Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01 Exécuté par hp (2016-06-21 22:04:37) Exécuté depuis C:\Users\hp\Desktop Windows 10 Home Version 1511 (X64) (2016-01-14 06:22:37) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2340712917-288545405-3420014623-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2340712917-288545405-3420014623-503 - Limited - Disabled) hp (S-1-5-21-2340712917-288545405-3420014623-1001 - Administrator - Enabled) => C:\Users\hp Invité (S-1-5-21-2340712917-288545405-3420014623-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: ESET Smart Security 9.0.349.14 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: ESET Smart Security 9.0.381.1 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834} FW: Pare-feu personnel d'ESET (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Acronis True Image 2015 (HKLM-x32\...\{0D2C9C0A-51AB-4629-A4A9-DF40B24BBF5A}) (Version: 18.0.4061 - Acronis) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.) Alcor Micro USB Card Reader Driver (x32 Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden BDAntiRansomware (HKLM\...\{BE40AB1F-558F-4434-B72F-461EF97E7796}_is1) (Version: 1.0.11.147 - Bitdefender) Bejeweled 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) (HKLM-x32\...\CFWebAdvancedU2) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.18 - Piriform) CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.7.4023 - CyberLink Corp.) Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.2.5426 - CyberLink Corp.) Cyberlink PhotoDirector (Version: 5.0.2.5426 - CyberLink Corp.) Hidden CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.7.4016 - CyberLink Corp.) CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.1.3004 - CyberLink Corp.) CyberLink PowerDirector 12 (Version: 12.0.1.3004 - CyberLink Corp.) Hidden CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4119 - CyberLink Corp.) Dashlane (HKU\S-1-5-21-2340712917-288545405-3420014623-1001\...\Dashlane) (Version: 4.5.0.13208 - Dashlane SAS) DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company) ESET Smart Security (HKLM\...\{1A3FCD9B-D10E-4519-B7D8-F90772CAADC9}) (Version: 9.0.349.14 - ESET, spol. s r.o.) Evernote v. 5.3 (HKLM-x32\...\{E461B1AC-BC3C-11E3-B5B8-00163E98E7D6}) (Version: 5.3.0.3360 - Evernote Corp.) Farm Frenzy (x32 Version: 3.0.2.59 - WildTangent) Hidden Foxit PhantomPDF (HKLM-x32\...\{00CD7D62-056A-4F0F-9143-44522D44E6DD}) (Version: 6.0.32.507 - Foxit Corporation) Free AVI Video Converter version 5.0.63.913 (HKLM-x32\...\Free AVI Video Converter_is1) (Version: 5.0.63.913 - DVDVideoSoft Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 3.0.2.59 - WildTangent) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP Documentation (HKLM-x32\...\{4B4EDB7B-4F54-4B86-8A4A-E1C5803CA374}) (Version: 1.2.0.0 - Hewlett-Packard) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7745.4851 - Hewlett-Packard) HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.2.8.25 - HP) HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C18278AC-049A-4F02-A97F-4FD7294CC4F5}) (Version: 12.4.18.7 - HP) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6496.0 - IDT) Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden Intel(R) Driver Update Utility 2.4 (x32 Version: 2.4.0.7 - Intel) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{561b5fb5-1d4d-40e8-b3e4-ad52858b217c}) (Version: 2.4.0.7 - Intel) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Jewel Match 3 (x32 Version: 3.0.2.59 - WildTangent) Hidden Lexmark 5600-6600 Series (HKLM\...\Lexmark 5600-6600 Series) (Version: - Lexmark International, Inc.) Light Image Resizer 4.7.7.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.7.7.0 - ObviousIdea) Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.6965.2058 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 fr)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.82 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Pilote graphique 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation) NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1018 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1018 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden Polar Bowler 1st Frame (x32 Version: 3.0.2.59 - WildTangent) Hidden PrtScr 1.7 (HKLM-x32\...\PrtScr_is1) (Version: - FireStarter) Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.61 - REALTEK Semiconductor Corp.) Recovery Manager (x32 Version: 5.5.0.7316 - CyberLink Corp.) Hidden Renee Becca 2016.02.16.262 (HKLM-x32\...\{A62CB332-45D9-47BD-86D5-A15F016FE2A0}_is1) (Version: 2016.02.16.262 - Rene.E Laboratory) Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.0 - Samsung) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics) Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - ) Synology Cloud Station Backup (remove only) (HKLM\...\Synology Cloud Station Backup) (Version: 4.0.4207 - Synology, Inc.) Synology Cloud Station Drive (remove only) (HKLM\...