Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-10-2017 Exécuté par Utilisateur (26-10-2017 18:41:37) Exécuté depuis D:\Desktop Windows 10 Home Version 1703 15063.674 (X64) (2017-06-18 12:02:46) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3774232986-1093347448-566855115-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3774232986-1093347448-566855115-503 - Limited - Disabled) Invité (S-1-5-21-3774232986-1093347448-566855115-501 - Limited - Disabled) Utilisateur (S-1-5-21-3774232986-1093347448-566855115-1000 - Administrator - Enabled) => C:\Users\Utilisateur ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.151 - Adobe Systems Incorporated) Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.) Adobe Reader XI (11.0.22) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.22 - Adobe Systems Incorporated) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Assistant de connexion Windows Live (HKLM-x32\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation) Aureas v9.0 Cities (HKLM-x32\...\Aureas Cities_is1) (Version: - Aureas Paris) Aureas v9.5 (HKLM-x32\...\Aureas95_is1) (Version: 9.5 - Aureas Paris) AVS Audio Converter 7.2 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 7.2.2.529 - Online Media Technologies Ltd.) BD Studio Deluxe (HKLM-x32\...\BD Studio Deluxe) (Version: - Micro Application) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Canon MP Navigator EX 4.0 (HKLM-x32\...\MP Navigator EX 4.0) (Version: - ) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.3.0 - Canon Inc.) CanoScan LiDE 110 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_cnq2414) (Version: - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform) Centre Souris et Claviers Microsoft (HKLM\...\{E3047FA0-2D6B-4BD6-8CD4-599955F1CE9D}) (Version: 2.2.173.0 - Microsoft Corporation) Hidden Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation) Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.) Cle USB Wi-Fi Essentiel B (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0238 - REALTEK Semiconductor Corp.) Contenta Converter PREMIUM (HKLM-x32\...\ContentaConverter-PREMIUM) (Version: - Contenta Software) CPUID CPU-Z 1.81.1 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.81.1 - ) Creative WebCam Center (HKLM-x32\...\Creative WebCam Center) (Version: - ) CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6623.58 - CyberLink Corp.) Dazzle Video Capture DVC100 X64 Driver 1.06 (HKLM-x32\...\{BFF23267-1D19-444E-93E2-E5059BE805EA}) (Version: 1.06.0000 - Pinnacle) DGE-528T Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{BD771AFA-4E6D-4DF1-85F5-978293498617}) (Version: 10.6.1001.2015 - D-Link) Dragon NaturallySpeaking 13 (HKLM-x32\...\{33EA20FB-5389-4938-BA59-2BCD9BB68F41}) (Version: 13.00.000 - Nuance Communications Inc.) FileZilla Client 3.26.0 (HKLM-x32\...\FileZilla Client) (Version: 3.26.0 - Tim Kosse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.62 - Google Inc.) Google Drive (HKLM-x32\...\{AC117AF9-316B-4E1D-959E-F0EB85B0DC5F}) (Version: 2.34.7100.0000 - Google, Inc.) Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Installation Windows Live (HKLM-x32\...\{133742BA-6F46-4D3E-85AF-78631D9AD8B8}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden Installation Windows Live (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{8E5233E1-7495-44FB-8DEB-4BE906D59619}) (Version: 14.0.8117.416 - Microsoft Corporation) Hidden LaCie Network Assistant 1.5.16.73 (HKLM\...\{BA94B525-1469-4E00-AFE4-50ADEB8B3993}_is1) (Version: 1.5.16.73 - LaCie) LauncherMA (HKLM-x32\...\{C06EFB22-B5DB-46C5-9215-BCB5C19C0858}) (Version: 1.00.0000 - Micro Application) Magic DVD Ripper V8.2.0 (HKLM-x32\...\Magic DVD Ripper_is1) (Version: - Magic DVD Software, Inc.) Maintenance de Samsung ML-2525W Series (HKLM-x32\...\Samsung ML-2525W Series) (Version: - Samsung Electronics CO.,LTD) Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes) Mes documents sauvegardés (HKLM-x32\...\adbackup5) (Version: - ) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\OneDriveSetup.exe) (Version: 17.3.7073.1013 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 56.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 56.0.1 (x64 fr)) (Version: 56.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.1.6484 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation) ON_OFF Charge 2 B13.0910.1 (HKLM-x32\...\{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) Hidden ON_OFF Charge 2 B13.0910.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE) OpenOffice 4.0.1 (HKLM-x32\...\{8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}) (Version: 4.01.9714 - Apache Software Foundation) Orange update (HKLM-x32\...