Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:09-05-2016 Exécuté par Clément (2016-05-10 19:16:01) Exécuté depuis D:\Telechargements Windows 10 Home Version 1511 (X64) (2015-12-25 13:38:35) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3146559973-668590516-1393931175-500 - Administrator - Disabled) Clément (S-1-5-21-3146559973-668590516-1393931175-1001 - Administrator - Enabled) => C:\Users\Clément DefaultAccount (S-1-5-21-3146559973-668590516-1393931175-503 - Limited - Disabled) Invité (S-1-5-21-3146559973-668590516-1393931175-501 - Limited - Enabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov) Adobe After Effects CC 2015 (HKLM-x32\...\{147EC100-14BE-45EF-AB42-35BAEE7D02F0}) (Version: 13.7.0 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.3.189 - Adobe Systems Incorporated) Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.2.0 - Adobe Systems Incorporated) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.28.1 - Asmedia Technology) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB) CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform) Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) Counter-Strike: Condition Zero (HKLM-x32\...\Steam App 80) (Version: - Valve) Counter-Strike: Condition Zero Deleted Scenes (HKLM-x32\...\Steam App 100) (Version: - Valve) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) CyberLink BD_3D Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version: 2.0.6410 - CyberLink Corp.) CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.) Discord (HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\Discord) (Version: 0.0.290 - Hammer & Chisel, Inc.) Easy Setting Box (HKLM-x32\...\{7E750925-00C9-4B23-A1E8-BBFC0955CFD8}) (Version: 1.0.00 - Samsung) ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB) Far Cry 4 (HKLM-x32\...\Steam App 298110) (Version: - Ubisoft Montreal, Red Storm, Shanghai, Toronto, Kiev) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.36 - Google Inc.) Google Drive (HKLM-x32\...\{D7269C20-B3CE-4CD0-8E88-3D307D3BD41A}) (Version: 1.29.2074.1528 - Google, Inc.) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.7619.1252 - Google Inc.) Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - ) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{AA67D612-0BE5-44D6-9A91-592958F754A1}) (Version: 13.0.198 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{33013669-7557-430E-9153-3C025284E623}) (Version: 5.0.10.2907 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation) Java 8 Update 72 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418072F0}) (Version: 8.0.720.15 - Oracle Corporation) Java 8 Update 74 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418074F0}) (Version: 8.0.740.2 - Oracle Corporation) Java 8 Update 77 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418077F0}) (Version: 8.0.770.3 - Oracle Corporation) Killer Bandwidth Control Filter Driver (Version: 1.1.54.1095 - Rivet Networks) Hidden Killer E220x Drivers (Version: 1.1.54.1095 - Rivet Networks) Hidden Killer Network Manager (Version: 1.1.54.1095 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.54.1095 - Qualcomm Atheros) Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Logitech - Assistant pour jeux vidéo 8.78 (HKLM\...\Logitech Gaming Software) (Version: 8.78.129 - Logitech Inc.) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft) Mise à jour automatique du Firmware pour ODD LG (HKLM-x32\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 10.01.0712.01 - ) Mises à jour NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MSI Afterburner 4.2.0 (HKLM-x32\...\Afterburner) (Version: 4.2.0 - MSI Co., LTD) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.12 - MSI) MSI ECO Center (HKLM-x32\...\{1E55202F-4D31-498A-8F72-97DCBA9F2866}_is1) (Version: 1.0.0.35 - MSI) MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI) MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 5.0.0.33 - MSI) MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.016 - MSI) MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.11 - MSI) MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.04 - MSI) MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{bcbf202c-9746-4173-a49b-649bfd0adca6}) (Version: 6.0.2.102 - Intel Corporation) MSI(R) Intel(R) Extreme Tuning Utility (x32 Version: 6.0.2.102 - Intel Corporation) Hidden Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts) Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team) NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 365.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 365.10 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation) NVIDIA Pilote graphique 365.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 365.10 - NVIDIA Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.11.2.10120 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 365.10 (Version: 365.10 - NVIDIA Corporation) Hidden PdaNet+ for Android 4.18 (HKLM-x32\...\PdaNet_is1) (Version: - June Fabrics Technology Inc) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 6.4.1 (HKLM-x32\...