\Synology Cloud Station Drive) (Version: 4.0.4207 - Synology, Inc.) Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App for HP (x32 Version: 4.0.11.9 - WildTangent) Hidden Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll () CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\hp\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2340712917-288545405-3420014623-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {054B77E7-7DBA-4ACD-9FE9-CFE5F5C49F1B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard) Task: {1264FE34-A824-41A9-924F-C3CCA285A76C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-22] (Google Inc.) Task: {130DA9C7-FA08-4B4C-8355-F45254C7E20F} - System32\Tasks\BDAntiCryptoWallTask => C:\Program Files\Bitdefender\Tools\BDAntiRansomware\BDAntiRansomware.exe [2016-04-15] () Task: {1D50864F-87E7-41F3-B85A-6FECAE3B98B7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {2BBD7272-391F-4DB6-9E47-27A24A4CBC65} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {2DC4ADD9-8500-408F-B839-7C481CAFE927} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs" Task: {3927E376-B9B3-4734-AEBB-0D83A5FEEC52} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation) Task: {4924BEBE-C371-49FA-8CC7-9E9DEDA6D11B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-06-10] (Microsoft Corporation) Task: {4E6DDBB8-6E20-46FD-8F0B-F1378543628F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.) Task: {60C45618-A329-45CA-B1A0-5A5674B053AC} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated) Task: {64992B67-3033-4590-B408-55135C6D2242} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {777236ED-6BF2-4073-89D0-985196B4B7F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-22] (Google Inc.) Task: {862D4093-A6D2-49D9-80D7-B2A9082F394D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-06-10] (Microsoft Corporation) Task: {B201917B-674F-4293-AA62-6A3F2FFE40C0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard) Task: {C088A7AD-DD7E-456E-9980-F32EB1BD161A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {C3D3FA98-0179-48FF-A1EA-F92B80F3583C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-05-18] (HP Inc.) Task: {D029AC53-2775-4F99-8D6D-088F59E0DBEE} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.) Task: {D1DDBC5C-C8DA-4B0F-B7E4-576C809C7C7F} - System32\Tasks\HPCeeScheduleForhp => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {ECC7129F-7260-42F4-A8AC-606F23040089} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark 5600-6600 Series\ezprint.exe [2010-02-04] (Lexmark International Inc.) Task: {F09409FD-A4E8-4AD7-AD04-D460A8D150DF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-06-15] (Microsoft Corporation) Task: {F876CE26-5F7E-4460-81CB-F3EA900BAE39} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-06-01] (Piriform Ltd) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForhp.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-10-30 09:17 - 2015-10-30 09:17 - 00028672 _____ () C:\WINDOWS\SYSTEM32\efsext.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2014-03-28 15:31 - 2014-03-28 15:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll 2014-03-28 15:27 - 2014-03-28 15:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll 2014-03-28 15:27 - 2014-03-28 15:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll 2014-03-28 15:27 - 2014-03-28 15:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll 2014-03-28 15:48 - 2014-03-28 15:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll 2014-03-28 15:48 - 2014-03-28 15:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll 2016-01-14 01:03 - 2015-08-07 02:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-01-17 18:02 - 2009-10-16 17:07 - 00186880 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxdudrpp.dll 2016-05-18 04:45 - 2016-05-18 04:45 - 00287240 _____ () C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe 2016-05-18 05:55 - 2016-05-18 05:55 - 00287240 _____ () C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe 2014-11-21 03:52 - 2014-04-14 20:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2016-02-05 16:13 - 2016-02-05 16:13 - 00115864 _____ () C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe 2016-03-18 07:41 - 2016-03-18 07:41 - 00248840 _____ () C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe 2016-02-15 19:53 - 2016-02-05 16:20 - 00414360 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe 2016-02-15 19:53 - 2016-02-05 16:26 - 00709272 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_modeler.dll 2016-02-15 19:53 - 2016-02-05 16:23 - 00130712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_process_input.dll 2016-02-15 19:53 - 2016-02-05 16:24 - 00025752 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_system_power_state_input.dll 2016-02-15 19:53 - 2016-02-05 16:24 - 00059544 