Infection flasUtil.exe et Winthruster
Fermé
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
-
Modifié par Malekal_morte- le 31/05/2015 à 10:57
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 31 mai 2015 à 22:35
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 31 mai 2015 à 22:35
A voir également:
- Dptfpolicylpmservicehelper.exe
- Url blacklist infection - Forum Virus
- Winthruster - Forum Virus
- Infection ? - Forum Sécurité
- Infection et rame permanente - Forum Virus
- Infection ou pas? ✓ - Forum Virus
4 réponses
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
31 mai 2015 à 10:57
31 mai 2015 à 10:57
Salut,
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Commence par ceci :
Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis :
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Commence par ceci :
Suis le tutorial AdwCleaner https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= ( d'Xplode )
Télécharge le sur ton bureau ou dossier de téléchargement.
Lance AdwCleaner, clique sur [Scanner].
L'analyse peux durer plusieurs minutes, patiente.
Une fois le scan terminé, ne décoche rien, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis :
Suis ce tutoriel FRST: https://www.malekal.com/tutoriel-farbar-recovery-scan-tool-frst/
(et bien prendre le temps de lire afin d'appliquer correctement - tout y est expliqué).
Télécharge et lance le scan FRST, cela va générer trois rapports FRST :
- FRST.txt
- Shortcut.txt
- Additionnal.txt
Envoie, comme expliqué, ces trois rapports sur le site http://pjjoint.malekal.com et en retour donne les trois liens pjjoint qui mènent à ses rapports ici dans une nouvelle réponse afin que l'on puisse les consulter.
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
31 mai 2015 à 11:10
31 mai 2015 à 11:10
merci Malekal
le problème c'est que ce ,n'est pas mon matos en cause mais celui de mon amie et que je ne suis pas certain que je puisse même télécharger quoi que ce soit sur son ordi
Zbig
le problème c'est que ce ,n'est pas mon matos en cause mais celui de mon amie et que je ne suis pas certain que je puisse même télécharger quoi que ce soit sur son ordi
Zbig
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
31 mai 2015 à 11:28
31 mai 2015 à 11:28
Fais passer par clef USB.
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
31 mai 2015 à 11:30
31 mai 2015 à 11:30
Re
je te joins le rapport copié sur USB
# AdwCleaner v4.205 - Rapport créé le 31/05/2015 à 11:16:38
# Mis à jour le 21/05/2015 par Xplode
# Base de données : 2015-05-25.3 [Serveur]
# Système d'exploitation : Windows 8.1 (x86)
# Nom d'utilisateur : MChristine - PC-STPÉE
# Exécuté depuis : C:\Users\MChristine\Downloads\AdwCleaner-4.205.exe
# Option : Nettoyer
[#] Service Supprimé : desksvc
Dossier Supprimé : C:\ProgramData\apn
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desk 365
Dossier Supprimé : C:\Program Files\Desk 365
Dossier Supprimé : C:\Program Files\Common Files\337
Dossier Supprimé : C:\Users\MCHRIS~1\AppData\Local\Temp\apn
Dossier Supprimé : C:\Users\MChristine\AppData\LocalLow\Delta
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Desk 365
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Solvusoft
Fichier Supprimé : C:\WINDOWS\system32\roboot.exe
Tâche Supprimée : Desk 365 RunAsStdUser
Tâche Supprimée : WinThruster
Tâche Supprimée : WinThruster_DEFAULT
Tâche Supprimée : WinThruster_UPDATES
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Desk 365]
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Clé Supprimée : HKLM\SOFTWARE\5357d8dae23dbd49
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4F524A2D-5637-006A-76A7-7A786E7484D7}]
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{969CE5F3-3154-44CE-873B-3E51ED069CFE}
Clé Supprimée : HKCU\Software\BABSOLUTION
Clé Supprimée : HKCU\Software\DataMngr
[#] Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\Solvusoft
Clé Supprimée : HKCU\Software\V9
Clé Supprimée : HKLM\SOFTWARE\Babylon
Clé Supprimée : HKLM\SOFTWARE\Boxore
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\Desksvc
Clé Supprimée : HKLM\SOFTWARE\DomaIQ
Clé Supprimée : HKLM\SOFTWARE\hdcode
Clé Supprimée : HKLM\SOFTWARE\Solvusoft
Clé Supprimée : HKLM\SOFTWARE\V9
Clé Supprimée : HKU\.DEFAULT\Software\AskPartnerNetwork
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Desk 365
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v43.0.2357.81
AdwCleaner[R0].txt - [3316 octets] - [31/05/2015 11:14:20]
AdwCleaner[S0].txt - [3249 octets] - [31/05/2015 11:16:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3309 octets] ##########
je continue sur ta procédure
Zbig
je te joins le rapport copié sur USB
# AdwCleaner v4.205 - Rapport créé le 31/05/2015 à 11:16:38
# Mis à jour le 21/05/2015 par Xplode
# Base de données : 2015-05-25.3 [Serveur]
# Système d'exploitation : Windows 8.1 (x86)
# Nom d'utilisateur : MChristine - PC-STPÉE
# Exécuté depuis : C:\Users\MChristine\Downloads\AdwCleaner-4.205.exe
# Option : Nettoyer
- [ Services ] *****
[#] Service Supprimé : desksvc
- [ Fichiers / Dossiers ] *****
Dossier Supprimé : C:\ProgramData\apn
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Desk 365
Dossier Supprimé : C:\Program Files\Desk 365
Dossier Supprimé : C:\Program Files\Common Files\337
Dossier Supprimé : C:\Users\MCHRIS~1\AppData\Local\Temp\apn
Dossier Supprimé : C:\Users\MChristine\AppData\LocalLow\Delta
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Desk 365
Dossier Supprimé : C:\Users\MChristine\AppData\Roaming\Solvusoft
Fichier Supprimé : C:\WINDOWS\system32\roboot.exe
- [ Tâches planifiées ] *****
Tâche Supprimée : Desk 365 RunAsStdUser
Tâche Supprimée : WinThruster
Tâche Supprimée : WinThruster_DEFAULT
Tâche Supprimée : WinThruster_UPDATES
- [ Raccourcis ] *****
- [ Registre ] *****
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Desk 365]
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Clé Supprimée : HKLM\SOFTWARE\5357d8dae23dbd49
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4F524A2D-5637-006A-76A7-7A786E7484D7}]
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{969CE5F3-3154-44CE-873B-3E51ED069CFE}
Clé Supprimée : HKCU\Software\BABSOLUTION
Clé Supprimée : HKCU\Software\DataMngr
[#] Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\Solvusoft
Clé Supprimée : HKCU\Software\V9
Clé Supprimée : HKLM\SOFTWARE\Babylon
Clé Supprimée : HKLM\SOFTWARE\Boxore
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\Desksvc
Clé Supprimée : HKLM\SOFTWARE\DomaIQ
Clé Supprimée : HKLM\SOFTWARE\hdcode
Clé Supprimée : HKLM\SOFTWARE\Solvusoft
Clé Supprimée : HKLM\SOFTWARE\V9
Clé Supprimée : HKU\.DEFAULT\Software\AskPartnerNetwork
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Desk 365
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WinThruster_is1
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SoftwareUpdate.exe
- [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Google Chrome v43.0.2357.81
AdwCleaner[R0].txt - [3316 octets] - [31/05/2015 11:14:20]
AdwCleaner[S0].txt - [3249 octets] - [31/05/2015 11:16:38]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3309 octets] ##########
je continue sur ta procédure
Zbig
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
31 mai 2015 à 11:35
31 mai 2015 à 11:35
ok pour la suite, juste une question, tu utilises une clef USB parce que tu n'as pas mis son PC sur internet ou ça déconne ou y a trop de pubs qui s'ouvrent ?
