Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 25-06-2017 01
Exécuté par gregoire (27-06-2017 17:08:30)
Exécuté depuis C:\Users\gregoire\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-13 14:11:41)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-807348915-2669362852-2824625911-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-807348915-2669362852-2824625911-503 - Limited - Disabled)
gregoire (S-1-5-21-807348915-2669362852-2824625911-1001 - Administrator - Enabled) => C:\Users\gregoire
HomeGroupUser$ (S-1-5-21-807348915-2669362852-2824625911-1003 - Limited - Enabled)
Invité (S-1-5-21-807348915-2669362852-2824625911-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.3.183 - Adobe Systems, Inc.)
Ansel (Version: 372.70 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asus FaceID (HKLM-x32\...\{C4071085-DDF0-403F-90F9-27582FC22C9B}) (Version: 7.7.6.1 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.29 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0036 - ASUS)
AVS Video Editor 7.5.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.5.1.288 - Online Media Technologies Ltd.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 3.9.0.3 - Byte Technologies LLC) <==== ATTENTION
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG5400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5400_series) (Version: 1.01 - Canon Inc.)
Conquer Online 3.0 (HKLM-x32\...\{78B51FD5-DA3F-4B48-8F3F-4E4068F25D89}_is1) (Version: - TQ Digital Entertainment Inc.)
Curse (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0232 - Disc Soft Ltd)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dofus (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\2744A393-554C-4E35-A24F-DEF0392B4484-2) (Version: - Ankama)
DriversCloud.com (64 bits) (HKLM\...\{0FFDC804-21EE-4283-ADBA-6A1958EB9525}) (Version: 8.0.3.1 - Cybelsoft)
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might & Magic III - HD Edition (HKLM\...\Steam App 297000) (Version: - DotEmu)
iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft OneDrive (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 2.11.3.6 (Version: 2.11.3.6 - NVIDIA Corporation) Hidden
Mozilla Firefox 54.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 fr)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.0.6368 - Mozilla)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
OSC Third Party Libraries (Version: 1.1 - NVIDIA Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Package de pilotes Windows - Apple Inc. (AppleUSBEthernet) Net (02/01/2008 3.10.3.10) (HKLM\...\D53CBF2C12DF51DA5E9C1A9DA97FF0DCA0C524C5) (Version: 02/01/2008 3.10.3.10 - Apple Inc.)
Panneau de configuration NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden
PixelMaster Video HDR (HKLM\...\{65302154-AAF6-4020-A070-76CAA9CEC8D3}) (Version: 1.1.23 - ASUS)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21255 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7329 - Realtek Semiconductor Corp.)
ROCCAT Swarm (HKLM-x32\...\InstallShield_{E7E52DE1-B0AD-4527-8E65-275EC03A9530}) (Version: 1.45 - ROCCAT GmbH)
ROCCAT Swarm (x32 Version: 1.45 - ROCCAT GmbH) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.6 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Slayers Online (HKLM-x32\...\Slayers Online_is1) (Version: - )
Smart Technology Programming Software 7.0.45.2 (HKLM\...\{828CE472-5B59-490C-B161-F7CAFEE7F4C0}) (Version: 7.0.45.2 - Mad Catz)
Space Hulk: Deathwing (HKLM\...\Steam App 298900) (Version: - Streum On Studio)
Spotify (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\Spotify) (Version: 1.0.57.474.gca9c9538 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED)
Tree of Savior (English Ver.) (HKLM\...\Steam App 372000) (Version: - IMCGAMES Co.,Ltd.)
Ultima PSOBB (HKLM-x32\...\{AE3C4770-4E95-48B3-8479-633990592578}_is1) (Version: 4.1 - )
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
WAKFU (HKLM-x32\...\Steam App 215080) (Version: - Ankama Studio)
Wakfu (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinThruster (HKLM-x32\...\WinThruster_is1) (Version: 1.79 - solvusoft Corporation) <==== ATTENTION
Wooxy version 1.5.0.2 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.5.0.2 - Chewy)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yahoo! Powered (HKLM-x32\...\{34A9DC69-6429-0DE9-D5A9-7D690529AEE9}) (Version: - ) <==== ATTENTION
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02B4C45D-407A-4607-B218-E7825264B968} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: {05F10357-AF50-451A-B276-61044D718013} - System32\Tasks\{0D4C5778-34DC-41E2-BC03-E5708DABE2B1} => pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {0925F014-1B8D-4445-BAC6-D16FCC9D2193} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {168A55B6-3908-43F1-A0D6-20DC5A2A773C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {1CA421B2-E482-4F48-B240-D90F2DF0EF5C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {1CAC14F6-2D86-4EE9-B005-05AC0BB91AB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {2314E87A-148E-42FB-8C5C-893E830F9A85} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {26AF4D6E-66E0-4FB5-A4AF-B7352B0C103C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-08-26] (Realtek Semiconductor)
Task: {29AE3564-56B4-40B0-8EBA-0A5ABA9C167E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {30A27CAA-A6B9-4236-BCA6-CF0C40193F1E} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC) <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.)