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_quality_and_reliability_input.dll 2016-02-15 19:53 - 2016-02-05 16:24 - 00194712 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\acpi_battery_input.dll 2016-02-15 19:53 - 2016-02-05 16:25 - 00159896 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\sema_thermal_input.dll 2016-02-15 19:53 - 2016-02-05 16:25 - 00158360 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\wifi_input.dll 2016-02-15 19:53 - 2016-02-05 16:25 - 00050840 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\devices_use_input.dll 2016-02-15 19:53 - 2016-02-05 16:23 - 00032920 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\intel_disktrace_input.dll 2016-04-12 20:46 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-12 20:46 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 01249280 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll 2016-06-15 07:26 - 2016-05-28 05:53 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-19 06:53 - 2016-04-19 06:53 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-01-14 00:56 - 2016-01-14 00:56 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-11 17:45 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-06-15 07:26 - 2016-05-28 05:59 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-06-15 07:26 - 2016-05-28 05:55 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-06-15 07:27 - 2016-05-28 05:54 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-06-15 07:27 - 2016-05-28 05:56 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2014-03-28 15:36 - 2014-03-28 15:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe 2016-04-09 19:18 - 2010-02-04 05:10 - 00676520 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxdumon.exe 2016-04-30 23:56 - 2016-06-03 11:44 - 00286080 _____ () C:\Users\hp\AppData\Roaming\Dashlane\DashlanePlugin.exe 2016-04-30 23:57 - 2016-06-03 11:44 - 00227200 _____ () C:\Users\hp\AppData\Roaming\Dashlane\Dashlane.exe 2016-01-17 18:01 - 2009-10-16 17:03 - 01401856 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\lxduptpc.dll 2016-01-17 18:01 - 2009-10-16 17:07 - 00196608 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\lxdudrui.dll 2014-06-11 06:19 - 2014-06-11 06:19 - 00622080 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\JobCapsA.DLL 2016-06-01 20:15 - 2016-06-01 20:15 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2016-02-15 19:53 - 2016-02-05 16:16 - 00458904 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe 2016-02-15 19:53 - 2016-02-05 16:25 - 00188568 _____ () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\foreground_window_input.dll 2015-07-11 00:37 - 2015-07-11 00:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-07-23 18:06 - 2015-07-23 18:06 - 00034624 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2015-07-23 18:13 - 2015-07-23 18:13 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll 2015-07-23 18:07 - 2015-07-23 18:07 - 00129344 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll 2016-04-19 06:53 - 2016-04-19 06:53 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 06:53 - 2016-04-19 06:53 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-04-09 19:18 - 2010-02-04 04:28 - 00380928 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduscw.dll 2016-04-09 19:18 - 2010-02-04 04:17 - 00188416 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxdudatr.dll 2016-04-09 19:18 - 2009-10-16 10:53 - 00073728 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxducats.dll 2016-04-09 19:18 - 2010-02-04 04:28 - 01036288 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxduDRS.dll 2016-04-09 19:18 - 2010-02-04 04:28 - 00081920 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxducaps.dll 2016-04-09 19:18 - 2010-02-04 04:17 - 00069632 _____ () C:\Program Files (x86)\Lexmark 5600-6600 Series\lxducnv4.dll 2016-06-18 10:27 - 2014-09-28 17:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 06254464 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 00469376 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 63070592 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 00347520 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 00436608 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 13624192 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 00299392 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 02284928 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.5.0.13208.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 00353664 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.5.0.13208.dll 2015-07-23 18:06 - 2015-07-23 18:06 - 00037696 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll 2016-06-03 11:43 - 2016-06-03 11:43 - 07393664 _____ () C:\Users\hp\AppData\Roaming\Dashlane\4.5.0.13208\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.5.0.13208.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00123918 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\libgcc_s_dw2-1.