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
31 mai 2015 à 12:09
31 mai 2015 à 12:09
non finalement les dégats étaient moins sérieux que je ne pensais mais elle était bloqué donc j'ai préféré utiliser mon PC
j'ai déposé les 3 rapports comme indiqué j'espère que je ne me suis pas planté ???
cdt
Zbig
j'ai déposé les 3 rapports comme indiqué j'espère que je ne me suis pas planté ???
cdt
Zbig
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
31 mai 2015 à 12:18
31 mai 2015 à 12:18
il faut donner les liens ici.
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
>
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
31 mai 2015 à 22:27
31 mai 2015 à 22:27
Bonsoir
as tu pu consulter les fichiers?
que faut il faire ensuite ?
une fenetre s ouvre toujours en surfant sur certains site internet, style attention un site cherche a ouvrir vos applications avec deux sous fenetre oui /non qui bloquent la consultation
( macromed Active x .exe//Widows third party
comment faire pour w en debarasser
merci de ton aide
cdt Zbig
as tu pu consulter les fichiers?
que faut il faire ensuite ?
une fenetre s ouvre toujours en surfant sur certains site internet, style attention un site cherche a ouvrir vos applications avec deux sous fenetre oui /non qui bloquent la consultation
( macromed Active x .exe//Widows third party
comment faire pour w en debarasser
merci de ton aide
cdt Zbig
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
24 628
Modifié par Malekal_morte- le 31/05/2015 à 22:29
Modifié par Malekal_morte- le 31/05/2015 à 22:29
Non, pas de lien ici vers les rapports FRST => pas de rapport => pas d'aide.
Lire les instructions jusqu'au bout.
Lire les instructions jusqu'au bout.
zbigniou
Messages postés
38
Date d'inscription
vendredi 22 août 2008
Statut
Membre
Dernière intervention
2 septembre 2015
>
Malekal_morte-
Messages postés
180304
Date d'inscription
mercredi 17 mai 2006
Statut
Modérateur, Contributeur sécurité
Dernière intervention
15 décembre 2020
31 mai 2015 à 22:35
31 mai 2015 à 22:35
Nouvel envoi
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-05-2015
Ran by MChristine (administrator) on PC-STPÉE on 31-05-2015 11:49:49
Running from C:\Users\MChristine\Desktop
Loaded Profiles: MChristine (Available Profiles: MChristine & alain_000)
Platform: Microsoft Windows 8.1 (X86) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\LiveUpdate\HotKeyService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantDisplayService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUSWebStorage] => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [65536 2013-10-27] (Intel Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
Startup: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MP500 Series Printer.lnk [2015-03-10]
ShortcutTarget: Canon IJ Status Monitor Canon MP500 Series Printer.lnk -> C:\Users\MCHRIS~1\CNMSSC~1.DLL,SMStarterEntryPoint USB001;Canon MP500 Series Printer;cnmss Canon MP500 Series Printer (Local).dll;Canon IJ Status Monitor Canon MP500 Series Printer.lnk (No File)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB8} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {618A47A2-528B-4D9A-AFC8-97D3233511E2} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/?cc=fr&toHttps=1&redig=FFB02EC7B93F4A0CB46BC38DDFB765C2
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=asus13.msn.com&ocid=ASUDHP&pc=ASU2JS
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = www.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3333294294-3057427553-2620708965-1001 -> {290437B0-EB8B-4286-B380-DB70BA51AE9C} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-16] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-16] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-29] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-16] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-23]
CHR Extension: (Google Drive) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-23]
CHR Extension: (YouTube) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-23]
CHR Extension: (Google Search) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-23]
CHR Extension: (Bookmark Manager) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-16]
CHR Extension: (Google Wallet) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-23]
CHR Extension: (Gmail) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-23]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R2 ASUSACPI; C:\Program Files\ASUS\LiveUpdate\HotKeyService.exe [156472 2013-10-27] (ASUSTeK Computer Inc.)
S3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [250880 2014-10-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1856176 2015-04-07] (Microsoft Corporation)
R2 DptfParticipantDisplayService; C:\WINDOWS\system32\DptfParticipantDisplayService.exe [97792 2013-10-27] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [69632 2013-10-27] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [98688 2012-10-01] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [56832 2013-10-27] (Intel Corporation)
S2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [75776 2013-10-27] (Intel Corporation)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [103936 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284488 2015-02-04] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2014-10-29] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22200 2015-02-04] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1269248 2014-10-29] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation)
R3 BcmGnssBus; C:\WINDOWS\System32\drivers\BcmGnssBus.sys [79944 2013-10-27] (Broadcom Corporation)
R3 BCMSDH43XX; C:\WINDOWS\system32\DRIVERS\bcmdhd63.sys [521392 2013-10-27] (Broadcom)
R3 BthLEEnum; C:\WINDOWS\System32\drivers\BthLEEnum.sys [186880 2013-12-04] (Microsoft Corporation)
R3 BthMini; C:\WINDOWS\System32\Drivers\BTHMINI.sys [23552 2014-10-29] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\System32\drivers\btwampfl.sys [144088 2013-10-27] (Broadcom Corporation.)
R3 BtwSerialBus; C:\WINDOWS\System32\drivers\BtwSerialBus.sys [130776 2013-10-27] (Broadcom Corporation.)
