Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-11-2017 Exécuté par Beamimi (02-11-2017 14:58:39) Exécuté depuis C:\Users\Beamimi\Desktop Windows 10 Home Version 1607 14393.1770 (X64) (2016-10-04 10:16:38) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1480061054-2918453602-3283549880-500 - Administrator - Disabled) Beamimi (S-1-5-21-1480061054-2918453602-3283549880-1000 - Administrator - Enabled) => C:\Users\Beamimi DefaultAccount (S-1-5-21-1480061054-2918453602-3283549880-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1480061054-2918453602-3283549880-1002 - Limited - Enabled) Invité (S-1-5-21-1480061054-2918453602-3283549880-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: adaware antivirus (Enabled - Up to date) {2C8A0DAA-E78D-4944-DB01-263173C8FFD9} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Emsisoft Anti-Malware (Enabled - Up to date) {701CB209-EBBC-AADC-11E6-DE73E7AF4C9D} AS: adaware antivirus (Enabled - Up to date) {97EBEC4E-C1B7-46CA-E1B1-1D43084FB564} AS: Emsisoft Anti-Malware (Enabled - Up to date) {CB7D53ED-CD86-A552-2B56-E5019C280620} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) adaware antivirus (HKLM\...\{4A26AA2F-9AE5-41D2-8B90-75314AB3C8A1}_AdAwareUpdater) (Version: 12.2.876.11542 - adaware) AdAwareInstaller (HKLM\...\{F84B3667-401C-4E12-9366-24815A10D02A}) (Version: 12.2.876.11542 - adaware) Hidden AdAwareProxyEngine (HKLM\...\{7F7C8AE0-961B-4AED-B99A-D9BE29C0F24C}) (Version: 1.0.0.8 - adaware) Hidden AdAwareUpdater (HKLM\...\{4A26AA2F-9AE5-41D2-8B90-75314AB3C8A1}) (Version: 12.2.876.11542 - adaware) Hidden Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Amazon Music (HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\Amazon Amazon Music) (Version: 6.0.1.1166 - Amazon Services LLC) AntimalwareEngine (HKLM\...\{06D33B93-9458-4E28-BDEA-F5ECB2C3C30E}) (Version: 3.0.144.0 - adaware) Hidden AntispamEngine (HKLM\...\{7DE129E5-BB4A-4517-A6CD-C69EEB346781}) (Version: 2.5.337.0 - adaware) Hidden Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.36 - Atheros Communications Inc.) Bejeweled 2 Deluxe (HKLM-x32\...\WTA-762800e6-32f8-42eb-8515-28488523cfef) (Version: 2.2.0.95 - WildTangent) Hidden Bejeweled 3 (HKLM-x32\...\WTA-b46daead-2810-4a1f-baf8-a925b5772436) (Version: 2.2.0.97 - WildTangent) Hidden Chess-7 4.01 (HKLM-x32\...\Chess - 7_is1) (Version: - Style-7) Chicken Invaders 3 - Revenge of the Yolk (HKLM-x32\...\WTA-de9647da-e2d9-48dc-9620-8136e41f9413) (Version: 2.2.0.95 - WildTangent) Hidden Chuzzle Deluxe (HKLM-x32\...\WTA-8d78ed6a-16b5-4564-bb44-08294988e845) (Version: 2.2.0.95 - WildTangent) Hidden Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Diner Dash 2 Restaurant Rescue (HKLM-x32\...\WTA-2770ed66-c48a-4579-9e3e-53f21c3f3cad) (Version: 2.2.0.95 - WildTangent) Hidden Emsisoft Anti-Malware (HKLM\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 2017.9 - Emsisoft Ltd.) FATE (HKLM-x32\...\WTA-a9cc7b98-c8fe-4292-b3aa-1adc77270b4b) (Version: 2.2.0.97 - WildTangent) Hidden Final Drive: Nitro (HKLM-x32\...\WTA-e7277489-2757-45e1-bbad-1a3680c97916) (Version: 2.2.0.95 - WildTangent) Hidden Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.57 - Google Inc.) Hidden High-Definition Video Playback (HKLM-x32\...\{58CB9A9A-1EFB-4EA8-B50C-3097E754AC21}) (Version: 7.3.10900.8.0 - Nero AG) Hidden Insaniquarium Deluxe (HKLM-x32\...\WTA-5ada7e1f-82f9-4f17-b7bd-c5d127a614a4) (Version: 2.2.0.97 - WildTangent) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Java(TM) 6 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden KB4023057 (HKLM\...\{B977A833-7734-41A5-B820-1F23D81DC87B}) (Version: 2.6.0.0 - Microsoft Corporation) LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft Games for Windows 8 (HKLM-x32\...\MSgames) (Version: - Winreview.ru) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\OneDriveSetup.exe) (Version: 17.3.7074.1023 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) MuseScore 2 (HKLM-x32\...\{DC8A2B29-D9A7-4D67-A049-BC0A659A2B57}) (Version: 2.1.0 - Werner Schweer and Others) Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.8.10900.8.100 - Nero AG) Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.4.10400.2.100 - Nero AG) Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG) Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.4.10300.1.100 - Nero AG) Nero Kwik Media (HKLM-x32\...\{1F7D9F37-C39C-486C-BDF8-8F440FFB3352}) (Version: 1.6.15100.59.100 - Nero AG) Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{2063D199-D79F-471A-9019-9E647296394D}) (Version: 10.6.10300 - Nero AG) Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.6.10500.3.100 - Nero AG) Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10500.3.100 - Nero AG) Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.10900.31.0 - Nero AG) NVIDIA PhysX System Software 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation) NVIDIA Pilote graphique 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) OnlineThreatsEngine (HKLM\...\{26F31E12-3722-45FD-903B-49012286BB4C}) (Version: 3.0.1.23 - adaware) Hidden Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden Penguins! (HKLM-x32\...