Extension CouponGiant impossible à enlever
Fermé
koverodd
-
15 juil. 2015 à 05:40
koverodd Messages postés 4 Date d'inscription mercredi 15 juillet 2015 Statut Membre Dernière intervention 16 juillet 2015 - 16 juil. 2015 à 00:10
koverodd Messages postés 4 Date d'inscription mercredi 15 juillet 2015 Statut Membre Dernière intervention 16 juillet 2015 - 16 juil. 2015 à 00:10
A voir également:
- Extension CouponGiant impossible à enlever
- Changer extension fichier - Guide
- Enlever bing - Guide
- Comment enlever une page sur word - Guide
- Extension pdf word 2007 - Télécharger - Bureautique
- Extension odt - Guide
3 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
15 juil. 2015 à 08:09
15 juil. 2015 à 08:09
Salut,
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Commence par ceci :
Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis :
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Commence par ceci :
Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis :
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
- FRST.txt
- Shortcut.txt
- Additionnal.txt
Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
koverodd
Messages postés
4
Date d'inscription
mercredi 15 juillet 2015
Statut
Membre
Dernière intervention
16 juillet 2015
15 juil. 2015 à 21:37
15 juil. 2015 à 21:37
J'ai aussi remarqué que je pouvais "Arrêter le processus" de l'extension: CouponGiant dans le gestionnaire des tâches, mais ça ne fonctionne pas vraiment...
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
Modifié par Malekal_morte- le 15/07/2015 à 22:14
Modifié par Malekal_morte- le 15/07/2015 à 22:14
Les rapports FRST sont à donner via pjjoint, lire les instructions.
Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
koverodd
Messages postés
4
Date d'inscription
mercredi 15 juillet 2015
Statut
Membre
Dernière intervention
16 juillet 2015
16 juil. 2015 à 00:10
16 juil. 2015 à 00:10
15 juil. 2015 à 18:51
# AdwCleaner v4.208 - Rapport créé le 15/07/2015 à 05:22:53
# Mis à jour le 09/07/2015 par Xplode
# Base de données : 2015-07-09.2 [Locale]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : Véronique - VÉRONIQUE
# Exécuté depuis : C:\Users\Véronique\Desktop\Véronique\Logiciels\AdwCleaner-4.208.exe
# Option : Nettoyer
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyServer] - hxxp=127.0.0.1:9880
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
-\\ Internet Explorer v11.0.9600.17840
-\\ Google Chrome v43.0.2357.134
AdwCleaner[R0].txt - [39410 octets] - [21/04/2015 13:39:32]
AdwCleaner[R1].txt - [30866 octets] - [27/04/2015 15:32:02]
AdwCleaner[R2].txt - [11060 octets] - [12/07/2015 14:48:31]
AdwCleaner[R3].txt - [2020 octets] - [14/07/2015 09:54:26]
AdwCleaner[R4].txt - [1829 octets] - [15/07/2015 05:11:19]
AdwCleaner[S0].txt - [11887 octets] - [21/04/2015 13:42:02]
AdwCleaner[S1].txt - [6087 octets] - [27/04/2015 15:34:55]
AdwCleaner[S2].txt - [10306 octets] - [12/07/2015 15:00:25]
AdwCleaner[S3].txt - [1876 octets] - [14/07/2015 10:09:41]
AdwCleaner[S4].txt - [1540 octets] - [15/07/2015 05:22:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1600 octets] ##########
FRST.txt
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by Véronique (administrator) on VÉRONIQUE on 15-07-2015 12:44:51
Running from C:\Users\Véronique\Downloads
Loaded Profiles: Véronique (Available Profiles: Véronique)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FAService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FACSMon.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe
() C:\Program Files (x86)\Awgivitole\Awgivitole.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\bzq.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Windows\ghs.exe
() C:\Program Files (x86)\Glamorous Mission\Glamorous Mission.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Irate Read\Irate Read.exe
() C:\Windows\mghs.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Mentor Graphics Corporation) C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\dispatcher.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
() C:\Program Files\TrueColor\TrueColorALS.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FAsenmon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files (x86)\Awgivitole\Awgivitole.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Entertainment Experience) C:\Program Files\TrueColor\TrueColorUI.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Dropbox, Inc.) C:\Users\Véronique\AppData\Local\Dropbox\Update\DropboxUpdate.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe
(Dropbox, Inc.) C:\Users\Véronique\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe
(Sensible Vision ) C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayAlert.exe
() C:\Program Files (x86)\Sensible Vision\Fast Access\FAAppMonOT.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Autodesk Inc.) C:\Users\Véronique\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.26.exe
(Microsoft Corporation) C:\b991ed2baecb28793e87\mrtstub.exe
(Microsoft Corporation) C:\Windows\System32\MRT.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\SLDWORKS.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\sldProcMon.exe
(Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\swVBAServer\swvbaserver.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\uaclauncher.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7506648 2013-12-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374424 2014-01-09] (Realtek Semiconductor)
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5789512 2014-01-15] (Dell Inc.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-31] (Intel Corporation)
HKLM\...\Run: [TrueColor UI] => C:\Program Files\TrueColor\TrueColorUI.exe [18785776 2014-04-30] (Entertainment Experience)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2015-04-20] (Adobe Systems Incorporated)
HKLM\...\Run: [shopperz] => C:\Program Files\shopperz\wrex.exe
HKLM\...\Run: [shopperz64] => C:\Program Files\shopperz\wrex64.exe
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-06-29] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-01-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-04] (Autodesk Inc.)
