Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:04-09-2015
Exécuté par Gate10000 (2015-09-05 08:22:34)
Exécuté depuis C:\Users\Gate10000\Downloads
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2838338355-3909933524-1641243125-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2838338355-3909933524-1641243125-503 - Limited - Disabled)
Gate10000 (S-1-5-21-2838338355-3909933524-1641243125-1000 - Administrator - Enabled) => C:\Users\Gate10000
HomeGroupUser$ (S-1-5-21-2838338355-3909933524-1641243125-1008 - Limited - Enabled)
Invité (S-1-5-21-2838338355-3909933524-1641243125-501 - Limited - Disabled)
killbow (S-1-5-21-2838338355-3909933524-1641243125-1006 - Administrator - Enabled) => C:\Users\killbow
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
Aiseesoft Blu-ray Player 6.2.22 (HKLM-x32\...\{3E1A13C3-E458-4995-BEA6-4B9BE279D502}_is1) (Version: 6.2.22 - Aiseesoft Studio)
Aiseesoft Blu-ray Player 6.2.22 (HKLM-x32\...\Aiseesoft Blu-ray Player 6.2.22) (Version: 6.2.22 - Aiseesoft Studio)
Andy OS (HKLM-x32\...\Andy OS) (Version: 0.43 - Andy OS, Inc)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
BlueStacks App Player (HKLM-x32\...\{CCFDC6A9-4455-4117-BB1F-5FC580349DDB}) (Version: 1.1.8.162 - BlueStack Systems, Inc.)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
ConvertXtoDVD 4.1.2.336 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.2.336 - )
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.4704.58 - CyberLink Corp.)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.1.0.0187 - Disc Soft Ltd)
Détection de l'application Winamp (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Dropbox (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.37.2 - HTC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
JunkCleaner (HKLM-x32\...\{98982EA7-895F-41EB-B5C4-816284A1B40B}) (Version: 1.0.0 - Pandaje Group)
K-Lite Mega Codec Pack 10.0.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - )
Logitech - Assistant pour jeux vidéo 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2e7a9943-de7b-4030-8f40-63502f679ace}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Minion (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mises à jour NVIDIA 2.5.13.6 (Version: 2.5.13.6 - NVIDIA Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 fr)) (Version: 39.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA GeForce Experience 2.5.13.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.13.6 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Pilote graphique 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
Panneau de configuration NVIDIA 355.60 (Version: 355.60 - NVIDIA Corporation) Hidden
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Scrabble™ Interactive 2009 Edition (HKLM-x32\...\Scrabble™ Interactive 2009 Edition_is1) (Version: - )
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.13.6 - NVIDIA Corporation) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.22298 - TeamViewer)
UltraISO Premium V9.6 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO CopyToDVD 4 (HKLM-x32\...\{870F1750-BA89-11DA-A94D-0800200C9A66}_is1) (Version: 4.3.1.11 - VSO Software)
Winamp (HKLM-x32\...\Winamp) (Version: 5.601 - Nullsoft, Inc)
Windroy version 0.5.5 (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 0.5.5 - Windroy, Inc.)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
Youtube Downloader version 2.0.0 (HKLM-x32\...\{B3E84B4A-ACDB-4B40-BA8A-5AD2675B8735}_is1) (Version: 2.0.0 - Mintra)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
==================== Points de restauration =========================
05-09-2015 07:58:53 Restore Point Created by FRST
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-13 22:34 - 2015-09-05 07:58 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {0D464BB2-B24D-4844-BA11-56C0C7D1FFC0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {13E9FB8F-2B46-4E96-B2BD-63CE126AD67C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {156F78C3-6E4F-4E58-8BC7-C90A5B6FE51E} - System32\Tasks\{AF4E559C-8781-4947-AE51-E2759B7125B4} => pcalua.exe -a C:\Users\Gate10000\AppData\Local\Temp\7zSBB4E.tmp\MicroInstallerNative.exe -d C:\Users\GATE10~1\AppData\Local\Temp\7zSBB4E.tmp
Task: {184DE283-42F6-4E71-ADF3-CDF99B647350} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {21BA83EE-D48F-436D-83AC-33257D5099F0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {358296E9-1956-420C-A2B3-529879E58BFD} - \{2075D6A1-99AD-4ECE-A6E8-8BFCF80263E2} -> Pas de fichier <==== ATTENTION
Task: {367C5168-7F8D-4A57-A1DF-504740050A9F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {3DBBCE3D-F2AD-483C-B02B-51AA9E47E9AC} - \{7DF4EE8A-B978-4838-A9DB-D9D9341F5CFD} -> Pas de fichier <==== ATTENTION
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {404C837D-B284-4464-8BB1-6D8E8780DD74} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {40ED3EF7-7B2D-413A-B471-9C6DA68D21F7} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4B93A4DA-6B91-4326-8A2F-7A71C1A6F39B} - \{F42C5338-66F3-40B1-9B2E-1C10CAE2E87A} -> Pas de fichier <==== ATTENTION
