Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02-10-2016 Exécuté par alain (03-10-2016 14:06:04) Exécuté depuis C:\Users\alain\Desktop Windows 10 Home Version 1607 (X64) (2016-08-13 19:14:05) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1408632651-1069037516-1255020646-500 - Administrator - Disabled) alain (S-1-5-21-1408632651-1069037516-1255020646-1000 - Administrator - Enabled) => C:\Users\alain DefaultAccount (S-1-5-21-1408632651-1069037516-1255020646-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1408632651-1069037516-1255020646-1005 - Limited - Enabled) Invité (S-1-5-21-1408632651-1069037516-1255020646-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 600 by Wikango (HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\600 by Wikango) (Version: - ) 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) Acronis True Image (HKLM-x32\...\{43B5FB0A-9900-43B0-BD46-9E7F89C88A98}Visible) (Version: 19.0.6571 - Acronis) Acronis True Image (x32 Version: 19.0.6571 - Acronis) Hidden Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{926DAC89-8C2E-4B0E-BB47-EE0525C5DD06}) (Version: 11.5.39006 - Acronis) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated) Adobe Flash Player Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 9.0.124.0 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17350 - Microsoft Corporation) Belarc Advisor 8.5a (HKLM-x32\...\Belarc Advisor) (Version: 8.5.1.0 - Belarc Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP) Classic Shell (HKLM\...\{383BB30A-B4A7-4666-9A83-22CFA8640097}) (Version: 4.3.0 - IvoSoft) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.0.2.805 - Foxit Software Inc.) Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) HP ENVY 5640 series Aide (HKLM-x32\...\{C4C1D777-2D19-4114-96F8-DBE0EACA5C80}) (Version: 34.0.0 - Hewlett Packard) HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard) HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company) HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 11.00.0001 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C18278AC-049A-4F02-A97F-4FD7294CC4F5}) (Version: 12.5.32.37 - HP) HP TouchSmart Background - Beats (HKLM-x32\...\{6A6F8D36-04BA-41E9-9004-1789BD545874}) (Version: 1.0.1.0 - Hewlett-Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.0.2.156 - IObit) Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.) Hidden Light Image Resizer 4.7.6.1 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.7.6.1 - ObviousIdea) Logiciel de base du périphérique HP ENVY 5640 series (HKLM\...\{933E6CB3-157E-4258-8F4A-50A0793D875E}) (Version: 34.2.117.50647 - Hewlett-Packard Co.) ma Livebox (HKLM-x32\...\ma Livebox) (Version: 3.4.0.0 - Orange) MAGIX Screenshare (HKLM-x32\...\{CC047F04-F0EE-4AA9-8AA0-C059BD78E879}) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (MSI) (HKLM-x32\...\{D8E36E19-98BA-4962-84AC-27930821DDA0}) (Version: 7.0.1.27 - MAGIX AG) MAGIX Vidéo deluxe MX Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe18_premium) (Version: 11.0.0.42 - MAGIX AG) MAGIX Vidéo deluxe MX Premium (x32 Version: 11.0.0.42 - MAGIX AG) Hidden Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft LifeCam (HKLM\...\{8EC9E7BB-2443-49B1-8476-490EBF932C2E}) (Version: 4.25.512.0 - Microsoft Corporation) Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office PowerPoint Viewer 2007 (French) (HKLM-x32\...\{95120000-00AF-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{ece8cb18-c84c-4c1a-a5b5-53e3f1daa15c}) (Version: 12.0.21005.1 - Microsoft Corporation) Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.3.0 - Mozilla) Mozilla Thunderbird 45.3.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.3.0 (x86 fr)) (Version: 45.3.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Neat Image v7.5.0 Demo Standalone (HKLM\...\Neat Image Standalone_is1) (Version: - Neat Image team, ABSoft) NVIDIA PhysX System Software 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.82 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Pilote graphique 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation) opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden Panneau de configuration NVIDIA 353.82 (Version: 353.82 - NVIDIA Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.6207 - CyberLink Corp.) Power2Go (x32 Version: 6.1.6207 - CyberLink Corp.) Hidden Q-Dir (HKLM\...\Q-Dir) (Version: - ) Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - ) Recovery Manager (x32 Version: 5.5.0.5119 - CyberLink Corp.) Hidden Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.) SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0}) (Version: 1.12.18.0 - Texas Instruments Inc.) TI USB3 Host Driver (x32 Version: 1.12.18.0 - Texas Instruments Inc.) Hidden TSHostedAppLauncher (x32 Version: 5.1.15.0 - Hewlett-Packard) Hidden Universal Media Server (HKLM-x32\...