HKLM-x32\...\Run: [FAStartup] => [X]
HKLM-x32\...\Run: [FATrayAlert] => C:\Program Files (x86)\Sensible Vision\Fast Access\FATrayMon.exe [95536 2014-10-14] (Sensible Vision )
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [gmsd_ca_415] => [X]
HKLM-x32\...\Run: [gmsd_ca_433] => [X]
HKLM-x32\...\Run: [gmsd_ca_452] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\FastAccess: C:\Program Files (x86)\Sensible Vision\Fast Access\FALogNot.dll [2014-10-14] (Sensible Vision )
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Run: [Akamai NetSession Interface] => "C:\Users\Véronique\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [479744 2014-10-28] (Microsoft Corporation)
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Run: [Dropbox Update] => C:\Users\Véronique\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-22] (Dropbox, Inc.)
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Policies\Explorer: []
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [788480 2014-10-28] (Microsoft Corporation)
AppInit_DLLs-x32: c:\programdata\lolykey\lolykey32.dll => "c:\programdata\lolykey\lolykey32.dll" File not found
AppInit_DLLs-x32: c:\progra~3\{0fede~1\1170~1.1\tice.dll => "c:\progra~3\{0fede~1\1170~1.1\tice.dll" File not found
Lsa: [Notification Packages] scecli FAPassSync
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Lancement rapide de SolidWorks 2014.lnk [2015-04-17]
ShortcutTarget: Lancement rapide de SolidWorks 2014.lnk -> C:\Windows\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
Startup: C:\Users\Véronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-04-22]
ShortcutTarget: Dropbox.lnk -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBRShellOverlayBackupFile] -> {831CEBDD-6BAF-4432-BE76-9E0989C14AEF} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBRShellOverlayModifiedBackupFile] -> {275E4FD7-21EF-45CF-A836-832E5D2CC1B3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-06-26] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt.26.dll [2015-06-26] (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyEnable: [S-1-5-21-397266815-3692931734-3319261158-1001] => Internet Explorer proxy is enabled
ProxyServer: [S-1-5-21-397266815-3692931734-3319261158-1001] => http=127.0.0.1:9880
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?pc=MSE1
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?pc=MSE1
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=dell13.msn.com&ocid=DELLDHP&pc=MDDCJS
HKU\S-1-5-21-397266815-3692931734-3319261158-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = https://www.msn.com/fr-fr/?pc=mssh&form=msshhp&ocid=onepro&Mkt=fr-CA&Src=WD8&Tid=000328B0&OHP=about%3ablank&OSP=http%3a%2f%2fwww.bing.com%2fsearch%3fq%3d%7bsearchTerms%7d%26src%3dIE-SearchBox%26FORM%3dIESR02
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-397266815-3692931734-3319261158-1001 -> {F044F0D1-8665-4F86-A0F8-13B768F980EA} URL =
BHO: Face recognition web login for FastAccess -> {DA5BCE70-D057-4D63-943D-5F3927EC59F1} -> C:\Program Files (x86)\Sensible Vision\Fast Access\x64\FAIESSO.dll [2014-10-14] (Sensible Vision )
BHO-x32: Face recognition web login for FastAccess -> {DA5BCE70-D057-4D63-943D-5F3927EC59F1} -> C:\Program Files (x86)\Sensible Vision\Fast Access\FAIESSO.dll [2014-10-14] (Sensible Vision )
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1DB82423-E5A9-4654-89DB-30C2C386BD26}: [DhcpNameServer] 192.168.100.1
Tcpip\..\Interfaces\{314802C9-CBEA-40F5-B052-1CFC10100604}: [DhcpNameServer] 192.168.0.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2015-04-20] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-18] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-18] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @sensiblevision.com/FastAccess,version=4.1.110 -> C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso\nprt.dll [2014-05-23] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox
FF HKLM-x32\...\Firefox\Extensions: [fassoxpcom@sensiblevision.com] - C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso
FF Extension: FastAccess Web Login - C:\Program Files (x86)\Sensible Vision\Fast Access\xpcom_fasso [2015-04-17]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2015-04-20]
FF HKLM-x32\...\Firefox\Extensions: [{5081D2D4-1637-404c-B74F-50526718257D}] - C:\Program Files\shopperz\Firefox
Chrome:
=======
CHR Profile: C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (No Name) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-15]
CHR Extension: (No Name) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-15]
CHR Extension: (Adblock Plus) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-15]
CHR Extension: (No Name) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-15]
CHR Extension: (No Name) - C:\Users\Véronique\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-07-15]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-04] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.)
