Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16.05.2018 01
Exécuté par emman (22-05-2018 21:32:05)
Exécuté depuis C:\Users\emman\Desktop
Windows 10 Home Version 1709 16299.431 (X64) (2018-05-09 17:37:03)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1180263477-3657733799-1779953298-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1180263477-3657733799-1779953298-503 - Limited - Disabled)
emman (S-1-5-21-1180263477-3657733799-1779953298-1001 - Administrator - Enabled) => C:\Users\emman
Invité (S-1-5-21-1180263477-3657733799-1779953298-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1180263477-3657733799-1779953298-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: Pare-feu McAfee (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\uTorrent) (Version: 3.5.3.44428 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{9E005AAA-81A3-478E-8944-532D350952EE}) (Version: 11.3.1.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0410 - Disc Soft Ltd)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.19 - ELAN microelectronics Crop.)
f.lux (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\Flux) (Version: - f.lux Software LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.9.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.6.18.11 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{5E0AE938-A2B7-4FC0-AD2C-3B86CAB2C2C6}) (Version: 12.9.18.3 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{4B0A7A8A-ECE5-4639-9A0D-C535F354313D}) (Version: 1.4.26 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{2EC9AB64-3ACA-460D-B309-0A7052B0C8C0}) (Version: 1.1.21.1 - HP)
iCloud (HKLM\...\{5BD11939-D2C2-4F1B-AAAF-5ECE19A801F7}) (Version: 7.4.0.111 - Apple Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 2.2.1.31 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.10.0 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{0154a7e9-eb49-44a6-96ce-f3cb48047ffe}) (Version: 3.10.100.3524 - Intel Corporation)
IObit Malware Fighter 6 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 6.0 - IObit)
ISS_Drivers_x64 (HKLM\...\{2DAED66F-EF16-4951-8C03-B10A54C233DB}) (Version: 3.10.100.3524 - Intel Corporation) Hidden
iTunes (HKLM\...\{283FFCFA-108D-434D-92EA-BD606B37D869}) (Version: 12.7.4.80 - Apple Inc.)
KeePass Password Safe 2.39 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.39 - Dominik Reichl)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{8060a69f-ee27-444b-b126-775f861232ea}) (Version: 20.0.2 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Logiciel Thunderbolt™ (HKLM-x32\...\{BD73BA0A-366B-4548-BA20-25F1B5E3B0CB}) (Version: 17.3.72.250 - Intel Corporation)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R11 - McAfee, Inc.)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Mises à jour NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 60.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 60.0.1 (x64 fr)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0 - Mozilla)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 389.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 389.12 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 389.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 389.12 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.0 - pdfforge GmbH)
Private Internet Access v79 (HKLM-x32\...\{148169C2-5558-4C3E-B38A-7B1813A264CA}_is1) (Version: 79 - London Trust Media, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.21304 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8318 - Realtek Semiconductor Corp.)
Samsung AllShare (HKLM-x32\...\{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.0.0.11023_15 - Samsung Electronics Co., Ltd.) Hidden
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.0.0.11023_15 - Samsung Electronics Co., Ltd.)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.35 - Synaptics Incorporated)
Synaptics WBF FP Reader (HKLM\...\{BCEBAD40-80FD-4C72-95D0-94CB0727F067}) (Version: 5.5.19.1088 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB3213548) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{1C894A72-A611-4A19-B106-0218E3CAC377}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3213548) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{1C894A72-A611-4A19-B106-0218E3CAC377}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Web Companion (HKLM-x32\...\{e445fdfd-b3b2-4940-b53c-b62e94ba8368}) (Version: 4.2.1846.3481 - Lavasoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [ IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-04-11] (McAfee, Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-03-18] (Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxDTCM.dll [2018-03-07] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2018-03-07] (NVIDIA Corporation)
ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-04-11] (McAfee, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05CE7190-EEE8-422D-A358-9DC8151CBE21} - System32\Tasks\HPCeeScheduleForemman => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-06-24] (HP Inc.)
Task: {088E5EE6-9EFC-432E-B800-739D5776A113} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-09-27] (HP Inc.)
Task: {0BFEC673-CC74-4FA8-8EA5-BBEFE3DCF31D} - System32\Tasks\Private Internet Access Startup => C:/Program Files/pia_manager/pia_manager.exe [2018-04-11] ()
Task: {0C680F97-6220-452C-BFB0-EA0CD28A4DB0} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {0DD28709-5D8B-4BDD-A052-A9F6C2B3C45C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation)
Task: {1047B71E-D0B6-4791-889B-DF95C821868B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [2017-10-11] (Intel(R) Corporation)
Task: {1E9C6388-C8F3-46AB-A9A7-074D81A66A07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-05-14] (Google Inc.)
Task: {2916D5E5-6165-4116-98A9-B41B1EB086B7} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => ConditionalAppStarter.exe
Task: {2D52915E-0AFF-49B0-9C5D-E628D4C3434C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-09-27] (HP Inc.)
Task: {2E43A327-16CA-4358-BA89-967EB691FC72} - System32\Tasks\tranchestranches => C:\Program Files (x86)\blueprint\blueprint.exe
Task: {32474549-FC25-44A7-A756-CB692D0410B7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {344EA58B-6561-4289-99DD-DE3C37395AF1} - System32\Tasks\backhanded_duelingbackhanded_dueling => C:\Program Files (x86)\Hambone\Fuzzier.exe
Task: {356AD7B9-A8C7-48D6-9009-536D2C802849} - System32\Tasks\expexp => C:\Program Files (x86)\Pants\Fuzzier.exe
Task: {3C999A1E-72B7-4C78-B43C-4D1837A03BF7} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation)
Task: {40313EA5-9D93-428C-9137-32CE6361B1EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-05-02] (HP Inc.)
