Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:05-03-2016 01 Exécuté par Xavier Merit (2016-03-12 10:26:10) Exécuté depuis C:\Users\Xavier Merit\Desktop Windows 8.1 (X64) (2014-01-27 13:42:37) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2609723322-2292509101-585388186-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-2609723322-2292509101-585388186-1005 - Limited - Enabled) Invité (S-1-5-21-2609723322-2292509101-585388186-501 - Limited - Disabled) Xavier Merit (S-1-5-21-2609723322-2292509101-585388186-1001 - Administrator - Enabled) => C:\Users\Xavier Merit ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{0F347A49-E36C-4639-8D2E-003AD408B8B2}) (Version: 1.5 - Eyeo GmbH) Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated) Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.7.1245.73473 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 4.7.1245.73473 - Alcor Micro Corp.) Hidden Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Atheros Bluetooth Filter Driver Package (HKLM\...\{026B819B-4D60-4C8B-892D-33A0D8666F60}) (Version: 2.0.0.9 - Qualcomm Atheros) Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software) Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 2.1.13.1163 - Avira Operations GmbH & Co. KG) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite MFC-L2700DW series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.2.0 - Brother Industries, Ltd.) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5571 - CDBurnerXP) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dropbox (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\Dropbox) (Version: 3.14.7 - Dropbox, Inc.) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Free Video Call Recorder for Skype version 1.2.21.922 (HKLM-x32\...\Free Video Call Recorder for Skype_is1) (Version: 1.2.21.922 - DVDVideoSoft Ltd.) Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Garmin BaseCamp (HKLM-x32\...\{EBAC8FD4-28EC-46F7-BF9E-89D6E6673001}) (Version: 4.2.5 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Genius PDF (HKLM-x32\...\{CF360EF6-65B1-47B3-AF23-5F8626108585}_is1) (Version: 2.1 - LiquidPsi Software) Genius PDF Converter (HKLM-x32\...\Genius PDF Converter) (Version: 1.0.0.0 - LiquidPsi Software) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.) Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.13.258 - SurfRight B.V.) HP Officejet 6500 E710a-f Aide (HKLM-x32\...\{037CD593-D760-4A00-B030-7BBAFA1123FE}) (Version: 140.0.2.2 - Hewlett Packard) HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.1.40.3 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{F6A11738-3EE4-4573-AEA5-6CD5D491C167}) (Version: 12.0.30.219 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) IDT Audio Driver (HKLM\...\{11424B27-C16B-4505-9667-82A10AD1B1DC}) (Version: 6.10.6472.0 - IDT) ImageMagick 6.7.5-7 Q16 (2012-03-01) (HKLM-x32\...\ImageMagick 6.7.5 Q16_is1) (Version: 6.7.5 - ImageMagick Studio LLC) Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41663) (Version: 3.8.0.41663.61 - Intel) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3345 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.4.1001 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Kernel Outlook PST Viewer ver 15.0 (HKLM-x32\...\Kernel Outlook PST Viewer_is1) (Version: - Lepide Software Pvt.Ltd.) Le Cloud d'Orange - Transfert de fichiers (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\Le Cloud d'Orange - Transfert de fichiers) (Version: 2.1.0 - Orange-France) Le Cloud Orange 2.1.0 (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\Le Cloud Orange) (Version: 2.1.0 - ) LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation) Logiciel de base du périphérique HP Officejet 6500 E710a-f (HKLM\...\{0E1DFE6D-76C4-4F39-A121-89A523BBA48A}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) MEGA6 .06 (HKLM-x32\...\{EE7E4984-0208-48E7-959C-A5F5F06F0DE0}_is1) (Version: .06 - Center for Evolutionary Medicine and Informatics) Microsoft LifeCam (HKLM\...\{8EC9E7BB-2443-49B1-8476-490EBF932C2E}) (Version: 4.25.512.0 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\OneDriveSetup.exe) (Version: 17.3.6301.0127 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Nuance PaperPort 12 (HKLM-x32\...\{2A770862-7142-4C77-8117-F933E4110A3F}) (Version: 12.1.0006 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) Orange Player (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\996852925.video-a-la-demande.orange.fr) (Version: - video-a-la-demande.orange.fr) Orange Player Communicator (HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\1005344701.video-a-la-demande.orange.fr) (Version: - video-a-la-demande.orange.fr) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.) Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.13 - Qualcomm Atheros Communications Inc.) Scansoft PDF Professional (x32 Version: - ) Hidden ShadowExplorer 0.9 (HKLM-x32\...\ShadowExplorer_is1) (Version: 0.9.462.0 - ShadowExplorer.com) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.) SpyHunter 4 (HKLM-x32\...\SpyHunter) (Version: 4.21.18.4608 - Enigma Software Group, LLC) Stepok RAW Importer v2.6 (HKLM-x32\...\Stepok RAW Importer_is1) (Version: - Stepok Image Lab.) SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1212 - SUPERAntiSpyware.com) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated) TOSHIBA Battery Check Utility (HKLM-x32\...\{5468E297-7EF8-4CB3-A091-F8714147793F}) (Version: 1.00.01.01 - Toshiba Corporation) TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.01.02.6405 - Toshiba Corporation) TOSHIBA Display Utility (HKLM\...\{B6619F14-F766-4000-BC8A-522D4CC4E44F}) (Version: 1.0.4.5 - Toshiba Corporation) TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.3.6403 - Toshiba Corporation) TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6630.6403 - Toshiba Corporation) TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA) TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 3.00.342 - Toshiba Corporation) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.9.02.6402 - Toshiba Corporation) TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.0.01.55004008 - Toshiba Corporation) TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.2.6.0 - Toshiba Corporation) TOSHIBA Service Station (HKLM\...\{6499E894-43F8-458B-AE35-724F4732BCDE}) (Version: 2.5.6 - Toshiba Corporation) TOSHIBA Service Station (HKLM\...\{B1F241E1-90BF-4201-8977-A0DF85A38EBB}) (Version: 2.6.16.0 - Toshiba Corporation) TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0020 - Toshiba Corporation) TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0007.32003 - Toshiba Corporation) Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.3.3 - Toshiba Europe GmbH) TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.3.5.59 - Toshiba Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2609723322-2292509101-585388186-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\DropboxExt64.33.dll (Dropbox, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1AFE671E-B7E6-4D44-B134-F2E4F297B70B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-05] (AVAST Software) Task: {1D68E8E6-18A6-4ADB-9620-B6DA5ECE1440} - System32\Tasks\{C3918B81-4E4F-4F29-9F8C-8FBE8ACD198A} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.22.73.107.456/fr/abandoninstall?page=tsProgressBar Task: {34B7A679-8CD2-4760-9A23-81D616AACECD} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-03-07] (Microsoft Corporation) Task: {36409119-74A5-43E1-B75C-C13736D059F8} - System32\Tasks\{1193DEB3-3B48-41F2-AE54-0AECDFAEF545} => pcalua.exe -a C:\ProgramData\YoutubeAdblocker\F5vGQf9.exe -c /s /n /i:"ExecuteCommands;UninstallCommands" "" Task: {415AEF64-100F-409E-99DD-ADB3A23047E9} - System32\Tasks\{5959708F-4294-4672-9029-62D481201D0C} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.5.73.102.456/fr/abandoninstall?page=tsProgressBar Task: {4352FE68-F924-4F1F-85FF-CEF8D89267B2} - System32\Tasks\{A823423C-3684-4039-A837-65B7DDB167E0} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.7.73.103.456/fr/abandoninstall?page=tsProgressBar Task: {490BC9D4-457B-4A24-B6E1-A5468F6E051A} - System32\Tasks\{128C5979-CEED-4A45-8D0B-0791A255382F} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.20.0.104/fr/abandoninstall?page=tsProgressBar Task: {539BE55F-78FC-4B93-BC2C-EA905789A9CA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-02-17] (Hewlett-Packard) Task: {5435BE54-5703-4070-80CB-0AA665C769FA} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2609723322-2292509101-585388186-1001UA => C:\Users\Xavier Merit\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.) Task: {57412225-ED11-40A8-B90B-EF08E927C71A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-26] (Google Inc.) Task: {64338001-156D-4A31-B988-C06AA09C66C2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2609723322-2292509101-585388186-1001Core => C:\Users\Xavier Merit\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.) Task: {653F1904-A2CF-4DC1-9E37-B1E0DAF59AA4} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2609723322-2292509101-585388186-1001 => C:\Users\Xavier Merit\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-02-13] (Microsoft