Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-06-2019 Exécuté par EOS (01-06-2019 22:45:35) Exécuté depuis C:\Users\EOS\Desktop Windows 10 Home Version 1809 17763.503 (X64) (2019-01-06 07:53:29) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2881597236-3550711179-1912384996-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2881597236-3550711179-1912384996-503 - Limited - Disabled) EOS (S-1-5-21-2881597236-3550711179-1912384996-1001 - Administrator - Enabled) => C:\Users\EOS HomeGroupUser$ (S-1-5-21-2881597236-3550711179-1912384996-1003 - Limited - Enabled) Invité (S-1-5-21-2881597236-3550711179-1912384996-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2881597236-3550711179-1912384996-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649} FW: AVG Antivirus (Enabled) {77FCDD80-5C3B-5549-57A4-B1A62BD5FB8F} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 4K YouTube to MP3 3.3 (HKLM\...\{6D4D8F4D-DDD6-4D31-BD57-50C5BA2362A8}) (Version: 3.3.10.1914 - Open Media LLC) abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.01.2006 - Acer Incorporated) abMedia (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.06.2003.0 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.01.2005.1 - Acer Incorporated) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.04.2002 - Acer Incorporated) Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.2003 - Acer Incorporated) Acer Video Player (HKLM-x32\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2001.4 - Acer Incorporated) AD Sound Recorder 5.5.3 (HKLM-x32\...\AD Sound Recorder_is1) (Version: - Adrosoft) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.9.0.465 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.192 - Adobe) Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.) AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.04.2001.2 - Acer Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 19.5.3093 - AVG Technologies) AVS Video Converter 9.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 9.1.2.571 - Online Media Technologies Ltd.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 5.0 - MOJOSOFT) CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - CSR Plc.) DVD Menu Template Package 1.2 (HKLM-x32\...\DVD Menu Template Package) (Version: 1.2 - AnvSoft Inc.) DVDFab Player 5 5.0.2.8 (16/5/2019) (HKLM-x32\...\DVDFab_Player_5) (Version: 5.0.2.8 - DVDFab Software Inc.) Easy Photo Scan (HKLM-x32\...\{89860B23-2202-433F-A751-AA16864CD9CB}) (Version: 1.00.0016 - Seiko Epson Corporation) Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.1 - Seiko Epson Corporation) Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{15F081E3-93FF-4FF3-B447-42CC458C4F79}) (Version: 3.11.0021 - Seiko Epson Corporation) Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION) Epson Photo+ (HKLM-x32\...\{DA0C1EA8-166F-4EA0-9B1F-332588273C13}) (Version: 1.2.0.0 - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{9ABD2971-9B8B-4958-9100-4EAFCC32A86D}) (Version: 3.0.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{1028AD34-EB8A-4136-9A93-27FC60FD0A40}) (Version: 4.4.11 - Seiko Epson Corporation) EPSON XP-255 257 Series Printer Uninstall (HKLM\...\EPSON XP-255 257 Series) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com) FormatFactory 4.6.1.0 (HKLM-x32\...\FormatFactory) (Version: 4.6.1.0 - Free Time) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 74.0.3729.169 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.8102 - Packard Bell) iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.) Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8101 - Packard Bell) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Java 8 Update 211 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation) KeyCrypt SDK version 1.7.1.323 (HKLM-x32\...\{5575EADE-4685-4E15-A9CD-6036BC2A3F75}_is1) (Version: 1.7.1.323 - Zemana Ltd.) Les Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.23.65 - Electronic Arts) Les Sims™ 3 Accès VIP (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts) Les Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts) Les Sims™ 3 Inspiration Loft Kit (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts) Les Sims™ 3 Vitesse ultime ! Kit (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts) Les Sims™ 3 Générations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts) Les Sims™ 3 Destination Aventure (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts) Les Sims™ 3 Jardin de Style Kit (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts) Les Sims™ 3 Vie Citadine Kit (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts) LibreOffice 6.2.0.3 (HKLM-x32\...\{C0B9601C-3433-41E2-B681-4C86274F0656}) (Version: 6.2.0.3 - The Document Foundation) Lingoes 2.9.2 (HKLM\...