Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02.08.2018 Exécuté par maryl (16-08-2018 10:58:32) Exécuté depuis C:\Users\maryl\Downloads Windows 10 Home Version 1803 17134.228 (X64) (2018-05-04 17:11:03) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2762758690-3479469590-1194244944-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2762758690-3479469590-1194244944-503 - Limited - Disabled) frede (S-1-5-21-2762758690-3479469590-1194244944-1005 - Limited - Enabled) => C:\Users\frede Invité (S-1-5-21-2762758690-3479469590-1194244944-501 - Limited - Disabled) maryl (S-1-5-21-2762758690-3479469590-1194244944-1001 - Administrator - Enabled) => C:\Users\maryl WDAGUtilityAccount (S-1-5-21-2762758690-3479469590-1194244944-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 16.04 (HKLM-x32\...\7-Zip) (Version: 16.04 - Igor Pavlov) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) 7-Zip 18.05 (HKLM-x32\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov) 7-Zip 18.05 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated) Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated) Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.3.203 - Adobe Systems, Inc.) Aegisub 3.2.2 (HKLM-x32\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team) Amazon Drive (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Amazon Drive) (Version: 5.5.2 - Amazon.com, Inc.) Amazon Kindle (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Amazon Kindle) (Version: 1.23.0.50086 - Amazon) Amazon Send to Kindle (HKLM-x32\...\SendToKindle) (Version: 1.1.0.246 - Amazon) Apple Application Support (64 bits) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.) Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.) Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software) Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.1.5273 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 67.1.664.99 - AVAST Software) Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.141.333 - AVAST Software) Hidden Backup and Sync from Google (HKLM\...\{AEFBDB5B-899F-4AE6-B789-BA56A652A476}) (Version: 3.42.9858.3671 - Google, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform) ClearType Tuning Control Panel Applet (HKLM-x32\...\{C9E4932C-8417-4E4C-A0E3-EE534810AB4D}) (Version: 1.01.0000 - Microsoft Corporation) Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - ) CodeTwo QR Code Desktop Reader (HKLM-x32\...\{8E03824D-0FCC-4AAE-BBE3-3B544BE3876F}) (Version: 1.0.0 - CodeTwo) Cometdocs version 1.4 (HKLM-x32\...\{F5D178B6-5FDA-4A2B-99B7-62351BE90FF8}_is1) (Version: 1.4 - Cometdocs.com Inc.) Common Desktop Agent (HKLM\...\{031A0E14-0413-4C97-9772-2639B782F46F}) (Version: 1.62.0 - OEM) Hidden Conexant ISST Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 9.0.68.61 - Conexant) CopyQ v3.3.0 (HKLM-x32\...\{9DF1F443-EA0B-4C75-A4D3-767A7783228E}_is1) (Version: v3.3.0 - Lukas Holecek) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Diagnostics d'imprimante Samsung (HKLM-x32\...\Samsung Printer Diagnostics) (Version: 1.0.4.24 - Samsung Electronics Co., Ltd.) Dictez.com - Logiciel Secretaire (HKLM-x32\...\{16F42A3F-6C4D-4335-A600-029E6D6F4E10}) (Version: 2.0.1 - TransData System) DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden Ditel_Capture_Pro (HKLM-x32\...\{6D99B1C8-8C8B-E84A-8EF2-65CAB77BDB83}) (Version: 1.0.0.0 - -) Ditto (HKLM-x32\...\Ditto_is1) (Version: - Scott Brogden) DriversCloud.com (64 bits) (HKLM\...\{29DC4128-CF89-49D9-A524-B4430F036F14}) (Version: 10.0.7.0 - Cybelsoft) Duplicate Cleaner Free 4.0.5 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.0.5 - DigitalVolcano Software Ltd) <==== ATTENTION Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company) ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - ) Étude pour l'amélioration du produit HP OfficeJet 7510 series (HKLM\...\{A9AA4CFD-2592-477C-865A-99C8664BF7A2}) (Version: 35.0.72.55351 - Hewlett-Packard Co.) Evernote v. 6.11.2 (HKLM-x32\...\{FC67AAF6-3477-11E8-B094-005056951CAD}) (Version: 6.11.2.7027 - Evernote Corp.) Express Scribe - Logiciel de transcription (HKLM-x32\...\Scribe) (Version: 6.11 - NCH Software) f.lux (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Flux) (Version: - f.lux Software LLC) FastFox Text Expander Software (HKLM-x32\...\FastFox) (Version: 2.35 - NCH Software) FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time) Free Devis Factures 2 (HKLM-x32\...\FREE DEVIS FACTURES 2) (Version: 2.0.418.0 - Free Devis Factures) GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.3 - HP) HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP) HP OfficeJet 7510 series Aide (HKLM-x32\...