Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-05-2017 Exécuté par Techniko (20-05-2017 12:27:33) Exécuté depuis C:\Users\Techniko\Desktop Windows 10 Home Version 1607 (X64) (2016-09-25 14:21:00) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-4222687048-1916804829-3650608199-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-4222687048-1916804829-3650608199-503 - Limited - Disabled) Invité (S-1-5-21-4222687048-1916804829-3650608199-501 - Limited - Disabled) Techniko (S-1-5-21-4222687048-1916804829-3650608199-1001 - Administrator - Enabled) => C:\Users\Techniko ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 1Password 4.6.0.604 (HKLM-x32\...\1Password4_is1) (Version: 4.0 - AgileBits) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated) Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.0 - Adobe Systems Incorporated) Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated) Ansel (Version: 376.33 - NVIDIA Corporation) Hidden Apowersoft Phone Manager version 2.8.0 (HKLM-x32\...\{4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1) (Version: 2.8.0 - APOWERSOFT LIMITED) Apple Application Support (32 bits) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0040 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.101 - ICEpower a/s) Auto Mouse Click v13.1 (HKLM-x32\...\{F5E3859D-0720-41F0-BAF5-4CBCDFD8F406}_is1) (Version: 13.1 - MurGee.com) AVG (HKLM\...\AvgZen) (Version: 1.181.3.3057 - AVG Technologies) AVG (Version: 1.181.4 - AVG Technologies) Hidden AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies) AVG PC TuneUp (x32 Version: 16.74.1 - AVG Technologies) Hidden AVG Protection (HKLM-x32\...\AVG Antivirus) (Version: 17.4.3014 - AVG Technologies) BatchPurifier (HKLM-x32\...\{94BB283B-5431-4093-8900-69633405FD05}) (Version: 7.00.0000 - Digital Confidence) Becker Content Manager (HKLM-x32\...\Becker Content Manager) (Version: - ) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform) Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - ) CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Encrypto version 1.0.0 (HKLM\...\{5C39608C-6AFB-484F-BED4-3D16158CC19E}_is1) (Version: 1.0.0 - MacPaw, Inc.) Epson Printer Connection Checker (HKLM-x32\...\{83475ED4-8CCD-4F42-B877-7E2CC2BBD97B}) (Version: 2.0.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.01 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{82B94253-3FBC-4779-B3BF-C690AD54AFDB}) (Version: 4.4.0 - SEIKO EPSON CORPORATION) EPSON XP-243 245 247 Series Printer Uninstall (HKLM\...\EPSON XP-243 245 247 Series) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) Eraser 6.2.0.2970 (HKLM\...\{58F37E51-2A83-49F3-9117-6005C63CF399}) (Version: 6.2.2970 - The Eraser Project) Exif Tag Remover 5.1 (HKLM-x32\...\Exif Tag Remover_is1) (Version: - RL Vision) Faktum Facture (HKLM-x32\...\{B06A6A66-17A1-4CE7-859A-FA492A01B98C}) (Version: 5.7.4 - Faktum Software International Ltd.) FileZilla Client 3.20.1 (HKLM-x32\...\FileZilla Client) (Version: 3.20.1 - Tim Kosse) FMW 1 (Version: 1.192.3 - AVG Technologies) Hidden Freemake Video Converter version 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.) Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden Gpg4win (2.3.3) (HKLM-x32\...\GPG4Win) (Version: 2.3.3 - The Gpg4win Project) Intel(R) Chipset Device Software (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C800791E-9A08-42A2-8890-9D9667786538}) (Version: 19.30.1649.0949 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) IPVanish (HKLM\...\A57226AD-BDAF-4860-BD4E-EDA6BC546189_is1) (Version: 3.0.8.0 - IPVANISH) iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.) LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{aa2c2346-d0c0-4d3e-9ab1-11a48b4cb9f3}) (Version: 19.20.3 - Intel Corporation) Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) MappyPlus (HKLM-x32\...\{478F482D-C30B-4876-A080-BE3916268682}) (Version: 1.1.15 - Mappy) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) MiniTool Partition Wizard Free 10 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.) Mises à jour NVIDIA 2.11.4.1 (Version: 2.11.4.1 - NVIDIA Corporation) Hidden monAlbumPhoto (HKLM-x32\...\monAlbumPhoto_is1) (Version: 6.4.4.6 - monAlbumPhoto) Mozilla Firefox 53.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 fr)) (Version: 53.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.2.6333 - Mozilla) Mozilla Thunderbird 45.7.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.7.1 (x86 fr)) (Version: 45.7.1 - Mozilla) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.2 - Notepad++ Team) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote graphique 376.