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 01026062 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\libstdc++-6.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00524460 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\libcurl-4.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 03036430 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\libsqlite3-0.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 01798570 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\icuuc53.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 03095505 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\icuin53.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00115214 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\zlib1.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 21565192 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\icudt53.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00712704 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\platforms\qwindows.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00031744 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qgif.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00046080 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qicns.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00032768 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qico.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00516608 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjp2.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00243200 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjpeg.dll 2016-06-11 13:55 - 2016-06-11 13:55 - 00431616 _____ () C:\Users\hp\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qtiff.dll 2016-04-24 01:46 - 2016-04-15 17:11 - 00023968 _____ () C:\Program Files\Bitdefender\Tools\BDAntiRansomware\InjectionDll.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2016-03-28 19:10 - 00000829 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2340712917-288545405-3420014623-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hp\Pictures\Finistere\DSC_0239.JPG DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "EzPrint" HKU\S-1-5-21-2340712917-288545405-3420014623-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2340712917-288545405-3420014623-1001\...\StartupApproved\Run: => "PrtScr by FireStarter" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{3BD00085-64C8-403F-A8F4-28FC79AD166B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{99BC56D5-7FA9-47EF-8283-0C0DF8C60D5E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{64F22DB8-385B-4179-8E6A-0EB8A6D96BBB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4B79DE26-2343-4E6E-8AFD-572EAC90F9CB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{1E974012-F538-48DD-80D8-A88A0FD38FBB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{1B3F6314-6EBD-49A0-A67E-7C8C63058F25}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{FBF6E751-BD59-4765-8D58-56EE96E301DF}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe FirewallRules: [{C74C8F60-F65C-420F-995D-16F8FED3BA51}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe FirewallRules: [{FD1342E1-1301-4ADD-9A53-1CD4D6C65340}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe FirewallRules: [{F9E0816C-BBB3-4AAE-95A0-448A403160D9}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe FirewallRules: [TCP Query User{F90535FA-F361-42E0-929B-28FDF876B44B}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{D33DEE64-B07A-49D2-B09C-10AED7756E83}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [{AFB3E03C-9353-4E95-AEC6-2D8A23D4A72D}] => (Allow) C:\Windows\SysWOW64\lxducoms.exe FirewallRules: [{10B5EA6E-BECC-4155-B01F-6A6668DED87C}] => (Allow) C:\Windows\SysWOW64\lxducoms.exe FirewallRules: [{AAE0A6D0-EA4C-4D56-9B7A-B84FB8E308C7}] => (Allow) C:\Windows\System32\lxducoms.exe FirewallRules: [{9FCA68C9-1329-4BF6-ACB4-5F8C191ABF6B}] => (Allow) C:\Windows\System32\lxducoms.exe FirewallRules: [{A6B0892F-0C5E-47CD-9365-5775E18C8CD8}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdupswx.exe FirewallRules: [{850B041D-A9D1-46CC-8370-4DD21EEC316A}] => (Allow) C:\Windows\System32\spool\drivers\x64\3\lxdupswx.exe FirewallRules: [{E94856F0-4A1F-47E6-BFE9-F0A5C653F751}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{C878F2E5-3818-4F89-B121-F49BB6DB343E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{B8CD4F9F-05C0-46C5-9167-46A37FE61117}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{54C51079-AF7C-4529-ACA3-4286A135AF25}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{C944E889-AC01-43F4-A1E1-B119AA877A22}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{B1FFECFB-279A-4A8C-A710-61A91D60D404}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe ==================== Points de restauration ========================= 05-06-2016 