Task: {4301B97F-6F3C-446E-B4EF-DD48A5D1EA82} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation)
Task: {449D6C96-144E-47C6-8912-1151035ACB74} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {59042668-21A9-46C7-A347-810AC663ADA1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {5ACF680A-A32A-468E-BEEF-5E7FF9D87ED0} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {5BC61341-252F-4A96-B679-99B9464545EE} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\windows\system32\Notifier.exe [2018-05-04] (Microsoft Corporation)
Task: {66062E75-8A04-4803-8F90-3DD81011B8FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {6EF9742B-CB6F-4084-9B41-473A71DBEEF2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {7783F038-D075-45FD-8B23-6015A47F2CDF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-05] (NVIDIA Corporation)
Task: {7D7CB637-EC44-423C-8C56-8F39A2A9EED3} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [2018-02-28] (McAfee, Inc.)
Task: {84BF7A5E-D946-4371-9391-ABA5BAE6C899} - System32\Tasks\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.5.243\mcdatrep.exe [2018-05-10] (McAfee, LLC.)
Task: {9160C512-B064-4E21-B452-B39B684584E0} - System32\Tasks\chautauqua grubchautauqua grub => C:\Program Files (x86)\Hambone\Pummeled.exe
Task: {92D7C497-6C2E-44A9-A3E5-8745424D0DEB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {962DEA00-8858-4389-8089-533355BCCD2E} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [2017-02-02] (HP Inc.)
Task: {96B56918-F2D2-4D50-A2D2-970E2F2D5215} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-05-14] (Google Inc.)
Task: {9810038D-6E5F-4246-96A2-1C7758F9BA46} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [2018-03-27] (McAfee, Inc.)
Task: {99690806-2C4B-4A9E-A073-6029BDFD3E89} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {9AE2F998-54C3-4866-A126-C659CD432257} - System32\Tasks\checkbooks_trotskycheckbooks_trotsky => C:\Users\emman\AppData\Local\Pummeled.exe
Task: {9B0EF640-1927-41EC-BD81-9E8308B4DF00} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-10] (Adobe Systems Incorporated)
Task: {9E5D526D-FD58-4EBC-9658-18700AC6950F} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {B9DBE6FB-276B-4349-89F0-4B90F4C47688} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-12-05] (NVIDIA Corporation)
Task: {BC8FC627-A845-4898-956D-66D4A17C6291} - System32\Tasks\lansing-capitalismlansing-capitalism => C:\Program Files (x86)\counterclaims\Pummeled.exe
Task: {BD4C56FE-1627-41E6-A30A-B2BC2BA6E572} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-12-05] (NVIDIA Corporation)
Task: {BD83B7BB-D931-42BC-BA7E-8D18C8D58742} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-12-05] (NVIDIA Corporation)
Task: {CA8D76C9-1DAA-4FC5-AD01-925398A4D5B6} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {CC2BB381-DD27-420C-8E91-CD08C00AA490} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-05-02] (HP Inc.)
Task: {D5E1DE46-8E98-410C-850A-DE8472BD81A9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => ConditionalAppStarter.exe
Task: {D60374C9-0DC7-47A2-97FF-4C39EF112CF9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-04-25] (HP Inc.)
Task: {D69F6072-C3E0-46E7-B4DD-A0DDD92665D6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {E1F40634-C525-4971-B618-434F336B6176} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-27] (HP Inc.)
Task: {E319A0DC-DAC7-4281-9534-2E94EEFCAFF8} - System32\Tasks\gess lifters cheezgess lifters cheez => C:\Users\emman\AppData\Local\Fuzzier.exe
Task: {EB643416-DFB8-4BC3-9ED9-7BF06BB97AB2} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => ConditionalAppStarter.exe
Task: {F048887B-1A08-4F61-A2A2-E7DE44498D99} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [2017-10-06] (HP Inc.)
Task: {FC70441E-685B-4A33-98D1-7F94697EB629} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\HPCeeScheduleForemman.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\emman\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Modules chargés (Avec liste blanche) ==============
2018-03-16 15:19 - 2018-03-16 15:19 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-03-16 15:19 - 2018-03-16 15:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\windows\SYSTEM32\inputhost.dll
2018-03-13 23:18 - 2018-03-07 19:00 - 000134952 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 016129144 _____ () C:\Program Files\pia_manager\pia_manager.exe
2018-05-09 22:28 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-05-09 22:28 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 13:18 - 2017-03-15 13:18 - 001466048 _____ () C:\Program Files\Microsoft Office\Office16\ADDINS\UmOutlookAddin.dll
2018-05-17 20:33 - 2018-05-17 20:33 - 001031680 _____ () C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_1.4.1.0_x64__wafk5atnkzcwy\McUWPTile.dll
2018-05-17 20:33 - 2018-05-17 20:33 - 000074752 _____ () C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_1.4.1.0_x64__wafk5atnkzcwy\McAfee.UWP.AppServices.Crypto.dll
2018-04-06 13:05 - 2018-04-06 13:05 - 000896136 _____ () C:\Program Files\Common Files\McAfee\CSP\2.9.175.0\McCSPMsgBusDLL.dll
2018-05-17 20:36 - 2018-05-15 05:13 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libglesv2.dll
2018-05-17 20:36 - 2018-05-15 05:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libegl.dll
2018-05-13 21:19 - 2018-05-13 21:19 - 000156672 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\296c5d01afa35901372434b00ccb0c0f\BRIDGECommon.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000374784 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\CleanStartController\6d19c952624d9a48e2cac2e1aae60db2\CleanStartController.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000120832 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\BridgeExtension\8456022de82d64bf97944bf2c5e34e1e\BridgeExtension.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000139264 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\d0fa64afab21211a3f6a50343e464ee4\RegistrationUtilities.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000077824 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\NativeInterop\19c5b6d601736d858956c466b5c82589\NativeInterop.ni.dll
2018-03-13 23:21 - 2017-09-01 04:33 - 001424896 _____ () C:\Program Files\ELAN\EzTiltPen\LibTouch.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000521228 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libgmp-10.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000121524 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libgcc_s_dw2-1.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000023294 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\encdb.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000025094 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\transdb.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020138 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_1252.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000042802 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\stringio.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000076988 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\fiddle.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000034874 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libffi-6.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000019080 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\utf_16le.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000024071 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\utf_16_32.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000107527 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\single_byte.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000086447 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\src\build\windows\pia_manager\bin\rgloader\rgloader24.mingw.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000164238 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\socket.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020278 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\io\wait.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000036004 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\parser.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000043738 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\generator.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000023715 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\etc.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000238686 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\gems\2.4.0\gems\ffi-1.9.23-x86-mingw32\lib\2.4\ffi_c.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000204591 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\date_core.