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.33 - NVIDIA Corporation) OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation) Oracle VM VirtualBox 5.1.14 (HKLM\...\{6AE61854-0F78-49E3-ABCC-586FB43CE709}) (Version: 5.1.14 - Oracle Corporation) Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation) Panneau de configuration NVIDIA 376.33 (Version: 376.33 - NVIDIA Corporation) Hidden PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.12 - ) pidgin-otr 4.0.2 (HKLM-x32\...\pidgin-otr) (Version: 4.0.2 - Cypherpunks CA) PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7599 - Realtek Semiconductor Corp.) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.1 - NVIDIA Corporation) Hidden SoftPerfect WiFi Guard version 1.0.7 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 1.0.7 - SoftPerfect) SourceTree (HKLM-x32\...\SourceTree 1.8.2.11) (Version: 1.8.2.11 - Atlassian) SourceTree (x32 Version: 1.8.2.11 - Atlassian) Hidden Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) Sublime Text 2.0.2 (HKLM-x32\...\Sublime Text 2_is1) (Version: - ) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) Technitium MAC Address Changer v6.0 (HKLM-x32\...\TMACv6.0) (Version: 6.0 - Technitium) UsbFix (HKLM-x32\...\Usbfix) (Version: 9.001 - www.SOSVirus.Net) VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.19 - IDRIX) VisiPics V1.31 (HKLM-x32\...\VisiPics_is1) (Version: - Ozone) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Wampserver64 3.0.0 (HKLM\...\{5C1D66DE-19D8-487B-860D-2BDB4F19B0D3}_is1) (Version: 3.0.0 - Dominique Ottello aka Otomatic) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4222687048-1916804829-3650608199-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {16E4FAFC-860B-49DF-8FB1-7F548D46C8C6} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {2433D6E9-B372-4600-844A-71479A6D2219} - System32\Tasks\AdobeAAMUpdater-1.0-ASUS-WORKSTATIO-Techniko => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {2CD97B3C-706A-43B6-8BE2-7A37DF0FA08A} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [2017-05-13] (AVG Technologies CZ, s.r.o.) Task: {31ECAA8D-CC0E-4787-823C-5D66B85B1DF2} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe Task: {4F5C9518-7FC3-409C-AAE2-9A6A451E65C9} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2017-02-21] (AVG Technologies CZ, s.r.o.) Task: {5078A24C-3BC7-4E3F-92F7-96A34343E148} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2016-03-21] (Safer-Networking Ltd.) Task: {53F30B32-FA96-4461-A70E-C6D5EE059867} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.) Task: {551216E9-F711-41A9-9407-8FCE755332B6} - System32\Tasks\{8EB1AF01-E047-4B2B-9FEA-331B0949F685} => Firefox.exe hxxp://ui.skype.com/ui/0/7.18.0.112/fr/go/help.faq.installer?source=lightinstaller&LastError=1618 Task: {71429556-A13E-483E-8739-64A9D19DC246} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) Task: {76268F96-D10A-4665-BC9F-6C703460FAA2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2016-03-21] (Safer-Networking Ltd.) Task: {78B60346-3D98-4A1A-B228-C8380316ADAB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2014-06-27] (Safer-Networking Ltd.) Task: {7BA5BDCE-EC95-43FF-812B-9A7AC298718B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-17] (Google Inc.) Task: {7E166FFE-991E-4CDB-A0BF-3CDED3C0FA4E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-17] (Google Inc.) Task: {86D47DB7-3150-4966-9FC9-A76C525AC01B} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-09-03] (Realtek Semiconductor) Task: {97DED67B-50E0-41B2-BD8A-8E2DCE549661} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-09-03] (Realtek Semiconductor) Task: {9C9D7AC8-0E38-4564-9F00-FC3D4A06E3E5} - System32\Tasks\0216pizUpdateInfo => C:\ProgramData\Avg_Update_0216piz\0216piz_AVG-Secure-Search-Update.exe [2016-02-16] () Task: {C121F946-2F29-4953-A93B-8A1EAF47FE0B} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {D110658D-D324-40B2-81D7-ADF848B478E0} - System32\Tasks\EPSON XP-243 245 247 Series Update {80C46C9B-084D-4509-A8B6-18E9BF9D16D2} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [2013-11-22] (SEIKO EPSON CORPORATION) Task: {D3A676E5-DC5B-48B6-94FB-4E6A74C8713E} - System32\Tasks\EPSON XP-243 245 247 Series Update {4BD565B8-FC67-4655-88C3-54F164ACB202} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [2013-11-22] (SEIKO EPSON CORPORATION) Task: {E3683A32-2109-4807-A9FE-B9EF66A3A334} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-21] (Adobe Systems Incorporated) Task: {EC63113F-7AAE-455A-A554-F4181A4DEC5F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {FA47B1B1-506D-4DF8-9970-08C239398FAA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {4BD565B8-FC67-4655-88C3-54F164ACB202}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{4BD565B8-FC67-4655-88C3-54F164ACB202} /F:UpdateWORKGROUP\ASUS-WORKSTATIO$ÄŠSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {80C46C9B-084D-4509-A8B6-18E9BF9D16D2}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{80C46C9B-084D-4509-A8B6-18E9BF9D16D2} /F:UpdateWORKGROUP\ASUS-WORKSTATIO$ÄŠSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Techniko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Ledger Wallet Bitcoin.