Task: {439DDE13-02EF-447F-8F83-395CD293F164} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {4A18455A-DCAA-442F-A58D-37622EEC5E49} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {4FDC0675-4409-4FCF-9A17-F1BB24F8156F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {5574841E-D1CE-4261-B035-45F8F96077FA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {5A124F0B-ABD4-42AF-9EC0-69AF4C883D14} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-08-14] (Realtek Semiconductor)
Task: {5DAFBD14-9AC6-4CB5-86F1-D59D6340A62F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {68236544-4BAC-4F22-946D-88C5AF815137} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\gregoire\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {71E32526-1EC7-4828-BE1F-09D2D598DC94} - System32\Tasks\{2340758D-7B3D-4BCE-BDA7-162EBEF727E9} => pcalua.exe -a C:\Users\gregoire\Downloads\bootcamp5.1.5722\BootCamp\Drivers\Asix\AsixSetup64.exe -d C:\Users\gregoire\Downloads\bootcamp5.1.5722\BootCamp\Drivers\Asix
Task: {87A4AFBF-26CA-4D1B-B163-1C181CD9D467} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS)
Task: {8B60579C-EE0E-4C08-B000-73DCB22F385C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {8E133EC3-B601-4B06-8623-E4F31BC048B1} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC) <==== ATTENTION
Task: {96054BBF-2BCC-4FEE-BDC5-5106D6E81B0A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {AC102BB7-7D81-43A5-8FBA-5088BF082AA5} - System32\Tasks\WinThruster_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATTENTION
Task: {AD6C3F2A-F89D-40D9-BDB7-1953184957CC} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION
Task: {B282E3CC-E34E-481F-A9DE-5BDC956F72B8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {B9C7001C-F04D-4BB1-B1E0-6A4866F00F4C} - System32\Tasks\WinThruster_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATTENTION
Task: {BC8FAEC7-C3A0-4ABD-89F5-6F5D43570873} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {BCC60A19-8B19-4B93-B232-B1680E9270AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {BF249014-DBA4-4774-801F-208E3F13A4AD} - System32\Tasks\{31C071EA-8440-4E93-B0A1-4487B1818BAC} => pcalua.exe -a C:\PROGRA~1\DIFX\8730326CFC0D32D8\DPInst.exe -c /u C:\WINDOWS\System32\DriverStore\FileRepository\e1k62x64.inf_amd64_0be30541c637f37c\e1k62x64.inf
Task: {C1A017D9-287F-4FF1-BE6E-F3984938DE8A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-18] (Adobe Systems Incorporated)
Task: {C817A6AD-FD1E-41B6-B2E0-0B88C46A461C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {C8ABA91E-9DD8-43D8-9E49-8FB85F34C6E9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D1FC9C47-7D00-4E13-8407-CC01BC0D7218} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek)
Task: {D68E603A-4CAF-448A-82CE-75B1D31FAAD0} - System32\Tasks\Yahoo! Powered cotir => Wscript.exe "C:\ProgramData\{E97E2C1D-633C-A6DB-E5FA-38997FB8B357}\loda.txt" "68747470733a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b45393745324331442d363333432d413644422d453546412d3338393937464238423335377d5c646973696c61" "433a5c50726f6772616d446174615c7b45393745324331442d363333432d413644422d4535 (l'élément de données a 80 caractères en plus). <==== ATTENTION
Task: {E1E37CFE-B6D1-4387-99A8-AE5303111706} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {E64D1885-4A83-4CA6-A445-B8B2DDCE90D2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {F4083861-77E6-4340-BCDB-2D1536BE3FA4} - System32\Tasks\{6BC41171-9EC5-EDBA-0B4F-173B639F610E} => C:\Users\gregoire\AppData\Local\Tapocoh\PRODUC~1.EXE [2013-05-07] ()
Task: {F8EF7124-3374-4AF9-BD3E-77A0083F1FB6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => d:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\WinThruster_DEFAULT.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\WinThruster_UPDATES.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Yahoo! Powered cotir.job => Wscript.exe C:\ProgramData\{E97E2C1D-633C-A6DB-E5FA-38997FB8B357}\loda.txt <==== ATTENTION
Task: C:\WINDOWS\Tasks\{6BC41171-9EC5-EDBA-0B4F-173B639F610E}.job =>
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 19:17 - 2016-10-05 19:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-16 01:35 - 2016-05-02 20:31 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2015-12-23 16:51 - 2016-05-02 20:31 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-06-18 22:41 - 2017-06-03 12:01 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-13 15:36 - 2016-08-25 23:12 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-14 14:28 - 2016-11-30 22:57 - 00401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-13 21:44 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 23:41 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 23:41 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-06-23 00:11 - 2017-06-23 00:12 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 43454464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 02437120 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\skypert.dll
2017-03-07 20:18 - 2017-03-07 20:18 - 00582936 _____ () C:\Program Files\ByteFence\rsLggr.exe
2017-06-01 23:50 - 2017-06-01 23:51 - 23661056 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-06-01 23:50 - 2017-06-01 23:51 - 09016320 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-05-27 08:56 - 2017-05-27 08:56 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-01 23:50 - 2017-06-01 23:51 - 10214400 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntPlat.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2017-03-15 23:41 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 23:41 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 23:41 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-06-18 22:41 - 2017-06-03 10:47 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-06-18 22:41 - 2017-06-03 10:47 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-06-18 22:41 - 2017-06-03 10:51 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-12-13 05:37 - 2013-12-09 17:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
2015-11-10 23:45 - 2016-05-02 20:31 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-05 19:18 - 2016-10-05 19:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-01 18:13 - 2016-09-01 18:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 67117168 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libcef.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 00189040 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\SpotifyWinRT.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 02253424 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libglesv2.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 00086640 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 15:25 - 2017-06-23 01:46 - 00002024 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
