Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21-12-2016 Exécuté par Cassandra (29-12-2016 14:26:38) Exécuté depuis C:\Users\Cassandra Lynn\Desktop Windows 10 Home (X64) (2016-01-13 18:32:19) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3374882169-2629884529-1317393073-500 - Administrator - Disabled) Cassandra (S-1-5-21-3374882169-2629884529-1317393073-1001 - Administrator - Enabled) => C:\Users\Cassandra Lynn DefaultAccount (S-1-5-21-3374882169-2629884529-1317393073-503 - Limited - Disabled) Invité (S-1-5-21-3374882169-2629884529-1317393073-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: IObit Malware Fighter (Disabled - Out of date) {4D381C57-3C7A-6F22-07EB-639F49E836D4} AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Spybot - Search and Destroy (Enabled - Out of date) {A16C3F68-9280-E053-1818-342707FECF4D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: IObit Malware Fighter (Disabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D} AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\uTorrent) (Version: 3.4.8.42449 - BitTorrent Inc.) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.03.2003 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.06.2000.22 - Acer Incorporated) Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3005 - Acer Incorporated) Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3001 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.09.2001 - Acer Incorporated) Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated) Acer Quick Access (HKLM\...\{E3678E72-78E3-4F91-A9FB-913876FF6DA2}) (Version: 2.00.3006 - Acer Incorporated) Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 2.01.3002 - Acer Incorporated) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.186 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.3.0 - IObit) Amnesia: A Machine for Pigs (HKLM-x32\...\Amnesia: A Machine for Pigs_is1) (Version: - ) AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.13.2000.0 - Acer Incorporated) Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation) Avast Antivirus Gratuit (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software) Bandizip (HKLM\...\Bandizip) (Version: 5.13 - Bandisoft.com) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0152 - Disc Soft Ltd) Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.3.1 - Dolby Laboratories Inc) Driver Booster 4.1 (HKLM-x32\...\Driver Booster_is1) (Version: 4.1.0 - IObit) DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated) ELAN HIDI2C Filter Driver X64 13.6.3.1_WHQL (HKLM\...\Elantech) (Version: 13.6.3.1 - ELAN Microelectronic Corp.) Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks) File Repair (HKLM-x32\...\File Repair_is1) (Version: - File Repair) File Type Advisor 1.6 (HKLM-x32\...\File Type Advisor_is1) (Version: - ) FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - ) FreeRecorderExplorer (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\3bfbd47b6b1a7a66) (Version: 1.0.0.0 - FreeRecorderExplorer) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) IObit Malware Fighter 4 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 4.4 - IObit) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.1.0.20 - IObit) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation) Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.8 - Intel(R) Corporation) Hidden Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla) MyDriveConnect 4.0.7.2442 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.7.2442 - TomTom) MyFreeCodec (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\MyFreeCodec) (Version: - ) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote graphique 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 8.6.0.357 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden PhotoFiltre 7 (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\PhotoFiltre 7) (Version: - ) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros) Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.67 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.) SafeZone Stable 1.51.2220.53 (x32 Version: 1.51.2220.53 - Avast Software) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.11.45 - NVIDIA Corporation) Hidden Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.) Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.4.0 - IObit) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.5.43 - Safer-Networking Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Unity Web Player (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\UnityWebPlayer) (Version: 5.3.7f1 - Unity Technologies ApS) UpdateAssistant (x32 Version: 1.3.0.0 - Microsoft Corporation) Hidden Vistaprint Livres photo (HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\{70B0F1A3-D243-4FB9-B2C8-074350115F98}_is1) (Version: 11.1.1.1680 - Vistaprint) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) WildTangent Games App (x32 Version: 4.0.11.16 - WildTangent) Hidden Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Program Files\Bandizip\bdzshl64.dll (Bandisoft.com) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0A2A14C2-0083-416D-8EF3-AC81C25DC8AC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2015-06-16] (Safer-Networking Ltd.) Task: {0D0DCE48-27A2-4DEB-82DF-3B6188787739} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-03] (AVAST Software) Task: {12265BB0-9F73-414E-8FE9-3DD2D92E1223} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2016-07-22] (IObit) Task: {12A92DD0-4056-4F6A-8E5A-6F7D709100A9} - System32\Tasks\ASC9_SkipUac_Cassandra => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-05-16] (IObit) Task: {17E29ED7-C0DA-4171-9EFB-FEB96D9D8E7D} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2015-11-19] (Acer) Task: {1C257D42-2C4E-4449-94A7-B53381CE12DB} - System32\Tasks\Uninstaller_SkipUac_Cassandra => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-11-01] (IObit) Task: {1ED19832-157C-4BCC-A16C-DEB7C2504572} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {2844EACF-69D3-46BD-9FB2-0039FF4BAFF4} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-11-21] (IObit) Task: {2A1C2942-6D1B-45AC-81B2-4CC126413B23} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [2015-05-14] () Task: {307FCA5C-137A-4E83-A2A3-256069653D2C} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2015-11-17] (Acer Incorporated) Task: {4B599B66-6A88-430A-9051-B4E3D5484183} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.) Task: {53F5C216-C8F6-4BDB-A7FE-E145D2996EC1} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2016-12-27] () Task: {5A9BF950-B658-4BD9-8CC1-9779597930DE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-12-27] (Adobe Systems Incorporated) Task: {5FF849A5-6995-47D4-9216-806BCFE2AC3F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-14] (Google Inc.) Task: {6A1AECEC-0766-473B-AE79-EAAA31DE758F} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2015-07-10] () Task: {6A250F7B-4F8A-4FEA-8CAE-31F28DA85202} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2015-07-10] () Task: {933F5802-BEF8-4179-882B-FB830BC76431} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2015-06-16] (Safer-Networking Ltd.) Task: {A0A71068-F44C-410E-9615-17DF3301271C} - System32\Tasks\Driver Booster SkipUAC (Cassandra) => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\DriverBooster.exe [2016-11-14] (IObit) Task: {A4368FA2-EBBF-49A4-B05A-2DF142BC7075} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit) Task: {A5552CF2-428A-4031-9D7F-D62E156ACDDF} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\Windows\UpdateAssistant\UpdateAssistant.exe [2016-09-12] (Microsoft Corporation) Task: {A77CC4FF-83A1-431E-B1B4-3ABCA30251F5} - System32\Tasks\SafeZone scheduled Autoupdate 1461180377 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-08-09] (Avast Software) Task: {C61714FE-F840-4C10-B428-5640B2B96A09} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {CE7D28D6-0B7A-46F3-99D5-54C3A0AFC378} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2015-06-16] (Safer-Networking Ltd.) Task: {D580BF3C-83CE-4E6B-B1A1-20EB95353BC4} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-03-13] (TODO: ) Task: {DB55391B-13D8-46E6-A085-406993B7A442} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation) Task: {DD13ADDC-CF96-4501-93BB-61B72252CE36} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-05-06] (IObit) Task: {F17E7CA4-BACD-4022-9913-23E8E9F73E26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation) Task: {FC330D64-E142-41B5-92CE-A90366E3FCA9} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe [2016-10-18] (IObit) Task: {FE718BC0-07DC-4DB8-BA1E-B8B40F5C2E4A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd) Task: {FF501C65-C015-4F5E-BD07-5EE1E605DFD8} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.1.0\Scheduler.exe [2016-11-08] (IObit) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\ASC9_SkipUac_Cassandra.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe Task: C:\Windows\Tasks\Uninstaller_SkipUac_Cassandra.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-11-16 19:10 - 2015-11-16 19:10 - 00032768 _____ () C:\Windows\SYSTEM32\licensemanagerapi.dll 2016-11-08 23:19 - 2016-10-25 08:15 - 00404480 _____ () C:\Windows\System32\diagtrack_wininternal.dll 2015-11-16 11:03 - 2015-07-13 18:37 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-13 23:40 - 2016-11-19 11:24 - 02495776 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-12-13 23:40 - 2016-11-19 11:24 - 02495776 _____ () C:\Windows\System32\CoreUIComponents.dll 2015-08-31 11:56 - 2015-05-08 18:41 - 00111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll 2016-04-12 20:44 - 2015-09-17 06:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-07-10 11:59 - 2015-07-10 11:59 - 00143360 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll 2015-09-24 01:59 - 2015-09-05 16:16 - 00395880 _____ () C:\Windows\system32\igfxTray.exe 2016-12-13 23:40 - 2016-11-19 07:09 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-12-13 23:39 - 2016-11-19 07:06 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-12-13 23:40 - 2016-11-19 07:06 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-04-12 20:45 - 2015-09-17 06:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 12:00 - 2015-07-10 14:14 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2015-07-10 11:38 - 2015-07-10 11:38 - 04580704 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe 2016-09-03 20:08 - 2016-09-03 20:08 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-09-03 20:08 - 2016-09-03 20:08 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-12-28 21:25 - 2016-12-28 21:25 - 03131344 _____ () C:\Program Files\AVAST Software\Avast\defs\16122801\algo.dll 2016-05-31 18:08 - 2015-12-28 12:49 - 00629536 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2016-04-23 09:42 - 2014-05-13 11:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2016-04-23 09:42 - 2014-05-13 11:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2016-04-23 09:42 - 2014-05-13 11:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2016-04-23 09:42 - 2012-08-23 09:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2015-07-10 23:37 - 2015-07-10 23:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-12-27 15:25 - 2016-01-11 17:03 - 00899872 _____ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll 2016-12-27 15:25 - 2016-01-11 17:02 - 00630048 _____ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll 2016-05-31 18:08 - 2015-12-23 17:32 - 00355616 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl 2016-05-31 18:08 - 