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=kkdpmhnladdopljabkgpacgpliggeeaf ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-05-10 10:47 - 2017-04-28 02:49 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-09-25 16:00 - 2016-12-11 20:47 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-01-13 14:56 - 2017-01-13 14:56 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-05-10 10:47 - 2017-04-28 02:49 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-03-28 20:07 - 2016-03-28 20:07 - 00230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2016-09-25 16:52 - 2016-09-25 16:52 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-14 20:20 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-14 20:20 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-14 20:20 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-14 20:20 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-05-10 10:47 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-05-10 10:47 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-05-19 18:41 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2017-05-19 18:41 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2017-05-19 18:41 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2017-05-19 18:41 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2017-05-19 18:41 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll 2016-11-28 13:39 - 2016-11-28 13:39 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 00171344 _____ () C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 00999024 _____ () C:\Program Files (x86)\AVG\Antivirus\AvChrome.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 67717632 _____ () C:\Program Files (x86)\AVG\Antivirus\libcef.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 00178120 _____ () C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 00224352 _____ () C:\Program Files (x86)\AVG\Antivirus\tasks_core.dll 2017-05-13 17:59 - 2017-05-13 17:59 - 00685784 _____ () C:\Program Files (x86)\AVG\Antivirus\ffl2.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:CB0AACC9 [150] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 13:04 - 2017-02-17 20:31 - 00010850 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 a.rad.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 a.ads1.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 a.ads2.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 a.ads2.msads.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 ac3.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 ad.doubleclick.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 adnexus.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 adnxs.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 ads.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 ads1.msads.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 ads1.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 aidps.atdmt.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 aka-cdn-ns.adtech.de # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 a-msedge.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 apps.skype.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 az361816.vo.msecnd.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 az512334.vo.msecnd.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 b.rad.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 b.ads2.msads.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 b.ads1.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 bingads.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 bs.serving-sys.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 c.atdmt.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 c.msn.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 cdn.atdmt.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 cds26.ams9.msecn.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 choice.microsoft.com # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 choice.microsoft.com.nsatc.net # Entry added with W10Privacy (www.winprivacy.de)! 