Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 17-09-2017 01 Exécuté par Martial (19-09-2017 17:20:19) Exécuté depuis C:\Users\Martial\Desktop Windows 10 Home Version 1703 (X64) (2017-08-17 18:55:53) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1367334607-1437025094-3204265173-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1367334607-1437025094-3204265173-503 - Limited - Disabled) Invité (S-1-5-21-1367334607-1437025094-3204265173-501 - Limited - Disabled) Martial (S-1-5-21-1367334607-1437025094-3204265173-1001 - Administrator - Enabled) => C:\Users\Martial ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.3 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.8 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.) ApowerMirror V1.1.1 (HKLM-x32\...\{a9482532-9c34-478c-80c3-85bdccbb981f}_is1) (Version: 1.1.1 - APOWERSOFT LIMITED) Apple Application Support (32 bits) (HKLM-x32\...\{D2FE6376-E549-4F63-A2C5-CA24DA035DE4}) (Version: 5.6 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{BB109E24-EE90-485B-A28B-ADDEFB40540B}) (Version: 5.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team) Audacity 2.1.1 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.1 - Audacity Team) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.6.2310 - AVAST Software) Betclic Poker.fr (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\BetclicPoker.fr) (Version: 1.1.1.33 - Betclic Poker.fr) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Cisco WebEx Meetings (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\ActiveTouchMeetingClient) (Version: - Cisco WebEx LLC) Connectify 2015 (HKLM\...\Connectify) (Version: 2015.0.5.34877 - Connectify) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.0.0.5 - Dell Inc.) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.0.0.5 - Dell Inc.) Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.) Dell Digital Delivery (HKLM-x32\...\{BC8233D8-59BA-4D40-92B9-4FDE7452AA8B}) (Version: 3.0.3999.0 - Dell Products, LP) Dell Resource CD (HKLM-x32\...\{42929F0F-CE14-47AF-9FC7-FF297A603021}) (Version: 1.00.0000 - Nom de votre société) Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 2.0.6875.402 - Dell) Dell SupportAssistAgent (HKLM\...\{E1AA62F7-B32A-4090-814E-83BC7C3DF1FB}) (Version: 2.0.2.21 - Dell) Dell System Detect (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\d24084d039586cae) (Version: 8.5.0.4 - Dell) Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.2.17.55 - Synaptics Incorporated) Dell Update - SupportAssist Update Plugin (HKLM\...\{2228BC43-73DA-4F9A-BEE6-8E9C15328513}) (Version: 3.1.1.3832 - Dell Inc.) Dell Update (HKLM-x32\...\{F91263FA-BE4D-439D-9C0A-2E7204E0E9E3}) (Version: 1.9.20.0 - Dell Inc.) DriversCloud.com (64 bits) (HKLM\...\{C514B5EE-C8E6-43C9-AFB9-6C1A7B3429E1}) (Version: 10.0.4.0 - Cybelsoft) DW WLAN Card (HKLM\...\DW WLAN Card) (Version: 6.30.59.26 - Dell Inc.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.91 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden GoPro Studio (HKLM-x32\...\{15FAF1DC-3F11-40B6-9B2D-7051BD51DD87}) (Version: 5.10.4643 - GoPro, Inc.) Hidden iCloud (HKLM\...\{C510BB61-AE0B-4420-87AF-9CF646E86364}) (Version: 6.2.3.17 - Apple Inc.) I-Doser Premium (HKLM-x32\...\I-Doser) (Version: 5.0 - I-Doser.com) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 2.1.0.1002 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) IP Camera (HKLM-x32\...\IP Camera) (Version: - ) iTunes (HKLM\...\{02F95875-9527-49CC-B32F-970ADAEBD1EF}) (Version: 12.6.2.20 - Apple Inc.) Java 8 Update 141 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180141F0}) (Version: 8.0.1410.15 - Oracle Corporation) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.599.3 - McAfee, Inc.) Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 55.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 fr)) (Version: 55.0.3 - Mozilla) Mp3tag v2.80 (HKLM-x32\...\Mp3tag) (Version: v2.80 - Florian Heidenreich) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) MyPoint Connector 2.3.1 (HKLM-x32\...\MyPoint Connector_is1) (Version: - Didonai LLC.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge) PhoneClean (HKLM-x32\...\PhoneClean) (Version: 4.0.6.0 - iMobie Inc.) PhotoFiltre 7 (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\PhotoFiltre 7) (Version: - ) Pioneer DDJ_SR Driver (HKLM-x32\...