Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version: 05-12-2016 Exécuté par HAMARD (07-12-2016 06:12:40) Exécuté depuis C:\Users\HAMARD\AppData\Local\Temp\scoped_dir8324_21584 Microsoft Windows 10 Famille Version 1511 (X86) (2015-12-19 13:13:35) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3623109357-3433459825-984393507-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3623109357-3433459825-984393507-503 - Limited - Disabled) HAMARD (S-1-5-21-3623109357-3433459825-984393507-1001 - Administrator - Enabled) => C:\Users\HAMARD HomeGroupUser$ (S-1-5-21-3623109357-3433459825-984393507-1002 - Limited - Enabled) Invité (S-1-5-21-3623109357-3433459825-984393507-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\uTorrent) (Version: 3.4.5.41372 - BitTorrent Inc.) 32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden Adblock Plus pour IE (32-bits) (HKLM\...\{0B19C9C6-85BA-4CFF-AB4B-D77EEB19E263}) (Version: 99.9 - Eyeo GmbH) Adobe Acrobat Reader DC - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated) Adobe AIR (HKLM\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Flash Player 23 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) AIO_CDA_ProductContext (Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_CDA_Software (Version: 130.0.365.000 - Hewlett-Packard) Hidden AIO_Scan (Version: 130.0.365.000 - Hewlett-Packard) Hidden Apowersoft Enregistreur audio gratuit V2.1.7 (HKLM\...\{E35F91E4-C68C-43E8-BE90-35CDEE4E5730}_is1) (Version: 2.1.7 - Apowersoft) Apple Application Support (32 bits) (HKLM\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{D9F3D66A-9885-4DDD-A800-9DDF488359A1}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Audacity 2.1.0 (HKLM\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) barre d'outils Orange (HKLM\...\OrangeToolbar) (Version: 4.4.1.0 - Orange) Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.) BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden C3100 (Version: 130.0.365.000 - Hewlett-Packard) Hidden c3100_Help (Version: 82.0.256.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform) Copy (Version: 130.0.428.000 - Hewlett-Packard) Hidden Corel PaintShop Pro X6 (HKLM\...\_{166D1CB6-DD8A-40DD-9E25-4D31D2D6DE4D}) (Version: 16.2.0.20 - Corel Corporation) Corel PaintShop Pro X6 (Version: 16.2.0.20 - Corel Corporation) Hidden D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Désinstallation du Logiciel d'imprimante Dell (HKLM\...\Dell_HostCD) (Version: - Dell, Inc.) Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (Version: 130.0.465.000 - Hewlett-Packard) Hidden Digital Clock GT-7 2.1 (HKLM\...\Digital Clock GT-7_is1) (Version: - Style-7) DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden DriverIdentifier 4.2.8 (HKLM\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version: - DriverIdentifier) Duplicate Cleaner Free 3.2.6 (HKLM\...\Duplicate Cleaner Free) (Version: 3.2.6 - DigitalVolcano Software Ltd) <==== ATTENTION Enregistrement utilisateur de Canon MG5500 series (HKLM\...\Enregistrement utilisateur de Canon MG5500 series) (Version: - ‭Canon Inc.) Fax (Version: 130.0.418.000 - Hewlett-Packard) Hidden Galerie de photos (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden GeoGebra 5 (HKLM\...\GeoGebra 5) (Version: 5.0.74.0 - International GeoGebra Institute) Google Chrome (HKLM\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.) Google Earth (HKLM\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google) Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden Guitar Pro 6 (HKLM\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version: - Arobas Music) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photosmart All-In-One Driver Software 13.0 Rel. A (HKLM\...\{17016DA1-F040-4032-BD36-34DD317BC9D5}) (Version: 13.0 - HP) HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP) HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000 - Hewlett-Packard) Hidden HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden ICA (Version: 16.2.0.20 - Corel Corporation) Hidden Integrated Camera (HKLM\...\{71A51CC2-E7D3-11DB-A386-005056C00008}) (Version: 1.00.0000 - Vimicro Corporation) IPM_PSP_COM (Version: 16.2.0.20 - Corel Corporation) Hidden iTunes (HKLM\...\{2BD589D0-26C7-4312-A757-86C7727FF817}) (Version: 12.5.3.16 - Apple Inc.) Junk Mail filter update (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Le Cloud d'Orange - Transfert de fichiers (HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\Le Cloud d'Orange - Transfert de fichiers) (Version: 2.0.7 - Orange-France) ma Livebox (HKLM\...\ma Livebox) (Version: 3.4.0.0 - Orange) Ma-Config.com (HKLM\...\{1C7F55D5-16EC-4D92-A814-5861E7E1BB7B}) (Version: 7.1.3.1 - Cybelsoft) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Media Go (HKLM\...\{F66C4A41-C3A8-4523-AB6C-BAA1DB38305C}) (Version: 2.7.357 - Sony) Media Go Network Downloader (HKLM\...\{5562F05F-908C-4F15-9B3C-98D5FD32DCAB}) (Version: 1.5.19.0 - Sony) Media Go Video Playback Engine 2.4.127.12060 (HKLM\...\{7C5AEEE1-6D7C-8922-4548-7BF9096077EC}) (Version: 2.4.127.12060 - Sony) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Mises à jour NVIDIA 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden monAlbumPhoto (HKLM\...\monAlbumPhoto_is1) (Version: 6.5.1.1 - monAlbumPhoto) Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Thunderbird 45.5.1 (x86 fr) (HKLM\...\Mozilla Thunderbird 45.5.1 (x86 fr)) (Version: 45.5.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Network (Version: 130.0.572.000 - Hewlett-Packard) Hidden NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation) NVIDIA Pilote graphique 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation) OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP) Online Games Manager v1.50 (HKLM\...