\Universal Media Server) (Version: 6.5.0 - Universal Media Server) Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies) WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\alain\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {178A238A-F322-4481-AD39-2FC9D91A5A98} - System32\Tasks\{1EDF0D78-CD81-4C85-9B9B-113418676E84} => pcalua.exe -a "C:\Program Files (x86)\Foxit Software\Foxit Reader\unins000.exe" Task: {34DE6FDC-0A33-4F86-9F9A-1CF0B0E36730} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd) Task: {358C59C4-8CB3-47F8-B3B8-E060D1A4C445} - System32\Tasks\{49F76F05-1B59-4DB7-B28A-F6826FE7CCE3} => pcalua.exe -a "C:\Users\alain\Desktop\HashTab v5.2.0.14 Setup.exe" -d C:\Users\alain\Desktop Task: {56F39D44-3D02-45EF-B368-B824499064B0} - System32\Tasks\Uninstaller_SkipUac_alain => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-08-30] (IObit) Task: {624C4ED8-CC8D-402F-8E90-8E3B50C5D680} - System32\Tasks\HPCeeScheduleForalain => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {6967D9B7-A5D0-49E1-B673-E8362376E735} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.) Task: {6D39EE1B-3D66-4A5B-9C97-8F17DF96822F} - System32\Tasks\maLivebox => C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe [2016-05-25] (Orange) Task: {6EB3BCCF-B450-4D16-BC66-EA159213B0CC} - System32\Tasks\Driver Booster SkipUAC (alain) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {711BC761-6DA4-4C3A-9174-4838E2D75905} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {7ED13B02-1506-4724-8D27-27B87CA00EA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.) Task: {854D8514-769A-4DE2-86C6-B15D2E624683} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {8D522A52-7123-42AA-85D9-0DC488043E9E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-09-14] (Microsoft Corporation) Task: {932187AC-9492-4791-8B0A-0E60DD10922A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2016-08-23] (HP Inc.) Task: {932A2D3D-DDBB-4627-9CD2-8E2277AA6D2A} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-15] (Adobe Systems Incorporated) Task: {9FE59CCA-4642-4991-A652-364843FBB3CB} - System32\Tasks\HPCeeScheduleForALAIN-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {A1834655-CFF3-4648-8054-07834FED2F40} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-08-18] (HP Inc.) Task: {A21E946E-3467-4C1B-A6B4-DF7BEB942DFC} - System32\Tasks\{6875FAF4-2575-48BF-8F8F-13AD72566975} => C:\Program Files\CDBurnerXP\cdbxpp.exe [2015-08-21] (Canneverbe Limited) Task: {BA903B2A-C280-41E5-9F4B-2DA54A67F908} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {D0CB5AB2-946A-4F00-BB61-2543DCF569A9} - System32\Tasks\{11E5C65C-5E29-4EA3-B966-0C786144EC3F} => pcalua.exe -a C:\Users\alain\Documents\bamboo_scribe_3.0.exe -d C:\Users\alain\Documents Task: {D87A020F-0BCD-4D53-BD1E-6171AF5489DC} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) Task: {F32564EE-A98B-4D6E-8C95-8DFC4D95BAE1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-08-23] (HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForALAIN-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForalain.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_alain.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-09-30 11:37 - 2016-09-15 19:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-08-13 20:30 - 2015-08-07 02:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-06-14 12:12 - 2016-06-14 12:12 - 04463592 ____C () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe 2016-04-16 19:17 - 2016-04-16 19:17 - 01195840 ____C () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe 2016-08-26 11:08 - 2016-08-26 11:08 - 00192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe 2015-01-16 11:29 - 2014-08-19 21:12 - 01356568 _____ () C:\Program Files\Tablet\Pen\libxml2.dll 2016-09-30 11:37 - 2016-09-15 19:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-08-13 21:22 - 2016-08-13 21:22 - 00959168 _____ () C:\Users\alain\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll 2016-09-14 18:20 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-09-30 11:36 - 2016-09-15 18:39 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-09-30 11:37 - 2016-09-15 18:24 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-09-30 11:37 - 2016-09-15 18:18 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-09-30 11:37 - 2016-09-15 18:17 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-09-30 11:37 - 2016-09-15 18:18 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-09-30 11:37 - 2016-09-15 18:20 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-09-28 15:28 - 2016-09-28 15:32 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-09-28 15:28 - 2016-09-28 15:32 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-09-28 15:28 - 2016-09-28 15:32 - 