Task: {5209557B-7E37-4CAA-86C2-0C8A7B936FF2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {59D57C8D-432E-417A-BABD-81A45DD0CFEA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {5C37F1D4-05AD-4E22-BEB4-61E25555D646} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6549CC8D-C680-4611-85D2-47864769CE7F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {686E32C4-FAE2-4A30-B14F-2B52F40FE6F8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {688333E1-05F4-4978-BE90-CEBD9D1A8503} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {6C0C099D-68EA-43C8-9BE4-4118FB6AE3F0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {713F4984-877C-47D7-B74B-CB18A94C104B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {7697D45D-1467-4050-B1E4-E498708E0F73} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {7C42B762-6BD9-4EF5-B9FE-8DD29A8124E2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {7F061297-1B18-4BB0-BEA5-09B099E11A3F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {834EF5AA-9C78-4B09-B75F-73EB750D393D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-05] (Microsoft Corporation)
Task: {8ED04399-7811-4BC4-A09F-2601985DC418} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {951FC522-3F46-4C71-B2A4-2ABE16D2FAA5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {965F83BF-613A-4669-9DD4-27B3AEED7E95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {97518BCE-C708-4EB6-BA56-4F8CBDA96DE9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {9F16802C-31D5-464E-BC4B-1DFD3F6D5479} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AB8B32C4-8FA4-492A-962C-6A4D18E7BF54} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {ACBC7138-8FD3-4086-A32B-93BDCD2B0AFF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BC97CD9C-92EE-4D9C-BA66-9F6C402643B5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {BD98F1F1-CCA7-4BD9-B2DA-2558AC558834} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CC1FCD8A-B452-415E-8C5B-0DB2F380D16E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {CC4EB057-C8EF-4D4A-A8D6-C28049F03717} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {D02A017B-7255-46C4-B1E3-6E2FCEC7B631} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {DC0C3A52-FE85-4CD4-8372-0B98183A499D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {DE32502B-8B8C-4B28-BA63-130567791991} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {F42CBD71-55E3-44CF-A0FC-601C0C873590} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {F9C0942E-B747-4A69-87E5-E8C6B20FF796} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {FD8C4951-86AD-46B9-9867-B6F27F64E812} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Modules chargés (Avec liste blanche) ==============
2015-08-05 23:57 - 2015-08-05 23:57 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-06 05:01 - 2015-08-07 00:27 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-18 20:29 - 2015-08-11 05:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-06-23 15:11 - 2015-06-23 15:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2015-08-29 21:16 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 21:16 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-18 20:29 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 12:28 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-18 20:29 - 2015-08-11 04:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-18 20:29 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-12-18 16:10 - 2014-12-18 16:10 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2015-08-09 11:48 - 2015-08-09 11:38 - 00209920 _____ () C:\ProgramData\DataFile\DV.exe
2014-05-27 12:32 - 2014-05-27 12:32 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-27 12:32 - 2014-05-27 12:32 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-27 12:34 - 2014-05-27 12:34 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-05-27 12:35 - 2014-05-27 12:35 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-03-30 18:09 - 2015-08-17 19:31 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-07-12 23:12 - 2015-07-12 23:12 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-06-15 15:14 - 2014-11-04 05:38 - 00867080 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\common\UNO\UNO.dll
2015-06-15 15:14 - 2013-12-10 03:39 - 00074240 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ctypes.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00285184 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_hashlib.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00040960 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_socket.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00721920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ssl.pyd
2013-10-15 22:42 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
==================== EXE Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\123topsearch.com -> www.123topsearch.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\125sms.co.uk -> www.125sms.co.uk
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\125sms.com -> www.125sms.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\12w.net -> download-video.12w.net
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\132.com -> www.132.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1337-crew.to -> www.1337-crew.to
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1337crew.info -> www.1337crew.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\136136.net -> down.136136.net
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\150freesms.de -> www.150freesms.de