\RTSS) (Version: 6.4.1 - Unwinder) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.) Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden Skype HoloLens Add-In (HKLM-x32\...\{38A3693F-1954-450F-8E42-C0E6F9C1AE94}) (Version: 1.0.0.0 - Microsoft Corporation) Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.) Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.07 - Creative Technology Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) Tom Clancy's The Division - Beta (HKLM-x32\...\Steam App 414460) (Version: - Massive Entertainment) Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds) Update for Skype for Business 2015 (KB3039776) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{8B3A877E-1B73-464A-AD21-9F26A0682AC6}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft) Virtual Audio Cable 4.14 (HKLM\...\Virtual Audio Cable 4.14) (Version: - ) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.8.1 (HKLM\...\VulkanRT1.0.8.1) (Version: 1.0.8.1 - LunarG, Inc.) War Inc. Battlezone (HKLM-x32\...\Steam App 107900) (Version: - Online Warmongers Group Inc.) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3146559973-668590516-1393931175-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-91BFF87FC411}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3146559973-668590516-1393931175-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3146559973-668590516-1393931175-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {054A3EC5-4CF2-4827-A527-1D71385A9C92} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation) Task: {122A2C64-0769-4BF5-AED8-DBA6592DAFC6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd) Task: {2A285154-D1A6-4A82-A148-4C21B39CC5BB} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {2DCFE4F1-F596-4A4F-B1D7-1D4401E33EB8} - \AutoKMS -> Pas de fichier <==== ATTENTION Task: {6351B331-1DD0-4EF4-A39E-DD3D9C746F16} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [2015-08-18] (MSI) Task: {C0EFE839-9AB2-4BB1-A7CA-85896F03AA97} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {C549FA03-E0BA-4D6A-A604-3B0FC85D5207} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-22] (Google Inc.) Task: {DBBB9D44-29E0-4A31-A76B-D0D5551FC46A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-12-22] (Google Inc.) Task: {DF17E806-DA0D-44F1-9F76-1B94EFE5A222} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-10-30 09:17 - 2015-10-30 09:17 - 00028672 _____ () C:\WINDOWS\SYSTEM32\efsext.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-25 15:34 - 2016-04-27 14:18 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-05-19 10:11 - 2015-05-19 10:11 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe 2016-02-19 18:13 - 2016-02-19 18:13 - 00076152 _____ () C:\WINDOWS\system32\PnkBstrA.exe 2016-02-19 12:17 - 2016-05-02 07:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2015-12-22 22:59 - 2016-05-02 07:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-03-28 21:05 - 2016-05-02 07:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-02-19 12:17 - 2016-05-02 07:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-04-12 19:36 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-12 19:36 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-11-14 05:23 - 2015-11-14 05:23 - 00553120 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2016-04-27 17:51 - 2016-04-27 17:51 - 00959176 _____ () C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll 2016-04-12 19:35 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-04-12 19:36 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-04-24 21:00 - 2016-04-24 21:01 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-03-28 21:05 - 2016-05-02 07:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-03-28 21:05 - 2016-05-02 07:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-03-28 21:05 - 2016-05-02 07:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-14 21:25 - 2016-05-02 07:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2015-12-25 15:32 - 2015-12-25 15:32 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-04-12 19:35 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-04-12 19:35 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-04-12 19:35 - 2016-04-02 05:00 - 00936960 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-04-12 19:36 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-03-28 21:05 - 2016-05-02 07:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-03-28 21:05 - 2016-05-02 07:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2016-01-06 21:43 - 2016-01-06 21:43 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2016-01-06 21:43 - 2016-01-06 21:43 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2015-12-22 22:26 - 2015-05-29 17:57 - 00089600 _____ () C:\WINDOWS\SYSTEM32\CmdRtr64.DLL 2015-12-22 22:26 - 2015-05-29 17:56 - 00366080 _____ () C:\WINDOWS\SYSTEM32\APOMgr64.DLL 2016-05-04 21:55 - 2016-05-04 12:04 - 02334360 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.36\libglesv2.dll 2016-05-04 21:55 - 2016-05-04 12:03 - 00105112 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.36\libegl.dll 2016-05-10 19:02 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll 2016-04-24 21:00 - 2016-04-24 21:01 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-24 21:00 - 2016-04-24 21:01 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2015-12-22 22:59 - 2016-05-02 08:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-04-27 17:51 - 2016-04-27 17:51 - 00679624 _____ () C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll 2015-07-11 00:37 - 2015-07-11 00:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3146559973-668590516-1393931175-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Clément\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\msi gaming.