0.0.0.0 compatexchange.cloudapp.net # Entry added with W10Privacy (www.winprivacy.de)! Il y a 84 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Techniko\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Eraser" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "ProductUpdater" HKLM\...\StartupApproved\Run32: => "AdobeCEPServiceManager" HKLM\...\StartupApproved\Run32: => "Agile1pAgent" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "TrojanScanner" HKLM\...\StartupApproved\Run32: => "Eraser" HKLM\...\StartupApproved\Run32: => "RIMBBLaunchAgent.exe" HKLM\...\StartupApproved\Run32: => "NvBackend" HKLM\...\StartupApproved\Run32: => "Malwarebytes TrayApp" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Techniko\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\amd64" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Techniko\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "BlueStacks Agent" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "VPN Unlimited" HKU\S-1-5-21-4222687048-1916804829-3650608199-1001\...\StartupApproved\Run: => "OpenVPN-GUI" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{B4E36B3D-18D5-4659-8DDD-8D847B55CF86}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{BAD998EE-FFB2-4994-925E-E325407B07E5}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{554348C9-3E53-44DC-BA24-76A8693BDFC8}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{80C89943-E650-48B1-9088-485B7A5A6E4F}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{748A6628-5467-4DAA-A76F-52899F8EB5C3}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe FirewallRules: [{C5441B29-7AA8-4A4D-9CC1-570240663E32}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe FirewallRules: [{FFC981FE-407F-41C0-A4D5-28F9C26CDB7C}] => (Allow) C:\Users\Techniko\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{6FD01A92-9A00-4532-9695-0FA06A1C9E98}] => (Allow) C:\Users\Techniko\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe FirewallRules: [{CA0EB868-3248-435F-88BB-8CEE371924AD}] => (Allow) C:\Users\Techniko\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe FirewallRules: [{BDA733B0-2055-46B9-BDEB-113258911741}] => (Allow) C:\Users\Techniko\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe FirewallRules: [TCP Query User{6147530E-C8CE-4D6D-83D8-56974CE6C98B}C:\program files (x86)\1password 4\1password.exe] => (Allow) C:\program files (x86)\1password 4\1password.exe FirewallRules: [UDP Query User{FFFE677B-313D-4744-AD91-B1C91FE86DD0}C:\program files (x86)\1password 4\1password.exe] => (Allow) C:\program files (x86)\1password 4\1password.exe FirewallRules: [{97A72B8E-8D7F-4542-AB8C-B865B3B13CBD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{CC81648F-326C-4B91-9AFF-6AE5F271FB6A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{1F89A4C5-C6DE-4205-A40F-AEAC9D336B00}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{71BC56CB-2BD0-45D5-9400-D484F0F517B2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{8E8AC69A-F4B8-4B65-8A4E-46039585A583}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{80B066F9-7EE0-46F2-BF23-F5F0CC7E9EBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{B0D53F05-903F-4A3B-8E35-6E87EA77F934}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{A9112408-8B6E-4367-B569-4CB7DFAB34DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{9253155D-32D9-40A4-8193-15C45DB704D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{A394BCEB-1FAD-4C81-8A01-827A8E70C21D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{87AC3195-F40D-42BA-BF8A-8D26410FFCE8}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{48A8F79E-D388-4D16-9E5C-FA0A2BED9935}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{5BBB9241-3ABA-4FA8-A6FB-4F5BEB528F6B}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [{835F5D30-17C1-4838-A728-9623A3EC7484}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe FirewallRules: [TCP Query User{0FFE3CA1-7F11-440F-8F97-18656AFE006B}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe FirewallRules: [UDP Query User{218CA944-F439-4A5B-AD7F-6FA1359B84A8}C:\program files (x86)\teamviewer\teamviewer.exe] => (Allow) C:\program files (x86)\teamviewer\teamviewer.