\Online Games Manager) (Version: 1.50.4 - Real Networks, Inc.) Opera Stable 41.0.2353.69 (HKLM\...\Opera 41.0.2353.69) (Version: 41.0.2353.69 - Opera Software) Orange Inside (HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\Orange Inside) (Version: V2.0.0.5 - Orange) Orange Installer (HKLM\...\Orange Installer) (Version: 2.0.0.12 - Orange) Orange update (HKLM\...\OrangeUpdateManager) (Version: 2.3.0.6 - Orange) Package de pilotes Windows - Broadcom Corporation (bcbtums) Bluetooth (03/16/2012 6.5.1.2600) (HKLM\...\813EA266E806F300A8DAF30E5D823E268290B5D6) (Version: 03/16/2012 6.5.1.2600 - Broadcom Corporation) Package de pilotes Windows - Broadcom Corporation Bluetooth (03/16/2012 6.5.1.2600) (HKLM\...\13729598EDD1F263DD26E8584C5F347C88091A2E) (Version: 03/16/2012 6.5.1.2600 - Broadcom Corporation) Package de pilotes Windows - Broadcom Corporation Bluetooth (03/16/2012 6.5.1.2600) (HKLM\...\2A46B60EC8D844CB8197312FE2B88EF0F6B7E935) (Version: 03/16/2012 6.5.1.2600 - Broadcom Corporation) Package de pilotes Windows - Broadcom Corporation Bluetooth (03/16/2012 6.5.1.2600) (HKLM\...\ECAD4CB7FB923B839B29420FF9DFC73C3D3D28FE) (Version: 03/16/2012 6.5.1.2600 - Broadcom Corporation) Package de pilotes Windows - Broadcom HIDClass (09/11/2009 6.3.0.1500) (HKLM\...\CA3B55EAB525669DA92EC19475AF574597822688) (Version: 09/11/2009 6.3.0.1500 - Broadcom) Panneau de configuration NVIDIA 341.92 (Version: 341.92 - NVIDIA Corporation) Hidden Pawclock (HKLM\...\Pawclock) (Version: 2.95 - Pawsoft) PC Chrono 1.1.0.6 (HKLM\...\{C1C910A7-0B89-4260-8845-FE221D9285E8}_is1) (Version: - highspheres.com) PC Sync (HKLM\...\{A4DCAA77-151D-4CE9-8D79-E4ADB48031A2}) (Version: 8.00.1205 - Orange) PhotoFiltre (HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\PhotoFiltre) (Version: - ) PSPPContent (Version: 16.2.0.20 - Corel Corporation) Hidden PSPPHelp (Version: 16.2.0.20 - Corel Corporation) Hidden RocketDock 1.3.5 (HKLM\...\RocketDock_is1) (Version: - Punk Software) Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden Serveur Média (HKLM\...\TwonkyMediaServeur Média) (Version: 6.0.30.0 - PacketVideo) Setup (Version: 16.2.0.20 - Nom de votre société) Hidden SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden Signal Spam AddIn (HKLM\...\Signal Spam AddIn) (Version: 02000000 - Signal Spam) SmartWebPrinting (Version: 130.0.457.000 - Hewlett-Packard) Hidden SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden Sony Mobile Update Engine (HKLM\...\Update Engine) (Version: 2.15.7.201505261442 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.303 (HKLM\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony) Speed Fan Packages (HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\Speed Fan Packages) (Version: - ) <==== ATTENTION SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - ) Status (Version: 130.0.469.000 - Hewlett-Packard) Hidden Streaming Audio Recorder V4.0.3 (HKLM\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 4.0.3 - APOWERSOFT LIMITED) Suppress plus 1.8 (HKLM\...\Suppress plus_is1) (Version: - Perrysoft) Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden Total Recorder 7.1 (HKLM\...\TotalRecorder) (Version: - ) TrayApp (Version: 130.0.422.000 - Hewlett-Packard) Hidden unincar (HKLM\...\{eb4c7b00-66dd-43cc-6fd4-201961863adc}) (Version: 1.0.0 - citgen) Unknown Device Identifier 8.02 (HKLM\...\Unknown Device Identifier_is1) (Version: 8.02 - Huntersoft) UnloadSupport (Version: 11.0.0 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden Windows Live (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) ZHPFix 2014 (HKLM\...\ZHPFix_is1) (Version: 2014 - Nicolas Coolman) Zuma Deluxe (HKLM\...\79117fab9a4a83b5c96b1a48f927b425) (Version: - Zylom) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{03C4C5F4-1893-444C-B8D8-002F0034DA92}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{11E2BC0C-5D4F-4E0C-B438-501FFE05A382}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{29AB7A12-B531-450E-8F7A-EA94C2F3C05F}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{37587889-FC28-4507-B6D3-8557305F7511}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{4A5E947E-C407-4DCC-A0B5-5658E457153B}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{4FD5C4D3-6C15-4EA0-9EB9-EEE8FC74A91B}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{5EEC505D-DD30-4B61-A46C-2E1D5F880897}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\addins\outlookAddin.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{620D55B0-F2FB-464E-A278-B4308DB1DB2B}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{741BEEFD-AEC0-4AFF-84AF-4F61D15F5526}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{7A41359E-0407-470F-B3F7-7C6A0F7C449A}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{7C4A630A-DE98-4E3E-8093-E8F5E159BB72}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{7ED1E9B1-CB57-4FA0-84E8-FAE653FE8E6B}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{A6931B16-90FA-4D69-A49F-3ABFA2C04060}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{C5AA36A1-8BD1-47E0-90F8-47E7239C6EA1}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{D46BA7B2-899F-4F60-85C7-4DF5713F6F18}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{ED323630-B4FD-4628-BC6A-D4CC44AE3F00}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) CustomCLSID: HKU\S-1-5-21-3623109357-3433459825-984393507-1001_Classes\CLSID\{FA2CBAFB-F7B1-4F41-9B7A-73329A6C1CB7}\InprocServer32 -> C:\Users\HAMARD\AppData\Local\Le Cloud Orange\bin\Redemption.dll (Dmitry