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000521228 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libgmp-10.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000121524 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libgcc_s_dw2-1.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000023294 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\encdb.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000025094 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\transdb.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000020138 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_1252.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000042802 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\stringio.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000076988 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\fiddle.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000034874 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libffi-6.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000019080 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\utf_16le.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000024071 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\utf_16_32.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000107527 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\single_byte.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000086447 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\src\build\windows\pia_manager\bin\rgloader\rgloader24.mingw.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000164238 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\socket.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020278 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\io\wait.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000036004 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\parser.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000043738 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\generator.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000023715 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\etc.so
2018-05-22 21:16 - 2018-05-22 21:16 - 000238686 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\gems\2.4.0\gems\ffi-1.9.23-x86-mingw32\lib\2.4\ffi_c.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000204591 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\date_core.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000096686 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\zlib.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000098626 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\zlib1.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000023870 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_31j.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000433264 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\openssl.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000027213 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\digest.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000018967 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\io\nonblock.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000024368 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\cgi\escape.so
2018-05-09 22:43 - 2018-04-11 09:30 - 002061592 _____ () C:\Program Files\pia_manager\nwjs\ffmpeg.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 005617944 _____ () C:\Program Files\pia_manager\nwjs\node.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 002246144 _____ () C:\Program Files\pia_manager\nwjs\swiftshader\libglesv2.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 000101888 _____ () C:\Program Files\pia_manager\nwjs\swiftshader\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\localhost -> localhost
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-09-29 15:46 - 2018-05-10 12:29 - 000001388 _____ C:\windows\system32\Drivers\etc\hosts
162.222.193.86 aoaomo.tremorhub.com
188.95.50.62 bobomo.tremorhub.com
162.222.193.86 www.howcast.com
162.222.193.86 howcast.com
162.222.193.86 www.ustream.tv
162.222.193.86 ustream.tv
162.222.193.86 www.livestream.com
162.222.193.86 livestream.com
162.222.193.86 www.dailymotion.com
162.222.193.86 dailymotion.com
192.192.3.8 www.virustotal.com
192.192.3.8 virustotal.com
5.149.252.98 www.gstatic.com
5.149.252.98 www.google-analytics.com
5.149.252.98 adservice.google.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Behaviorists"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AllShareAgent"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\StartupFolder: => "halbrookhalbrook.lnk"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\StartupFolder: => "halbrook.lnk"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "wastefully"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "laender"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{573EF54A-9DF9-4360-8F74-903FF9C9CA1D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6AB070DA-9AE2-4695-8467-B4E5AE936D06}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{26959D4E-074B-4289-88D4-36F68D2997DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2346A554-8511-4156-BA9E-C7357EAE6286}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{88B91E96-7791-4109-963A-F8CE25DA69E7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{9EC36CC9-1B7A-4029-98EA-5ABB7CDDD299}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{B454C3A0-9F17-408A-885D-E37CF53CABA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D9613B97-D32E-42B8-B6DF-235B00DB1758}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D6FD3345-80E1-4A67-81A9-B54A9C5AFEF2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{70D6AD5F-B610-417A-9F03-EBB9F2BBDDF4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3DC97760-F25A-43CE-945C-BCA6EE1A9A4F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1F851DEF-C944-4CF4-916D-FAB6CD356641}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{809D0D3E-8196-4835-9387-F4A9C7508B6D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E7867280-AAE0-4BDE-8F9E-819FA7DE7C99}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A6CDA826-4153-4FDA-B573-5A3DD8654727}] => (Allow) C:\Users\emman\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A12BC6FC-8942-4FD8-B51A-DF864B346BE4}] => (Allow) C:\Users\emman\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E336F593-6374-40DB-85FB-15CC4F2DA483}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{C08D12BD-6A53-4F7B-83D0-05DA3F087697}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{36EB244B-1694-4D2B-BC1C-35B5018503B3}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{57E731CE-7DD2-49E7-B04D-E849D1A64941}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{2394FF13-A23D-4163-9298-08FFE67B8BC2}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
FirewallRules: [{33541087-AFE8-477A-964F-2CD5E4B423A0}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShare.exe
FirewallRules: [{3E580382-EDF1-49D9-9C72-F212D9A4B73A}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
FirewallRules: [{798BC385-002F-4A07-A56F-522B7113ACF3}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{E74FA45C-6A8B-49A2-BEF4-AB5CB0CB84D9}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{3393F1B0-641C-400D-BBCC-3DB1C9F601A6}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{6B68E073-39CD-4A2A-B125-2AB0AF88E31C}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{0574AD6F-8C67-4EB8-9F26-F85E0E19AA4C}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{01EF2405-A3BE-42C2-B5BF-F3F560BC490A}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{2715F640-C268-4476-8D2A-8FF8FF6C6CEE}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe
FirewallRules: [{606D0B08-D859-44DC-B5D5-36C543D48F39}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe
FirewallRules: [{66D7C9A9-4178-4E7F-ADE0-D087A0FDF802}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{F1647B90-740D-4308-8850-748B77205106}] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [{42987B2C-5666-4808-A8EA-F2C3096300D8}] => (Allow) C:\Program Files (x86)\Pants\Fuzzier.exe
FirewallRules: [{6B4A9D85-EF85-46B7-98D8-48ED0964717D}] => (Allow) C:\Program Files (x86)\Hambone\Fuzzier.exe
FirewallRules: [{6EA3E4F0-ED8A-40FB-9E12-C4642E958F6D}] => (Allow) C:\Program Files (x86)\counterclaims\Pummeled.exe
FirewallRules: [{1125D0B2-4EFD-42C9-8CCB-CD62E05A9759}] => (Allow) C:\Program Files (x86)\Hambone\Pummeled.exe
FirewallRules: [{5A616079-A74D-4284-8384-0F9F60A7CF5E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/22/2018 09:18:25 PM) (Source: HP Active Health) (EventID: 91) (User: )
Description: Unhandled Exception. Application will terminate immediately.