Corporation) Task: {6984FFE8-C959-4BB4-870F-BA9EEA75C26F} - System32\Tasks\{7452E251-2CC9-4D0F-90F7-2C19DCE4F1A9} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.14.0.104/fr/abandoninstall?page=tsProgressBar Task: {6D9AC506-332D-411B-B65F-8BE701968D10} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company) Task: {7E48BCFE-73A0-4893-9D8B-3BA9D1DA82D1} - System32\Tasks\{7B8965DC-5225-4698-B923-661393C163AB} => pcalua.exe -a C:\ProgramData\GrEatsaovere\DLJm.exe -c /s /n /i:"ExecuteCommands;UninstallCommands" "" Task: {844CD76E-6580-4DD7-91B2-D704801696C0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-01] (AVAST Software) Task: {8F7E15A5-D2DB-443C-B2D5-85D8E87D47AD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-01-20] (Hewlett-Packard) Task: {903CFBAD-669C-4643-9687-9E57CF61F097} - System32\Tasks\{13D039E7-A2B8-417A-BDE8-698616BAAEAC} => pcalua.exe -a C:\ProgramData\SeAerrceH-NNEwTeab\zG9l.exe -c /s /n /i:"ExecuteCommands;UninstallCommands" "" Task: {906E883D-E13B-45D0-9D8A-891AAC6E09BC} - System32\Tasks\{C8ECCC39-2B51-439A-9216-1E906F0D6F76} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.22.73.107.456/fr/abandoninstall?page=tsProgressBar Task: {91A02B53-7BC5-49FF-BF43-0F21718BB3B5} - System32\Tasks\HPCeeScheduleForXavier Merit => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {91C1C9C8-F622-4E97-A7EA-194292224269} - System32\Tasks\{991872E1-CB9F-4374-A060-4B668810FFA8} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.14.0.104/fr/abandoninstall?page=tsProgressBar Task: {983E1A62-0BD8-401A-966D-C00CA6061CAA} - System32\Tasks\{2011A4DF-3201-41A6-BFDF-1FEA93DF9F3F} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.21.73.104.456/fr/abandoninstall?page=tsProgressBar Task: {98729FA3-357B-4544-9542-CADBCA40BE0A} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2014-04-03] (TOSHIBA Corporation) Task: {99775189-AEE1-4447-BD9D-266C2280D037} - System32\Tasks\{82FBDCFD-B782-4047-9181-783EC214C0EB} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.1.73.105.456/fr/abandoninstall?page=tsProgressBar Task: {9989EC0F-EAC2-48A5-A732-8532BBA7CBFD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-02-18] (Hewlett-Packard) Task: {9D83DDF0-B193-4F43-8FB4-AB52DA62547B} - System32\Tasks\{195366C6-28F4-42CD-A677-35098EFCF15C} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.15.73.103.456/fr/abandoninstall?page=tsProgressBar Task: {A74C9412-C63C-4120-B0CF-45E889F6B0D3} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [2015-11-17] (Adobe Systems Incorporated) Task: {A8791259-C7D5-48C8-A29D-BAE9167CAF73} - System32\Tasks\avastBCLRestartS-1-5-21-2609723322-2292509101-585388186-1001 => Chrome.exe Task: {AAB4C298-B365-492A-97C7-9D41C9FEED1A} - System32\Tasks\{ECB85384-A54B-4641-BF71-19FEF45A3D9A} => Iexplore.exe hxxp://ui.skype.com/ui/0/7.7.73.103.456/fr/abandoninstall?page=tsProgressBar Task: {B8EA07AA-7ECF-4B58-88C9-45559B1186AA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-26] (Google Inc.) Task: {C7B9782E-F986-443C-BC0C-E854228B25C3} - System32\Tasks\Avira System Speedup Tray => C:\Program Files (x86)\Avira\AviraSpeedup\Avira.SystemSpeedup.UI.Systray.exe [2016-02-26] (Avira Operations GmbH & Co. KG) Task: {CB975586-C945-40F2-86EF-C1A535A5212A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company) Task: {D09CBCDC-28AB-4117-B914-D75F5DF46ECC} - System32\Tasks\{7A5DA13F-A24F-448E-83BB-CEAB2D7A77F8} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.16.0.105/fr/abandoninstall?page=tsProgressBar Task: {D55FBE5C-F665-466B-B268-6FA3884D66CE} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-01-04] (Toshiba Europe GmbH) Task: {FFBA16F3-BF0E-4A1A-8AEA-C2E52AB0F270} - System32\Tasks\{5C528A3C-5D6A-4CF3-A6FD-BED7C51029E6} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.22.73.107.456/fr/abandoninstall?page=tsProgressBar (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2609723322-2292509101-585388186-1001Core.job => C:\Users\Xavier Merit\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2609723322-2292509101-585388186-1001UA.job => C:\Users\Xavier Merit\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForXavier Merit.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2013-03-27 22:53 - 2013-03-27 22:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe 2014-01-09 16:25 - 2012-05-09 09:48 - 00086016 _____ () C:\WINDOWS\System32\GeniusPDF_redmonnt.