Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:08-10-2015 Exécuté par Eric (2015-10-10 11:56:15) Exécuté depuis C:\Users\Eric\Downloads Windows 8.1 (X64) (2015-09-19 14:31:55) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-350366277-417520561-1291865009-500 - Administrator - Disabled) Eric (S-1-5-21-350366277-417520561-1291865009-1001 - Administrator - Enabled) => C:\Users\Eric HomeGroupUser$ (S-1-5-21-350366277-417520561-1291865009-1003 - Limited - Enabled) Invité (S-1-5-21-350366277-417520561-1291865009-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.27.1 - Mirillis) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.3.0.151 - Adobe Systems Incorporated) Adobe Edge Code CC (HKLM-x32\...\{2033D10C-8B25-6EED-97C0-708693677BA6}) (Version: 0.98 - Adobe Systems Incorporated) Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2015 (HKLM-x32\...\{38C72D42-0672-43B1-9E05-E7631684F9A1}) (Version: 9.0.2 - Adobe Systems Incorporated) Arma Cold War Assault Uninstall (HKLM-x32\...\Arma Cold War Assault) (Version: - ) ArmA Edit (HKLM-x32\...\{6997644B-5E1C-453A-82E8-7DBAA4DD41F9}) (Version: 1.3.4000 - CHSoftware) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS) ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.1.0 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.14 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.09.0003 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.3 - ASUS) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.68 - ICEpower a/s) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.5.2.34169 - Electronic Arts) Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.1.0.115 - Bitdefender) Bonjour (HKLM\...\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}) (Version: 2.0.4.0 - Apple Inc.) Brackets (HKLM-x32\...\{0DB00381-33B2-46D9-85A0-C26F86613CFE}) (Version: 1.4 - brackets.io) CCleaner (HKLM\...\CCleaner) (Version: 5.09 - Piriform) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) Cyberduck 4.7.2 (HKLM-x32\...\Cyberduck) (Version: 4.7.2 - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.) ExpressCache (HKLM\...\{44EAE7F6-8BBF-4C3F-A573-3CD5A3C067FA}) (Version: 1.3.110.0 - Condusiv Technologies) Fnac Cloud v2.9.0.2 (HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\{1153E5B0-C8D2-4A77-9AE2-05C17BD90517}_is1) (Version: 2.9.0.2 - Fnac) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Heroes & Generals (HKLM-x32\...\Steam App 227940) (Version: - Reto-Moto) Herramientas de corrección de Microsoft Office 2016: español (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel Driver Update Utility (HKLM-x32\...\{ca4bc3a8-b99c-4416-90d8-351a8ceab458}) (Version: 2.2.0.2 - Intel) Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Driver Update Utility 2.2 (x32 Version: 2.2.0.1 - Intel) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.0.10100.71 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.39.1003 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4062 - Intel Corporation) Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation) Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\OneDriveSetup.exe) (Version: 17.3.5951.0827 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mozilla Firefox 41.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 fr)) (Version: 41.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team) NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation) NVIDIA Graphics Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation) NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.) Outils de vérification linguistique 2016 de Microsoft Office - Français (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.853.853.042315 - REALTEK Semiconductor Corp.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7432 - Realtek Semiconductor Corp.) REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.213.243 - REALTEK Semiconductor Corp.) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) SocialSafe (HKLM-x32\...\SocialSafe 7.0.8) (Version: 7.0.8 - Social Safe Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) System Requirements Lab (HKLM-x32\...\{F89CDED6-B1F1-489F-BA44-698BF6A737C2}) (Version: 6.1.6.0 - Husdawg, LLC) Taalprogramma's voor Microsoft Office 2016 - Nederlands (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Tableau de Bord Pack Fnac (HKLM-x32\...\Tableau de Bord Pack Fnac) (Version: - ) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent) Windows Driver Package - ASUS (ATP) Mouse (01/13/2015 1.0.0.233) (HKLM\...\8335D73177E6D80E7ADC00FED2275758BD28AEFB) (Version: 01/13/2015 1.0.0.233 - ASUS) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) World of Tanks (HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net) World of Warplanes (HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813eu}_is1) (Version: - Wargaming.net) World of Warships (HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-350366277-417520561-1291865009-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Points de restauration ========================= 03-10-2015 19:11:52 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 06-10-2015 20:23:25 Windows Update 07-10-2015 20:44:59 Installed Brackets 09-10-2015 20:27:30 Revo Uninstaller's restore point - µTorrent ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {15C019BA-26E2-43C7-A6B3-551805A953A0} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] () Task: {1B191547-4207-48FA-BC7E-331275B694AC} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-350366277-417520561-1291865009-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.) Task: {61A72E65-C91D-447C-B743-8EACF7F85CBD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-03-18] (AsusTek) Task: {695609CE-4B40-4CD8-AB77-97B22BC1EA98} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {77DF5C71-5ADC-4651-91E3-D63F72E00E18} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Eric.Urium@outlook.