\OrangeUpdateManager) (Version: 2.3.0.7 - Orange) Outil de téléchargement Windows Live (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.0 - pdfforge) Pinnacle Studio 17 - Install Manager (HKLM-x32\...\{F04D92CC-5C3A-46FA-9C98-6EACBDD262FF}) (Version: 17.0.128 - Corel Corporation) Pinnacle Studio 17 - Standard Content Pack (HKLM-x32\...\{BA98BFA8-5EDF-450B-A92E-C096DC135D0E}) (Version: 17.0 - Corel Corporation) Pinnacle Studio 17 (HKLM-x32\...\{3DA8F808-72E2-4361-82EC-433081D23005}) (Version: 17.5.0.327 - Corel Corporation) Pinnacle Studio 17 Add-Ons (HKLM-x32\...\{0B9B3056-3E89-427D-BB27-B555F6077C47}) (Version: 17.0 - Corel) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.21.811.2017 - Realtek) Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 2.0.2.11 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7037 - Realtek Semiconductor Corp.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.59.0 - Samsung Electronics Co., Ltd.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Services d’impression Bonjour (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.22 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16052.2 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16052.2 - Samsung Electronics Co., Ltd.) SmartSound Common Data (HKLM-x32\...\{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.) Hidden SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.) SmartSound Sonicfire Pro 5.8 (HKLM-x32\...\{E5184D41-7796-4127-BBE4-46993F9FAAF3}) (Version: 5.8.0 - SmartSound Software Inc.) Hidden SmartSound Sonicfire Pro 5.8 (HKLM-x32\...\InstallShield_{E5184D41-7796-4127-BBE4-46993F9FAAF3}) (Version: 5.8.0 - SmartSound Software Inc.) Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.1.201412301303 - Sony Mobile Communications Inc.) Sony PC Companion 2.10.275 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.275 - Sony) Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.83369 - TeamViewer) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) WD My Cloud (HKLM\...\{8F19C800-80A5-4636-B560-39A58112D45B}) (Version: 1.0.4.37 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{9C78C31D-53B8-438F-AF1A-5F89ECA6C4F0}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{F99172EC-CC5E-4FF2-975F-5415B6E6B8FA}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{4555885d-a64c-4234-9aac-72a8a6b5590b}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-10-09] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-10-09] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-10-09] (Google) ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => -> Pas de fichier ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-10-09] (Google) ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2013-05-27] (Online Media Technologies Ltd.) ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-10-09] (Google) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (Western Digital Technologies, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {001B973F-04D4-4FAB-AD62-068EB2459399} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {07CA6FFD-FA63-4077-9021-3EC9666549B9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {13CC6090-519C-43B4-B6AA-58BA032C7EDB} - System32\Tasks\GoogleUpdateTaskMachineUA1d1e91c6f0e8c2b => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {1400818F-5886-4AF4-93CF-D249DC7C53EC} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION Task: {152E7880-B6B3-495D-A550-9532FCDDF3B7} - System32\Tasks\GoogleUpdateTaskMachineCore1d1e91c6ef56456 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {1BF8D2B0-A3C0-48A6-B8F8-48D030388AA3} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {225B359F-B93E-4B8F-AFA6-8E96D7BF5213} - System32\Tasks\{0AB2E53D-4D5A-4BF9-B00A-D95098A61843} => D:\Program Files (x86)\AVS4YOU\AVSAudioConverter\AVSAudioConverter.exe [2013-12-18] (Online Media Technologies Ltd.) Task: {28F16F9D-7125-410D-A6BC-C33A0A541C6D} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {2A83C904-7B82-46A2-B2EA-BB375BB52E45} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {2DB316BB-A2A3-42EA-9FD9-331492EF72CF} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {35F5A4B6-9B71-44F3-99A3-C6C5511E43BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {453216C0-0E6F-4492-883B-2C1B2159439E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {4B24477C-B52D-4501-B2A5-5BEC0E504DC0} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {4E11AEAF-F82F-4E1E-8D36-D288FC4814ED} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {4EA1F074-4668-47C8-95AD-FBA331448C02} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION Task: {513FADFF-AFA4-467D-85DB-2D6C8B3051D2} - System32\Tasks\Western