\WTA-437b8b20-2048-4f54-982c-c0c5af0ba4c3) (Version: 2.2.0.95 - WildTangent) Hidden Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-f4d2c191-df5f-46c2-98b0-ef5dcbd4e420) (Version: 2.2.0.95 - WildTangent) Hidden PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) Polar Bowler (HKLM-x32\...\WTA-e7cf0314-8ea6-46e7-be7a-c94b2824aea7) (Version: 2.2.0.97 - WildTangent) Hidden Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 1.0.0.15 - Realtek Semiconductor Corp.) Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0013 - REALTEK Semiconductor Corp.) Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation) Skype™ 5.3 (HKLM-x32\...\{D6F879CC-59D6-4D4B-AE9B-D761E48D25ED}) (Version: 5.3.120 - Skype Technologies S.A.) Slingo Deluxe (HKLM-x32\...\WTA-89be1bed-a478-430b-a05c-a628d6507473) (Version: 2.2.0.95 - WildTangent) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.10.0 - Synaptics Incorporated) TOSHIBA Assist (HKLM-x32\...\{C2A276E3-154E-44DC-AAF1-FFDD7FD30E35}) (Version: 4.02.02 - TOSHIBA CORPORATION) TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{43DBC64B-3DD1-47E2-8788-D3C3B110C574}) (Version: 2.1.10.64 - TOSHIBA Corporation) TOSHIBA ConfigFree (HKLM-x32\...\{D5AEEAA2-184E-4A2A-BAA3-6225EA4B9516}) (Version: 8.0.37 - TOSHIBA CORPORATION) TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.6 for x64 - TOSHIBA Corporation) TOSHIBA eco Utility (HKLM\...\{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.25.64 - TOSHIBA Corporation) TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.8.64 - TOSHIBA Corporation) TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{C4FFA951-9678-4D51-84B4-AFD15D3C45AD}) (Version: 4.08.06.00 - ) TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.7 - TOSHIBA Corporation) Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.02 - TOSHIBA) TOSHIBA Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 4.01.0000 - TOSHIBA) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.7.9.64M - TOSHIBA Corporation) TOSHIBA Places Icon Utility (HKLM-x32\...\{461F6F0D-7173-4902-9604-AB1A29108AF2}) (Version: 1.0.2.4 - TOSHIBA) TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.3.5109 - TOSHIBA CORPORATION) TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA) TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.17.64 - TOSHIBA Corporation) TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.52 - TOSHIBA) TOSHIBA Sleep Utility (HKLM-x32\...\{654F7484-88C5-46DC-AB32-C66BCB0E2102}) (Version: 1.4.2.7 - TOSHIBA Corporation) TOSHIBA Supervisor Password (HKLM-x32\...\InstallShield_{CBD6B23D-41D5-4A46-8019-6208516C9712}) (Version: 4.08.06.00 - ) TOSHIBA TEMPRO (HKLM-x32\...\{F082CB11-4794-4259-99A1-D91BA762AD15}) (Version: 3.35 - Toshiba Europe GmbH) TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.5.4.64 - TOSHIBA Corporation) TOSHIBA Web Camera Application (HKLM-x32\...\InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}) (Version: 2.0.0.19 - TOSHIBA Corporation) TOSHIBA Wireless LAN Indicator (HKLM-x32\...\{CDADE9BC-612C-42B8-B929-5C6A823E7FF9}) (Version: 1.0.3 - TOSHIBA CORPORATION) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Web Companion (HKLM-x32\...\{2db2f4de-815f-44cb-bef3-e26e055541fb}) (Version: 2.3.1410.2697 - Lavasoft) Wedding Dash 2 - Rings Around the World (HKLM-x32\...\WTA-16320503-2a70-46ed-a7bc-a0a70fec690f) (Version: 2.2.0.95 - WildTangent) Hidden WildTangent Games (HKLM-x32\...\WildTangent toshiba Master Uninstall) (Version: 1.0.2.5 - WildTangent) WildTangent Games App (Toshiba Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-toshiba) (Version: 4.1.1.30 - WildTangent) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows 7 Games for Windows 8 and 10 (HKLM-x32\...\MicrosoftGamesForWin8) (Version: 2.0.0.0 - ) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Zuma Deluxe (HKLM-x32\...\WTA-1ca3e216-095f-4126-808d-1c67f171c6d2) (Version: 2.2.0.95 - WildTangent) Hidden بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation) معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ContextMenuHandlers2: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareShellExtension.dll [2017-09-01] () ContextMenuHandlers2-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers2-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers3: [AdAwareContextMenu] -> {5B64240D-5B36-4B9F-A75F-4925B6A53D5B} => C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareShellExtension.dll [2017-09-01] () ContextMenuHandlers3-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers3-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation) ContextMenuHandlers6-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU.DLL [2015-10-21] (Emsisoft Ltd) ContextMenuHandlers6-x32: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-10-21] (Emsisoft Ltd) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {044085F2-EBDD-4665-85A0-D6880E13D9A1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {0589DCF8-F140-4D76-B831-2577E150DC83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-08] (Google Inc.) Task: {0F2D6859-1270-4130-A06B-5A580F20CE07} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1F0323E3-372B-4FD3-984C-F7131B73D517} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {2BAC04BD-F76D-405B-B242-4694485704D7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3D4A9A9F-0A28-4BE1-8D4D-02E986EE63DB} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {49FB0332-3E1E-43F7-A4BC-68CA40E8343A} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Beamimi\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe Task: {535996B7-78AF-4FA2-9DF1-4B618317947E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {59C9946C-DCA0-4F4B-9BE4-FE8CBB542A12} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {5D61C948-5836-4BF0-A4A2-732F2A101ED0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {615746E1-26EA-4F29-AD45-051C60C5018B} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {61BB4CBA-DD09-4717-BE44-75850AA7F67D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {6F6884CD-13A0-480A-9F3F-ED7678EA1C68} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-08] (Google Inc.) Task: {792BF1E7-22F0-43A9-8CEC-AE2B4F76486B} - \ConfigFree Startup Programs -> Pas de fichier <==== ATTENTION Task: {79B6A447-55EF-4C1C-8C99-B4196F892C06} - System32\Tasks\{E7072953-417D-431E-81C0-3BA8438015B0} => C:\WINDOWS\system32\pcalua.exe -a E:\msert.exe -d E:\ Task: {7FB9C26E-0DC4-4BFB-ABED-014161447667} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {85979B31-5E07-4B14-9215-373E5A613A1D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {8EC25C21-8B04-4233-98E5-95875C8FD8E0} - System32\Tasks\{72100D0B-113E-4ED4-B21F-6AEDFA5577F5} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Beamimi\Downloads\rival-chess_rival_chess_1.8.29_shareware_anglais_10177\SETUP.EXE -d C:\Users\Beamimi\Downloads\rival-chess_rival_chess_1.8.29_shareware_anglais_10177 Task: {8F5EAAEA-3B09-4B36-8737-F560B81C9652} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A0D3B23D-4444-458B-8769-B52A9F4BCCB9} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {AFD30185-AC19-4C9F-9239-A8A3DBAD5EC6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {B355471D-5052-4F80-8361-5E2C0C4A425C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {BCB96E8E-9798-4747-B2A7-493FF5CD83B9} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DA3660C0-CE66-4972-A592-D3F19D38C7A1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DB3AA3A8-4065-45F8-877D-54C63D7F21EB} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {DF97E908-DBFF-4E53-844B-A1554E85C80C} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {EA280104-861B-43A2-9094-A9A7FD97F8A0} - System32\Tasks\Skype => C:\Users\Beamimi\AppData\Local\Temp\Colis-suivi-relay.vbs <==== ATTENTION Task: {EE687906-BD30-41A0-B255-69E09052B5C7} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {EFBCB0DD-D474-465A-87F9-573E2E5CBA52} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F2802747-8F32-46DA-9FDB-3223A946A35A} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FE089D53-3DE6-4C00-A48D-1C6E2093F08B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Beamimi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TLKGAMES\3D Chess Unlimited Shareware\TLK Games.lnk -> hxxp://www.tlkgames.com/?lang=f ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-09-19 13:05 - 2017-09-07 07:01 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2017-09-01 17:27 - 2017-09-01 17:27 - 000585784 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareService.exe 2017-09-01 17:33 - 2017-09-01 17:33 - 000121816 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_thread-vc140-mt-1_61.dll 2017-09-01 17:33 - 2017-09-01 17:33 - 000030680 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_system-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000067544 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_date_time-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000144856 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_filesystem-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000733144 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_log-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000524760 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_locale-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000039384 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_chrono-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 011625432 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\rpc_server.dll 2017-09-01 17:33 - 2017-09-01 17:33 - 003712984 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\RCF.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001000920 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_regex-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001170904 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareActivation.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 002801624 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareApplicationUpdater.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000863192 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareGamingMode.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000120280 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareReset.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000142296 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareTime.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001045464 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareDefinitionsUpdater.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000926168 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareDefinitionsUpdaterScheduler.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001491416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareIgnoreList.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000310232 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareQuarantine.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001677272 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiMalwareEngine.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001229784 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScannerHistory.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001582552 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScanner.dll 2017-09-01 17:33 - 2017-09-01 17:33 - 000039384 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_timer-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001052120 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareScannerScheduler.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001194968 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareRealTimeProtection.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 002905048 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareIncompatibles.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001545688 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiSpam.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001476568 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAntiPhishing.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 003485144 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareParentalControl.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 003621336 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareWebProtection.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001619416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareEmailProtection.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000073176 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\boost_iostreams-vc140-mt-1_61.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001732056 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareNetworkProtection.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001220056 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwarePromo.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000475096 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareFeedback.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 003186136 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareThreatWorkAlliance.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000667096 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwarePinCode.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001221080 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareNotice.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001619416 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareAvcEngine.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 001519064 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareRealTimeProtectionHistory.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 000788952 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareStatistics.dll 2017-10-30 10:29 - 2017-10-30 10:29 - 001008448 _____ () C:\Program Files\adaware\adaware antivirus\Online Threats Engine\definitions\loc1\ashttpbr.mdl 2017-10-30 10:29 - 2017-10-30 10:29 - 000541952 _____ () C:\Program Files\adaware\adaware antivirus\Online Threats Engine\definitions\loc1\ashttpdsp.mdl 2017-10-30 10:29 - 2017-10-30 10:29 - 003243920 _____ () C:\Program Files\adaware\adaware antivirus\Online Threats Engine\definitions\loc1\ashttpph.mdl 2017-10-30 10:29 - 2017-10-30 10:29 - 001544568 _____ () C:\Program Files\adaware\adaware antivirus\Online Threats Engine\definitions\loc1\ashttprbl.mdl 2016-10-04 10:38 - 2016-12-29 14:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-09-01 17:32 - 2017-09-01 17:32 - 002687960 _____ () C:\Program Files\adaware\adaware antivirus\adaware antivirus\12.2.876.11542\AdAwareShellExtension.dll 2016-10-04 11:28 - 2016-10-04 11:28 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-15 17:06 - 2017-03-04 07:31 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-15 17:05 - 2017-03-04 07:12 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-15 17:05 - 2017-03-04 07:05 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-15 17:05 - 2017-03-04 07:05 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-10-11 13:41 - 2017-09-18 03:13 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-10-11 13:41 - 2017-09-18 03:14 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-10-11 13:41 - 2017-09-18 03:16 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-11-01 18:58 - 2017-11-01 19:00 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-11-01 18:58 - 2017-11-01 19:00 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-11-01 18:58 - 2017-11-01 19:00 - 025446400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-11-01 18:58 - 2017-11-01 19:00 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\skypert.dll 2017-11-01 18:58 - 2017-11-01 19:00 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2010-11-18 17:18 - 2010-11-18 17:18 - 011190784 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll 2010-12-15 15:19 - 2010-12-15 15:19 - 000124320 _____ () C:\Program Files\TOSHIBA\TECO\MUIHelp.dll 2017-09-22 08:31 - 2017-09-21 08:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-09-22 08:31 - 2017-09-21 08:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 001232504 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\IGCore.