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\163ns.com -> ert0003.e76.163ns.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\17-plus.com -> 17-plus.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\171203.com -> 171203.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\17concepts.info -> www.17concepts.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1800searchonline.com -> www.1800searchonline.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\180searchassistant.com -> www.180searchassistant.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\180solutions.com -> bis.180solutions.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1987324.com -> www.1987324.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1gb.ru -> people.1gb.ru
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1ghporn.info -> www.1ghporn.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1importantiamreal.com -> www.1importantiamreal.com
Il y a 7844 plus de sites sensibles.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
MSCONFIG\startupfolder: C:^Users^Gate10000^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^superoptimizersetup.lnk => C:\Windows\pss\superoptimizersetup.lnk.Startup
MSCONFIG\startupreg: DAEMON Tools Ultra Agent => "C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe" -autorun
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "C:^Users^Gate10000^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^superoptimizersetup.lnk"
HKLM\...\StartupApproved\Run32: => "USB3MON"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [{0A77934F-698F-41CE-9CFA-7BF2DDBF53D6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D6FAEFF4-388B-4A4B-B808-7DAFB3096B20}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0BBD1FFA-2546-43FD-A496-03640CC0EEEA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{651F735F-C885-4C2D-9CF7-A2D72E92D7A7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{59C28EE7-0AC6-4443-A06D-AC2EAAD0D24A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{12914A2A-950A-4DC6-B8AF-5EE2D5ABCFA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8CA154BF-4D34-4B3C-99B9-AF86FF246AF5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{502E5A80-520E-4839-8E84-082AB7ABDEF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DC542D2C-08FE-4FFC-A3D6-0EA6BD6C72ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BF4E705E-FD9F-46AC-B330-D3D697649B51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3F16C4EE-67C7-43D0-956E-9A15AA6454D0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{7AF6FD51-BD7A-456C-8C85-CE9A14A34371}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{844ACE36-3DE7-417C-BC2C-24DCD2B7A0BC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{344AD357-2244-4190-AEDE-414659DC8F80}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{A61B6B09-D794-4A19-AEFB-36988E089B81}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{09F7CD8F-1135-4BE0-8406-F9B302708A21}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC22BFAA-A13C-4132-88AA-551DF72942BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7BF63928-B037-46E8-89EA-35FE7CD82CBA}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{66786A6F-EA5D-4A90-BE6C-D535729DEDD8}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{BC237E3A-B88D-43FB-8D3E-11934E071E26}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{54ADCDCE-987C-4FF0-9ECC-4D88128A093D}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{0F3B907F-FC91-4E6A-AC55-B315C2071A1E}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{2CD345F8-031D-4682-8595-B8F80AE28370}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{573DD45D-4507-46FB-AAE2-1A84DC570B41}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{420FD9D8-4C4C-4CAC-930E-CD22EAE21C45}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{1B097A24-917A-4D2B-9768-37F3F07A3703}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [TCP Query User{5EE5F7F5-006C-4DD9-9620-1792C9B6F20F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{F2C31A43-F159-4E45-9A1A-C868E733B0E3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{5197132C-6865-4129-B2C9-CE0BB1F6CD47}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{653569FD-4BBD-4FDC-AA1A-729CD690913A}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{024DDBCA-9510-4CB9-801B-CC647A6B54EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D16C8E02-3671-436C-BB16-3C61E65527A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B484243F-74D3-4F81-A35F-783ADBDEF693}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C8BCA472-A1C4-470B-8F4B-6427309BEBB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C26AA899-9B0E-4070-B088-6EF2FBE69E05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{58B17B8E-9D9D-4602-983F-BC2DBA662C2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9AB4F3F0-5151-4D3A-8986-CE3B3DF7FB8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{4676F833-D72D-47F4-B56A-F58BB060881B}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{F9196F6F-F0E1-475E-84E0-2D9FCCB76E4A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{473FEFA6-62FF-4C6C-A3A4-554C0F669F64}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{987FC0B6-8302-42EB-B559-F304872ACB5C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8620B9CA-3FAB-4CB2-AE18-FE532D1C4F3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{CCF69F24-D266-49B2-86A4-87B8CB12E861}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EC1F216E-FB6A-40F8-85FF-7DB06F7103C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{752E5637-E8FD-41BB-AC2E-E1EFC8B45C75}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{71C05796-F343-472E-B185-4586F3D0F86B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8A6771B8-23E2-4D22-8FB6-76938B7D3285}] => (Allow) D:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe
FirewallRules: [{A7BD8CCF-4AEA-4E6E-BC48-E54A7A98B6AF}] => (Allow) D:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe
FirewallRules: [TCP Query User{7E5A288B-C578-402D-9BC8-85344D63454D}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{9666C8DB-6B88-44F0-96EC-FBEF4431F874}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{14995B56-E9F9-454A-AB8A-60C49FAE36E0}] => (Allow) C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{77DB7CED-913B-457F-9B49-069E4AC3435F}] => (Allow) C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FFF549CA-EE56-477F-AC74-1809317B9FB4}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{7F04EA25-B411-442D-8166-39ACBE913742}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{B24D7171-1580-4FCA-B3E3-C9607FA78971}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{BA347C83-89AF-4A5B-BD83-8DF6511C3E33}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{712A07E5-EB46-4C19-B8AB-4FFD6A4C88DD}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
DomainProfile\AuthorizedApplications: [d:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe] => Enabled:ScrabblePCR
StandardProfile\AuthorizedApplications: [d:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe] => Enabled:ScrabblePCR
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (09/05/2015 07:58:53 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {c8aff2fa-f71c-49e2-a7ca-ab83746c4b0e}
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Erreurs système:
=============
Error: (09/05/2015 08:21:43 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:20:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Adaptateur d'écouteur Net.Tcp dépend du service Service de partage de ports Net.Tcp qui n’a pas pu démarrer en raison de l’erreur :
%%1058
Error: (09/05/2015 08:20:11 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:19:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 08:06:01 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:01:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Adaptateur d'écouteur Net.Tcp dépend du service Service de partage de ports Net.Tcp qui n’a pas pu démarrer en raison de l’erreur :
%%1058
Error: (09/05/2015 08:01:58 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:01:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 08:00:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 07:59:28 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Microsoft Office:
=========================
CodeIntegrity:
===================================
Date: 2015-09-05 07:41:54.518
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 07:41:54.512
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-04 20:30:56.133
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-04 20:30:56.127
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-03 07:09:48.787
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.782
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.658
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.652
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-02 19:21:55.970
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-02 19:21:55.964
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 28%
Mémoire physique - RAM - totale: 8136.76 MB
Mémoire physique - RAM - disponible: 5818.49 MB
Mémoire virtuelle totale: 16328.76 MB
Mémoire virtuelle disponible: 13847.59 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:223.13 GB) (Free:57.22 GB) NTFS
Drive d: () (Fixed) (Total:698.54 GB) (Free:253.27 GB) NTFS
Drive e: (My DVD) (CDROM) (Total:2.37 GB) (Free:0 GB) UDF
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: FA020B5C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: A89088F6)
Partition 1: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fin de Addition.txt ============================
Exécuté par Gate10000 (2015-09-05 08:22:34)
Exécuté depuis C:\Users\Gate10000\Downloads
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2838338355-3909933524-1641243125-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2838338355-3909933524-1641243125-503 - Limited - Disabled)
Gate10000 (S-1-5-21-2838338355-3909933524-1641243125-1000 - Administrator - Enabled) => C:\Users\Gate10000
HomeGroupUser$ (S-1-5-21-2838338355-3909933524-1641243125-1008 - Limited - Enabled)
Invité (S-1-5-21-2838338355-3909933524-1641243125-501 - Limited - Disabled)
killbow (S-1-5-21-2838338355-3909933524-1641243125-1006 - Administrator - Enabled) => C:\Users\killbow
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.2.152 - Adobe Systems, Inc.)
Aiseesoft Blu-ray Player 6.2.22 (HKLM-x32\...\{3E1A13C3-E458-4995-BEA6-4B9BE279D502}_is1) (Version: 6.2.22 - Aiseesoft Studio)
Aiseesoft Blu-ray Player 6.2.22 (HKLM-x32\...\Aiseesoft Blu-ray Player 6.2.22) (Version: 6.2.22 - Aiseesoft Studio)
Andy OS (HKLM-x32\...\Andy OS) (Version: 0.43 - Andy OS, Inc)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
BlueStacks App Player (HKLM-x32\...\{CCFDC6A9-4455-4117-BB1F-5FC580349DDB}) (Version: 1.1.8.162 - BlueStack Systems, Inc.)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
ConvertXtoDVD 4.1.2.336 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.2.336 - )
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.4704.58 - CyberLink Corp.)