Streblechenko) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0746988C-AD66-4A44-8277-1553D6E0A782} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {09FFC007-9CBA-457D-AD27-E84F4A06394E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {0B010E41-1DDC-4D8A-A358-335FBBBC3485} - System32\Tasks\Launch 17610 => C:\Program Files\PC Sync\Voxsync.exe [2014-10-15] () <==== ATTENTION Task: {16B5ED4C-69A1-47DD-96B4-48592A0B492E} - System32\Tasks\{FC12580A-2ED3-4CFB-A265-003EA1B29752} => pcalua.exe -a C:\Users\HAMARD\Downloads\64bit_Win7_Win8_Win81_R275.exe -d C:\Users\HAMARD\Downloads Task: {18215014-9A97-48F1-95A8-DC32A8009834} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {20E056EE-52E2-4B82-B143-27D2326E71D7} - System32\Tasks\{443CBB23-641B-4F5E-8720-FB7BE7D14B65} => pcalua.exe -a "C:\Program Files\SpeedFan\uninstall.exe" Task: {2A123004-DE00-417D-A3B7-2C94F436265F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd) Task: {2AD46CFF-09D0-42C6-99EF-74B02708EF85} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {3147DA75-6447-4E71-99DA-6019CA94C08D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {38017581-BA44-48D3-A69D-1A48C6B8707B} - System32\Tasks\Programme de mise à jour en ligne de Adobe => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {3F59F08F-EBFC-49C9-B564-2B42E5602087} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4212B3CC-CC0E-4C91-955F-85AC24BD36AE} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {438CEC43-6B92-4037-827A-789B977FF9F7} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe Task: {4536B35A-D985-4720-8E5C-BFC06BF3A563} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {475D4D1D-78E0-4081-8D0B-4DCF0CF25426} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {4C5A7378-C624-409F-B74B-4C813C2EABDA} - \speedfan.\speedfan -> Pas de fichier <==== ATTENTION Task: {4D9C7292-50CF-4CF7-80FA-94BBF16D5E21} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {520E913C-2B60-4192-90D1-B16C1D42B833} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5C4745D2-22A0-424E-9602-082936057293} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\HAMARD\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [2016-09-02] (Orange) Task: {5CF92218-CB79-4ECF-94B0-E391BD842EDF} - System32\Tasks\Microsoft\Windows\orangeinstaller => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe [2014-10-30] () Task: {60626EE3-078B-4C99-A5A9-F7D6A5BFD7C7} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {71351E5A-9AC0-4AB5-8D17-9E987F16D5D6} - System32\Tasks\maLivebox => C:\Program Files\Orange\ma Livebox\maLivebox.exe [2016-05-25] (Orange) Task: {74F67B88-1C45-48FB-BD28-A0853EAA9BDC} - System32\Tasks\{5C014148-CE58-4034-9E3A-488D65D94FD5} => C:\SpeedFan\speedfan.exe [2014-08-19] (Almico Software (www.almico.com)) Task: {759949AC-B7B4-4FAA-811F-C4CB0728AD4B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {767B7AAB-4C20-4770-AE29-034D0072A25C} - System32\Tasks\Opera scheduled Autoupdate 1475038618 => C:\Program Files\Opera\launcher.exe [2016-11-21] (Opera Software) Task: {77765616-A563-4316-A40C-CF9454ABABC6} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {78346F28-27E6-413C-B8CE-E2B7B7293B2E} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {7AF93E5B-01AB-488D-8CCD-013C57D530AD} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {7E7AD596-5492-4993-B03E-EC6F51A1DE9F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {815AC9A7-2719-480B-A99E-F2C9C3FD310B} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {86AD7AD1-C949-4CB0-81C2-D03159E051DD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated) Task: {8FEF224C-BE48-48DD-BC5D-606DAAFF364D} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {92001E11-2084-48DA-8103-C95C882707F0} - System32\Tasks\{464B6CD5-0F67-40F6-B0AA-B028E16745E6} => C:\SpeedFan\speedfan.exe [2014-08-19] (Almico Software (www.almico.com)) Task: {93690A92-776B-4D17-9118-4D2B816B64C8} - System32\Tasks\GoogleUpdateTaskMachineCore1d0413fd4a3e400 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {94F08DC2-9EE8-48D5-A866-273B47938671} - System32\Tasks\demarrage speedfan => C:\Program Files\SpeedFan\speedfan.exe [2009-11-25] (Almico Software (www.almico.com)) Task: {9508150E-DBB0-4E41-BDB7-39016FE337CA} - System32\Tasks\{C734804F-EBB1-4E2A-9BE8-28022B4C221A} => pcalua.exe -a "C:\Program Files\ZHPFix\ZHPhep.exe" -d "C:\Program Files\ZHPFix" Task: {9860F938-2687-4402-9B38-CDDA75B803DC} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {99CB3A78-FB4E-415A-80EB-417817D2482D} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {99F5A322-6379-4FFE-A1F7-724CECA300D9} - System32\Tasks\Launch 25511 => C:\Program Files\PC Sync\Voxsync.exe [2014-10-15] () <==== ATTENTION Task: {9E7C1552-4F7B-47DD-A39B-A78A6B8ED81F} - System32\Tasks\MSIAfterburner => C:\Program Files\MSI Afterburner\MSIAfterburner.exe Task: {9F494CA8-9492-4255-974E-D49A466186DE} - System32\Tasks\Launch 25864 => C:\Program Files\PC Sync\Voxsync.exe [2014-10-15] () <==== ATTENTION Task: {A2B24EF5-4E37-4ED7-B9B4-9748326FDB35} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {A733652A-8F73-401E-89CF-940DB3C28DAC} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe [2016-11-09] (Adobe Systems Incorporated) Task: {AA38D86C-B1C5-4B61-B3A1-E20C83D85E9C} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B9B0FFFB-E2A8-4789-98E6-4FBF42F2C0DB} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C587E922-8630-43CD-BCC4-B0044B48F5F4} - System32\Tasks\GoogleUpdateTaskMachineUA1d09124b13a4c55 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {C6175BF0-DDF8-48DB-BB11-93C624CF7637} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {C7A6CB32-089E-4593-8AE8-41208B745C4E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C95315A1-1877-47BE-AF55-8DF583472F35} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {CE7CE31A-7451-4446-9788-BDF0A0A15F7B} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe Task: {DC183CD6-3D25-48BA-954A-300FFC00BC05} - System32\Tasks\{9AD40005-4AB2-492D-88EE-ABC3B8A83729} => C:\Program Files\SpeedFan\speedfan.exe [2009-11-25] (Almico Software (www.almico.com)) Task: {E8959B1A-23FD-4FA7-BCF2-8D6A90E768C5} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe Task: {EBBBA8A2-6E31-4E05-A924-9762C7933052} - System32\Tasks\RTSS => C:\Program Files\RivaTuner Statistics Server\RTSS.exe Task: {EEC0E4EB-C98E-4CFE-B712-C4DCEB1C26D6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {F28E4001-D5C2-4C02-A386-9D67B61CFDA4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {F5494FB3-2585-4A8B-ABB1-5B52ABA25676} - System32\Tasks\speedfan => C:\Windows\System32\speedfan.sys [2006-09-24] (Windows (R) 2000 DDK provider) Task: {FCD2C9F7-9BCE-4E5C-A0D0-7544B3AAA923} - \upfs7235 -> Pas de fichier <==== ATTENTION Task: {FD20BFF4-4731-4BC8-81CC-091CE8EFBA5E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FF6E5437-6AF9-4FE0-BB5B-744A52049AA0} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_23_0_0_207_pepper.exe Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0413fd4a3e400.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d09124b13a4c55.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPOUMHK.job => C:\Users\HAMARD\AppData\Roaming\HPOUMHK.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\HRAQRIR.job => C:\Users\HAMARD\AppData\Roaming\HRAQRIR.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\NRQXYB.job => C:\Users\HAMARD\AppData\Roaming\NRQXYB.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\ZMC.job => C:\Users\HAMARD\AppData\Roaming\ZMC.exe <==== ATTENTION ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\HAMARD\Favorites\Site de téléchargement NCH Software.lnk -> hxxp://www.nch.com.au/fr/index.html ShortcutWithArgument: C:\Users\HAMARD\Desktop\Chromium.lnk -> C:\Users\HAMARD\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\HAMARD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chromium.lnk -> C:\Users\HAMARD\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\HAMARD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://r.orange.fr/r/Oodc_IEshortcut_oi_v2?ref=O_OI_defaultPage_IE_odc_shortcut ShortcutWithArgument: C:\Users\HAMARD\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Chromium.lnk -> C:\Users\HAMARD\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\HAMARD\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://r.orange.fr/r/Oodc_IEshortcut_oi_v2?ref=O_OI_defaultPage_IE_odc_shortcut ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://r.orange.fr/r/Oodc_CHshortcut_oi_v2?ref=O_OI_defaultPage_CH_odc_shortcut ==================== Modules chargés (Avec liste blanche) ============== 2015-10-30 06:44 - 2015-10-30 06:44 - 00022528 _____ () C:\WINDOWS\SYSTEM32\efsext.dll 2015-10-30 06:44 - 2015-10-30 06:44 - 00149504 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-19 13:29 - 2015-10-13 17:47 - 00113840 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2016-10-05 18:18 - 2016-10-05 18:18 - 00080184 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-10-05 18:18 - 2016-10-05 18:18 - 01041720 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 01970544 _____ () C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe 2014-09-15 10:01 - 2014-09-15 10:01 - 00549888 _____ () C:\Program Files\Orange\ma Livebox\dedicarz\netsnmp.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 00182784 _____ () C:\Program Files\Orange\ma Livebox\dedicarz\ProxyDetection.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 00157184 _____ () C:\Program Files\Orange\ma Livebox\dedicarz\pupnp.dll 2016-09-15 04:52 - 2016-09-07 06:39 - 01862000 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2013-11-17 19:18 - 2007-09-02 13:57 - 00069632 _____ () C:\Program Files\RocketDock\RocketDock.dll 2016-09-15 04:52 - 2016-09-07 06:39 - 01862000 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-09-25 07:50 - 2016-09-25 07:50 - 01383616 _____ () C:\Users\HAMARD\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll 2014-10-30 10:22 - 2014-10-30 10:22 - 00475928 _____ () C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe 2012-11-16 09:37 - 2012-11-16 09:37 - 00118784 _____ () C:\Program Files\Orange\Orange Installer\libgcc_s_dw2-1.dll 2013-10-05 18:17 - 2013-10-05 18:17 - 01000974 _____ () C:\Program Files\Orange\Orange Installer\libstdc++-6.dll 2015-12-19 13:18 - 2015-12-19 13:18 - 00070656 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-07-13 11:28 - 2016-07-01 04:31 - 00316416 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2013-11-17 19:18 - 2007-09-02 13:58 - 00495616 _____ () C:\Program Files\RocketDock\RocketDock.exe 2015-12-08 20:25 - 2015-12-08 20:25 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2016-09-27 21:28 - 2016-12-04 08:10 - 00158720 _____ () C:\Users\HAMARD\AppData\Local\Temp\sfareca00001.dll 2016-05-16 16:25 - 2016-12-04 08:10 - 00192512 _____ () C:\Users\HAMARD\AppData\Local\Temp\sfamcc00001.dll 2016-09-15 04:51 - 2016-09-07 05:14 - 05340160 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-09-15 04:50 - 2016-09-07 05:10 - 00471552 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-09-15 04:51 - 2016-09-07 05:10 - 02366976 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-09-15 04:51 - 2016-09-07 05:14 - 02657280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-12-05 12:29 - 2016-12-05 12:29 - 00017408 _____ () C:\Program Files\WindowsApps\37959AppMobilEdition.park4night-campingcaretvan_2016.1203.2200.0_x86__gyyg5hv5ejn6c\park4night.exe 2016-12-05 12:29 - 2016-12-05 12:29 - 09290240 _____ () C:\Program