35250688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-04-16 12:56 - 2016-04-16 12:56 - 09698296 ____C () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe 2014-12-28 18:17 - 2016-06-14 16:35 - 00625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2015-08-11 15:36 - 2015-08-11 15:36 - 00024896 ____C () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\core_workers_shared_context.dll 2016-05-10 15:35 - 2016-05-10 15:35 - 00037808 ____C () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2016-05-10 16:25 - 2016-05-10 16:25 - 04490432 ____C () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll 2015-08-23 15:59 - 2015-08-23 15:59 - 00606672 ____C () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\sqlite3.dll 2016-05-10 16:21 - 2016-05-10 16:21 - 20582752 ____C () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll 2015-11-16 18:05 - 2015-11-16 18:05 - 00126928 ____C () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll 2016-04-16 12:45 - 2016-04-16 12:45 - 00248240 ____C () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll 2016-05-10 15:36 - 2016-05-10 15:36 - 00445872 ____C () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll 2016-05-10 15:31 - 2016-05-10 15:31 - 00115632 ____C () C:\Program Files (x86)\Common Files\Acronis\Home\EXPAT.dll 2015-08-12 15:41 - 2015-08-12 15:41 - 04885176 ____C () c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\WebKit.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00013312 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\jetvm\jvm.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00073216 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\java.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00067072 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\rt\bin\zip.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00132608 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\NetworkAPI.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00019456 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\NetWPSAPI.dll 2016-05-25 12:47 - 2016-05-25 12:47 - 00151552 _____ () C:\Program Files (x86)\Orange\ma Livebox\dist\Tools.DLL 2015-09-06 15:52 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl 2015-09-06 15:52 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl 2015-09-06 15:52 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl 2014-12-28 18:17 - 2016-05-23 21:49 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll 2014-12-28 18:17 - 2016-06-14 16:35 - 00625440 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\123simsen.com -> www.123simsen.com Il y a 7866 plus de sites. ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2016-10-03 13:01 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\Control Panel\Desktop\\Wallpaper -> c:\users\alain\appdata\local\microsoft\windows\themes\transcodedwallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\Services: AdobeActiveFileMonitor7.0 => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: Dedicarz Service => 2 MSCONFIG\Services: EpsonScanSvc => 2 MSCONFIG\Services: FirebirdServerMAGIXInstance => 3 MSCONFIG\Services: FLEXnet Licensing Service => 3 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: pdfcDispatcher => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^alain^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Serviio.lnk => C:\windows\pss\Serviio.lnk.Startup MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: BeatsOSDApp => C:\Program Files\IDT\WDM\beats64.exe MSCONFIG\startupreg: CCleaner Monitoring => "c:\program files\ccleaner\ccleaner64.exe" /monitor MSCONFIG\startupreg: HP ENVY 5640 series (NET) => "c:\program files\hp\hp envy 5640 series\bin\scantopcactivationapp.exe" -deviceid "th47g441sq05zc:nw" -scfn "hp envy 5640 series (net)" -autostart 1 MSCONFIG\startupreg: HP Software Update => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: HPSYSDRV => C:\Program Files (x86)\Hewlett-Packard\HP Odometer\HPSYSDRV.EXE MSCONFIG\startupreg: MailNotifier => C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe MSCONFIG\startupreg: OneDrive => "c:\users\alain\appdata\local\microsoft\onedrive\onedrive.exe" /background MSCONFIG\startupreg: Orange Installer => "C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe" MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe MSCONFIG\startupreg: SysTrayApp => c:\program files\idt\wdm\sttray64.exe MSCONFIG\startupreg: TrayServer => C:\Program Files (x86)\MAGIX\Video_deluxe_MX_Premium\TrayServer_fr.exe HKLM\...\StartupApproved\Run: => "BeatsOSDApp" HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run32: => "AOMEIPxeRun" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\StartupFolder: => "Serviio.lnk" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\Run: => "HP ENVY 5640 series (NET)" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\Run: => "OCCDesktop" HKU\S-1-5-21-1408632651-1069037516-1255020646-1000\...