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "XboxStat" HKLM\...\StartupApproved\Run32: => "BDRegion" HKLM\...\StartupApproved\Run32: => "CLMLServer" HKLM\...\StartupApproved\Run32: => "EasySettingBox" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\StartupFolder: => "PdaNet Desktop.lnk" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "swg" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\amd64" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "Uninstall C:\Users\Clément\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" HKU\S-1-5-21-3146559973-668590516-1393931175-1001\...\StartupApproved\Run: => "Discord" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{3B49964E-C3F1-41F6-A062-23C84585CBA6}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Rivals\NFS14.exe FirewallRules: [{9E76C42F-8662-4416-9BE3-8EEFDAF6CBB7}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Rivals\NFS14.exe FirewallRules: [{88950E84-5A20-475F-8A2C-5B166E100F26}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Rivals\NFS14_x86.exe FirewallRules: [{2420E66B-3B0D-4A8C-A3ED-32E4EABF3BF2}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Rivals\NFS14_x86.exe FirewallRules: [UDP Query User{B66EC644-6510-47DD-9D37-7FC5AF3A37BC}D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{7781E28D-D42D-4082-8E25-4EBC606E186F}D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{1E906284-4C29-4D51-96CB-6AE88A3DDD22}] => (Allow) LPort=48113 FirewallRules: [{070DCB61-62D4-4BF3-9786-609DE08BCD5F}] => (Allow) LPort=48113 FirewallRules: [{23F4CC11-7185-4CA1-B166-C7B830A225B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{08F501CE-B721-4932-A413-455B247C4320}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D0A5EC22-17EF-4505-9F33-F1D252D06A42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{6BDD0610-24AF-4C82-8C37-9BDFD5D4F8D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BD38B14D-0401-44F9-B1E3-9623C882C874}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{AFB0B8FF-E937-4847-A7BD-32FB07806D80}] => (Allow) D:\Progammes\PowerDVD10\PowerDVD10.EXE FirewallRules: [{D315BAA5-6C6F-4424-9857-486A700DD42E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A20262DE-DD72-400C-863C-148911BBB8B7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{B1168A04-993A-484B-9DDB-226202778C5E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{ADFB9D74-E1AA-4BAD-A0CD-757A817E9BFF}] => (Allow) D:\Progammes\Steam\Steam.exe FirewallRules: [{B6733C66-8A6B-4DE3-9139-D7AB5D78C58A}] => (Allow) D:\Progammes\Steam\Steam.exe FirewallRules: [{70CF856C-446C-4969-BF41-70DF9C8EFC6C}] => (Allow) D:\Progammes\Steam\bin\steamwebhelper.exe FirewallRules: [{53D699FE-F280-4921-ADBA-7110EA22870C}] => (Allow) D:\Progammes\Steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{D947A9E4-AC59-4921-80FF-A1832580A66F}D:\progammes\heroes of the storm\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) D:\progammes\heroes of the storm\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{E11E547A-B5DE-4DBF-A926-FAA6646A6BB4}D:\progammes\heroes of the storm\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe] => (Allow) D:\progammes\heroes of the storm\heroes of the storm\versions\base39709\heroesofthestorm_x64.exe FirewallRules: [{6AC54CF6-2C60-481A-90F9-BBC198400713}] => (Allow) D:\Progammes\Steam\steamapps\common\WarIncBattleZone\RSUpdate.exe FirewallRules: [{ACE8DA79-09DE-48FE-8672-9CCDB6D7C4C5}] => (Allow) D:\Progammes\Steam\steamapps\common\WarIncBattleZone\RSUpdate.exe FirewallRules: [TCP Query User{AA45875C-5385-46C4-BE73-32871E9004B6}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{01498833-B748-45E0-9E53-00EF431A2551}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{D0C0C878-8757-4197-92B2-0F8E876377BA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{0C8F79A3-D366-4B53-A39F-D804A3C4A65D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{18154D5E-5F59-4C71-996C-5706994FC001}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{E5B18E1B-407D-49CB-9480-DDBBCA34B505}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{12E9E702-E4A7-48C6-B1DB-E0795B76EA91}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{78DC4CF0-69CA-44CB-A2D0-D1A5C715E83E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{ACAB6971-380C-4CC7-AE1F-32731C994001}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{0E2B505D-311A-4579-8FBB-86DD2614802C}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{252417FB-A24D-421A-96F3-8DA7275217A5}] => (Allow) D:\Progammes\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{41F8E158-A224-44BC-A6DB-D85214FFC048}] => (Allow) D:\Progammes\Steam\steamapps\common\Trove\GlyphClient.exe