Il y a 4 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gregoire\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\StartupFolder: => "ROCCAT Swarm.lnk"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "M.M.O.TE"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\StartupFolder: => "LOA2.lnk"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\StartupFolder: => "Curse.lnk"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudPhotos"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "WinThrusterReminder"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Spotify"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{441A99D2-F906-4F28-A91A-C6D318CA617A}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Allow) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [TCP Query User{8FD47AA3-ECFE-40F3-9EDD-F75A621FC31F}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Allow) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [{E8A2FC26-F5F0-445E-9B84-F20EEB99DCE8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{05E0BD27-3E44-45F8-ACF5-A5D246089876}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{D48F6F7F-BD46-41F0-BD6B-37F58504FF32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5A1DB383-1B5F-4DA9-B82E-E8875E1CEF50}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7B50137E-9B9C-4249-90B9-F16FA5A9477F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A54EA1DD-6469-4CC0-9E08-332B7F5BA1E7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C315662A-0574-4138-8E0E-AFCC085236DD}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{45C8BA8E-6261-4E54-AD2D-7A23C7DAD69E}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{CEBA2A6F-9CC7-4DBE-A123-A4064DD55EBB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E08B7032-CB71-4A7C-A03A-08C21F1C0B52}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{19D09B1E-0E71-43D1-A43D-B6198C48105D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{84EE243F-9F80-4D19-A167-F486648BCE7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A898F0BF-6906-4502-8573-19997E9D1482}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8FA983A5-A11F-41D4-A369-19ABB253214D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{998F4FE3-6872-4452-9743-33DDA5617526}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A6F05CE7-5CF8-4B33-AA3B-7B079E6C1D72}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D7D56FAB-7EB9-492A-BA5A-4D735D9C7D3D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{73D27C54-EE6A-4B3E-9240-79714FD5757F}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{FCD871AC-C4A1-455C-B4C2-008A5330540D}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6EF5ED18-57E7-4DD8-9388-190A12152D63}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{401B1CC3-9C4A-49F0-835A-529453637749}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{BC2BB775-9F9B-43FF-8B74-0283A30B894E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{814BB1A4-03AB-4288-A5E3-036D28A4FD67}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1E146CAB-D1C0-447F-A7EA-08CD75723615}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B5559CDA-EE74-405D-B9E9-D328B12979D6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B6EE08B3-AC57-4965-94C6-46C02F513F7A}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8317C1C0-C3BC-409C-9171-662DB227D5B8}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F6EDF5C-741B-4B42-B696-CB4D2EDB1C5C}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2DBE90AB-8220-4F27-B75E-0F71697A4280}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{00D36F40-2DE5-4AEF-9BC7-66EA401CDA55}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{789C876D-D7D5-4F45-AE92-A7FF09834CAA}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84FA175D-3D10-4EF2-82E7-73A6B9A7BE98}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{695DA8D3-014F-4376-9CC6-D7605F27F23E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F41D623F-8847-4BF0-9830-C927465381B7}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{4F8A0C50-9249-4116-86AF-B905CC270296}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [TCP Query User{2137C6E3-244D-4D8B-941A-5F80A7EE872F}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{0698F930-4806-4A55-A6F9-B921F0D33540}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{09ACE81A-873B-4B78-9024-46A58122C719}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E89B0BBA-8559-4586-8AA9-226FE410E8F1}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [{5E8BDFF0-1E11-49B9-B279-59AE131468CC}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{90D71EEB-209A-47BE-905D-C8804F4D0D76}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{DE497B52-0E30-466A-9AE6-3E106685C384}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Block) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [UDP Query User{119EE651-1618-4566-B318-50DD0430365E}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Block) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [{17C7E303-B8E5-4169-B243-B79FC136ADA6}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{4322A419-D4F5-48AE-B67F-C4380725FC8D}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{9672D305-DDC8-4D55-A436-8ADAD5559BDB}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{F0616A28-1BEB-4B4C-B7CD-C5E175559C13}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{4620F586-9276-42A8-96B0-FE0F258CFF32}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5385C18A-E555-485E-AEAE-DB8CABB7CA1E}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{99FDA5E2-104D-49E6-9D0F-E2EF48C0E6E3}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{17278E26-47C4-49EA-8A2B-D654D21DE99D}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{6D812B4E-587A-4AD4-9A43-88C2E3010536}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{825C2477-919D-4279-A76F-C4FC79150C0E}D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe] => (Block) D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe
FirewallRules: [UDP Query User{D7F26FC6-0649-4505-A46E-448257F0DEA4}D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe] => (Block) D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe
FirewallRules: [{1601308E-2D0F-4D23-B3D8-37680172489A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
FirewallRules: [{A66CC909-7746-4E51-BD3A-D038BCD7B6C0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
FirewallRules: [{57C6585A-A65F-49A1-88B3-65245333115B}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{BED00D5E-BE25-4D11-BF27-E186BF4997F1}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{16731BE9-9F51-4C42-9EB2-A615938B5E4B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space Hulk Deathwing\SpaceHulkGame.exe
FirewallRules: [{C552FCF6-1EF7-41BE-ADDF-71268DEFB498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space Hulk Deathwing\SpaceHulkGame.exe
FirewallRules: [TCP Query User{0DAB7478-5271-43AF-BF4A-C6E38A2E3AF9}D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe
FirewallRules: [UDP Query User{CCDE169B-5CEE-4819-A738-D0859623845F}D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe
FirewallRules: [TCP Query User{67EF78B5-C711-4C95-864D-7227F012B447}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A0CA29B5-3E0A-485B-8B7A-C7A20360198C}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{B63BADF1-C3B4-48CD-8161-882BC9B5A5C5}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7F78D9EE-5F55-43EF-BBA9-7F513285CE70}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{459DE8CD-2D87-41CF-8BE0-383D1B07F0E4}C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe
FirewallRules: [UDP Query User{F5B756E1-8D5B-4FD1-918F-97C47601F763}C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe
FirewallRules: [TCP Query User{CCBFC2DF-0555-458D-A7F4-EC85186DC1A5}C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [UDP Query User{45B52A45-96F6-42A3-AC04-020956C1B89D}C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [{6F2295C4-F836-4E1F-9D6E-37D425F4325B}] => (Block) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [{B35E3035-8491-40C7-9334-611B0BEC67EA}] => (Block) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [TCP Query User{67C6BFFD-90E5-4EAD-AA42-DE9C99F25CBE}C:\users\gregoire\downloads\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows\swproxy.exe