R3 camera; C:\WINDOWS\system32\DRIVERS\camera.sys [207872 2013-10-27] (Intel Corporation)
R0 ChaabiDriver; C:\WINDOWS\System32\drivers\ChaabiDriver.sys [74256 2013-10-27] (Intel Corporation)
R0 clvpep; C:\WINDOWS\System32\drivers\clvpep.sys [81648 2013-10-27] (Intel Corporation)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [44256 2013-10-27] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [49888 2013-10-27] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [69344 2013-10-27] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [163552 2013-10-27] (Intel Corporation)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R3 GPIOCLV; C:\WINDOWS\System32\drivers\GPIOCLV.sys [22016 2013-10-27] (Intel Corporation)
R3 igdperf32; C:\WINDOWS\system32\DRIVERS\igdperf32.sys [4096 2013-11-20] ()
R3 imx175; C:\WINDOWS\System32\drivers\imx175.sys [58880 2013-10-27] (Intel Corporation)
R0 inteli2c; C:\WINDOWS\System32\drivers\inteli2c.sys [48880 2013-10-27] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [241152 2013-10-27] (Intel(R) Corporation)
R0 Lm3554; C:\WINDOWS\System32\drivers\lm3554.sys [34816 2013-10-27] (Intel Corporation)
R0 LNWIPC; C:\WINDOWS\System32\drivers\LNWIPC.sys [25840 2013-10-27] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [16112 2013-10-27] (Intel Corporation)
R3 MSICReg; C:\WINDOWS\System32\drivers\MSICReg.sys [17408 2013-10-27] (Intel Corporation)
R3 ov2720; C:\WINDOWS\System32\drivers\ov2720.sys [46592 2013-10-27] (Intel Corporation)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [97792 2013-10-27] (Realtek Semiconductor Corp.)
R3 SensorsHIDClassDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 spi; C:\WINDOWS\System32\drivers\spi.sys [46592 2013-10-27] (Intel Corporation)
R3 Uart16550pc; C:\WINDOWS\System32\drivers\Uart16550pc.sys [40960 2013-10-27] (Intel Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84800 2015-02-04] (Microsoft Corporation)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
R3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-05-31 11:49 - 2015-05-31 11:50 - 00013330 _____ () C:\Users\MChristine\Desktop\FRST.txt
2015-05-31 11:43 - 2015-05-31 11:43 - 01147392 _____ (Farbar) C:\Users\MChristine\Downloads\FRST (2).exe
2015-05-31 11:42 - 2015-05-31 11:49 - 00000000 ____D () C:\FRST
2015-05-31 11:41 - 2015-05-31 11:42 - 01147392 _____ (Farbar) C:\Users\MChristine\Downloads\FRST (1).exe
2015-05-31 11:41 - 2015-05-31 11:41 - 01147392 _____ (Farbar) C:\Users\MChristine\Desktop\FRST.exe
2015-05-31 11:14 - 2015-05-31 11:16 - 00000000 ____D () C:\AdwCleaner
2015-05-31 11:13 - 2015-05-31 11:13 - 02223104 _____ () C:\Users\MChristine\Downloads\AdwCleaner-4.205.exe
2015-05-29 21:26 - 2015-05-29 21:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
2015-05-29 21:25 - 2015-05-31 09:41 - 00000000 ____D () C:\Program Files\WinThruster
2015-05-29 21:24 - 2015-05-29 21:25 - 03894696 _____ (solvusoft Corporation ) C:\Users\MChristine\Downloads\Setup_WinThruster_2015.exe
2015-05-29 21:06 - 2015-05-31 11:44 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-27 15:47 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-05-27 15:46 - 2015-05-27 15:47 - 00037331 _____ () C:\WINDOWS\DirectX.log
2015-05-26 11:47 - 2015-05-26 11:47 - 00001139 _____ () C:\Users\Public\Desktop\Myfujifilm.fr.lnk
2015-05-26 11:47 - 2015-05-26 11:47 - 00000000 ____D () C:\Users\MChristine\AppData\Local\MyFujifilm
2015-05-26 11:47 - 2015-05-26 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm
2015-05-26 11:44 - 2015-05-26 11:44 - 00000000 ____D () C:\ProgramData\MyFujifilm
2015-05-13 09:49 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 05:52 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-13 05:52 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-13 05:52 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-13 05:52 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-13 05:52 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-13 05:52 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-13 05:52 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-13 05:52 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-13 05:52 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-13 05:52 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-13 05:52 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-13 05:52 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-13 05:52 - 2015-04-21 17:26 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-13 05:52 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-13 05:52 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-13 05:52 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-13 05:52 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-13 05:52 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-13 05:52 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-13 05:52 - 2015-04-14 00:43 - 03543552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-13 05:52 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-13 05:52 - 2015-04-10 02:23 - 01088512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-13 05:51 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-13 05:51 - 2015-03-30 07:51 - 00478776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-13 05:51 - 2015-03-27 04:20 - 01117696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-13 05:48 - 2015-04-09 00:59 - 00333624 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-05-31 11:37 - 2013-11-29 11:16 - 01677710 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-31 11:28 - 2014-04-23 09:00 - 00001082 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-31 11:28 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-31 11:25 - 2013-11-29 11:13 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-31 11:24 - 2013-08-22 09:23 - 00297557 _____ () C:\WINDOWS\setupact.log
2015-05-31 11:19 - 2014-06-30 23:26 - 00000000 ___DO () C:\Users\MChristine\SkyDrive
2015-05-31 11:18 - 2014-04-23 09:00 - 00001078 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-31 11:18 - 2013-08-22 09:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-31 11:17 - 2013-08-22 08:13 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-31 09:46 - 2013-11-29 11:05 - 00000000 ____D () C:\Users\MChristine
2015-05-29 21:34 - 2014-04-23 08:56 - 00000000 ____D () C:\Users\MChristine\AppData\Local\Adobe
2015-05-29 17:21 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-05-29 15:05 - 2013-09-29 20:55 - 00015018 _____ () C:\WINDOWS\PFRO.log
2015-05-28 13:42 - 2014-12-16 19:43 - 00024064 ___SH () C:\Users\MChristine\Desktop\Thumbs.db
2015-05-27 15:36 - 2015-01-30 19:28 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-05-26 16:14 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-26 09:34 - 2014-04-24 12:44 - 00002154 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-23 09:11 - 2015-01-31 16:27 - 00000000 ___RD () C:\Users\MChristine\OneDrive
2015-05-16 15:35 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\rescache
2015-05-15 09:03 - 2014-04-23 08:59 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 20:08 - 2013-09-30 05:51 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 20:08 - 2013-08-22 09:22 - 00486304 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-13 09:51 - 2012-07-26 08:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-13 09:49 - 2013-08-22 08:21 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-05 19:59 - 2013-08-22 10:18 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 10:18 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2014-11-07 04:26 - 2014-11-07 04:26 - 0000000 _____ () C:\Users\MChristine\AppData\Local\{39194867-7257-4065-97C8-8D3F2CE6DC38}
Files to move or delete:
====================
C:\Users\MChristine\cnmss Canon MP500 Series Printer (Local).dll
Some files in TEMP:
====================
C:\Users\MChristine\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\MChristine\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\MChristine\AppData\Local\Temp\Quarantine.exe
C:\Users\MChristine\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-05-29 17:20
==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by MChristine at 2015-05-31 11:51:17
Running from C:\Users\MChristine\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrateur (S-1-5-21-3333294294-3057427553-2620708965-500 - Administrator - Disabled)
alain_000 (S-1-5-21-3333294294-3057427553-2620708965-1006 - Limited - Enabled) => C:\Users\alain_000
HomeGroupUser$ (S-1-5-21-3333294294-3057427553-2620708965-1005 - Limited - Enabled)
Invité (S-1-5-21-3333294294-3057427553-2620708965-501 - Limited - Disabled)
MChristine (S-1-5-21-3333294294-3057427553-2620708965-1001 - Administrator - Enabled) => C:\Users\MChristine
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
ASUS WebStorage Sync Agent (HKLM\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
Intel(R) Dynamic Platform & Thermal Framework (HKLM\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.0.0.0335 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.14.3.1082 - Intel Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
LiveUpdate (HKLM\...\InstallShield_{D03557FD-202C-43BD-940E-0602AD7ECEF6}) (Version: 2.1.4.14 - ASUSTeK Computer Inc.)
