Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-06-2016 01 Exécuté par Jean-Louis (2016-06-21 23:23:45) Exécuté depuis I:\Users\Jean-Louis\Desktop Windows 10 Home (X64) (2015-07-31 18:56:18) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1279501240-4226057553-4213955958-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1279501240-4226057553-4213955958-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1279501240-4226057553-4213955958-1003 - Limited - Enabled) Invité (S-1-5-21-1279501240-4226057553-4213955958-501 - Limited - Disabled) Jean-Louis (S-1-5-21-1279501240-4226057553-4213955958-1001 - Administrator - Enabled) => C:\Users\Jean-Louis Michel Antoine (S-1-5-21-1279501240-4226057553-4213955958-1004 - Administrator - Enabled) => C:\Users\Michel Antoine Test (S-1-5-21-1279501240-4226057553-4213955958-1005 - Administrator - Enabled) => C:\Users\Test ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.29.0 - Mirillis) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.180 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.8 - Adobe Systems Incorporated) Adobe Dreamweaver CS3 (HKLM-x32\...\Adobe_435a6af7459cb02a9c1138113a26e93) (Version: 9.0 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.16) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated) AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ATTENTION Apple Application Support (32 bits) (HKLM-x32\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{0DE0A178-AC7B-4650-806C-CF226DE03766}) (Version: 4.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard) Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: 1.0.0.0 - Ubisoft) Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft) Avidemux 2.6 - 32 bits (32-bit) (HKLM-x32\...\Avidemux 2.6 - 32 bits) (Version: 2.6.11.160129 - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.26.1436 - Bitdefender) BitTorrent (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\BitTorrent) (Version: 7.9.7.42331 - BitTorrent Inc.) BlueStacks App Player 0.9.6.4092 SuperUser BSEasy (HKLM-x32\...\{AC7B7E99-4E43-47B7-A526-10BE7A28E160}) (Version: 0.9.6.4092 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.3.4643 - CDBurnerXP) CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\CopyTrans Suite) (Version: 4.008 - WindSolutions) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Dropbox (HKLM-x32\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.35.1 - Dropbox, Inc.) Hidden FileZilla Client 3.13.0 (HKLM-x32\...\FileZilla Client) (Version: 3.13.0 - Tim Kosse) Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - ) Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.0.16 - Riot Games, Inc.) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) iTunes (HKLM\...\{E690A491-702F-4DEC-9977-C015D1DBB57C}) (Version: 12.3.1.23 - Apple Inc.) Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation) Ma-Config.com (64 bits) (HKLM\...\{E1322B8A-6F66-44ED-95D5-7FEBC50AC814}) (Version: 7.1.5.0 - Cybelsoft) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.5.12.11 (Version: 2.5.12.11 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 47.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 fr)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 358.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 358.91 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation) NVIDIA Pilote graphique 358.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 358.91 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 358.91 (Version: 358.91 - NVIDIA Corporation) Hidden PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.) PhoneRescue 1.9.0 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 1.9.0 - iMobie Inc.) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.1.5 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.27748 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) RegRun Reanimator (HKLM-x32\...\UnHackMe Update - Reanimator_is1) (Version: - Greatis Software, LLC.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\Spotify) (Version: 1.0.31.56.g526cfefe - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer) trotux - Uninstall (HKLM-x32\...