2015-12-23 17:32 - 00190240 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl 2016-05-31 18:08 - 2015-12-23 17:32 - 00057632 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl 2016-07-16 17:28 - 2016-07-16 17:28 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-11-16 19:55 - 2015-11-16 19:55 - 00202456 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll 2015-11-16 19:56 - 2015-11-16 19:56 - 00654000 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll 2015-11-16 19:56 - 2015-11-16 19:56 - 00641240 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll 2015-11-16 19:56 - 2015-11-16 19:56 - 00119000 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll 2016-01-14 01:04 - 2016-01-14 01:04 - 00015064 _____ () C:\Windows\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll 2015-11-17 11:11 - 2015-11-17 11:11 - 00013016 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll 2015-11-17 11:10 - 2015-11-17 11:10 - 00277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll 2016-12-29 12:17 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2016-12-29 12:17 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2016-12-29 12:17 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2016-12-29 12:17 - 2016-05-23 21:49 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll 2016-12-29 12:17 - 2016-10-18 16:57 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll 2016-10-27 12:35 - 2016-10-27 12:35 - 22825144 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll 2016-05-27 20:19 - 2016-05-27 20:19 - 00322232 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll 2016-10-27 12:35 - 2016-10-27 12:35 - 46476472 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Il y a 7893 plus de sites. IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\1-se.com -> 1-se.com Il y a 11430 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 12:04 - 2016-04-21 19:34 - 00452122 ____R C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com 127.0.0.1 1-2005-search.com 127.0.0.1 123fporn.info 127.0.0.1 www.123fporn.info 127.0.0.1 123haustiereundmehr.com 127.0.0.1 www.123haustiereundmehr.com 127.0.0.1 123moviedownload.com 127.0.0.1 www.123moviedownload.com Il y a 15512 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Cassandra Lynn\Documents\Alice\American McGee's\35592-1920x1080.jpg DNS Servers: 80.10.46.232 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "AcerPortal" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "EA Core" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\StartupApproved\Run: => "Advanced SystemCare 9" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [{91692DC0-BF42-45CE-82A5-6E667F038C2E}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DA225F5C-C571-418A-9132-30223D45C585}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{227DE642-B4A4-40DB-B65D-741AF59B20FE}] => C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{153D9351-68F9-4CE6-AE66-5419EB374260}] => C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe FirewallRules: [{D1449E72-5288-4FF3-88B1-34F6AC527BFF}] => C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{05EBF720-9C08-4032-9F83-DDB35AB3D67E}] => C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe FirewallRules: [{9374E55F-F31F-454E-8D92-4D68414A5ACB}] => C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{BA76611A-53EA-4E98-9240-01D77C34D7E0}] => C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe FirewallRules: [{4CA3957D-D3D6-4044-B1BD-9A2D537CCB87}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{93C23BC1-4AC0-46FB-BBA0-5012D0ADD062}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2A92D75B-ABEF-433D-8D52-23E8B5DC290D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{26966FA3-9A54-40C7-A0D5-3E20789AFD6D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{BC12E9C3-A85C-431D-9425-5557B070FE5B}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{2F6271E0-0DF6-4253-80D1-7407A209C60E}] => C:\Users\Cassandra Lynn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{82B7480E-74B2-405C-BD27-AA529604841E}] => C:\Users\Cassandra Lynn\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{57E1DCE2-C455-43ED-892F-FB235BB5D5D0}] => C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{9FFF5C2F-235C-4A9F-AED2-01F7C70DCE98}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{2FA9D0F4-55A2-4CC9-99ED-1BC6C7CB7589}] => C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{B70EB374-D79C-4078-ABE4-2D04AF4BE887}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{0D8A3955-CDA3-4871-AFC5-08642DFDC71A}] => C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{8EC3CE13-F108-4BAF-9AEC-DF1F8FDE101D}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [UDP Query User{8B528AE4-4C37-443B-AD79-DDBB6A84ACE8}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [TCP Query User{EC2DCB5A-AA97-4104-98B1-71D30A7882E1}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [UDP Query User{77CCC3E1-4F77-4F8B-B373-EA8F905A4FD4}C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe] => C:\program files (x86)\steam\steamapps\common\cry of fear\cof.exe FirewallRules: [{ADEA8DCB-B6D0-4040-91BE-658B1605E59E}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{870702E9-26F9-4B53-8B96-E920456B0F58}] => C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{48CCF317-F262-4B73-B412-6F57CC62DEE0}] => C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{C7AA4732-46E8-4122-B39D-41E186321C9C}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{0072C3BC-70B1-483F-A361-4390A2280B7B}] => C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{4C9705F3-E5CE-45FE-90F3-1D62099DEDCA}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{BB0DF3AE-3C0A-4A9D-BE8E-F7685A7FADDB}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 19-12-2016 15:32:19 Point de contrôle