\Lingoes Translator (x64)_is1) (Version: 2.9.2 - Lingoes Project) Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8103 - Packard Bell) Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.54.0.0 - Seiko Epson Corporation) MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.) Microsoft Office Professional Plus 2019 - fr-fr (HKLM\...\Proplus2019Volume - fr-fr) (Version: 16.0.10344.20008 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\OneDriveSetup.exe) (Version: 19.070.0410.0005 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mindjet MindManager 2019 (HKLM\...\{5A39ACFF-5482-42D7-AA69-A33AD1491097}) (Version: 19.1.198 - Mindjet) Mises à jour NVIDIA 11.10.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 11.10.11 - NVIDIA Corporation) MKV Player 2.1.23 (HKLM-x32\...\MKV Player_is1) (Version: - ) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 67.0 (x64 fr) (HKLM\...\Mozilla Firefox 67.0 (x64 fr)) (Version: 67.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0 - Mozilla) Multimedia Keyboard & Mouse Driver (HKLM-x32\...\{055A9D81-5E0A-4088-94B3-BAC849EC3C20}) (Version: 2.0 - Nom de votre société) Hidden Multimedia Keyboard & Mouse Driver (HKLM-x32\...\InstallShield_{055A9D81-5E0A-4088-94B3-BAC849EC3C20}) (Version: 2.0 - Nom de votre société) MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.7 - NETGEAR) NVIDIA Logiciel système PhysX 9.13.0927 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0927 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10344.20008 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10344.20008 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.10344.20008 - Microsoft Corporation) Hidden Opera Stable 60.0.3255.109 (HKLM-x32\...\Opera 60.0.3255.109) (Version: 60.0.3255.109 - Opera Software) Packard Bell Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Packard Bell) Packard Bell Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8106 - Packard Bell) Packard Bell User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.01.3003 - Packard Bell) Packard Bell User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.01.3003 - Packard Bell) Panneau de configuration NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden PhotoFiltre Studio X (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\PhotoFiltre Studio X) (Version: - ) PhotoFiltre Studio X (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\PhotoFiltre Studio X) (Version: - ) PhotoFiltre Studio X (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\PhotoFiltre Studio X) (Version: - ) ProShow Gold (HKLM-x32\...\ProShow Gold) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.3.34 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.) Rosetta Stone Language Training (HKLM-x32\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd) Rosetta Stone Ltd Services (HKLM-x32\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Splash PRO EX (HKLM-x32\...\Mirillis Splash PRO EX) (Version: 1.13.2 - Mirillis) Sweet Home 3D version 6.1.2 (HKLM\...\Sweet Home 3D_is1) (Version: 6.1.2 - eTeks) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden System Ninja version 3.1 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.1 - SingularLabs) ThunderSoft Flash Gallery Creator (1.8.4.0) (HKLM-x32\...\ThunderSoft Flash Gallery Creator_is1) (Version: 1.8.4.0 - ThunderSoft) UCheck version 3.2.0.0 (HKLM\...\C4E7EE54-826F-41C4-BE3C-375CC70DC1D8_is1) (Version: 3.2.0.0 - Adlice Software) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{A7B60FC9-A750-43C7-B7EC-892CD09147C7}) (Version: 1.18.0.0 - Microsoft Corporation) Hidden VirtualDJ 2018 (HKLM-x32\...\{276C552D-2617-4EC0-8893-D3A0A0D11463}) (Version: 8.3.4787.0 - Atomix Productions) VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN) WallpaperHd (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\WallpaperHd) (Version: 1.0.0.1 - WallpaperHd) WallpaperHd (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\WallpaperHd) (Version: 1.0.0.1 - WallpaperHd) WallpaperHd (HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\WallpaperHd) (Version: 1.0.0.1 - WallpaperHd) Wedding Album Maker Gold 3.53 (HKLM-x32\...\Wedding Album Maker Gold) (Version: 3.53 - Anvsoft, Inc.) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) ZedTV version 2.6.4 (HKLM-x32\...\{7B4E06B9-2FA4-4F3E-85C5-1DCF1BA4B999}_is1) (Version: 2.6.4 - zedsoft) Packages: ========= - Games App - -> C:\Program Files\WindowsApps\WildTangentGames.-GamesApp-_1.0.3.28_x86__qt5r5pa5dyg8m [2015-09-02] (WildTangent Games) AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-07-06] (AccuWeather) Booking.com Partner Edition -> C:\Program Files\WindowsApps\4AE8B7C2.Booking.comPartnerEdition_1.2.1.0_x64__6wqyppa9wfhnr [2015-09-02] (Booking.com B.V.) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1510.1.0_x86__kgqvnymyfvs32 [2019-05-21] (king.com) eBay -> C:\Program Files\WindowsApps\eBayInc.eBay_1.6.0.34_neutral__1618n3s9xq8tw [2015-09-02] (eBay, Inc) Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.18.8489.0_x86__q4d96b2w5wcc2 [2019-05-16] (Evernote) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2018-09-30] (Microsoft Corporation) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa [2019-05-28] (Apple Inc.) Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x64__8wekyb3d8bbwe [2018-07-06] (Microsoft Platform Extensions) Microsoft Visual C++ 2013 Runtime Package -> C:\Program Files\WindowsApps\Microsoft.VCLibs.120.00.Universal_12.0.30501.0_x86__8wekyb3d8bbwe [2018-07-06] (Microsoft Platform Extensions) myCANAL -> C:\Program Files\WindowsApps\CANALGroupe.CANALTOUCH_3.6.1.0_x64__4d0jsvmsaqz2m [2019-04-11] (Groupe Canal +) Packard Bell Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.PackardBellExplorer_2.0.3006.0_x86__48frkmn4z8aw4 [2015-09-02] (Acer Incorporated) TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.5.1000_x64__6bhtb546zcxnj [2019-05-22] (TuneIn) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-30] (Twitter Inc.) Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2015-09-02] (Zinio LLC) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2881597236-3550711179-1912384996-1001_Classes\CLSID\{F7B8E2CA-97DF-4974-BDF1-3D93EDC93A5E}\InprocServer32 -> C:\Users\EOS\AppData\Local\WallpaperHd\WallpaperHdLib64.dll (WallpaperHd) [Fichier non signé] ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] (Adobe Systems Incorporated -> ) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers: [ACloudSyncedRF] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ACloudSyncedSF] -> {5D5F18B7-D59B-4B18-A3E9-0A4BDCCCB699} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [KAVOverlayIcon] -> {dd230880-495a-11d1-b064-008048ec2fc5} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [KAVOverlayIcon] -> {dd230880-495a-11d1-b064-008048ec2fc5} => -> Pas de fichier ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] (Adobe Systems Incorporated -> ) ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2018-11-29] (Free Time) [Fichier non signé] ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ContextMenuHandlers3: [ContextMenuShlExt] -> {08264889-8298-4B92-A6F2-6813E1BE356E} => C:\Program Files (x86)\Acer\Acer Portal\x64\shellext_win.dll [2014-12-19] (Acer Incorporated -> Acer Incorporated) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll [2018-11-29] (Free Time) [Fichier non signé] ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2014-12-19] (Adobe Systems Incorporated -> ) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2019-05-21] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\EOS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab Player 5\DVDFab En ligne.lnk -> hxxp://www.dvdfab.com/?s=player5&ad=player5_client&v=5.0.2. ShortcutWithArgument: C:\Users\EOS\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default ==================== Modules chargés (Avec liste blanche) ============== 2014-12-19 22:10 - 2014-12-19 22:10 - 000086016 _____ ( ) [Fichier non signé] C:\Program Files (x86)\Acer\AOP Framework\Interop.WUApiLib.2.0.dll 2007-08-05 21:31 - 2007-08-05 21:31 - 000114688 _____ () [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\keydll.dll 2007-08-05 22:53 - 2007-08-05 22:53 - 000053248 _____ () [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\MouseHook.dll 2018-10-30 16:32 - 2015-07-15 18:26 - 000450560 _____ () [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\WifiLib.dll 2018-10-30 16:32 - 2014-07-22 11:18 - 000278528 ____N () [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\WifiSvcLib.dll 2015-01-20 20:16 - 2015-01-20 20:16 - 000181312 _____ () [Fichier non signé] C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe 2014-12-19 22:10 - 2014-12-19 22:10 - 004815872 _____ (Acer Incorporated) [Fichier non signé] C:\Program Files (x86)\Acer\AOP Framework\AutoUpdate.dll 2018-11-29 02:55 - 2018-11-29 02:55 - 000302080 _____ (Free Time) [Fichier non signé] C:\Program Files (x86)\FormatFactory\ShellEx64_105.dll 2013-08-27 14:32 - 2013-08-27 14:32 - 000747520 _____ (Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe 2018-10-30 16:32 - 2012-08-27 15:03 - 000315392 ____N (Netgear, Inc.) [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\NtgrAdapterUpdate.dll 2018-10-30 16:32 - 2012-02-14 20:37 - 000594432 _____ (Realtek Semiconductor Corp. ) [Fichier non signé] C:\WINDOWS\system32\Rtlihvs.dll 2018-10-30 16:32 - 2013-11-21 16:32 - 000524288 ____N (Realtek Semiconductor