Digital\SmartWare\____Volume_e7b1aec7_981a_11e3_8748_806e6f6e6963__uuid_73656761_7465_7375_636b_0090a93fe584_Public_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2016-04-19] (Western Digital Technologies, Inc.) Task: {55475029-9D73-47D6-997D-A4B33F4F2262} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {5678DF7D-FB7C-4791-AD8E-1B0B183EE33D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {5F957B25-B4EE-423E-969A-C1AADC7E5C8F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {629BCAD7-90A7-4337-9F3C-EC0688563B4E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-20] (Piriform Ltd) Task: {6DF95073-0F4F-49F8-B8A5-65DA761704AE} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {72DD933D-CF7A-4DED-8709-8E01F77852B3} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {7FD3356D-B6C5-41B1-914D-D2218B98B48A} - System32\Tasks\{152A0C6F-0572-4C83-800E-6A101ECBBD2E} => D:\Program Files (x86)\AVS4YOU\AVSAudioConverter\AVSAudioConverter.exe [2013-12-18] (Online Media Technologies Ltd.) Task: {8B22EAC7-CB46-49D0-BD6F-DF16D882510D} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe Task: {8CD55C56-D426-4DC0-93C2-BCA893EEBE07} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.) Task: {95DEC867-A383-4AB9-BC35-40A5EF3D3244} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {A036EA10-1829-4DCE-A9D5-01F6E503913D} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation) Task: {A1CE7709-932B-4215-80E3-11ADE53BD8CF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {A5EA3B36-47D3-48FF-B428-D982D9A3E9B2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {AC391039-FB5E-40C4-ADAE-A7CC1A5BED1F} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft) Task: {ACDC4F0F-E9E1-46CB-8AB9-B6BBA54D8FE2} - System32\Tasks\Western Digital\SmartWare\____Volume_e7b1aec6_981a_11e3_8748_806e6f6e6963__uuid_73656761_7465_7375_636b_0090a93fe584_jf_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2016-04-19] (Western Digital Technologies, Inc.) Task: {B1CBC99C-5C15-4852-99FF-742032B341FE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {D02563E1-5993-4158-A0A8-675BA4239E02} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation) Task: {D185BB85-1CE1-4DE7-89CC-27A5F86204F0} - System32\Tasks\S-1-5-21-3774232986-1093347448-566855115-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation) Task: {D75BF330-02CD-4C23-9A6F-D92B1EAD224B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {DD604457-B54C-4943-8F44-68B7E740B43D} - System32\Tasks\{3B815857-BDF9-4FB0-9F76-5CCE4E50D50E} => D:\Program Files (x86)\AVS4YOU\AVSAudioConverter\AVSAudioConverter.exe [2013-12-18] (Online Media Technologies Ltd.) Task: {E0095D9C-DC89-47B4-AD4B-CD8BAAE43E3C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {EC22F728-FDA5-441C-8F9B-32997001EBE9} - System32\Tasks\Western Digital\SmartWare\____Volume_e7b1aec6_981a_11e3_8748_806e6f6e6963__uuid_73656761_7465_7375_636b_0090a93fe584_SmartWare_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [2016-04-19] (Western Digital Technologies, Inc.) Task: {EF33E90B-665B-4610-B8AB-630CCFA9BFE3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {FAA0F3E3-66FD-42B6-A718-B07C57396663} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-08-18] (Adobe Systems Incorporated) Task: {FE1C863E-A64D-443A-97D7-24E6B49D08C3} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2014-03-15 18:57 - 2011-06-22 11:48 - 000034304 _____ () C:\WINDOWS\System32\ssp6ml6.dll 2014-03-15 18:57 - 2011-06-22 11:47 - 000826880 _____ () C:\WINDOWS\system32\spool\DRIVERS\x64\3\ssp6mdu.dll 2013-10-25 10:49 - 2013-10-25 10:49 - 000693760 _____ () C:\Program Files\Mes documents sauvegardés\Service\sqlite3.DLL 2015-03-20 18:12 - 2015-03-20 18:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-12-17 19:38 - 2015-12-17 19:38 - 001328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-10-22 15:45 - 2014-04-15 10:36 - 000036864 _____ () C:\Windows\runSW.exe 2017-10-07 22:08 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-10-07 22:08 - 2017-10-04 13:15 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-10-22 23:11 - 2017-10-22 23:11 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-10-22 23:11 - 2017-10-22 23:11 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-10-22 23:11 - 2017-10-22 23:11 - 025446400 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-10-22 23:11 - 2017-10-22 23:11 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\skypert.dll 2017-09-07 18:12 - 2017-09-07 18:12 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-10-22 15:45 - 2013-02-27 17:17 - 000221184 _____ () C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\EnumDevLib.dll 2015-07-09 20:29 - 2016-01-12 06:43 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2014-02-17 17:33 - 2013-09-16 13:17 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:0FF263E8 [272] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\samsungsetup.com -> hxxp://www.samsungsetup.