\Pioneer DDJ_SR ASIO) (Version: 1.000.000.002 - Pioneer Corporation.) QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Quik (HKLM\...\{DA17DAC7-5559-46CF-BF8F-737BC4B7ED14}) (Version: 0.1.4643 - GoPro, Inc.) Hidden Quik (HKLM-x32\...\{71fc4e33-8ac1-4b21-8cb5-040ce8986c4e}) (Version: 2.0.0.4643 - GoPro, Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.2.8400.39034 - Realtek Semiconductor Corp.) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden Serato DJ (HKLM-x32\...\{9F2C3215-5B2F-485E-8F8F-31D7FEC80CF1}) (Version: 1.8.1.8994 - Serato) Hidden Serato DJ (HKLM-x32\...\{cc7a67f5-1d2a-431a-841c-511575e9c851}) (Version: 1.8.1.8994 - ) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Soccer Manager 2017 (HKLM\...\Steam App 510630) (Version: - Soccer Manager Ltd) Spotify (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\Spotify) (Version: 1.0.63.617.g5aca9a2a - Spotify AB) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden The Four Kings Casino and Slots (HKLM\...\Steam App 260430) (Version: - Digital Leisure Inc.) Unity Web Player (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Vegas Pro 12.0 (64-bit) (HKLM\...\{BD91AC8F-5232-11E3-B420-F04DA23A5C58}) (Version: 12.0.770 - Sony) Vegas Pro 13.0 (64-bit) (HKLM\...\{CE20A68F-BFBC-11E3-AA73-F04DA23A5C58}) (Version: 13.0.290 - Sony) VFW_Codec32 (HKLM-x32\...\{3F85CA55-7192-40E6-9EF1-60228D45DED3}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden VFW_Codec64 (HKLM\...\{1D540D0B-A42E-4C6F-9B55-EEC232F080C1}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 12.0.0.1600 - Broadcom Corporation) Winamax Installer (HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\Winamax Installer 2.0) (Version: 2.0 - Winamax) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Shutdown Assistant V3.1.2 (HKLM-x32\...\{4DFA83B9-2722-435D-9F7D-756F902D48FE}_is1) (Version: 3.1.2 - APOWERSOFT LIMITED) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) Wondershare PDF Converter Pro (Build 4.1.0) (HKLM-x32\...\{67CC8351-9D8B-4EDF-AAEE-B8CB17E5F3AC}_is1) (Version: 4.1.0 - Wondershare Software) Wondershare PDFelement 6 Pro(Build 6.0.1) (HKLM-x32\...\{B026557A-EF19-4812-8A79-B30F94AA0A78}_is1) (Version: 6.0.1.2138 - Wondershare Software Co.,Ltd.) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A1EEB024E284}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-07] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-07] (AVAST Software) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-07] (AVAST Software) ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2017-07-14] (Apple Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-07] (AVAST Software) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-09-07] (AVAST Software) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0167E581-F6A5-4C7C-85A5-267047D5F624} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {02D878FA-9416-4DF3-B2A0-32FB22A02E4F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {05676145-7149-4842-81ED-1F2D4214ADFB} - System32\Tasks\{E9D1C270-B630-4DD3-95B5-7DEA668DF9EE} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Martial\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=pcs Task: {0B635FE7-F538-4AA2-B470-8E33FF5DCA2A} - System32\Tasks\DDDDD => C:\Users\Martial\Desktop\jjjjjj\Beatz Freq & Tony Trasher - Enter This Competition (Original Mix).mp3 Task: {0B7B35D7-BB37-47CD-AA13-66A374D91DB9} - System32\Tasks\Reveil => C:\Users\Martial\Desktop\jjjjjj\102. Firebeatz & KSHMR feat. Luciana - No Heroes (Original Mix) # H1Pr0-BeaTz .mp3 Task: {147CF75F-2035-4848-B926-BEC7E8DA1A72} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-17] (Adobe Systems Incorporated) Task: {15FB99E6-0661-48AB-B382-4CCE7662D831} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe Task: {1887EC57-2BB2-442A-962A-D9155F9C39D6} - System32\Tasks\Synaptics TouchPad Enhancements => Program Files\Synaptics\SynTP\SynTPEnh.exe Task: {1C1F0211-577D-448F-B805-6C096990B9F8} - System32\Tasks\{A5714B10-4101-4C07-B20C-C070A62A5433} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Martial\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=ima Task: {31014FA7-41CA-449E-8AEC-270573571C5F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3D1A8B16-C60C-4C9F-AC26-F9C1BBB30114} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssist.exe [2017-08-04] (Dell Inc.) Task: {43BBC39D-D694-4087-B12C-2C69F0764B72} - System32\Tasks\{A2AD43AC-A54C-4725-81C4-037079706350} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe" -c --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}" Task: {44810315-D35E-479D-A742-1BA075BC3833} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-martial.musso@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {45ECF89F-65E9-42B5-BA70-AE6900633339} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {465A2A44-232A-49BF-B3EF-27BB5407E9A5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {568DD2BA-1724-44A4-89DB-8A93FFC78FEE} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1367334607-1437025094-3204265173-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {5C70A580-F982-495D-B329-514D36B3C80A} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2017-05-29] (PC-Doctor, Inc.) Task: {5E326F0E-6CBD-43D2-AEB0-77499A50CFC5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {5FE27217-5A7E-493C-AD22-D7272378503A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {61BF766E-C674-48F4-9B90-0563FD10C1FF} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe Task: {6449D74B-FA11-4098-90E7-CF6600B1DB03} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {730AFB70-FBD6-446E-989C-ACEC86684AF4} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {7AF77720-EF2C-4DE3-862F-834F7AD72D3B} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2017-07-14] (Apple Inc.) Task: {7D436049-7621-4D00-BEB6-38BE569430F2} - System32\Tasks\fefe => C:\Users\Martial\Desktop\WORLDWIDE PRE-SALE January 28th – 17h CET.url Task: {81612098-6069-4173-8A38-6CA7695E24DB} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1367334607-1437025094-3204265173-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {86317C10-EA35-4206-86F4-BCC51339C83B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-09-15] (Microsoft Corporation) Task: {8CFF1F7C-EB0A-4E3A-A11C-251C6AF374DB} - System32\Tasks\{A2CFED39-F412-4544-B7E8-80BB47972F9D} => C:\WINDOWS\system32\pcalua.exe -a C:\Windows\unvise32.exe -d C:\WINDOWS -c C:\WINDOWS\system32\uninstal.log Task: {929A4DE5-CFBE-41E3-976A-EAD19B7E5A9C} - System32\Tasks\JJJ => C:\Users\Martial\Desktop\jjjjjj\DIZKO - Drop (Original Mix).mp3 Task: {A4D0C332-AF53-4840-B3CD-B361EDC3DBA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-21] (Google Inc.) Task: {A9029E44-B398-4605-88C9-DB53D60B5D87} - System32\Tasks\{31C71F84-16DF-4AFC-BB31-6BC3AFAA4F51} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Martial\_ISDel.exe -d C:\Users\Martial Task: {BCD2A4C3-AD25-4E76-8799-8E9D4524533E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {C259C8BF-0ED7-4E48-9CCD-A2C8A93246A1} - \WPD\SqmUpload_S-1-5-21-1367334607-1437025094-3204265173-1001 -> Pas de fichier <==== ATTENTION Task: {C27F464A-59D8-4189-B3A5-80BF4A858C0F} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1367334607-1437025094-3204265173-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {C76BF826-DBC9-4141-BD4A-4B2E13ADE691} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-03-21] (Google Inc.) Task: {D515808C-C748-4FAC-BF72-950C58A5014F} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {D614115E-F172-41A9-B278-55B7962D114C} - System32\Tasks\avastBCLRestartS-1-5-21-1367334607-1437025094-3204265173-1001 => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Task: {D7262433-E800-47B7-9D65-3ED45E4ACC3D} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {DA314372-0543-4720-830B-13C4DAAD5E10} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {E0915B5B-7D0B-43A4-B713-BCC362C1733B} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {E3EF3973-70C6-40AA-974D-C3A748C8FBBC} - System32\Tasks\SafeZone scheduled Autoupdate 1461364511 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {F011F4D7-FA11-4EAA-A147-B39A4F5A880C} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-09-07] (AVAST Software) Task: {F1FC44E4-DB97-42BA-BBE3-FDFD12EA6F4C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {F392A0AB-C843-4970-B9EB-96E077D5DE46} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2017-05-29] (PC-Doctor, Inc.) Task: {FDA603A5-903C-4A8F-83E3-CF18D4C5C249} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-09-18] (Adobe Systems Incorporated) Task: {FF4495B6-EFA8-412F-9A4F-A29C42130C97} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\4mMmB9ImSqZzr3tA4H7HeGtn.job => C:\Users\Martial\AppData\Roaming\4mMmB9ImSqZzr3tA4H7HeGtn.exe <==== ATTENTION Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1367334607-1437025094-3204265173-1001Core.job => C:\Users\Martial\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-07-13 20:50 - 2017-07-13 20:50 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll 2016-12-02 03:09 - 2016-12-02 03:09 - 000037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2016-10-25 10:57 - 2016-10-25 10:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-02-02 14:42 - 2016-09-26 11:02 - 000068016 _____ () C:\Program Files (x86)\iMobie\PhoneClean\iTunesMobileDevice.dll 2017-09-15 21:37 - 2017-09-14 10:30 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.91\libglesv2.dll 2017-09-15 21:37 - 2017-09-14 10:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.91\libegl.dll 2017-09-19 17:12 - 2017-09-19 17:13 - 002845056 _____ () C:\Users\Martial\Desktop\ZHPDiag3.exe 2017-09-17 00:34 - 2017-09-17 00:34 - 031189504 _____ () C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_27_0_0_130.dll 2016-12-21 11:24 - 2016-12-21 11:24 - 000134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll 2017-05-01 15:27 - 2017-05-01 15:27 - 000133992 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll 2015-06-24 01:07 - 2015-06-24 01:07 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-07-04 02:35 - 2017-07-04 02:35 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000211904 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000241960 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-09-07 23:12 - 2017-09-07 23:12 - 000233768 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-09-07 23:13 - 2017-09-07 23:13 - 000685688 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\ma-config.com -> hxxp://ma-config.com IE trusted site: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\ma-config.com -> hxxps://ma-config.com IE trusted site: HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2017-09-18 22:48 - 000000875 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Martial\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 10.188.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "rvlkl.lnk" HKLM\...\StartupApproved\Run: => "Connectify Hotspot" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "GoPro Tray App" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "QuickTime Task" HKLM\...\StartupApproved\Run32: => "SmartWeb" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "ApplePhotoStreams" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "iCloudPhotos" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1367334607-1437025094-3204265173-1001\...\StartupApproved\Run: => "Windows Shutdown Assistant" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{A35126EF-7ABB-41D0-AA23-7E80562735F5}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [{931B1AFC-59E3-4881-A7E7-8C556ABB4543}] => (Allow) C:\Program Files (x86)\CompanyName\Windows Shutdown Assistant\Windows Shutdown Assistant.exe FirewallRules: [{CE3450FD-A190-4DD8-9D5B-3A7699D85C53}] => (Allow) C:\Program Files (x86)\CompanyName\Windows Shutdown Assistant\Windows Shutdown Assistant.exe FirewallRules: [{7D71A6EC-3160-4F5D-BBD6-D73ECA6E5371}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{7104CFAA-B1CB-4778-A9F1-388938F064BC}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe FirewallRules: [{A1E9F24C-B464-4178-91D8-BE0E40A71251}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe FirewallRules: [{E9825CA1-899F-4A2D-98E0-DA27310824D1}] => (Block) C:\windows\syswow64\ipcamera.exe FirewallRules: [{62853D16-C5B3-40C1-9C3B-678EF0A09B8E}] => (Block) C:\windows\syswow64\ipcamera.exe FirewallRules: [UDP Query User{B389B2CC-565C-4843-B101-B69D9609F1C3}C:\windows\syswow64\ipcamera.exe] => (Allow) C:\windows\syswow64\ipcamera.exe FirewallRules: [TCP Query User{39A5D1F8-7F65-4136-A6DD-D3E28F19EB1E}C:\windows\syswow64\ipcamera.exe] => (Allow) C:\windows\syswow64\ipcamera.exe FirewallRules: [{A57AA201-8A6B-4B69-9512-7285A5640A6A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F098A9D6-E572-4610-819E-3E9F4F6C8087}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{721B8D9A-63FB-45F7-AF56-4E3E08C13DD1}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe FirewallRules: [{2FF5BDD5-9E13-4B86-B47C-BCABBF4E833B}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe FirewallRules: [{DDE87C0F-5C5E-4994-9496-B8B18FC521C1}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe FirewallRules: [{AD93C8CA-F3BF-4FDA-B5EA-66482A749C9C}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\Quik.exe FirewallRules: [{CA40037C-97F1-4A37-8796-181CE001A940}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E5C9191A-6D89-41FC-8607-55C27D4AE275}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [UDP Query User{A1820248-2F27-4251-95C0-56ED79577F5D}C:\users\martial\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\martial\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{E6A393C6-41EF-4035-AF42-39EC75777D2F}C:\users\martial\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\martial\appdata\roaming\spotify\spotify.exe FirewallRules: [{75C638E5-7132-434A-85B0-A53B16797DA4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Four Kings Casino and Slots\Casino.exe FirewallRules: [{3EC3E7C9-D260-4AFB-BACE-C93A4590E897}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Four Kings Casino and Slots\Casino.exe FirewallRules: [{566A8924-199C-4632-BD2D-20A0B7D35E74}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soccer Manager 2017\Soccer Manager 2017.exe FirewallRules: [{786D9E57-4CEE-4D8C-98C8-8DAC0C140CE7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Soccer Manager 2017\Soccer Manager 2017.exe FirewallRules: [{4E4117BF-95B6-4234-9105-9C9B941E0DDA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RollerCoaster Tycoon World\RollerCoaster Tycoon World.exe FirewallRules: [{0C814514-47D2-4969-9C98-382EC45EA123}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RollerCoaster Tycoon World\RollerCoaster Tycoon World.exe FirewallRules: [{4B747CF8-07E4-41BB-89F1-A7B0DF890B03}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{A2D5C2DB-B9A3-4EC9-95C6-B48C4A4E1053}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5B92914B-0B54-4EE3-8C86-43909D96FAB9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{BEBC5AC9-147A-4838-A800-A8D430BDD009}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{CD3EA130-E6CA-43A1-97EC-914B3EC0028C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B77754A3-7492-4B53-ABDB-5301040BA912}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E7275E68-5580-498D-B275-18711112C508}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{63D9F36D-405C-4B15-88EB-53963D7C66FE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{ACD99354-02E1-4D61-BC3B-20A7809F795B}] => (Allow) C:\Users\Martial\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DA51BEE2-56E2-418A-98FB-6B4FEF608D95}] => (Allow) C:\Users\Martial\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D41937A0-6346-4448-B136-3FEC88817DFD}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe FirewallRules: [{39CD3017-25AF-444F-8C7C-66CD52123C3C}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe FirewallRules: [{35740E58-562D-4A26-8AD8-0F6B7C37DF77}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe FirewallRules: [{E71F5626-A672-48AA-B5DB-6C5C418E9638}] => (Allow) C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe FirewallRules: [UDP Query User{8DE216C3-DE33-4473-84AA-59318D319F6C}C:\program files\guillemot\tools\giwebupdater.exe] => (Block) C:\program files\guillemot\tools\giwebupdater.exe FirewallRules: [TCP Query User{06592076-9E03-462D-9A1B-E395CC14F689}C:\program files\guillemot\tools\giwebupdater.exe] => (Block) C:\program files\guillemot\tools\giwebupdater.exe FirewallRules: [{F7294ADA-7F2E-4C72-9A29-1C217E9AC8E6}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{6ADF259D-78EC-4176-B55A-8EB73B0D0540}] => (Allow) C:\Windows\SysWOW64\msiexec.exe FirewallRules: [{8C838FF6-BB1C-4F9C-A007-AB4864EECE43}] => (Allow) C:\Users\Martial\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{FDF0F59B-021E-4A09-ABA1-684D6E2425BB}] => (Allow) LPort=48113 FirewallRules: [{61B86314-3941-46AB-83D5-AAA78EED9452}] => (Allow) LPort=48114 FirewallRules: [{C8922972-4BE4-41DA-BB5B-DD9B27F4F379}] => (Allow) C:\Users\Martial\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B52FA396-7BF8-451F-B67B-3E76F7D167C5}] => (Allow) C:\Users\Martial\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F8BA61D2-B62D-484D-9ACA-0956C3BEF515}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{02583988-E72A-495B-B077-02E44AFB0EB5}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{AEF7A869-5253-4C63-AC7B-63E0932414E9}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{93B669E8-C67B-4D7C-9E73-4C9672722939}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{88A6B2C7-3520-4D57-9A23-3F3FFF19A40E}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{0F070353-D146-4949-B897-383690D520F9}] => (Allow) LPort=2869 