Corp.) [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\RtlLib.dll 2018-10-30 16:32 - 2012-09-13 10:25 - 000200704 ____N (Realtek) [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\IpLib.dll 2018-10-30 16:32 - 2013-11-21 19:28 - 000286720 ____N (Realtek) [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\RtlIhvOid.dll 2017-02-13 14:54 - 2017-02-13 14:54 - 000132096 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll 2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll 2019-02-22 18:01 - 2019-02-22 18:01 - 000704512 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll 2019-02-22 16:09 - 2019-02-22 16:09 - 000475136 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2018-10-30 16:32 - 2009-07-23 03:32 - 001122304 ____N (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\NETGEAR\WNA3100M\LIBEAY32.dll 2007-09-17 22:51 - 2007-09-17 22:51 - 001470464 _____ (UASSOFT.COM) [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\KMConfig.exe 2007-09-25 23:18 - 2007-09-25 23:18 - 000561152 _____ (UASSOFT.COM) [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\KMProcess.exe 2007-05-08 17:00 - 2007-05-08 17:00 - 002179072 _____ (UASSOFT.COM) [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\KMWDSrv.exe 2007-03-06 14:51 - 2007-03-06 14:51 - 000212992 _____ (UASSOFT.COM) [Fichier non signé] C:\Program Files (x86)\Multimedia Keyboard & Mouse Driver\V5\StartAutorun.exe ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:6C3B8FB5 [366] AlternateDataStreams: C:\ProgramData\Temp:FBFC061F [94] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ZAM.exe" /service => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ZAM.exe" /service => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zam64.sys => ""="Driver" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\localhost -> localhost ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2019-06-01 00:29 - 000002107 _____ C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Acer\Remote Files\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230331\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430024\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230659\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430133\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\EOS\Desktop\2019-05-19_172437.png HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\Control Panel\Desktop\\Wallpaper -> C:\Users\EOS\Desktop\2019-05-19_172437.png HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\Control Panel\Desktop\\Wallpaper -> C:\Users\EOS\Desktop\2019-05-19_172437.png DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: CGVPNCliService => 2 HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "Bdagent" HKLM\...\StartupApproved\Run: => "MMReminderService" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "EA Core" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "SOS Browser Monitor" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "Bitdefender Wallet Agent" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "EA Core" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "SOS Browser Monitor" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "Bitdefender Wallet Agent" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003230909\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "EA Core" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "SOS Browser Monitor" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "Bitdefender Wallet Agent" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-2881597236-3550711179-1912384996-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-06012019003430290\...\StartupApproved\Run: => "Spotify" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{08B8C879-4010-4038-ACBB-312D5BA4F282}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{253E9021-BE7C-4F75-AA48-41B7A86D309E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{26985633-2A86-49F7-8FA6-D64B682A0183}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{E015CE27-A8FB-4704-A8CD-CC565CCFEA5A}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{02463970-E99F-4C0B-B1E2-A7EACB0F01D0}] => (Allow) C:\Users\EOS\AppData\Roaming\uTorrent\uTorrent.exe Pas de fichier FirewallRules: [{FF51969A-0EF6-4B35-9B28-9A898D8C82C8}] => (Allow) C:\Users\EOS\AppData\Roaming\uTorrent\uTorrent.exe Pas de fichier FirewallRules: [{870886D9-9C5E-484E-BC75-EDB3ED162DC2}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{0C41EF5F-34E5-4736-A9F9-831B441BE04A}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{EE0AC674-0E9E-4026-8EA2-A2E517B8DDAA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{18938C8A-390B-4DAF-BEE2-3CE9B66850EA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{10C35117-5843-49AA-839F-4E781B7DE3FE}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{0E0B5DC5-01EF-44C4-8D1A-0BDAF4FF192C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{1EE06F6A-3354-4676-8D51-D49EE2C9B296}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{4FCEFBDC-6885-4F9B-A529-9DC9317EABD5}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{987C0EFC-EFD2-4352-91E6-874AF7FB27B4}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{4F7AFE9C-5F1D-4425-B84D-AA0F347D5DB0}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{AD8594CF-0E2A-4E29-BD33-01DD5B5679CD}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe Pas de fichier FirewallRules: [{6D479F2A-3C42-4307-9889-A17CB2BD6A57}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe Pas de fichier FirewallRules: [{0B295893-49B1-4A6E-9EAF-185424DCCB71}] => (Allow) C:\Users\EOS\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe Pas de fichier FirewallRules: [{15F7B741-F67F-412F-9F68-47FBFC9B559C}] => (Allow) C:\Users\EOS\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe Pas de fichier FirewallRules: [{7E9C60C7-AFF1-4EE1-A4FC-88523904AEF2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe Pas de fichier FirewallRules: [{587D4BCA-AB56-45A6-9069-8A2AEE04D78F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{9A039372-8B09-493D-87E9-94CF23E95DE0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{FF9D0EAD-0636-4D3E-A488-E16E4B91873F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{4F3A64E1-8EAD-4566-BAAC-27E6A83D5FB9}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{2F7C0300-E2A8-4532-A59F-95868B26D4A2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{95B65A02-735E-4B4A-AA8D-E8DD23AD8D50}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{878B50AB-5806-4A73-BF11-D58C99DE2B9E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{C45931EB-516F-48DB-ACDE-2A813F14A8CC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{55D3DF86-3633-428F-AE54-0A8ADF4F3D0E}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{340993AC-AD49-4FEB-B0D7-7944904D6141}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{CC29149D-64CA-496D-9727-DF67FADDA0F5}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{E6B32440-17F7-4CA8-8B49-77B310B5FA7A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{8C46075F-68D4-4C84-9C8E-CFD2F4DF3422}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{86EC568D-6DE8-4E15-AB8F-E148BBB1FFE3}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{231A69E6-1AD6-4C64-BD7B-CBB385996729}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{E9162102-5CAA-4535-B9F8-EB57A47EE712}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{D64DC627-5578-42B2-8ABB-808578F97055}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{31C4AA09-6F94-4E2B-9A18-0B1B8C8E6340}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{D1EE9746-9A30-465F-B4AA-1A54ED05B27D}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{2ED04ACC-55CC-477C-8F62-1720F2777A09}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{33BFD83F-D9B7-4BAF-9B97-C8A599CD6280}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{39C0007F-2E55-457C-B4DC-88EBA6AB7C27}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{A70E2AC5-E87D-494E-A25E-20CAC4DC6437}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{AB821E8D-A8A4-469E-AA26-1B9AB6DD0139}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{7C5BC887-FE0C-416D-A53B-FF2D62108D97}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{9EEAD233-C7DA-4D26-8E4B-9BFEE46A1EE4}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{CDB006E1-CB4B-47A0-889D-99B78009884A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{166AE2B3-047A-4F0A-B854-32A835C3D7DB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{350E4E4D-150C-4734-AEFE-FF0EACFB441F}] => (Allow) LPort=48114 FirewallRules: [{CD0BA98D-1967-4FBE-A483-9EFD1259399A}] => (Allow) LPort=48113 FirewallRules: [{E0D9D0C8-B36C-4D30-9ED1-58144B480967}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{0B6E1766-ED57-4D2B-9B06-552CEFAD27A9}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{4BF648A4-F930-41A9-A6F5-EDB9FBDF4D50}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{E7355428-464C-4162-9E3F-089AEF70408B}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{02CE7E3B-763C-4415-A1B6-7004D89480F5}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{EEB9BC2F-1CBB-43E0-845E-48EC47D60DE4}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{92C22650-CC60-4FDF-B636-7F1AA6B9F9FD}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{54EA4E8E-3DDA-4AA5-A449-1D75C5A376B0}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{61ED1363-E02C-4D6F-A32B-C652A85151D2}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{5BFC84AC-4E9D-4660-9E25-61363490CD89}