R2 Awgivitole; C:\Program Files (x86)\Awgivitole\Awgivitole.exe [281088 2015-06-16] () [File not signed] <==== ATTENTION
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-28] (Microsoft Corporation)
R2 bzq; c:\windows\bzq.exe [531456 2015-04-21] () [File not signed]
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2573520 2015-05-22] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201936 2015-05-22] (Dell Inc.)
S3 DellProdRegManager; C:\Program Files (x86)\Dell Product Registration\regmgrsvc.exe [278568 2014-10-31] (Aviata, Inc.)
R2 ghs; c:\windows\ghs.exe [417792 2015-07-09] () [File not signed]
R2 Glamorous Mission; C:\Program Files (x86)\Glamorous Mission\Glamorous Mission.exe [8016787 2015-07-08] () [File not signed] <==== ATTENTION
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-31] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Irate Read; C:\Program Files (x86)\Irate Read\Irate Read.exe [8016449 2015-07-09] () [File not signed] <==== ATTENTION
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-18] (Intel Corporation)
R2 mghs; c:\windows\mghs.exe [408576 2015-07-09] () [File not signed]
S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [File not signed]
R2 My Dell Client Framework; C:\Program Files (x86)\Dell\My Dell Client Framework\Dell.ClientFramework.exe [168960 2014-01-10] (Dell Inc.) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-08] ()
R2 RemoteSolverDispatcher; C:\Program Files\SolidWorks Corp\SolidWorks Flow Simulation\binCFW\remotesolverdispatcherservice.exe [235656 2014-01-11] (Mentor Graphics Corporation) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe [2005392 2015-04-17] (SoftThinks SAS)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2015-04-17] (SolidWorks) [File not signed]
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [20648 2015-06-11] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TrueColorALS; C:\Program Files\TrueColor\TrueColorALS.exe [89072 2014-04-30] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3674864 2014-01-08] (Intel® Corporation)
S2 jokidogy; C:\Users\Véronique\AppData\Roaming\4C4C4544-1429624402-4B10-8058-CAC04F4A3232\jnsq7639.tmp [X]
S2 qrsvc_1.10.0.13; "C:\Program Files (x86)\QuickRef_1.10.0.13\Service\qrsvc.exe" [X]
S2 qyjohehi; C:\Users\Véronique\AppData\Roaming\4C4C4544-1429624402-4B10-8058-CAC04F4A3232\nsp7938.tmp [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-08-19] (Microsoft Corporation)
R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [140600 2013-07-22] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1408824 2013-10-18] (Motorola Solutions, Inc.)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [23760 2015-02-26] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 facap; C:\Windows\system32\DRIVERS\facap.sys [37888 2012-09-03] (Windows (R) Win 7 DDK provider)
R1 gfilterdrv; C:\Windows\System32\drivers\gfilterdrv.sys [58168 2015-07-07] (Windows (R) Win 7 DDK provider)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-19] (Intel Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [100824 2013-12-18] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3610592 2014-02-06] (Intel Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [41200 2014-01-16] (Synaptics Incorporated)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
S3 PCDSRVC{3B54B31B-D06B6431-06020200}_0; \??\c:\program files\dell\supportassist\pcdsrvc_x64.pkms [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-15 12:44 - 2015-07-15 12:45 - 00026809 _____ C:\Users\Véronique\Downloads\FRST.txt
2015-07-15 12:44 - 2015-07-15 12:44 - 00000000 ____D C:\FRST
2015-07-15 11:02 - 2015-07-15 11:02 - 00000000 ____D C:\b991ed2baecb28793e87
2015-07-15 10:48 - 2015-05-01 19:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-07-15 10:47 - 2015-05-03 11:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-07-15 10:47 - 2015-05-03 10:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-07-15 06:00 - 2015-07-15 10:26 - 02133504 _____ (Farbar) C:\Users\Véronique\Downloads\FRST64.exe
2015-07-14 23:39 - 2015-07-14 23:48 - 05621780 _____ C:\Users\Véronique\Downloads\installation-ie8-xp-01NET.exe
2015-07-14 21:14 - 2015-07-14 21:14 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-13 17:55 - 2015-07-13 17:55 - 00577014 _____ C:\Users\Véronique\Desktop\Cloture trois modeles format AI.ai