Files\WindowsApps\37959AppMobilEdition.park4night-campingcaretvan_2016.1203.2200.0_x86__gyyg5hv5ejn6c\park4night.dll 2016-11-25 06:04 - 2016-11-25 06:04 - 03448728 _____ () C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1611.2.0_x86__8wekyb3d8bbwe\Microsoft.Advertising.dll 2016-04-19 14:55 - 2016-04-19 14:56 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-04-19 14:55 - 2016-04-19 14:56 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 14:55 - 2016-04-19 14:56 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-12-06 12:55 - 2016-12-06 12:55 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.24.1006.0_x86__8wekyb3d8bbwe\XboxApp.exe 2016-12-06 12:55 - 2016-12-06 12:55 - 30591488 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.24.1006.0_x86__8wekyb3d8bbwe\XboxApp.dll 2016-11-11 11:27 - 2016-11-11 11:28 - 00678400 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.24.1006.0_x86__8wekyb3d8bbwe\sqlite3.dll 2016-10-07 05:12 - 2016-10-07 05:14 - 01289128 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.24.1006.0_x86__8wekyb3d8bbwe\winsdkfb.dll 2016-11-17 05:34 - 2016-11-17 05:34 - 02928128 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1611.3123.0_x86__8wekyb3d8bbwe\Calculator.exe 2010-12-14 22:47 - 2010-12-14 22:47 - 01451608 _____ () C:\Program Files\Serveur Media\TwonkyMediaServer.exe 2016-11-26 09:17 - 2016-11-26 09:16 - 66025168 _____ () C:\Program Files\Opera\41.0.2353.69\opera.dll 2016-11-26 09:17 - 2016-11-26 09:16 - 01888464 _____ () C:\Program Files\Opera\41.0.2353.69\libglesv2.dll 2016-11-26 09:17 - 2016-11-26 09:16 - 00094416 _____ () C:\Program Files\Opera\41.0.2353.69\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:DBC416F8 [286] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\localhost -> localhost IE restricted site: HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\skype.com -> hxxps://apps.skype.com ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:04 - 2016-03-20 08:26 - 01277805 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 08sr.combineads.info # hosts anti-adware / pups 127.0.0.1 08srvr.combineads.info # hosts anti-adware / pups 127.0.0.1 12srvr.combineads.info # hosts anti-adware / pups 127.0.0.1 2010-fr.com # hosts anti-adware / pups 127.0.0.1 2012-new.biz # hosts anti-adware / pups 127.0.0.1 212link.com # hosts anti-adware / pups 127.0.0.1 2319825.ourtoolbar.com # hosts anti-adware / pups 127.0.0.1 24h00business.com # hosts anti-adware / pups 127.0.0.1 a.daasafterdusk.com # hosts anti-adware / pups 127.0.0.1 ad.adn360.com # hosts anti-adware / pups 127.0.0.1 adeartss.eu # hosts anti-adware / pups 127.0.0.1 adesoeasy.eu # hosts anti-adware / pups 127.0.0.1 adf.girldatesforfree.net # hosts anti-adware / pups 127.0.0.1 adm.soft365.com # hosts anti-adware / pups 127.0.0.1 adomicileavail.googlepages.com # hosts anti-adware / pups 127.0.0.1 ads7.complexadveising.com # hosts anti-adware / pups 127.0.0.1 ads.aff.co # hosts anti-adware / pups 127.0.0.1 ads.alpha00001.com # hosts anti-adware / pups 127.0.0.1 ads.cloud4ads.com # hosts anti-adware / pups 127.0.0.1 ads.eorezo.com # hosts anti-adware / pups 127.0.0.1 ads.hooqy.com # hosts anti-adware / pups 127.0.0.1 ads.pornerbros.com # hosts anti-adware / pups 127.0.0.1 ads.regiedepub.com # hosts anti-adware / pups 127.0.0.1 ads.sucomspot.com # hosts anti-adware / pups 127.0.0.1 ads.tersecta.com # hosts anti-adware / pups 127.0.0.1 a.dungtank.com # hosts anti-adware / pups 127.0.0.1 adwcleaner.programmesetjeux.com # hosts anti-adware / pups 127.0.0.1 adwcleaner.telecharger.toggle.com # hosts anti-adware / pups 127.0.0.1 aff.foxtab.com # hosts anti-adware / pups 127.0.0.1 affilibot.eu # hosts anti-adware / pups Il y a 21712 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3623109357-3433459825-984393507-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HAMARD\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\fond d'écran.bmp DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PC Sync.lnk => C:\Windows\pss\PC Sync.lnk.CommonStartup MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logon MSCONFIG\startupreg: DKab1err => C:\Program Files\Dell\Printer Software\ErrorApp\DKab1err.exe MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: hpqSRMon => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe MSCONFIG\startupreg: Nektra WLMailApi => C:\Program Files\Signal Spam\Signal Spam\WLMApiLauncher\WLMailApiAgent.exe MSCONFIG\startupreg: Orange Installer => "C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe" MSCONFIG\startupreg: OrangeInside => C:\Users\HAMARD\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe MSCONFIG\startupreg: PersoApps Semainier => C:\Program Files\EuroSoft Software Development\PersoApps Semainier\weekdiary.exe MSCONFIG\startupreg: PersoApps Semainier - Agent => C:\Program Files\EuroSoft Software Development\PersoApps Semainier\AgentPim.exe MSCONFIG\startupreg: RocketDock => "C:\Program Files\RocketDock\RocketDock.exe" MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe" /Background MSCONFIG\startupreg: uTorrent => "C:\Users\HAMARD\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED HKLM\...\StartupApproved\StartupFolder: => "Agent Serveur Média.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Avira System Speedup User Starter" HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3623109357-3433459825-984393507-1001\...