FirewallRules: [{1F517ED0-32C9-4D9C-8C76-EF9D9F458D0C}] => (Allow) D:\Progammes\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{96C82038-2B80-4E50-82D5-DF1A3B627C74}] => (Allow) D:\Progammes\Steam\steamapps\common\Half-Life\hl.exe FirewallRules: [{E652010B-98CA-4312-B484-1BBA1393540F}] => (Allow) D:\Progammes\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{44D1542D-09CA-4471-BA7C-0BFAEAC66ACA}] => (Allow) D:\Progammes\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{ED03042A-273C-4AB8-9FD7-83DDD7B05D44}] => (Allow) D:\Progammes\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{052FBECA-AA77-49B5-8023-78DD81CCCEB0}] => (Allow) D:\Progammes\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [TCP Query User{DFC74EEF-EE1C-4E81-B2C4-FB007175A00D}C:\program files (x86)\msi\gaming app\gamingapp.exe] => (Allow) C:\program files (x86)\msi\gaming app\gamingapp.exe FirewallRules: [UDP Query User{C6D9CFFC-B978-4FC0-B796-A4A445E01C25}C:\program files (x86)\msi\gaming app\gamingapp.exe] => (Allow) C:\program files (x86)\msi\gaming app\gamingapp.exe FirewallRules: [{62246BF4-8924-4718-AE61-4E4EF6F2934E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{E52F8B18-99E7-4AAC-BA88-6CAA816EDCC1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D8BA00AF-CA6A-4B57-B843-F49A5C64DA61}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{910C0660-22BD-45E7-B894-B2B16CEB13D2}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{E43E870A-7837-4454-8E35-4B9EDC274999}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{16377A6C-EB08-4E3B-A186-CFA8049FB177}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe FirewallRules: [{FED45558-F6CD-4406-84E4-33626777883E}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{0E3F9C8C-9514-479D-9C42-29B32F1783A9}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{936F6D40-803A-4FBD-9D48-943FA987B2EA}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{03A5CFA2-A01A-45A3-B6BA-2B625F38576D}] => (Allow) D:\Program Files (x86)\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [TCP Query User{957F9260-BFE5-4797-B7B5-D1EC701D6459}D:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) D:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [UDP Query User{8F016F9E-D838-46AC-A043-8E9206B498EC}D:\program files (x86)\origin games\battlefield 4\bf4.exe] => (Allow) D:\program files (x86)\origin games\battlefield 4\bf4.exe FirewallRules: [{69F926C4-ADC9-469B-B9CE-B52CDBE5BF74}] => (Allow) D:\Progammes\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe FirewallRules: [{42A7EF8F-ED4E-4093-8E9D-6F644034CC38}] => (Allow) D:\Progammes\Steam\steamapps\common\Far Cry 4\bin\FarCry4.exe FirewallRules: [{0BDB991F-2B0B-431C-A877-FF32EFDBAAE6}] => (Allow) D:\Progammes\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe FirewallRules: [{8217D64B-9A6B-42B3-8465-01584BEEB28D}] => (Allow) D:\Progammes\Steam\steamapps\common\Far Cry 4\bin\IGE_WPF64.exe FirewallRules: [{731B9619-7C32-4635-A463-34E527B42E71}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [{FFE275E6-23FF-4EF2-9105-74263667ABEF}] => (Allow) D:\Program Files (x86)\Origin Games\Need for Speed(TM) Most Wanted\NFS13.exe FirewallRules: [TCP Query User{89529AC8-A31D-46B7-B5FE-AF96FF270EA0}D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{189ABC15-22DC-4AA3-9C61-6027601B0126}D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\progammes\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{C9832D25-E278-4176-9E4C-A4A8F72419A3}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe FirewallRules: [UDP Query User{9C6726D5-88F4-4554-8653-45AD8726344C}C:\program files\java\jre1.8.0_74\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_74\bin\javaw.exe FirewallRules: [{73F6B40B-490F-42BB-81CE-80C917F56B02}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{91792197-5C97-46C1-9E18-B9166BB493AE}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [TCP Query User{5F403DA9-6D7D-4CC0-818C-E1CE97C3794B}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [UDP Query User{CC26FAD6-EDAC-478E-8C29-E91FA2B39020}C:\program files\java\jre1.8.0_77\bin\java.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\java.exe FirewallRules: [TCP Query User{1A2B3BE7-84EB-4EAF-964D-081D1340B023}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [UDP Query User{6BE872A4-BA41-45C7-9998-76D6097D237B}C:\program files\java\jre1.8.0_77\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_77\bin\javaw.exe FirewallRules: [{B25D3D52-3833-4118-B1C4-A46478381B8C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 24-04-2016 20:52:56 Installed Skype HoloLens Add-In 07-05-2016 13:59:27 Point de contrôle planifié 10-05-2016 19:07:59 MSI(R) Intel(R) Extreme Tuning Utility ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/10/2016 07:10:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe, version : 10.0.10586.0, horodatage : 0x5632d7ba Nom du module défaillant : ESENT.dll, version : 10.0.10586.212, horodatage : 0x56fa1686 Code d’exception : 0xc0000602 Décalage d’erreur : 0x000000000022885f ID du processus défaillant : 0x9c0 Heure de début de l’application défaillante : 0xsvchost.exe0 Chemin d’accès de l’application défaillante : svchost.exe1 Chemin d’accès du module défaillant: svchost.exe2 ID de rapport : svchost.exe3 Nom complet du package défaillant : svchost.exe4 ID de l’application relative au package défaillant : svchost.exe5 Error: (05/10/2016 07:10:07 PM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (2496) Interruption du processus en raison d’une erreur irrécupérable : PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(bt.cxx:12593): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS) Error: (05/10/2016 07:08:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (05/09/2016 10:32:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe, version : 10.0.10586.0, horodatage : 0x5632d7ba Nom du module défaillant : ESENT.dll, version : 10.0.10586.212, horodatage : 0x56fa1686 Code d’exception : 0xc0000602 Décalage d’erreur : 0x000000000022885f ID du processus défaillant : 0x990 Heure de début de l’application défaillante : 0xsvchost.exe0 Chemin d’accès de l’application défaillante : svchost.exe1 Chemin d’accès du module défaillant: svchost.exe2 ID de rapport : svchost.exe3 Nom complet du package défaillant : svchost.exe4 ID de l’application relative au package défaillant : svchost.exe5 Error: (05/09/2016 10:32:40 PM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (2448) Interruption du processus en raison d’une erreur irrécupérable : PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -266(bf.cxx:14625): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS) Error: (05/09/2016 08:40:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe, version : 10.0.10586.0, horodatage : 0x5632d7ba Nom du module défaillant : ESENT.dll, version : 10.0.10586.212, horodatage : 0x56fa1686 Code d’exception : 0xc0000602 Décalage d’erreur : 0x000000000022885f ID du processus défaillant : 0x920 Heure de début de l’application défaillante : 0xsvchost.exe0 Chemin d’accès de l’application défaillante : svchost.exe1 Chemin d’accès du module défaillant: svchost.exe2 ID de rapport : svchost.exe3 Nom complet du package défaillant : svchost.exe4 ID de l’application relative au package défaillant : svchost.exe5 Error: (05/09/2016 08:40:05 PM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (2336) Interruption du processus en raison d’une erreur irrécupérable : PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(fucb.cxx:359): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS) Error: (05/09/2016 05:31:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-RLJJRK6) Description: Le package Microsoft.ZuneMusic_3.6.15131.0_x64__8wekyb3d8bbwe+Microsoft.ZuneMusic a été interrompu, car sa suspension a été trop longue. Error: (05/09/2016 03:19:57 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (05/08/2016 12:22:39 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Erreurs système: ============= Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:12:07 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-RLJJRK6) Description: par défaut de l’ordinateurLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}DESKTOP-RLJJRK6ClémentS-1-5-21-3146559973-668590516-1393931175-1001LocalHost (avec LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742 Error: (05/10/2016 07:10:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service State Repository (StateRepository) s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (05/10/2016 07:10:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RLJJRK6) Description: NLInternal.SharedRecoActivation Error: (05/10/2016 07:10:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_5cecf s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (05/10/2016 07:10:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_5cecf s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2016-05-09 21:11:06.202 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-04-13 20:46:23.818 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-13 12:51:04.090 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-13 11:57:56.091 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-24 20:47:44.206 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-24 20:44:05.737 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-24 20:43:26.465 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-24 19:46:56.898 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-03-23 18:28:23.515 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-21 16:03:46.052 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 8138.03 MB Mémoire physique - RAM - disponible: 4858.11 MB Mémoire virtuelle totale: 25138.03 MB Mémoire virtuelle disponible: 21828.75 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:223.08 GB) (Free:163.41 GB) NTFS Drive d: () (Fixed) (Total:1863.02 GB) (Free:1692.74 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: E94EA5D0) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 1863 GB) (Disk ID: DD623C6F) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================