17:00:36 Point de contrôle planifié 14-06-2016 17:08:27 Point de contrôle planifié 17-06-2016 18:50:33 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/21/2016 09:38:41 PM) (Source: HP Active Health) (EventID: 401) (User: ) Description: SmartDrive executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe] Error: (06/21/2016 09:38:41 PM) (Source: HP Active Health) (EventID: 1100) (User: ) Description: Agent DiskPhysical threw an exception: System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet. à HP.ActiveHealth.Agents.DiskPhysical.DiskPhysicalAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector) à HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj) Error: (06/21/2016 09:38:29 PM) (Source: HP Active Health) (EventID: 1101) (User: ) Description: DiskPhysical executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe] Error: (06/21/2016 09:35:33 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: .NETFrameworkC:\WINDOWS\system32\mscoree.dll8 Error: (06/21/2016 11:48:19 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073415161 Error: (06/21/2016 09:14:09 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (06/21/2016 07:47:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-ICORE3) Description: Échec de l’activation de l’application Microsoft.WindowsMaps_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (06/21/2016 07:45:50 AM) (Source: HP Active Health) (EventID: 401) (User: ) Description: SmartDrive executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe] Error: (06/21/2016 07:45:49 AM) (Source: HP Active Health) (EventID: 1100) (User: ) Description: Agent DiskPhysical threw an exception: System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet. à HP.ActiveHealth.Agents.DiskPhysical.DiskPhysicalAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector) à HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj) Error: (06/21/2016 07:45:45 AM) (Source: HP Active Health) (EventID: 1101) (User: ) Description: DiskPhysical executable didn't pass digital signature validation. Execution aborted: [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\Executable Agent Data\_Shared\DiskCheck\ETD_GetSMART.exe] Erreurs système: ============= Error: (06/21/2016 09:37:12 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (06/21/2016 09:34:57 PM) (Source: DCOM) (EventID: 10016) (User: PC-ICORE3) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC-ICORE3hpS-1-5-21-2340712917-288545405-3420014623-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (06/21/2016 09:30:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_d11674 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 09:30:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_d11674 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 09:30:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Données de contacts_d11674 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 09:30:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_d11674 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 09:30:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (06/21/2016 07:43:50 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (06/21/2016 07:43:28 AM) (Source: DCOM) (EventID: 10016) (User: PC-ICORE3) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC-ICORE3hpS-1-5-21-2340712917-288545405-3420014623-1001LocalHost (avec LRPC)Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbweS-1-15-2-1609473798-1231923017-684268153-4268514328-882773646-2760585773-1760938157 Error: (06/20/2016 11:38:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_ea0d5 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2016-06-20 22:53:35.622 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-18 08:49:35.367 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-16 06:43:35.786 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-15 11:49:10.991 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-11 07:48:26.234 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-06-01 07:03:42.220 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-18 08:22:55.680 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-15 08:47:47.367 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-14 11:49:18.857 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 04:35:42.660 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-4460S CPU @ 2.90GHz Pourcentage de mémoire utilisée: 25% Mémoire physique - RAM - totale: 8131.06 MB Mémoire physique - RAM - disponible: 6024.97 MB Mémoire virtuelle totale: 8531.06 MB Mémoire virtuelle disponible: 6446.49 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:1844.99 GB) (Free:1741.38 GB) NTFS Drive d: (Recovery Image) (Fixed) (Total:15.67 GB) (Free:1.98 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 1863 GB) (Disk ID: 008C9ABE) Partition: GPT. ==================== Fin de Addition.txt ============================