Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-03-2017 Exécuté par Ophélie (25-03-2017 15:39:03) Exécuté depuis C:\Users\mxlle\Desktop Windows 10 Home Version 1607 (X64) (2016-10-06 14:51:01) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-434118492-3111314897-793104727-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-434118492-3111314897-793104727-503 - Limited - Disabled) Invité (S-1-5-21-434118492-3111314897-793104727-501 - Limited - Disabled) Ophélie (S-1-5-21-434118492-3111314897-793104727-1001 - Administrator - Enabled) => C:\Users\mxlle ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated) ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS) ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.25.172 - Avira Operations GmbH & Co. KG) Avira Connect (HKLM-x32\...\{0b46d918-af4f-4612-8076-5c0ae67cb2aa}) (Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Avira Connect (x32 Version: 1.2.81.41506 - Avira Operations GmbH & Co. KG) Hidden Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.) CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0609.0 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0220 - Disc Soft Ltd) Dashlane (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Dashlane) (Version: 4.6.8.26847 - Dashlane SAS) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.110 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden I-Doser Free (HKLM-x32\...\I-Doser) (Version: 5.1 - I-Doser.com) I-Doser v4 (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\I-Doser v4) (Version: - ) Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Chipset Device Software (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 73 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Lecture à distance PS4 (HKLM-x32\...\{0E6F9CB6-D048-43A6-8475-D80657DC6976}) (Version: 1.5.0.08251 - Sony Interactive Entertainment Inc.) LibreOffice 5.0.6.3 (HKLM-x32\...\{900D9036-4EDA-45EC-A095-E8AFB25D807A}) (Version: 5.0.6.3 - The Document Foundation) Microsoft Office Professionnel 2016 - fr-fr (HKLM\...\ProfessionalRetail - fr-fr) (Version: 16.0.7870.2024 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mozilla Firefox 52.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 52.0.1 (x86 fr)) (Version: 52.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.1 - Mozilla) NVIDIA Graphics Driver 353.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.84 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 9.1.10.2728 - Electronic Arts, Inc.) Package de pilotes Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS) Panneau de configuration NVIDIA 369.09 (Version: 369.09 - NVIDIA Corporation) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Plex Media Server (HKLM-x32\...\{d55f2773-2fc4-4a79-bf44-125c7afff11f}) (Version: 1.4.4.3495 - Plex, Inc.) Plex Media Server (x32 Version: 1.4.3495 - Plex, Inc.) Hidden Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) Samsung Content Viewer (HKLM-x32\...\InstallShield_{980DDB3E-8957-4750-98EB-5D04F61CCEDC}) (Version: 1.0.2 - Samsung) Samsung Content Viewer (x32 Version: 1.0.2 - Samsung) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.) Skypeâ„¢ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\Spotify) (Version: 1.0.48.103.g15edf1ec - Spotify AB) Stopping Plex (x32 Version: 1.4.3495 - Plex, Inc.) Hidden SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1236 - SUPERAntiSpyware.com) Unity Web Player (HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\UnityWebPlayer) (Version: 5.3.3f1 - Unity Technologies ApS) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0900DC2C-4194-4F29-B0FF-200B97958232} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation) Task: {0A2AC167-00A6-4E17-9CA7-76E01F06D855} - System32\Tasks\Plotekaresagh Cloud => C:\Program Files (x86)\Gjadom\xnuhock.exe [2017-03-24] (Glarysoft Ltd) Task: {16AE6E9A-3AC7-477B-AEF0-A398CB116007} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-05] (Microsoft Corporation) Task: {1C4179C8-58E2-411A-8BC7-66E09116E397} - System32\Tasks\Uninstaller_SkipUac_mxlle => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit) Task: {1E8B7927-EAA8-4F59-9BC8-BAF498FCAFA9} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2016-05-29] (AVAST Software) Task: {29885C69-73F1-4BAB-A101-43BA31686D6C} - System32\Tasks\Driver Booster SkipUAC (Ophélie) => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe [2017-01-10] (IObit) Task: {2AD0F49C-F96A-46FF-ACF6-297CF88778FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation) Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {2D443CEA-EA31-4D09-A9D6-C2CFC6CF1551} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) Task: {44BA74A7-AA97-4E0B-BE7A-DBCCD5BD594A} - System32\Tasks\{9308256D-E05D-48C2-B60D-38F508598CFA} => pcalua.exe -a "C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\utility\uninst.exe" Task: {44F10C0D-532E-44C5-85F4-67241BFF9B2F} - \ASC10_PerformanceMonitor -> Pas de fichier <==== ATTENTION Task: {45799875-E14F-45C7-A5DE-819BF1BB0849} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor) Task: {458B91CC-6689-4CC1-9C16-4247FA1FA862} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated) Task: {5AA6F494-CE60-4131-B60F-F2A1CEBF77AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.) Task: {5CADAA13-38C9-4F4B-AF9F-BE132112B5DD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2017-03-14] (Microsoft Corporation) Task: {5DC1062D-A657-4D16-8A56-9F0A165FEBD8} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {65D4ABE2-B140-48E1-8A1B-30A96557021F} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe Task: {6A8100B8-B3A6-49DF-A90B-4FB2E478B31B} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe [2016-12-14] (IObit) Task: {6DD12DDF-9002-4538-A313-F30C2CA50E61} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek) Task: {6F5CD6B1-6E20-4621-8B79-FCF06789BD1E} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\Explorer.exe /NOUACCHECK Task: {75C61289-74A8-4E45-AEEB-95859938FD17} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-15] (Adobe Systems Incorporated) Task: {7A75F6BA-82F6-4EB3-9679-619DFB161E64} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor) Task: {83F9BF04-B9B0-4235-904C-2BD57B336417} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {85CBE493-C55C-41B6-9F68-700C5E290F85} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {98A26B73-1266-4FE8-B4D4-D6EE36A7D38F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation) Task: {9BA659C0-D74A-49B7-8F6C-C8A01D349DF7} - System32\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {A2D392B3-7120-42B2-AF7A-F70E1A3F24F9} - System32\Tasks\ASC9_SkipUac_Ophélie => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe Task: {B6C7CCCB-A648-414D-AF54-4648CE14709A} - System32\Tasks\R@1n-KMS\Windows64Core => wmic Task: {BE0FD9D6-142D-4BEA-B3BD-78A6A6E79385} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation) Task: {BFEEA446-BC30-4F30-A0E7-AF02FEE070E3} - System32\Tasks\Driver Booster SkipUAC (mxlle) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2017-01-04] (IObit) Task: {C04B5906-E559-416D-8361-9609BCD1369B} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {C975F99A-3666-4992-B942-1DAF93EB05F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-10] (Google Inc.) Task: {CEAAD662-E7E6-4751-8AC5-35C6FF83E55A} - System32\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com) Task: {D8807569-08BE-4AFD-9408-5F13E7F9BEC5} - \ASC10_SkipUac_Ophélie -> Pas de fichier <==== ATTENTION Task: {E16C9641-CD7F-4195-94C8-909FAD0E1CA4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation) Task: {F9A3332B-A1BA-4A29-BB5A-7F24870C0D62} - System32\Tasks\Uninstaller_SkipUac_Ophélie => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-12-15] (IObit) Task: {FCEE187C-F5EA-496E-97A4-1111102A61B5} - System32\Tasks\ASC9_SkipUac_mxlle => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\ASC9_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 1f2c71ef-fbd7-4da3-b786-63673c43dea7.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task de35e9ec-cbb0-4f0a-a7a0-3194759ea710.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_mxlle.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Ophélie.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Chromium.lnk -> C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/ ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/ ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/ ShortcutWithArgument: C:\Users\mxlle\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www%2dsearching.com/?prd=set_epf&s=h3ozltpbl1au,cbabf931-c38b-4add-8fd7-e9fef2ce1d50, ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/ ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/ ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\mxlle\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://qtipr.com/ ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://qtipr.com/ ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-10-06 15:20 - 2016-08-01 13:54 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-05-29 17:20 - 2016-05-29 17:20 - 00592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe 2017-03-14 22:28 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2016-11-06 21:52 - 2016-11-06 21:52 - 00959168 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll 2016-10-06 16:08 - 2016-10-06 16:08 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-14 22:27 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-14 22:27 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-14 22:27 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-14 22:27 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-03-14 22:28 - 2017-03-04 07:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-03-14 22:27 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-03-14 22:28 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-11-30 21:57 - 2016-11-30 21:57 - 00401888 _____ () C:\WINDOWS\system32\igfxTray.exe 2017-03-21 19:26 - 2017-03-17 16:48 - 00544208 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\DashlanePlugin.exe 2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe 2017-03-02 