\StartupApproved\Run: => "Chromium" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => LPort=139 FirewallRules: [MSMQ-In-TCP] => %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-TCP] => %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-In-UDP] => %systemroot%\system32\mqsvc.exe FirewallRules: [MSMQ-Out-UDP] => %systemroot%\system32\mqsvc.exe FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => LPort=808 FirewallRules: [{54BC2D8A-A778-45AA-8DC3-85BDDC5B4790}] => C:\Program Files\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{56F9511B-81C2-4D38-AE4F-648129A740F2}] => C:\Program Files\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{D33176CD-9C66-431A-BED3-47B3FFEFC277}] => C:\Program Files\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{4212C750-82FB-4E6F-9B41-0E204705E575}] => C:\Program Files\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{95FBCCD0-3037-48F5-8F71-3EA2E61F6731}] => C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{886080CB-30BF-4F19-BF5F-68F971417CA7}] => C:\Program Files\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe FirewallRules: [{141D106D-9E47-47E0-BA22-00EE764EFC7F}] => C:\Users\HAMARD\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{006F967B-1F94-4773-9493-CBB96BE7212C}] => C:\Users\HAMARD\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E67C02F4-078C-45FB-B686-89D6DF9B075B}] => C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{C27064E2-4E28-4BCB-90C1-D1432CFC2AE8}] => C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{E692A00C-C9AD-4F02-8169-9B322EF4F8C8}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{910EA59F-4B55-4E6A-81E4-F141D4723EB3}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{A2701677-B0EE-4051-9356-2A01D2F4490F}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{1416CC5D-4651-4468-B600-DF9CFAC6FF06}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{A6020CC4-C0F6-4799-A8C1-62967BBC0B2A}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{035E3582-F49A-4BED-98FD-A129C275E3B9}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{A044DC94-FB04-4B3B-A75D-653DD4621AE0}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5EFE5B23-A836-45E9-9293-6B7A7D4DA2E2}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3810C16B-583D-48B6-BCD0-08B0E12B55BC}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{794C2CA4-DA68-4D72-9202-88D0DB00F2AC}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{12189993-0D22-46AA-B71F-B8AFBB594BFA}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{1ED7155D-73F8-49DF-9FE4-8A5EB9B127B9}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{77EA29E4-24CB-40CE-89A4-ED967A5F8031}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{F287A2F7-0789-4C7D-9B0D-6763FAD9E496}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{B86C901E-AD1B-41FD-B81C-5DEAD053612E}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{41127B60-B9F0-400A-BBE6-D4B1D19EFD50}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5B23E283-71C0-47EB-8732-CF7BB174B4AC}] => C:\Program Files\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe FirewallRules: [{866F3553-2F44-45C6-8BF7-D32FE0B93AE6}] => C:\Program Files\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe FirewallRules: [{58D01AA0-9C47-49CE-845F-E0AD3439F1AE}] => C:\Program Files\SpeedFan\speedfan.exe FirewallRules: [{15258B74-3357-489D-986F-74ABBC19A236}] => C:\Program Files\SpeedFan\speedfan.exe FirewallRules: [{F1B095F2-9282-4FD3-B6D3-45F9A41F416B}] => C:\Program Files\SpeedFan\speedfan.exe FirewallRules: [{945A8370-D8E2-47CE-83D0-6C46C6813B74}] => C:\Program Files\SpeedFan\speedfan.exe FirewallRules: [{5F900C30-434E-4EF6-80AD-A139DFE16D3D}] => C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{D48A1CA9-55D2-4234-A8A8-83308E4F6C1D}] => C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{EDF4F3C5-8E17-424E-8B9E-84AA51F23158}] => C:\Program Files\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{BAE8DA9A-3E8B-4699-83E1-2C28F4EBFE00}] => LPort=1900 FirewallRules: [{12B78669-1196-44A0-802C-462717EA716E}] => LPort=2869 FirewallRules: [{17A5945B-CA90-42E9-8A0A-BE02150E5B08}] => C:\Program Files\Windows Live\Contacts\wlcomm.exe FirewallRules: [{16618FFA-9EFA-4893-80DD-AFFFA2C67B43}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{266C483D-842D-49E7-BEC6-C1509FB06F87}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3BCE08D1-B96C-4794-B91A-5653B4EE0F5E}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{CB397A91-9114-4CF9-A2FC-497C7A6A3559}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{9C483BF9-F83A-4E84-8D93-5B642F3F58A8}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{5E362C41-85CA-46FB-B7AF-C6EBACFE9EB1}] => C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{25B2125D-1214-4876-A8B5-3FFD9CD53993}] => C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{8AFD7139-C523-42EA-93B4-B0ED77E24EFD}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8E7A3181-1F75-4C77-BF37-AE67F5E76122}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{D1BD8F01-6A7C-4F8E-AFDB-A8BAFB206094}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F691699A-39D1-4DF9-9775-5A54C64DCB2A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{87AECBFA-C0FC-4A48-9245-9819BAE71CB3}] => LPort=48114 FirewallRules: [{08BD460D-6B83-43D7-8F1E-15F087B83278}] => LPort=48113 FirewallRules: [{CED5C453-D2E6-4F9F-B2E0-844A0BF9DB04}] => LPort=48113 FirewallRules: [{46E38442-0600-4215-9BBE-6FB1728B9A5F}] => C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{9B97F698-36EB-46DE-BDC4-AC5D48E4114C}] => C:\Program Files\HP\hp software update\hpwucli.exe FirewallRules: [{52DA4412-EB04-4646-B1A4-BBA5DCCC66A8}] => C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{E1B4D35A-4EBD-4EA5-88CB-677224E1F333}] => C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{E36BB7B5-175C-4205-8C08-B142D6A9922A}] => C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe FirewallRules: [{E5A9012D-E2CC-435E-B027-6BBC6DFB15DA}] => C:\Program Files\HP\Digital Imaging\bin\hpqfxt08.exe FirewallRules: [{5A24031D-51BC-44F6-81E3-8AF5351CC3A6}] => C:\Program