Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Exécuté par Ophélie (25-03-2017 15:39:03)
Exécuté depuis C:\Users\mxlle\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-06 14:51:01)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-434118492-3111314897-793104727-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-434118492-3111314897-793104727-503 - Limited - Disabled)
Invité (S-1-5-21-434118492-3111314897-793104727-501 - Limited - Disabled)
Ophélie (S-1-5-21-434118492-3111314897-793104727-1001 - Administrator - Enabled) => C:\Users\mxlle
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0609.0 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Dashlane (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Dashlane) (Version: 4.6.8.26847 - Dashlane SAS)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
I-Doser Free (HKLM-x32\...\I-Doser) (Version: 5.1 - I-Doser.com)
I-Doser v4 (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\I-Doser v4) (Version: - )
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Lecture à distance PS4 (HKLM-x32\...\{0E6F9CB6-D048-43A6-8475-D80657DC6976}) (Version: 1.5.0.08251 - Sony Interactive Entertainment Inc.)
LibreOffice 5.0.6.3 (HKLM-x32\...\{900D9036-4EDA-45EC-A095-E8AFB25D807A}) (Version: 5.0.6.3 - The Document Foundation)
Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.7870.2024 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 52.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 fr)) (Version: 52.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1 - Mozilla)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Package de pilotes Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
Panneau de configuration NVIDIA 369.09 (Version: 369.09 - NVIDIA Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Plex Media Server (HKLM-x32\...\{d55f2773-2fc4-4a79-bf44-125c7afff11f}) (Version: 1.4.4.3495 - Plex, Inc.)
Plex Media Server (x32 Version: 1.4.3495 - Plex, Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Samsung Content Viewer (HKLM-x32\...\InstallShield_{980DDB3E-8957-4750-98EB-5D04F61CCEDC}) (Version: 1.0.2 - Samsung)
Samsung Content Viewer (x32 Version: 1.0.2 - Samsung) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Skype⢠7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Spotify) (Version: 1.0.48.103.g15edf1ec - Spotify AB)
Stopping Plex (x32 Version: 1.4.3495 - Plex, Inc.) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com)
Unity Web Player (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\UnityWebPlayer) (Version: 5.3.3f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0900DC2C-4194-4F29-B0FF-200B97958232} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation)
Task: {0A2AC167-00A6-4E17-9CA7-76E01F06D855} - System32\Tasks\Plotekaresagh Cloud => C:\Program Files (x86)\Gjadom\xnuhock.exe [2017-03-24] (Glarysoft Ltd)
Task: {16AE6E9A-3AC7-477B-AEF0-A398CB116007} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation)
Task: {1C4179C8-58E2-411A-8BC7-66E09116E397} - System32\Tasks\Uninstaller_SkipUac_mxlle => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit)
Task: {1E8B7927-EAA8-4F59-9BC8-BAF498FCAFA9} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-05-29] (AVAST Software)
Task: {29885C69-73F1-4BAB-A101-43BA31686D6C} - System32\Tasks\Driver Booster SkipUAC (Ophélie) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe [2017-01-10] (IObit)
Task: {2AD0F49C-F96A-46FF-ACF6-297CF88778FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {2D443CEA-EA31-4D09-A9D6-C2CFC6CF1551} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {44BA74A7-AA97-4E0B-BE7A-DBCCD5BD594A} - System32\Tasks\{9308256D-E05D-48C2-B60D-38F508598CFA} => pcalua.exe -a "C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\utility\uninst.exe"
Task: {44F10C0D-532E-44C5-85F4-67241BFF9B2F} - \ASC10_PerformanceMonitor -> Pas de fichier <==== ATTENTION
Task: {45799875-E14F-45C7-A5DE-819BF1BB0849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor)
Task: {458B91CC-6689-4CC1-9C16-4247FA1FA862} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {5AA6F494-CE60-4131-B60F-F2A1CEBF77AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.)