2015-07-12 14:35 - 2015-07-12 14:36 - 00772016 _____ (Reimage®) C:\Users\Véronique\Downloads\ReimageRepair.exe
2015-07-10 05:52 - 2015-07-10 05:52 - 00000000 __SHD C:\Program Files (x86)\Awgivitole
2015-07-09 16:19 - 2015-07-09 16:21 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Opera Software
2015-07-09 16:19 - 2015-07-09 16:21 - 00000000 ____D C:\Users\Véronique\AppData\Local\Opera Software
2015-07-09 16:18 - 2015-07-09 16:18 - 01523760 _____ C:\Users\Véronique\Downloads\Adobe+Photoshop+CS+5+serial+Number+plus+Crack+Full+Download_10924_i30738023_il345.exe.zip
2015-07-09 16:17 - 2015-07-09 16:17 - 00631808 _____ C:\Windows\ghs.dat
2015-07-09 16:17 - 2015-07-09 16:17 - 00417792 _____ C:\Windows\ghs.exe
2015-07-09 16:17 - 2015-07-09 16:17 - 00408576 _____ C:\Windows\mghs.exe
2015-07-09 16:17 - 2015-07-07 11:06 - 00058168 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\gfilterdrv.sys
2015-07-09 16:16 - 2015-07-09 16:16 - 00000000 ____D C:\Program Files\13
2015-07-09 16:15 - 2015-07-09 16:15 - 00928387 _____ C:\Users\Véronique\Downloads\Universal_Keygen_Generator_2015.jse
2015-07-09 16:14 - 2015-07-09 16:14 - 00011776 _____ (Red Zion) C:\Users\Véronique\Downloads\KeyGen.exe
2015-07-09 14:47 - 2015-07-09 14:47 - 00000000 ____D C:\Program Files (x86)\Irate Read
2015-07-09 14:47 - 2015-07-08 17:52 - 00010752 _____ (UG North) C:\Windows\system32\Hibiki.dll
2015-07-08 17:53 - 2015-07-08 17:53 - 00000000 ____D C:\Program Files (x86)\Glamorous Mission
2015-07-06 19:53 - 2015-07-06 19:53 - 00000000 ____D C:\Users\Véronique\AppData\Local\Intel_Corporation
2015-07-04 15:26 - 2015-07-04 16:15 - 830385664 _____ C:\Users\Véronique\Downloads\ilot Col Quebecor R 4 Cam 25.avi
2015-07-03 21:10 - 2015-07-15 06:20 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-03 21:10 - 2015-07-15 05:24 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-03 21:10 - 2015-07-10 13:15 - 00004068 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-07-03 21:10 - 2015-07-10 13:15 - 00003832 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-07-03 21:09 - 2015-07-03 21:09 - 00931408 _____ (Google Inc.) C:\Users\Véronique\Downloads\ChromeSetup.exe
2015-07-01 14:51 - 2015-07-01 14:51 - 00004040 _____ C:\Windows\System32\Tasks\PCDoctorBackgroundMonitorTask
2015-07-01 14:51 - 2015-07-01 14:51 - 00003484 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2015-07-01 14:51 - 2015-07-01 14:51 - 00003228 _____ C:\Windows\System32\Tasks\SystemToolsDailyTest
2015-07-01 14:50 - 2015-07-01 14:50 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2015-07-01 14:50 - 2015-07-01 14:50 - 00000000 ____D C:\Program Files\Dell Support Center
2015-07-01 13:30 - 2015-07-01 13:30 - 00000382 _____ C:\Windows\Tasks\AppPorter.job
2015-07-01 12:43 - 2015-07-01 12:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-01 12:42 - 2015-07-01 12:43 - 00000000 ____D C:\Program Files\iTunes
2015-07-01 12:42 - 2015-07-01 12:42 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-07-01 09:56 - 2015-07-01 09:56 - 00000000 ____D C:\Users\Véronique\Autodesk
2015-07-01 08:16 - 2015-07-01 09:54 - 00000000 ____D C:\Users\Véronique\Documents\3dsMax
2015-06-30 21:21 - 2015-06-30 21:21 - 00337808 _____ (Autodesk Inc.) C:\Users\Véronique\Downloads\Autodesk_3ds_Max_2016_EFGJKS_Win_64bit_wi_en-US_Setup_webinstall.exe
2015-06-30 20:33 - 2015-06-30 20:33 - 00000000 ____D C:\Users\Véronique\Documents\AutoCAD Sheet Sets
2015-06-26 20:02 - 2015-07-06 22:46 - 00000000 ____D C:\Users\Véronique\Desktop\Mario Lehoux
2015-06-26 11:49 - 2015-06-26 11:49 - 00000000 __HDC C:\ProgramData\{8AF32939-989B-460A-8726-CA2C776032A1}
2015-06-25 15:17 - 2015-06-25 15:17 - 00000382 _____ C:\Windows\Tasks\GreensAndBeans.job
2015-06-22 22:40 - 2015-06-22 22:40 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-397266815-3692931734-3319261158-1001Core.job
2015-06-22 22:40 - 2015-06-22 22:40 - 00000000 ____D C:\Users\Véronique\AppData\Local\Dropbox
2015-06-22 22:40 - 2015-06-22 22:40 - 00000000 ____D C:\ProgramData\Dropbox
2015-06-22 11:21 - 2015-06-22 11:22 - 91373568 _____ C:\Users\Véronique\Downloads\autobus corrigé.indd
2015-06-17 18:03 - 2015-06-17 18:04 - 05285574 _____ C:\Users\Véronique\Downloads\autobus.idml
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-15 12:45 - 2014-08-19 09:34 - 01134836 _____ C:\Windows\WindowsUpdate.log