DAEMON Tools Ultra (HKLM-x32\...\DAEMON Tools Ultra) (Version: 2.1.0.0187 - Disc Soft Ltd)
Détection de l'application Winamp (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Dropbox (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.14.0.001 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{231D0C79-98A6-4693-A366-36DE7D7346EC}) (Version: 3.1.37.2 - HTC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.9 - HTC)
JunkCleaner (HKLM-x32\...\{98982EA7-895F-41EB-B5C4-816284A1B40B}) (Version: 1.0.0 - Pandaje Group)
K-Lite Mega Codec Pack 10.0.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.0.5 - )
Logitech - Assistant pour jeux vidéo 8.55 (HKLM\...\Logitech Gaming Software) (Version: 8.55.137 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2e7a9943-de7b-4030-8f40-63502f679ace}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Minion (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\{Minion}}_is1) (Version: 2.0 - ZAM Network LLC)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mises à jour NVIDIA 2.5.13.6 (Version: 2.5.13.6 - NVIDIA Corporation) Hidden
Mozilla Firefox 39.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 39.0.3 (x86 fr)) (Version: 39.0.3 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA GeForce Experience 2.5.13.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.13.6 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.60 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Pilote graphique 355.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.60 - NVIDIA Corporation)
Panneau de configuration NVIDIA 355.60 (Version: 355.60 - NVIDIA Corporation) Hidden
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26914 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Scrabble™ Interactive 2009 Edition (HKLM-x32\...\Scrabble™ Interactive 2009 Edition_is1) (Version: - )
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.13.6 - NVIDIA Corporation) Hidden
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.22298 - TeamViewer)
UltraISO Premium V9.6 (HKLM-x32\...\UltraISO_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO CopyToDVD 4 (HKLM-x32\...\{870F1750-BA89-11DA-A94D-0800200C9A66}_is1) (Version: 4.3.1.11 - VSO Software)
Winamp (HKLM-x32\...\Winamp) (Version: 5.601 - Nullsoft, Inc)
Windroy version 0.5.5 (HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 0.5.5 - Windroy, Inc.)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
Youtube Downloader version 2.0.0 (HKLM-x32\...\{B3E84B4A-ACDB-4B40-BA8A-5AD2675B8735}_is1) (Version: 2.0.0 - Mintra)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Gate10000\AppData\Local\Microsoft\OneDrive\17.3.5930.0814\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
==================== Points de restauration =========================
05-09-2015 07:58:53 Restore Point Created by FRST
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2009-07-13 22:34 - 2015-09-05 07:58 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00EEBA9C-F9EF-4272-B793-C830FBADD359} - System32\Tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup => C:\Windows\system32\dstokenclean.exe [2015-07-10] (Microsoft Corporation)
Task: {0CCA7916-2916-4F12-BD32-1E3BE31E1269} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join => C:\Windows\System32\dsregcmd.exe [2015-07-10] (Microsoft Corporation)
Task: {0D464BB2-B24D-4844-BA11-56C0C7D1FFC0} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {13E9FB8F-2B46-4E96-B2BD-63CE126AD67C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {156F78C3-6E4F-4E58-8BC7-C90A5B6FE51E} - System32\Tasks\{AF4E559C-8781-4947-AE51-E2759B7125B4} => pcalua.exe -a C:\Users\Gate10000\AppData\Local\Temp\7zSBB4E.tmp\MicroInstallerNative.exe -d C:\Users\GATE10~1\AppData\Local\Temp\7zSBB4E.tmp
Task: {184DE283-42F6-4E71-ADF3-CDF99B647350} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {19865544-CE08-40BE-8B8C-87C47681433D} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sihboot => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {21BA83EE-D48F-436D-83AC-33257D5099F0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {358296E9-1956-420C-A2B3-529879E58BFD} - \{2075D6A1-99AD-4ECE-A6E8-8BFCF80263E2} -> Pas de fichier <==== ATTENTION
Task: {367C5168-7F8D-4A57-A1DF-504740050A9F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {3DBBCE3D-F2AD-483C-B02B-51AA9E47E9AC} - \{7DF4EE8A-B978-4838-A9DB-D9D9341F5CFD} -> Pas de fichier <==== ATTENTION
Task: {3F6E048D-6404-433B-8F5F-CFF4D89BF89E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => Rundll32.exe generaltel.dll,RunTelemetryW
Task: {404C837D-B284-4464-8BB1-6D8E8780DD74} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {40ED3EF7-7B2D-413A-B471-9C6DA68D21F7} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {41160EA0-208B-4C3E-B4DB-805BBABC6B93} - System32\Tasks\Microsoft\Windows\Feedback\Siuf\DmClient => C:\Windows\system32\dmclient.exe [2015-07-10] (Microsoft Corporation)
Task: {4B93A4DA-6B91-4326-8A2F-7A71C1A6F39B} - \{F42C5338-66F3-40B1-9B2E-1C10CAE2E87A} -> Pas de fichier <==== ATTENTION
Task: {5209557B-7E37-4CAA-86C2-0C8A7B936FF2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {59D57C8D-432E-417A-BABD-81A45DD0CFEA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {5C37F1D4-05AD-4E22-BEB4-61E25555D646} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {6549CC8D-C680-4611-85D2-47864769CE7F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {686E32C4-FAE2-4A30-B14F-2B52F40FE6F8} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {688333E1-05F4-4978-BE90-CEBD9D1A8503} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {6C0C099D-68EA-43C8-9BE4-4118FB6AE3F0} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {713F4984-877C-47D7-B74B-CB18A94C104B} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {73551810-E5F4-433E-9494-0D00B55C855E} - System32\Tasks\Microsoft\Windows\Maps\MapsToastTask
