Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21.11.2018 Exécuté par Philippe (22-11-2018 21:36:24) Exécuté depuis C:\Users\Philippe\Desktop Windows 10 Pro Version 1803 17134.407 (X64) (2018-09-02 22:19:25) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3602755423-1801949855-1613694378-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3602755423-1801949855-1613694378-503 - Limited - Disabled) Invité (S-1-5-21-3602755423-1801949855-1613694378-501 - Limited - Disabled) Philippe (S-1-5-21-3602755423-1801949855-1613694378-1001 - Administrator - Enabled) => C:\Users\Philippe WDAGUtilityAccount (S-1-5-21-3602755423-1801949855-1613694378-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 303 Squadron: Battle of Britain (HKLM-x32\...\303 Squadron: Battle of Britain_is1) (Version: - ) 8GadgetPack (HKLM-x32\...\{A6ED7695-0EDF-47C6-BD79-669FA92C6E78}) (Version: 26.0.0 - 8GadgetPack.net) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20055 - Adobe Systems Incorporated) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20063 - Adobe Systems Incorporated) Apowersoft Photo Viewer V1.1.9 (HKLM-x32\...\{AA88C325-55DB-463A-801E-ED6929D0260E}_is1) (Version: 1.1.9 - APOWERSOFT LIMITED) Assassin's Creed Brotherhood (HKLM-x32\...\Uplay Install 26) (Version: - Ubisoft) Assassin's Creed Revelations (HKLM-x32\...\Uplay Install 40) (Version: - Ubisoft) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 - Microsoft Corporation) Avanquest Message (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\{20573C69-4A68-4BEF-A23D-365CB66924CE}) (Version: 2.08.0 - Avanquest Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 69.1.867.101 - AVAST Software) Call of Juarez Gunslinger (c) Ubisoft version 1 (HKLM-x32\...\Q2FsbG9mSnVhcmV6R3Vuc2xpbmdlcg==_is1) (Version: 1 - ) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.2.3 - Canon Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.5.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.10.15 - Canon Inc.) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.) Canon MG7500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7500_series) (Version: 1.00 - Canon Inc.) Canon MG7500 series On-screen Manual (HKLM-x32\...\Canon MG7500 series On-screen Manual) (Version: 7.7.1 - Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.0.0 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.0.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.4.0 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.49 - Piriform) Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine) Cities: Skylines (HKLM-x32\...\Cities: Skylines_is1) (Version: - ) ComicRack v0.9.178 (HKLM\...\ComicRack) (Version: v0.9.178 - cYo Soft) Corel PaintShop Pro X7 (HKLM-x32\...\_{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation) Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited) CyberGhost 6 (HKLM\...\CyberGhost 6) (Version: 6.6.0.3645 - CyberGhost S.A.) CyberLink PhotoDirector 8 (HKLM-x32\...\{80986AB6-3CB0-49db-AB48-1600844D6374}) (Version: 8.0.3812.0 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0604 - Disc Soft Ltd) Dual Universe (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\{0BC6C17E-6878-42E6-98A3-B12AA7CFC538}_is1) (Version: Pre-Alpha - Novaquark) Enregistrement utilisateur de Canon MG7500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG7500 series) (Version: - ‭Canon Inc.) EVE Online (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\{c8def1ed-6ceb-4f20-9d49-b93b5aee323d}) (Version: 1.0.0 - CCP) Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version: - Ubisoft) Far Cry 4 (HKLM-x32\...\Uplay Install 420) (Version: - Ubisoft) Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft) Far Cry Primal (HKLM-x32\...\Uplay Install 2010) (Version: - Ubisoft) FileZilla Client 3.36.0 (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\FileZilla Client) (Version: 3.36.0 - Tim Kosse) Fishing Sim World (HKLM-x32\...\Fishing Sim World_is1) (Version: - ) Gold Rush The Game Anniversary (HKLM-x32\...\Gold Rush The Game Anniversary_is1) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.102 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.99 - Google Inc.) Hidden HiSuite (HKLM-x32\...\Hi Suite) (Version: 8.0.1.303 - ) HoneySelect (pornolab.net by bigbigbos) version 1.2 (HKLM-x32\...\{2C73CD6C-EDEA-4108-81C5-6B88B0EC2088}_is1) (Version: 1.2 - ) House Flipper Halloween (HKLM-x32\...\House Flipper Halloween_is1) (Version: - ) ICA (HKLM-x32\...\{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation) Hidden Icecream Ebook Reader version 5.0 (HKLM-x32\...\{B8C30F0F-1F23-49E1-A3ED-44DE17660EE2}_is1) (Version: 5.0 - Icecream Apps) ILLUSION ジンコウガクエン2 きゃらめいく (HKLM-x32\...\{A56F495B-7075-4510-AC91-485416140DA2}) (Version: 1.00.0000 - ILLUSION) ILLUSION プレイホーム (HKLM-x32\...\{0F41AD99-6677-4B8B-A3FE-3774E088B61C}) (Version: 1.00.0000 - ILLUSION) inPixio Photo Clip 8 (HKLM-x32\...