Task: {5CADAA13-38C9-4F4B-AF9F-BE132112B5DD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2017-03-14] (Microsoft Corporation)
Task: {5DC1062D-A657-4D16-8A56-9F0A165FEBD8} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {65D4ABE2-B140-48E1-8A1B-30A96557021F} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {6A8100B8-B3A6-49DF-A90B-4FB2E478B31B} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe [2016-12-14] (IObit)
Task: {6DD12DDF-9002-4538-A313-F30C2CA50E61} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
Task: {6F5CD6B1-6E20-4621-8B79-FCF06789BD1E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
Task: {75C61289-74A8-4E45-AEEB-95859938FD17} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-15] (Adobe Systems Incorporated)
Task: {7A75F6BA-82F6-4EB3-9679-619DFB161E64} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor)
Task: {83F9BF04-B9B0-4235-904C-2BD57B336417} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {85CBE493-C55C-41B6-9F68-700C5E290F85} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {98A26B73-1266-4FE8-B4D4-D6EE36A7D38F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {9BA659C0-D74A-49B7-8F6C-C8A01D349DF7} - System32\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {A2D392B3-7120-42B2-AF7A-F70E1A3F24F9} - System32\Tasks\ASC9_SkipUac_Ophélie => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {B6C7CCCB-A648-414D-AF54-4648CE14709A} - System32\Tasks\R@1n-KMS\Windows64Core => wmic
Task: {BE0FD9D6-142D-4BEA-B3BD-78A6A6E79385} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {BFEEA446-BC30-4F30-A0E7-AF02FEE070E3} - System32\Tasks\Driver Booster SkipUAC (mxlle) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2017-01-04] (IObit)
Task: {C04B5906-E559-416D-8361-9609BCD1369B} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {C975F99A-3666-4992-B942-1DAF93EB05F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.)
Task: {CEAAD662-E7E6-4751-8AC5-35C6FF83E55A} - System32\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {D8807569-08BE-4AFD-9408-5F13E7F9BEC5} - \ASC10_SkipUac_Ophélie -> Pas de fichier <==== ATTENTION
Task: {E16C9641-CD7F-4195-94C8-909FAD0E1CA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {F9A3332B-A1BA-4A29-BB5A-7F24870C0D62} - System32\Tasks\Uninstaller_SkipUac_Ophélie => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit)
Task: {FCEE187C-F5EA-496E-97A4-1111102A61B5} - System32\Tasks\ASC9_SkipUac_mxlle => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Chromium.lnk -> C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h3ozltpbl1au,cbabf931-c38b-4add-8fd7-e9fef2ce1d50,
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-06 15:20 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-29 17:20 - 2016-05-29 17:20 - 00592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-11-06 21:52 - 2016-11-06 21:52 - 00959168 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll
2016-10-06 16:08 - 2016-10-06 16:08 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 22:27 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 22:27 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 22:28 - 2017-03-04 07:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 22:28 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-30 21:57 - 2016-11-30 21:57 - 00401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-21 19:26 - 2017-03-17 16:48 - 00544208 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-03-02 08:43 - 2017-03-02 08:44 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-03-02 08:43 - 2017-03-02 08:43 - 21149696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-03-02 08:43 - 2017-03-02 08:43 - 05380096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2016-06-03 18:41 - 2016-06-03 18:42 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-03-02 08:43 - 2017-03-02 08:44 - 00387584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-03-02 08:43 - 2017-03-02 08:44 - 01047552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-03-05 22:00 - 2016-03-05 22:01 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2017-03-25 07:26 - 2017-03-25 07:26 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\HxMail.exe
2017-03-25 07:26 - 2017-03-25 07:26 - 13327560 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-02-12 03:13 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-02-12 03:13 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-02-12 03:13 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2017-03-15 14:18 - 2017-03-15 14:18 - 00083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2015-12-03 17:01 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00338896 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00441808 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00464848 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 62708176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00285648 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 06183888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 07271888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 13684176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 02215888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00334288 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.8.26847.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
2017-01-30 12:52 - 2017-01-30 12:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2016-05-29 17:20 - 2016-05-29 17:20 - 38907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2016-08-24 07:45 - 2016-08-24 07:45 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-07-07 01:32 - 2016-03-16 08:24 - 00877056 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\platforms\qwindows.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00308928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\GarbageGather.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00110272 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FHProcess.dll
2016-07-07 01:32 - 2016-03-16 08:24 - 00013824 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\fsclog.dll
2016-07-07 01:31 - 2016-04-26 00:27 - 00174784 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\BigFileGather.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00088256 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\EnumVolumes.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00168128 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FragAnalysis.dll
2016-07-07 01:32 - 2016-03-25 00:00 - 00024064 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qico.dll
2016-07-07 01:32 - 2016-03-25 00:00 - 00023552 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qgif.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-08-24 07:24 - 2016-08-24 07:24 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-11-06 21:52 - 2016-11-06 21:52 - 00679624 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\ClientTelemetry.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100sexlinks.com -> 100sexlinks.com
Il y a 4788 plus de sites.