FirewallRules: [UDP Query User{771E6DFB-DAD9-47AD-B068-B910C7F97DD1}C:\users\gregoire\downloads\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows\swproxy.exe
FirewallRules: [TCP Query User{0D9EC828-FAD6-4A19-BA1C-126DB5EDFDAE}C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe
FirewallRules: [UDP Query User{2990EFB2-4D82-484F-970B-5306B53B3A47}C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe
FirewallRules: [TCP Query User{D8B7C8C8-C044-40DF-8B8A-CC843D94CBEF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{9DD076BA-D765-4DC5-9A5F-62885423E287}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{DC67AD11-0A07-46B1-B4FB-49E34DF8CC43}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{3533B086-298C-4568-B8AB-D9B3013352EF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [{19FCEC6E-2FAD-4668-B963-EF7E1D569E9E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [{35365987-FE9D-4DC4-842B-B220E479DDEB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [TCP Query User{76892EFE-8C0C-4D2D-B8FD-DC37D52ACC4D}D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [UDP Query User{DF4A431E-63AB-4AC6-9911-00FA4D964946}D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [TCP Query User{E097F60A-C961-4E48-9F4A-A98CEC97CF80}C:\users\gregoire\downloads\conquer_v6383_p2p.exe] => (Allow) C:\users\gregoire\downloads\conquer_v6383_p2p.exe
FirewallRules: [UDP Query User{1EF1793E-2DAA-4FB0-8E9B-E48C394E75CF}C:\users\gregoire\downloads\conquer_v6383_p2p.exe] => (Allow) C:\users\gregoire\downloads\conquer_v6383_p2p.exe
FirewallRules: [TCP Query User{D72F025C-7151-40D5-927B-4DAD95C666A5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{FC9C9EA0-DF31-4CBA-B0AF-004291C18D7D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{364CC739-1BB1-4008-B962-2AF13516280D}D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [UDP Query User{FF466505-9BCC-4632-A014-A76E9BE16A57}D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [{BE9BA534-9E68-4388-B580-8C2A15CD8E95}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [{0A7CBA59-9D88-4E66-B1AD-CC695CE847A5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [TCP Query User{B9AC886F-A79D-44B0-A66C-B0D9F0105C04}D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [UDP Query User{C199CE69-269B-4899-961D-DF8435778FB6}D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{B20D361B-48B5-40EA-B336-571C01AC22BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{0FDFC024-7260-4D59-AFC1-D7EC6342A33F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{F59D1AD3-E053-4EA6-8C83-F6A1AE0B61BD}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
==================== Points de restauration =========================
31-05-2017 03:12:38 Point de contrôle planifié
15-06-2017 05:51:55 Point de contrôle planifié
18-06-2017 22:43:16 Windows Update
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (06/27/2017 05:03:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.6.2017.1 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 13d0
Heure de début : 01d2ef566d033dc2
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\gregoire\Desktop\FRST64.exe
ID de rapport : c9c6b429-5b49-11e7-82fa-54a0508bc93f
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (06/27/2017 05:02:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.6.2017.1 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2270
Heure de début : 01d2ef565d8069e1
Heure de fin : 2
Chemin d'accès de l'application : C:\Users\gregoire\Desktop\FRST64.exe
ID de rapport : a68fc0ef-5b49-11e7-82fa-54a0508bc93f
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (06/27/2017 03:08:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (06/27/2017 03:07:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2453
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2453
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1250
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1250
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Erreurs système:
=============
Error: (06/27/2017 05:07:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (06/27/2017 05:07:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.
Error: (06/27/2017 02:07:23 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 02:31:15 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 12:17:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 12:09:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
CodeIntegrity:
===================================
Date: 2017-06-27 14:17:59.883
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-06-23 00:00:19.968
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-27 12:11:15.190
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-23 18:17:25.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-13 14:57:22.616
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-04 14:35:11.633
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-03 01:45:22.986
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 05:48:24.007
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-18 12:32:08.660
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 21:10:51.263
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 8074.85 MB
Mémoire physique - RAM - disponible: 4102.13 MB
Mémoire virtuelle totale: 15047.26 MB
Mémoire virtuelle disponible: 10482.96 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:49.97 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:166.42 GB) NTFS
Drive f: (Age of Mythology) (CDROM) (Total:2.09 GB) (Free:0 GB) CDFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 02B163FF)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par gregoire (27-06-2017 17:08:30)
Exécuté depuis C:\Users\gregoire\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-13 14:11:41)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-807348915-2669362852-2824625911-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-807348915-2669362852-2824625911-503 - Limited - Disabled)
gregoire (S-1-5-21-807348915-2669362852-2824625911-1001 - Administrator - Enabled) => C:\Users\gregoire
HomeGroupUser$ (S-1-5-21-807348915-2669362852-2824625911-1003 - Limited - Enabled)
Invité (S-1-5-21-807348915-2669362852-2824625911-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.3.183 - Adobe Systems, Inc.)
Ansel (Version: 372.70 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Asus FaceID (HKLM-x32\...\{C4071085-DDF0-403F-90F9-27582FC22C9B}) (Version: 7.7.6.1 - ASUS)
ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.29 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0036 - ASUS)
AVS Video Editor 7.5.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.5.1.288 - Online Media Technologies Ltd.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
ByteFence Anti-Malware (HKLM-x32\...\ByteFence) (Version: 3.9.0.3 - Byte Technologies LLC) <==== ATTENTION
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG5400 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5400_series) (Version: 1.01 - Canon Inc.)
Conquer Online 3.0 (HKLM-x32\...\{78B51FD5-DA3F-4B48-8F3F-4E4068F25D89}_is1) (Version: - TQ Digital Entertainment Inc.)