2015-07-15 12:44 - 2015-04-16 20:02 - 00003956 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{25123419-1A8C-4266-A508-5069E706D09E}
2015-07-15 12:41 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\system32\sru
2015-07-15 11:02 - 2015-04-19 22:32 - 00000000 ____D C:\Windows\system32\MRT
2015-07-15 11:02 - 2013-08-22 11:20 - 00000000 ____D C:\Windows\CbsTemp
2015-07-15 11:01 - 2015-04-17 17:14 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-07-15 11:00 - 2015-04-16 20:01 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-397266815-3692931734-3319261158-1001
2015-07-15 10:53 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\AppReadiness
2015-07-15 05:55 - 2014-08-19 10:11 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2015-07-15 05:25 - 2015-04-20 20:58 - 00000000 ____D C:\Users\Véronique\OneDrive
2015-07-15 05:25 - 2015-04-16 20:10 - 00000000 ___RD C:\Users\Véronique\Dropbox
2015-07-15 05:25 - 2015-04-16 20:09 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Dropbox
2015-07-15 05:24 - 2015-04-27 15:28 - 00000346 _____ C:\Windows\Tasks\YAHUHDO1.job
2015-07-15 05:23 - 2013-08-22 10:46 - 00025531 _____ C:\Windows\setupact.log
2015-07-15 05:23 - 2013-08-22 10:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-15 05:23 - 2013-08-22 09:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-07-15 05:22 - 2015-04-21 13:38 - 00000000 ____D C:\AdwCleaner
2015-07-14 21:02 - 2015-06-09 00:28 - 00000024 _____ C:\Users\Véronique\AppData\Roaming\appdataFr25.bin
2015-07-13 19:52 - 2015-04-27 21:16 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\vlc
2015-07-13 18:13 - 2015-04-27 21:16 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\dvdcss
2015-07-12 15:02 - 2013-08-22 10:44 - 05146064 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-12 15:01 - 2014-08-19 09:24 - 00074906 _____ C:\Windows\PFRO.log
2015-07-10 14:46 - 2014-08-19 09:42 - 01827432 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-10 14:46 - 2013-08-29 09:05 - 00813388 _____ C:\Windows\system32\perfh00C.dat
2015-07-10 14:46 - 2013-08-29 09:05 - 00159948 _____ C:\Windows\system32\perfc00C.dat
2015-07-10 13:29 - 2015-04-20 07:36 - 00000000 ____D C:\Users\Véronique\Desktop\Johnson inox
2015-07-10 10:45 - 2015-04-17 20:49 - 00170008 _____ C:\Users\Véronique\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-10 08:52 - 2015-04-17 17:14 - 00000000 ____D C:\Users\Véronique\AppData\Local\Microsoft Help
2015-07-10 05:49 - 2015-04-23 19:56 - 00000000 ___HD C:\ProgramData\bzq
2015-07-06 17:24 - 2015-05-14 17:44 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-06 17:24 - 2015-05-14 17:44 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-05 06:08 - 2015-06-01 15:08 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-04 11:14 - 2015-04-16 19:56 - 00000000 ____D C:\Users\Véronique\AppData\Local\Packages
2015-07-03 08:43 - 2015-04-19 22:32 - 130333168 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-07-01 14:50 - 2014-08-19 10:01 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2015-07-01 14:44 - 2014-08-19 10:07 - 00000000 ____D C:\ProgramData\PCDr
2015-07-01 13:31 - 2015-04-17 18:00 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Apple Computer
2015-07-01 12:42 - 2015-04-17 17:59 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-07-01 12:42 - 2015-04-17 17:59 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-07-01 12:42 - 2015-04-17 06:19 - 00000000 ____D C:\Program Files\iPod
2015-07-01 11:47 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\system32\NDF
2015-07-01 10:10 - 2015-04-16 20:30 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Autodesk
2015-07-01 09:56 - 2015-04-16 19:53 - 00000000 ____D C:\Users\Véronique
2015-07-01 09:53 - 2015-04-16 20:30 - 00000000 ____D C:\ProgramData\Autodesk
2015-07-01 09:52 - 2015-04-16 20:58 - 00000000 ____D C:\Users\Véronique\AppData\Local\Autodesk
2015-07-01 08:25 - 2015-04-16 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-07-01 08:18 - 2015-04-16 20:37 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2015-07-01 08:15 - 2015-04-16 20:37 - 00000000 ____D C:\Program Files\Autodesk
2015-07-01 08:13 - 2013-08-22 09:25 - 00017570 _____ C:\Windows\system32\Drivers\etc\services