\{65634D2B-B6D1-4B35-B4C9-F3999B8D008B}) (Version: 8.5.0 - InPixio) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) IPM_PSP_COM64 (HKLM\...\{17704FA2-B1D2-4D5C-A23D-BDA0D2BC9CC7}) (Version: 17.0.0.199 - Corel Corporation) Hidden IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan) Jurassic World: Evolution (HKLM-x32\...\Jurassic World: Evolution_is1) (Version: - ) Kenshi (HKLM-x32\...\1193046833_is1) (Version: 0.98.62 - GOG.com) Light Image Resizer 4.7.0.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.7.0.0 - ObviousIdea) Lords of the Fallen (HKLM-x32\...\Lords of the Fallen_is1) (Version: - ) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Men of War: Assault Squad 2 (HKLM-x32\...\Men of War: Assault Squad 2_is1) (Version: - ) Microsoft OneDrive (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation) Middle-earth: Shadow of War DE (HKLM-x32\...\Middle-earth: Shadow of War DE_is1) (Version: - ) Minion (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\{Minion}}_is1) (Version: 3.0 - Good Game Mods LLC) NASCAR Heat 3 (HKLM-x32\...\NASCAR Heat 3_is1) (Version: - ) NetBalancer (HKLM\...\NetBalancer_is1) (Version: - SeriousBit) Neverwinter Nights Diamond Edition (HKLM-x32\...\1207658890_is1) (Version: 2.1.0.21 - GOG.com) No Man's Sky (HKLM-x32\...\1446213994_is1) (Version: 1.65 - GOG.com) No Man's Sky Pre-order DLC (HKLM-x32\...\2022706229_is1) (Version: 1.65 - GOG.com) NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.24 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation) NVIDIA Pilote graphique 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Panneau de configuration NVIDIA 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 399.24 - NVIDIA Corporation) Hidden Pathfinder: Kingmaker (HKLM-x32\...\Pathfinder: Kingmaker_is1) (Version: - ) PDF Candy Desktop version 2.62 (HKLM-x32\...\{9A8B6868-AA65-45DB-B055-18CCC462E6F5}_is1) (Version: 2.62 - Icecream Apps) Planet Nomads (HKLM-x32\...\1403945378_is1) (Version: 0.9.5.1 - GOG.com) PREONE PRESTIGE (HKLM-x32\...\PREONE PRESTIGE_is1) (Version: - ) PSPPContent (HKLM-x32\...\{17289BF4-5826-447B-A20A-738044D0B3E5}) (Version: 17.0.0.199 - Corel Corporation) Hidden PSPPHelp (HKLM-x32\...\{1735F0DE-B173-4116-BABC-653A12FB9238}) (Version: 17.0.0.199 - Corel Corporation) Hidden PSPPro64 (HKLM\...\{17511557-C430-486A-AB5A-87A8134B2613}) (Version: 17.0.0.199 - Corel Corporation) Hidden QTranslate 6.7.0 (HKLM-x32\...\QTranslate) (Version: 6.7.0 - QuestSoft) Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 r3111 - Rainmeter) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek) Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 1.00.0000 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.) S.T.A.L.K.E.R. Call of Pripyat (HKLM-x32\...\1207660583_is1) (Version: 2.1.0.17 - GOG.com) S.T.A.L.K.E.R. Clear Sky (HKLM-x32\...\1207660603_is1) (Version: 2.1.0.10 - GOG.com) S.T.A.L.K.E.R. Shadow of Chernobyl (HKLM-x32\...\1207660573_is1) (Version: 2.1.0.9 - GOG.com) School Mate 2 (HKLM-x32\...\{BC980840-FC67-4027-9055-251136406614}_is1) (Version: 1.3 - randompirate) Setup (HKLM-x32\...\{17088A4E-3CF3-4F12-926D-2A9E8085B8EC}) (Version: 17.0.0.199 - Nom de votre société) Hidden Silent Hunter 5 (HKLM-x32\...\Uplay Install 3) (Version: - Ubisoft) Sound Blaster Audigy Fx (HKLM-x32\...\{77CE1865-F3B9-4B6D-A558-28674AE7787E}) (Version: 1.00.06 - Creative Technology Limited) Sound Blaster Audigy Fx Extras (HKLM-x32\...\{52272D09-08E0-4A57-BC14-BC09F5D7AE26}) (Version: 1.0 - Creative Technology Limited) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) SpellForce 3 (HKLM-x32\...\1419313792_is1) (Version: 1.38 - GOG.com) SPORE™ Collection (HKLM-x32\...\1948823323_is1) (Version: 3.1.0.22 - GOG.com) Star Control: Origins (HKLM-x32\...\1893867643_is1) (Version: 1.02.53461a - GOG.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Stronghold HD Enhanced Edition (HKLM-x32\...\Stronghold HD Enhanced Edition_is1) (Version: - ) Sudden Strike 4 (HKLM-x32\...\Sudden Strike 4_is1) (Version: - ) Switch - Convertisseur de fichiers audio (HKLM-x32\...\Switch) (Version: 6.28 - NCH Software) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Tharsis (HKLM-x32\...\1453374895_is1) (Version: 2.1.0.4 - GOG.com) The Bard's Tale IV (HKLM-x32\...\The Bard's Tale IV_is1) (Version: - ) Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal) Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft) Tropico 3 Gold (HKLM-x32\...\1207659056_is1) (Version: 1.0 - GOG.com) Tropico 5 (HKLM-x32\...\1436885062_is1) (Version: 1.10 - GOG.com) Tropico 5 Complete Collection Upgrade (HKLM-x32\...\1444303206_is1) (Version: 1.10 - GOG.com) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C5FDDED7-DEC7-48B4-AFD8-DFB8A0FD199A}) (Version: 2.51.