Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:13-06-2016 Exécuté par Jean-Louis (2016-06-14 21:09:36) Exécuté depuis I:\Users\Jean-Louis\Downloads Windows 10 Home (X64) (2015-07-31 18:56:18) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1279501240-4226057553-4213955958-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1279501240-4226057553-4213955958-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1279501240-4226057553-4213955958-1003 - Limited - Enabled) Invité (S-1-5-21-1279501240-4226057553-4213955958-501 - Limited - Disabled) Jean-Louis (S-1-5-21-1279501240-4226057553-4213955958-1001 - Administrator - Enabled) => C:\Users\Jean-Louis Michel Antoine (S-1-5-21-1279501240-4226057553-4213955958-1004 - Administrator - Enabled) => C:\Users\Michel Antoine Test (S-1-5-21-1279501240-4226057553-4213955958-1005 - Administrator - Enabled) => C:\Users\Test ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.29.0 - Mirillis) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.8 - Adobe Systems Incorporated) Adobe Dreamweaver CS3 (HKLM-x32\...\Adobe_435a6af7459cb02a9c1138113a26e93) (Version: 9.0 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.16) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard) Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: 1.0.0.0 - Ubisoft) Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft) Avidemux 2.6 - 32 bits (32-bit) (HKLM-x32\...\Avidemux 2.6 - 32 bits) (Version: 2.6.11.160129 - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.18.1035 - Bitdefender) BitTorrent (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.) BlueStacks App Player 0.9.6.4092 SuperUser BSEasy (HKLM-x32\...\{AC7B7E99-4E43-47B7-A526-10BE7A28E160}) (Version: 0.9.6.4092 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4643 - CDBurnerXP) CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Dropbox (HKLM-x32\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.35.1 - Dropbox, Inc.) Hidden FileZilla Client 3.13.0 (HKLM-x32\...\FileZilla Client) (Version: 3.13.0 - Tim Kosse) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - ) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.) Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation) League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden Ma-Config.com (64 bits) (HKLM\...\{E1322B8A-6F66-44ED-95D5-7FEBC50AC814}) (Version: 7.1.5.0 - Cybelsoft) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.5.12.11 (Version: 2.5.12.11 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 fr)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 358.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.91 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation) NVIDIA Pilote graphique 358.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.91 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Overwolf (HKLM-x32\...\Overwolf) (Version: 0.95.40.0 - Overwolf Ltd.) Panneau de configuration NVIDIA 358.91 (Version: 358.91 - NVIDIA Corporation) Hidden PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PhoneRescue 1.9.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 1.9.0 - iMobie Inc.) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.1.5 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27748 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\Spotify) (Version: 1.0.29.92.g67727800 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0379A186-D3F6-4BBC-97D4-764DEE351182} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {03FA4387-B034-407B-A808-184F79D4B00B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {05BA38E5-D4E7-498B-86D1-40656B848286} - System32\Tasks\AdobeAAMUpdater-1.0-Utilisateur-Jean-Louis => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {08C99488-CC17-4252-B84F-DFAA747BBED2} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-23] (Dropbox, Inc.) Task: {10AA6029-8053-4215-9903-9EC1CB98514A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {1E182697-0440-4691-A988-24920FFE7221} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {2037858A-E68C-4B5C-9EE7-92E28DD8891B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-03-30] (Bitdefender) Task: {20A796D8-A0D8-40FF-BAF6-5CC37CA781F2} - System32\Tasks\{4B59C076-AF16-4BFB-9821-C4CC81FA4D06} => Firefox.exe hxxp://ui.skype.com/ui/0/7.24.85.104/fr/go/help.faq.installer?LastError=1603 Task: {210034D8-2BEB-41B0-8A0E-60EFB816C511} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {2346E735-A001-4590-A4C1-81E01A302271} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {3511B086-DC46-4AA6-837D-449C3C6EA9EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {3A3B8E23-5488-4102-BE46-651254E7889F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {3CD0C414-D07E-46FD-8420-F6CB9933A436} - System32\Tasks\b9a19574b90e816a1336768e6262dc0f => powershell.exe -NoProfile -NoLogo -NonInteractive -ExecutionPolicy Bypass -File C:\WINDOWS\b9a19574b90e816a1336768e6262dc0f.ps1 Task: {495A0A93-A94B-482F-961A-C7E00361111B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {6AED126E-E6F0-4FA7-9B45-3404643193CD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {705CE35E-EC21-433E-865D-3CBD6729D4EB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-23] (Dropbox, Inc.) Task: {711BF8E1-A5D5-41A6-8E4C-43328940F2F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {741B2137-674E-487E-A94C-8633D9CFAB27} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {8031E8ED-C251-4853-97CF-08C1EB400FC7} - System32\Tasks\Microsoft Office 15 Sync Maintenance for UTILISATEUR-Jean-Louis Utilisateur => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-01-21] (Microsoft Corporation) Task: {8623668B-5C72-4A90-8ECF-34C09931E53A} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-29] (Overwolf LTD) Task: {8795948F-4364-496B-AE45-1773F39220EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated) Task: {89AD1F9A-C47E-4979-AE2C-9CE72C8CC168} - \Microsoft\Windows\RetailDemo\CleanupOfflineContent -> Pas de fichier <==== ATTENTION Task: {92967E14-912A-490B-B934-48F5C2A98BA4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {95808472-C3FC-49E2-BB93-8C576D1F674D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {99D0A532-2391-4137-812A-C5FBC920EF7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {9BEC8093-2FA3-408E-B766-6742646725CE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {A670BC92-C0DC-4842-A347-F5F835C5874D} - System32\Tasks\Microsoft\Windows\Media Center\VideoFetcher => C:\ProgramData\VideoFetcher\VideoFetcher.exe [2016-05-25] () <==== ATTENTION Task: {A7EDFE6A-F531-4D44-AB04-DEE287217DF0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {AD73C93F-8246-4B26-987E-7462D582D353} - System32\Tasks\{D1AD3271-EAE8-4C29-ACA9-D13970DEFB32} => Firefox.exe hxxp://ui.skype.com/ui/0/7.21.85.100/fr/abandoninstall?page=tsProgressBar Task: {BD037A47-099A-4F23-BAF1-59BD74DD7B44} - System32\Tasks\{BB38C40A-04A8-4FC9-A6D3-6FE05771CA57} => Firefox.exe hxxp://ui.skype.com/ui/0/7.21.85.100/fr/abandoninstall?page=tsProgressBar Task: {BDB649F0-98EA-4000-92D8-E44DC322109C} - System32\Tasks\{A1877DF2-02DD-48A9-9913-C0BD9C70A50F} => Chrome.exe hxxp://ui.skype.com/ui/0/7.10.64.101/fr/abandoninstall?page=tsProgressBar Task: {D4E338EC-1EA1-4D04-B916-4555A7325E57} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {E02D4B57-4641-4378-9C98-CB3F49A346DA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-07-31 21:29 - 2015-07-31 21:29 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-02-24 19:46 - 2015-11-05 17:08 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 06:45 - 2015-10-13 06:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-06-09 18:12 - 2016-06-09 18:12 - 04836352 _____ () C:\Program Files\7a9ad46865a44ea692d1d3caf22e6178\3f79312df95f07926588d4a516d8629f.exe 2015-08-19 14:28 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2015-06-23 22:11 - 2015-06-23 22:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-04-13 21:21 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 21:21 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-05-20 21:31 - 2016-05-20 21:31 - 00959168 _____ () C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2015-10-02 19:49 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-09 15:22 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-09 15:22 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-09 15:22 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-10-02 19:49 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 13:00 - 2015-07-10 18:28 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2015-07-08 08:58 - 2015-07-08 08:58 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe 2016-03-29 18:36 - 2016-03-29 18:37 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-03-29 18:36 - 2016-03-29 18:37 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-03-03 19:47 - 2016-03-03 19:48 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2015-08-17 12:46 - 2015-07-24 06:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-05-20 21:31 - 2016-05-20 21:31 - 00679624 _____ () C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll 2016-05-29 15:12 - 2016-05-29 15:12 - 45069312 _____ () C:\Program Files (x86)\Overwolf\0.95.40.0\libcef.DLL 2015-11-16 12:48 - 2015-11-16 12:48 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2016-03-23 17:14 - 2016-05-05 12:09 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2016-06-03 20:43 - 2016-05-05 12:10 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2016-03-23 17:14 - 2016-05-05 12:09 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2016-03-23 17:14 - 2016-05-31 20:34 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2016-03-23 17:14 - 2016-05-05 12:10 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2016-06-03 20:43 - 2016-05-05 12:11 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00021832 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00023872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32._winffi_kernel32.