2015-06-30 21:32 - 2015-04-16 21:01 - 00000000 ____D C:\Users\Véronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2015-06-30 21:29 - 2014-08-19 10:01 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-30 21:23 - 2015-04-16 20:28 - 00000000 ____D C:\Autodesk
2015-06-26 11:49 - 2015-04-19 20:56 - 00003816 _____ C:\Windows\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2015-06-26 11:43 - 2015-04-19 20:55 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2015-06-25 20:55 - 2015-04-21 10:40 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2015-06-22 17:58 - 2013-08-22 11:36 - 00000000 ____D C:\Windows\rescache
2015-06-18 10:40 - 2015-04-21 10:30 - 00000000 __SHD C:\Users\Véronique\AppData\Local\EmieBrowserModeList
2015-06-18 10:40 - 2015-04-16 21:04 - 00000000 __SHD C:\Users\Véronique\AppData\Local\EmieUserList
2015-06-18 10:40 - 2015-04-16 21:04 - 00000000 __SHD C:\Users\Véronique\AppData\Local\EmieSiteList
2015-06-17 18:05 - 2015-04-20 16:48 - 00000000 ____D C:\Users\Véronique\AppData\Local\Adobe
==================== Files in the root of some directories =======
2015-06-09 00:28 - 2015-07-14 21:02 - 0000024 _____ () C:\Users\Véronique\AppData\Roaming\appdataFr25.bin
2015-04-19 08:20 - 2015-04-19 08:20 - 0005872 _____ () C:\Users\Véronique\AppData\Roaming\eMwqCpE0doRjc68V
2015-04-20 09:45 - 2015-04-20 09:45 - 1579520 _____ () C:\Users\Véronique\AppData\Roaming\eMwqCpE0doRjc68V.exe
2015-04-21 19:14 - 2015-04-21 19:14 - 0004608 _____ () C:\Users\Véronique\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-08-19 09:26 - 2014-08-19 09:26 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-04-16 20:55 - 2015-04-16 20:55 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
Some files in TEMP:
====================
C:\Users\Véronique\AppData\Local\Temp\3626.exe
C:\Users\Véronique\AppData\Local\Temp\4205.exe
C:\Users\Véronique\AppData\Local\Temp\5731306811264037082c.exe
C:\Users\Véronique\AppData\Local\Temp\8669.exe
C:\Users\Véronique\AppData\Local\Temp\AcDeltree.exe
C:\Users\Véronique\AppData\Local\Temp\appshat_generic.exe
C:\Users\Véronique\AppData\Local\Temp\B238.exe
C:\Users\Véronique\AppData\Local\Temp\bitool.dll
C:\Users\Véronique\AppData\Local\Temp\D562F035-5E32-92BD-C292-799EB424E2ED.dll
C:\Users\Véronique\AppData\Local\Temp\D562F035-5E32-92BD-C292-799EB424E2ED.exe
C:\Users\Véronique\AppData\Local\Temp\DC36.exe
C:\Users\Véronique\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvw8n7d.dll
C:\Users\Véronique\AppData\Local\Temp\Hibiki.dll
C:\Users\Véronique\AppData\Local\Temp\InstallAX.exe
C:\Users\Véronique\AppData\Local\Temp\InstallPlugin.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__11804.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__12837.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__13389.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__13761.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__13817.exe
C:\Users\Véronique\AppData\Local\Temp\Launcher__13945.exe
C:\Users\Véronique\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Véronique\AppData\Local\Temp\mVO5717.exe
C:\Users\Véronique\AppData\Local\Temp\mVO594E.exe
C:\Users\Véronique\AppData\Local\Temp\mVO6258.exe
C:\Users\Véronique\AppData\Local\Temp\mVO671C.exe
C:\Users\Véronique\AppData\Local\Temp\mVO6C1E.exe
C:\Users\Véronique\AppData\Local\Temp\mVO70D2.exe
C:\Users\Véronique\AppData\Local\Temp\mVO75D4.exe
C:\Users\Véronique\AppData\Local\Temp\mVOD833.exe
C:\Users\Véronique\AppData\Local\Temp\nswC053.tmp.exe
C:\Users\Véronique\AppData\Local\Temp\ntwdblib.dll
C:\Users\Véronique\AppData\Local\Temp\optprosetup.exe
C:\Users\Véronique\AppData\Local\Temp\ose00000.exe
C:\Users\Véronique\AppData\Local\Temp\Quarantine.exe
C:\Users\Véronique\AppData\Local\Temp\ReimagePackage.exe
C:\Users\Véronique\AppData\Local\Temp\rwe8547.exe
C:\Users\Véronique\AppData\Local\Temp\sdf91AB.exe
C:\Users\Véronique\AppData\Local\Temp\setup_510.exe
C:\Users\Véronique\AppData\Local\Temp\setup_608.exe
C:\Users\Véronique\AppData\Local\Temp\setup_668.exe
C:\Users\Véronique\AppData\Local\Temp\setup_ra.exe
C:\Users\Véronique\AppData\Local\Temp\sp-downloader.exe
C:\Users\Véronique\AppData\Local\Temp\sqlite3.dll
C:\Users\Véronique\AppData\Local\Temp\startpoint_1.exe
C:\Users\Véronique\AppData\Local\Temp\supoptsetup.exe
C:\Users\Véronique\AppData\Local\Temp\UninstallModule.exe
C:\Users\Véronique\AppData\Local\Temp\VOPackage_1712.exe
C:\Users\Véronique\AppData\Local\Temp\WinFixPro.exe