System.Threading.AbandonedMutexException: The wait completed due to an abandoned mutex.
at System.Threading.WaitHandle.ThrowAbandonedMutexException()
at System.Threading.WaitHandle.InternalWaitOne(SafeHandle waitableSafeHandle, Int64 millisecondsTimeout, Boolean hasThreadAffinity, Boolean exitContext)
at System.Threading.WaitHandle.WaitOne(TimeSpan timeout, Boolean exitContext)
at HP.ActiveHealth.Core.ActiveHealthMain.Main(String[] args)
Error: (05/22/2018 09:15:26 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed.
à _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible)
à _HPCommRecovery.HPAHAgent.CallAgent()
à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
à _HPCommRecovery.HPAHLogger.NewSession()
à _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus)
à System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
Error: (05/21/2018 11:19:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Explorer.EXE
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 00007FF9D200C2A8
Error: (05/21/2018 10:07:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.16299.371 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 27ac
Heure de début : 01d3f13d0de34262
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\internet explorer\iexplore.exe
ID de rapport : 464ef0fc-bf75-4481-93e0-393775026e4a
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (05/21/2018 09:42:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.16299.371 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 266c
Heure de début : 01d3f13775e2b332
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\internet explorer\iexplore.exe
ID de rapport : 4d84e66f-836c-4ef5-93c0-9ee24929d878
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (05/21/2018 08:04:28 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed.
à _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible)
à _HPCommRecovery.HPAHAgent.CallAgent()
à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
à _HPCommRecovery.HPAHLogger.NewSession()
à _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus)
à System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
Error: (05/20/2018 11:05:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Explorer.EXE
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 00007FF9D200C2A8
Error: (05/20/2018 11:01:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme ZHPDiag3.exe version 2018.5.20.114 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 4f28
Heure de début : 01d3f07b71e335ff
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\emman\Downloads\ZHPDiag3.exe
ID de rapport : 5a23b342-cfa6-4d0b-ba13-b4feb7590afa
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Erreurs système:
=============
Error: (05/22/2018 09:31:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:30:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Détection de services interactifs s’est arrêté avec l’erreur :
Fonction incorrecte.
Error: (05/22/2018 09:30:29 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/22/2018 09:29:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:28:54 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-551D38K)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID DESKTOP-551D38K\emman de l’utilisateur (S-1-5-21-1180263477-3657733799-1779953298-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/22/2018 09:27:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:25:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:25:15 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-551D38K)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID DESKTOP-551D38K\emman de l’utilisateur (S-1-5-21-1180263477-3657733799-1779953298-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
CodeIntegrity:
===================================
Date: 2018-05-22 21:19:41.879
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:41.875
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:40.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:40.195
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:33.192
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:33.188
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:29.434
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:29.432
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 59%
Mémoire physique - RAM - totale: 8036.17 MB
Mémoire physique - RAM - disponible: 3259.75 MB
Mémoire virtuelle totale: 9956.17 MB
Mémoire virtuelle disponible: 4132.09 MB
==================== Lecteurs ================================
Drive c: (Windows) (Fixed) (Total:224.12 GB) (Free:71.83 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:13.12 GB) (Free:1.59 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
\\?\Volume{75672280-7f8f-4a20-8f76-fa4ee6be7891}\ () (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32
\\?\Volume{ab92287c-a22e-4267-bad3-72dfe604a881}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.56 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: C5BF20F1)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par emman (22-05-2018 21:32:05)
Exécuté depuis C:\Users\emman\Desktop
Windows 10 Home Version 1709 16299.431 (X64) (2018-05-09 17:37:03)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1180263477-3657733799-1779953298-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1180263477-3657733799-1779953298-503 - Limited - Disabled)
emman (S-1-5-21-1180263477-3657733799-1779953298-1001 - Administrator - Enabled) => C:\Users\emman
Invité (S-1-5-21-1180263477-3657733799-1779953298-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1180263477-3657733799-1779953298-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {8BCDACFA-D264-3528-5EF8-E94FD0BC1FBC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee VirusScan (Enabled - Up to date) {30AC4D1E-F45E-3AA6-6448-D23DAB3B5501}
FW: Pare-feu McAfee (Enabled) {B3F62DDF-980B-3470-75A7-407A2E6F58C7}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\uTorrent) (Version: 3.5.3.44428 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{543F829B-4591-4B2F-AF63-6E6E6AE59EB2}) (Version: 6.4 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{0ECA3BB5-4410-414B-B226-241FF1C12CD0}) (Version: 6.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{9E005AAA-81A3-478E-8944-532D350952EE}) (Version: 11.3.1.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0410 - Disc Soft Ltd)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
EzTiltPen (HKLM\...\{359DAC8D-CE33-4729-84E9-22D3367A44A9}_is1) (Version: 1.0.0.19 - ELAN microelectronics Crop.)