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000297080 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\IGUtils.DLL 2017-08-18 10:13 - 2017-08-18 10:13 - 000638072 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\IGMath.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 001399928 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\alchemy\ogl\IGSg.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000757368 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\alchemy\ogl\IGAttrs.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 005765240 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\alchemy\ogl\IGGfx.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 011575416 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\googleearth_pro.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000092792 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\ge_expat.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 005190776 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\avcodec-57.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 002297976 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\avformat-57.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000784504 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\avutil-55.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000280184 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\swresample-2.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000779384 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\swscale-4.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000022136 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\alchemyext.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000732280 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\IGExportCommon.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 001056888 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\IGOpt.dll 2017-08-18 10:13 - 2017-08-18 10:13 - 000151672 _____ () C:\Program Files (x86)\Google\Google Earth Pro\client\alchemy\optimizations\IGOptExtension.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\adawareantivirusservice => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\adawareantivirusservice => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Beamimi\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{4b85b6fb-09b4-4a28-ad3c-0067fe17929d}.JPG DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "Toshiba Places Icon Utility.lnk" HKLM\...\StartupApproved\Run: => "SynTPEnh" HKLM\...\StartupApproved\Run: => "Toshiba TEMPRO" HKLM\...\StartupApproved\Run: => "TosNC" HKLM\...\StartupApproved\Run: => "TosReelTimeMonitor" HKLM\...\StartupApproved\Run: => "HSON" HKLM\...\StartupApproved\Run: => "SmartAudio" HKLM\...\StartupApproved\Run: => "TosSENotify" HKLM\...\StartupApproved\Run: => "TosWaitSrv" HKLM\...\StartupApproved\Run: => "Toshiba Registration" HKLM\...\StartupApproved\Run: => "AdAwareTray" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "NBAgent" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\StartupFolder: => "Colis-suivi-relay.vbs" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "TOPI.EXE" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "OE22HOSHD7" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "Amazon Music" HKU\S-1-5-21-1480061054-2918453602-3283549880-1000\...\StartupApproved\Run: => "Amazon Music Helper" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{3B8E6EF9-3806-43DC-BD91-D9D42ADB2451}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{1D78AF75-4E53-4F5F-BDBB-A43AAC2D8AEC}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{53676459-B9AA-4411-9678-78CDCAA643D7}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe FirewallRules: [{F7B871C3-1111-44DE-8ADF-0A8D5608EC4C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{A59539D2-E433-4534-9B3D-7DFD5D680E1A}] => (Allow) LPort=2869 FirewallRules: [{140B3ED4-3713-4FAA-A996-D5BD5FC5F96C}] => (Allow) LPort=1900 FirewallRules: [{2C0CBE80-4A0E-4489-B692-6FC0BDF1479D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{24B19CC5-B221-4420-B3E6-256D1A45D4FA}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [TCP Query User{6E46B2F5-9434-4DB0-9A98-7E1C416F1A66}C:\users\beamimi\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\beamimi\appdata\local\amazon music\amazon music helper.exe FirewallRules: [UDP Query User{BC17CD65-2CEE-4FBA-B403-7633CC7496B4}C:\users\beamimi\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\beamimi\appdata\local\amazon music\amazon music helper.exe FirewallRules: [{921B003F-8CA7-42AC-A89C-CACED165B599}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 13-10-2017 18:25:18 Windows Update 18-10-2017 09:37:14 Windows Update 27-10-2017 05:12:54 