Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019 Ran by Miguel (05-04-2019 11:33:35) Running from C:\Users\Miguel\Desktop Windows 10 Pro Version 1803 17134.648 (X64) (2018-08-14 21:24:23) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-1280290400-4027872776-3604532955-500 - Administrator - Disabled) ASPNET (S-1-5-21-1280290400-4027872776-3604532955-1004 - Limited - Enabled) DefaultAccount (S-1-5-21-1280290400-4027872776-3604532955-503 - Limited - Disabled) Guest (S-1-5-21-1280290400-4027872776-3604532955-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1280290400-4027872776-3604532955-1002 - Limited - Enabled) Miguel (S-1-5-21-1280290400-4027872776-3604532955-1005 - Administrator - Enabled) => C:\Users\Miguel WDAGUtilityAccount (S-1-5-21-1280290400-4027872776-3604532955-504 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\uTorrent) (Version: 3.5.5.45095 - BitTorrent Inc.) 7-Zip 19.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1900-000001000000}) (Version: 19.00.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.13 - ASUSTeK Computer Inc.) AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) calibre 64bit (HKLM\...\{8C83C594-266D-4965-A44D-F4B84BBD9835}) (Version: 3.40.1 - Kovid Goyal) Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.103 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden GPL Ghostscript (HKLM\...\GPL Ghostscript 9.23) (Version: 9.23 - Artifex Software Inc.) GSview 5.0 (HKLM\...\GSview 5.0) (Version: 5.0 - Ghostgum Software Pty Ltd) Harmony Remote Update (HKLM-x32\...\HarmonyRemoteUpdate) (Version: 7.7.1 - Logitech - HarmonyRemoteClient) HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - ) HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version: - ) HP LaserJet Professional M1210 MFP Series Fax Installer (HKLM\...\{E94AE378-725A-41FF-BA24-397469D27FC8}) (Version: 1.3.0 - HP) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel(R) Network Connections 20.1.2019.0 (HKLM\...\PROSetDX) (Version: 20.1.2019.0 - Intel) LibreOffice 6.2 Help Pack (French) (HKLM\...\{B0D0B386-EB6E-4853-B88A-7FE48601BBEF}) (Version: 6.2.0.3 - The Document Foundation) LibreOffice 6.2.0.3 (HKLM\...\{AD0844DC-C933-4D00-814A-3B7AAD254098}) (Version: 6.2.0.3 - The Document Foundation) Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech) Microsoft OneDrive (HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) MiKTeX 2.9 (HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org) Mozilla Firefox 66.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 66.0.2 (x64 fr)) (Version: 66.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.2 - Mozilla) Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.) Package de pilotes Windows - RemoteControl (RemoteControlUSBLAN) Net (06/02/2016 02.04.10.001) (HKLM\...\A14D4158722037A4DD816446D7339B41F11276D9) (Version: 06/02/2016 02.04.10.001 - RemoteControl) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7848 - Realtek Semiconductor Corp.) Renault Media Nav Toolbox (HKLM-x32\...\Renault Media Nav Toolbox) (Version: 3.18.5.753187 - NNG Llc.) Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP) Skype version 8.41 (HKLM-x32\...\Skype_is1) (Version: 8.41 - Skype Technologies S.A.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation) VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) WhatsApp (HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\WhatsApp) (Version: 0.3.557 - WhatsApp) WinEdt (HKLM-x32\...\WinEdt_is1) (Version: - WinEdt Team) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1280290400-4027872776-3604532955-1005_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6} ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-09-22] (Advanced Micro Devices, Inc.) [File not signed] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0B57B67E-ADC0-4677-B00B-B92BF83D0F1E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {0DFA2935-67E7-49C0-9889-6A4740D70F41} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {0F413865-2C8E-4555-93B2-41095D55FBF6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software) Task: {1E1711B3-C21A-4734-A3DD-B6F7F989B9AA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {295CD94A-92A9-4BE3-BF43-38D70D8FDD45} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {3B8D519D-8B66-44A1-9210-B4C980239774} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe (ASUSTeK Computer Inc. -> TODO: ) Task: {49EE562A-48BA-4208-9863-07FDC9A140D8} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ASUSTeK Computer Inc. -> ) Task: {6D5FFFAE-5CE0-4AFA-AA6A-555DD75FF99D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {7B5EC2C7-22DD-4A3D-9BD8-F9DFC2EAFD66} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) Task: {87AF7112-D355-4B2D-9254-8429FE901A67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC) Task: {BC25B141-824F-4FDE-A8A0-3205F6B3473D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {CD61CAF1-D4B9-4527-B631-91EAEDBC0E53} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures Task: {DA2150FD-9CF0-4F78-9773-02C05198F412} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC) Task: {E6581A22-4CDF-4F9D-9431-351829C01FAF} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {F0DD8B2E-E7B4-4517-ACC2-628868D19E31} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ==================== Loaded Modules (Whitelisted) ============== 2018-08-15 08:12 - 2014-04-24 14:29 - 001360016 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe 2018-12-12 12:32 - 2018-12-12 12:32 - 000190784 _____ (Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe 2016-09-13 03:00 - 2016-09-13 03:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll 2016-09-13 03:00 - 2016-09-13 03:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll 2016-09-13 03:01 - 2016-09-13 03:01 - 000191488 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2018-08-15 08:16 - 2019-04-04 11:40 - 000036648 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\PEbiosinterface32.dll 2018-08-15 08:16 - 2017-12-26 21:26 - 000053248 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.01\cpuutil.