\StartupApproved\Run: => "Speech Recognition" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe FirewallRules: [{2CD2B1D5-F81B-4813-8B8C-A38FC1FE0D1F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe FirewallRules: [{60E66813-6176-4330-A0B5-A73FD4D2A0C4}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{1A47CC71-9DDD-4AC6-A807-A487BBD53C76}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe FirewallRules: [{0E46C6AD-5846-4C44-BA7B-28ABFFDEA216}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{F8EC5A72-EEB1-4D16-8420-D8D1682667A2}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe FirewallRules: [{771BC3C7-8CF8-4FF6-8A77-F0E0C3380575}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{6BE1B4A7-0C01-474B-B407-59E050D03FA4}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{E6B635E6-6C6B-4DC7-B113-193507AE369B}] => (Allow) LPort=5357 FirewallRules: [{1E74AD4E-A1E7-489C-B1A9-8A4383C7CC74}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\DeviceSetup.exe FirewallRules: [UDP Query User{C627A4BB-B608-4060-A853-65094C99E067}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [TCP Query User{861FC692-33E0-4C6A-A1E4-F9DA4AAC2E67}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [{A02221AA-CB3F-4718-A642-9372C92429B9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [UDP Query User{0A443BCF-216B-4D9C-8394-6B0720A8CB54}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe FirewallRules: [TCP Query User{BD978415-1832-41B8-9BF7-E448581C310D}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe FirewallRules: [{44FF94DA-C8EB-4FF1-A057-AB3DDE53C943}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{206B8437-7094-4C55-B390-F5C258550E4A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{7747D1C7-D1EB-4CA0-AE62-2B3FCDDE1BDF}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{C842183E-4497-49F0-B1CF-0D9E1FA0F490}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{389298B7-384E-44CE-BAB8-C37E16B5F8D5}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{DD31BD66-5953-4B43-A882-F0D5F509BB05}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [UDP Query User{4A97EE42-A61C-4652-9BCA-24FC91E12F73}C:\program files (x86)\wikango\600\aulauncher.exe] => (Allow) C:\program files (x86)\wikango\600\aulauncher.exe FirewallRules: [TCP Query User{856409A6-3869-4CE5-B1EB-B023411D58C7}C:\program files (x86)\wikango\600\aulauncher.exe] => (Allow) C:\program files (x86)\wikango\600\aulauncher.exe FirewallRules: [UDP Query User{76578EA4-1F63-46B8-B5D2-0936A800362D}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [TCP Query User{FD7B76FF-CCF0-45B5-B9E1-3B15D79BBBFD}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe FirewallRules: [{05FC3D8E-0F13-4D96-BAB2-89CB39D71810}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{054D9CCD-5876-4083-A6E5-171627E28E04}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{9DD2B867-53BA-48F5-80DD-2E3260CD5EE1}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{6DF99DBF-02CE-4AE4-AA7D-F010239889D8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{98BC6850-3BB0-401A-8DB7-AD0CA37AEAA3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{33BE5334-27AA-4A27-995C-724F8023129D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{70ED3026-0819-4EA4-AC9C-7A10DAAC2624}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe FirewallRules: [{AB93DC19-AB54-4AFC-AC19-6F6BDBE0E035}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe FirewallRules: [{66ACCA4C-3238-4E84-AAE4-143A682D3BC5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe FirewallRules: [{32EB0B6D-1A0C-4ECA-BE18-2ECC4E9DEFCE}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{9A8BD380-215F-4717-AE1A-6D5E4763F132}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{02A1048C-0997-496E-AB4A-1D5B7FCC3401}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{4E21230F-0CFC-4995-8C22-F4E108C7EFB1}] => (Allow) LPort=1900 FirewallRules: [{BB57B471-6259-4AE3-94AD-CBC293A22C9C}] => (Allow) LPort=2869 FirewallRules: [{C96DEE3E-B4D7-44C2-A4C8-87010E61A2A8}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{8AF14188-3CBC-4E80-9AB6-5C968F2BBDF4}] => (Allow) C:\windows\system32\ezSharedSvcHost.exe FirewallRules: [{BC560612-858A-4EC3-B5FA-F93DFAAAC2E9}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{FAEE50B2-A28A-45AD-A1DD-0C971F8F2E79}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe FirewallRules: [{0621F75E-9415-4BC6-B278-642C6C173F53}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{40A8CFF5-3390-4C18-AFAC-C5393ED51BE4}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{C5F6DABA-AAC6-4B85-83AE-3592F6B85CC3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DDDFB7C3-BCAC-402F-906F-D7FC5BDD06EF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{A542F7E6-2930-49E6-87AB-987A0F57C58E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{97881A8E-FDE9-4D10-90C1-BF3306264636}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8B7DEFCD-A0B4-41F1-B37B-4E6A6838407C}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{43F61E2D-43EA-4D51-9538-6844DC9414E3}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{A3256FF6-0D42-4AFB-BEB0-FE4886831E18}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{261ADF1D-7519-4620-8DA3-A33B7E273E3A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{EF779CA5-DEA5-4077-98BC-C44DB2DC8AB0}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{855A2652-9936-45D2-BC20-44A7BD1B94CF}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [TCP Query User{90007366-6B62-4CBB-A46D-B6662047A9C1}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{C7866937-013D-4E8D-A966-6EFDC72AB418}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [{3AA5EB90-F6BD-4DD0-B2F6-C40F5D0C9AC0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{1777EE4D-DAEB-4400-894A-6A5292285D6D}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe FirewallRules: [UDP Query User{C137DC8F-C010-4226-88CB-0109AD16D558}C:\program files (x86)\orange\ma livebox\dist\st2.exe] => (Allow) C:\program files (x86)\orange\ma livebox\dist\st2.exe ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (10/02/2016 06:52:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 06:52:00 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 06:51:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 06:38:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 05:56:31 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 05:48:40 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/02/2016 05:48:23 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (10/02/2016 05:47:56 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (10/01/2016 07:45:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 18422 Error: (10/01/2016 07:45:41 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 18422 Erreurs système: ============= Error: (10/03/2016 01:18:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (10/03/2016 01:18:33 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service HomeGroupListener s’est arrêté avec l’erreur spécifique au service suivante : %%2147944153 = Le mappeur de point final n’a plus de point final disponible. Error: (10/03/2016 01:12:08 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (10/03/2016 01:11:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (10/03/2016 01:11:51 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service HomeGroupListener s’est arrêté avec l’erreur spécifique au service suivante : %%2147944153 = Le mappeur de point final n’a plus de point final disponible. Error: (10/03/2016 12:46:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Application Virtualization Client s’est terminé de façon inattendue pour la 1ème fois. Error: (10/03/2016 12:46:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Intel(R) Management and Security Application Local Management Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (10/03/2016 12:46:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Acronis Sync Agent Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (10/03/2016 12:46:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Partage réseau du Lecteur Windows Media s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (10/03/2016 12:46:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Message Queuing s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2016-10-02 18:33:19.162 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 18:33:19.158 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 18:33:19.153 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 17:29:49.810 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 17:29:49.808 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 17:26:18.800 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-02 17:26:18.798 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-01 17:29:15.669 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-01 17:29:15.668 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-01 16:34:49.247 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz Pourcentage de mémoire utilisée: 39% Mémoire physique - RAM - totale: 4052.01 MB Mémoire physique - RAM - disponible: 2454.92 MB Mémoire virtuelle totale: 8148.01 MB Mémoire virtuelle disponible: 5949.89 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:448.21 GB) (Free:354.33 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (HP_RECOVERY) (Fixed) (Total:16.89 GB) (Free:1.71 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 600DABB9) Partition: GPT. ==================== Fin de Addition.txt ============================