\{C744A959-B9F0-4673-9F51-1002CC1EB436}) (Version: 35.0.0 - Hewlett Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.6.18.11 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{ED5CE45D-842B-4C18-A002-87E16EA39BB3}) (Version: 12.9.24.3 - Hewlett-Packard Company) HP System Event Utility (HKLM-x32\...\{6B1ECC61-B581-400D-BFAF-101B1AAEA5AB}) (Version: 1.4.7 - Hewlett-Packard Company) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.) hubiC - x64 (HKLM\...\{CE2A3177-F286-4F6A-9694-DE8EED87D583}) (Version: 2.1.1.145 - OVH) Hidden hubiC (HKLM-x32\...\{51fea8cc-5bb6-4312-86f5-1802a10e030d}) (Version: 2.1.1.145 - OVH) I.R.I.S. OCR (HKLM-x32\...\{FD83C27A-BD25-431D-991E-1D940E41C88C}) (Version: 12.3.6.6 - HP) inPixio Photo Clip 8 (HKLM-x32\...\{65634D2B-B6D1-4B35-B4C9-F3999B8D008B}) (Version: 8.4.0 - InPixio) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1054 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.0.21 - Intel Corporation) Intel(R) WiDi (HKLM\...\{6C02A234-7A14-4737-9D89-B0C47A64F94E}) (Version: 6.0.52.0 - Intel Corporation) Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{AC8973AF-7F4C-40F4-BFE1-C02FE95ED2C2}) (Version: 3.2.1184 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{077FD4A3-FE3C-48EE-BFAD-266EC70D87CD}) (Version: 18.1.1605.3087 - Intel Corporation) Intel® Integrated Sensor Solution (HKLM-x32\...\{755abcd0-2942-482b-a27d-22921a5849f0}) (Version: 3.0.14.3056 - Intel Corporation) ISS_Drivers_x64 (HKLM\...\{7E28859E-AD3D-4FC2-8D70-E345F8C87722}) (Version: 3.0.14.3056 - Intel Corporation) Hidden Klavaro-2.00c (HKLM-x32\...\Klavaro_is1) (Version: - ) Logiciel de base du périphérique HP OfficeJet 7510 series (HKLM\...\{1D0E04DA-60E1-4D7F-88CE-FBA7DA5D0510}) (Version: 35.0.72.55351 - Hewlett-Packard Co.) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{8c595286-0f9e-42de-a0d4-969aba282637}) (Version: 20.50.0 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Logo Design Studio Trial (HKLM-x32\...\Logo Design Studio Trial 3.5.2) (Version: 3.5.2 - Summitsoft Corporation) MailStore Home 10.1.4.12522 (HKLM-x32\...\MailStore Home_universal1) (Version: 10.1.4.12522 - MailStore Software GmbH) Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.10325.20082 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation) MKVToolNix 23.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 23.0.0 - Moritz Bunkus) Molotov (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Molotov) (Version: 2.2.2 - Molotov) Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 60.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 60.0.2 (x64 en-US)) (Version: 60.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla) Mozilla Thunderbird 52.8.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 52.8.0 (x86 en-US)) (Version: 52.8.0 - Mozilla) MusicBee 3.1 (HKLM-x32\...\MusicBee) (Version: 3.1 - Steven Mayall) Nero TuneItUp (HKLM-x32\...\Nero_tuneitup_is1) (Version: 2.6.0.134 - Nero AG) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.0 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10325.20082 - Microsoft Corporation) Hidden Olympus DSS Player Standard (HKLM-x32\...\{FC2163E8-8676-4918-B7FC-F5EF4F8C022D}) (Version: 2.0.0 - OLYMPUS IMAGING CORP.) PasteCopy.NET (HKLM-x32\...\PasteCopy.NET) (Version: 1.3 - SundryTools) PDF Eraser V1.8.2 (HKLM-x32\...\PDF Eraser_is1) (Version: - hxxp://www.PDFEraser.net) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.0 - pdfforge GmbH) PhotoFiltre 7 (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\PhotoFiltre 7) (Version: - ) PrintMusic! 2004 (HKLM-x32\...\PrintMusic! 2004) (Version: - ) Q-Dir (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Q-Dir) (Version: - ) ReiBoot (HKLM-x32\...\ReiBoot) (Version: - Tenorshare, Inc.) Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.) RogueKiller version 12.12.19.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.12.19.0 - Adlice Software) Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 2.02.40 (12/10/2016) - Samsung Electronics Co., Ltd.) Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 2.00.01.18 - Samsung Electronics Co., Ltd.) Samsung Easy Wireless Setup (HKLM-x32\...\Easy Wireless Setup) (Version: 3.70.18.0 - Samsung Electronics Co., Ltd.) Samsung OCR Software (HKLM-x32\...\Samsung OCR Software) (Version: 1.01.12 (15/10/2014) - Samsung Electronics Co., Ltd.) Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.28 - Samsung Electronics Co., Ltd.) Samsung Scan Process Machine (HKLM-x32\...\Samsung Scan Process Machine) (Version: 1.03.05.30 - Samsung Electronics Co., Ltd.) Hidden Samsung Universal Scan Driver (HKLM-x32\...\Samsung Universal Scan Driver) (Version: 3.31.81.01:10 - Samsung Electronics Co., Ltd.) Scribus 1.4.7 (HKLM-x32\...\Scribus 1.4.7) (Version: 1.4.7 - The Scribus Team) SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd) Hidden Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform) Subtitle Edit 3.5.6 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.6.0 - Nikse) Subtitle Edit v3.0 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.0 - Nikse) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer) TextEdit 3 (HKLM-x32\...