f.lux (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\Flux) (Version: - f.lux Software LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 66.0.3359.181 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.9.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}) (Version: 8.6.18.11 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{5E0AE938-A2B7-4FC0-AD2C-3B86CAB2C2C6}) (Version: 12.9.18.3 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{4B0A7A8A-ECE5-4639-9A0D-C535F354313D}) (Version: 1.4.26 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{2EC9AB64-3ACA-460D-B309-0A7052B0C8C0}) (Version: 1.1.21.1 - HP)
iCloud (HKLM\...\{5BD11939-D2C2-4F1B-AAAF-5ECE19A801F7}) (Version: 7.4.0.111 - Apple Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.4973 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden
Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 2.2.1.31 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.10.0 - Intel Corporation)
Intel® Integrated Sensor Solution (HKLM-x32\...\{0154a7e9-eb49-44a6-96ce-f3cb48047ffe}) (Version: 3.10.100.3524 - Intel Corporation)
IObit Malware Fighter 6 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 6.0 - IObit)
ISS_Drivers_x64 (HKLM\...\{2DAED66F-EF16-4951-8C03-B10A54C233DB}) (Version: 3.10.100.3524 - Intel Corporation) Hidden
iTunes (HKLM\...\{283FFCFA-108D-434D-92EA-BD606B37D869}) (Version: 12.7.4.80 - Apple Inc.)
KeePass Password Safe 2.39 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.39 - Dominik Reichl)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{8060a69f-ee27-444b-b126-775f861232ea}) (Version: 20.0.2 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Logiciel Thunderbolt™ (HKLM-x32\...\{BD73BA0A-366B-4548-BA20-25F1B5E3B0CB}) (Version: 17.3.72.250 - Intel Corporation)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R11 - McAfee, Inc.)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Mises à jour NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 60.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 60.0.1 (x64 fr)) (Version: 60.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0 - Mozilla)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 389.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 389.12 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 389.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 389.12 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.0 - pdfforge GmbH)
Private Internet Access v79 (HKLM-x32\...\{148169C2-5558-4C3E-B38A-7B1813A264CA}_is1) (Version: 79 - London Trust Media, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.21304 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8318 - Realtek Semiconductor Corp.)
Samsung AllShare (HKLM-x32\...\{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.0.0.11023_15 - Samsung Electronics Co., Ltd.) Hidden
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.0.0.11023_15 - Samsung Electronics Co., Ltd.)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.35 - Synaptics Incorporated)
Synaptics WBF FP Reader (HKLM\...\{BCEBAD40-80FD-4C72-95D0-94CB0727F067}) (Version: 5.5.19.1088 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB3213548) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{1C894A72-A611-4A19-B106-0218E3CAC377}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB3213548) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{1C894A72-A611-4A19-B106-0218E3CAC377}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.2 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Web Companion (HKLM-x32\...\{e445fdfd-b3b2-4940-b53c-b62e94ba8368}) (Version: 4.2.1846.3481 - Lavasoft)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [ IMFSafeBox] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers1: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-04-11] (McAfee, Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-03-18] (Apple Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers4: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\System32\DriverStore\FileRepository\ki126950.inf_amd64_fa7f56314967630d\igfxDTCM.dll [2018-03-07] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2018-03-07] (NVIDIA Corporation)
ContextMenuHandlers6: [IObit Malware Fighter] -> {0BB81440-5F42-4480-A5F7-770A6F439FC8} => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFShellExt.dll [2018-03-20] (IObit)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => c:\Program Files\mcafee\msc\McCtxMenuFrmWrk.dll [2018-04-11] (McAfee, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {05CE7190-EEE8-422D-A358-9DC8151CBE21} - System32\Tasks\HPCeeScheduleForemman => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-06-24] (HP Inc.)
Task: {088E5EE6-9EFC-432E-B800-739D5776A113} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-09-27] (HP Inc.)
Task: {0BFEC673-CC74-4FA8-8EA5-BBEFE3DCF31D} - System32\Tasks\Private Internet Access Startup => C:/Program Files/pia_manager/pia_manager.exe [2018-04-11] ()
Task: {0C680F97-6220-452C-BFB0-EA0CD28A4DB0} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {0DD28709-5D8B-4BDD-A052-A9F6C2B3C45C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation)
Task: {1047B71E-D0B6-4791-889B-DF95C821868B} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [2017-10-11] (Intel(R) Corporation)
Task: {1E9C6388-C8F3-46AB-A9A7-074D81A66A07} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-05-14] (Google Inc.)
Task: {2916D5E5-6165-4116-98A9-B41B1EB086B7} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => ConditionalAppStarter.exe
Task: {2D52915E-0AFF-49B0-9C5D-E628D4C3434C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-09-27] (HP Inc.)
Task: {2E43A327-16CA-4358-BA89-967EB691FC72} - System32\Tasks\tranchestranches => C:\Program Files (x86)\blueprint\blueprint.exe
Task: {32474549-FC25-44A7-A756-CB692D0410B7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {344EA58B-6561-4289-99DD-DE3C37395AF1} - System32\Tasks\backhanded_duelingbackhanded_dueling => C:\Program Files (x86)\Hambone\Fuzzier.exe
Task: {356AD7B9-A8C7-48D6-9009-536D2C802849} - System32\Tasks\expexp => C:\Program Files (x86)\Pants\Fuzzier.exe
Task: {3C999A1E-72B7-4C78-B43C-4D1837A03BF7} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation)
Task: {40313EA5-9D93-428C-9137-32CE6361B1EF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-05-02] (HP Inc.)
Task: {4301B97F-6F3C-446E-B4EF-DD48A5D1EA82} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-12-05] (NVIDIA Corporation)
Task: {449D6C96-144E-47C6-8912-1151035ACB74} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {59042668-21A9-46C7-A347-810AC663ADA1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {5ACF680A-A32A-468E-BEEF-5E7FF9D87ED0} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {5BC61341-252F-4A96-B679-99B9464545EE} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\windows\system32\Notifier.exe [2018-05-04] (Microsoft Corporation)
Task: {66062E75-8A04-4803-8F90-3DD81011B8FF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.)