Curse (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Curse)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0232 - Disc Soft Ltd)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dofus (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\2744A393-554C-4E35-A24F-DEF0392B4484-2) (Version: - Ankama)
DriversCloud.com (64 bits) (HKLM\...\{0FFDC804-21EE-4283-ADBA-6A1958EB9525}) (Version: 8.0.3.1 - Cybelsoft)
Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might & Magic III - HD Edition (HKLM\...\Steam App 297000) (Version: - DotEmu)
iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation)
iTunes (HKLM\...\{554C62C7-E6BB-40F1-892B-F0AE02D3C135}) (Version: 12.5.3.17 - Apple Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Microsoft OneDrive (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 2.11.3.6 (Version: 2.11.3.6 - NVIDIA Corporation) Hidden
Mozilla Firefox 54.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 fr)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.0.6368 - Mozilla)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.12.1.43352 - Electronic Arts, Inc.)
OSC Third Party Libraries (Version: 1.1 - NVIDIA Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Package de pilotes Windows - Apple Inc. (AppleUSBEthernet) Net (02/01/2008 3.10.3.10) (HKLM\...\D53CBF2C12DF51DA5E9C1A9DA97FF0DCA0C524C5) (Version: 02/01/2008 3.10.3.10 - Apple Inc.)
Panneau de configuration NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden
PixelMaster Video HDR (HKLM\...\{65302154-AAF6-4020-A070-76CAA9CEC8D3}) (Version: 1.1.23 - ASUS)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21255 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7329 - Realtek Semiconductor Corp.)
ROCCAT Swarm (HKLM-x32\...\InstallShield_{E7E52DE1-B0AD-4527-8E65-275EC03A9530}) (Version: 1.45 - ROCCAT GmbH)
ROCCAT Swarm (x32 Version: 1.45 - ROCCAT GmbH) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.6 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Slayers Online (HKLM-x32\...\Slayers Online_is1) (Version: - )
Smart Technology Programming Software 7.0.45.2 (HKLM\...\{828CE472-5B59-490C-B161-F7CAFEE7F4C0}) (Version: 7.0.45.2 - Mad Catz)
Space Hulk: Deathwing (HKLM\...\Steam App 298900) (Version: - Streum On Studio)
Spotify (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\Spotify) (Version: 1.0.57.474.gca9c9538 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED)
Tree of Savior (English Ver.) (HKLM\...\Steam App 372000) (Version: - IMCGAMES Co.,Ltd.)
Ultima PSOBB (HKLM-x32\...\{AE3C4770-4E95-48B3-8479-633990592578}_is1) (Version: 4.1 - )
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
WAKFU (HKLM-x32\...\Steam App 215080) (Version: - Ankama Studio)
Wakfu (HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinThruster (HKLM-x32\...\WinThruster_is1) (Version: 1.79 - solvusoft Corporation) <==== ATTENTION
Wooxy version 1.5.0.2 (HKLM-x32\...\{C183CD14-47D8-4F98-AF06-4744CB834C8E}_is1) (Version: 1.5.0.2 - Chewy)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yahoo! Powered (HKLM-x32\...\{34A9DC69-6429-0DE9-D5A9-7D690529AEE9}) (Version: - ) <==== ATTENTION
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {02B4C45D-407A-4607-B218-E7825264B968} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: {05F10357-AF50-451A-B276-61044D718013} - System32\Tasks\{0D4C5778-34DC-41E2-BC03-E5708DABE2B1} => pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {0925F014-1B8D-4445-BAC6-D16FCC9D2193} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {168A55B6-3908-43F1-A0D6-20DC5A2A773C} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {1CA421B2-E482-4F48-B240-D90F2DF0EF5C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {1CAC14F6-2D86-4EE9-B005-05AC0BB91AB1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {2314E87A-148E-42FB-8C5C-893E830F9A85} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {26AF4D6E-66E0-4FB5-A4AF-B7352B0C103C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-08-26] (Realtek Semiconductor)
Task: {29AE3564-56B4-40B0-8EBA-0A5ABA9C167E} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {30A27CAA-A6B9-4236-BCA6-CF0C40193F1E} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC) <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.)
Task: {439DDE13-02EF-447F-8F83-395CD293F164} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {4A18455A-DCAA-442F-A58D-37622EEC5E49} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {4FDC0675-4409-4FCF-9A17-F1BB24F8156F} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {5574841E-D1CE-4261-B035-45F8F96077FA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {5A124F0B-ABD4-42AF-9EC0-69AF4C883D14} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-08-14] (Realtek Semiconductor)
Task: {5DAFBD14-9AC6-4CB5-86F1-D59D6340A62F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {68236544-4BAC-4F22-946D-88C5AF815137} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\gregoire\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {71E32526-1EC7-4828-BE1F-09D2D598DC94} - System32\Tasks\{2340758D-7B3D-4BCE-BDA7-162EBEF727E9} => pcalua.exe -a C:\Users\gregoire\Downloads\bootcamp5.1.5722\BootCamp\Drivers\Asix\AsixSetup64.exe -d C:\Users\gregoire\Downloads\bootcamp5.1.5722\BootCamp\Drivers\Asix
Task: {87A4AFBF-26CA-4D1B-B163-1C181CD9D467} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS)
Task: {8B60579C-EE0E-4C08-B000-73DCB22F385C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {8E133EC3-B601-4B06-8623-E4F31BC048B1} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe [2017-04-19] (Byte Technologies LLC) <==== ATTENTION
Task: {96054BBF-2BCC-4FEE-BDC5-5106D6E81B0A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
Task: {AC102BB7-7D81-43A5-8FBA-5088BF082AA5} - System32\Tasks\WinThruster_UPDATES => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATTENTION
Task: {AD6C3F2A-F89D-40D9-BDB7-1953184957CC} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION