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-09-04] (Adobe Systems Incorporated) Task: {78E39B55-F2CD-4A18-A0FF-59CD02BD24B1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated) Task: {800B0886-7939-4BA7-8ACB-981D04BDEC65} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser Task: {93B1C869-19A6-4FB4-B70D-65C167B1676B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-08-26] (Microsoft Corporation) Task: {9C6A8B32-953D-4CE3-9F27-BF89162D5ADF} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-04-28] (ASUS) Task: {9D05A900-5B1D-40B4-B540-4EEA52E39A38} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {A320EFFC-24A8-4EB9-B744-1D0EFD4BA10F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation) Task: {C08843BF-B31E-44CF-9AD8-83AA2D815B5D} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-01-23] (Realtek Semiconductor) Task: {DB64787A-4033-4983-ABA3-522745556F1F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-08-20] (Piriform Ltd) Task: {ECF80896-DFFD-4E4C-AA7B-2AD78B71C13C} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-04-20] (ASUSTek Computer Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Modules chargés (Avec liste blanche) ============== 2015-09-19 18:48 - 2015-04-22 16:55 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll 2015-09-19 18:48 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll 2015-09-19 18:48 - 2015-07-10 14:29 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui 2015-09-19 18:48 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll 2015-09-19 18:55 - 2015-09-19 18:55 - 00875352 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_01150_002\ashttpbr.mdl 2015-09-19 18:55 - 2015-09-19 18:55 - 00741952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_01150_002\ashttpdsp.mdl 2015-09-19 18:55 - 2015-09-19 18:55 - 02800952 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_01150_002\ashttpph.mdl 2015-09-19 18:55 - 2015-09-19 18:55 - 01413024 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_01150_002\ashttprbl.mdl 2015-06-18 21:26 - 2015-01-10 01:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-06-18 21:37 - 2015-04-02 15:53 - 00108248 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe 2015-09-22 18:33 - 2015-09-22 18:33 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2015-09-11 19:02 - 2015-09-11 19:02 - 00803488 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2015-05-21 04:59 - 2014-12-15 07:26 - 00392592 _____ () C:\Windows\system32\igfxTray.exe 2015-06-18 21:37 - 2014-07-03 10:22 - 00277720 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\SkypePlugin.exe 2015-09-19 17:29 - 2015-07-27 15:22 - 02449920 _____ () C:\Users\Eric\AppData\Local\Pack Fnac\Fnac Cloud\bin\Theme.dll 2015-09-19 17:29 - 2015-07-27 15:23 - 00149128 _____ () C:\Users\Eric\AppData\Local\Pack Fnac\Fnac Cloud\bin\AutoMapper.dll 2015-09-11 19:01 - 2015-09-11 19:01 - 31958688 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Eric\OneDrive:ms-properties AlternateDataStreams: C:\Users\Eric\Desktop\adobe.snr.patch-painter.exe:BDU AlternateDataStreams: C:\Users\Eric\Desktop\adwcleaner_5.013.exe:BDU AlternateDataStreams: C:\Users\Eric\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\Eric\Desktop\Launcher Ascentia 3.3.exe:BDU ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== EXE Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\skype.com -> https.apps.skype.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-350366277-417520561-1291865009-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Eric\Pictures\explosion-lumieres-planetes-reflets_1920x1200.jpg DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-350366277-417520561-1291865009-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{D48F6F7F-BD46-41F0-BD6B-37F58504FF32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{94C9C60F-72B7-4DD0-BF4C-7795BA9153DC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{81F30A24-455C-4013-BA3D-D5BE75F47A82}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{35D0AB23-9229-4AD1-94FB-D7F60B48B5F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{57D42537-19D7-43AA-BA8D-0C1055C70D52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{6B44215A-3370-4230-9CA3-627BA87D99E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9D746917-ECF3-49FF-8ADC-629935F94526}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FFFD8F19-F95D-4F16-BE0B-0E56680F46C7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A526F363-285B-43F1-A807-11381C719F93}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{29B9DC97-9ED1-4A0C-8826-E76807AFF21D}C:\users\eric\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\eric\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{BED80833-62F0-447A-A771-517F30CA7982}C:\users\eric\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\eric\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{D0E73DD3-DB8A-4879-8CBF-EF430B886275}C:\users\eric\desktop\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\eric\desktop\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{ED087AD6-2E89-4395-8FCE-1B78FC651C1D}C:\users\eric\desktop\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\eric\desktop\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{EE453C67-B12F-4A00-99B7-7EF929976287}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{821EC966-83A1-4FA1-8544-8661258AE498}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{0BF7A12C-8E46-455B-9E07-CC38F262E332}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{444D23D6-66D8-4488-B215-4A81BA184245}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{48CBEAF4-4B44-4D9D-9649-647FC1609E04}] => (Allow) C:\Program