planifié 25-12-2016 13:29:25 Removed Microsoft Office Professionnel Plus 2013 25-12-2016 13:32:26 PROPLUS 25-12-2016 16:20:05 Installed Microsoft Office Professionnel Plus 2013 25-12-2016 16:20:34 PROPLUS 25-12-2016 18:47:28 Installed Microsoft Office Professionnel Plus 2013 25-12-2016 18:47:56 PROPLUS 27-12-2016 14:20:51 Driver Booster : Bluetooth USB Module ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/29/2016 11:46:39 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/29/2016 01:44:38 AM) (Source: Winlogon) (EventID: 4005) (User: ) Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue. Error: (12/29/2016 01:14:03 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Skype.exe version 7.30.0.105 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 2320 Heure de début : 01d261059086ec8d Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Program Files (x86)\Skype\Phone\Skype.exe ID de rapport : aff84bbf-cd5b-11e6-9c5d-54ab3a0294c3 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (12/28/2016 01:24:10 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (12/28/2016 01:18:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-5F4V1VBM) Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/27/2016 03:32:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante firefox.exe, version : 50.1.0.6186, horodatage : 0x5849ff9c Nom du module défaillant : xul.dll, version : 50.1.0.6186, horodatage : 0x584a0548 Code d’exception : 0x80000003 Décalage d’erreur : 0x0094922e ID du processus défaillant : 0x3d78 Heure de début de l’application défaillante : 0x01d2604c6ff3db8b Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Mozilla Firefox\firefox.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Mozilla Firefox\xul.dll ID de rapport : 5072a5f2-4b28-458b-83b3-7572acc65ec0 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/27/2016 02:45:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.10240.17202, horodatage : 0x582ffc3d Nom du module défaillant : SHCORE.dll, version : 10.0.10240.17202, horodatage : 0x582ffb01 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000036500 ID du processus défaillant : 0x1124 Heure de début de l’application défaillante : 0x01d26046704c8973 Chemin d’accès de l’application défaillante : C:\Windows\Explorer.EXE Chemin d’accès du module défaillant: C:\Windows\system32\SHCORE.dll ID de rapport : 65f8e0d6-d585-4142-992d-8ff05b1b5f67 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/27/2016 02:21:23 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (12/27/2016 02:16:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SystemSettingsBroker.exe, version : 10.0.10240.16384, horodatage : 0x559f39c2 Nom du module défaillant : NetworkMobileSettings.dll, version : 10.0.10240.17184, horodatage : 0x580f0aee Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000a2472 ID du processus défaillant : 0x10dd0 Heure de début de l’application défaillante : 0x01d260435ad94789 Chemin d’accès de l’application défaillante : C:\Windows\System32\SystemSettingsBroker.exe Chemin d’accès du module défaillant: C:\Windows\System32\NetworkMobileSettings.dll ID de rapport : fe062927-22a3-4d5a-9d7c-43f34954907c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/27/2016 12:53:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-5F4V1VBM) Description: Échec de l’activation de l’application Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Erreurs système: ============= Error: (12/29/2016 01:48:24 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service nvsvc. Error: (12/29/2016 01:47:17 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service lfsvc. Error: (12/29/2016 01:46:47 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service BITS. Error: (12/29/2016 01:46:17 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ShellHWDetection. Error: (12/29/2016 01:45:47 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Appinfo. Error: (12/29/2016 01:45:04 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Hôte de synchronisation_Session1. Error: (12/29/2016 01:45:04 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Stockage des données utilisateur_Session1. Error: (12/29/2016 01:45:02 AM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Stockage des données utilisateur_Session1, mais cette action a échoué en raison de l’erreur suivante : Une instance du service s’exécute déjà. Error: (12/29/2016 01:44:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/29/2016 01:44:52 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2016-09-10 01:31:44.100 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-09-10 01:31:42.340 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-30 12:44:51.289 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-30 12:44:51.204 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-17 15:20:14.588 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-17 15:20:14.484 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-07-11 21:50:11.733 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system. Date: 2016-07-11 17:50:46.446 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system. Date: 2016-07-11 17:40:28.847 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system. Date: 2016-07-11 17:30:03.077 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sfc_os.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz Pourcentage de mémoire utilisée: 37% Mémoire physique - RAM - totale: 8058.59 MB Mémoire physique - RAM - disponible: 5069.01 MB Mémoire virtuelle totale: 20058.59 MB Mémoire virtuelle disponible: 16671.48 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:930.91 GB) (Free:458.72 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 16696E07) Partition: GPT. ==================== Fin de Addition.txt ============================