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-01-10 10:13 - 2015-03-05 01:03 - 00143360 ____R () C:\WINDOWS\system32\BrSNMP64.dll 2013-11-04 19:22 - 2013-11-04 19:22 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2012-07-19 02:38 - 2012-07-19 02:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll 2016-03-05 19:52 - 2016-03-05 19:52 - 01459712 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.UI\5c9c0b89a558d0e589c254af6b1ca238\Windows.UI.ni.dll 2016-03-05 19:53 - 2016-03-05 19:53 - 00521216 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Data\e291aa8a59dc390d0cdf99d3c6d8b6e5\Windows.Data.ni.dll 2016-03-05 19:53 - 2016-03-05 19:53 - 00363520 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\b3972424579e18e6699549ecb948c4ef\Windows.Foundation.ni.dll 2015-08-01 21:27 - 2015-08-01 21:27 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-08-01 21:27 - 2015-08-01 21:27 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-03-08 14:03 - 2016-03-08 14:03 - 02838016 _____ () C:\Program Files\AVAST Software\Avast\defs\16030800\algo.dll 2016-03-09 08:59 - 2016-03-09 08:59 - 02838016 _____ () C:\Program Files\AVAST Software\Avast\defs\16030801\algo.dll 2016-03-11 19:36 - 2016-03-11 19:36 - 02839552 _____ () C:\Program Files\AVAST Software\Avast\defs\16031101\algo.dll 2015-08-02 03:28 - 2015-08-02 12:40 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-01-10 10:12 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2013-06-28 15:38 - 2012-07-18 14:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2015-10-26 22:19 - 2015-10-26 22:19 - 00372840 _____ () C:\Program Files (x86)\LibreOffice 5\program\glew32.dll 2015-10-26 22:19 - 2015-10-26 22:19 - 01037416 _____ () C:\Program Files (x86)\LibreOffice 5\program\libxml2.dll 2015-10-26 22:19 - 2015-10-26 22:19 - 00182376 _____ () C:\Program Files (x86)\LibreOffice 5\program\libxslt.dll 2015-10-26 22:20 - 2015-10-26 22:20 - 00116328 _____ () C:\Program Files (x86)\LibreOffice 5\program\python3.dll 2015-10-26 19:51 - 2015-10-26 19:51 - 00049152 _____ () C:\Program Files (x86)\LibreOffice 5\program\python-core-3.3.3\lib\_socket.pyd 2016-02-18 16:39 - 2016-01-12 19:44 - 00034768 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd 2016-02-18 16:39 - 2016-01-12 19:45 - 00019408 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\faulthandler.pyd 2015-12-14 07:55 - 2016-01-12 19:44 - 00116688 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\pywintypes27.dll 2016-02-18 16:39 - 2016-01-12 19:44 - 00093640 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_ctypes.pyd 2016-02-18 16:39 - 2016-01-12 19:44 - 00018376 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\select.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00019760 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00105928 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32api.pyd 2015-12-14 07:55 - 2016-01-12 19:44 - 00392144 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\pythoncom27.dll 2016-02-18 16:39 - 2016-02-16 19:39 - 00381752 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd 2016-02-18 16:39 - 2016-01-12 19:44 - 00692688 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\unicodedata.pyd 2016-02-18 16:39 - 2016-02-16 19:38 - 00020816 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd 2016-02-18 16:39 - 2016-01-12 19:45 - 00112592 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd 2016-02-18 16:39 - 2016-02-16 19:38 - 01682760 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd 2016-02-18 16:39 - 2016-02-16 19:38 - 00020808 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00020800 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_cffi_python_x66cf7a7cx17a72769.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00021840 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00038696 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\fastpath.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00020936 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\mmapfile.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00024528 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32event.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00114640 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32security.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00124880 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32file.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00021832 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00024016 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32clipboard.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00175560 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32gui.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00030160 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32pipe.