\{81C71501-D10F-4DE8-AFD9-E718E82B1D41}_is1) (Version: 3.0.0.4825 - Core Software Solutions) Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.67 - Samsung Electronics CO., LTD.) VisualSubSync (remove only) (HKLM-x32\...\VisualSubSync) (Version: - ) Vivaldi (HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\Vivaldi) (Version: 1.15.1147.64 - Vivaldi) VLC media player (HKLM\...\VLC media player) (Version: 3.0.2 - VideoLAN) Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-457B-1234-32A2557A92C7}}_is1) (Version: - winmoviemaker) Windows Uninstaller 1.7 (HKLM\...\Windows Uninstaller_is1) (Version: 1.7 - Alex T.) WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) XnView 2.44 (HKLM-x32\...\XnView_is1) (Version: 2.44 - Gougelet Pierre-e) Zic Player v.3.6 (HKLM\...\Zic Player_is1) (Version: 3.6 - Ivan BUBLOZ) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-13] (AVAST Software) ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-13] (AVAST Software) ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Pas de fichier ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\WINDOWS\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ContextMenuHandlers1-x32: [TextEdit] -> {81C71501-D10F-4DE8-AFD9-E718E82B1D41} => C:\Program Files (x86)\TextEdit\ShellExt.dll [2006-06-19] (Core Software Solutions) ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-13] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers3: [STKContextMenu] -> {90DD7445-E924-4c6e-92AC-01F8C3A7E0C7} => C:\Program Files (x86)\Amazon\SendToKindle\stkContextMenu_246.dll [2018-04-29] (Amazon.com, Inc.) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_103.dll [2013-06-17] (Free Time) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxDTCM.dll [2018-01-15] (Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-07-13] (AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll -> Pas de fichier ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {017333AD-3956-4C2F-A3AD-7AA03D247833} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-31] (Microsoft Corporation) Task: {04731D43-76FD-4FBB-8559-CD3577F18255} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd) Task: {0BF8C9D8-A932-4692-AB23-FE6C1587CCA3} - System32\Tasks\HPCustParticipation HP OfficeJet 7510 series => C:\Program Files\HP\HP OfficeJet 7510 series\Bin\HPCustPartic.exe [2015-05-12] (Hewlett-Packard Development Company, LP) Task: {0DC8B3CC-542E-4049-9ED5-26BB1C741048} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-07-31] (Microsoft Corporation) Task: {17DD3A4A-C5C0-49D9-AA44-7F1DA1261212} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-16] () Task: {23019374-9FB3-4416-A71B-E306F0404097} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation) Task: {308E6BB7-E97B-4FE4-A25A-DD4AD63AFBC1} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-15] (Adobe Systems Incorporated) Task: {338F3CF5-B502-4CC1-8AE6-1190F4898CC0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.) Task: {3537F390-42E3-407D-A5D7-A9F5664B1B4D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-31] (Microsoft Corporation) Task: {39C4A2E3-E782-4DA2-A667-13CA4906FD22} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-07-31] (Microsoft Corporation) Task: {436F9E4D-3DF1-49B3-A6F9-4E4461A793A5} - System32\Tasks\HPCeeScheduleFormaryl => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {4BEF7CFF-DB74-47C9-9B97-14E3DB72CDE2} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-06-25] (AVAST Software) Task: {4EBFDF2E-11E7-47D0-8FF0-15D7BD3A4D6E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {5FB591AD-8501-4668-848A-DD32A23BB13B} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation) Task: {6439E4F2-FE24-4289-BCB0-42D6C33D9BB8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-06-28] (HP Inc.) Task: {64DC0E40-AF3D-42E4-9016-653F7ED7D805} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {687FD06C-7EF4-4CF6-96E2-FFDCAAAA1930} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-07-24] (AVAST Software) Task: {70A2C547-45FF-438C-A0C1-A200A2A7B2F1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2018-06-27] (HP Inc.) Task: {74981C32-2CB0-4CB4-BBFA-35C991A8CB70} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.) Task: {7D60CB95-28FD-4D97-B715-C7506356CCB7} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation) Task: {8554632D-E490-4D9D-9D7F-4C91A82991EC} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-23] (AVAST Software) Task: {8D1D7CF4-3C27-40B8-921F-466A8C106205} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-07-31] (Microsoft Corporation) Task: {9245474F-7E4F-434E-8767-88CA2425D40A} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\inPixio\InPixio Photo Clip 8 Demo\InPixioPhotoClip8.exe Task: {9B14805C-FA34-4584-8CC1-72430C603659} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2018-06-28] (HP Inc.) Task: {9D04852B-BEE2-4575-A439-FAC8729D24BC} - System32\Tasks\NCH Software\ScribeDowngrade => C:\Program Files (x86)\NCH Software\Scribe\scribe.exe [2017-10-10] (NCH Software) Task: {A17B9612-060D-43DC-B92E-FEBAD259F0DD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {A6C763B3-9FEC-4896-8BE4-F9FEC878D5DB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd) Task: {A9F5058E-2878-405A-A817-3EA1858724A5} - System32\Tasks\EPM Preload => C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2DotNetHandler.exe [2017-02-24] () Task: {AB4780E2-76E5-4763-87D1-A48319ABFE9D} - System32\Tasks\Microsoft\Windows\Conexant\SA3 => C:\Program Files\CONEXANT\SA3\HP-NB-AIO\SACpl.exe [2016-01-08] (Conexant Systems, Inc.) Task: {B1804AA0-54D0-48F7-A68B-4DC41E6D01FB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-07-22] (Microsoft Corporation) Task: {CA0B1288-22F4-4DD7-A0F5-02B21A45A13C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {D29B949C-0B78-47FF-8086-694659643F7E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-07-31] (Microsoft Corporation) Task: {E57D64A3-3283-4400-AB49-0182F9C1AD63} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {EBAFE59C-629A-4EE2-89E4-5102A0310A89} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-10-11] (Intel(R) Corporation) Task: {F18B880B-B515-4609-9827-039FE203A866} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-06-23] (AVAST Software) Task: {F40FD6E9-9515-409B-835A-8019F8091F25} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-07] (Google Inc.) Task: {F7DC1F56-715F-4C6F-9AD0-04CF86C5CF7E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2018-05-04] (HP Inc.) Task: {F7E49127-A688-4580-AB64-DBC41320F5A1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-07] (Google Inc.) Task: {FA13D22A-F3A6-4F91-A3E6-BFD2ED5E6651} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-07-13] (AVAST Software) Task: {FF0513D4-279B-4634-90A9-7873C5F5C155} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-15] (Adobe Systems Incorporated) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\HPCeeScheduleFormaryl.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\maryl\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm Shortcut: C:\Users\maryl\Favorites\Site de téléchargement NCH Software.lnk -> hxxp://www.nch.com.au/fr/index.htm ==================== Modules chargés (Avec liste blanche) ============== 2018-06-24 22:00 - 2018-06-24 22:00 - 000061952 _____ () C:\Program Files (x86)\NCH Software\FastFox\ffhook64.dll 2018-01-21 11:52 - 2017-06-14 14:57 - 000022528 _____ () C:\WINDOWS\System32\us005lm.dll 2018-05-11 19:02 - 2015-03-12 04:43 - 000022528 _____ () C:\WINDOWS\System32\us013lm.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2017-09-01 02:49 - 2017-09-01 02:49 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-09-01 02:49 - 2017-09-01 02:49 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2018-05-11 18:43 - 2018-05-11 18:43 - 000507184 ____N () C:\WINDOWS\SysWOW64\spdsvc.exe 2018-01-21 11:52 - 2018-01-21 11:52 - 000143664 _____ () C:\WINDOWS\SysWOW64\SecUPDUtilSvc.exe 2017-04-19 17:18 - 2018-07-28 22:50 - 002433744 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-08-14 21:39 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-07-17 12:56 - 2018-07-17 12:56 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-07-17 12:56 - 2018-07-17 12:56 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-07-17 12:56 - 2018-07-17 12:56 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-07-17 12:56 - 2018-07-17 12:56 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018-07-17 12:56 - 2018-07-17 12:56 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2015-10-27 14:01 - 2015-10-27 14:01 - 000089600 _____ () C:\Program Files\Intel Corporation\Intel WiDi\WRU.exe 2018-07-11 09:07 - 2018-07-11 09:10 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2014-09-08 13:39 - 2014-09-08 13:39 - 000464608 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe 2014-09-08 13:38 - 2014-09-08 13:38 - 000051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll 2018-04-28 23:09 - 2014-05-15 15:09 - 000835968 _____ () C:\Program Files (x86)\Cometdocs.com\Cometdocs.exe 2018-06-24 22:00 - 2018-06-24 22:00 - 000091136 _____ () C:\Program Files (x86)\NCH Software\FastFox\fastfox64.exe 2018-08-15 21:23 - 2018-08-06 17:31 - 001253448 _____ () C:\Users\maryl\AppData\Local\Vivaldi\Application\1.15.1147.64\ffmpeg.dll 2018-08-15 21:23 - 2018-08-06 17:31 - 004459080 _____ () C:\Users\maryl\AppData\Local\Vivaldi\Application\1.15.1147.64\libglesv2.dll 2018-08-15 21:23 - 