Files\HP\Digital Imaging\bin\hpofxs08.exe FirewallRules: [{7B4228F8-B0A2-44A7-87FB-37CE5D3F4F2A}] => C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe FirewallRules: [{0A98AA34-61A7-472D-8FC1-5979E4D89C51}] => C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe FirewallRules: [{59A5DB17-3E98-41FF-9DD6-40279662AE21}] => C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{E396D8F9-4BD5-4147-ABE9-F6199CC59D94}] => C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{6615AD16-2834-4A5B-9E75-16A5B24FD40F}] => C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe FirewallRules: [{D4080393-B8DF-4797-821E-A97C4DA629BB}] => C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{14C671C0-1F71-4919-8DF0-6E5C6A87DB30}] => C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe FirewallRules: [{1999A7A8-33D0-472B-9D7A-E5B54E0DB593}] => C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{BFF28F16-CCA0-458A-B2BB-35AD2878CFFC}] => C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{C531DEE9-2B14-4EE2-98D3-27E36BF62B0E}] => C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{ECA2F017-A1CD-42E4-98E9-BC65E2281775}] => C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{9853B9C0-91A7-4CDE-96F0-79B03BBEF888}] => C:\Program Files\HP\Digital Imaging\bin\hposfx08.exe FirewallRules: [{1BCF45C0-F52E-4575-BCDA-F13701F0C339}] => C:\Program Files\HP\Digital Imaging\bin\hpofxm08.exe FirewallRules: [{B93F4D03-F89B-4A5E-896E-9218EE6EC8BE}] => C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{A6226DE3-5875-4D05-961E-C05D6DAB242A}] => C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{EE4F6CB3-14E8-4943-B075-72C453D69EDA}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{4D386B10-23A8-4A20-8C38-D8E7F4EE6643}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F337DC25-04BF-4F8F-BCEA-095900413184}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{E69228DE-1C1F-4373-9BCF-8E29450E9978}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{76AEFB80-885B-4F48-BD8C-7CE1D9DC06D1}] => C:\Program Files\Dell_HostCD\pssu.exe FirewallRules: [{64AB604B-751B-441F-B660-008814223BD6}] => C:\Program Files\Dell_HostCD\pssu.exe FirewallRules: [{09FB5746-57CF-4AF1-8FF3-7A84DA76D020}] => C:\Windows\system32\DKabcoms.exe FirewallRules: [{E56BE266-C672-4946-919D-9F2DAE8FF893}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{7C809189-8F51-45EB-A42D-DBDB20DC45CA}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2C645181-C8D6-4EFE-AA1B-9DE129F189A1}] => C:\Users\HAMARD\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [TCP Query User{A0E15C3E-2EF3-4096-981D-490FDB5487E6}C:\windows\system32\msiexec.exe] => C:\windows\system32\msiexec.exe FirewallRules: [UDP Query User{F69D7DDB-7C91-496D-AB63-35E5CA90D3A9}C:\windows\system32\msiexec.exe] => C:\windows\system32\msiexec.exe FirewallRules: [{A4D5AF58-E344-4C13-AE02-F0D04D26EF43}] => C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe FirewallRules: [{4B6B5900-3F4A-468D-9E27-565718DDD634}] => C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe FirewallRules: [{50846C72-50DE-4CAA-B38C-B21FCC9AF31A}] => C:\Program Files\Serveur Media\twonkymediaserver.exe FirewallRules: [{8CE8E32A-CF59-4F75-992E-972F34CEB71D}] => C:\Program Files\Serveur Media\twonkymediaserver.exe FirewallRules: [{7AA89BB7-2120-4E14-9D59-9FF6F71F55EF}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3F90783B-4736-4B3F-9366-FFFF2B457C9A}] => C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C285BE3D-DF3A-4C62-ADA7-6DAAB96DCCFE}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{12615C59-EC02-4E92-9DF1-EA67D7F68294}] => C:\Program Files\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{94A8F158-BC15-482C-8D9E-B8820ACDF4CF}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{B985154F-5EAE-414B-9DC9-F201317BC03A}] => C:\Program Files\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{DB0134E6-DD6E-4574-9C9B-52DB90E7D12E}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{6BF7E39B-1A6C-4B32-A3A3-EF7D53BDD1E5}] => C:\Program Files\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{BB57A67D-4D28-4B74-AF69-3F4CAAAA6E23}] => C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{980AB590-36BC-496D-A969-378570E0D751}] => C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{4084E578-BEBF-4AC1-B526-4D98D9C65642}] => C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [{F2F37C91-7FE8-4250-9BF4-5E8C08D674A0}] => C:\Program Files\iTunes\iTunes.exe FirewallRules: [{A37C42E4-6448-4E21-BDB4-C5D3809CB1B6}] => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe FirewallRules: [{982BE65E-3A3D-4F7C-AD02-5E2C97C30867}] => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe FirewallRules: [{24EC6977-6479-4EB6-9C72-4850F6E53FC3}] => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe FirewallRules: [{29156082-E581-4AC6-9AF0-FDD8B4409F1B}] => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe ==================== Points de restauration ========================= 14-11-2016 15:35:47 Point de contrôle planifié 22-11-2016 08:28:58 ASU_MSI_TRAN 22-11-2016 12:39:10 Avira System Speedup 3.0.0 23-11-2016 06:25:39 Optimisation Avira System Speedup 24-11-2016 09:56:04 Optimisation Avira System Speedup 24-11-2016 10:03:16 Optimisation Avira System Speedup 02-12-2016 16:29:12 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/07/2016 05:37:17 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante TwonkyMediaServer.exe, version : 0.0.0.0, horodatage : 0x4d07e5b7 Nom du module défaillant : ntdll.dll, version : 10.0.10586.306, horodatage : 0x571af2dc Code d’exception : 0xc0000005 Décalage d’erreur : 0x00026889 ID du processus défaillant : 0x229c Heure de début de l’application défaillante : 0x01d24fe56a6f287a Chemin d’accès de l’application défaillante : C:\Program Files\Serveur Media\TwonkyMediaServer.