C:\Users\Véronique\AppData\Local\Temp\WinFixProPackage.exe
C:\Users\Véronique\AppData\Local\Temp\ytaiesmt_smtyc_setup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-07 11:18
==================== End of log ============================
Additional.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Véronique at 2015-07-15 12:46:10
Running from C:\Users\Véronique\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrateur (S-1-5-21-397266815-3692931734-3319261158-500 - Administrator - Disabled)
Invité (S-1-5-21-397266815-3692931734-3319261158-501 - Limited - Disabled)
Véronique (S-1-5-21-397266815-3692931734-3319261158-1001 - Administrator - Enabled) => C:\Users\Véronique
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ACA & MEP 2016 Object Enabler (Version: 7.8.41.0 - Autodesk) Hidden
ACAD Private (Version: 20.1.49.0 - Autodesk) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{288DB08D-0708-4A94-B055-55B99E39EB62}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
Adobe Flash Player 10 Plugin (HKLM-x32\...\{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}) (Version: 10.1.52.14 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{7E6ACD66-B207-217A-4D56-070D89395CED}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Applications recommandées Autodesk 2016 (HKLM-x32\...\{D42F37CD-9AF9-4435-A474-B387C5BB6B47}) (Version: 2.0.0 - Autodesk)
AutoCAD 2016 - English (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 (Version: 20.1.49.0 - Autodesk) Hidden
AutoCAD 2016 Language Pack - English (Version: 20.1.49.0 - Autodesk) Hidden
Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
Autodesk 3ds Max 2016 (Version: 18.0.873.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.15 - Autodesk)
Autodesk App Manager 2016 (HKLM-x32\...\{4ECF9E00-2978-46AF-BD80-455EFEAB7A93}) (Version: 2.0.0 - Autodesk)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk AutoCAD 2016 - English (HKLM\...\AutoCAD 2016 - English) (Version: 20.1.49.0 - Autodesk)
Autodesk AutoCAD Performance Feedback Tool 1.2.4 (HKLM-x32\...\{4E20873D-BC20-495C-AFD9-B18877B7F9BB}) (Version: 1.2.4.0 - Autodesk)
Autodesk BIM 360 Glue AutoCAD 2016 Add-in 64 bit (HKLM\...\{4BEE127E-95C4-434D-ABAC-65155192BB24}) (Version: 4.35.1742 - Autodesk)
Autodesk Content Service (HKLM\...\Autodesk Content Service) (Version: 3.2.0.0 - Autodesk)
Autodesk Content Service (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Content Service Language Pack (Version: 3.2.0.0 - Autodesk) Hidden
Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.15 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.8.1.70 - Dell Inc.)
Dell Data Vault (Version: 4.3.4.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{24F2AD94-CC1B-4294-B184-D4D31A3186A7}) (Version: 2.42.0012 - Aviata Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.10 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.1.0.47 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.5.4 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{9E4750A7-90F6-4181-8A8A-B1ADF4216E93}) (Version: 1.0.1059.0 - Dell Inc.)
Dropbox (HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\Dropbox) (Version: 3.6.8 - Dropbox, Inc.)
FastAccess (HKLM\...\{0C3D8785-F7F0-4F8C-AB3C-2331DA8DFF75}) (Version: 4.1.219.1 - Sensible Vision)
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Importation de SketchUp 2016 (HKLM-x32\...\{C769FB7C-1F55-4B31-9A2A-21CEC50F4F92}) (Version: 2.0.0 - Autodesk)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.22.1760 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3383 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 3.0.1342.2) (HKLM\...\{302600C1-6BDF-4FD1-1311-148929CC1385}) (Version: 3.1.1311.0402 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{994e2754-d9a8-4942-8357-5409780c0fce}) (Version: 16.10.0 - Intel Corporation)
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-397266815-3692931734-3319261158-1001\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
My Dell Client Framework (HKLM-x32\...\InstallShield_{05F1B866-2372-4E82-9AA8-C64FB11CEF8B}) (Version: 1.0.0.3 - Dell)
My Dell Client Framework (x32 Version: 1.0.0.3 - Dell) Hidden
OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.16.007 - Dell Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7152 - Realtek Semiconductor Corp.)