Task: {7697D45D-1467-4050-B1E4-E498708E0F73} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {7C42B762-6BD9-4EF5-B9FE-8DD29A8124E2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {7F061297-1B18-4BB0-BEA5-09B099E11A3F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {834EF5AA-9C78-4B09-B75F-73EB750D393D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {8DF84CB3-D8E0-4307-A35B-CA74E21786DB} - System32\Tasks\Microsoft\Windows\Clip\License Validation => C:\Windows\system32\ClipUp.exe [2015-08-05] (Microsoft Corporation)
Task: {8ED04399-7811-4BC4-A09F-2601985DC418} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {951FC522-3F46-4C71-B2A4-2ABE16D2FAA5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {965F83BF-613A-4669-9DD4-27B3AEED7E95} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {97518BCE-C708-4EB6-BA56-4F8CBDA96DE9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {9F16802C-31D5-464E-BC4B-1DFD3F6D5479} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {A5B6CD85-1B57-49B9-BA80-5D5D65F02826} - System32\Tasks\Microsoft\Windows\AppID\EDP Policy Manager
Task: {AB8B32C4-8FA4-492A-962C-6A4D18E7BF54} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-14] (Adobe Systems Incorporated)
Task: {ACBC7138-8FD3-4086-A32B-93BDCD2B0AFF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {BC97CD9C-92EE-4D9C-BA66-9F6C402643B5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {BD98F1F1-CCA7-4BD9-B2DA-2558AC558834} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {C56AFFD3-06B8-4A16-AF7E-F7A6EB3FAE9E} - System32\Tasks\Microsoft\Windows\TPM\Tpm-HASCertRetr
Task: {C5EE2EA2-5312-4D1F-B9D0-41B18DF31B78} - System32\Tasks\Microsoft\Windows\WindowsUpdate\sih => C:\Windows\System32\sihclient.exe [2015-07-10] (Microsoft Corporation)
Task: {C7A236B2-12E1-46DC-9501-3B1B0209CC09} - System32\Tasks\Microsoft\Windows\Location\WindowsActionDialog => C:\Windows\System32\WindowsActionDialog.exe [2015-07-10] (Microsoft Corporation)
Task: {CC1FCD8A-B452-415E-8C5B-0DB2F380D16E} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {CC4EB057-C8EF-4D4A-A8D6-C28049F03717} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {D02A017B-7255-46C4-B1E3-6E2FCEC7B631} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {DC0C3A52-FE85-4CD4-8372-0B98183A499D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {DE32502B-8B8C-4B28-BA63-130567791991} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {F42CBD71-55E3-44CF-A0FC-601C0C873590} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {F9C0942E-B747-4A69-87E5-E8C6B20FF796} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {FD8C4951-86AD-46B9-9867-B6F27F64E812} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Modules chargés (Avec liste blanche) ==============
2015-08-05 23:57 - 2015-08-05 23:57 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-08-06 05:01 - 2015-08-07 00:27 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-18 20:29 - 2015-08-11 05:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-06-23 15:11 - 2015-06-23 15:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2013-10-17 15:27 - 2013-10-17 15:27 - 00166912 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2015-08-29 21:16 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-29 21:16 - 2015-08-18 03:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 06:59 - 2015-07-10 06:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-18 20:29 - 2015-08-02 21:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 07:00 - 2015-07-10 12:28 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-18 20:29 - 2015-08-11 04:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-18 20:29 - 2015-08-02 21:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-12-18 16:10 - 2014-12-18 16:10 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2015-08-09 11:48 - 2015-08-09 11:38 - 00209920 _____ () C:\ProgramData\DataFile\DV.exe
2014-05-27 12:32 - 2014-05-27 12:32 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-12-18 16:08 - 2014-12-18 16:08 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00059752 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-05-27 12:32 - 2014-05-27 12:32 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-05-27 12:33 - 2014-05-27 12:33 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-05-27 12:34 - 2014-05-27 12:34 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-05-27 12:35 - 2014-05-27 12:35 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2015-03-30 18:09 - 2015-08-17 19:31 - 00011896 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-07-12 23:12 - 2015-07-12 23:12 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-06-15 15:14 - 2014-11-04 05:38 - 00867080 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\common\UNO\UNO.dll
2015-06-15 15:14 - 2013-12-10 03:39 - 00074240 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ctypes.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00285184 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_hashlib.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00040960 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_socket.pyd
2015-06-15 15:14 - 2013-12-10 03:39 - 00721920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD14\Common\Koan\_ssl.pyd
2013-10-15 22:42 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ahcache.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CoreMessagingRegistrar => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\StateRepository => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TileDataModelSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UserManager => ""="Service"