Task: {6EF9742B-CB6F-4084-9B41-473A71DBEEF2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {7783F038-D075-45FD-8B23-6015A47F2CDF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-12-05] (NVIDIA Corporation)
Task: {7D7CB637-EC44-423C-8C56-8F39A2A9EED3} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\mcafee\platform\McUICnt.exe [2018-02-28] (McAfee, Inc.)
Task: {84BF7A5E-D946-4371-9391-ABA5BAE6C899} - System32\Tasks\McAfee DAT Built in test => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\1.0.5.243\mcdatrep.exe [2018-05-10] (McAfee, LLC.)
Task: {9160C512-B064-4E21-B452-B39B684584E0} - System32\Tasks\chautauqua grubchautauqua grub => C:\Program Files (x86)\Hambone\Pummeled.exe
Task: {92D7C497-6C2E-44A9-A3E5-8745424D0DEB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {962DEA00-8858-4389-8089-533355BCCD2E} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [2017-02-02] (HP Inc.)
Task: {96B56918-F2D2-4D50-A2D2-970E2F2D5215} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-05-14] (Google Inc.)
Task: {9810038D-6E5F-4246-96A2-1C7758F9BA46} - System32\Tasks\McAfee\DAD.Execute.Updates => C:\Program Files\Common Files\McAfee\DynamicAppDownloader\DADUpdater.exe [2018-03-27] (McAfee, Inc.)
Task: {99690806-2C4B-4A9E-A073-6029BDFD3E89} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {9AE2F998-54C3-4866-A126-C659CD432257} - System32\Tasks\checkbooks_trotskycheckbooks_trotsky => C:\Users\emman\AppData\Local\Pummeled.exe
Task: {9B0EF640-1927-41EC-BD81-9E8308B4DF00} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-10] (Adobe Systems Incorporated)
Task: {9E5D526D-FD58-4EBC-9658-18700AC6950F} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent
Task: {B9DBE6FB-276B-4349-89F0-4B90F4C47688} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-12-05] (NVIDIA Corporation)
Task: {BC8FC627-A845-4898-956D-66D4A17C6291} - System32\Tasks\lansing-capitalismlansing-capitalism => C:\Program Files (x86)\counterclaims\Pummeled.exe
Task: {BD4C56FE-1627-41E6-A30A-B2BC2BA6E572} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-12-05] (NVIDIA Corporation)
Task: {BD83B7BB-D931-42BC-BA7E-8D18C8D58742} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-12-05] (NVIDIA Corporation)
Task: {CA8D76C9-1DAA-4FC5-AD01-925398A4D5B6} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {CC2BB381-DD27-420C-8E91-CD08C00AA490} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-05-02] (HP Inc.)
Task: {D5E1DE46-8E98-410C-850A-DE8472BD81A9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => ConditionalAppStarter.exe
Task: {D60374C9-0DC7-47A2-97FF-4C39EF112CF9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-04-25] (HP Inc.)
Task: {D69F6072-C3E0-46E7-B4DD-A0DDD92665D6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {E1F40634-C525-4971-B618-434F336B6176} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-27] (HP Inc.)
Task: {E319A0DC-DAC7-4281-9534-2E94EEFCAFF8} - System32\Tasks\gess lifters cheezgess lifters cheez => C:\Users\emman\AppData\Local\Fuzzier.exe
Task: {EB643416-DFB8-4BC3-9ED9-7BF06BB97AB2} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => ConditionalAppStarter.exe
Task: {F048887B-1A08-4F61-A2A2-E7DE44498D99} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [2017-10-06] (HP Inc.)
Task: {FC70441E-685B-4A33-98D1-7F94697EB629} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-12-05] (NVIDIA Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\windows\Tasks\HPCeeScheduleForemman.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\emman\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Modules chargés (Avec liste blanche) ==============
2018-03-16 15:19 - 2018-03-16 15:19 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-03-16 15:19 - 2018-03-16 15:19 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\windows\SYSTEM32\inputhost.dll
2018-03-13 23:18 - 2018-03-07 19:00 - 000134952 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 016129144 _____ () C:\Program Files\pia_manager\pia_manager.exe
2018-05-09 22:28 - 2018-02-22 02:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-05-09 22:28 - 2018-02-22 02:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 13:18 - 2017-03-15 13:18 - 001466048 _____ () C:\Program Files\Microsoft Office\Office16\ADDINS\UmOutlookAddin.dll
2018-05-17 20:33 - 2018-05-17 20:33 - 001031680 _____ () C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_1.4.1.0_x64__wafk5atnkzcwy\McUWPTile.dll
2018-05-17 20:33 - 2018-05-17 20:33 - 000074752 _____ () C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_1.4.1.0_x64__wafk5atnkzcwy\McAfee.UWP.AppServices.Crypto.dll
2018-04-06 13:05 - 2018-04-06 13:05 - 000896136 _____ () C:\Program Files\Common Files\McAfee\CSP\2.9.175.0\McCSPMsgBusDLL.dll
2018-05-17 20:36 - 2018-05-15 05:13 - 004443992 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libglesv2.dll
2018-05-17 20:36 - 2018-05-15 05:13 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\66.0.3359.181\libegl.dll
2018-05-13 21:19 - 2018-05-13 21:19 - 000156672 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\296c5d01afa35901372434b00ccb0c0f\BRIDGECommon.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000374784 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\CleanStartController\6d19c952624d9a48e2cac2e1aae60db2\CleanStartController.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000120832 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\BridgeExtension\8456022de82d64bf97944bf2c5e34e1e\BridgeExtension.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000139264 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\d0fa64afab21211a3f6a50343e464ee4\RegistrationUtilities.ni.dll
2018-05-13 22:06 - 2018-05-13 22:06 - 000077824 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\NativeInterop\19c5b6d601736d858956c466b5c82589\NativeInterop.ni.dll
2018-03-13 23:21 - 2017-09-01 04:33 - 001424896 _____ () C:\Program Files\ELAN\EzTiltPen\LibTouch.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000521228 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libgmp-10.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000121524 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libgcc_s_dw2-1.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000023294 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\encdb.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000025094 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\transdb.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020138 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_1252.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000042802 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\stringio.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000076988 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\fiddle.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000034874 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\bin\ruby_builtin_dlls\libffi-6.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000019080 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\utf_16le.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000024071 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\utf_16_32.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000107527 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\single_byte.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000086447 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\src\build\windows\pia_manager\bin\rgloader\rgloader24.mingw.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000164238 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\socket.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020278 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\io\wait.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000036004 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\parser.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000043738 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\generator.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000023715 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\etc.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000238686 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\gems\2.4.0\gems\ffi-1.9.23-x86-mingw32\lib\2.4\ffi_c.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000204591 _____ () C:\Users\emman\AppData\Local\Temp\ocrC88C.tmp\lib\ruby\2.4.0\i386-mingw32\date_core.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000521228 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libgmp-10.dll