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : e0523b0c-e59e-4187-aa4c-b001aaa8d053 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/06/2016 06:22:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante TwonkyMediaServer.exe, version : 0.0.0.0, horodatage : 0x4d07e5b7 Nom du module défaillant : ntdll.dll, version : 10.0.10586.306, horodatage : 0x571af2dc Code d’exception : 0xc0000005 Décalage d’erreur : 0x00026889 ID du processus défaillant : 0x1b58 Heure de début de l’application défaillante : 0x01d24f93b8776c3b Chemin d’accès de l’application défaillante : C:\Program Files\Serveur Media\TwonkyMediaServer.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 37ae1d71-4033-4801-8f3e-d446c35d79c5 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/06/2016 08:37:49 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante TwonkyMediaServer.exe, version : 0.0.0.0, horodatage : 0x4d07e5b7 Nom du module défaillant : ntdll.dll, version : 10.0.10586.306, horodatage : 0x571af2dc Code d’exception : 0xc0000005 Décalage d’erreur : 0x00026889 ID du processus défaillant : 0xb98 Heure de début de l’application défaillante : 0x01d24dfd07d18627 Chemin d’accès de l’application défaillante : C:\Program Files\Serveur Media\TwonkyMediaServer.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 007fd65c-2c59-46e0-b8a3-a4b14ba97952 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/05/2016 10:08:21 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMARD-AUDOUIN) Description: Échec de l’activation de l’application Microsoft.Windows.Photos_8wekyb3d8bbwe!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/05/2016 04:45:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SkypeHost.exe, version : 10.1.2123.36, horodatage : 0x56eb679c Nom du module défaillant : SkyWrap.dll, version : 10.1.2123.36, horodatage : 0x56eb6787 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00b063c8 ID du processus défaillant : 0x12d0 Heure de début de l’application défaillante : 0x01d24dfd168527c6 Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe Chemin d’accès du module défaillant: C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll ID de rapport : 793fc8d3-9514-4280-a582-5747262451e6 Nom complet du package défaillant : Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe ID de l’application relative au package défaillant : ppleae38af2e007f4358a809ac99a64a67c1 Error: (12/04/2016 07:25:40 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: Échec de la sauvegarde. Raison : une erreur d'écriture s'est produite à l'emplacement de sauvegarde (K:\). Erreur : Emplacement de sauvegarde introuvable ou non valide. Vérifiez-le en passant en revue vos paramètres de sauvegarde. (0x81000006). Error: (12/04/2016 02:48:08 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HAMARD-AUDOUIN) Description: Échec de l’activation de l’application Microsoft.Windows.Photos_8wekyb3d8bbwe!App avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/04/2016 09:51:13 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HAMARD-AUDOUIN) Description: Le package Microsoft.Windows.Photos_16.1118.10000.0_x86__8wekyb3d8bbwe+App a été interrompu, car sa suspension a été trop longue. Error: (12/04/2016 09:36:08 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: HAMARD-AUDOUIN) Description: Le package Microsoft.Windows.Photos_16.1118.10000.0_x86__8wekyb3d8bbwe+App a été interrompu, car sa suspension a été trop longue. Error: (12/04/2016 07:54:43 AM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (EventID: 1) (User: ) Description: Event-ID 1 Erreurs système: ============= Error: (12/06/2016 06:22:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {3185A766-B338-11E4-A71E-12E3F512A338} et l’APPID {7006698D-2974-4091-A424-85DD0B909E23} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:57:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0xc1900107 : Mise à jour de fonctionnalité vers Windows 10, version 1607. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/06/2016 12:56:10 PM) (Source: DCOM) (EventID: 10016) (User: HAMARD-AUDOUIN) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID HAMARD-AUDOUIN\HAMARD de l’utilisateur (S-1-5-21-3623109357-3433459825-984393507-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. CodeIntegrity: =================================== Date: 2016-12-07 06:09:17.755 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-07 06:09:17.706 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-04 19:35:31.249 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-03 20:01:56.792 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-02 18:48:30.217 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-02 18:48:29.989 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-01 20:45:24.561 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-01 20:45:24.538 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-01 20:45:24.510 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-01 20:45:11.954 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Pentium(R) Dual CPU E2140 @ 1.60GHz Pourcentage de mémoire utilisée: 72% Mémoire physique - RAM - totale: 2047.3 MB Mémoire physique - RAM - disponible: 564.53 MB Mémoire virtuelle totale: 4095.3 MB Mémoire virtuelle disponible: 1737.08 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:334.91 GB) (Free:136.93 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 335.4 GB) (Disk ID: CC4BB6B2) Partition 1: (Active) - (Size=334.9 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ==================== Fin de Addition.txt ============================