2018-08-06 17:31 - 000100424 _____ () C:\Users\maryl\AppData\Local\Vivaldi\Application\1.15.1147.64\libegl.dll 2018-08-16 09:10 - 2018-08-16 09:10 - 003161472 _____ () C:\Users\maryl\Downloads\ZHPDiag3.exe 2018-07-13 00:04 - 2018-07-13 00:04 - 000600280 _____ () C:\Program Files\AVAST Software\Avast\AvastNM.exe 2018-01-21 11:52 - 2016-08-10 13:07 - 002847744 ____N () C:\WINDOWS\system32\DlgSearchEngine.dll 2018-06-24 22:00 - 2018-06-24 22:00 - 000061440 _____ () C:\Program Files (x86)\NCH Software\FastFox\ffhook.dll 2018-08-10 17:55 - 2018-08-10 17:55 - 000799744 _____ () C:\Users\maryl\AppData\Local\Amazon Drive\sqlite3.dll 2018-07-13 00:11 - 2018-07-13 00:11 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-07-13 00:04 - 2018-07-13 00:04 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2018-07-13 00:04 - 2018-07-13 00:04 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2018-04-19 21:16 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll 2018-03-30 18:34 - 2018-03-30 18:34 - 000668384 _____ () C:\Program Files (x86)\Evernote\Evernote\tidy.dll 2016-10-12 13:34 - 2016-10-12 13:34 - 000776704 _____ () C:\Program Files (x86)\Samsung\Easy Document Creator\EDCAddin.dll 2017-11-09 01:44 - 2017-11-09 01:44 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2018-07-20 19:58 - 2018-07-19 19:28 - 003935056 _____ () C:\Program Files (x86)\AVAST Software\Browser\Application\67.1.664.99\libglesv2.dll 2018-07-20 19:58 - 2018-07-19 19:28 - 000097976 _____ () C:\Program Files (x86)\AVAST Software\Browser\Application\67.1.664.99\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\maryl\OneDrive\Documents\Enregistrements audio:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 09:24 - 2018-08-13 21:19 - 000000827 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\maryl\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\pca10905_fleur.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\StartupApproved\Run: => "Speech Recognition" HKU\S-1-5-21-2762758690-3479469590-1194244944-1001\...\StartupApproved\Run: => "Ditto" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{118D49C2-A4D5-423C-965D-52CDEE3C7443}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{F840CC74-144F-4D9C-B4BC-B0D33377AAD6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe FirewallRules: [{9651E9FF-6AF7-487F-B9A8-78F81360EFA7}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [{9E870F00-A724-416D-8BA8-496FE3B672C5}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{57C3DD2C-399F-4460-908A-90D47FAD2E89}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [{58385FEB-7B1A-449F-ACED-B3B9F0BEC8AA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{6C212E02-105A-4C69-B5A5-E8464E67AB94}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{E18B2AEC-EBBB-47E0-8085-A100F3BA9DCC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe FirewallRules: [UDP Query User{B87FD1BC-07BF-4404-836F-40E697EBCADE}C:\users\frede\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\frede\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [TCP Query User{5E12A310-91FA-42E3-BF51-D0D1E139E68A}C:\users\frede\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\frede\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [UDP Query User{6E0E6AE0-B176-45E8-87F3-FD486320BDB1}C:\users\maryl\appdata\local\programs\monsisraapp\monsisra2.exe] => (Block) C:\users\maryl\appdata\local\programs\monsisraapp\monsisra2.exe FirewallRules: [TCP Query User{E03057C6-5056-40CA-9A3B-AAD218CEBBA8}C:\users\maryl\appdata\local\programs\monsisraapp\monsisra2.exe] => (Block) C:\users\maryl\appdata\local\programs\monsisraapp\monsisra2.exe FirewallRules: [{CA392A01-90FF-4311-AE99-B2488DBEA195}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{016BBA55-357D-4C2B-8BC0-8BF49A9AAE99}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{0481BA16-DE8F-4422-9FF2-8AF1801427C6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{4922EE24-9752-4813-968F-B408940EB437}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{F4EF4F60-6878-4C84-902A-BBDB566AABC0}] => (Allow) C:\Users\maryl\AppData\Local\Vivaldi\Application\vivaldi.exe FirewallRules: [{92BF6B8B-09FC-473B-A1EE-BE8BD55CA903}] => (Allow) C:\Users\maryl\Downloads\UltraAdwareKiller64.exe FirewallRules: [{B3ABBEC2-689A-4B68-8EE0-836B20AD3233}] => (Allow) C:\Users\maryl\Downloads\UltraAdwareKiller64.exe FirewallRules: [{D5C7727A-96F9-4929-AFF0-21EB677743F2}] => (Allow) C:\Users\maryl\Downloads\UltraAdwareKiller.exe FirewallRules: [{14F23BDD-43C0-453C-BD93-9DCFFBF98863}] => (Allow) C:\Users\maryl\Downloads\UltraAdwareKiller.exe FirewallRules: [{A1798039-15BC-4AF2-B712-31E900E484ED}] => (Allow) LPort=1900 FirewallRules: [{25962E05-33EC-4558-BC71-F61A892E3C73}] => (Allow) LPort=2869 FirewallRules: [{4A51CA6C-C08E-4D70-A946-BDB4CFC6983C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{8C712E41-C3FB-4452-90A4-997FE1F2BFE6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{28F05369-2EC1-427C-9E28-FEBC5710C62C}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Center\SamsungPrinterCenter.exe FirewallRules: [{BF54C0C1-18D3-44BD-8FC7-8B1AB353F53C}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe FirewallRules: [{0D1452D4-93F0-4827-9F36-F504677E41E0}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe FirewallRules: [{67BDFFF7-44D7-4B8A-8A9C-D0FA3F77AA21}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [UDP Query User{472B4BBD-CE09-4CFC-ABDB-B255FD76A252}C:\dolibarr\bin\apache\apache2.4.9\bin\httpd.exe] => (Block) C:\dolibarr\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [TCP Query User{9BCDDC46-6C3D-4AB9-8E6F-430E1E35F15D}C:\dolibarr\bin\apache\apache2.4.9\bin\httpd.exe] => (Block) C:\dolibarr\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{D236848B-4440-495D-8CFA-3344BE60414B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{025554D7-4939-4E08-8277-B0A056505512}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{D43AE4BC-3182-4B06-8934-A6C128E7A8DB}C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [TCP Query User{77D851AE-B383-4DBB-B25F-85A2E3646913}C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [UDP Query User{1FC08B6E-2CEA-4351-8E99-EA8281139DB9}C:\program files (x86)\ditto\ditto.exe] => (Block) C:\program files (x86)\ditto\ditto.exe FirewallRules: [TCP Query User{80E26295-ED94-4E92-9CFB-57ADAE205825}C:\program files (x86)\ditto\ditto.exe] => (Block) C:\program files (x86)\ditto\ditto.exe FirewallRules: [UDP Query User{11A22CFB-BBE8-48B3-B3DF-D2C8D2285948}C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [TCP Query User{7B63C92E-1285-4752-9CE5-8E3DB89271CA}C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [UDP Query User{999E9FDB-62B7-4DC8-A503-D598F6B7F4B5}C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [TCP Query User{774CEDE9-CF2B-4D6C-94A6-BA9B376A2AC9}C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 7510 series\bin\hpnetworkcommunicatorcom.exe FirewallRules: [UDP Query User{F0AE4696-B309-41D0-9C5C-F2D2672CA65E}C:\program files (x86)\ditto\ditto.exe] => (Block) C:\program files (x86)\ditto\ditto.exe FirewallRules: [TCP Query User{45F6C9BB-0AF1-4790-A23C-FA6F8DEACDD1}C:\program files (x86)\ditto\ditto.exe] => (Block) C:\program files (x86)\ditto\ditto.exe FirewallRules: [UDP Query User{B343BE10-2BEE-45D2-8E6E-1416C4270EC8}C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe] => (Block) C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [TCP Query User{45D279C5-C469-4E61-B7EF-8C5F9ED4E539}C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe] => (Block) C:\users\maryl\appdata\local\vivaldi\application\vivaldi.exe FirewallRules: [{A1B08174-C91E-4B6B-BFAF-950CB08DDAB6}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe FirewallRules: [{E67B423F-8C6E-4A34-829F-54CF7C48E247}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDCApp.exe FirewallRules: [{5AD6D00A-DBD1-4159-A10C-58E6B79E07EE}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe FirewallRules: [{360DA04F-11FD-47A0-A066-1DC89FA273B8}] => (Allow) C:\Program Files (x86)\Samsung\Easy Document Creator\EDC.exe FirewallRules: [{A32BF52E-C408-499E-B003-3EB159EDE2AA}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Printer Diagnostics\SEInstall\SPD\ESM.exe FirewallRules: [{E38128EA-FEC9-48EF-B5C5-B612E1F4069F}] => (Allow) C:\Program Files (x86)\Samsung\Samsung Universal Scan Driver\ScanCDLM.exe FirewallRules: [{5D0DBD26-D189-40FF-AD12-044D186BDD8A}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EasyPrinterManagerV2.exe FirewallRules: [{3E8F3667-521D-412D-B3E3-456EF079EF84}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe FirewallRules: [{DE5CC3B6-3BE4-4645-AC90-452C1C37A018}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2AlertList.exe FirewallRules: [{08C65D28-1790-4D61-A59E-CDAAF72CCFC0}] => (Allow) C:\Program Files (x86)\Samsung\Easy Printer Manager\EPM2Migrator.exe FirewallRules: [{6EA44018-7C61-47AF-AB83-F2308F8DE163}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{5646EB3F-F41C-459C-A400-192792289A09}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{6D6466FD-8FC7-4645-AAF3-CAC0DDE3DB73}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [{CC6CE2DA-594F-4312-A870-F23A72518654}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe FirewallRules: [TCP Query User{E2098060-C27F-4F83-879E-EB67DECAC76F}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe FirewallRules: [UDP Query User{04D1D297-1AEF-42A7-BCCE-F59F3B4944EA}C:\program files (x86)\common files\scan process machine\imageeng.exe] => (Allow) C:\program files (x86)\common files\scan process machine\imageeng.exe FirewallRules: [{7264FB04-E6E6-4F28-BE7B-0823C00A91B8}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\TranscriptionModule.exe FirewallRules: [{CEEC2675-9AED-4F55-AEC3-2EEB336EB525}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\TranscriptionModule.exe FirewallRules: [{5131553A-FD9F-4381-A068-0295E3233CB3}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\TranscriptionModule.exe FirewallRules: [{324863B5-E26D-4967-9408-967BA2029F02}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\TranscriptionModule.exe FirewallRules: [{B8A7E1B1-D083-43C6-8A9E-BE5C51B48535}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\UpdateManager.exe FirewallRules: [{269C1468-01A1-4630-9010-46C17849F3BF}] => (Allow) C:\Program Files (x86)\OLYMPUS\DSSPlayerStandard\UpdateManager.exe FirewallRules: [{2267D5FF-43F6-4E41-9A41-A923FF4F1F76}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{5BC56F24-29EA-4A3C-B430-E0F2AEC4EDA4}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{B2573200-04C0-4EB8-A799-F76458555D1C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{BD172F8E-FF9F-4A75-8873-D8407F06A147}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{3EACF73D-2BDD-498D-85D9-7A81FC12E39E}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe FirewallRules: [{C59D727C-0578-433A-B136-254D6B1464F0}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{98988E30-2F38-488A-9AFF-32EB94246336}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{AF2132A8-AA0D-443C-9482-AC1E0381B14B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{70582401-0851-4784-8547-B5101518E1E9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{1F26E406-02B0-403B-A006-E32863672B3E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{8CC95CB1-3623-4EA7-ADBE-3ED1D7A6BE36}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 10-08-2018 14:24:22 Point de contrôle planifié 14-08-2018 21:38:42 Windows Update 15-08-2018 22:49:09 avant désinfection 16-08-2018 10:47:36 AVANT DESINFECTION DU 16 AOUT 2018 ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/16/2018 10:42:07 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_SensorService, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : ESENT.dll, version : 10.0.17134.112, horodatage : 0xbce77d42 Code d’exception : 0xc0000602 Décalage d’erreur : 0x0000000000252de2 ID du processus défaillant : 0x5ac Heure de début de l’application défaillante : 0x01d4352ed25edac4 Chemin d’accès de l’application défaillante : c:\windows\system32\svchost.exe Chemin d’accès du module défaillant: c:\windows\system32\ESENT.dll ID de rapport : 54791a41-902b-4c5f-88cf-b4662f886382 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/16/2018 10:42:07 AM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (1452,G,0) Terminating process due to non-recoverable failure: PV: 10.0.17134.0 SV: 10.0.17134.0 GLE: 0 ERR: 2100(logshadow.cxx:140): dllentry.cxx(108) (ESENT[10.0.17134.0] RETAIL RTM MBCS). Tag: EnforceTag:InitdEseInstancesOnDllUnload. Error: (08/16/2018 09:04:37 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (08/16/2018 09:00:09 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_SensorService, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : ESENT.dll, version : 10.0.17134.112, horodatage : 0xbce77d42 Code d’exception : 0xc0000602 Décalage d’erreur : 0x0000000000252de2 ID du processus défaillant : 0x59c Heure de début de l’application défaillante : 0x01d434d1353dc985 Chemin d’accès de l’application défaillante : c:\windows\system32\svchost.exe Chemin d’accès du module défaillant: c:\windows\system32\ESENT.dll ID de rapport : 2a2ff223-dd4b-42e1-acb6-20366516e81a Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/16/2018 09:00:09 AM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (1436,G,0) Terminating process due to non-recoverable failure: PV: 10.0.17134.0 SV: 10.0.17134.0 GLE: 0 ERR: -4006(osdisk.cxx:5420): dllentry.cxx(108) (ESENT[10.0.17134.0] RETAIL RTM MBCS). Tag: EnforceTag:InitdEseInstancesOnDllUnload. Error: (08/16/2018 08:58:52 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Client application bug: DNSServiceResolve(5c:f9:38:0f:dc:df@fe80::5ef9:38ff:fe0f:dcdf._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network. Error: (08/15/2018 09:17:40 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname DESKTOP-F8C5SPR.local already in use; will try DESKTOP-F8C5SPR-2.local instead Error: (08/15/2018 09:17:40 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 1; will deregister 4 DESKTOP-F8C5SPR.local. Addr 192.168.1.24 Erreurs système: ============= Error: (08/16/2018 10:54:41 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F8C5SPR) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-F8C5SPR\maryl de l’utilisateur (S-1-5-21-2762758690-3479469590-1194244944-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 10:52:43 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 