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2016-06-03 20:43 - 2016-05-31 20:33 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2016-06-03 20:43 - 2016-05-05 12:10 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2016-06-03 20:43 - 2016-05-05 12:12 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2016-06-03 20:43 - 2016-05-31 20:34 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd 2016-06-03 20:43 - 2016-03-12 02:46 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll 2016-06-03 20:43 - 2016-05-31 20:34 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2016-06-03 20:43 - 2016-05-31 20:34 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2016-03-23 17:14 - 2016-05-05 12:10 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 01971504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00223544 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd 2016-04-15 18:36 - 2016-05-31 20:34 - 00025928 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-12-09 18:41 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll 2015-12-09 18:41 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll 2015-12-09 18:41 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll 2014-11-10 13:12 - 2014-11-10 13:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\ma-config.com -> hxxp://ma-config.com IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\ma-config.com -> hxxps://ma-config.com IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2016-06-13 13:27 - 00000856 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 clients2.google.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\Control Panel\Desktop\\Wallpaper -> I:\Users\Jean-Louis\Desktop\144144.jpg DNS Servers: 8.8.4.4 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "cacaoweb" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{3F56993E-2B8A-488C-A581-E7142CAB62CE}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{B0FC5CBE-4121-4527-8158-6901C6ABC34B}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{7DEFAF77-E34D-414F-9411-65B61722FEF9}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{5F5B0818-2358-4A79-BBED-0AE44B4CB5C9}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{FCEA8E18-37F1-4FEA-BA42-95AA5795151D}] => (Allow) I:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{7DF517B0-4018-4CC4-A9CA-D56C5A99208D}] => (Allow) I:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{5CCE52E3-E416-4431-B345-8BED86258E6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{EB215CBC-C29A-4E6E-AA3D-717AC591ECBE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{3C2C65FE-942E-4BCB-AB22-801C1FE749CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5040B023-240A-4DEE-9F32-8838D2144893}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3F082BA9-D65C-4604-98E5-5D766162C392}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{138A6962-93CA-47F9-941D-BDEEF68D5F9B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F5320DD7-3CF4-4A20-81D1-08944F575D00}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{5FD44488-309C-4C5B-81C8-88A55C8207CC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{3974BAA0-4153-4984-9376-27A0AC0D2542}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{8D1D79A8-88EC-4AF1-8EC9-B5A25E627ABF}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{B2455C9E-01E3-4497-9729-48B31083A1AD}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{F49ECFAA-BD5D-4FDB-B9CB-BFDD6359AC8B}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{883DB36C-1D59-4377-A58A-673FB11FC10F}] => (Allow) I:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7E92DCE6-0BB1-4AD1-8A08-EA044B8DAF3A}] => (Allow) I:\Program Files (x86)\Steam\Steam.exe FirewallRules: [UDP Query User{540C88E7-F94D-4ED8-9F75-2D2625E6C766}I:\steam\steam.exe] => (Allow) I:\steam\steam.exe FirewallRules: [TCP Query User{7ED61EF4-7354-4404-AACE-2BA535255FE7}I:\steam\steam.exe] => (Allow) I:\steam\steam.exe FirewallRules: [UDP Query