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{8D130EB9-5ACC-4F54-B533-CB1B46BCB65F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{7D00ED97-E8EB-46B4-A0A3-30A92307BAEE}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{879510F5-9037-453D-AE48-4D5B9B84CE14}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{631FBF6D-7725-4C59-8D09-88FFA06776F8}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{15F582FB-F37C-49C5-8579-AA524D67C277}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{72B3F162-EF1F-4BFA-B8F5-E9B127594A49}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{8A57DCDB-27DD-4517-9970-E6E7B01915CF}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{9AA4BCB4-7D95-4F48-AC52-59C383AB89C9}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{2177BF01-1D4C-4361-B254-8A3617B96F10}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{4A7E4F22-6BDF-44B0-B11B-7628A67AD77F}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{7E4D4D5C-973C-42D1-A515-E4CF26FB6101}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{41420F80-C764-4EC8-AEB8-FF8FAEC67909}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [UDP Query User{A7DB1536-1D79-4A89-AC34-B43DEEFBAE6E}C:\program files (x86)\acer\abphoto\windowsupnp.exe] => (Block) C:\program files (x86)\acer\abphoto\windowsupnp.exe (Acer Incorporated -> acer) FirewallRules: [TCP Query User{6CCFF2E8-64C1-459E-9EA5-FB51FAC9EB97}C:\program files (x86)\acer\abphoto\windowsupnp.exe] => (Block) C:\program files (x86)\acer\abphoto\windowsupnp.exe (Acer Incorporated -> acer) FirewallRules: [UDP Query User{E212BF2F-7450-4F75-A527-35D956FE4EDF}C:\program files (x86)\acer\abphoto\dmcdaemon.exe] => (Block) C:\program files (x86)\acer\abphoto\dmcdaemon.exe (Acer Incorporated -> acer) FirewallRules: [TCP Query User{972C2596-AB5A-4B93-8BC6-A7CB98B5C1DA}C:\program files (x86)\acer\abphoto\dmcdaemon.exe] => (Block) C:\program files (x86)\acer\abphoto\dmcdaemon.exe (Acer Incorporated -> acer) FirewallRules: [{BF05B683-A39E-464B-8B82-209A0DDB174A}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{5A00CE53-6DFE-4CF7-9DB6-F9964AD2CBCC}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{29D082AD-8904-47FC-A1F3-B4DA52007402}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{A4A26F5C-CFF7-400E-8841-7A605533C957}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{65B67B1C-CEFC-4A4B-9E57-C4392096243C}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{87038230-92AF-4D90-8A7D-6824F46DE20F}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe (Acer Incorporated -> acer) FirewallRules: [{A9BC5220-0D3A-4456-B834-40AC3817C624}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{D061FA73-AB7B-42BA-85C8-3216BC028BF7}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{60DE5130-E292-4E78-A0E5-6E1996D6FBBE}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe Pas de fichier FirewallRules: [{B58B457B-4207-4615-9DCC-A6A506EA0E34}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe Pas de fichier FirewallRules: [{128734E0-C843-406E-8EC1-9C90E5DB6D92}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe Pas de fichier FirewallRules: [{4B8DCC39-5A1A-491F-8B9A-252095C9F1EE}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe Pas de fichier FirewallRules: [TCP Query User{4D930C7C-C551-4972-8FDA-940860C977BF}C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe] => (Allow) C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe Pas de fichier FirewallRules: [UDP Query User{232F57F6-A23E-4D6E-872B-29249B8E5B1B}C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe] => (Allow) C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe Pas de fichier FirewallRules: [TCP Query User{3ACFFD4C-1E67-4B6E-AF32-A8A13058FCC4}C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe] => (Allow) C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe Pas de fichier FirewallRules: [UDP Query User{1FE874AA-3236-4BBC-BE9D-5AB9B10D21E7}C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe] => (Allow) C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe Pas de fichier FirewallRules: [{1542AFF3-BEEE-44B7-B4BC-04073DF24300}] => (Block) C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe Pas de fichier FirewallRules: [{799AE72D-1C1A-4A05-8CA9-D3AF1EF22718}] => (Block) C:\users\eos\appdata\local\temp\rarsfx0\x64\pcsftool.exe Pas de fichier FirewallRules: [{158020A0-1F57-46CA-ABD4-9BF3ACF986B8}] => (Block) C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe Pas de fichier FirewallRules: [{06881E54-D6E5-45FE-AB08-9FF535DAE835}] => (Block) C:\users\eos\appdata\local\temp\rarsfx0\x32\pcsftool.exe Pas de fichier FirewallRules: [{254CA892-12BF-4D16-97E8-D89E44BC704D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{01117F67-FC17-4415-8C3C-1C13B7067411}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{91B17B8D-59DD-4A1B-A865-73BFD7B03100}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{26E05BFB-CB75-4B57-B668-77F8181E9259}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{481E86D9-75AC-43CE-9175-9AC50889D0C8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{81891E38-5941-478C-AB1F-575034C6B24E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{34D82DD2-D1F9-48A0-BBEB-94A43BAD5D2C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{A137DEEC-9A11-4E2D-8623-EEE1D615F9F5}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{E3CCEA43-8A84-40DE-A1C4-0F81B793ABD2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{D5840796-E3D0-423C-9870-C7C075DDA2A3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{74927D46-EB4E-40EE-9008-E0F63E134DB6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{1E9AB76E-EF12-463F-9E21-3E56DD036B50}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0CCA4F15-38D3-4561-AC14-3A345721A83D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{94B1CB77-E2F1-49D4-985B-57A840E588AE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{342285F7-EDCE-4E4F-98F7-A3876C252519}C:\users\eos\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\eos\appdata\local\amazon music\amazon music helper.exe Pas de fichier FirewallRules: [UDP Query User{FA1F0EF0-5D85-4A13-AEE2-EF2CE432BE27}C:\users\eos\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\eos\appdata\local\amazon music\amazon music helper.exe Pas de fichier FirewallRules: [{45F40E19-6DD3-4B2C-8137-EAD65F831DCB}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.) FirewallRules: [{3A32FA9D-C5A4-4A4A-81AA-E1B69FA47258}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.) FirewallRules: [{F361153A-48F5-488E-9939-47356EF3FDEE}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.) FirewallRules: [TCP Query User{3A7AD783-348D-4BB1-91FE-27964B34BCCA}C:\users\eos\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\eos\appdata\local\amazon music\amazon music helper.exe Pas de fichier FirewallRules: [UDP Query User{E115B148-E2CB-40C3-8EF3-04F620B8EC8D}C:\users\eos\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\eos\appdata\local\amazon music\amazon music helper.exe Pas de fichier FirewallRules: [{19F576A0-6395-4754-9B2A-2A971A1F626C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{6B6FC255-6B0F-4A2A-A4AE-C566338610B3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{C9E3A5B8-544F-4785-9F08-E6BAC91B33B2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{A17D300C-9366-46F6-A962-04D33CCF33B2}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{721FAF16-51F3-4D6F-865C-F793363921B1}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.) FirewallRules: [{CAF14577-9BEA-4382-9FBF-9FF69F504D1D}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.) FirewallRules: [{32701B2A-B800-4FE5-A241-1C0A24F7D162}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.) FirewallRules: [{BBCDC23E-01E0-4959-A76B-55F51CBE6271}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Rosetta Stone Ltd -> Rosetta Stone Ltd.) FirewallRules: [TCP Query User{19F693AC-E109-41DD-980C-FF18E1C28BBF}C:\program files (x86)\dvdfab player 5\dvdfab player 5.exe] => (Allow) C:\program files (x86)\dvdfab player 5\dvdfab player 5.exe (DVDFab Software Inc. -> ) FirewallRules: [UDP Query User{D2F92595-C430-4248-85E9-1CB0527E6C6A}C:\program files (x86)\dvdfab player 5\dvdfab player 5.exe] => (Allow) C:\program files (x86)\dvdfab player 5\dvdfab player 5.exe (DVDFab Software Inc. -> ) FirewallRules: [{0E75AB2C-E963-40C8-8A77-464881FD2971}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{66F5D787-07C8-4DB0-89BD-6CBE47A5A7CE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8800B453-60CC-439C-9588-242B4AE04ADF}] => (Allow) C:\Program Files (x86)\Opera\60.0.3255.95\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{F54E984F-FC49-46AC-A8E1-888FDCEB54D8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.) FirewallRules: [{3B998F42-EBB5-4B17-B4D2-DEA42D05BDFC}] => (Allow) C:\Program Files (x86)\Opera\60.0.3255.109\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{D7B4BEAA-D4C1-4EB6-8E20-DF4A850E9503}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{917B83D5-32A1-46B5-A01E-F5C1B7F7DF13}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{C2803842-5C19-47A0-95F5-7B7654A07E2E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{EC9D2BBE-B1F2-4D81-8D9F-BBC1A2DFB127}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B999AF6C-CC54-492F-B821-348DA37FE5C6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{BA315FF6-0E92-42B7-90C2-D94D1A4FC676}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{43965062-20B4-40F7-B9FE-378041B38EC6}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{524AA90E-1B65-44DC-9A40-BB7B2D1E9634}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.) ==================== Points de restauration ========================= 26-05-2019 17:32:31 ladygaga 01-06-2019 08:35:52 Installed CSR Harmony Wireless Software Stack. 