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 68.1 - Ubisoft) Victory At Sea Pacific (HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\Victory At Sea Pacific) (Version: - HOODLUM) Video Download Capture V6.4.6 (HKLM-x32\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.4.6 - APOWERSOFT LIMITED) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) WinZip 22.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C24115}) (Version: 22.0.12670 - Corel Corporation) XTREME GAMING ENGINE (HKLM-x32\...\GIGABYTE XTREME GAMING ENGINE_is1) (Version: 1.2.1.1 - GIGABYTE Technology Co.,Inc.) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3602755423-1801949855-1613694378-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3602755423-1801949855-1613694378-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\Philippe\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) CustomCLSID: HKU\S-1-5-21-3602755423-1801949855-1613694378-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Philippe\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) CustomCLSID: HKU\S-1-5-21-3602755423-1801949855-1613694378-1001_Classes\CLSID\{25815CC0-43F4-3C75-8C3A-A139D9ADE740}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2018-05-12] (Tonec Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\WinRAR\rarext.dll [2013-08-22] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\WinRAR\rarext32.dll [2013-08-22] (Alexander Roshal) ContextMenuHandlers1-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-11-02] (WinZip Computing, S.L.) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-27] (Disc Soft Ltd) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-08-27] (Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-11-02] (WinZip Computing, S.L.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-09-06] (NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => E:\WinRAR\rarext.dll [2013-08-22] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => E:\WinRAR\rarext32.dll [2013-08-22] (Alexander Roshal) ContextMenuHandlers6-x32: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2017-11-02] (WinZip Computing, S.L.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0BD3A50B-55F5-44F7-B78E-6E14704153C2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-11] (Google Inc.) Task: {0C1CE9E2-B0A4-4FC4-BF47-A1C5D9BF686B} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe Task: {12C56438-8953-4CC3-98F1-3DABD1ECCE80} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {1D2593DE-D746-4092-9A99-8D4828AAD58D} - System32\Tasks\NCH Software\SwitchDowngrade => C:\Program Files (x86)\NCH Software\Switch\switch.exe [2018-08-11] (NCH Software) Task: {1F17BC67-B1A7-418E-B193-01F34568AA80} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-11-11] (Google Inc.) Task: {1F3414FA-3972-4CF2-A4CD-E7407973E84C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-11-22] (Microsoft Corporation) Task: {388BBEB2-B794-4C44-99CB-5AA9336A3F4C} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-09-04] (AVAST Software) Task: {4983ADA3-844F-4763-9901-1706DD3A9904} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-10-31] (AVAST Software) Task: {4B29D8E6-BB62-437E-B9B7-94A609E4F8F2} - System32\Tasks\Launcher GIGABYTE XTREME GAMING ENGINE => C:\Program Files (x86)\GIGABYTE\XTREME GAMING ENGINE\Xtreme.exe [2017-01-09] (GIGABYTE Technology Co.,Ltd.) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {878CD15F-6EE9-40E9-AC3C-D826B183080F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-11-22] (Microsoft Corporation) Task: {9CA009B1-44EE-4621-BDD1-21B1E3FD0662} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-7LGF88C-Philippe => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated) Task: {B6893D4A-7820-4E8E-B6F6-DEFAA4E741DF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-11-06] (Piriform Software Ltd) Task: {DA663A54-80F2-4CDE-8BFF-0EEA25017146} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-09-04] (AVAST Software) Task: {E17B1F55-CC16-426E-B497-94284809C37F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-11-22] (Microsoft Corporation) Task: {EC20458A-0402-4ED9-A89D-C0F360BEF5B4} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3602755423-1801949855-1613694378-1001 => C:\Users\Philippe\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited) Task: {F6EDAD1A-1654-4DAC-8B44-5F1283AE441C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-11-22] (Microsoft Corporation) Task: {F933567F-733B-4ADD-B1F9-91C0B7CE9282} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-11-06] (Piriform Ltd) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Philippe\Desktop\JEUX\JEUX\honey select\Honey Select\Honey Select\Studio Items\Maps\Studio Items - Ярлык.lnk -> E:\ALL\HoneySelect pornolab.net\Studio Items (Pas de fichier) <==== Cyrillic Shortcut: C:\Users\Philippe\Desktop\jeujeu\honey select\Honey Select\Studio Items\Maps\Studio Items - Ярлык.lnk -> E:\ALL\HoneySelect pornolab.net\Studio Items (Pas de fichier) <==== Cyrillic ShortcutWithArgument: C:\Users\Philippe\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\11d0439ab88932dc\Glassix.lnk -> C:\Users\Philippe\Desktop\jeujeu\Glassix_028fix\Glassix 0.28fix\Glassix\Glassix.exe (The NWJS Community) -> --user-data-dir="C:\Users\Philippe\AppData\Local\Glassix\User Data" --profile-directory=Default --app-id=bhjcnhdjadnhkhihodpdpbllcnalejmf ==================== Modules chargés (Avec liste blanche) ============== 2018-06-19 19:35 - 2018-09-06 02:18 - 000142888 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-08-23 13:42 - 2018-08-23 13:42 - 000190784 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe 2018-06-19 16:31 - 2013-06-28 16:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 _____ () C:\Users\Philippe\AppData\Local\MEGAsync\ShellExtX64.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-08-27 12:57 - 2018-08-27 12:57 - 000054440 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2018-11-14 07:58 - 2018-11-01 07:55 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-04 02:06 - 2018-10-04 02:06 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-11-13 09:31 - 2018-11-13 09:31 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll 2018-11-13 09:31 - 2018-11-13 09:31 - 010873344 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\LibWrapper.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 002834432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\skypert.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.34.81.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-11-14 23:57 - 2018-11-14 23:57 - 003083264 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DotNetCommon\5e9b08dff2d36e3daccb748c267f6bd2\DotNetCommon.ni.dll 2018-09-03 08:01 - 2013-06-06 19:16 - 000012520 _____ () C:\Users\Philippe\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll 2018-09-03 08:01 - 2013-06-06 19:16 - 000015080 _____ () C:\Users\Philippe\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\GetCoreTempInfoNET.dll 2018-09-03 08:01 - 2013-06-06 19:16 - 000014056 _____ () C:\Users\Philippe\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\SystemInfo.dll 2018-11-14 07:58 - 2018-11-01 07:53 - 002068480 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 001465856 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll 2018-06-19 20:53 - 2018-06-19 20:53 - 003037184 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000580608 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.QueryClient.dll 2018-10-30 13:09 - 2018-10-30 13:09 - 003859456 _____ () C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe 2018-09-04 12:30 - 2018-10-30 19:06 - 001057056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\SDL2.dll 2018-09-04 12:30 - 2018-09-23 01:00 - 102804768 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll 2018-09-04 12:30 - 2018-09-23 01:00 - 004866336 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll 2018-09-04 12:30 - 2018-09-23 01:00 - 000116000 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll 2018-11-18 10:31 - 2018-11-21 12:57 - 019439512 _____ () F:\Steam\steamapps\common\Black Desert Online\bin64\BlackDesert64.exe 2018-11-18 10:35 - 2018-11-18 10:35 - 000113152 _____ () F:\Steam\steamapps\common\Black Desert Online\bin64\zlibwapi.dll 2018-11-18 10:33 - 2018-11-18 10:33 - 000167352 _____ () F:\Steam\steamapps\common\Black Desert Online\bin64\portaudio_x64.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2018-11-13 09:31 - 2018-11-13 09:32 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2018-09-02 23:43 - 2018-09-02 23:48 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2018-11-08 14:15 - 2018-11-08 14:19 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2018-11-08 14:15 - 2018-11-08 14:18 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2018-11-08 14:15 - 2018-11-08 14:19 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll 2018-09-02 23:43 - 2018-09-02 23:47 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll 2018-09-02 23:43 - 2018-09-02 23:47 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll 2018-09-02 23:43 - 2018-09-02 23:48 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2018-11-08 14:15 - 2018-11-08 14:18 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2018-11-13 09:31 - 2018-11-13 09:32 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-09-02 23:43 - 2018-09-02 23:48 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-09-02 23:43 - 2018-09-02 23:47 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-09-10 21:51 - 2017-09-10 21:51 - 000798208 _____ () C:\Users\Philippe\AppData\Local\MEGAsync\libsodium.dll 2018-09-04 12:27 - 2018-10-30 19:06 - 000879904 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2018-09-04 12:27 - 2016-09-01 02:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2018-09-04 12:27 - 2018-11-10 03:55 - 002649376 _____ () C:\Program Files (x86)\Steam\video.dll 