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-07-10 12:04 - 2017-03-25 13:39 - 00007748 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com 92.53.119.169 beacon.krxd.net
92.53.119.169 beacon.walmart.com
92.53.119.169 c.amazon-adsystem.com
92.53.119.169 c.vepxl1.net
92.53.119.169 c2.taboola.com
92.53.119.169 cdn.3lift.com
92.53.119.169 cdn.admixer.net
92.53.119.169 cdn.brcdn.com
92.53.119.169 cdn.cxense.com
92.53.119.169 cdn.interactivemedia.ne
92.53.119.169 cdn.krxd.net
92.53.119.169 cdn.lenmit.com
92.53.119.169 cdn.livefyre.com
92.53.119.169 cdn.m-pathy.com
92.53.119.169 cdn.mathjax.org
92.53.119.169 cdn.mxpnl.com
92.53.119.169 cdn.onthe.io
92.53.119.169 cdn.optimizely.com
92.53.119.169 cdn.prom.st
92.53.119.169 cdn.pushwoosh.com
92.53.119.169 cdn.scarabresearch.com
92.53.119.169 cdn.taboola.com
92.53.119.169 cdn.taplytics.com
92.53.119.169 cdn.tt.omtrdc.net
92.53.119.169 cdn.unid.go.com
92.53.119.169 cdn1.graphiq.com
92.53.119.169 cdn3.optimizely.com
92.53.119.169 cdnjs.cloudflare.com
92.53.119.169 cdnssl.clicktale.net
92.53.119.169 comet.yahoo.com
92.53.119.169 consent.truste.com
92.53.119.169 content.adriver.ru
92.53.119.169 contextual.media.net
92.53.119.169 cstatic.weborama.fr
92.53.119.169 d134l0cdryxgwa.cloudfront.net
92.53.119.169 d2oh4tlt9mrke9.cloudfront.net
92.53.119.169 dpm.demdex.net
92.53.119.169 e.monetate.net
92.53.119.169 edge.quantserve.com
92.53.119.169 edx-uk.s3ae.com
92.53.119.169 eu-services.babator.com
92.53.119.169 fc.yahoo.com
92.53.119.169 gaua.hit.gemius.pl
92.53.119.169 gde-default.hit.gemius.pl
92.53.119.169 go.flx1.com
92.53.119.169 googleadservices.com
92.53.119.169 hpr.outbrain.com
92.53.119.169 i.cricketcb.com
92.53.119.169 i.tfag.de
92.53.119.169 ib.adnxs.com
92.53.119.169 imagesrv.adition.com
92.53.119.169 img.imgsmail.ru
92.53.119.169 img7.auto.ria.com
92.53.119.169 j.ophan.co.uk
92.53.119.169 js-agent.newrelic.com
92.53.119.169 js-sec.indexww.com
92.53.119.169 js.revsci.net
92.53.119.169 js.ui-portal.de
92.53.119.169 kamradamnaradost.ru
92.53.119.169 kpmediagaua.hit.gemius.pl
92.53.119.169 level1cdn.com
92.53.119.169 mc.yandex.ru
92.53.119.169 ml314.com
92.53.119.169 mtrx.go.sonobi.com
92.53.119.169 ninja.onap.io
92.53.119.169 o.aolcdn.com
92.53.119.169 odb.outbrain.com
92.53.119.169 ok-bar.love.mail.ru
92.53.119.169 ok-portal.mail.ru
92.53.119.169 optimize-stats.voxmedia.com
92.53.119.169 p.d.0fmm.com
92.53.119.169 p.t-online.de
92.53.119.169 pagead2.googlesyndication.com
92.53.119.169 peermapcontent.affino.com
92.53.119.169 pixel.vihub.ru
92.53.119.169 psma02.com
92.53.119.169 px.adhigh.net
92.53.119.169 qs.ioam.de
92.53.119.169 qsc.ec.quoracdn.net
92.53.119.169 rma-api.gravity.com
92.53.119.169 rtax.criteo.com
92.53.119.169 rum-static.pingdom.net
92.53.119.169 s1.olx.ua
92.53.119.169 s290.mxcdn.net
92.53.119.169 s7.addthis.com
92.53.119.169 sb.scorecardresearch.com
92.53.119.169 script.ioam.de
92.53.119.169 scripts.sophus3.com
92.53.119.169 seccdn-gl.imrworldwide.com
92.53.119.169 secure-au.imrworldwide.com
Il y a 37 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-434118492-3111314897-793104727-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mxlle\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{a377ce7d-6e7b-4875-9f12-4dcad920a55b}.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run32: => "YouCam Service7"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8D3AE86B-C187-455F-BACE-AC824C57E58D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AD9D781F-3C45-42E6-A6A5-76C3AC41B9F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D2B9B755-B2D8-4CFF-B928-11C725DD0FEA}] => (Allow) C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{4A1B82A5-F7CD-465F-834C-F1AD07D7B6EA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{50565580-D696-4D84-9686-E9A30B10AF37}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{408C4330-450E-4EDF-ADFF-907566A38F3E}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{8999CDAD-1426-41C1-9D47-7402E73D5A6C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{5F793795-4B14-4F3E-9D3D-A51CD48055F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2961D735-F577-4892-B40E-359ADC4F9D70}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F07A3FCF-1802-4808-916B-12355D35BDAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{499AE17A-37D0-4BB3-AABF-1A432FEF36BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1E0AE9A6-66FE-403F-9153-1CBF652B39B3}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{E605AF14-5344-4EE1-9C4D-0EAAF689C039}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{41E34545-F257-43C8-8D5F-FB8F7819485E}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
FirewallRules: [UDP Query User{3856EC7B-385E-49A8-9B75-44E6C48C1268}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
FirewallRules: [{BC8A68F2-ABA2-4FC8-A1BE-FF52504D11D7}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe
FirewallRules: [TCP Query User{BE402B52-B5F1-4F28-88E2-344F5059791A}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{553A2718-A360-4D11-94D4-DD4401BF557C}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5B3857BD-3F16-46DA-864F-D172DB2655BD}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{8FE322DB-6A6D-4FFE-8640-8F5E3BB5519F}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{2A5C7D51-F231-44B1-80E7-BE2EFE2B67BD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{689A3929-2585-4A1C-AC98-64F53F6EF30F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{FC8036A8-0669-4A16-92BE-5AE61B2EDA35}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{B20DC0EC-4DAD-491B-BDCB-E42ED907810E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{A5924EBA-E9A1-4FCB-87FE-A7901256E966}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [{7309D326-22BE-4522-9617-C55B8AC43088}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [{37CBBC3F-CE42-4EF9-975D-F54228E87507}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [{7D251030-26FA-45EB-864B-22E522A27F72}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{AB0B70E6-1644-4D1D-AE0B-AB86D417E1D4}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
FirewallRules: [{C75867CE-3105-4D23-BA80-8A91BC542FE4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0288539F-C098-478F-8459-BAE71BADA133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DDE0E5FA-5D17-4B46-BA59-1B05C62BC9E3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
24-03-2017 17:26:39 Point de contrôle planifié
24-03-2017 21:02:13 Driver Booster : ASUS Touchpad
==================== Ãléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/25/2017 02:45:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 02:45:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 01:46:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 01:43:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 01:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de lâapplication défaillante svchost.exe_SysMain, version : 10.0.14393.0, horodatage : 0x57899b1c
Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f
Code dâexception : 0xc0000005
Décalage dâerreur : 0x0000000000035793
ID du processus défaillant : 0x348
Heure de début de lâapplication défaillante : 0x01d2a51ad5d417ca
Chemin dâaccès de lâapplication défaillante : C:\WINDOWS\system32\svchost.exe
Chemin dâaccès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 6d07df3d-9874-478a-9bd2-d978e04f15ab
Nom complet du package défaillant :
ID de lâapplication relative au package défaillant :
Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 04:39:51 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 03:41:39 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 03:39:34 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (03/25/2017 03:18:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et lâAPPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:48:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et lâAPPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de lâutilisateur (S-1-5-19) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et lâAPPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de lâutilisateur (S-1-5-19) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:43:16 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et lâAPPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:09:43 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et lâAPPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:52:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:51:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:51:10 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:50:40 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
CodeIntegrity:
===================================
Date: 2017-03-24 05:01:59.833
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-23 07:31:34.247
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-15 18:14:42.271
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-12 15:30:19.274
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-28 14:50:13.371
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-19 17:23:26.264
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-11 23:14:28.142
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-10 16:10:21.383
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-08 14:44:55.455
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 41%
Mémoire physique - RAM - totale: 8094.35 MB
Mémoire physique - RAM - disponible: 4757.97 MB
Mémoire virtuelle totale: 9374.35 MB
Mémoire virtuelle disponible: 5873.8 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:371.85 GB) (Free:265.11 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:269.36 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5DC0F519)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par Ophélie (25-03-2017 15:39:03)
Exécuté depuis C:\Users\mxlle\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-06 14:51:01)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-434118492-3111314897-793104727-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-434118492-3111314897-793104727-503 - Limited - Disabled)
Invité (S-1-5-21-434118492-3111314897-793104727-501 - Limited - Disabled)
Ophélie (S-1-5-21-434118492-3111314897-793104727-1001 - Administrator - Enabled) => C:\Users\mxlle
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG)
Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0609.0 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd)
Dashlane (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Dashlane) (Version: 4.6.8.26847 - Dashlane SAS)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
I-Doser Free (HKLM-x32\...\I-Doser) (Version: 5.1 - I-Doser.com)
I-Doser v4 (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\I-Doser v4) (Version: - )
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Lecture à distance PS4 (HKLM-x32\...\{0E6F9CB6-D048-43A6-8475-D80657DC6976}) (Version: 1.5.0.08251 - Sony Interactive Entertainment Inc.)