LiveUpdate (Version: 2.1.4.14 - ASUSTeK Computer Inc.) Hidden
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft Office Famille et Etudiant 2013 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Sonos Controller (HKLM\...\{7BBA9BF8-05DF-47D8-8880-82A9B99505B9}) (Version: 22.0.64240 - Sonos, Inc.)
Wbridge5 4.9 (HKLM\...\{8374A9F4-1F0B-4839-8E44-DDD92C105711}_is1) (Version: - Yves Costel)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3333294294-3057427553-2620708965-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\MChristine\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncApi.dll (Microsoft Corporation)
==================== Restore Points =========================
27-05-2015 15:46:39 DirectX est installé
29-05-2015 21:28:58 WinThruster ven., mai 29, 15 21:28
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 08:13 - 2013-08-22 08:13 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {059C60A9-2872-4DF4-BA93-7E46BABD2B18} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-29] (Adobe Systems Incorporated)
Task: {0C05A2FE-0923-44AB-B746-726179B60009} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: {440655D8-BE26-47D6-9093-5B116A50A0D2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {57BC4CA7-0FF9-4DCC-9377-73099E4F629F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: {6B516D11-C0E7-42E0-88BC-031E675E1F81} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-05-26] (Microsoft Corporation)
Task: {7B503275-85E4-4EE6-A200-8646544D02CC} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {7CA398E4-E2CC-41EC-8C32-9AB3513489ED} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-21] (Microsoft Corporation)
Task: {8080E8D2-BC1E-4907-972F-08187A400DEC} - System32\Tasks\ASUSLiveUpdate => C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe [2013-10-27] (AsusTek Computer Inc.)
Task: {878139B8-BF81-4BE6-8C3B-C7B9E21312C0} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {89C52519-AA5D-48D9-B772-E44D0DEE8792} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\WINDOWS\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {9DD81FF7-D85B-4A96-B427-A14C7C4D76C5} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3333294294-3057427553-2620708965-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {CBAB9E97-9524-4C44-9B58-5803951E1FF6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {E3063408-2B5D-4D3A-B245-3F350404707E} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-STPÉE-MChristine pc-stpée => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
Task: {E49ABD94-4388-4559-B7CD-B36306FEFA04} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {ECB13BC1-F19C-4203-9650-2DE181939286} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2012-12-19 08:10 - 2012-12-19 08:10 - 00072192 _____ () C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
2013-10-27 11:06 - 2013-10-27 11:06 - 00073728 _____ () C:\Program Files\ASUS\LiveUpdate\smbios.dll
2015-01-30 19:28 - 2014-05-20 03:11 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-05-26 09:33 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 09:33 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\Users\MChristine\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\MChristine\SkyDrive.old:ms-properties
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\gpioclv.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\inteli2c.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lnwipc.sys => ""="Driver"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\ASUS\ME400-Wallpaper2.png
DNS Servers: 192.168.0.254
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "ApnTBMon"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{FC3BBCFB-CFF1-49C1-AFE8-8055DC545357}C:\windows\system32\runtimebroker.exe] => (Block) C:\windows\system32\runtimebroker.exe
FirewallRules: [TCP Query User{EB738204-9E85-4B0B-9B50-049C4054648F}C:\windows\system32\runtimebroker.exe] => (Block) C:\windows\system32\runtimebroker.exe
FirewallRules: [UDP Query User{D0F9A1F1-6903-4033-A667-6DB7B3D9541D}C:\program files\sonos\sonos.exe] => (Allow) C:\program files\sonos\sonos.exe
FirewallRules: [TCP Query User{65C846BD-D964-41E1-984C-F2F3F83CE421}C:\program files\sonos\sonos.exe] => (Allow) C:\program files\sonos\sonos.exe
FirewallRules: [TCP Query User{21FFAD4D-D553-4040-BA8E-6F2757B7A5F9}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe
FirewallRules: [UDP Query User{2FE2BD98-707A-4F35-BC1A-EF57EFF5C0BA}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe
FirewallRules: [{72C54CBD-8D35-4729-B654-68A4D00209D5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{19E76A34-43D7-4C8E-B95F-3739BCF32399}] => (Allow) C:\Users\MChristine\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{5717F396-9EE2-43F9-A41E-B6C27298E090}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:31:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/29/2015 09:28:58 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l'interrogation de l'interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d'instance du rédacteur: {8f84711b-85d4-438d-b254-c2857c5fbb53}
System errors:
=============
Error: (05/31/2015 11:17:51 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:51 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:49 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:23 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d'entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l'erreur suivante :
%%1056
Error: (05/31/2015 11:16:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Spouleur d'impression s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Démarrer en clic Microsoft Office s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Dynamic Platform & Thermal Framework Critical Service Application s'est terminé de façon inattendue pour la 1ème fois.
Microsoft Office:
=========================
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:31:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/29/2015 09:28:58 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Accès refusé.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d'instance du rédacteur: {8f84711b-85d4-438d-b254-c2857c5fbb53}
==================== Memory info ===========================
Processor: Intel(R) Atom(TM) CPU Z2760 @ 1.80GHz
Percentage of memory in use: 57%
Total physical RAM: 1963.67 MB
Available physical RAM: 833.56 MB
Total Pagefile: 3371.67 MB
Available Pagefile: 2157.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1886.88 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:49.47 GB) (Free:23.57 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 58.2 GB) (Disk ID: 1CDAA641)
Partition: GPT Partition Type.