08:43 - 2017-03-02 08:44 - 00019456 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-03-02 08:43 - 2017-03-02 08:43 - 21149696 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-03-02 08:43 - 2017-03-02 08:43 - 05380096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2016-06-03 18:41 - 2016-06-03 18:42 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll 2017-03-02 08:43 - 2017-03-02 08:44 - 00387584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2017-03-02 08:43 - 2017-03-02 08:44 - 01047552 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll 2016-03-05 22:00 - 2016-03-05 22:01 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.214.10010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2017-03-25 07:26 - 2017-03-25 07:26 - 01710080 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\HxMail.exe 2017-03-25 07:26 - 2017-03-25 07:26 - 13327560 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8021.42017.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll 2017-02-12 03:13 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2017-02-12 03:13 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2017-02-12 03:13 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2017-03-15 14:18 - 2017-03-15 14:18 - 00083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll 2015-12-03 17:01 - 2015-07-24 05:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 00338896 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 00441808 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 00464848 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 62708176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 00285648 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 06183888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 07271888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 13684176 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 02215888 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.8.26847.dll 2017-03-21 19:26 - 2017-03-17 16:48 - 00334288 _____ () C:\Users\mxlle\AppData\Roaming\Dashlane\4.6.8.26847\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.8.26847.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 01083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 01741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 01962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 01549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll 2017-01-30 12:52 - 2017-01-30 12:52 - 01926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll 2016-05-29 17:20 - 2016-05-29 17:20 - 38907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll 2016-08-24 07:45 - 2016-08-24 07:45 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2016-07-07 01:32 - 2016-03-16 08:24 - 00877056 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\platforms\qwindows.dll 2016-07-07 01:31 - 2016-04-26 00:28 - 00308928 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\GarbageGather.dll 2016-07-07 01:31 - 2016-04-26 00:28 - 00110272 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FHProcess.dll 2016-07-07 01:32 - 2016-03-16 08:24 - 00013824 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\fsclog.dll 2016-07-07 01:31 - 2016-04-26 00:27 - 00174784 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\BigFileGather.dll 2016-07-07 01:31 - 2016-04-26 00:28 - 00088256 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\EnumVolumes.dll 2016-07-07 01:31 - 2016-04-26 00:28 - 00168128 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\FragAnalysis.dll 2016-07-07 01:32 - 2016-03-25 00:00 - 00024064 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qico.dll 2016-07-07 01:32 - 2016-03-25 00:00 - 00023552 _____ () C:\Program Files (x86)\EaseUS\EaseUS Partition Master 11.0\bin\imageformats\qgif.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll 2017-03-15 14:18 - 2017-03-15 14:18 - 00218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd 2017-03-15 14:18 - 2017-03-15 14:18 - 00694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd 2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2016-08-24 07:24 - 2016-08-24 07:24 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2015-08-07 02:09 - 2015-08-07 02:09 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-11-06 21:52 - 2016-11-06 21:52 - 00679624 _____ () C:\Users\mxlle\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\ClientTelemetry.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\100sexlinks.com -> 100sexlinks.com Il y a 4788 plus de sites. ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 12:04 - 2017-03-25 13:39 - 00007748 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com 92.53.119.169 beacon.krxd.net 92.53.119.169 beacon.walmart.com 92.53.119.169 c.amazon-adsystem.com 92.53.119.169 c.vepxl1.net 92.53.119.169 c2.taboola.com 92.53.119.169 cdn.3lift.com 92.53.119.169 cdn.admixer.net 92.53.119.169 cdn.brcdn.com 92.53.119.169 cdn.cxense.com 92.53.119.169 cdn.interactivemedia.ne 92.53.119.169 cdn.krxd.net 92.53.119.169 cdn.lenmit.com 92.53.119.169 cdn.livefyre.com 92.53.119.169 cdn.m-pathy.com 92.53.119.169 cdn.mathjax.org 92.53.119.169 cdn.mxpnl.com 92.53.119.169 cdn.onthe.io 92.53.119.169 cdn.optimizely.com 92.53.119.169 cdn.prom.st 92.53.119.169 cdn.pushwoosh.com 92.53.119.169 cdn.scarabresearch.com 92.53.119.169 cdn.taboola.com 92.53.119.169 cdn.taplytics.com 92.53.119.169 cdn.tt.omtrdc.net 92.53.119.169 cdn.unid.go.com 92.53.119.169 cdn1.graphiq.com 92.53.119.169 cdn3.optimizely.com 92.53.119.169 cdnjs.cloudflare.com 92.53.119.169 cdnssl.clicktale.net 92.53.119.169 comet.yahoo.com 92.53.119.169 consent.truste.com 92.53.119.169 content.adriver.ru 92.53.119.169 contextual.media.net 92.53.119.169 cstatic.weborama.fr 92.53.119.169 d134l0cdryxgwa.cloudfront.net 92.53.119.169 d2oh4tlt9mrke9.cloudfront.net 92.53.119.169 dpm.demdex.net 92.53.119.169 e.monetate.net 92.53.119.169 edge.quantserve.com 92.53.119.169 edx-uk.s3ae.com 92.53.119.169 eu-services.babator.com 92.53.119.169 fc.yahoo.com 92.53.119.169 gaua.hit.gemius.pl 92.53.119.169 gde-default.hit.gemius.pl 92.53.119.169 go.flx1.com 92.53.119.169 googleadservices.com 92.53.119.169 hpr.outbrain.com 92.53.119.169 i.cricketcb.com 92.53.119.169 i.tfag.de 92.53.119.169 ib.adnxs.com 92.53.119.169 imagesrv.adition.com 92.53.119.169 img.imgsmail.ru 92.53.119.169 img7.auto.ria.com 92.53.119.169 j.ophan.co.uk 92.53.119.169 js-agent.newrelic.com 92.53.119.169 js-sec.indexww.com 92.53.119.169 js.revsci.net 92.53.119.169 js.ui-portal.de 92.53.119.169 kamradamnaradost.ru 92.53.119.169 kpmediagaua.hit.gemius.pl 92.53.119.169 level1cdn.com 92.53.119.169 mc.yandex.ru 92.53.119.169 ml314.com 92.53.119.169 mtrx.go.sonobi.com 92.53.119.169 ninja.onap.io 92.53.119.169 o.aolcdn.com 92.53.119.169 odb.outbrain.com 92.53.119.169 ok-bar.love.mail.ru 92.53.119.169 ok-portal.mail.ru 92.53.119.169 optimize-stats.voxmedia.com 92.53.119.169 p.d.0fmm.com 92.53.119.169 p.t-online.de 92.53.119.169 pagead2.googlesyndication.com 92.53.119.169 peermapcontent.affino.com 92.53.119.169 pixel.vihub.ru 92.53.119.169 psma02.com 92.53.119.169 px.adhigh.net 92.53.119.169 qs.ioam.de 92.53.119.169 qsc.ec.quoracdn.net 92.53.119.169 rma-api.gravity.com 92.53.119.169 rtax.criteo.com 92.53.119.169 rum-static.pingdom.net 92.53.119.169 s1.olx.ua 92.53.119.169 s290.mxcdn.net 92.53.119.169 s7.addthis.com 92.53.119.169 sb.scorecardresearch.com 92.53.119.169 script.ioam.de 92.53.119.169 scripts.sophus3.com 92.53.119.169 seccdn-gl.imrworldwide.com 92.53.119.169 secure-au.imrworldwide.com Il y a 37 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-434118492-3111314897-793104727-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mxlle\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{a377ce7d-6e7b-4875-9f12-4dcad920a55b}.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run32: => "YouCam Service7" HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter" HKU\S-1-5-21-434118492-3111314897-793104727-1001\...\StartupApproved\Run: => "OneDrive" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{8D3AE86B-C187-455F-BACE-AC824C57E58D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AD9D781F-3C45-42E6-A6A5-76C3AC41B9F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D2B9B755-B2D8-4CFF-B928-11C725DD0FEA}] => (Allow) C:\Users\mxlle\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{4A1B82A5-F7CD-465F-834C-F1AD07D7B6EA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{50565580-D696-4D84-9686-E9A30B10AF37}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe FirewallRules: [UDP Query User{408C4330-450E-4EDF-ADFF-907566A38F3E}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe FirewallRules: [{8999CDAD-1426-41C1-9D47-7402E73D5A6C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{5F793795-4B14-4F3E-9D3D-A51CD48055F1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2961D735-F577-4892-B40E-359ADC4F9D70}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F07A3FCF-1802-4808-916B-12355D35BDAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{499AE17A-37D0-4BB3-AABF-1A432FEF36BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{1E0AE9A6-66FE-403F-9153-1CBF652B39B3}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{E605AF14-5344-4EE1-9C4D-0EAAF689C039}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{41E34545-F257-43C8-8D5F-FB8F7819485E}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe FirewallRules: [UDP Query User{3856EC7B-385E-49A8-9B75-44E6C48C1268}C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe] => (Allow) C:\program files (x86)\galactic cafe\the stanley parable\thestanleyparable.exe FirewallRules: [{BC8A68F2-ABA2-4FC8-A1BE-FF52504D11D7}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe FirewallRules: [TCP Query User{BE402B52-B5F1-4F28-88E2-344F5059791A}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{553A2718-A360-4D11-94D4-DD4401BF557C}C:\users\mxlle\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mxlle\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{5B3857BD-3F16-46DA-864F-D172DB2655BD}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe FirewallRules: [UDP Query