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\123simsen.com -> www.123simsen.com Il y a 7865 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2014-07-04 21:07 - 003603414 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 08sr.combineads.info 127.0.0.1 08srvr.combineads.info 127.0.0.1 12srvr.combineads.info 127.0.0.1 2010-fr.com 127.0.0.1 2012-new.biz 127.0.0.1 212link.com 127.0.0.1 2319825.ourtoolbar.com 127.0.0.1 24h00business.com 127.0.0.1 a.adorika.net 127.0.0.1 a.ad-sys.com 127.0.0.1 a.daasafterdusk.com 127.0.0.1 ad.adn360.com 127.0.0.1 adeartss.eu 127.0.0.1 adesoeasy.eu 127.0.0.1 adf.girldatesforfree.net 127.0.0.1 adm.soft365.com 127.0.0.1 adomicileavail.googlepages.com 127.0.0.1 ads7.complexadveising.com 127.0.0.1 ads.adplxmd.com 127.0.0.1 ads.aff.co 127.0.0.1 ads.alpha00001.com 127.0.0.1 ads.cloud4ads.com 127.0.0.1 ads.egdating.net 127.0.0.1 ads.eorezo.com 127.0.0.1 ads.hooqy.com 127.0.0.1 ads.pornerbros.com 127.0.0.1 ads.realken.com 127.0.0.1 ads.regiedepub.com 127.0.0.1 ads.sucomspot.com 127.0.0.1 ads.tersecta.com Il y a 112079 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3774232986-1093347448-566855115-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: CanonQuickMenu => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE /logon MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 MSCONFIG\startupreg: IMSS => "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" MSCONFIG\startupreg: Onboard => C:\Program Files\Western Digital\WD SmartWare\BackupTask.exe /Onboard "C:\Program Files\Western Digital\WD SmartWare\WDSmartWare.exe" MSCONFIG\startupreg: PowerDVD14Agent => "D:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14\PowerDVD14Agent.exe" MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s MSCONFIG\startupreg: Samsung PanelMgr => C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" MSCONFIG\startupreg: WD Quick View => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe HKLM\...\StartupApproved\StartupFolder: => "Adobe Gamma Loader.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent" HKU\S-1-5-21-3774232986-1093347448-566855115-1000\...\StartupApproved\StartupFolder: => "Lanceur.lnk" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{D981E85A-9BC4-4A67-B250-94859146B698}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E6A4FAE4-00DB-4FFB-A0CC-57FC6F24CAB6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{408D5A6A-B9B6-4BB7-A707-6C15C2A81E31}] => (Allow) C:\PROGRA~2\CLEUSB~1\USBWIR~1\RtWlan.exe FirewallRules: [{6C4A2386-FA63-415F-9D31-35078C7F78B9}] => (Allow) LPort=1542 FirewallRules: [{70175015-6152-4BDA-BD0E-085F9E525DA6}] => (Allow) LPort=1542 FirewallRules: [{7CD39DBA-8109-4BBE-BBAE-D62B44F8CFBA}] => (Allow) LPort=53 FirewallRules: [{8CAEE3BE-E275-4EBC-8C0B-F387EAD4DBA0}] => (Allow) C:\PROGRA~2\CLEUSB~1\USBWIR~1\Rtldhcp.exe FirewallRules: [{772C4C2C-DB8E-4967-9480-521602E3B37C}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{783BF134-15D6-48AD-8360-4832B8BC3DFB}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{00FF3987-94FB-4E17-A74D-2F1BC4FF2D62}] => (Allow) LPort=53 FirewallRules: [{57350889-E736-42E9-A7E0-2F9CE9F19F4F}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{AA83B27A-35BE-4640-8A5E-057FA5F0C10A}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{A4CE3A59-348F-449C-9F02-4924E149222D}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{D0AA749C-7FA7-4D7B-8EAC-B51707F2C91F}] => (Allow) C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RTLDHCP.exe FirewallRules: [{DE6B9CE0-DD09-43A5-900B-ECD89DF72A17}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 12-10-2017 22:37:03 Installé Realtek Ethernet Controller Driver 14-10-2017 23:20:21 Installé Realtek Ethernet Controller Driver 18-10-2017 17:00:28 Installé DGE-528T Ethernet Controller All-In-One Windows Driver 19-10-2017 22:49:39 19oct17 22-10-2017 15:45:40 Installé Cle USB Wi-Fi Essentiel B 25-10-2017 17:49:07 Removed QuickTime 7 ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Realtek RTL8192EU Wireless LAN 802.11n USB 2.0 Network Adapter Description: Carte réseau local USB 2.0 sans fil 802.11n Realtek RTL8192EU Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Semiconductor Corp. Service: RtlWlanu Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Realtek PCIe GBE Family Controller Description: Realtek PCIe GBE Family Controller Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: rt640x64 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (10/26/2017 01:04:51 PM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows. Error: (10/26/2017 01:04:50 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (10/26/2017 01:04:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RtlService.exe, version : 700.1006.416.2010, horodatage : 0x4bc81b90 Nom du module défaillant : ntdll.dll, version : 10.0.15063.608, horodatage : 0x802f667e Code d’exception : 0xc000070a Décalage d’erreur : 0x000f5033 ID du processus défaillant : 0xe48 Heure de début de l’application défaillante : 0x01d34e4a3d453932 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RtlService.