==================== End of log ============================
Users shortcut scan result (x86) Version: 29-05-2015
Ran by MChristine at 2015-05-31 11:52:46
Running from C:\Users\MChristine\Desktop
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\alain_000\Links\Desktop.lnk -> C:\Users\alain_000\Desktop ()
Shortcut: C:\Users\alain_000\Links\Downloads.lnk -> C:\Users\alain_000\Downloads ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\alain_000\Documents ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\alain_000\Pictures ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk -> C:\Windows\BrowserChoice\html\default.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster\Désinstaller WinThruster.lnk -> C:\Program Files\WinThruster\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster\WinThruster.lnk -> C:\Program Files\WinThruster\WinThruster.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Aide de Wbridge5.lnk -> C:\wbridge5\wbridge5.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Désinstaller Wbridge5.lnk -> C:\wbridge5\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Lisez_moi.lnk -> C:\wbridge5\Lisez_moi.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Wbridge5.lnk -> C:\wbridge5\Wbridge5.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonos\Sonos.lnk -> C:\Program Files\Sonos\Sonos.exe (Sonos, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm\Désinstaller Photogénie Myfujifilm.lnk -> C:\Program Files\MyFujifilm\Photogenie\unins000.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm\Photogénie Myfujifilm 5.1.lnk -> C:\Program Files\MyFujifilm\Photogenie\Loader.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\msaccess.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Envoyer à OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\excel.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenote.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\mspub.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\winword.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outils Office 2013\Centre de téléchargement Office 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\msouc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outils Office 2013\Préférences linguistiques d'Office 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\setlang.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configurer Java.lnk -> C:\Program Files\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage Sync Agent\Uninstall.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\uninst.exe (ASUS Cloud Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage Sync Agent\WebStorage Sync Agent.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\1.1.5.111\AsusWSPanel.exe (ASUS Cloud Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\LiveUpdate\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources.lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\MChristine\Documents ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\MChristine\Pictures ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\Links\Desktop.lnk -> C:\Users\MChristine\Desktop ()
Shortcut: C:\Users\MChristine\Links\Downloads.lnk -> C:\Users\MChristine\Downloads ()
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\SendTo\Desk 365.lnk -> C:\Program Files\Desk 365\desk365.exe (No File)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\SendTo\Transfert de fichiers Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\ConnectedSearch\History\act_1349797433_1912447633065879305_fr-fr.lnk -> C:\Users\MChristine\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\890aa5492eb3954f\120712-0049\People\AddressBook\26000279_596979a14341e.appcontent-ms (No File)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\ConnectedSearch\History\act_1349797433_32875757541552436184_fr-fr.lnk -> C:\Users\MChristine\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\890aa5492eb3954f\120712-0049\People\AddressBook\26000195_313a99077fdd43.appcontent-ms (No File)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\Public\Desktop\Myfujifilm.fr.lnk -> C:\Program Files\MyFujifilm\Photogenie\Loader.exe (No File)
Shortcut: C:\Users\Public\Desktop\Sonos.lnk -> C:\Program Files\Sonos\Sonos.exe (Sonos, Inc.)
Shortcut: C:\Users\Public\Desktop\Wbridge5.lnk -> C:\wbridge5\Wbridge5.exe ()
Shortcut: C:\Users\Public\Desktop\WebStorage.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe (ASUS Cloud Corporation)
ShortcutWithArgument: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAnd
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-05-2015
Ran by MChristine (administrator) on PC-STPÉE on 31-05-2015 11:49:49
Running from C:\Users\MChristine\Desktop
Loaded Profiles: MChristine (Available Profiles: MChristine & alain_000)
Platform: Microsoft Windows 8.1 (X86) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\LiveUpdate\HotKeyService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantDisplayService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUSWebStorage] => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [65536 2013-10-27] (Intel Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
Startup: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Canon IJ Status Monitor Canon MP500 Series Printer.lnk [2015-03-10]
ShortcutTarget: Canon IJ Status Monitor Canon MP500 Series Printer.lnk -> C:\Users\MCHRIS~1\CNMSSC~1.DLL,SMStarterEntryPoint USB001;Canon MP500 Series Printer;cnmss Canon MP500 Series Printer (Local).dll;Canon IJ Status Monitor Canon MP500 Series Printer.lnk (No File)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {CC5FC992-B0AA-47CD-9DC2-83445083CBB8} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {618A47A2-528B-4D9A-AFC8-97D3233511E2} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt.dll [2012-09-27] (ASUS Cloud Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.bing.com/?cc=fr&toHttps=1&redig=FFB02EC7B93F4A0CB46BC38DDFB765C2
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=asus13.msn.com&ocid=ASUDHP&pc=ASU2JS
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = www.asus.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3333294294-3057427553-2620708965-1001 -> {290437B0-EB8B-4286-B380-DB70BA51AE9C} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-16] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-16] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-05-29] ()
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-16] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-16] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-01-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-23]
CHR Extension: (Google Drive) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-23]
CHR Extension: (YouTube) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-23]
CHR Extension: (Google Search) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-23]
CHR Extension: (Bookmark Manager) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-16]
CHR Extension: (Google Wallet) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-23]
CHR Extension: (Gmail) - C:\Users\MChristine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-23]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Asus WebStorage Windows Service; C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R2 ASUSACPI; C:\Program Files\ASUS\LiveUpdate\HotKeyService.exe [156472 2013-10-27] (ASUSTeK Computer Inc.)
S3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [250880 2014-10-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1856176 2015-04-07] (Microsoft Corporation)
R2 DptfParticipantDisplayService; C:\WINDOWS\system32\DptfParticipantDisplayService.exe [97792 2013-10-27] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [69632 2013-10-27] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [98688 2012-10-01] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [56832 2013-10-27] (Intel Corporation)
S2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [75776 2013-10-27] (Intel Corporation)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [103936 2014-10-29] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [284488 2015-02-04] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2014-10-29] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22200 2015-02-04] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1269248 2014-10-29] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation)
R3 BcmGnssBus; C:\WINDOWS\System32\drivers\BcmGnssBus.sys [79944 2013-10-27] (Broadcom Corporation)
R3 BCMSDH43XX; C:\WINDOWS\system32\DRIVERS\bcmdhd63.sys [521392 2013-10-27] (Broadcom)
R3 BthLEEnum; C:\WINDOWS\System32\drivers\BthLEEnum.sys [186880 2013-12-04] (Microsoft Corporation)
R3 BthMini; C:\WINDOWS\System32\Drivers\BTHMINI.sys [23552 2014-10-29] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\System32\drivers\btwampfl.sys [144088 2013-10-27] (Broadcom Corporation.)
R3 BtwSerialBus; C:\WINDOWS\System32\drivers\BtwSerialBus.sys [130776 2013-10-27] (Broadcom Corporation.)