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 16-05-2017 17:38:10 Windows Update 19-05-2017 17:24:46 JRT Pre-Junkware Removal ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: USB2.0 HD UVC WebCam Description: Périphérique vidéo USB Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: usbvideo Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/19/2017 06:46:36 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: AUTORITE NT) Description: Impossible de redémarrer l’application ou le service « Spybot-S&D 2 Security Center Service ». Error: (05/19/2017 06:31:51 PM) (Source: ESENT) (EventID: 454) (User: ) Description: taskhostw (5764) WebCacheLocal: La récupération/restauration de la base de données a échoué en raison d’une erreur inattendue -1032. Error: (05/19/2017 06:31:51 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw (5764) WebCacheLocal: Une tentative d’ouverture du fichier « C:\Users\Techniko\AppData\Local\Microsoft\Windows\WebCache\V01.log » pour accès en lecture/écriture a échoué en indiquant l’erreur système 32 (0x00000020) : « Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.  ». L’opération d’ouverture de fichier échouera en indiquant l’erreur -1032 (0xfffffbf8). Error: (05/19/2017 06:22:54 PM) (Source: openvpnserv) (EventID: 0) (User: ) Description: Event-ID 0 Error: (05/19/2017 06:20:28 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: ) Description: Event-ID 5000 Error: (05/19/2017 06:20:28 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: ) Description: Event-ID 5000 Error: (05/19/2017 06:20:14 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: ) Description: Event-ID 5000 Error: (05/19/2017 06:20:14 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: ) Description: Event-ID 5000 Error: (05/19/2017 05:38:27 PM) (Source: ESENT) (EventID: 454) (User: ) Description: taskhostw (4928) WebCacheLocal: La récupération/restauration de la base de données a échoué en raison d’une erreur inattendue -1032. Error: (05/19/2017 05:38:27 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhostw (4928) WebCacheLocal: Une tentative d’ouverture du fichier « C:\Users\Techniko\AppData\Local\Microsoft\Windows\WebCache\V01.log » pour accès en lecture/écriture a échoué en indiquant l’erreur système 32 (0x00000020) : « Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.  ». L’opération d’ouverture de fichier échouera en indiquant l’erreur -1032 (0xfffffbf8). Erreurs système: ============= Error: (05/20/2017 12:16:47 PM) (Source: DCOM) (EventID: 10010) (User: ASUS-WORKSTATIO) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (05/20/2017 12:14:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service de plateforme des appareils connectés s’est arrêté avec l’erreur : Erreur non spécifiée Error: (05/20/2017 11:59:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service SDWSCService n’a pas pu démarrer en raison de l’erreur : Un certificat requis n’est pas dans sa période de validité selon la vérification par rapport à l’horloge système en cours ou le tampon daté dans le fichier signé. Error: (05/20/2017 12:01:32 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (05/19/2017 11:59:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Encrypto Service s’est terminé de façon inattendue pour la 1ème fois. Error: (05/19/2017 11:59:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service AVG PC TuneUp Service n’a pas pu démarrer en raison de l’erreur : Accès refusé. Error: (05/19/2017 11:59:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de façon inattendue pour la 2ème fois. Error: (05/19/2017 11:59:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (05/19/2017 11:59:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Spybot-S&D 2 Scanner Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service. Error: (05/19/2017 11:59:35 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Malwarebytes Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2017-05-20 12:27:12.246 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:27:12.244 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:27:12.213 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:27:12.208 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:16:48.635 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:16:48.633 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:16:48.608 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:16:48.605 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 12:06:10.753 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-05-20 11:59:30.793 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Pourcentage de mémoire utilisée: 18% Mémoire physique - RAM - totale: 16279.55 MB Mémoire physique - RAM - disponible: 13250.95 MB Mémoire virtuelle totale: 18711.55 MB Mémoire virtuelle disponible: 15750.9 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:371.85 GB) (Free:133.96 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:490.9 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: EE1C2063) Partition: GPT. ==================== Fin de Addition.txt ============================