2018-05-22 21:15 - 2018-05-22 21:15 - 000121524 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libgcc_s_dw2-1.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000023294 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\encdb.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000025094 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\transdb.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000020138 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_1252.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000042802 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\stringio.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000076988 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\fiddle.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000034874 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\libffi-6.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000019080 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\utf_16le.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000024071 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\utf_16_32.so
2018-05-22 21:15 - 2018-05-22 21:16 - 000107527 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\trans\single_byte.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000086447 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\src\build\windows\pia_manager\bin\rgloader\rgloader24.mingw.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000164238 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\socket.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000020278 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\io\wait.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000036004 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\parser.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000043738 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\json\ext\generator.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000023715 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\etc.so
2018-05-22 21:16 - 2018-05-22 21:16 - 000238686 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\gems\2.4.0\gems\ffi-1.9.23-x86-mingw32\lib\2.4\ffi_c.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000204591 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\date_core.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000096686 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\zlib.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000098626 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\bin\ruby_builtin_dlls\zlib1.dll
2018-05-22 21:15 - 2018-05-22 21:16 - 000023870 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\enc\windows_31j.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000433264 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\openssl.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000027213 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\digest.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000018967 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\io\nonblock.so
2018-05-22 21:15 - 2018-05-22 21:15 - 000024368 _____ () C:\Users\emman\AppData\Local\Temp\ocr2235.tmp\lib\ruby\2.4.0\i386-mingw32\cgi\escape.so
2018-05-09 22:43 - 2018-04-11 09:30 - 002061592 _____ () C:\Program Files\pia_manager\nwjs\ffmpeg.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 005617944 _____ () C:\Program Files\pia_manager\nwjs\node.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 002246144 _____ () C:\Program Files\pia_manager\nwjs\swiftshader\libglesv2.dll
2018-05-09 22:43 - 2018-04-11 09:30 - 000101888 _____ () C:\Program Files\pia_manager\nwjs\swiftshader\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\localhost -> localhost
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-09-29 15:46 - 2018-05-10 12:29 - 000001388 _____ C:\windows\system32\Drivers\etc\hosts
162.222.193.86 aoaomo.tremorhub.com
188.95.50.62 bobomo.tremorhub.com
162.222.193.86 www.howcast.com
162.222.193.86 howcast.com
162.222.193.86 www.ustream.tv
162.222.193.86 ustream.tv
162.222.193.86 www.livestream.com
162.222.193.86 livestream.com
162.222.193.86 www.dailymotion.com
162.222.193.86 dailymotion.com
192.192.3.8 www.virustotal.com
192.192.3.8 virustotal.com
5.149.252.98 www.gstatic.com
5.149.252.98 www.google-analytics.com
5.149.252.98 adservice.google.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Behaviorists"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AllShareAgent"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\StartupFolder: => "halbrookhalbrook.lnk"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\StartupFolder: => "halbrook.lnk"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "wastefully"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1180263477-3657733799-1779953298-1001\...\StartupApproved\Run: => "laender"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{573EF54A-9DF9-4360-8F74-903FF9C9CA1D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6AB070DA-9AE2-4695-8467-B4E5AE936D06}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{26959D4E-074B-4289-88D4-36F68D2997DF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2346A554-8511-4156-BA9E-C7357EAE6286}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{88B91E96-7791-4109-963A-F8CE25DA69E7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{9EC36CC9-1B7A-4029-98EA-5ABB7CDDD299}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{B454C3A0-9F17-408A-885D-E37CF53CABA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D9613B97-D32E-42B8-B6DF-235B00DB1758}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D6FD3345-80E1-4A67-81A9-B54A9C5AFEF2}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [{70D6AD5F-B610-417A-9F03-EBB9F2BBDDF4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3DC97760-F25A-43CE-945C-BCA6EE1A9A4F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1F851DEF-C944-4CF4-916D-FAB6CD356641}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{809D0D3E-8196-4835-9387-F4A9C7508B6D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E7867280-AAE0-4BDE-8F9E-819FA7DE7C99}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{A6CDA826-4153-4FDA-B573-5A3DD8654727}] => (Allow) C:\Users\emman\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A12BC6FC-8942-4FD8-B51A-DF864B346BE4}] => (Allow) C:\Users\emman\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E336F593-6374-40DB-85FB-15CC4F2DA483}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{C08D12BD-6A53-4F7B-83D0-05DA3F087697}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{36EB244B-1694-4D2B-BC1C-35B5018503B3}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{57E731CE-7DD2-49E7-B04D-E849D1A64941}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{2394FF13-A23D-4163-9298-08FFE67B8BC2}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