User{2AA9A5A6-B6B0-4E72-A3C0-45297DE3173A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{626561E6-523E-4E60-A3B8-3671577BDC1C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{C49B9932-4C8C-4D3C-9E03-F117D05575B9}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{FE6DFAE4-AEE0-46A1-92A1-D31FE303FA23}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [{4E112388-6036-4C7A-8FC4-DA3EFD32B8BB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{8275C569-1B94-4598-9E1A-4F580DD44EDD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C3C05974-4D20-428F-88DD-F078282C4F21}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1BF53DA9-8757-4A2E-9D6F-4716FD281727}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{8F9C67FF-CA5F-41DB-BAA2-AB889BD27E45}] => (Allow) LPort=48113 FirewallRules: [{F3D85300-F0FC-4AFD-A066-8140F5CC52FE}] => (Allow) LPort=48114 FirewallRules: [{8E21AD2B-7797-40B7-98DC-CEA1EFA7F074}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{555B9E1D-ABDA-469E-8CE1-020C651FD529}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{BB9352D1-D681-479B-B69B-61852B989B9B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6FECD1F4-F805-49F6-BE06-6A4B9322B33E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{9547632A-89DB-434F-A267-48D646D771E1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3FE7725C-EDF9-40FF-8788-480476D5C7FD}] => (Allow) C:\Users\Jean-Louis\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{2C080F8C-3D3E-44D1-9FC1-70BB715A65A5}] => (Allow) C:\Users\Jean-Louis\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [TCP Query User{D4FC54B0-FA3E-4234-974C-A333BBAD25E3}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{E8122432-FFAF-4BFB-A092-701CFF33DE58}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [{F1A74F3C-07A2-41B3-A698-81505075DA9E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8413EFD9-89D5-4B3D-A665-A336C506C6AB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{1C11514E-7CF3-4FA3-8FD1-3BB4D04A2CE5}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{55EADAC7-A0D8-458F-A63A-BF8DA0402EC9}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{87B6200A-E039-4604-A46B-EBF6C0E25C99}] => (Allow) I:\Assassin's Creed Unity\ACU.exe FirewallRules: [{FF44C7E9-897E-465C-9437-CD4749CE6BCB}] => (Allow) I:\Assassin's Creed Unity\ACU.exe FirewallRules: [{6B20FAB6-E0AD-4830-9987-0D3869519F10}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{0F61ECA3-DE88-4FBC-B88C-B95CB877E559}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{6298BE8D-CCE7-4D42-8AFE-1C4D64D7C18F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{74E4F27A-E46C-4CF8-92F3-85EB2D66BC7E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{A057D684-8C77-4694-9A6C-20DDE84E2000}] => (Allow) LPort=1688 FirewallRules: [{2E98B686-FB12-485A-81C1-41072A37AE91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{E65456ED-8D3D-472F-8C69-B051AA781B68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BA0B761F-4363-4597-A872-5343617798BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{56315366-0EB8-42C8-90E4-887747A7AC30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8A133111-CD50-4B79-97C7-AF4CB906C942}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3D5D5FEB-2A38-4F8C-AF6D-418CD81C8632}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{EBD59E89-7752-49D9-899B-1F68C43959FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9593FEAC-DCA1-4F4E-B3BB-0D79696A02D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{9211BE35-DA35-4B2F-9A2F-6683271F3D86}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{158743BD-8772-4883-8FA5-26C829401A0D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F6CD2A1C-151C-4DB1-A494-51328CE14B4A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E51C4BD1-84BC-40D0-A8EE-977758D3C492}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{67800B08-44DF-4039-BB28-0A664C257D11}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{177C9AFE-7DE3-4D83-A73C-A1EDEDA38F29}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9335E4-BD16-46C3-83F4-16EE153CBC80}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{80D0970C-7EA0-47BB-9FF8-56A14888953B}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{82FB93EF-F181-4AFF-9A13-023BF4161467}] => (Allow) I:\Steam\bin\steamwebhelper.exe FirewallRules: [{CB648ABD-8105-45B9-AB5E-771075B0E9DE}] => (Allow) I:\Steam\bin\steamwebhelper.exe FirewallRules: [{ED3B8C81-34AF-49B8-B9BD-FE44A07B4CFF}] => (Allow) I:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{27E8487E-C543-4CCD-A5AC-02304E7B1948}] => (Allow) I:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [TCP Query User{9ECCDF92-AFD9-4DC7-B28E-41FD7F9CB19C}I:\steam\steamapps\common\dayz\dayz.exe] => (Allow) I:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{11F5A346-961D-474F-A6C6-AEADFFF0293A}I:\steam\steamapps\common\dayz\dayz.exe] => (Allow) I:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{D6D1A838-C66E-4947-8A9E-AB03A5F84F78}] => (Allow) I:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{95A564E9-E2A6-46E5-A5AB-1DD8B5945E21}] => (Allow) I:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [TCP