Task: {B282E3CC-E34E-481F-A9DE-5BDC956F72B8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {B9C7001C-F04D-4BB1-B1E0-6A4866F00F4C} - System32\Tasks\WinThruster_DEFAULT => C:\Program Files (x86)\WinThruster\WinThruster.exe [2015-11-25] (Solvusoft Corporation) <==== ATTENTION
Task: {BC8FAEC7-C3A0-4ABD-89F5-6F5D43570873} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {BCC60A19-8B19-4B93-B232-B1680E9270AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-04-28] (Microsoft Corporation)
Task: {BF249014-DBA4-4774-801F-208E3F13A4AD} - System32\Tasks\{31C071EA-8440-4E93-B0A1-4487B1818BAC} => pcalua.exe -a C:\PROGRA~1\DIFX\8730326CFC0D32D8\DPInst.exe -c /u C:\WINDOWS\System32\DriverStore\FileRepository\e1k62x64.inf_amd64_0be30541c637f37c\e1k62x64.inf
Task: {C1A017D9-287F-4FF1-BE6E-F3984938DE8A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-18] (Adobe Systems Incorporated)
Task: {C817A6AD-FD1E-41B6-B2E0-0B88C46A461C} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {C8ABA91E-9DD8-43D8-9E49-8FB85F34C6E9} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {D1FC9C47-7D00-4E13-8407-CC01BC0D7218} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek)
Task: {D68E603A-4CAF-448A-82CE-75B1D31FAAD0} - System32\Tasks\Yahoo! Powered cotir => Wscript.exe "C:\ProgramData\{E97E2C1D-633C-A6DB-E5FA-38997FB8B357}\loda.txt" "68747470733a2f2f7761676e672e636f6d" "433a5c50726f6772616d446174615c7b45393745324331442d363333432d413644422d453546412d3338393937464238423335377d5c646973696c61" "433a5c50726f6772616d446174615c7b45393745324331442d363333432d413644422d4535 (l'élément de données a 80 caractères en plus). <==== ATTENTION
Task: {E1E37CFE-B6D1-4387-99A8-AE5303111706} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {E64D1885-4A83-4CA6-A445-B8B2DDCE90D2} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {F4083861-77E6-4340-BCDB-2D1536BE3FA4} - System32\Tasks\{6BC41171-9EC5-EDBA-0B4F-173B639F610E} => C:\Users\gregoire\AppData\Local\Tapocoh\PRODUC~1.EXE [2013-05-07] ()
Task: {F8EF7124-3374-4AF9-BD3E-77A0083F1FB6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-24] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => d:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
Task: C:\WINDOWS\Tasks\WinThruster_DEFAULT.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\WinThruster_UPDATES.job => C:\Program Files (x86)\WinThruster\WinThruster.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Yahoo! Powered cotir.job => Wscript.exe C:\ProgramData\{E97E2C1D-633C-A6DB-E5FA-38997FB8B357}\loda.txt <==== ATTENTION
Task: C:\WINDOWS\Tasks\{6BC41171-9EC5-EDBA-0B4F-173B639F610E}.job =>
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-09-01 18:12 - 2016-09-01 18:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-10-05 19:17 - 2016-10-05 19:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2015-11-16 01:35 - 2016-05-02 20:31 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2015-12-23 16:51 - 2016-05-02 20:31 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-06-18 22:41 - 2017-06-03 12:01 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-13 15:36 - 2016-08-25 23:12 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-14 14:28 - 2016-11-30 22:57 - 00401888 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-09-13 21:44 - 2016-09-07 06:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-15 23:41 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-15 23:41 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-06-23 00:11 - 2017-06-23 00:12 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 43454464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-06-23 00:11 - 2017-06-23 00:12 - 02437120 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\skypert.dll
2017-03-07 20:18 - 2017-03-07 20:18 - 00582936 _____ () C:\Program Files\ByteFence\rsLggr.exe
2017-06-01 23:50 - 2017-06-01 23:51 - 23661056 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Video.UI.exe
2017-06-01 23:50 - 2017-06-01 23:51 - 09016320 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-05-27 08:56 - 2017-05-27 08:56 - 03140520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-06-01 23:50 - 2017-06-01 23:51 - 10214400 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17042.14211.0_x64__8wekyb3d8bbwe\EntPlat.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-04-11 14:44 - 2016-05-02 20:31 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2017-03-15 23:41 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-15 23:41 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-15 23:41 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-06-18 22:41 - 2017-06-03 10:47 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-06-18 22:41 - 2017-06-03 10:47 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-06-18 22:41 - 2017-06-03 10:51 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2014-12-13 05:37 - 2013-12-09 17:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll
2014-06-03 22:01 - 2014-06-03 22:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll
2015-11-10 23:45 - 2016-05-02 20:31 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-10-05 19:18 - 2016-10-05 19:18 - 01041720 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2016-09-01 18:13 - 2016-09-01 18:13 - 00080184 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 67117168 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libcef.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 00189040 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\SpotifyWinRT.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 02253424 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libglesv2.dll
2017-01-08 07:49 - 2017-06-27 16:23 - 00086640 _____ () C:\Users\gregoire\AppData\Roaming\Spotify\libegl.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 15:25 - 2017-06-23 01:46 - 00002024 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
Il y a 4 plus de lignes.