01-06-2019 22:39:40 Removed Sawbuck ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: {4d36e974-e325-11ce-bfc1-08002be10318} Manufacturer: BitDefender LLC Service: Problem: : Reinstall the drivers for this device. (Code 18) Resolution: The drivers for this device must be reinstalled. Click "Update Driver", which starts the Hardware Update wizard. Alternately, uninstall the driver, and then click "Scan for hardware changes" to reload the drivers. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/01/2019 10:39:26 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:29:59 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:25:57 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:24:19 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:23:09 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:21:05 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:18:55 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (06/01/2019 10:12:18 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Erreurs système: ============= Error: (06/01/2019 10:35:56 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 10:35:56 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 10:26:14 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 10:00:15 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 10:00:14 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 09:42:57 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 09:42:57 PM) (Source: DCOM) (EventID: 10016) (User: EOS) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID EOS\EOS de l’utilisateur (S-1-5-21-2881597236-3550711179-1912384996-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/01/2019 09:19:23 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: =================================== Date: 2019-05-18 22:45:25.752 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\EOS\AppData\Local\Temp\Rar$DRa6260.32572\Hide.All.IP.2019.04.14\Loader_HideAllIP\Loader_HideAllIP.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la signature : AV: 1.293.1889.0, AS: 1.293.1889.0, NIS: 1.293.1889.0 Version du moteur : AM: 1.1.15900.4, NIS: 1.1.15900.4 Date: 2019-05-16 19:10:05.481 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {268C7645-0C7B-4525-A0F0-4FFAA5FCBCA9} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-05-16 19:00:27.709 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {F3A829DB-520E-480E-8691-9DB5E81F7C0C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-05-16 18:50:33.343 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {0DC9EA33-2F11-4D26-823E-48E99BC96E9B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-05-16 18:44:42.482 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {8F2B6670-3B4B-4D4C-A2BD-696E9C9E8D2E} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système CodeIntegrity: =================================== Date: 2019-06-01 22:46:35.103 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-06-01 22:46:35.101 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-06-01 22:41:33.582 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-06-01 22:41:33.579 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2019-06-01 22:34:02.219 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-06-01 22:34:02.217 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-06-01 22:34:01.577 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-06-01 22:34:01.575 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. P11-A4 03/21/2014 Motherboard: Packard Bell imedia L4880 Processeur: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz Pourcentage de mémoire utilisée: 53% Mémoire physique - RAM - totale: 8131.34 MB Mémoire physique - RAM - disponible: 3771.2 MB Mémoire virtuelle totale: 9262.57 MB Mémoire virtuelle disponible: 4579.95 MB ==================== Lecteurs ================================ Drive c: (Packard Bell) (Fixed) (Total:457.35 GB) (Free:171.04 GB) NTFS Drive d: (DATA) (Fixed) (Total:457.35 GB) (Free:457.2 GB) NTFS Drive e: (CSR Harmony) (CDROM) (Total:0.4 GB) (Free:0 GB) CDFS \\?\Volume{a9501b02-b56d-4295-8ea3-c019e85fc011}\ (Recovery) (Fixed) (Total:0.59 GB) (Free:0.14 GB) NTFS \\?\Volume{db5bcc53-6b69-4481-8db5-c2ec3da1f80e}\ (Push Button Reset) (Fixed) (Total:15.8 GB) (Free:1.37 GB) NTFS \\?\Volume{e7f8887a-6e7a-4269-a79a-7f3c2955a06e}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 9EF6AD9A) Partition: GPT. ==================== Fin de Addition.txt ============================