R3 camera; C:\WINDOWS\system32\DRIVERS\camera.sys [207872 2013-10-27] (Intel Corporation)
R0 ChaabiDriver; C:\WINDOWS\System32\drivers\ChaabiDriver.sys [74256 2013-10-27] (Intel Corporation)
R0 clvpep; C:\WINDOWS\System32\drivers\clvpep.sys [81648 2013-10-27] (Intel Corporation)
R3 DptfDevDisplay; C:\WINDOWS\System32\drivers\DptfDevDisplay.sys [44256 2013-10-27] (Intel Corporation)
R3 DptfDevGen; C:\WINDOWS\System32\drivers\DptfDevGen.sys [49888 2013-10-27] (Intel Corporation)
R3 DptfDevProc; C:\WINDOWS\System32\drivers\DptfDevProc.sys [69344 2013-10-27] (Intel Corporation)
R3 DptfManager; C:\WINDOWS\System32\drivers\DptfManager.sys [163552 2013-10-27] (Intel Corporation)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R3 GPIOCLV; C:\WINDOWS\System32\drivers\GPIOCLV.sys [22016 2013-10-27] (Intel Corporation)
R3 igdperf32; C:\WINDOWS\system32\DRIVERS\igdperf32.sys [4096 2013-11-20] ()
R3 imx175; C:\WINDOWS\System32\drivers\imx175.sys [58880 2013-10-27] (Intel Corporation)
R0 inteli2c; C:\WINDOWS\System32\drivers\inteli2c.sys [48880 2013-10-27] (Intel Corporation)
R3 IntelSST; C:\WINDOWS\system32\drivers\isstrtc.sys [241152 2013-10-27] (Intel(R) Corporation)
R0 Lm3554; C:\WINDOWS\System32\drivers\lm3554.sys [34816 2013-10-27] (Intel Corporation)
R0 LNWIPC; C:\WINDOWS\System32\drivers\LNWIPC.sys [25840 2013-10-27] (Intel Corporation)
R0 MBI; C:\WINDOWS\System32\drivers\MBI.sys [16112 2013-10-27] (Intel Corporation)
R3 MSICReg; C:\WINDOWS\System32\drivers\MSICReg.sys [17408 2013-10-27] (Intel Corporation)
R3 ov2720; C:\WINDOWS\System32\drivers\ov2720.sys [46592 2013-10-27] (Intel Corporation)
R3 rtii2sac; C:\WINDOWS\system32\DRIVERS\rtii2sac.sys [97792 2013-10-27] (Realtek Semiconductor Corp.)
R3 SensorsHIDClassDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
R3 spi; C:\WINDOWS\System32\drivers\spi.sys [46592 2013-10-27] (Intel Corporation)
R3 Uart16550pc; C:\WINDOWS\System32\drivers\Uart16550pc.sys [40960 2013-10-27] (Intel Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [84800 2015-02-04] (Microsoft Corporation)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
R3 WUDFSensorLP; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-10-29] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-05-31 11:49 - 2015-05-31 11:50 - 00013330 _____ () C:\Users\MChristine\Desktop\FRST.txt
2015-05-31 11:43 - 2015-05-31 11:43 - 01147392 _____ (Farbar) C:\Users\MChristine\Downloads\FRST (2).exe
2015-05-31 11:42 - 2015-05-31 11:49 - 00000000 ____D () C:\FRST
2015-05-31 11:41 - 2015-05-31 11:42 - 01147392 _____ (Farbar) C:\Users\MChristine\Downloads\FRST (1).exe
2015-05-31 11:41 - 2015-05-31 11:41 - 01147392 _____ (Farbar) C:\Users\MChristine\Desktop\FRST.exe
2015-05-31 11:14 - 2015-05-31 11:16 - 00000000 ____D () C:\AdwCleaner
2015-05-31 11:13 - 2015-05-31 11:13 - 02223104 _____ () C:\Users\MChristine\Downloads\AdwCleaner-4.205.exe
2015-05-29 21:26 - 2015-05-29 21:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster
2015-05-29 21:25 - 2015-05-31 09:41 - 00000000 ____D () C:\Program Files\WinThruster
2015-05-29 21:24 - 2015-05-29 21:25 - 03894696 _____ (solvusoft Corporation ) C:\Users\MChristine\Downloads\Setup_WinThruster_2015.exe
2015-05-29 21:06 - 2015-05-31 11:44 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-27 15:47 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-05-27 15:46 - 2015-05-27 15:47 - 00037331 _____ () C:\WINDOWS\DirectX.log
2015-05-26 11:47 - 2015-05-26 11:47 - 00001139 _____ () C:\Users\Public\Desktop\Myfujifilm.fr.lnk
2015-05-26 11:47 - 2015-05-26 11:47 - 00000000 ____D () C:\Users\MChristine\AppData\Local\MyFujifilm
2015-05-26 11:47 - 2015-05-26 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm
2015-05-26 11:44 - 2015-05-26 11:44 - 00000000 ____D () C:\ProgramData\MyFujifilm
2015-05-13 09:49 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 05:52 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-13 05:52 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-13 05:52 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-13 05:52 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-13 05:52 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-13 05:52 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-13 05:52 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-13 05:52 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-13 05:52 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-13 05:52 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-13 05:52 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-13 05:52 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-13 05:52 - 2015-04-21 17:26 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-13 05:52 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-13 05:52 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-13 05:52 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-13 05:52 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-13 05:52 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-13 05:52 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-13 05:52 - 2015-04-14 00:43 - 03543552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-13 05:52 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-13 05:52 - 2015-04-10 02:23 - 01088512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-13 05:51 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-13 05:51 - 2015-03-30 07:51 - 00478776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-13 05:51 - 2015-03-27 04:20 - 01117696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-13 05:48 - 2015-04-09 00:59 - 00333624 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-05-31 11:37 - 2013-11-29 11:16 - 01677710 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-31 11:28 - 2014-04-23 09:00 - 00001082 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-31 11:28 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-31 11:25 - 2013-11-29 11:13 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-31 11:24 - 2013-08-22 09:23 - 00297557 _____ () C:\WINDOWS\setupact.log
2015-05-31 11:19 - 2014-06-30 23:26 - 00000000 ___DO () C:\Users\MChristine\SkyDrive
2015-05-31 11:18 - 2014-04-23 09:00 - 00001078 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-31 11:18 - 2013-08-22 09:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-31 11:17 - 2013-08-22 08:13 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-31 09:46 - 2013-11-29 11:05 - 00000000 ____D () C:\Users\MChristine
2015-05-29 21:34 - 2014-04-23 08:56 - 00000000 ____D () C:\Users\MChristine\AppData\Local\Adobe
2015-05-29 17:21 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-05-29 15:05 - 2013-09-29 20:55 - 00015018 _____ () C:\WINDOWS\PFRO.log
2015-05-28 13:42 - 2014-12-16 19:43 - 00024064 ___SH () C:\Users\MChristine\Desktop\Thumbs.db
2015-05-27 15:36 - 2015-01-30 19:28 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-05-26 16:14 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-26 09:34 - 2014-04-24 12:44 - 00002154 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-23 09:11 - 2015-01-31 16:27 - 00000000 ___RD () C:\Users\MChristine\OneDrive
2015-05-16 15:35 - 2013-08-22 10:17 - 00000000 ____D () C:\WINDOWS\rescache
2015-05-15 09:03 - 2014-04-23 08:59 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 20:08 - 2013-09-30 05:51 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-14 20:08 - 2013-08-22 09:22 - 00486304 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-13 09:51 - 2012-07-26 08:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-13 09:49 - 2013-08-22 08:21 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-05 19:59 - 2013-08-22 10:18 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-05-05 19:59 - 2013-08-22 10:18 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2014-11-07 04:26 - 2014-11-07 04:26 - 0000000 _____ () C:\Users\MChristine\AppData\Local\{39194867-7257-4065-97C8-8D3F2CE6DC38}