Files (x86)\Bohemia Interactive\Arma Cold War Assault\ColdWarAssault.exe FirewallRules: [{4D9D292A-C3B8-4FD7-8712-13883E5190E8}] => (Allow) C:\Program Files (x86)\Bohemia Interactive\Arma Cold War Assault\ColdWarAssault.exe FirewallRules: [{634173F2-3DEA-4806-9825-4122B88B8942}] => (Allow) C:\Program Files (x86)\Bohemia Interactive\Arma Cold War Assault\ColdWarAssault_Server.exe FirewallRules: [{6C8DC179-83F0-4436-B511-A30B944E546B}] => (Allow) C:\Program Files (x86)\Bohemia Interactive\Arma Cold War Assault\ColdWarAssault_Server.exe FirewallRules: [{75B46CA5-0311-4FC4-A85F-B2F4CF8A0754}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [{FBA484E9-B75F-42C8-B187-E11E2B9D510E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [TCP Query User{93CB3D37-A663-4A33-9116-9F6D24166A10}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe FirewallRules: [UDP Query User{E8EDF801-4003-4E95-94CE-CA43D5CBFBBF}C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_60\bin\javaw.exe FirewallRules: [{56845A11-7A0B-4993-8C65-9F5D9192C3DC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{1AB91B82-2CD5-4E18-A1DD-61750C88F72B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8FE58F5C-AEB0-4C55-9807-A207B984BAA4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{CD51334C-E53F-4499-8BE7-E8FE36F15976}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{2CA00976-5BC9-4607-957F-6924C42A7ADD}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{0E75EF21-8542-40CC-8395-D0597AB43006}] => (Allow) C:\Games\World_of_Tanks\WorldofTanks.exe FirewallRules: [{376E2C1F-2A5A-4F8F-A025-B2A31022631B}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{91DB04CB-CDEA-49E5-84A1-F26D891346BB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{CBB50926-6FE8-43FB-B8A8-EF2CDFE0CFB6}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{574CF3E7-C707-4B0D-B0C7-DD35D1A88BF4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{B20E445E-CAF4-4CD0-98FB-98AA37C74B2D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{E24DB050-BB6C-41C1-9ADF-1A40311CCF35}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{C35252CC-3D53-4C29-AA0D-D8557DB218FB}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{C189B0F8-BAE9-4632-A427-A60BECE37E0D}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [TCP Query User{402035E1-D9E7-49D9-8432-25AA24601E4C}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [UDP Query User{EC49E9CF-F701-4119-B854-576F1C71B6B4}C:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) C:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [{0BB8DD0A-AD7F-49C7-9684-02FE7B326747}] => (Allow) C:\Games\World_of_Warplanes\WoWPLauncher.exe FirewallRules: [{3F46E922-FBC8-4A21-963A-A9513AA7B1B9}] => (Allow) C:\Games\World_of_Warplanes\WorldofWarplanes.exe FirewallRules: [{9F4D4274-4270-416B-913E-E868117D1A75}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe FirewallRules: [{8A938F7C-6644-46C0-81E6-0D1DF3AAB756}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{F157B454-31A9-492F-8A87-CC9E433C990E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{F5501CE9-74E0-4172-8FFE-6AFC9B5B9F8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{E70AA067-8CCD-42B7-8D3D-16F501484928}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe FirewallRules: [{C94F2F61-B456-498D-BAFD-93AED9093464}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{D8C2D5B5-223A-45E5-B8DF-05BC96F79EFC}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe FirewallRules: [{7865AA62-B24E-4B6E-BE0C-33E45AFE484D}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [{497550B9-3983-4998-94A5-24653A371049}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe FirewallRules: [TCP Query User{5021C534-DAB5-4DA1-8A20-9B5824D930E2}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe FirewallRules: [UDP Query User{C7FD5DB0-E14B-4252-85CD-806159D80B48}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Erreurs système: ============= CodeIntegrity: =================================== Date: 2015-10-09 10:38:23.536 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-09 10:38:23.352 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-06 19:39:00.268 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-06 19:39:00.044 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-05 20:15:35.370 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-05 20:15:35.184 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-04 10:27:45.978 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-04 10:27:45.754 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-03 18:32:56.460 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2015-10-03 11:31:46.020 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz Pourcentage de mémoire utilisée: 56% Mémoire physique - RAM - totale: 8062.79 MB Mémoire physique - RAM - disponible: 3473.93 MB Mémoire virtuelle totale: 9342.79 MB Mémoire virtuelle disponible: 4014.43 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:194.69 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecture de lecteur)] Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:542.61 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: A66E828D) Partition: GPT. ======================================================== Disk: 1 (Size: 22.4 GB) (Disk ID: A66E82A9) Partition: GPT. ==================== Fin de Addition.txt ============================