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00043472 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32process.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00028616 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32ts.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00048592 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32service.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00026456 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd 2016-02-18 16:39 - 2016-01-12 19:46 - 00057808 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32evtlog.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00024016 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\win32profile.pyd 2016-02-18 16:39 - 2016-02-16 19:38 - 00117056 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00024392 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00036296 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\librsync.dll 2016-02-18 16:39 - 2016-02-16 19:39 - 00023376 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd 2016-02-18 16:39 - 2016-01-12 19:44 - 00134608 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_elementtree.pyd 2015-12-14 07:54 - 2016-01-12 19:44 - 00134088 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\pyexpat.pyd 2016-02-18 16:39 - 2016-01-12 19:45 - 00240584 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\jpegtran.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00052024 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00020800 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00021824 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00019776 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00020800 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd 2016-02-18 16:39 - 2016-02-16 19:38 - 00020280 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd 2016-02-18 16:39 - 2016-01-12 19:47 - 00350152 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winxpgui.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00022352 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00084792 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL 2015-12-14 07:54 - 2016-02-16 19:39 - 01826096 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd 2016-02-18 16:39 - 2016-01-12 19:45 - 00083912 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\sip.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 03928880 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 01971504 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00531248 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00132912 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00223544 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00207672 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00158008 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd 2016-02-18 16:39 - 2016-02-16 19:39 - 00042808 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd 2016-02-18 16:39 - 2016-01-12 19:49 - 00017864 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\libEGL.dll 2016-02-18 16:39 - 2016-01-12 19:49 - 01631184 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2016-02-18 16:39 - 2016-02-16 19:39 - 00024904 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00546096 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd 2015-12-14 07:54 - 2016-02-16 19:39 - 00357680 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd 2016-02-18 16:39 - 2016-01-12 19:52 - 00697304 _____ () C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== EXE Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\google.com -> hxxps://drive.google.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\ashleyrnadison.com -> hxxp://www.ashleyrnadison.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\clicnscores.com -> hxxp://promo.clicnscores.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\doublepimp.com -> hxxp://engine.phn.doublepimp.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\exaggeratego.com -> hxxp://hd.exaggeratego.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\jnadoso.com -> hxxp://jd.jnadoso.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\oputster.com -> hxxp://eu.oputster.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\playerpage173.info -> hxxp://lp.playerpage173.info IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\reimageplus.com -> hxxp://www.reimageplus.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\xsrving.com -> hxxp://secure.xsrving.com IE restricted site: HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\yibaofv.com -> hxxp://flv.yibaofv.