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2018-08-15 08:17 - 2017-12-20 11:01 - 000193536 _____ (TODO: ) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\AsusGpuTweak.dll 2018-08-15 08:17 - 2017-11-27 17:57 - 000062464 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Exeio.dll 2018-08-15 08:17 - 2017-05-03 08:17 - 000106496 _____ (ASUSTek Computer Inc.,) [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\EIO.DLL 2018-08-15 08:17 - 2017-11-27 17:57 - 001772544 _____ () [File not signed] C:\Program Files (x86)\ASUS\VGA COM\2.00.03\Vender.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2018-08-15 08:17 - 2017-11-24 08:47 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll 2018-08-15 08:17 - 2017-11-24 08:48 - 000082432 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\IccHelper.dll 2018-08-15 08:17 - 2017-11-24 08:47 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpi.dll 2018-08-15 08:17 - 2017-11-24 08:47 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpiEx.dll 2018-08-15 08:17 - 2017-11-24 08:48 - 000082432 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\IccHelper.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000299520 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Xmld.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 009541632 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Cored.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 008565248 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Widgetsd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 010430464 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Guid.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 002932736 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\platforms\qwindowsd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000076288 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qgifd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000097280 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicnsd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000077312 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicod.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000432640 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qjpegd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000058880 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qsvgd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000557056 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Svgd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000058880 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtgad.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000574976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtiffd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000058368 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwbmpd.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000844800 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwebpd.dll 2018-08-15 08:17 - 2017-11-24 08:48 - 000743424 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\asacpi.dll 2018-08-15 08:16 - 2017-10-29 19:15 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\asacpiEx.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 001757696 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\libvlccore.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000102400 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\libvlc.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000194560 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\access\libdshow_plugin.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000046080 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\audio_output\libaout_directx_plugin.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000045056 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\audio_output\libwaveout_plugin.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000065536 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\video_output\libdirectx_plugin.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000032256 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\mmxext\libmemcpymmxext_plugin.dll 2019-02-15 18:17 - 2019-02-15 18:17 - 000047104 _____ () [File not signed] C:\Users\Miguel\AppData\Roaming\uTorrent\player\plugins\control\libhotkeys_plugin.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\localhost -> localhost ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2018-08-15 09:13 - 2018-08-15 09:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\Control Panel\Desktop\\Wallpaper -> I:\Documents personnels\Images\Religieux\Vierge_C1.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == If an entry is included in the fixlist, it will be removed. HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\StartupApproved\StartupFolder: => "u1806.lnk" HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1280290400-4027872776-3604532955-1005\...\StartupApproved\Run: => "Skype for Desktop" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{8FB64448-C8BF-47B4-9530-BEAF528F5BBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{74342AE8-9276-42CB-A5D0-88995A97176D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{54E1924F-54BE-4FBE-8191-9B3DABCB5197}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F8C2ECBD-041D-48E8-8950-2F6408D95A70}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{08798B1F-0739-40C7-8770-6304FB9BAB78}C:\users\miguel\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\miguel\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{C850DDDF-FD08-404B-B7DE-0C191DA5F04A}C:\users\miguel\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\miguel\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{ECF09896-3704-496D-9E6B-613103E6DD6D}C:\users\miguel\appdata\roaming\utorrent\updates\3.5.5_45146.exe] => (Allow) C:\users\miguel\appdata\roaming\utorrent\updates\3.5.5_45146.