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\gregoire\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\StartupFolder: => "ROCCAT Swarm.lnk"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "M.M.O.TE"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\StartupFolder: => "LOA2.lnk"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\StartupFolder: => "Curse.lnk"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudPhotos"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "WinThrusterReminder"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-807348915-2669362852-2824625911-1001\...\StartupApproved\Run: => "Spotify"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{441A99D2-F906-4F28-A91A-C6D318CA617A}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Allow) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [TCP Query User{8FD47AA3-ECFE-40F3-9EDD-F75A621FC31F}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Allow) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [{E8A2FC26-F5F0-445E-9B84-F20EEB99DCE8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{05E0BD27-3E44-45F8-ACF5-A5D246089876}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Wakfu\transition\transition.exe
FirewallRules: [{D48F6F7F-BD46-41F0-BD6B-37F58504FF32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5A1DB383-1B5F-4DA9-B82E-E8875E1CEF50}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7B50137E-9B9C-4249-90B9-F16FA5A9477F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A54EA1DD-6469-4CC0-9E08-332B7F5BA1E7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C315662A-0574-4138-8E0E-AFCC085236DD}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{45C8BA8E-6261-4E54-AD2D-7A23C7DAD69E}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{CEBA2A6F-9CC7-4DBE-A123-A4064DD55EBB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E08B7032-CB71-4A7C-A03A-08C21F1C0B52}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{19D09B1E-0E71-43D1-A43D-B6198C48105D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{84EE243F-9F80-4D19-A167-F486648BCE7C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{A898F0BF-6906-4502-8573-19997E9D1482}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{8FA983A5-A11F-41D4-A369-19ABB253214D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{998F4FE3-6872-4452-9743-33DDA5617526}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{A6F05CE7-5CF8-4B33-AA3B-7B079E6C1D72}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D7D56FAB-7EB9-492A-BA5A-4D735D9C7D3D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{73D27C54-EE6A-4B3E-9240-79714FD5757F}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{FCD871AC-C4A1-455C-B4C2-008A5330540D}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{6EF5ED18-57E7-4DD8-9388-190A12152D63}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{401B1CC3-9C4A-49F0-835A-529453637749}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{BC2BB775-9F9B-43FF-8B74-0283A30B894E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{814BB1A4-03AB-4288-A5E3-036D28A4FD67}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1E146CAB-D1C0-447F-A7EA-08CD75723615}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B5559CDA-EE74-405D-B9E9-D328B12979D6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B6EE08B3-AC57-4965-94C6-46C02F513F7A}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{8317C1C0-C3BC-409C-9171-662DB227D5B8}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F6EDF5C-741B-4B42-B696-CB4D2EDB1C5C}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2DBE90AB-8220-4F27-B75E-0F71697A4280}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{00D36F40-2DE5-4AEF-9BC7-66EA401CDA55}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{789C876D-D7D5-4F45-AE92-A7FF09834CAA}] => (Allow) C:\Users\gregoire\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84FA175D-3D10-4EF2-82E7-73A6B9A7BE98}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{695DA8D3-014F-4376-9CC6-D7605F27F23E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F41D623F-8847-4BF0-9830-C927465381B7}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{4F8A0C50-9249-4116-86AF-B905CC270296}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [TCP Query User{2137C6E3-244D-4D8B-941A-5F80A7EE872F}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{0698F930-4806-4A55-A6F9-B921F0D33540}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{09ACE81A-873B-4B78-9024-46A58122C719}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E89B0BBA-8559-4586-8AA9-226FE410E8F1}C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base40697\heroesofthestorm_x64.exe
FirewallRules: [{5E8BDFF0-1E11-49B9-B279-59AE131468CC}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{90D71EEB-209A-47BE-905D-C8804F4D0D76}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{DE497B52-0E30-466A-9AE6-3E106685C384}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Block) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [UDP Query User{119EE651-1618-4566-B318-50DD0430365E}C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe] => (Block) C:\program files (x86)\roccat\roccat swarm\roccat_swarm_monitor.exe
FirewallRules: [{17C7E303-B8E5-4169-B243-B79FC136ADA6}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{4322A419-D4F5-48AE-B67F-C4380725FC8D}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{9672D305-DDC8-4D55-A436-8ADAD5559BDB}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{F0616A28-1BEB-4B4C-B7CD-C5E175559C13}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{4620F586-9276-42A8-96B0-FE0F258CFF32}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5385C18A-E555-485E-AEAE-DB8CABB7CA1E}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{99FDA5E2-104D-49E6-9D0F-E2EF48C0E6E3}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{17278E26-47C4-49EA-8A2B-D654D21DE99D}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [UDP Query User{6D812B4E-587A-4AD4-9A43-88C2E3010536}D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8142\battle.net.exe
FirewallRules: [TCP Query User{825C2477-919D-4279-A76F-C4FC79150C0E}D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe] => (Block) D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe
FirewallRules: [UDP Query User{D7F26FC6-0649-4505-A46E-448257F0DEA4}D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe] => (Block) D:\jeux\battle.net\battle.net\battle.net.8179\battle.net.exe
FirewallRules: [{1601308E-2D0F-4D23-B3D8-37680172489A}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
FirewallRules: [{A66CC909-7746-4E51-BD3A-D038BCD7B6C0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
FirewallRules: [{57C6585A-A65F-49A1-88B3-65245333115B}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{BED00D5E-BE25-4D11-BF27-E186BF4997F1}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{16731BE9-9F51-4C42-9EB2-A615938B5E4B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space Hulk Deathwing\SpaceHulkGame.exe
FirewallRules: [{C552FCF6-1EF7-41BE-ADDF-71268DEFB498}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Space Hulk Deathwing\SpaceHulkGame.exe
FirewallRules: [TCP Query User{0DAB7478-5271-43AF-BF4A-C6E38A2E3AF9}D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe
FirewallRules: [UDP Query User{CCDE169B-5CEE-4819-A738-D0859623845F}D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\space hulk deathwing\spacehulkgame\binaries\win64\spacehulkgame-win64-shipping.exe