\{DE29AEB1-E902-4F60-BEC9-AF65E80E137C}) (Version: - ) <==== ATTENTION Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0379A186-D3F6-4BBC-97D4-764DEE351182} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {03FA4387-B034-407B-A808-184F79D4B00B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {05BA38E5-D4E7-498B-86D1-40656B848286} - System32\Tasks\AdobeAAMUpdater-1.0-Utilisateur-Jean-Louis => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated) Task: {08C99488-CC17-4252-B84F-DFAA747BBED2} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-23] (Dropbox, Inc.) Task: {09134920-F401-4229-812A-B7246AC3DF59} - System32\Tasks\Semughdabuck Builder => C:\Program Files (x86)\Semughdabuck\SmgBldts.exe [2016-06-21] () Task: {10AA6029-8053-4215-9903-9EC1CB98514A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {1E182697-0440-4691-A988-24920FFE7221} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {2037858A-E68C-4B5C-9EE7-92E28DD8891B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-04-18] (Bitdefender) Task: {20A796D8-A0D8-40FF-BAF6-5CC37CA781F2} - System32\Tasks\{4B59C076-AF16-4BFB-9821-C4CC81FA4D06} => Firefox.exe hxxp://ui.skype.com/ui/0/7.24.85.104/fr/go/help.faq.installer?LastError=1603 Task: {210034D8-2BEB-41B0-8A0E-60EFB816C511} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {2346E735-A001-4590-A4C1-81E01A302271} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {3511B086-DC46-4AA6-837D-449C3C6EA9EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {3A3B8E23-5488-4102-BE46-651254E7889F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {495A0A93-A94B-482F-961A-C7E00361111B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {54CD97B8-9F5E-47E6-B81E-553716856571} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {6AED126E-E6F0-4FA7-9B45-3404643193CD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {705CE35E-EC21-433E-865D-3CBD6729D4EB} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-03-23] (Dropbox, Inc.) Task: {711BF8E1-A5D5-41A6-8E4C-43328940F2F5} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {741B2137-674E-487E-A94C-8633D9CFAB27} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {8031E8ED-C251-4853-97CF-08C1EB400FC7} - System32\Tasks\Microsoft Office 15 Sync Maintenance for UTILISATEUR-Jean-Louis Utilisateur => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2015-01-21] (Microsoft Corporation) Task: {8795948F-4364-496B-AE45-1773F39220EB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated) Task: {89AD1F9A-C47E-4979-AE2C-9CE72C8CC168} - \Microsoft\Windows\RetailDemo\CleanupOfflineContent -> Pas de fichier <==== ATTENTION Task: {92967E14-912A-490B-B934-48F5C2A98BA4} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {95808472-C3FC-49E2-BB93-8C576D1F674D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {99D0A532-2391-4137-812A-C5FBC920EF7F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {9BEC8093-2FA3-408E-B766-6742646725CE} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {A670BC92-C0DC-4842-A347-F5F835C5874D} - System32\Tasks\Microsoft\Windows\Media Center\VideoFetcher => C:\ProgramData\VideoFetcher\VideoFetcher.exe [2016-05-25] () <==== ATTENTION Task: {A7EDFE6A-F531-4D44-AB04-DEE287217DF0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {AD73C93F-8246-4B26-987E-7462D582D353} - System32\Tasks\{D1AD3271-EAE8-4C29-ACA9-D13970DEFB32} => Firefox.exe hxxp://ui.skype.com/ui/0/7.21.85.100/fr/abandoninstall?page=tsProgressBar Task: {BD037A47-099A-4F23-BAF1-59BD74DD7B44} - System32\Tasks\{BB38C40A-04A8-4FC9-A6D3-6FE05771CA57} => Firefox.exe hxxp://ui.skype.com/ui/0/7.21.85.100/fr/abandoninstall?page=tsProgressBar Task: {D4E338EC-1EA1-4D04-B916-4555A7325E57} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-11] (Microsoft Corporation) Task: {E02D4B57-4641-4378-9C98-CB3F49A346DA} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2015-07-31 21:29 - 2015-07-31 21:29 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll 2015-02-24 19:46 - 2015-11-05 17:08 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-08-19 14:28 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll 2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-10-13 06:45 - 2015-10-13 06:45 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-06-23 22:11 - 2015-06-23 22:11 - 00187048 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-04-13 21:21 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 21:21 - 2016-03-16 06:55 - 02495768 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-05-20 21:31 - 2016-05-20 21:31 - 00959168 _____ () C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll 2016-06-21 20:35 - 2016-06-21 08:26 - 00394224 _____ () C:\Users\Jean-Louis\AppData\Local\Microsoft\Windows\INetCookies\shobisy.dll 2015-10-02 19:49 - 2015-09-17 07:48 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2015-12-09 15:22 - 2015-11-25 06:20 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2015-12-09 15:22 - 2015-11-25 06:17 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-12-09 15:22 - 2015-11-25 06:17 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2015-10-02 19:49 - 2015-09-17 07:43 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-10 13:00 - 2015-07-10 18:28 - 00210432 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll 2015-07-08 08:58 - 2015-07-08 08:58 - 00292352 