FirewallRules: [{33541087-AFE8-477A-964F-2CD5E4B423A0}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShare.exe
FirewallRules: [{3E580382-EDF1-49D9-9C72-F212D9A4B73A}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
FirewallRules: [{798BC385-002F-4A07-A56F-522B7113ACF3}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{E74FA45C-6A8B-49A2-BEF4-AB5CB0CB84D9}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{3393F1B0-641C-400D-BBCC-3DB1C9F601A6}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{6B68E073-39CD-4A2A-B125-2AB0AF88E31C}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\WiselinkPro.exe
FirewallRules: [{0574AD6F-8C67-4EB8-9F26-F85E0E19AA4C}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{01EF2405-A3BE-42C2-B5BF-F3F560BC490A}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\http_ss_win_pro.exe
FirewallRules: [{2715F640-C268-4476-8D2A-8FF8FF6C6CEE}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe
FirewallRules: [{606D0B08-D859-44DC-B5D5-36C543D48F39}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe
FirewallRules: [{66D7C9A9-4178-4E7F-ADE0-D087A0FDF802}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{F1647B90-740D-4308-8850-748B77205106}] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [{42987B2C-5666-4808-A8EA-F2C3096300D8}] => (Allow) C:\Program Files (x86)\Pants\Fuzzier.exe
FirewallRules: [{6B4A9D85-EF85-46B7-98D8-48ED0964717D}] => (Allow) C:\Program Files (x86)\Hambone\Fuzzier.exe
FirewallRules: [{6EA3E4F0-ED8A-40FB-9E12-C4642E958F6D}] => (Allow) C:\Program Files (x86)\counterclaims\Pummeled.exe
FirewallRules: [{1125D0B2-4EFD-42C9-8CCB-CD62E05A9759}] => (Allow) C:\Program Files (x86)\Hambone\Pummeled.exe
FirewallRules: [{5A616079-A74D-4284-8384-0F9F60A7CF5E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/22/2018 09:18:25 PM) (Source: HP Active Health) (EventID: 91) (User: )
Description: Unhandled Exception. Application will terminate immediately.
System.Threading.AbandonedMutexException: The wait completed due to an abandoned mutex.
at System.Threading.WaitHandle.ThrowAbandonedMutexException()
at System.Threading.WaitHandle.InternalWaitOne(SafeHandle waitableSafeHandle, Int64 millisecondsTimeout, Boolean hasThreadAffinity, Boolean exitContext)
at System.Threading.WaitHandle.WaitOne(TimeSpan timeout, Boolean exitContext)
at HP.ActiveHealth.Core.ActiveHealthMain.Main(String[] args)
Error: (05/22/2018 09:15:26 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed.
à _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible)
à _HPCommRecovery.HPAHAgent.CallAgent()
à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
à _HPCommRecovery.HPAHLogger.NewSession()
à _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus)
à System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
Error: (05/21/2018 11:19:01 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Explorer.EXE
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 00007FF9D200C2A8
Error: (05/21/2018 10:07:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.16299.371 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 27ac
Heure de début : 01d3f13d0de34262
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\internet explorer\iexplore.exe
ID de rapport : 464ef0fc-bf75-4481-93e0-393775026e4a
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (05/21/2018 09:42:29 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 11.0.16299.371 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 266c
Heure de début : 01d3f13775e2b332
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Program Files\internet explorer\iexplore.exe
ID de rapport : 4d84e66f-836c-4ef5-93c0-9ee24929d878
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (05/21/2018 08:04:28 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.Exception: StartProcessAsCurrentUser: GetSessionUserToken failed.
à _HPCommRecovery.ProcessExtensions.StartProcessAsCurrentUser(String appPath, String cmdLine, String workDir, Boolean visible)
à _HPCommRecovery.HPAHAgent.CallAgent()
à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
à _HPCommRecovery.HPAHLogger.NewSession()
à _HPCommRecovery.HPCommRecovery.OnPowerEvent(PowerBroadcastStatus powerStatus)
à System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).
Error: (05/20/2018 11:05:03 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Explorer.EXE
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : code d'exception c0000005, adresse d'exception 00007FF9D200C2A8
Error: (05/20/2018 11:01:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme ZHPDiag3.exe version 2018.5.20.114 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 4f28
Heure de début : 01d3f07b71e335ff
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\emman\Downloads\ZHPDiag3.exe
ID de rapport : 5a23b342-cfa6-4d0b-ba13-b4feb7590afa
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Erreurs système:
=============
Error: (05/22/2018 09:31:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:30:58 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Détection de services interactifs s’est arrêté avec l’erreur :
Fonction incorrecte.
Error: (05/22/2018 09:30:29 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/22/2018 09:29:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:28:54 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-551D38K)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID DESKTOP-551D38K\emman de l’utilisateur (S-1-5-21-1180263477-3657733799-1779953298-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/22/2018 09:27:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:25:22 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-551D38K)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (05/22/2018 09:25:15 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-551D38K)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID DESKTOP-551D38K\emman de l’utilisateur (S-1-5-21-1180263477-3657733799-1779953298-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
CodeIntegrity:
===================================
Date: 2018-05-22 21:19:41.879
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:41.875
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:40.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:40.195
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:33.192
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:33.188
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:29.434
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-05-22 21:19:29.432
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 59%
Mémoire physique - RAM - totale: 8036.17 MB
Mémoire physique - RAM - disponible: 3259.75 MB
Mémoire virtuelle totale: 9956.17 MB
Mémoire virtuelle disponible: 4132.09 MB
==================== Lecteurs ================================
Drive c: (Windows) (Fixed) (Total:224.12 GB) (Free:71.83 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:13.12 GB) (Free:1.59 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
\\?\Volume{75672280-7f8f-4a20-8f76-fa4ee6be7891}\ () (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32
\\?\Volume{ab92287c-a22e-4267-bad3-72dfe604a881}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.56 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: C5BF20F1)
Partition: GPT.
==================== Fin de Addition.txt ============================