FirewallRules: [TCP Query User{67EF78B5-C711-4C95-864D-7227F012B447}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{A0CA29B5-3E0A-485B-8B7A-C7A20360198C}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{B63BADF1-C3B4-48CD-8161-882BC9B5A5C5}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7F78D9EE-5F55-43EF-BBA9-7F513285CE70}C:\users\gregoire\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\gregoire\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{459DE8CD-2D87-41CF-8BE0-383D1B07F0E4}C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe
FirewallRules: [UDP Query User{F5B756E1-8D5B-4FD1-918F-97C47601F763}C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.363\swproxy.exe
FirewallRules: [TCP Query User{CCBFC2DF-0555-458D-A7F4-EC85186DC1A5}C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [UDP Query User{45B52A45-96F6-42A3-AC04-020956C1B89D}C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe] => (Allow) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [{6F2295C4-F836-4E1F-9D6E-37D425F4325B}] => (Block) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [{B35E3035-8491-40C7-9334-611B0BEC67EA}] => (Block) C:\users\gregoire\appdata\local\temp\rar$exa0.203\swproxy.exe
FirewallRules: [TCP Query User{67C6BFFD-90E5-4EAD-AA42-DE9C99F25CBE}C:\users\gregoire\downloads\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows\swproxy.exe
FirewallRules: [UDP Query User{771E6DFB-DAD9-47AD-B068-B910C7F97DD1}C:\users\gregoire\downloads\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows\swproxy.exe
FirewallRules: [TCP Query User{0D9EC828-FAD6-4A19-BA1C-126DB5EDFDAE}C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe
FirewallRules: [UDP Query User{2990EFB2-4D82-484F-970B-5306B53B3A47}C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe] => (Allow) C:\users\gregoire\downloads\swproxy-windows-2\swproxy-windows\swproxy.exe
FirewallRules: [TCP Query User{D8B7C8C8-C044-40DF-8B8A-CC843D94CBEF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{9DD076BA-D765-4DC5-9A5F-62885423E287}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{DC67AD11-0A07-46B1-B4FB-49E34DF8CC43}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{3533B086-298C-4568-B8AB-D9B3013352EF}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe
FirewallRules: [{19FCEC6E-2FAD-4668-B963-EF7E1D569E9E}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [{35365987-FE9D-4DC4-842B-B220E479DDEB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [TCP Query User{76892EFE-8C0C-4D2D-B8FD-DC37D52ACC4D}D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [UDP Query User{DF4A431E-63AB-4AC6-9911-00FA4D964946}D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [TCP Query User{E097F60A-C961-4E48-9F4A-A98CEC97CF80}C:\users\gregoire\downloads\conquer_v6383_p2p.exe] => (Allow) C:\users\gregoire\downloads\conquer_v6383_p2p.exe
FirewallRules: [UDP Query User{1EF1793E-2DAA-4FB0-8E9B-E48C394E75CF}C:\users\gregoire\downloads\conquer_v6383_p2p.exe] => (Allow) C:\users\gregoire\downloads\conquer_v6383_p2p.exe
FirewallRules: [TCP Query User{D72F025C-7151-40D5-927B-4DAD95C666A5}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{FC9C9EA0-DF31-4CBA-B0AF-004291C18D7D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{364CC739-1BB1-4008-B962-2AF13516280D}D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [UDP Query User{FF466505-9BCC-4632-A014-A76E9BE16A57}D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [{BE9BA534-9E68-4388-B580-8C2A15CD8E95}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [{0A7CBA59-9D88-4E66-B1AD-CC695CE847A5}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\TreeOfSavior\release\patch\tos.exe
FirewallRules: [TCP Query User{B9AC886F-A79D-44B0-A66C-B0D9F0105C04}D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [UDP Query User{C199CE69-269B-4899-961D-DF8435778FB6}D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe] => (Allow) D:\jeux\battle.net\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{B20D361B-48B5-40EA-B336-571C01AC22BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{0FDFC024-7260-4D59-AFC1-D7EC6342A33F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{F59D1AD3-E053-4EA6-8C83-F6A1AE0B61BD}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
==================== Points de restauration =========================
31-05-2017 03:12:38 Point de contrôle planifié
15-06-2017 05:51:55 Point de contrôle planifié
18-06-2017 22:43:16 Windows Update
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (06/27/2017 05:03:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.6.2017.1 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 13d0
Heure de début : 01d2ef566d033dc2
Heure de fin : 4294967295
Chemin d'accès de l'application : C:\Users\gregoire\Desktop\FRST64.exe
ID de rapport : c9c6b429-5b49-11e7-82fa-54a0508bc93f
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (06/27/2017 05:02:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme FRST64.exe version 25.6.2017.1 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2270
Heure de début : 01d2ef565d8069e1
Heure de fin : 2
Chemin d'accès de l'application : C:\Users\gregoire\Desktop\FRST64.exe
ID de rapport : a68fc0ef-5b49-11e7-82fa-54a0508bc93f
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (06/27/2017 03:08:03 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (06/27/2017 03:07:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.
System Error:
Accès refusé.
.
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2453
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2453
Error: (06/27/2017 02:07:26 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1250
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1250
Error: (06/27/2017 02:07:25 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Erreurs système:
=============
Error: (06/27/2017 05:07:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (06/27/2017 05:07:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.
Error: (06/27/2017 02:07:23 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation par défaut de l’ordinateur n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{C2F03A33-21F5-47FA-B4BB-156362A2F239}
et l’APPID
{316CDED5-E4AE-4B15-9113-7055D84DCC97}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/27/2017 12:47:40 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 02:31:15 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 12:17:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (06/26/2017 12:09:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
CodeIntegrity:
===================================
Date: 2017-06-27 14:17:59.883
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-06-23 00:00:19.968
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-27 12:11:15.190
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-23 18:17:25.647
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-13 14:57:22.616
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-04 14:35:11.633
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-05-03 01:45:22.986
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-04-17 05:48:24.007
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-18 12:32:08.660
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-13 21:10:51.263
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 8074.85 MB
Mémoire physique - RAM - disponible: 4102.13 MB
Mémoire virtuelle totale: 15047.26 MB
Mémoire virtuelle disponible: 10482.96 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:49.97 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Data) (Fixed) (Total:537.8 GB) (Free:166.42 GB) NTFS
Drive f: (Age of Mythology) (CDROM) (Total:2.09 GB) (Free:0 GB) CDFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 02B163FF)
Partition: GPT.
==================== Fin de Addition.txt ============================