000000 ____D () C:\Users\Aurélie\Downloads\[www.Cpasbien.pw] Pretty.Little.Liars.S05E14.FASTSUB.VOSTFR.HDTV.XviD-ADDiCTiON
2015-02-25 21:54 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-02-25 21:54 - 2014-12-13 22:28 - 00513488 _____ () C:\WINDOWS\system32\locale.nls
2015-02-25 21:54 - 2014-10-29 02:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-02-25 21:54 - 2014-10-29 02:27 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2015-02-25 21:54 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-02-25 21:54 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2015-02-17 16:39 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-02-17 16:39 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-02-14 00:24 - 2015-02-14 00:24 - 00000000 ____D () C:\ProgramData\Browser
2015-02-11 21:02 - 2015-02-04 00:38 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-02-11 21:02 - 2015-02-04 00:08 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-02-11 21:02 - 2015-02-04 00:08 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 00894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-02-11 21:02 - 2015-02-03 00:11 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-02-11 21:01 - 2015-01-19 19:42 - 01487976 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-02-11 21:01 - 2014-12-19 09:57 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-02-11 21:01 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-02-11 21:01 - 2014-12-09 00:12 - 00391526 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-02-11 14:49 - 2015-01-15 23:43 - 00563504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-02-11 14:49 - 2015-01-15 23:43 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-02-11 14:49 - 2015-01-14 05:22 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-02-11 14:49 - 2015-01-14 04:53 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-02-11 14:49 - 2015-01-13 23:11 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-02-11 14:49 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-02-11 14:49 - 2015-01-10 10:10 - 07472960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-02-11 14:49 - 2015-01-10 10:10 - 01733440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-02-11 14:49 - 2015-01-10 09:28 - 01498360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-02-11 14:49 - 2015-01-10 08:00 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-02-11 14:49 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-02-11 14:49 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-02-11 14:49 - 2014-12-09 02:56 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-02-11 14:49 - 2014-10-29 03:51 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-02-11 14:49 - 2014-10-29 03:50 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-02-11 14:49 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-02-11 14:49 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-02-11 14:49 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-02-11 14:49 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-02-11
0
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804 > aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 08:32
Non ce n'est pas ça

A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

? Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 14:37
https://www.cjoint.com/c/ECfoVSHuhcV
https://www.cjoint.com/c/ECfoWVWC3ZI

Merci
0
Réponse 4 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
5 mars 2015 à 17:52
Tu as dû installer des logiciels potentiellement indésirables


Pour éviter ce genre de problème :

- Ne télécharge aucun programme proposé dans des publicités ou sur des sites suspects. A noter que certains sites connus comme Softronic, Tuto4PC, etc modifient parfois les programmes proposés au téléchargement pour y ajouter des logiciels publicitaires ==> Préfère toujours le téléchargement directement sur le site de l'éditeur.


- Au cours de l'installation d'un programme gratuit, lis bien attentivement et décoche tous les programmes additionnels qui sont proposés, en particulier les barres d'outils.

Pour ton information lis ces dossier sur les Programmes Potentiellement Indésirables et Les Barres d'Outils ce n'est pas obligatoires

Télécharge cet outil simple d'utilisation

https://toolslib.net/downloads/viewdownload/1-adwcleaner/


Si problème avec le 1er lien prends le ici https://www.commentcamarche.net/telecharger/securite/2759-adwcleaner/


Lance le (Sous vista/seven/8 clic droit dessus,et sur exécuter en tant qu'administrateur)si tu es sous xp double cliques dessus


Cliques sur scanner


Poste le rapport de recherche C:\Adwcleaner[R]


Note le rapport de recherche est également sauvegardé sous C:\Adwcleaner[R1]


Héberge le rapport sur cjoint


Pour t'aider https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 20:46
https://www.cjoint.com/c/ECfu4NYl9Sw
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
5 mars 2015 à 20:49
Bien Aurélie

Fais nettoyer
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 21:02
Ok merci, c'est fait.
0
Réponse 6 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
5 mars 2015 à 21:24
ça doit aller mieux?
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 21:42
Oui il est bien plus rapide!
Merci beaucoup, bonne soirée
0
Réponse 7 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
5 mars 2015 à 22:39
Ce n'est pas fini pour autant

Refais FRST
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 22:54
https://www.cjoint.com/c/ECfxeTKUXWG
0
Réponse 8 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
5 mars 2015 à 22:59
Connais tu?

Allmyapps
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
5 mars 2015 à 23:02
?
0
Réponse 9 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
6 mars 2015 à 09:16
Un programme appelé allmyapps
0
bazfile Messages postés 53664 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 23 avril 2024 18 469
6 mars 2015 à 11:03
https://korben.info/nouvelle-version-de-allmyapps-en-avant-premiere.html
0
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804 > bazfile Messages postés 53664 Date d'inscription samedi 29 décembre 2012 Statut Modérateur, Contributeur sécurité Dernière intervention 23 avril 2024
6 mars 2015 à 13:38
Merci :)
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
6 mars 2015 à 20:21
Et qu'est-ce que je dois faire avec allmyapps?
0
Réponse 10 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
6 mars 2015 à 20:22
Le garder :)
Supprimes tous les rapports de FRST et refais avec additionnal
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
6 mars 2015 à 20:50
Avec allmyapps que je les supprime?
0
Réponse 11 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
6 mars 2015 à 20:57
Non tu peux le garder c'est un utilitaire
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
6 mars 2015 à 21:15
D'accord. Pour supprimer FRST je sais pas comment procéder
0
aureliemls Messages postés 15 Date d'inscription mercredi 4 mars 2015 Statut Membre Dernière intervention 12 décembre 2015
6 mars 2015 à 21:32
Dans le dossier file:///C:/FRST/Logs/ ?
0
Réponse 12 / 12
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
6 mars 2015 à 21:16
Tu supprimes juste les rapports (clic droit sur un des rapports puis supprimer)
0

Discussions similaires

Où est la touche SHIFT sur mon clavier d'ordi ?
joe! -
fernando-_ytb -

18 réponses