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe 2015-08-17 12:46 - 2015-07-24 06:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-05-20 21:31 - 2016-05-20 21:31 - 00679624 _____ () C:\Users\Jean-Louis\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll 2015-11-16 12:48 - 2015-11-16 12:48 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll 2016-03-23 17:14 - 2016-05-05 12:09 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2016-06-03 20:43 - 2016-05-05 12:10 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2016-03-23 17:14 - 2016-05-05 12:09 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2016-03-23 17:14 - 2016-05-31 20:34 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2016-03-23 17:14 - 2016-05-05 12:10 - 00123856 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 01682760 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2016-06-03 20:43 - 2016-05-05 12:11 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00021832 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00023872 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32._winffi_kernel32.pyd 2016-06-03 20:43 - 2016-05-05 12:09 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00026456 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2016-06-03 20:43 - 2016-05-31 20:33 - 00246592 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2016-03-23 17:14 - 2016-05-05 12:09 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2016-06-03 20:43 - 2016-05-05 12:10 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi._winffi_iphlpapi.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00019776 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror._winffi_winerror.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet._winffi_wininet.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00022352 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2016-06-03 20:43 - 2016-05-05 12:12 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2016-06-03 20:43 - 2016-05-31 20:34 - 00031568 _____ () C:\Program Files (x86)\Dropbox\Client\enterprise_data.compiled._enterprise_data.pyd 2016-06-03 20:43 - 2016-03-12 02:46 - 00293392 _____ () C:\Program Files (x86)\Dropbox\Client\EnterpriseDataAdapter.dll 2016-06-03 20:43 - 2016-05-31 20:34 - 00084280 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2016-06-03 20:43 - 2016-05-31 20:34 - 01826096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2016-03-23 17:14 - 2016-05-05 12:10 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 03928880 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 01971504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00531248 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00132912 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00223544 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2016-03-23 17:14 - 2016-05-05 12:11 - 00060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd 2016-04-15 18:36 - 2016-05-31 20:34 - 00025928 _____ () C:\Program Files (x86)\Dropbox\Client\windisplaytoast.compiled._DisplayToast.pyd 2016-03-23 17:14 - 2016-05-31 20:34 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00546096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2016-06-03 20:43 - 2016-05-31 20:34 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-12-09 18:41 - 2014-11-26 04:12 - 40622592 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll 2015-12-09 18:41 - 2014-11-26 04:12 - 00911360 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll 2015-12-09 18:41 - 2014-11-26 04:12 - 00134144 _____ () C:\Users\Jean-Louis\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll 2014-11-10 13:12 - 2014-11-10 13:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\ma-config.com -> hxxp://ma-config.com IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\ma-config.com -> hxxps://ma-config.com IE trusted site: HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2016-06-21 23:18 - 00000834 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\Control Panel\Desktop\\Wallpaper -> I:\Users\Jean-Louis\Desktop\144144.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1279501240-4226057553-4213955958-1001\...