FirewallRules: [{0F166EE3-E3FD-469F-AA1A-906F4F70CB96}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{6BB7ADF8-53B8-4904-B944-DBB542203BB1}C:\program files (x86)\mypoint\mypoint connector.exe] => (Allow) C:\program files (x86)\mypoint\mypoint connector.exe FirewallRules: [UDP Query User{1776E4C7-DDFF-4FD5-9CA7-10954BE1EFB0}C:\program files (x86)\mypoint\mypoint connector.exe] => (Allow) C:\program files (x86)\mypoint\mypoint connector.exe FirewallRules: [TCP Query User{ADF00A01-85E7-42E2-9E21-0C3E78FA8E61}C:\users\martial\appdata\local\apowersoft\online ios recorder\online ios recorder.exe] => (Allow) C:\users\martial\appdata\local\apowersoft\online ios recorder\online ios recorder.exe FirewallRules: [UDP Query User{22627207-C60B-4391-BE48-475AC3BB96A3}C:\users\martial\appdata\local\apowersoft\online ios recorder\online ios recorder.exe] => (Allow) C:\users\martial\appdata\local\apowersoft\online ios recorder\online ios recorder.exe FirewallRules: [{F7F45DC7-97DF-4F16-B4D5-DEF62C5AD3E6}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe FirewallRules: [{41EC5801-5FAD-46E7-A4D8-F6AA45C631F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 30-08-2017 00:32:02 Point de contrôle planifié 08-09-2017 12:07:32 Point de contrôle planifié 15-09-2017 23:34:53 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: avast! SecureLine TAP Adapter v3 Description: avast! SecureLine TAP Adapter v3 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: aswTap Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/19/2017 05:06:18 PM) (Source: Google Update) (EventID: 20) (User: MARTIAL) Description: Event-ID 20 Error: (09/18/2017 11:15:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14593 Error: (09/18/2017 11:15:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14593 Error: (09/18/2017 11:15:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/18/2017 10:55:42 PM) (Source: Google Update) (EventID: 20) (User: MARTIAL) Description: Event-ID 20 Error: (09/18/2017 10:34:11 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (09/18/2017 10:03:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1515 Error: (09/18/2017 10:03:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1515 Error: (09/18/2017 10:03:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/18/2017 08:01:25 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\Office15\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\Office15\UccApi.DLL » à la ligne 1. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0". La définition est UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0". Utilisez sxstrace.exe pour un diagnostic détaillé. Erreurs système: ============= Error: (09/19/2017 05:08:39 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/19/2017 05:05:39 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/19/2017 05:05:39 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/19/2017 12:30:06 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/19/2017 12:27:10 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/19/2017 12:27:10 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/18/2017 10:57:31 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/18/2017 10:54:36 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/18/2017 10:54:36 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (09/18/2017 10:53:35 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. CodeIntegrity: =================================== Date: 2017-09-08 11:00:12.635 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-08 11:00:12.588 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-3317U CPU @ 1.70GHz Pourcentage de mémoire utilisée: 63% Mémoire physique - RAM - totale: 6010.51 MB Mémoire physique - RAM - disponible: 2207.63 MB Mémoire virtuelle totale: 6970.51 MB Mémoire virtuelle disponible: 2949.37 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:450.48 GB) (Free:168.97 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: 18AFBA85) Partition: GPT. ======================================================== Disk: 1 (Size: 8 GB) (Disk ID: DDC72E72) Partition: GPT. ==================== Fin de Addition.txt ============================