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{00EFCEA3-5EE7-4239-97E6-37E32A089750}C:\users\miguel\appdata\roaming\utorrent\updates\3.5.5_45146.exe] => (Allow) C:\users\miguel\appdata\roaming\utorrent\updates\3.5.5_45146.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{543B983F-0523-4116-B48A-0CAF82D16000}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 ==================== Restore Points ========================= 21-03-2019 08:51:44 Windows Update 29-03-2019 10:37:12 Scheduled Checkpoint ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (04/05/2019 10:00:35 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/05/2019 09:59:06 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/04/2019 08:54:03 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/03/2019 11:11:53 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/03/2019 08:48:20 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/01/2019 04:49:34 PM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/01/2019 09:40:00 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: Error: (04/01/2019 09:39:54 AM) (Source: ATIeRecord) (EventID: 16396) (User: ) Description: System errors: ============= Error: (04/05/2019 10:01:14 AM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/05/2019 09:58:56 AM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} et l’APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/05/2019 09:58:47 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID NT AUTHORITY\LOCAL SERVICE de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/04/2019 07:53:43 PM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/04/2019 07:52:29 PM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/04/2019 04:18:49 PM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8BC3F05E-D86B-11D0-A075-00C04FB68820} et l’APPID {8BC3F05E-D86B-11D0-A075-00C04FB68820} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/04/2019 11:58:30 AM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/04/2019 11:58:30 AM) (Source: DCOM) (EventID: 10016) (User: Mitia) Description: Les paramètres d’autorisation application-specific n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID Mitia\Miguel de l’utilisateur (S-1-5-21-1280290400-4027872776-3604532955-1005) depuis l’adresse LocalHost (Using LRPC) s’exécutant dans le SID Unavailable du conteneur d’applications (Unavailable). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2019-04-04 12:06:42.588 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {A9E10BD5-820E-4E5D-9C8E-1AF39F0D78A9} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : NT AUTHORITY\SYSTEM Date: 2019-04-03 09:29:51.113 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {1DAAC5AE-1C0B-482C-B2F0-2A6C30666AD1} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : NT AUTHORITY\SYSTEM Date: 2019-04-03 09:18:14.838 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {DFCF4109-5822-439B-9696-101DB0B30F30} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : NT AUTHORITY\SYSTEM Date: 2019-03-30 11:14:17.254 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {B53EB600-236D-419A-8C85-4B2A6EE57A25} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : NT AUTHORITY\SYSTEM Date: 2019-03-28 15:41:34.386 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {B33D6C4C-F191-4C7D-B47C-8E1873FC1925} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : NT AUTHORITY\SYSTEM Date: 2019-02-15 19:01:55.536 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.287.49.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.15700.8 Code d’erreur : 0x80240022 Description de l’erreur : The program can't check for definition updates. Date: 2019-02-15 19:01:55.536 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.287.49.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.15700.8 Code d’erreur : 0x80240022 Description de l’erreur : The program can't check for definition updates. Date: 2019-02-14 10:05:38.567 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.285.1495.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.15600.4 Code d’erreur : 0x8024401c Description de l’erreur : An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. Date: 2019-02-14 09:37:08.943 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.285.1495.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.15600.4 Code d’erreur : 0x80240022 Description de l’erreur : The program can't check for definition updates. Date: 2019-02-14 09:37:08.943 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.285.1495.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.15600.4 Code d’erreur : 0x80240022 Description de l’erreur : The program can't check for definition updates. CodeIntegrity: =================================== Date: 2019-02-15 16:46:22.803 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\ashShell.dll that did not meet the Microsoft signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz Percentage of memory in use: 59% Total physical RAM: 8068.99 MB Available physical RAM: 3267.92 MB Total Virtual: 9348.99 MB Available Virtual: 3669.02 MB ==================== Drives ================================ Drive c: (C_Titan) (Fixed) (Total:238.03 GB) (Free:95.25 GB) NTFS ==>[drive with boot components (obtained from BCD)] Drive e: (Cham) (Fixed) (Total:931.51 GB) (Free:209.55 GB) NTFS Drive f: (D_Ubu) (Fixed) (Total:931.51 GB) (Free:95.72 GB) NTFS ==>[system with boot components (obtained from drive)] Drive i: (Mabelle) (Fixed) (Total:1862.89 GB) (Free:653.26 GB) NTFS Drive j: (ESD-USB) (Removable) (Total:31.99 GB) (Free:28.18 GB) FAT32 \\?\Volume{2696ede2-0000-0000-0000-30823b000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 2696EDE2) Partition 1: (Active) - (Size=238 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: A955A955) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 50A7298A) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (MBR Code: Windows 7/8/10) (Size: 59.6 GB) (Disk ID: EB70ECB1) Partition 1: (Active) - (Size=32 GB) - (Type=0C) ==================== End of Addition.txt ============================