\StartupApproved\Run: => "Steam" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{3F56993E-2B8A-488C-A581-E7142CAB62CE}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{B0FC5CBE-4121-4527-8158-6901C6ABC34B}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{7DEFAF77-E34D-414F-9411-65B61722FEF9}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{5F5B0818-2358-4A79-BBED-0AE44B4CB5C9}] => (Allow) C:\Program Files\Internet Explorer\iexplore.exe FirewallRules: [{FCEA8E18-37F1-4FEA-BA42-95AA5795151D}] => (Allow) I:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{7DF517B0-4018-4CC4-A9CA-D56C5A99208D}] => (Allow) I:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{5CCE52E3-E416-4431-B345-8BED86258E6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{EB215CBC-C29A-4E6E-AA3D-717AC591ECBE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{3C2C65FE-942E-4BCB-AB22-801C1FE749CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5040B023-240A-4DEE-9F32-8838D2144893}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3F082BA9-D65C-4604-98E5-5D766162C392}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{138A6962-93CA-47F9-941D-BDEEF68D5F9B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F5320DD7-3CF4-4A20-81D1-08944F575D00}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{5FD44488-309C-4C5B-81C8-88A55C8207CC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{3974BAA0-4153-4984-9376-27A0AC0D2542}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{8D1D79A8-88EC-4AF1-8EC9-B5A25E627ABF}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Source\hl2.exe FirewallRules: [{B2455C9E-01E3-4497-9729-48B31083A1AD}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{F49ECFAA-BD5D-4FDB-B9CB-BFDD6359AC8B}] => (Allow) I:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{883DB36C-1D59-4377-A58A-673FB11FC10F}] => (Allow) I:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{7E92DCE6-0BB1-4AD1-8A08-EA044B8DAF3A}] => (Allow) I:\Program Files (x86)\Steam\Steam.exe FirewallRules: [UDP Query User{540C88E7-F94D-4ED8-9F75-2D2625E6C766}I:\steam\steam.exe] => (Allow) I:\steam\steam.exe FirewallRules: [TCP Query User{7ED61EF4-7354-4404-AACE-2BA535255FE7}I:\steam\steam.exe] => (Allow) I:\steam\steam.exe FirewallRules: [UDP Query User{2AA9A5A6-B6B0-4E72-A3C0-45297DE3173A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{626561E6-523E-4E60-A3B8-3671577BDC1C}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{C49B9932-4C8C-4D3C-9E03-F117D05575B9}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{FE6DFAE4-AEE0-46A1-92A1-D31FE303FA23}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [{4E112388-6036-4C7A-8FC4-DA3EFD32B8BB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{8275C569-1B94-4598-9E1A-4F580DD44EDD}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C3C05974-4D20-428F-88DD-F078282C4F21}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1BF53DA9-8757-4A2E-9D6F-4716FD281727}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{8F9C67FF-CA5F-41DB-BAA2-AB889BD27E45}] => (Allow) LPort=48113 FirewallRules: [{F3D85300-F0FC-4AFD-A066-8140F5CC52FE}] => (Allow) LPort=48114 FirewallRules: [{8E21AD2B-7797-40B7-98DC-CEA1EFA7F074}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{555B9E1D-ABDA-469E-8CE1-020C651FD529}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{BB9352D1-D681-479B-B69B-61852B989B9B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{6FECD1F4-F805-49F6-BE06-6A4B9322B33E}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{9547632A-89DB-434F-A267-48D646D771E1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3FE7725C-EDF9-40FF-8788-480476D5C7FD}] => (Allow) C:\Users\Jean-Louis\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{2C080F8C-3D3E-44D1-9FC1-70BB715A65A5}] => (Allow) C:\Users\Jean-Louis\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [TCP Query User{D4FC54B0-FA3E-4234-974C-A333BBAD25E3}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{E8122432-FFAF-4BFB-A092-701CFF33DE58}C:\users\jean-louis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jean-louis\appdata\roaming\spotify\spotify.exe FirewallRules: [{F1A74F3C-07A2-41B3-A698-81505075DA9E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{8413EFD9-89D5-4B3D-A665-A336C506C6AB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{1C11514E-7CF3-4FA3-8FD1-3BB4D04A2CE5}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{55EADAC7-A0D8-458F-A63A-BF8DA0402EC9}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{87B6200A-E039-4604-A46B-EBF6C0E25C99}] => (Allow) I:\Assassin's Creed Unity\ACU.exe FirewallRules: [{FF44C7E9-897E-465C-9437-CD4749CE6BCB}] => (Allow) I:\Assassin's Creed Unity\ACU.exe FirewallRules: [{6B20FAB6-E0AD-4830-9987-0D3869519F10}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{0F61ECA3-DE88-4FBC-B88C-B95CB877E559}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{6298BE8D-CCE7-4D42-8AFE-1C4D64D7C18F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{74E4F27A-E46C-4CF8-92F3-85EB2D66BC7E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{A057D684-8C77-4694-9A6C-20DDE84E2000}] => (Allow) LPort=1688 FirewallRules: [{2E98B686-FB12-485A-81C1-41072A37AE91}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{E65456ED-8D3D-472F-8C69-B051AA781B68}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BA0B761F-4363-4597-A872-5343617798BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{56315366-0EB8-42C8-90E4-887747A7AC30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8A133111-CD50-4B79-97C7-AF4CB906C942}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3D5D5FEB-2A38-4F8C-AF6D-418CD81C8632}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{EBD59E89-7752-49D9-899B-1F68C43959FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9593FEAC-DCA1-4F4E-B3BB-0D79696A02D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{9211BE35-DA35-4B2F-9A2F-6683271F3D86}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{158743BD-8772-4883-8FA5-26C829401A0D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F6CD2A1C-151C-4DB1-A494-51328CE14B4A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E51C4BD1-84BC-40D0-A8EE-977758D3C492}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{67800B08-44DF-4039-BB28-0A664C257D11}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{177C9AFE-7DE3-4D83-A73C-A1EDEDA38F29}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9335E4-BD16-46C3-83F4-16EE153CBC80}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{80D0970C-7EA0-47BB-9FF8-56A14888953B}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{82FB93EF-F181-4AFF-9A13-023BF4161467}] => (Allow) I:\Steam\bin\steamwebhelper.exe FirewallRules: [{CB648ABD-8105-45B9-AB5E-771075B0E9DE}] => (Allow) I:\Steam\bin\steamwebhelper.exe FirewallRules: [{ED3B8C81-34AF-49B8-B9BD-FE44A07B4CFF}] => (Allow) I:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{27E8487E-C543-4CCD-A5AC-02304E7B1948}] => (Allow) I:\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [TCP Query User{9ECCDF92-AFD9-4DC7-B28E-41FD7F9CB19C}I:\steam\steamapps\common\dayz\dayz.exe] => (Allow) I:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{11F5A346-961D-474F-A6C6-AEADFFF0293A}I:\steam\steamapps\common\dayz\dayz.exe] => (Allow) I:\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{D6D1A838-C66E-4947-8A9E-AB03A5F84F78}] => (Allow) I:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{95A564E9-E2A6-46E5-A5AB-1DD8B5945E21}] => (Allow) I:\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{8EE8ECA7-4A67-43BC-9F25-7CFFB4A692AE}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{B82CF81C-7EBB-4566-BB52-5B31F17FFAD5}] => (Allow) I:\lol.launcher.exe FirewallRules: [{00A763F7-B4F8-4BD6-A06D-8B96CA1CCA6A}] => (Allow) I:\lol.launcher.exe FirewallRules: [{079CC26E-65C4-44CD-9D05-95150FCC44F4}] => (Allow) I:\lol.launcher.exe FirewallRules: [{15EBB30D-BD8D-41BC-9205-020F43D05CF4}] => (Allow) I:\lol.launcher.exe FirewallRules: [{E58AAD55-8073-4594-A924-7533D44EB999}] => (Allow) I:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{DB9D9DB8-FF57-4A34-84FE-589662BCBC65}] => (Allow) I:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{31ECDB41-1F10-4B85-8552-39F027EB8517}] => (Allow) I:\Riot Games\League of Legends\lol.launcher.admin.exe FirewallRules: [{3271F9DF-0779-48DF-9645-BCAA9696ED3B}] => (Allow) I:\Riot Games\League of Legends\lol.launcher.admin.exe ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Carte réseau sans fil 802.11n Description: Carte réseau sans fil 802.11n Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Ralink Technology, Corp. Service: netr28x Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/21/2016 11:06:14 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Le service ne peut pas être démarré. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. à BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/21/2016 11:04:31 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 19.6.2016.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 47f4 Heure de début : 01d1cc00761d8387 Heure de fin : 4 Chemin d'accès de l'application : I:\Users\Jean-Louis\Downloads\FRST64.exe ID de rapport : bc733e53-37f3-11e6-80fd-74d02b99d1d4 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (06/21/2016 08:37:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante a6abdf94bcc65925e02150cf3deac142.exe, version : 9.69.1.7, horodatage : 0x576803da Nom du module défaillant : MemoryImage_0x000000D14A6CF040, version : 0.0.0.0, horodatage : 0x5768053d Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000001e112b ID du processus défaillant : 0x15fc Heure de début de l’application défaillante : 0xa6abdf94bcc65925e02150cf3deac142.exe0 Chemin d’accès de l’application défaillante : a6abdf94bcc65925e02150cf3deac142.exe1 Chemin d’accès du module défaillant: a6abdf94bcc65925e02150cf3deac142.exe2 ID de rapport : a6abdf94bcc65925e02150cf3deac142.exe3 Nom complet du package défaillant : a6abdf94bcc65925e02150cf3deac142.exe4 ID de l’application relative au package défaillant : a6abdf94bcc65925e02150cf3deac142.exe5 Error: (06/21/2016 03:32:47 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (06/21/2016 03:22:50 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Le service ne peut pas être démarré. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. à BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/20/2016 08:24:20 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Le service ne peut pas être démarré. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. à BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/20/2016 07:54:03 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 10.0.10240.16603 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : 148c Heure de début : 01d1caf2f33e46ba Heure de fin : 0 Chemin d'accès de l'application : C:\Windows\explorer.exe ID de rapport : ef7eed02-370f-11e6-80fb-74d02b99d1d4 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (06/20/2016 03:04:55 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418154 Error: (06/20/2016 02:54:55 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: ) Description: Le service ne peut pas être démarré. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run. à BlueStacks.hyperDroid.Service.Service.OnStart(String[] args) à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state) Error: (06/19/2016 08:44:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante LoLLauncher.exe, version : 3.6.0.161, horodatage : 0x574770e1 Nom du module défaillant : LoLLauncher.exe, version : 3.6.0.161, horodatage : 0x574770e1 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000453e0 ID du processus défaillant : 0x35ec Heure de début de l’application défaillante : 0xLoLLauncher.exe0 Chemin d’accès de l’application défaillante : LoLLauncher.exe1 Chemin d’accès du module défaillant: LoLLauncher.exe2 ID de rapport : LoLLauncher.exe3 Nom complet du package défaillant : LoLLauncher.exe4 ID de l’application relative au package défaillant : LoLLauncher.exe5 Erreurs système: ============= Error: (06/21/2016 11:19:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:19:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:19:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Données de contacts_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:19:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_Session1 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:06:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service BlueStacks Android Service s’est arrêté avec l’erreur : %%1064 = Une exception s’est produite dans le service lors du traitement de la commande. Error: (06/21/2016 11:05:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_Session3 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:05:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_Session3 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:05:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Données de contacts_Session3 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:05:18 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_Session3 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (06/21/2016 11:05:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Management and Security Application Local Management Service s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2016-06-21 20:21:12.126 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-20 18:54:42.444 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-19 18:21:21.724 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-18 19:19:16.782 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-17 20:55:56.024 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-15 20:53:49.839 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-06-14 21:17:05.139 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-04-01 10:11:57.225 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\msiexec.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Minecraft\MinecraftLauncher.exe that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 8100.16 MB Mémoire physique - RAM - disponible: 5410.89 MB Mémoire virtuelle totale: 9380.16 MB Mémoire virtuelle disponible: 6631.46 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:59.62 GB) (Free:4.41 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive i: (Données) (Fixed) (Total:931.51 GB) (Free:294.36 GB) NTFS Drive j: (USB Violette 2) (Removable) (Total:29.85 GB) (Free:21.2 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: EFC6CC09) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: BAD85E01) Partition 1: (Active) - (Size=59.6 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 29.9 GB) (Disk ID: C3072E18) Partition 1: (Not Active) - (Size=29.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================