==================== EXE Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\123topsearch.com -> www.123topsearch.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\125sms.co.uk -> www.125sms.co.uk
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\125sms.com -> www.125sms.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\12w.net -> download-video.12w.net
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\132.com -> www.132.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1337-crew.to -> www.1337-crew.to
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1337crew.info -> www.1337crew.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\136136.net -> down.136136.net
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\150freesms.de -> www.150freesms.de
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\163ns.com -> ert0003.e76.163ns.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\17-plus.com -> 17-plus.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\171203.com -> 171203.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\17concepts.info -> www.17concepts.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1800searchonline.com -> www.1800searchonline.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\180searchassistant.com -> www.180searchassistant.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\180solutions.com -> bis.180solutions.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1987324.com -> www.1987324.com
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1gb.ru -> people.1gb.ru
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1ghporn.info -> www.1ghporn.info
IE restricted site: HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\...\1importantiamreal.com -> www.1importantiamreal.com
Il y a 7844 plus de sites sensibles.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2838338355-3909933524-1641243125-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
MSCONFIG\startupfolder: C:^Users^Gate10000^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^superoptimizersetup.lnk => C:\Windows\pss\superoptimizersetup.lnk.Startup
MSCONFIG\startupreg: DAEMON Tools Ultra Agent => "C:\Program Files (x86)\DAEMON Tools Ultra\DTAgent.exe" -autorun
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "C:^Users^Gate10000^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^superoptimizersetup.lnk"
HKLM\...\StartupApproved\Run32: => "USB3MON"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [{0A77934F-698F-41CE-9CFA-7BF2DDBF53D6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D6FAEFF4-388B-4A4B-B808-7DAFB3096B20}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0BBD1FFA-2546-43FD-A496-03640CC0EEEA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{651F735F-C885-4C2D-9CF7-A2D72E92D7A7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{59C28EE7-0AC6-4443-A06D-AC2EAAD0D24A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{12914A2A-950A-4DC6-B8AF-5EE2D5ABCFA9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8CA154BF-4D34-4B3C-99B9-AF86FF246AF5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{502E5A80-520E-4839-8E84-082AB7ABDEF9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DC542D2C-08FE-4FFC-A3D6-0EA6BD6C72ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BF4E705E-FD9F-46AC-B330-D3D697649B51}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{3F16C4EE-67C7-43D0-956E-9A15AA6454D0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{7AF6FD51-BD7A-456C-8C85-CE9A14A34371}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{844ACE36-3DE7-417C-BC2C-24DCD2B7A0BC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{344AD357-2244-4190-AEDE-414659DC8F80}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{A61B6B09-D794-4A19-AEFB-36988E089B81}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe
FirewallRules: [{09F7CD8F-1135-4BE0-8406-F9B302708A21}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC22BFAA-A13C-4132-88AA-551DF72942BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7BF63928-B037-46E8-89EA-35FE7CD82CBA}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{66786A6F-EA5D-4A90-BE6C-D535729DEDD8}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{BC237E3A-B88D-43FB-8D3E-11934E071E26}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{54ADCDCE-987C-4FF0-9ECC-4D88128A093D}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{0F3B907F-FC91-4E6A-AC55-B315C2071A1E}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{2CD345F8-031D-4682-8595-B8F80AE28370}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{573DD45D-4507-46FB-AAE2-1A84DC570B41}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{420FD9D8-4C4C-4CAC-930E-CD22EAE21C45}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{1B097A24-917A-4D2B-9768-37F3F07A3703}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [TCP Query