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 14:25 - 2015-08-31 06:59 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2609723322-2292509101-585388186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Xavier Merit\AppData\Roaming\Microsoft\Internet Explorer\Internet Explorer Wallpaper.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2609723322-2292509101-585388186-1001\...\StartupApproved\Run: => "cacaoweb" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{D557B169-740A-4194-A891-836166876E2B}] => (Allow) C:\Users\Xavier Merit\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe FirewallRules: [{C7F968AC-6799-4189-88B4-BFDE12A0723F}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{D81AFD08-E963-4F45-8E3E-515C7150335F}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe FirewallRules: [{20D22CE0-9AED-4489-BE68-43690AB64D32}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{B66E3CE2-B3B6-4F34-8453-F67950D21A66}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe FirewallRules: [{BDD19F95-A134-47F1-99FE-1BE861A31034}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe FirewallRules: [TCP Query User{A0D217B3-1070-4656-8260-CA33866B1A84}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{91BF8EEC-D744-460E-8AE8-7FE2C58C65B0}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{4235482C-16F0-4982-9C96-EDC926818F4F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{89F14196-8E48-41CD-9B36-F52DA3FFAF04}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{942207CF-989F-412C-AA77-5E237B7A2602}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe FirewallRules: [UDP Query User{558ABD1B-80B3-42C4-A9B4-D575D844C722}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe FirewallRules: [TCP Query User{6B37B285-F557-45F9-A807-7129B5EAEBA1}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{49BC6666-BA92-419F-B2CA-C1BAB6961C8F}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{C627B1C7-1BD8-430F-863A-C93E8891F360}] => (Allow) C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{9513C0FC-C86C-4FDC-88E5-44FD27F7906E}] => (Allow) C:\Users\Xavier Merit\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{203AF38C-1D52-4C2C-B42F-0EB8A742AA69}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{385172E2-94E3-4812-9CCD-24570881917E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{189A5E96-84FE-4FC3-AC3F-D2846F30B002}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{6BBFC70B-C785-4FC7-A44D-F1142E2456E0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C2A7C7EF-1F5A-49DC-BD8B-E0998228B024}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{AC3EC73B-4997-4D47-9DC0-DDB8612EBB6F}] => (Allow) C:\Users\Xavier Merit\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{F75A906A-A30C-4DF7-B2C1-85F78B2720A3}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{F2442DE2-3165-471C-873F-8C177684CBE3}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{230EE678-7A3C-4DB1-85D0-7E6CB47F15CC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{DE61ED0C-E821-46D8-863B-DA3DEBDB8E88}] => (Allow) LPort=2869 FirewallRules: [{20D0DE7B-66A6-4610-B990-D7281897B0D6}] => (Allow) LPort=1900 FirewallRules: [{409401A5-037D-4F6B-AFAE-B8B6A50EC022}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{920F24B9-3325-48EF-BBEA-60185EE42D28}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\FaxApplications.exe FirewallRules: [{295AD62C-E1CF-478B-A442-347B234A2B48}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\DigitalWizards.exe FirewallRules: [{4AC44FE5-56E9-4F22-8CD0-B11B710B32F6}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\bin\SendAFax.exe FirewallRules: [{F541BDBF-61FB-47C1-B248-1FB689A39D42}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\DeviceSetup.exe FirewallRules: [{EF65D34A-9FA7-4A40-95AE-863842DC0755}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicator.exe FirewallRules: [{9C3CF689-F0AA-4193-B608-C4973B3C29A8}] => (Allow) C:\Program Files\HP\HP Officejet 6500 E710a-f\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{AE62ADB5-CB27-4285-B531-4FA9340BAA6E}] => (Allow) C:\Program Files (x86)\Brother\Brmfl14d\FAXRX.EXE FirewallRules: [{8D46F7A4-B631-4CFC-B81E-6EE986C5D679}] => (Allow) LPort=54925 FirewallRules: [{FED1AD3E-AC79-4DEC-AED7-414346C36E1F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 21-02-2016 14:38:38 Point de contrôle planifié 05-03-2016 19:21:18 Installed Python 2.6 06-03-2016 12:20:42 Avira System Speedup 2.1.13 08-03-2016 20:15:21 Restore Point Created by FRST ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Qualcomm