LibreOffice 5.0.6.3 (HKLM-x32\...\{900D9036-4EDA-45EC-A095-E8AFB25D807A}) (Version: 5.0.6.3 - The Document Foundation)
Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.7870.2024 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 52.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 fr)) (Version: 52.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1 - Mozilla)
NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.)
Package de pilotes Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS)
Panneau de configuration NVIDIA 369.09 (Version: 369.09 - NVIDIA Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Plex Media Server (HKLM-x32\...\{d55f2773-2fc4-4a79-bf44-125c7afff11f}) (Version: 1.4.4.3495 - Plex, Inc.)
Plex Media Server (x32 Version: 1.4.3495 - Plex, Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Samsung Content Viewer (HKLM-x32\...\InstallShield_{980DDB3E-8957-4750-98EB-5D04F61CCEDC}) (Version: 1.0.2 - Samsung)
Samsung Content Viewer (x32 Version: 1.0.2 - Samsung) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Skype⢠7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Spotify) (Version: 1.0.48.103.g15edf1ec - Spotify AB)
Stopping Plex (x32 Version: 1.4.3495 - Plex, Inc.) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com)
Unity Web Player (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\UnityWebPlayer) (Version: 5.3.3f1 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0900DC2C-4194-4F29-B0FF-200B97958232} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation)
Task: {0A2AC167-00A6-4E17-9CA7-76E01F06D855} - System32\Tasks\Plotekaresagh Cloud => C:\Program Files (x86)\Gjadom\xnuhock.exe [2017-03-24] (Glarysoft Ltd)
Task: {16AE6E9A-3AC7-477B-AEF0-A398CB116007} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation)
Task: {1C4179C8-58E2-411A-8BC7-66E09116E397} - System32\Tasks\Uninstaller_SkipUac_mxlle => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit)
Task: {1E8B7927-EAA8-4F59-9BC8-BAF498FCAFA9} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-05-29] (AVAST Software)
Task: {29885C69-73F1-4BAB-A101-43BA31686D6C} - System32\Tasks\Driver Booster SkipUAC (Ophélie) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe [2017-01-10] (IObit)
Task: {2AD0F49C-F96A-46FF-ACF6-297CF88778FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.)
Task: {2D443CEA-EA31-4D09-A9D6-C2CFC6CF1551} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS)
Task: {44BA74A7-AA97-4E0B-BE7A-DBCCD5BD594A} - System32\Tasks\{9308256D-E05D-48C2-B60D-38F508598CFA} => pcalua.exe -a "C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\utility\uninst.exe"
Task: {44F10C0D-532E-44C5-85F4-67241BFF9B2F} - \ASC10_PerformanceMonitor -> Pas de fichier <==== ATTENTION
Task: {45799875-E14F-45C7-A5DE-819BF1BB0849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor)
Task: {458B91CC-6689-4CC1-9C16-4247FA1FA862} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {5AA6F494-CE60-4131-B60F-F2A1CEBF77AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.)
Task: {5CADAA13-38C9-4F4B-AF9F-BE132112B5DD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2017-03-14] (Microsoft Corporation)
Task: {5DC1062D-A657-4D16-8A56-9F0A165FEBD8} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {65D4ABE2-B140-48E1-8A1B-30A96557021F} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {6A8100B8-B3A6-49DF-A90B-4FB2E478B31B} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe [2016-12-14] (IObit)
Task: {6DD12DDF-9002-4538-A313-F30C2CA50E61} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek)
Task: {6F5CD6B1-6E20-4621-8B79-FCF06789BD1E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK
Task: {75C61289-74A8-4E45-AEEB-95859938FD17} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-15] (Adobe Systems Incorporated)
Task: {7A75F6BA-82F6-4EB3-9679-619DFB161E64} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor)
Task: {83F9BF04-B9B0-4235-904C-2BD57B336417} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {85CBE493-C55C-41B6-9F68-700C5E290F85} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.)