Query User{B59FBEFC-DB61-4EF2-A470-A8069903260C}C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [UDP Query User{ACEA727C-4134-4240-B969-599F96809CB6}C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [{7E022000-C789-4A74-ACF5-298C62D01A2B}] => (Block) C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [{A52FC4D3-CF54-439B-878C-695FBE72AD6F}] => (Block) C:\users\jean-louis\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [{8EE8ECA7-4A67-43BC-9F25-7CFFB4A692AE}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Carte réseau sans fil 802.11n Description: Carte réseau sans fil 802.11n Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Ralink Technology, Corp. Service: netr28x Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/14/2016 07:57:04 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme instup.exe version 11.2.2738.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 1e84 Heure de début : 01d1c66476402a83 Heure de fin : 16 Chemin d'accès de l'application : C:\Users\JEAN-L~1\AppData\Local\Temp\_av_iup.tm~a07452\New_b0208d6\instup.exe ID de rapport : 651dcf12-3259-11e6-80f4-74d02b99d1d4 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll4 Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: rdyboost4 Error: (06/14/2016 07:44:07 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL4 Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: LsaC:\Windows\System32\Secur32.dll4 Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: ESENTC:\WINDOWS\system32\esentprf.dll4 Error: (06/14/2016 07:44:07 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll4 Error: (06/14/2016 07:43:18 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Le service ne peut pas être démarré. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. à BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/14/2016 07:24:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Utilisateur) Description: Échec de l’activation de l’application Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App avec l’erreur : -2147024891 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Erreurs système: ============= Error: (06/14/2016 07:43:54 PM) (Source: Schannel) (EventID: 4108) (User: Utilisateur) Description: Le certificat reçu à partir du serveur distant n’a pas été validé correctement. Le code d’erreur est 0x80092012. La demande de connexion SSL a échoué. Le certificat du serveur est contenu dans les données attachées. Error: (06/14/2016 07:43:54 PM) (Source: Schannel) (EventID: 4120) (User: Utilisateur) Description: Une alerte irrécupérable a été générée et envoyée au point de terminaison distant. Ceci peut entraîner l’arrêt de la connexion. Le code d’erreur irrécupérable défini par le protocole TLS est 43. L’état d’erreur de Windows SChannel est 552. Error: (06/14/2016 07:43:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service BlueStacks Android Service s’est arrêté avec l’erreur : Une exception s’est produite dans le service lors du traitement de la commande. Error: (06/14/2016 07:42:23 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (06/14/2016 07:42:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/14/2016 07:42:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/14/2016 07:42:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/14/2016 07:42:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Données de contacts_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/14/2016 07:42:16 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_Session2 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/14/2016 07:24:58 PM) (Source: DCOM) (EventID: 10016) (User: Utilisateur) Description: propres à l’applicationLocalActivationApp.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mcaNon disponibleUtilisateurJean-LouisS-1-5-21-1279501240-4226057553-4213955958-1001LocalHost (avec LRPC)Non disponibleNon disponible CodeIntegrity: =================================== Date: 2016-04-01 10:11:57.225 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Minecraft\MinecraftLauncher.exe that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 32% Mémoire physique - RAM - totale: 8100.16 MB Mémoire physique - RAM - disponible: 5473.27 MB Mémoire virtuelle totale: 9380.16 MB Mémoire virtuelle disponible: 6168.6 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:59.62 GB) (Free:4.39 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive i: (Données) (Fixed) (Total:931.51 GB) (Free:251.61 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: EFC6CC09) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: BAD85E01) Partition 1: (Active) - (Size=59.6 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================