Atheros AR3012 Bluetooth 3.0 Description: Qualcomm Atheros AR3012 Bluetooth 3.0 Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Qualcomm Atheros Communications Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/12/2016 10:17:15 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme LiveComm.exe version 17.5.9600.20911 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 2938 Heure de début : 01d17bfb154471e6 Heure de fin : 4294967295 Chemin d’accès de l’application : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe ID de rapport : 571c733d-e7ee-11e5-beec-7c0507f23fc3 Nom complet du package défaillant : microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1 Error: (03/12/2016 02:04:42 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15360 Error: (03/12/2016 02:04:42 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15360 Error: (03/12/2016 02:04:41 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (03/11/2016 05:33:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AdblockPlusEngine.exe, version : 1.5.0.0, horodatage : 0x56017eff Nom du module défaillant : AdblockPlusEngine.exe, version : 1.5.0.0, horodatage : 0x56017eff Code d’exception : 0xc0000409 Décalage d’erreur : 0x00000000002cb73c ID du processus défaillant : 0x440c Heure de début de l’application défaillante : 0xAdblockPlusEngine.exe0 Chemin d’accès de l’application défaillante : AdblockPlusEngine.exe1 Chemin d’accès du module défaillant: AdblockPlusEngine.exe2 ID de rapport : AdblockPlusEngine.exe3 Nom complet du package défaillant : AdblockPlusEngine.exe4 ID de l’application relative au package défaillant : AdblockPlusEngine.exe5 Error: (03/11/2016 02:07:20 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2 » à la ligne C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Error: (03/11/2016 02:07:14 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2 » à la ligne C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Error: (03/11/2016 01:14:35 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2 » à la ligne C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Error: (03/11/2016 01:14:25 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2 » à la ligne C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Error: (03/11/2016 01:13:50 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest2 » à la ligne C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest. Erreurs système: ============= Error: (03/12/2016 10:17:28 AM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: Une alerte irrécupérable a été reçue du point de terminaison distant. Le code d’alerte irrécupérable défini par protocole de TLS est 20. Error: (03/11/2016 10:25:08 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:25:04 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:25:00 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:24:56 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:24:52 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:23:52 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:23:48 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 10:23:44 AM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (03/11/2016 09:05:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service MBAMService s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2015-10-05 10:28:40.902 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\spoolsv.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Genius PDF\Genius PDF Converter\GeniusPDFConverter.exe that did not meet the Store signing level requirements. Date: 2015-02-25 12:46:30.798 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:30.611 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:30.345 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:30.205 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:29.767 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:29.564 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:29.220 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:29.048 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-02-25 12:46:28.767 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Pentium(R) CPU 2020M @ 2.40GHz Pourcentage de mémoire utilisée: 70% Mémoire physique - RAM - totale: 3971.27 MB Mémoire physique - RAM - disponible: 1154.77 MB Mémoire virtuelle totale: 8067.27 MB Mémoire virtuelle disponible: 3856.9 MB ==================== Lecteurs ================================ Drive c: (TI31121900A) (Fixed) (Total:453.39 GB) (Free:120.35 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt ============================