Académique Documents
Professionnel Documents
Culture Documents
01
Exécuté par Yqcin (administrateur) sur YACINE (23-06-2017 02:23:24)
Exécuté depuis C:\Users\Yqcin\Downloads
Profils chargés: Yqcin (Profils disponibles: Yqcin)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool:
http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-
recovery-scan-tool/
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le
fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI
Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files
(x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
() C:\ProgramData\e-express\OnlineUpdate\ouc.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
() C:\Program Files (x86)\Tigo Internet\BackgroundService\ServiceManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\setup\instup.exe
(Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files (x86)\Common Files\5b4b2b13-bc3c-4690-a9ac-
2f28c7e74c15\updater.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(BitTorrent Inc.) C:\Users\Yqcin\AppData\Roaming\uTorrent\uTorrent.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\Tigo Internet\BackgroundService\ModemListener.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugincontainer.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\2\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\3\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\5\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\6\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\7\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\8\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\7\Plugin.exe
() C:\ProgramData\5b4b2b13-bc3c-4690-a9ac-2f28c7e74c15\plugins\3\Plugin.exe
(Adobe Systems, Inc.)
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_26_0_0_131.exe
(Adobe Systems, Inc.)
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_26_0_0_131.exe
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du
Registre, il sera supprimé ou restauré à la valeur par défaut.)
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-
a.akamaihd.net/hm?
eq=U0EeCFZVBB8SRggQdwxdVl9IERgRI1paTA1BQAMOeV0NUhRGEANGdQ4KB1pBQwwFIk0FA1ADB0VXfVBd
FElXTwhBMlZPElwBVFlQJQ==
HKU\S-1-5-21-3882102349-378378057-2867625824-1001\Software\Microsoft\Internet
Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/hm?
eq=U0EeCFZVBB8SRggQdwxdVl9IERgRI1paTA1BQAMOeV0NUhRGEANGdQ4KB1pBQwwFIk0FA1ADB0VXfVBd
FElXTwhBMlZPElwBVFlQJQ==
HKU\S-1-5-21-3882102349-378378057-2867625824-1001\Software\Microsoft\Internet
Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp
HKU\S-1-5-21-3882102349-378378057-2867625824-1001\Software\Microsoft\Internet
Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxp://searchinterneat-a.akamaihd.net/s?
eq=U0EeE1xZE1oZB1ZEfQoPVFxGRwwTbQtbAltcFQVCdhQBBQxCDAISdlwNVgsXQgVBeR9aFQQTSEcFME0F
CFwEURNNfVtKDk4CREVWLEpd&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
hxxp://searchinterneat-a.akamaihd.net/s?
eq=U0EeE1xZE1oZB1ZEfQoPVFxGRwwTbQtbAltcFQVCdhQBBQxCDAISdlwNVgsXQgVBeR9aFQQTSEcFME0F
CFwEURNNfVtKDk4CREVWLEpd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3882102349-378378057-2867625824-1001 -> DefaultScope
{6A1806CD-94D4-4689 URL = hxxp://searchinterneat-a.akamaihd.net/s?
eq=U0EeE1xZE1oZB1ZEfQoPVFxGRwwTbQtbAltcFQVCdhQBBQxCDAISdlwNVgsXQgVBeR9aFQQTSEcFME0F
CFwEURNNfVtKDk4CREVWLEpd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3882102349-378378057-2867625824-1001 -> OldSearch URL =
hxxp://searchinterneat-a.akamaihd.net/s?