Files to move or delete:
====================
C:\Users\MChristine\cnmss Canon MP500 Series Printer (Local).dll
Some files in TEMP:
====================
C:\Users\MChristine\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\MChristine\AppData\Local\Temp\jre-8u40-windows-au.exe
C:\Users\MChristine\AppData\Local\Temp\Quarantine.exe
C:\Users\MChristine\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-05-29 17:20
==================== End of log ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by MChristine at 2015-05-31 11:51:17
Running from C:\Users\MChristine\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrateur (S-1-5-21-3333294294-3057427553-2620708965-500 - Administrator - Disabled)
alain_000 (S-1-5-21-3333294294-3057427553-2620708965-1006 - Limited - Enabled) => C:\Users\alain_000
HomeGroupUser$ (S-1-5-21-3333294294-3057427553-2620708965-1005 - Limited - Enabled)
Invité (S-1-5-21-3333294294-3057427553-2620708965-501 - Limited - Disabled)
MChristine (S-1-5-21-3333294294-3057427553-2620708965-1001 - Administrator - Enabled) => C:\Users\MChristine
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
ASUS WebStorage Sync Agent (HKLM\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
Intel(R) Dynamic Platform & Thermal Framework (HKLM\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.0.0.0335 - Intel Corporation)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.14.3.1082 - Intel Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
LiveUpdate (HKLM\...\InstallShield_{D03557FD-202C-43BD-940E-0602AD7ECEF6}) (Version: 2.1.4.14 - ASUSTeK Computer Inc.)
LiveUpdate (Version: 2.1.4.14 - ASUSTeK Computer Inc.) Hidden
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft Office Famille et Etudiant 2013 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 15.0.4719.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\...\OneDriveSetup.exe) (Version: 17.3.5860.0512 - Microsoft Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4719.1002 - Microsoft Corporation) Hidden
Sonos Controller (HKLM\...\{7BBA9BF8-05DF-47D8-8880-82A9B99505B9}) (Version: 22.0.64240 - Sonos, Inc.)
Wbridge5 4.9 (HKLM\...\{8374A9F4-1F0B-4839-8E44-DDD92C105711}_is1) (Version: - Yves Costel)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3333294294-3057427553-2620708965-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\MChristine\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncApi.dll (Microsoft Corporation)
==================== Restore Points =========================
27-05-2015 15:46:39 DirectX est installé
29-05-2015 21:28:58 WinThruster ven., mai 29, 15 21:28
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 08:13 - 2013-08-22 08:13 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {059C60A9-2872-4DF4-BA93-7E46BABD2B18} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-29] (Adobe Systems Incorporated)
Task: {0C05A2FE-0923-44AB-B746-726179B60009} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: {440655D8-BE26-47D6-9093-5B116A50A0D2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {57BC4CA7-0FF9-4DCC-9377-73099E4F629F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-04-23] (Google Inc.)
Task: {6B516D11-C0E7-42E0-88BC-031E675E1F81} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-05-26] (Microsoft Corporation)
Task: {7B503275-85E4-4EE6-A200-8646544D02CC} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {7CA398E4-E2CC-41EC-8C32-9AB3513489ED} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-21] (Microsoft Corporation)
Task: {8080E8D2-BC1E-4907-972F-08187A400DEC} - System32\Tasks\ASUSLiveUpdate => C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe [2013-10-27] (AsusTek Computer Inc.)
Task: {878139B8-BF81-4BE6-8C3B-C7B9E21312C0} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {89C52519-AA5D-48D9-B772-E44D0DEE8792} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\WINDOWS\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {9DD81FF7-D85B-4A96-B427-A14C7C4D76C5} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3333294294-3057427553-2620708965-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {CBAB9E97-9524-4C44-9B58-5803951E1FF6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-04-14] (Microsoft Corporation)
Task: {E3063408-2B5D-4D3A-B245-3F350404707E} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PC-STPÉE-MChristine pc-stpée => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
Task: {E49ABD94-4388-4559-B7CD-B36306FEFA04} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {ECB13BC1-F19C-4203-9650-2DE181939286} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2012-12-19 08:10 - 2012-12-19 08:10 - 00072192 _____ () C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
2013-10-27 11:06 - 2013-10-27 11:06 - 00073728 _____ () C:\Program Files\ASUS\LiveUpdate\smbios.dll
2015-01-30 19:28 - 2014-05-20 03:11 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-05-26 09:33 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-26 09:33 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\Users\MChristine\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\MChristine\SkyDrive.old:ms-properties
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\gpioclv.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\inteli2c.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lnwipc.sys => ""="Driver"
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3333294294-3057427553-2620708965-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\ASUS\ME400-Wallpaper2.png
DNS Servers: 192.168.0.254
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "ApnTBMon"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{FC3BBCFB-CFF1-49C1-AFE8-8055DC545357}C:\windows\system32\runtimebroker.exe] => (Block) C:\windows\system32\runtimebroker.exe
FirewallRules: [TCP Query User{EB738204-9E85-4B0B-9B50-049C4054648F}C:\windows\system32\runtimebroker.exe] => (Block) C:\windows\system32\runtimebroker.exe
FirewallRules: [UDP Query User{D0F9A1F1-6903-4033-A667-6DB7B3D9541D}C:\program files\sonos\sonos.exe] => (Allow) C:\program files\sonos\sonos.exe
FirewallRules: [TCP Query User{65C846BD-D964-41E1-984C-F2F3F83CE421}C:\program files\sonos\sonos.exe] => (Allow) C:\program files\sonos\sonos.exe
FirewallRules: [TCP Query User{21FFAD4D-D553-4040-BA8E-6F2757B7A5F9}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe
FirewallRules: [UDP Query User{2FE2BD98-707A-4F35-BC1A-EF57EFF5C0BA}C:\program files\common files\microsoft shared\ink\inputpersonalization.exe] => (Block) C:\program files\common files\microsoft shared\ink\inputpersonalization.exe
FirewallRules: [{72C54CBD-8D35-4729-B654-68A4D00209D5}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{19E76A34-43D7-4C8E-B95F-3739BCF32399}] => (Allow) C:\Users\MChristine\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{5717F396-9EE2-43F9-A41E-B6C27298E090}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:31:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/29/2015 09:28:58 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l'interrogation de l'interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d'instance du rédacteur: {8f84711b-85d4-438d-b254-c2857c5fbb53}
System errors:
=============
Error: (05/31/2015 11:17:51 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:51 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:49 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT)
Description: Le module d'extensibilité WLAN s'est arrêté de façon inattendue.