User{5EE5F7F5-006C-4DD9-9620-1792C9B6F20F}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{F2C31A43-F159-4E45-9A1A-C868E733B0E3}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{5197132C-6865-4129-B2C9-CE0BB1F6CD47}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{653569FD-4BBD-4FDC-AA1A-729CD690913A}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{024DDBCA-9510-4CB9-801B-CC647A6B54EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D16C8E02-3671-436C-BB16-3C61E65527A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B484243F-74D3-4F81-A35F-783ADBDEF693}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C8BCA472-A1C4-470B-8F4B-6427309BEBB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{C26AA899-9B0E-4070-B088-6EF2FBE69E05}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{58B17B8E-9D9D-4602-983F-BC2DBA662C2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9AB4F3F0-5151-4D3A-8986-CE3B3DF7FB8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{4676F833-D72D-47F4-B56A-F58BB060881B}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{F9196F6F-F0E1-475E-84E0-2D9FCCB76E4A}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [{473FEFA6-62FF-4C6C-A3A4-554C0F669F64}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{987FC0B6-8302-42EB-B559-F304872ACB5C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8620B9CA-3FAB-4CB2-AE18-FE532D1C4F3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{CCF69F24-D266-49B2-86A4-87B8CB12E861}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EC1F216E-FB6A-40F8-85FF-7DB06F7103C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{752E5637-E8FD-41BB-AC2E-E1EFC8B45C75}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{71C05796-F343-472E-B185-4586F3D0F86B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8A6771B8-23E2-4D22-8FB6-76938B7D3285}] => (Allow) D:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe
FirewallRules: [{A7BD8CCF-4AEA-4E6E-BC48-E54A7A98B6AF}] => (Allow) D:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe
FirewallRules: [TCP Query User{7E5A288B-C578-402D-9BC8-85344D63454D}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [UDP Query User{9666C8DB-6B88-44F0-96EC-FBEF4431F874}C:\program files (x86)\guild wars 2\gw2.exe] => (Allow) C:\program files (x86)\guild wars 2\gw2.exe
FirewallRules: [{14995B56-E9F9-454A-AB8A-60C49FAE36E0}] => (Allow) C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{77DB7CED-913B-457F-9B49-069E4AC3435F}] => (Allow) C:\Users\Gate10000\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{FFF549CA-EE56-477F-AC74-1809317B9FB4}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{7F04EA25-B411-442D-8166-39ACBE913742}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{B24D7171-1580-4FCA-B3E3-C9607FA78971}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{BA347C83-89AF-4A5B-BD83-8DF6511C3E33}] => (Allow) C:\Program Files (x86)\Zenimax Online\The Elder Scrolls Online EU\game\client\eso.exe
FirewallRules: [{712A07E5-EB46-4C19-B8AB-4FFD6A4C88DD}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
DomainProfile\AuthorizedApplications: [d:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe] => Enabled:ScrabblePCR
StandardProfile\AuthorizedApplications: [d:\Program Files (x86)\Ubisoft\Scrabble2009\ScrabblePCR.exe] => Enabled:ScrabblePCR
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 08:07:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (09/05/2015 07:58:53 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {c8aff2fa-f71c-49e2-a7ca-ab83746c4b0e}
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 00C. Le premier DWORD de la section Data contient le code d’erreur Win32.
Error: (09/05/2015 07:58:05 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: AUTORITE NT)
Description: Impossible de lire les chaînes du compteur de performance défini pour l’ID de langue 009. Le premier DWORD de la section Data contient le code d’erreur Win32.
Erreurs système:
=============
Error: (09/05/2015 08:21:43 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:20:11 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Adaptateur d'écouteur Net.Tcp dépend du service Service de partage de ports Net.Tcp qui n’a pas pu démarrer en raison de l’erreur :
%%1058
Error: (09/05/2015 08:20:11 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:19:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 08:06:01 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:01:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Adaptateur d'écouteur Net.Tcp dépend du service Service de partage de ports Net.Tcp qui n’a pas pu démarrer en raison de l’erreur :
%%1058
Error: (09/05/2015 08:01:58 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (09/05/2015 08:01:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 08:00:59 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (09/05/2015 07:59:28 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056
Microsoft Office:
=========================
CodeIntegrity:
===================================
Date: 2015-09-05 07:41:54.518
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-05 07:41:54.512
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-04 20:30:56.133
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-04 20:30:56.127
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-03 07:09:48.787
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.782
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.658
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-03 07:09:48.652
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Gate10000\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-09-02 19:21:55.970
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-09-02 19:21:55.964
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\dnsapi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 28%
Mémoire physique - RAM - totale: 8136.76 MB
Mémoire physique - RAM - disponible: 5818.49 MB
Mémoire virtuelle totale: 16328.76 MB
Mémoire virtuelle disponible: 13847.59 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:223.13 GB) (Free:57.22 GB) NTFS
Drive d: () (Fixed) (Total:698.54 GB) (Free:253.27 GB) NTFS
Drive e: (My DVD) (CDROM) (Total:2.37 GB) (Free:0 GB) UDF
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: FA020B5C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: A89088F6)
Partition 1: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
==================== Fin de Addition.txt ============================