eq=U0EeE1xZE1oZB1ZEfQoPVFxGRwwTbQtbAltcFQVCdhQBBQxCDAISdlwNVgsXQgVBeR9aFQQTSEcFME0F
CFwEURNNfVtKDk4CREVWLEpd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3882102349-378378057-2867625824-1001 -> {6A1806CD-94D4-
4689 URL = hxxp://searchinterneat-a.akamaihd.net/s?
eq=U0EeE1xZE1oZB1ZEfQoPVFxGRwwTbQtbAltcFQVCdhQBBQxCDAISdlwNVgsXQgVBeR9aFQQTSEcFME0F
CFwEURNNfVtKDk4CREVWLEpd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3882102349-378378057-2867625824-1001 -> {6A1806CD-94D4-
4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program
Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program
Files\Classic Shell\ClassicExplorer64.dll [2013-10-20] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program
Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-08-05] (AVAST Software)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
-> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
[2013-11-20] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} ->
C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft
Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-
ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-
01] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program
Files\Classic Shell\ClassicIEDLL_64.dll [2013-10-20] (IvoSoft)
BHO-x32: Aide pour le lien d'Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-
784B7D6BE0B3} -> C:\Program Files (x86)\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems
Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->
C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01]
(Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program
Files\Classic Shell\ClassicExplorer32.dll [2013-10-20] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} ->
C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-08-05] (AVAST Software)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} ->
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-
20] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} ->
C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01]
(Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-
ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
[2012-10-01] (Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program
Files\Classic Shell\ClassicIEDLL_32.dll [2013-10-20] (IvoSoft)
BHO-x32: browse pulse -> {ed8e593d-1965-4e45-9d55-d56162dcde14} -> C:\Program Files
(x86)\browse pulse\Extensions\ed8e593d-1965-4e45-9d55-d56162dcde14.dll [2015-04-07]
()
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} -
C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20] (IvoSoft)
Toolbar: HKLM - Pas de nom - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - Pas de
fichier
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} -
C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20] (IvoSoft)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft
Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program
Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2013-11-20]
(Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2013-11-
20] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files
(x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath:
C:\Users\Yqcin\AppData\Roaming\Mozilla\Firefox\Profiles\jswwc0b6.default [2017-06-
23]
FF user.js: detected! =>
C:\Users\Yqcin\AppData\Roaming\Mozilla\Firefox\Profiles\jswwc0b6.default\user.js
[2017-06-23]
FF NewTab: Mozilla\Firefox\Profiles\jswwc0b6.default -> hxxp://search.yahoo.com/?
fr=hp-ddc-bd-tab&type=bl-bfr-is__alt__ddc_dsssyctab_bd_com
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\jswwc0b6.default -> Yahoo Search!
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\jswwc0b6.default -> Yahoo Search!
FF Homepage: Mozilla\Firefox\Profiles\jswwc0b6.default -> hxxp://search.yahoo.com/?
fr=hp-ddc-bd&type=bl-bfr-is__alt__ddc_dsssyc_bd_com
FF Keyword.URL: Mozilla\Firefox\Profiles\jswwc0b6.default ->
hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bfr-
is__alt__ddc_dss_bd_com&p={searchTerms}
FF Extension: (browse pulse) -
C:\Users\Yqcin\AppData\Roaming\Mozilla\Firefox\Profiles\jswwc0b6.default\Extensions
\{0f93dffa-0882-4ab1-9fb6-767b5032dcf7}.xpi [2015-04-07] [non signé]
FF Extension: (DownloadHelper) -
C:\Users\Yqcin\AppData\Roaming\Mozilla\Firefox\Profiles\jswwc0b6.default\Extensions
\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2015-07-14]
FF SearchPlugin:
C:\Users\Yqcin\AppData\Roaming\Mozilla\Firefox\Profiles\jswwc0b6.default\searchplug
ins\default.xml [2017-06-23]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST
Software\Avast\WebRep\FF
FF Extension: (avast! Online Security) - C:\Program Files\AVAST
Software\Avast\WebRep\FF [2014-08-05] [non signé]
FF Plugin: @adobe.com/FlashPlayer ->
C:\Windows\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-23] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 ->
C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer ->
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-23] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files
(x86)\Google\Picasa3\npPicasa3.dll [2011-04-13] (Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla
Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 ->
C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files
(x86)\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files
(x86)\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla
firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program
Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-05]
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la
vérification.)