2018-09-04 12:27 - 2016-09-01 02:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2018-09-04 12:27 - 2016-09-01 02:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2018-09-04 12:27 - 2017-12-20 02:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2018-09-04 12:27 - 2017-12-20 02:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2018-09-04 12:27 - 2017-12-20 02:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2018-09-04 12:27 - 2017-12-20 02:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2018-09-04 12:27 - 2017-12-20 02:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2018-10-13 18:09 - 2018-11-10 03:55 - 001028384 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2018-09-04 12:27 - 2016-07-04 23:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 12:04 - 2018-11-15 21:27 - 000000825 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run: => "WinZip PreLoader" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\StartupApproved\Run: => "Avanquest Message" HKU\S-1-5-21-3602755423-1801949855-1613694378-1001\...\StartupApproved\Run: => "VideoDownloadCapture" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{2B9744A2-0743-420C-ABC6-0C2928A986A5}] => (Allow) C:\Users\Philippe\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F9A6FBC4-C5B3-46E7-8BFB-CDB40889D94D}] => (Allow) C:\Users\Philippe\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [UDP Query User{B2D0F68B-B351-4CFC-B76E-E5628E48DD43}C:\bsd concept\heredis 2018\heredis18.exe] => (Allow) C:\bsd concept\heredis 2018\heredis18.exe FirewallRules: [TCP Query User{D184812B-3245-4484-8182-96CC7DB189C7}C:\bsd concept\heredis 2018\heredis18.exe] => (Allow) C:\bsd concept\heredis 2018\heredis18.exe FirewallRules: [{A7235850-67CD-476B-8A3F-D4EDDF1A7214}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's The Division\TheDivision.exe FirewallRules: [{B0D45EEC-ADCE-4CA5-BC6F-EC295CCC0E35}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe FirewallRules: [{B0E80AC2-EB0C-4A0A-B1C5-5FC336DA187A}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe FirewallRules: [{EF36F99B-9CBF-43FD-B00D-7A2AFB8098D9}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{2BAF66E9-43DA-4945-979E-8BCF590C6743}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe FirewallRules: [{CA2AB198-7122-417A-BB02-7CCF4A5A7B99}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{28E9A129-676F-4182-80BA-702B317F3353}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{AA03D85F-E0F0-4173-B40F-1840D0B41DA2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{86FF79B3-2279-4AD1-AD03-4BAF313E5716}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DFA6E5DB-A35E-44F4-BD7A-042C1F9C4E6D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{9CFFB94F-5F81-4D17-9065-FC6F50AB2D14}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe FirewallRules: [{58AF7489-EB0C-4C98-AA63-6C094C7BA4F4}] => (Allow) F:\Steam\steamapps\common\Wildlands\GRW.exe FirewallRules: [{3BB88631-556F-4A33-AEDC-989C93B6512E}] => (Allow) F:\Steam\steamapps\common\Wildlands\GRW.exe FirewallRules: [{0DF3955E-F19B-4247-8EE6-1E0C6DB6ACF5}] => (Allow) F:\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{F36FB9A3-2D1D-45EA-A94A-5D7B6D842876}] => (Allow) F:\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{C4028568-9670-4F9D-B485-89916BF125FF}] => (Allow) F:\Steam\steamapps\common\RAGE\Rage.exe FirewallRules: [{FF3AA4F4-979E-42F6-85FB-E94976229CD7}] => (Allow) F:\Steam\steamapps\common\RAGE\Rage.exe FirewallRules: [{2C828BE0-2832-4B0B-B4CA-66736E559157}] => (Allow) F:\Steam\steamapps\common\RAGE\Rage64.exe FirewallRules: [{DAD21AAE-BBA2-4F4F-B93F-5655EFCBB113}] => (Allow) F:\Steam\steamapps\common\RAGE\Rage64.exe FirewallRules: [{0DA00BF5-8A6F-4DEC-80B4-1AE903DB5777}] => (Allow) F:\Steam\steamapps\common\Wargame Airland Battle\WarGame2.exe FirewallRules: [{2055990B-C944-4C48-82B0-46CCF7F02A4F}] => (Allow) F:\Steam\steamapps\common\Wargame Airland Battle\WarGame2.exe FirewallRules: [{04C47466-0357-42CF-9A5F-3CDBF78A4080}] => (Allow) F:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe FirewallRules: [{FD396749-EE3C-4B1D-B29C-E5C75F6AC749}] => (Allow) F:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe FirewallRules: [{A4280531-23C8-4DB6-B494-21588C739E0F}] => (Allow) F:\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{B06D133E-CD0D-4501-BEC1-19115F7C1569}] => (Allow) F:\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{3E79938A-EB6B-4FD1-8B91-6909F908793A}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{E96D5E24-6335-4644-A9B0-9551EAFA5F25}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{A26F3F0B-4B6E-41A5-8C93-432EDEABCA24}] => (Allow) F:\Steam\steamapps\common\left 4 dead\left4dead.exe FirewallRules: [{BE8A5257-D1A9-4836-A413-FDFBFA848F6C}] => (Allow) F:\Steam\steamapps\common\left 4 dead\left4dead.exe FirewallRules: [{429A056E-7404-4C26-AE51-923180300043}] => (Allow) F:\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe FirewallRules: [{9ED51535-1099-4DFB-804F-ACA1CC04DC53}] => (Allow) F:\Steam\steamapps\common\Life is Feudal Your Own\yo_cm_client.exe FirewallRules: [{7EB23443-9DF5-4443-901F-B63B1072C187}] => (Allow) F:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe FirewallRules: [{3A15096A-FEC7-42C6-88EA-98C80A4EB9DD}] => (Allow) F:\Steam\steamapps\common\Empyrion - Galactic Survival\EmpyrionLauncher.exe FirewallRules: [{4950F361-52A4-40E8-9B2A-C11AABE15789}] => (Allow) F:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [{4E57691B-8865-4BCD-8DAE-A4B10D15CBBF}] => (Allow) F:\Steam\steamapps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [{E0201EA4-A53D-402C-BE7B-1B52F9F65D7B}] => (Allow) F:\Steam\steamapps\common\Survivalist\Survivalist.exe FirewallRules: [{EC9DC5D5-A24F-4D6A-83B1-3E8980AA5F10}] => (Allow) F:\Steam\steamapps\common\Survivalist\Survivalist.exe FirewallRules: [{D956E6D6-38F0-45D9-99E2-5F1A38539CF2}] => (Allow) F:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{CFAFCB53-483D-419C-B509-22EF083E763A}] => (Allow) F:\Steam\steamapps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{2C864E0C-7248-4939-9F66-26C484F535A3}] => (Allow) F:\Steam\steamapps\common\Ryzom\ryzom_client_r.exe FirewallRules: [{AA8FD4BC-BED3-482C-A611-51F54AC994BD}] => (Allow) F:\Steam\steamapps\common\Ryzom\ryzom_client_r.exe FirewallRules: [{4D3A31E1-DFBB-45A6-90A0-EE706D72F88F}] => (Allow) F:\Steam\steamapps\common\Ryzom\ryzom_configuration_qt_r.exe FirewallRules: [{AFDCC53A-918B-41D1-AAE7-8D0E125DD24E}] => (Allow) F:\Steam\steamapps\common\Ryzom\ryzom_configuration_qt_r.exe FirewallRules: [{B489BCE0-DB0B-40F0-8EC0-FA2C40D06E09}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe FirewallRules: [{8CCE8E1C-4C66-4EC7-9FED-48877153C3B9}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Photo Viewer\Apowersoft Photo Viewer.exe FirewallRules: [{A955F0AA-245C-4214-84A0-603F0CE44444}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Photo Viewer\Apowersoft Photo Viewer.exe FirewallRules: [{80717DDB-A768-4AF3-B772-53812E34D131}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe FirewallRules: [{C23B433B-A3D0-4D69-9A87-AEF5C25D79C3}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox_BE.exe FirewallRules: [{A112091E-50FF-46FA-83EA-E4E69E134419}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe FirewallRules: [{B364ECEC-5F92-47BE-A01F-00A88E59D42D}] => (Allow) F:\Steam\steamapps\common\Conan Exiles\ConanSandbox\Binaries\Win64\ConanSandbox.exe FirewallRules: [{116B895A-1736-4594-9902-EDA27EE4879F}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Far Cry 5\bin\FarCry5.exe FirewallRules: [{17D48127-0520-46B8-B922-C0FA2364B9B0}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Far Cry 5\bin\ArcadeEditor64.exe FirewallRules: [{21B2D5EF-9211-4A62-9CB4-3AE10FD90850}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Far Cry 5\bin\FarCry5.exe FirewallRules: [{C4038CF2-FE2F-4848-8621-DE7A7F8BABA2}] => (Allow) E:\Ubisoft\Ubisoft Game Launcher\games\Far Cry 5\bin\ArcadeEditor64.exe FirewallRules: [{D1773276-8503-4305-A2CE-0EEBD26EAC5B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osiris\OsirisNewDawn.exe FirewallRules: [{CF3CF1F1-499A-41C0-9B96-DB97BDEE7063}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Osiris\OsirisNewDawn.exe FirewallRules: [{7F087A5F-1C09-4A7B-A4FB-239B3863DD95}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OsirisNewDawn-BTSE\OsirisNewDawn_BTSE.exe FirewallRules: [{272E5063-8C66-4685-BE59-BFAC6DFC1F3E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\OsirisNewDawn-BTSE\OsirisNewDawn_BTSE.exe FirewallRules: [{D34389DC-7A05-4032-AED4-7837DB6A8E2C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{45F2FA71-BE7D-4F7B-9B94-400E874952B8}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{9A665ED2-F7FA-4075-8CE1-EB385F6DF62B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe FirewallRules: [{F0C68E04-99C2-4785-BAE9-1352AE22CB6C}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe FirewallRules: [{FAA9E26C-BB03-4BED-ADAA-DFEA640DCB60}] => (Allow) F:\Steam\steamapps\common\SCUM\SCUM_Launcher.exe FirewallRules: [{DCD6ADF8-3F8E-43F0-918E-2398F0E8CE3C}] => (Allow) F:\Steam\steamapps\common\SCUM\SCUM_Launcher.exe FirewallRules: [{12249BD5-0231-453B-AF2E-D7FE1DB458F3}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe FirewallRules: [{69CF1372-D10D-46C3-87AD-BBBA31B257B1}] => (Allow) F:\Steam\steamapps\common\OVERKILL's The Walking Dead\OTWD\Binaries\Win64\OTWD-Win64-Shipping.exe FirewallRules: [{B2AEF63B-CFDC-46E6-BED1-9B6958A7B197}] => (Allow) F:\Steam\steamapps\common\OVERKILL's The Walking Dead\OTWD\Binaries\Win64\OTWD-Win64-Shipping.exe FirewallRules: [{C3DF672A-0B9D-4F80-BD7A-9B64F390EFBE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F0FA3E04-6027-44A6-8FF4-88F98CB80155}] => (Allow) F:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe FirewallRules: [{85FB67E2-C4B7-4ADA-B1D8-8F496E69536E}] => (Allow) F:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe FirewallRules: [{BB336749-36DB-4D7D-A6DB-5864771CD93E}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe FirewallRules: [{13E3618F-A142-4740-B585-01E6DA148E1F}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZ_x64.exe FirewallRules: [{0D3A1F50-291C-4531-B5DE-336F25C5D8B0}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe FirewallRules: [{6063918B-0889-4D98-B347-D4C4D5AD4E52}] => (Allow) F:\Steam\steamapps\common\DayZ\DayZLauncher.exe FirewallRules: [{B8B32555-0AE4-4148-AA4F-B402B1C80E24}] => (Allow) F:\Steam\steamapps\common\Gloria Victis\gv.exe FirewallRules: [{4419DD28-544E-4F99-8236-ACD58F8BF809}] => (Allow) F:\Steam\steamapps\common\Gloria Victis\gv.exe FirewallRules: [{6EBC1543-3DA9-4448-9F63-190848D2E9F0}] => (Allow) F:\Steam\steamapps\common\StarDrive 2\SD2.exe FirewallRules: [{73828CC3-BC1E-4C89-8DAB-4C5AF6C61131}] => (Allow) F:\Steam\steamapps\common\StarDrive 2\SD2.exe FirewallRules: [{41272323-4A0F-45A7-842C-593EE7435240}] => (Allow) F:\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe FirewallRules: [{C5128FCE-71C7-46C4-A8CF-837F82A39466}] => (Allow) F:\Steam\steamapps\common\Black Desert Online\Black Desert Online Steam Launcher.exe FirewallRules: [{9694E257-A5D3-4D76-951D-902BF664B5A6}] => (Allow) F:\Steam\steamapps\common\AION\NCLauncher.exe FirewallRules: [{9723EDAC-0ABE-4C8C-BC3D-0F3335E12D5B}] => (Allow) F:\Steam\steamapps\common\AION\NCLauncher.exe FirewallRules: [{3B012681-A26A-4FAD-98BF-A55DF340252C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{14687A1F-30B6-4594-9D5C-901970B03E93}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{438A8D69-02D1-4458-89A8-A740E944CE94}] => (Allow) F:\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe FirewallRules: [{6F9D4916-CF5A-4CF6-8587-0FFFDBD61D4F}] => (Allow) F:\Steam\steamapps\common\dayofinfamy\dayofinfamy_BE.exe FirewallRules: [{90483BC8-877A-48E7-A21A-6773A1078326}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{C13EA924-272C-4F7C-A681-0366286A7DB1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{7B655DA8-7A6D-490F-9ABA-E43D0EECE617}] => (Allow) F:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe FirewallRules: [{31CA0EAD-D2FD-459A-8543-36AA8006FFDC}] => (Allow) F:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe ==================== Points de restauration ========================= 19-11-2018 17:50:54 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/22/2018 09:23:51 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 08:23:49 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 07:23:50 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 06:23:49 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 05:23:49 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 04:23:49 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 03:23:52 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (11/22/2018 02:23:50 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Avast Update Helper -- Error 1316. Le compte spécifié existe déjà. Erreurs système: ============= Error: (11/22/2018 06:43:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7LGF88C) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-7LGF88C\Philippe de l’utilisateur (S-1-5-21-3602755423-1801949855-1613694378-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/22/2018 06:31:21 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7LGF88C) Description: Le serveur Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00041402-0001-0000-D5E6-FA0000000000} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/22/2018 06:31:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7LGF88C) Description: Le serveur Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00051402-0001-0000-D5E6-FA0000000000} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/22/2018 06:31:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7LGF88C) Description: Le serveur Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00021402-0006-0000-D5E6-FA0000000000} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/22/2018 06:31:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7LGF88C) Description: Le serveur Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00011402-0003-0000-D5E6-FA0000000000} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/22/2018 06:31:20 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7LGF88C) Description: Le serveur Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe!ContentProcess#{00031402-0001-0000-D5E6-FA0000000000} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/22/2018 03:03:22 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7LGF88C) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-7LGF88C\Philippe de l’utilisateur (S-1-5-21-3602755423-1801949855-1613694378-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/22/2018 02:48:46 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-7LGF88C) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-7LGF88C\Philippe de l’utilisateur (S-1-5-21-3602755423-1801949855-1613694378-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2018-11-22 18:39:16.747 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Program Files (x86)\DAEMON Tools Pro\MSIMG32.dll Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : AUTORITE NT\Système Nom du processus : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe Version de la signature : AV: 1.281.613.0, AS: 1.281.613.0, NIS: 1.281.613.0 Version du moteur : AM: 1.1.15400.5, NIS: 1.1.15400.5 Date: 2018-11-22 13:51:18.825 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Philippe\Downloads\JEUX\Cities Skylines V1.9.0 Trainer +5 MrAntiFun\Cities Skylines V1.9.0 Trainer +5 MrAntiFun.EXE Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-7LGF88C\Philippe Nom du processus : C:\Users\Philippe\Desktop\REPARATION GOOGLE\ZHPCleaner.exe Version de la signature : AV: 1.281.596.0, AS: 1.281.596.0, NIS: 1.281.596.0 Version du moteur : AM: 1.1.15400.5, NIS: 1.1.15400.5 Date: 2018-11-22 13:51:01.109 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Philippe\Downloads\JEUX\Cities Skylines V1.9.0 Trainer +5 MrAntiFun\Cities Skylines V1.9.0 Trainer +5 MrAntiFun.EXE Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-7LGF88C\Philippe Nom du processus : C:\Users\Philippe\Desktop\REPARATION GOOGLE\ZHPCleaner.exe Version de la signature : AV: 1.281.596.0, AS: 1.281.596.0, NIS: 1.281.596.0 Version du moteur : AM: 1.1.15400.5, NIS: 1.1.15400.5 Date: 2018-11-22 13:50:45.287 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Philippe\Downloads\Programme\InPixio Photo Clip Professional 8.5.0\Fix\Keygen.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-7LGF88C\Philippe Nom du processus : C:\Users\Philippe\Desktop\REPARATION GOOGLE\ZHPCleaner.exe Version de la signature : AV: 1.281.596.0, AS: 1.281.596.0, NIS: 1.281.596.0 Version du moteur : AM: 1.1.15400.5, NIS: 1.1.15400.5 Date: 2018-11-22 13:50:41.316 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Occamy.C&threatid=2147726780&enterprise=0 Nom : Trojan:Win32/Occamy.C ID : 2147726780 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Philippe\Downloads\Programme\PDF Candy Desktop Pro 2.62\Activator\Activator.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-7LGF88C\Philippe Nom du processus : C:\Users\Philippe\Desktop\REPARATION GOOGLE\ZHPCleaner.exe Version de la signature : AV: 1.281.596.0, AS: 1.281.596.0, NIS: 1.281.596.0 Version du moteur : AM: 1.1.15400.5, NIS: 1.1.15400.5 Date: 2018-11-22 13:32:48.199 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.277.992.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15300.6 Code d’erreur : 0x80070643 Description de l’erreur : Erreur irrécupérable lors de l’installation. CodeIntegrity: =================================== Date: 2018-11-22 18:31:20.073 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 18:31:20.073 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 18:31:20.073 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 18:31:20.073 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 10:10:14.330 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 10:10:00.219 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 10:09:59.898 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-11-22 10:09:41.524 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 12240.6 MB Mémoire physique - RAM - disponible: 8161.98 MB Mémoire virtuelle totale: 14416.6 MB Mémoire virtuelle disponible: 9498.23 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:1861.66 GB) (Free:414.93 GB) NTFS Drive e: (Nouveau nom) (Fixed) (Total:1863.01 GB) (Free:209.15 GB) NTFS Drive f: () (Fixed) (Total:1863.01 GB) (Free:165.33 GB) NTFS Drive g: (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.08 GB) NTFS Drive h: () (Fixed) (Total:1862.92 GB) (Free:1737.81 GB) NTFS Drive p: () (Removable) (Total:28.64 GB) (Free:12.49 GB) NTFS \\?\Volume{ad4e287d-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{ad4e287d-0000-0000-0000-b089d1010000}\ () (Fixed) (Total:0.86 GB) (Free:0.34 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 69025F76) Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: AD4E287D) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1861.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=884 MB) - (Type=27) ======================================================== Disk: 2 (Size: 1863 GB) (Disk ID: 9BE179F1) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 6E8446B3) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 28.6 GB) (Disk ID: 3FF85820) Partition 1: (Not Active) - (Size=28.6 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================