Task: {98A26B73-1266-4FE8-B4D4-D6EE36A7D38F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {9BA659C0-D74A-49B7-8F6C-C8A01D349DF7} - System32\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {A2D392B3-7120-42B2-AF7A-F70E1A3F24F9} - System32\Tasks\ASC9_SkipUac_Ophélie => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {B6C7CCCB-A648-414D-AF54-4648CE14709A} - System32\Tasks\R@1n-KMS\Windows64Core => wmic
Task: {BE0FD9D6-142D-4BEA-B3BD-78A6A6E79385} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {BFEEA446-BC30-4F30-A0E7-AF02FEE070E3} - System32\Tasks\Driver Booster SkipUAC (mxlle) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2017-01-04] (IObit)
Task: {C04B5906-E559-416D-8361-9609BCD1369B} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] ()
Task: {C975F99A-3666-4992-B942-1DAF93EB05F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.)
Task: {CEAAD662-E7E6-4751-8AC5-35C6FF83E55A} - System32\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {D8807569-08BE-4AFD-9408-5F13E7F9BEC5} - \ASC10_SkipUac_Ophélie -> Pas de fichier <==== ATTENTION
Task: {E16C9641-CD7F-4195-94C8-909FAD0E1CA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {F9A3332B-A1BA-4A29-BB5A-7F24870C0D62} - System32\Tasks\Uninstaller_SkipUac_Ophélie => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit)
Task: {FCEE187C-F5EA-496E-97A4-1111102A61B5} - System32\Tasks\ASC9_SkipUac_mxlle => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe� C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Chromium.lnk -> C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h3ozltpbl1au,cbabf931-c38b-4add-8fd7-e9fef2ce1d50,
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/
ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-06 15:20 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-29 17:20 - 2016-05-29 17:20 - 00592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-11-06 21:52 - 2016-11-06 21:52 - 00959168 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll
2016-10-06 16:08 - 2016-10-06 16:08 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 22:27 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 22:27 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 22:28 - 2017-03-04 07:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-14 22:27 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 22:28 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-30 21:57 - 2016-11-30 21:57 - 00401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2017-03-21 19:26 - 2017-03-17 16:48 - 00544208 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-03-02 08:43 - 2017-03-02 08:44 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-03-02 08:43 - 2017-03-02 08:43 - 21149696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-03-02 08:43 - 2017-03-02 08:43 - 05380096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2016-06-03 18:41 - 2016-06-03 18:42 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-03-02 08:43 - 2017-03-02 08:44 - 00387584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-03-02 08:43 - 2017-03-02 08:44 - 01047552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2016-03-05 22:00 - 2016-03-05 22:01 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2017-03-25 07:26 - 2017-03-25 07:26 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\HxMail.exe
2017-03-25 07:26 - 2017-03-25 07:26 - 13327560 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-02-12 03:13 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-02-12 03:13 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-02-12 03:13 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2017-03-15 14:18 - 2017-03-15 14:18 - 00083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll
2015-12-03 17:01 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00338896 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00441808 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00464848 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 62708176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00285648 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 06183888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 07271888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 13684176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 02215888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.8.26847.dll
2017-03-21 19:26 - 2017-03-17 16:48 - 00334288 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.8.26847.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 01549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll
2017-01-30 12:52 - 2017-01-30 12:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2016-05-29 17:20 - 2016-05-29 17:20 - 38907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll
2016-08-24 07:45 - 2016-08-24 07:45 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-07-07 01:32 - 2016-03-16 08:24 - 00877056 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\platforms\qwindows.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00308928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\GarbageGather.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00110272 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FHProcess.dll
2016-07-07 01:32 - 2016-03-16 08:24 - 00013824 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\fsclog.dll
2016-07-07 01:31 - 2016-04-26 00:27 - 00174784 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\BigFileGather.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00088256 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\EnumVolumes.dll
2016-07-07 01:31 - 2016-04-26 00:28 - 00168128 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FragAnalysis.dll
2016-07-07 01:32 - 2016-03-25 00:00 - 00024064 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qico.dll
2016-07-07 01:32 - 2016-03-25 00:00 - 00023552 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qgif.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll
2017-03-15 14:18 - 2017-03-15 14:18 - 00218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd
2017-03-15 14:18 - 2017-03-15 14:18 - 00694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd
2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-08-24 07:24 - 2016-08-24 07:24 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-11-06 21:52 - 2016-11-06 21:52 - 00679624 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\ClientTelemetry.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100sexlinks.com -> 100sexlinks.com
Il y a 4788 plus de sites.