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/02/2017 02:42:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante UNPCampaignManager.exe, version : 10.0.14393.1439, horodatage : 0x591fe4fe Nom du module défaillant : LavasoftTcpService64.dll, version : 2.3.4.7, horodatage : 0x555dc671 Code d’exception : 0xc0000095 Décalage d’erreur : 0x0000000000008902 ID du processus défaillant : 0x3f8 Heure de début de l’application défaillante : 0x01d353e033025dfb Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\UNP\UNPCampaignManager.exe Chemin d’accès du module défaillant: C:\WINDOWS\system32\LavasoftTcpService64.dll ID de rapport : f65a95d2-49bb-4934-bce5-3f81ba5ab9f1 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/02/2017 02:14:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : 32a7fa85-3a91-4865-98cf-17bda6d719ea Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:24 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : 05f3242f-d18f-4b89-bf18-8c470c6b1d15 Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : b5ff4754-23ea-478a-ac01-de6be18cb14e Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:16 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : ec17da1a-4868-4f29-886f-d155948139c2 Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : eae7da9e-154a-42f6-aadd-e92337145aea Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : ae8caf40-fb87-4ec3-872a-7f75de0abd89 Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:06 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : acffbe26-00a3-4704-81ac-a6916f21f6eb Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:14:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : 6d411b84-21b1-4ce4-916c-9fe7c7128395 Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Error: (11/02/2017 02:13:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.953, horodatage : 0x58ba5911 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xd70 Heure de début de l’application défaillante : 0x01d353dc7119ba0b Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\microsoftedgecp.exe Chemin d’accès du module défaillant: unknown ID de rapport : e2ce13ee-6185-4452-a865-0f23864a39bd Nom complet du package défaillant : Microsoft.MicrosoftEdge_38.14393.1066.0_neutral__8wekyb3d8bbwe ID de l’application relative au package défaillant : MicrosoftEdge Erreurs système: ============= Error: (11/02/2017 02:51:21 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:49:21 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:47:21 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:45:21 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:43:20 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:42:05 PM) (Source: DCOM) (EventID: 10016) (User: BEAMIMI-TOSH) Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {C2F03A33-21F5-47FA-B4BB-156362A2F239} et l’APPID {316CDED5-E4AE-4B15-9113-7055D84DCC97} au SID Beamimi-TOSH\Beamimi de l’utilisateur (S-1-5-21-1480061054-2918453602-3283549880-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c du conteneur d’applications (S-1-15-2-2246530975-808720366-1776470054-230329187-4153223113-3550430174-4193313734). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/02/2017 02:40:31 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {21F282D1-A881-49E1-9A3A-26E44E39B86C} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 02:38:28 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/02/2017 02:06:42 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2017 01:36:28 PM) (Source: DCOM) (EventID: 10010) (User: BEAMIMI-TOSH) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. CodeIntegrity: =================================== Date: 2017-11-02 14:52:51.264 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. Date: 2017-11-02 14:40:50.696 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-02 14:40:33.724 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\NisSrv.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-02 14:40:16.882 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-02 14:40:15.408 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-11-02 14:38:14.812 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. Date: 2017-11-02 14:34:41.683 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. Date: 2017-11-02 14:08:09.745 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. Date: 2017-11-02 13:48:59.040 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. Date: 2017-11-02 12:27:59.132 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Emsisoft Anti-Malware\a2hooks64.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i3-2350M CPU @ 2.30GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 6125.86 MB Mémoire physique - RAM - disponible: 3635.1 MB Mémoire virtuelle totale: 12269.86 MB Mémoire virtuelle disponible: 9592.55 MB ==================== Lecteurs ================================ Drive c: (R16664SO001) (Fixed) (Total:535.22 GB) (Free:451.48 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 596.2 GB) (Disk ID: 80EA32F1) Partition 1: (Active) - (Size=1.5 GB) - (Type=27) Partition 2: (Not Active) - (Size=535.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=59 GB) - (Type=17) ==================== Fin de Addition.txt ============================