User{8FE322DB-6A6D-4FFE-8640-8F5E3BB5519F}C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\mxlle\appdata\local\jdownloader v2.0\jdownloader2.exe FirewallRules: [{2A5C7D51-F231-44B1-80E7-BE2EFE2B67BD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe FirewallRules: [{689A3929-2585-4A1C-AC98-64F53F6EF30F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe FirewallRules: [{FC8036A8-0669-4A16-92BE-5AE61B2EDA35}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe FirewallRules: [{B20DC0EC-4DAD-491B-BDCB-E42ED907810E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe FirewallRules: [{A5924EBA-E9A1-4FCB-87FE-A7901256E966}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe FirewallRules: [{7309D326-22BE-4522-9617-C55B8AC43088}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe FirewallRules: [{37CBBC3F-CE42-4EF9-975D-F54228E87507}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe FirewallRules: [{7D251030-26FA-45EB-864B-22E522A27F72}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe FirewallRules: [{AB0B70E6-1644-4D1D-AE0B-AB86D417E1D4}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe FirewallRules: [{C75867CE-3105-4D23-BA80-8A91BC542FE4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{0288539F-C098-478F-8459-BAE71BADA133}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DDE0E5FA-5D17-4B46-BA59-1B05C62BC9E3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 24-03-2017 17:26:39 Point de contrôle planifié 24-03-2017 21:02:13 Driver Booster : ASUS Touchpad ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/25/2017 02:45:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (03/25/2017 02:45:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (03/25/2017 01:46:14 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (03/25/2017 01:43:20 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (03/25/2017 01:40:56 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_SysMain, version : 10.0.14393.0, horodatage : 0x57899b1c Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000035793 ID du processus défaillant : 0x348 Heure de début de l’application défaillante : 0x01d2a51ad5d417ca Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 6d07df3d-9874-478a-9bd2-d978e04f15ab Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (03/25/2017 04:50:52 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (03/25/2017 04:39:51 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Error: (03/25/2017 03:41:39 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (03/25/2017 03:39:34 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0xC004F074 Arguments de la ligne de commande : RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=NetworkAvailable Erreurs système: ============= Error: (03/25/2017 03:18:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 02:48:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID DESKTOP-JRB9N2S\Ophélie de l’utilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 02:44:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 02:43:16 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 02:09:43 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 01:52:09 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID DESKTOP-JRB9N2S\Ophélie de l’utilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 01:51:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID DESKTOP-JRB9N2S\Ophélie de l’utilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 01:51:10 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID DESKTOP-JRB9N2S\Ophélie de l’utilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/25/2017 01:50:40 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-JRB9N2S) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID DESKTOP-JRB9N2S\Ophélie de l’utilisateur (S-1-5-21-434118492-3111314897-793104727-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. CodeIntegrity: =================================== Date: 2017-03-24 05:01:59.833 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-23 07:31:34.247 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-15 18:14:42.271 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-12 15:30:19.274 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-28 14:50:13.371 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-19 17:23:26.264 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-11 23:14:28.142 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-10 16:10:21.383 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-08 14:44:55.455 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz Pourcentage de mémoire utilisée: 41% Mémoire physique - RAM - totale: 8094.35 MB Mémoire physique - RAM - disponible: 4757.97 MB Mémoire virtuelle totale: 9374.35 MB Mémoire virtuelle disponible: 5873.8 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:371.85 GB) (Free:265.11 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:269.36 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 5DC0F519) Partition: GPT. ==================== Fin de Addition.txt ============================