10:44:48 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-F8C5SPR) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-F8C5SPR\maryl de l’utilisateur (S-1-5-21-2762758690-3479469590-1194244944-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 10:44:35 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {C41B1461-3F8C-4666-B512-6DF24DE566D1} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (08/16/2018 10:42:32 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 10:42:32 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 10:01:30 AM) (Source: AX88179) (EventID: 0) (User: ) Description: Reset INT pipe failed. Error: (08/16/2018 09:47:31 AM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-F8C5SPR) Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXvak78e16tc3jt6cc7r5mtep5zpgkypyw.mca en tant que Non disponible/Non disponible. L’erreur « 298 » s’est produite lors du démarrage de la commande : "C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca Windows Defender: =================================== Date: 2018-07-13 00:11:04.745 Description: L'accès contrôlé aux dossiers a empêché C:\Program Files\AVAST Software\Avast\wsc_proxy.exe de modifier la mémoire. Heure de détection : 2018-07-12T22:11:04.745Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Program Files\AVAST Software\Avast\wsc_proxy.exe Version de la signature : 1.271.891.0 Version du moteur : 1.1.15000.2 Version du produit : 4.18.1806.18062 Date: 2018-07-13 00:11:04.741 Description: L'accès contrôlé aux dossiers a empêché C:\Program Files\AVAST Software\Avast\setup\instup.exe de modifier la mémoire. Heure de détection : 2018-07-12T22:11:04.740Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Program Files\AVAST Software\Avast\setup\instup.exe Version de la signature : 1.271.891.0 Version du moteur : 1.1.15000.2 Version du produit : 4.18.1806.18062 Date: 2018-07-13 00:11:04.720 Description: L'accès contrôlé aux dossiers a empêché C:\Program Files\AVAST Software\Avast\setup\instup.exe de modifier la mémoire. Heure de détection : 2018-07-12T22:11:04.720Z Utilisateur : DESKTOP-F8C5SPR\maryl Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Program Files\AVAST Software\Avast\setup\instup.exe Version de la signature : 1.271.891.0 Version du moteur : 1.1.15000.2 Version du produit : 4.18.1806.18062 Date: 2018-07-13 00:11:04.713 Description: L'accès contrôlé aux dossiers a empêché C:\Users\maryl\AppData\Local\Temp\_av_iup.tm~a21908\New_12050926\instup.exe de modifier la mémoire. Heure de détection : 2018-07-12T22:11:04.713Z Utilisateur : DESKTOP-F8C5SPR\maryl Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Users\maryl\AppData\Local\Temp\_av_iup.tm~a21908\New_12050926\instup.exe Version de la signature : 1.271.891.0 Version du moteur : 1.1.15000.2 Version du produit : 4.18.1806.18062 Date: 2018-07-13 00:11:04.710 Description: L'accès contrôlé aux dossiers a empêché C:\Program Files\AVAST Software\Avast\AvastSvc.exe de modifier la mémoire. Heure de détection : 2018-07-12T22:11:04.708Z Utilisateur : AUTORITE NT\Système Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Program Files\AVAST Software\Avast\AvastSvc.exe Version de la signature : 1.271.891.0 Version du moteur : 1.1.15000.2 Version du produit : 4.18.1806.18062 Date: 2018-06-17 19:55:35.745 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x80004005 Description de l’erreur : Erreur non spécifiée Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes. Date: 2018-06-15 01:39:38.103 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x80004005 Description de l’erreur : Erreur non spécifiée Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes. CodeIntegrity: =================================== Date: 2018-05-06 21:27:58.324 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-05-06 21:27:56.508 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-05-06 21:27:56.212 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-05-06 21:27:49.232 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-05-06 21:27:49.210 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz Pourcentage de mémoire utilisée: 63% Mémoire physique - RAM - totale: 8069.52 MB Mémoire physique - RAM - disponible: 2957.79 MB Mémoire virtuelle totale: 16139.03 MB Mémoire virtuelle disponible: 10230.58 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:225.94 GB) (Free:8.37 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:11.37 GB) (Free:1.18 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] \\?\Volume{74b1057b-f50c-4697-82ff-a6382538b919}\ () (Fixed) (Total:0.89 GB) (Free:0.33 GB) NTFS \\?\Volume{c2331c3f-38b0-4fcf-8500-f8d7a46b9207}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: 023B9311) Partition: GPT. ==================== Fin de Addition.txt ============================