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 55453d1d-5c8d-4532-8776-43a1516c19bd Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/25/2017 06:20:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante RtWlan.exe, version : 700.1676.102.2014, horodatage : 0x52c52556 Nom du module défaillant : RtWlan.exe, version : 700.1676.102.2014, horodatage : 0x52c52556 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002931d ID du processus défaillant : 0x10c0 Heure de début de l’application défaillante : 0x01d34dad14c39e97 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RtWlan.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Cle USB Wi-Fi Essentiel B\USB Wireless LAN Utility\RtWlan.exe ID de rapport : 0a9cacc3-2d9d-4e86-8bc3-567a5f4b21bb Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Utilisateur-PC.local already in use; will try Utilisateur-PC-2.local instead Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Utilisateur-PC.local. Addr 192.168.1.21 Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 16 Utilisateur-PC.local. AAAA 2A01:CB00:0680:3C00:98E2:ACF5:E42F:00A8 Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 8.A.0.0.F.2.4.E.5.F.C.A.2.E.8.9.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Utilisateur-PC.local. Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.21:5353 24 8.A.0.0.F.2.4.E.5.F.C.A.2.E.8.9.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR Utilisateur-PC-2.local. Error: (10/25/2017 03:17:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 22 21.1.168.192.in-addr.arpa. PTR Utilisateur-PC.local. Erreurs système: ============= Error: (10/26/2017 01:15:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (10/26/2017 01:15:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Cache de police de Windows Presentation Foundation 3.0.0.0. Error: (10/26/2017 01:07:35 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) Rapid Storage Technology. Error: (10/26/2017 01:07:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Dnscache. Error: (10/26/2017 01:06:22 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Dnscache. Error: (10/26/2017 01:05:52 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Dnscache. Error: (10/26/2017 01:05:22 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Dnscache. Error: (10/26/2017 01:04:50 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service RealtekWlanU s’est terminé de façon inattendue pour la 1ème fois. Error: (10/26/2017 01:04:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois. Error: (10/26/2017 01:04:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. CodeIntegrity: =================================== Date: 2017-10-25 20:55:07.233 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 20:55:07.232 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 15:17:57.104 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 15:17:22.287 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 15:17:22.286 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 15:02:50.176 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 15:02:50.175 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 11:47:52.449 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-25 11:47:52.448 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-10-24 19:30:51.654 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 14% Mémoire physique - RAM - totale: 16328.63 MB Mémoire physique - RAM - disponible: 13899.64 MB Mémoire virtuelle totale: 32712.63 MB Mémoire virtuelle disponible: 30290.8 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:465.22 GB) (Free:346.85 GB) NTFS Drive d: (Mes Documents) (Fixed) (Total:931.51 GB) (Free:855.61 GB) NTFS Drive f: (KINGSTON) (Removable) (Total:14.9 GB) (Free:6.39 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 559924F3) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=449 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C775DF2F) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 1918.6 GB) (Disk ID: 508E53F4) Partition 1: (Active) - (Size=14.9 GB) - (Type=0B) ==================== Fin de Addition.txt ============================