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-07-10 12:04 - 2017-03-25 13:39 - 00007748 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com 92.53.119.169 beacon.krxd.net
92.53.119.169 beacon.walmart.com
92.53.119.169 c.amazon-adsystem.com
92.53.119.169 c.vepxl1.net
92.53.119.169 c2.taboola.com
92.53.119.169 cdn.3lift.com
92.53.119.169 cdn.admixer.net
92.53.119.169 cdn.brcdn.com
92.53.119.169 cdn.cxense.com
92.53.119.169 cdn.interactivemedia.ne
92.53.119.169 cdn.krxd.net
92.53.119.169 cdn.lenmit.com
92.53.119.169 cdn.livefyre.com
92.53.119.169 cdn.m-pathy.com
92.53.119.169 cdn.mathjax.org
92.53.119.169 cdn.mxpnl.com
92.53.119.169 cdn.onthe.io
92.53.119.169 cdn.optimizely.com
92.53.119.169 cdn.prom.st
92.53.119.169 cdn.pushwoosh.com
92.53.119.169 cdn.scarabresearch.com
92.53.119.169 cdn.taboola.com
92.53.119.169 cdn.taplytics.com
92.53.119.169 cdn.tt.omtrdc.net
92.53.119.169 cdn.unid.go.com
92.53.119.169 cdn1.graphiq.com
92.53.119.169 cdn3.optimizely.com
92.53.119.169 cdnjs.cloudflare.com
92.53.119.169 cdnssl.clicktale.net
92.53.119.169 comet.yahoo.com
92.53.119.169 consent.truste.com
92.53.119.169 content.adriver.ru
92.53.119.169 contextual.media.net
92.53.119.169 cstatic.weborama.fr
92.53.119.169 d134l0cdryxgwa.cloudfront.net
92.53.119.169 d2oh4tlt9mrke9.cloudfront.net
92.53.119.169 dpm.demdex.net
92.53.119.169 e.monetate.net
92.53.119.169 edge.quantserve.com
92.53.119.169 edx-uk.s3ae.com
92.53.119.169 eu-services.babator.com
92.53.119.169 fc.yahoo.com
92.53.119.169 gaua.hit.gemius.pl
92.53.119.169 gde-default.hit.gemius.pl
92.53.119.169 go.flx1.com
92.53.119.169 googleadservices.com
92.53.119.169 hpr.outbrain.com
92.53.119.169 i.cricketcb.com
92.53.119.169 i.tfag.de
92.53.119.169 ib.adnxs.com
92.53.119.169 imagesrv.adition.com
92.53.119.169 img.imgsmail.ru
92.53.119.169 img7.auto.ria.com
92.53.119.169 j.ophan.co.uk
92.53.119.169 js-agent.newrelic.com
92.53.119.169 js-sec.indexww.com
92.53.119.169 js.revsci.net
92.53.119.169 js.ui-portal.de
92.53.119.169 kamradamnaradost.ru
92.53.119.169 kpmediagaua.hit.gemius.pl
92.53.119.169 level1cdn.com
92.53.119.169 mc.yandex.ru
92.53.119.169 ml314.com
92.53.119.169 mtrx.go.sonobi.com
92.53.119.169 ninja.onap.io
92.53.119.169 o.aolcdn.com
92.53.119.169 odb.outbrain.com
92.53.119.169 ok-bar.love.mail.ru
92.53.119.169 ok-portal.mail.ru
92.53.119.169 optimize-stats.voxmedia.com
92.53.119.169 p.d.0fmm.com
92.53.119.169 p.t-online.de
92.53.119.169 pagead2.googlesyndication.com
92.53.119.169 peermapcontent.affino.com
92.53.119.169 pixel.vihub.ru
92.53.119.169 psma02.com
92.53.119.169 px.adhigh.net
92.53.119.169 qs.ioam.de
92.53.119.169 qsc.ec.quoracdn.net
92.53.119.169 rma-api.gravity.com
92.53.119.169 rtax.criteo.com
92.53.119.169 rum-static.pingdom.net
92.53.119.169 s1.olx.ua
92.53.119.169 s290.mxcdn.net
92.53.119.169 s7.addthis.com
92.53.119.169 sb.scorecardresearch.com
92.53.119.169 script.ioam.de
92.53.119.169 scripts.sophus3.com
92.53.119.169 seccdn-gl.imrworldwide.com
92.53.119.169 secure-au.imrworldwide.com
Il y a 37 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-434118492-3111314897-793104727-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mxlle\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{a377ce7d-6e7b-4875-9f12-4dcad920a55b}.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run32: => "YouCam Service7"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{8D3AE86B-C187-455F-BACE-AC824C57E58D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AD9D781F-3C45-42E6-A6A5-76C3AC41B9F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D2B9B755-B2D8-4CFF-B928-11C725DD0FEA}] => (Allow) C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{4A1B82A5-F7CD-465F-834C-F1AD07D7B6EA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{50565580-D696-4D84-9686-E9A30B10AF37}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{408C4330-450E-4EDF-ADFF-907566A38F3E}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{8999CDAD-1426-41C1-9D47-7402E73D5A6C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{5F793795-4B14-4F3E-9D3D-A51CD48055F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2961D735-F577-4892-B40E-359ADC4F9D70}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F07A3FCF-1802-4808-916B-12355D35BDAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{499AE17A-37D0-4BB3-AABF-1A432FEF36BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{1E0AE9A6-66FE-403F-9153-1CBF652B39B3}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{E605AF14-5344-4EE1-9C4D-0EAAF689C039}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{41E34545-F257-43C8-8D5F-FB8F7819485E}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
FirewallRules: [UDP Query User{3856EC7B-385E-49A8-9B75-44E6C48C1268}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe
FirewallRules: [{BC8A68F2-ABA2-4FC8-A1BE-FF52504D11D7}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe
FirewallRules: [TCP Query User{BE402B52-B5F1-4F28-88E2-344F5059791A}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{553A2718-A360-4D11-94D4-DD4401BF557C}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5B3857BD-3F16-46DA-864F-D172DB2655BD}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [UDP Query User{8FE322DB-6A6D-4FFE-8640-8F5E3BB5519F}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe
FirewallRules: [{2A5C7D51-F231-44B1-80E7-BE2EFE2B67BD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{689A3929-2585-4A1C-AC98-64F53F6EF30F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{FC8036A8-0669-4A16-92BE-5AE61B2EDA35}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{B20DC0EC-4DAD-491B-BDCB-E42ED907810E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{A5924EBA-E9A1-4FCB-87FE-A7901256E966}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [{7309D326-22BE-4522-9617-C55B8AC43088}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [{37CBBC3F-CE42-4EF9-975D-F54228E87507}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe
FirewallRules: [{7D251030-26FA-45EB-864B-22E522A27F72}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe
FirewallRules: [{AB0B70E6-1644-4D1D-AE0B-AB86D417E1D4}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe
FirewallRules: [{C75867CE-3105-4D23-BA80-8A91BC542FE4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0288539F-C098-478F-8459-BAE71BADA133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DDE0E5FA-5D17-4B46-BA59-1B05C62BC9E3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
24-03-2017 17:26:39 Point de contrôle planifié
24-03-2017 21:02:13 Driver Booster : ASUS Touchpad
==================== Ãléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/25/2017 02:45:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 02:45:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 01:46:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 01:43:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 01:40:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de lâapplication défaillante svchost.exe_SysMain, version : 10.0.14393.0, horodatage : 0x57899b1c
Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f
Code dâexception : 0xc0000005
Décalage dâerreur : 0x0000000000035793
ID du processus défaillant : 0x348
Heure de début de lâapplication défaillante : 0x01d2a51ad5d417ca
Chemin dâaccès de lâapplication défaillante : C:\WINDOWS\system32\svchost.exe
Chemin dâaccès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 6d07df3d-9874-478a-9bd2-d978e04f15ab
Nom complet du package défaillant :
ID de lâapplication relative au package défaillant :
Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 04:39:51 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (03/25/2017 03:41:39 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (03/25/2017 03:39:34 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Ãchec de lâactivation des licences (slui.exe) avec le code dâerreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (03/25/2017 03:18:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et lâAPPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:48:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et lâAPPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de lâutilisateur (S-1-5-19) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et lâAPPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de lâutilisateur (S-1-5-19) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:43:16 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et lâAPPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 02:09:43 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres dâautorisation propres à lâapplication nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et lâAPPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de lâutilisateur (S-1-5-18) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Non disponible du conteneur dâapplications (Non disponible). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:52:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:51:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:51:10 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
Error: (03/25/2017 01:50:40 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S)
Description: Les paramètres dâautorisation par défaut de lâordinateur nâaccordent pas lâautorisation Local Activation pour lâapplication serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et lâAPPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID DESKTOP-JRB9N2S\Ophélie de lâutilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis lâadresse LocalHost (avec LRPC) sâexécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur dâapplications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à lâaide de lâoutil dâadministration Services de composants.
CodeIntegrity:
===================================
Date: 2017-03-24 05:01:59.833
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-23 07:31:34.247
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-15 18:14:42.271
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-12 15:30:19.274
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-28 14:50:13.371
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-19 17:23:26.264
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-11 23:14:28.142
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-10 16:10:21.383
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-01-08 14:44:55.455
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 41%
Mémoire physique - RAM - totale: 8094.35 MB
Mémoire physique - RAM - disponible: 4757.97 MB
Mémoire virtuelle totale: 9374.35 MB
Mémoire virtuelle disponible: 5873.8 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:371.85 GB) (Free:265.11 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:269.36 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5DC0F519)
Partition: GPT.
==================== Fin de Addition.txt ============================