Chemin d'accès du module : C:\WINDOWS\System32\bcmihvsrv.dll
Error: (05/31/2015 11:17:23 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d'entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l'erreur suivante :
%%1056
Error: (05/31/2015 11:16:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Spouleur d'impression s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Démarrer en clic Microsoft Office s'est terminé de manière inattendue. Ceci s'est produit 2 fois. L'action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s'est terminé de manière inattendue. Ceci s'est produit 1 fois. L'action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.
Error: (05/31/2015 11:16:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Dynamic Platform & Thermal Framework Critical Service Application s'est terminé de façon inattendue pour la 1ème fois.
Microsoft Office:
=========================
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 11:18:19 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/31/2015 09:47:10 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/30/2015 09:09:12 AM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceServiceMainThread: NotifyServiceStatusRunning() failed.
Error: (05/29/2015 09:37:03 PM) (Source: DptfPolicyConfigTDPService) (EventID: 1) (User: )
Description: DptfPolicyConfigTDPServiceNotifyServiceStatusRunning: DeviceIoControl() failed.Last error = [0x00000001]
Error: (05/29/2015 09:31:03 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161
Error: (05/29/2015 09:28:58 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Accès refusé.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d'instance du rédacteur: {8f84711b-85d4-438d-b254-c2857c5fbb53}
==================== Memory info ===========================
Processor: Intel(R) Atom(TM) CPU Z2760 @ 1.80GHz
Percentage of memory in use: 57%
Total physical RAM: 1963.67 MB
Available physical RAM: 833.56 MB
Total Pagefile: 3371.67 MB
Available Pagefile: 2157.01 MB
Total Virtual: 2047.88 MB
Available Virtual: 1886.88 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:49.47 GB) (Free:23.57 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 58.2 GB) (Disk ID: 1CDAA641)
Partition: GPT Partition Type.
==================== End of log ============================
Users shortcut scan result (x86) Version: 29-05-2015
Ran by MChristine at 2015-05-31 11:52:46
Running from C:\Users\MChristine\Desktop
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\alain_000\Links\Desktop.lnk -> C:\Users\alain_000\Desktop ()
Shortcut: C:\Users\alain_000\Links\Downloads.lnk -> C:\Users\alain_000\Downloads ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\alain_000\Documents ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\alain_000\Pictures ()
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\alain_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Choice.lnk -> C:\Windows\BrowserChoice\html\default.html ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camera.lnk -> C:\Windows\Camera\Camera.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk -> C:\Windows\FileManager\FileManager.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotosApp.lnk -> C:\Windows\FileManager\PhotosApp.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Store.lnk -> C:\Windows\WinStore\WinStore.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster\Désinstaller WinThruster.lnk -> C:\Program Files\WinThruster\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster\WinThruster.lnk -> C:\Program Files\WinThruster\WinThruster.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Aide de Wbridge5.lnk -> C:\wbridge5\wbridge5.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Désinstaller Wbridge5.lnk -> C:\wbridge5\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Lisez_moi.lnk -> C:\wbridge5\Lisez_moi.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wbridge5\Wbridge5.lnk -> C:\wbridge5\Wbridge5.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonos\Sonos.lnk -> C:\Program Files\Sonos\Sonos.exe (Sonos, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm\Désinstaller Photogénie Myfujifilm.lnk -> C:\Program Files\MyFujifilm\Photogenie\unins000.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photogénie Myfujifilm\Photogénie Myfujifilm 5.1.lnk -> C:\Program Files\MyFujifilm\Photogenie\Loader.exe (No File)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Access 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\msaccess.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Envoyer à OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\excel.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenote.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\POWERPNT.EXE (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Publisher 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\mspub.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\winword.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outils Office 2013\Centre de téléchargement Office 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\msouc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outils Office 2013\Préférences linguistiques d'Office 2013.lnk -> C:\Program Files\Microsoft Office 15\root\office15\setlang.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configure Java.lnk -> C:\Program Files\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Configurer Java.lnk -> C:\Program Files\Java\jre1.8.0_40\bin\javacpl.exe (Oracle Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage Sync Agent\Uninstall.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\uninst.exe (ASUS Cloud Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\WebStorage Sync Agent\WebStorage Sync Agent.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\1.1.5.111\AsusWSPanel.exe (ASUS Cloud Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS\LiveUpdate\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources.lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk -> C:\Users\MChristine\Documents ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk -> C:\Users\MChristine\Pictures ()
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\Links\Desktop.lnk -> C:\Users\MChristine\Desktop ()
Shortcut: C:\Users\MChristine\Links\Downloads.lnk -> C:\Users\MChristine\Downloads ()
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Windows.Defender.lnk -> C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\SendTo\Desk 365.lnk -> C:\Program Files\Desk 365\desk365.exe (No File)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Windows\SendTo\Transfert de fichiers Bluetooth.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\MChristine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\ConnectedSearch\History\act_1349797433_1912447633065879305_fr-fr.lnk -> C:\Users\MChristine\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\890aa5492eb3954f\120712-0049\People\AddressBook\26000279_596979a14341e.appcontent-ms (No File)
Shortcut: C:\Users\MChristine\AppData\Local\Microsoft\Windows\ConnectedSearch\History\act_1349797433_32875757541552436184_fr-fr.lnk -> C:\Users\MChristine\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\Indexed\LiveComm\890aa5492eb3954f\120712-0049\People\AddressBook\26000195_313a99077fdd43.appcontent-ms (No File)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\LiveUpdate.lnk -> C:\Program Files\ASUS\LiveUpdate\LiveUpdate.exe (AsusTek Computer Inc.)
Shortcut: C:\Users\Public\Desktop\Myfujifilm.fr.lnk -> C:\Program Files\MyFujifilm\Photogenie\Loader.exe (No File)
Shortcut: C:\Users\Public\Desktop\Sonos.lnk -> C:\Program Files\Sonos\Sonos.exe (Sonos, Inc.)
Shortcut: C:\Users\Public\Desktop\Wbridge5.lnk -> C:\wbridge5\Wbridge5.exe ()
Shortcut: C:\Users\Public\Desktop\WebStorage.lnk -> C:\Program Files\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe (ASUS Cloud Corporation)
ShortcutWithArgument: C:\Users\alain_000\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - Network Connections.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> ::{7007ACC7-3202-11D1-AAD2-00805FC1270E}
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\06 - System.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.System
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\08 - Power Options.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.PowerOptions
ShortcutWithArgument: C:\Users\alain_000\AppData\Local\Microsoft\Windows\WinX\Group3\10 - Programs and Features.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.ProgramsAnd