SketchUp 2015 (HKLM\...\{350488A4-1540-4103-8F01-B27503891EB0}) (Version: 15.3.331 - Trimble Navigation Limited)
Skype(TM) 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SolidWorks 2014 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20140-40200-1100-100) (Version: 22.2.0.40 - SolidWorks Corporation)
SolidWorks 2014 x64 Edition SP02 (Version: 22.120.40 - SolidWorks) Hidden
SolidWorks 2014 x64 French Resources (Version: 22.120.40 - Nom de votre société) Hidden
SolidWorks Composer Player 2014 SP02 x64 Edition (Version: 22.20.40 - Dassault Systemes SolidWorks) Hidden
SolidWorks eDrawings 2014 x64 Edition SP02 (Version: 14.2.116 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks Flow Simulation 2014 SP02 x64 Edition (Version: 22.20.41 - SolidWorks Corporation) Hidden
SolidWorks Plastics 2014 SP02 x64 Edition (Version: 22.20.40 - SolidWorks Corporation) Hidden
True Color (HKLM-x32\...\{f8476c72-fe9e-4c04-a537-40a60257e57d}) (Version: 2.0.0.1 - Entertainment Experience)
True Color (Version: 2.0.0.1 - Entertainment Experience LLC) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Véronique\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-397266815-3692931734-3319261158-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Véronique\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
==================== Restore Points =========================
08-07-2015 16:22:55 Windows Update
15-07-2015 10:58:26 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {045D6EA5-BD59-404B-835F-6F71F3E424EC} - System32\Tasks\YAHUHDO1 => C:\ProgramData\LolyKey\LolyKey.exe <==== ATTENTION
Task: {08DB7B11-9F25-4AA7-89C1-FF33B4C88599} - System32\Tasks\NDFULM => C:\ProgramData\6f75e4350e2944d3a47c2c22dbca761f\6f75e4350e2944d3a47c2c22dbca761f.exe <==== ATTENTION
Task: {0A727B61-2326-44CD-9403-3CA086F84398} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2014-01-16] (Synaptics Incorporated)
Task: {0E2A49C6-045B-436A-957C-7D6CF3D3F7AA} - System32\Tasks\Dell\Dell Product Registration Update => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {1D133BB1-42B9-46E7-B121-0FDC08DB6ECC} - System32\Tasks\Dell\Dell Product Registration => C:\Program Files (x86)\Dell Product Registration\prodreg.exe [2014-10-31] (Aviata Inc)
Task: {58E9B662-E788-42FD-B120-96ACB86E4018} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-06-11] (Dell Inc.)
Task: {5A68FDC4-252F-4495-A3BD-AA22E328C9D0} - System32\Tasks\QHRBMXY => C:\ProgramData\50ef1c66b1b245d49db180afdfcdc785\50ef1c66b1b245d49db180afdfcdc785.exe <==== ATTENTION
Task: {718E28AC-4616-43F1-8BC2-DF33218CDFDB} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-latrodectusnoire@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-04-20] (Adobe Systems Incorporated)
Task: {7B4DCBFA-619D-4470-A1D4-FE2EB31843C0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {7CC2EE1A-777F-4215-83CD-5D9295383AF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03] (Google Inc.)
Task: {9877E8B8-FC6F-4DD3-8754-51E360313BB2} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-397266815-3692931734-3319261158-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {987969E6-8245-4992-8F49-01DF0EA98377} - System32\Tasks\IEError => C:\Program Files (x86)\Tuneup computer\Popialert.exe
Task: {A85A43AC-90A8-47DE-8DEE-2E5B7367A7F9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-03] (Google Inc.)
Task: {B5F92548-A515-427B-81F3-932AE185F15E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation)
Task: {C06FACB7-8FC7-493A-AC46-CF4145C8C3F9} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-05-25] (PC-Doctor, Inc.)
Task: {D9DCBBAE-DF5B-4644-99D3-917C8EF4B7B7} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {DA345C25-1C35-4CBF-97D1-14A051298165} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E5786BFD-C528-4DF2-B9AD-3A2489533A52} - System32\Tasks\AI_Updater => C:\Program Files (x86)\Tuneup computer\updater.exe
Task: {F8F000A3-93D8-476D-96FA-A8D4186CF62A} - System32\Tasks\boosterpop => C:\Program Files (x86)\Tuneup computer\Probsalert.exe
Task: {FA265BD7-A98B-4AA7-9FC6-E43B1E43BC98} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-05-25] (PC-Doctor, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\AppPorter.job => c:\programdata\{6c33cfe1-2897-9ae1-6c33-3cfe12893f84}\7041587467432447861c.exe <==== ATTENTION
Task: C:\Windows\Tasks\Bidaily Synchronize Task[d492].job => c:\programdata\{edfaf378-59e4-ff9d-edfa-af37859ecde1}\setup_668.exe <==== ATTENTION
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-397266815-3692931734-3319261158-1001Core.job => C:\Users\Véronique\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EasySwitch.job => c:\programdata\{41f3bd33-2e3f-2b92-41f3-3bd332e3f4cc}\5731306811264037082c.exe <==== ATTENTION
Task: C:\Windows\Tasks\eMwqCpE0doRjc68V.job => C:\Users\V?ronique\AppData\Roaming\eMwqCpE0doRjc68V.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GreensAndBeans.job => c:\programdata\{90aa0776-fb7d-4828-90aa-a0776fb71ddb}\6196091193292881321c.exe <==== ATTENTION
Task: C:\Windows\Tasks\YAHUHDO1.job => C:\ProgramData\LolyKey\LolyKey.exe <==== ATTENTION
==================== Loaded Module
15 juil. 2015 à 21:22