Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 17-10-2016
Exécuté par Lucas (21-10-2016 10:47:06)
Exécuté depuis C:\Users\Lucas\Desktop
Windows 10 Home Version 1511 (X64) (2016-01-10 18:15:43)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1486672552-2532302080-2866283257-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1486672552-2532302080-2866283257-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1486672552-2532302080-2866283257-1003 - Limited - Enabled)
Invité (S-1-5-21-1486672552-2532302080-2866283257-501 - Limited - Disabled) => C:\Users\Invité
Lucas (S-1-5-21-1486672552-2532302080-2866283257-1001 - Administrator - Enabled) => C:\Users\Lucas
tnbbxkdkodjg (S-1-5-21-1486672552-2532302080-2866283257-1004 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: IObit Malware Fighter (Enabled - Up to date) {4D381C57-3C7A-6F22-07EB-639F49E836D4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Disabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.3.0 - IObit)
AdVenture Capitalist (HKLM\...\Steam App 346900) (Version: - Hyper Hippo Games)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.8 - ASUS)
Atom (HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\atom) (Version: 1.9.3 - GitHub Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitTorrent (HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\BitTorrent) (Version: 7.9.9.42607 - BitTorrent Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
Cities Skylines Snowfall (HKLM-x32\...\Cities Skylines Snowfall_is1) (Version: - )
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Democracy 3 - Africa (HKLM-x32\...\1459868439_is1) (Version: 2.2.0.3 - GOG.com)
Democracy 3 (HKLM-x32\...\1207659953_is1) (Version: 2.13.0.19 - GOG.com)
DiskCryptor 1.1 (HKLM\...\DiskCryptor_is1) (Version: 1.1 - hxxp://diskcryptor.net/)
Driver Booster 3.4 (HKLM-x32\...\Driver Booster_is1) (Version: 3.4 - IObit)
ELAN Touchpad 15.8.4.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.4.3 - ELAN Microelectronic Corp.)
FileZilla Client 3.17.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.17.0.1 - Tim Kosse)
Game Dev Tycoon v1.5.28 (HKLM-x32\...\Game Dev Tycoon v1.5.281.5.28) (Version: 1.5.28 - Friends in War)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.59 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
H1Z1 (HKLM-x32\...\Steam App 295110) (Version: - Daybreak Games)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Hotspot Shield 5.4.5 (HKLM-x32\...\HotspotShield) (Version: 5.4.5 - AnchorFree Inc.)
Hotspot Shield 5.4.5 Embedded (x32 Version: 5.4.5.9726 - Buildbot) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
IObit Malware Fighter 4 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 4.2 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.3.0.142 - IObit)
Java 8 Update 102 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 92 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218092F0}) (Version: 8.0.920.14 - Oracle Corporation)
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{F46A1003-7E9A-418C-8149-C6AF1EAF6B89}) (Version: 8.0.4.394 - Kaspersky Lab)
Kaspersky Password Manager (x32 Version: 8.0.4.394 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Maxx Audio Installer (x64) (Version: 2.6.6168.8 - Waves Audio Ltd.) Hidden
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.7369.2038 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Prison Architect (HKLM\...\Steam App 233450) (Version: - Introversion Software)
qBittorrent 3.3.4 (HKLM-x32\...\qBittorrent) (Version: 3.3.4 - The qBittorrent project)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.27055 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7891 - Realtek Semiconductor Corp.)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.0.1 - ShareX Team)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.1.0 - IObit)
Stardock Fences 2 (HKLM-x32\...\Stardock Fences 2) (Version: 2.11 - Stardock Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Superb Game Boost 3.0 (HKLM-x32\...\SuperbGameBoost_is1) (Version: 3.0 - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lucas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Lucas\AppData\Local\Roblox\Versions\version-fcb87185003640ba\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Pas de fichier
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C314D74-04FC-4920-B7E9-2AB8CC3C83FE} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {363E4B2D-4BAF-4146-9B32-5654104438A5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-20] (Microsoft Corporation)
Task: {3A0C79A2-E1E0-42D0-958B-A3AADAC7C0B0} - \rde3028 -> Pas de fichier <==== ATTENTION
Task: {4459D04F-DC95-46F8-BC61-CBABF15C40EE} - System32\Tasks\ASC9_SkipUac_Lucas => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-05-16] (IObit)
Task: {5547EE52-C82A-4EBE-95D2-D4E20700B285} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13] (Adobe Systems Incorporated)
Task: {574D41C5-BCC7-4096-83B3-74BB5097683A} - System32\Tasks\Uninstaller_SkipUac_Lucas => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-05-12] (IObit)
Task: {59F46AEE-F8DF-4294-8B1A-277AC98A1915} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {6835606C-FD12-4E37-98E2-20FE475FCC6D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {6EF184D7-49DD-4321-8409-9F9CFFD5C0A7} - System32\Tasks\Driver Booster SkipUAC (Lucas) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-05-23] (IObit)
Task: {7213EA34-3745-4FBF-B6F9-E1BEA292C137} - System32\Tasks\SmartDefrag_Defrag => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-06-13] (IObit)
Task: {7693D8E7-3D09-4F57-BE34-6F4DAE57EA5A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-09-05] (Microsoft Corporation)
Task: {7C4A2ED5-D24D-43C7-A3C3-676F112C0115} - System32\Tasks\SuperbGameBoost => C:\Program Files (x86)\SuperBoost\Superb Game Boost\SuperbGameBoostMain.exe [2016-05-12] (SuperBoost Software)
Task: {800F8592-4C73-4F5D-B58A-1FA57795138B} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-05-06] ()
Task: {85780E1B-3A9D-403C-9475-33C5CA5EAB63} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-20] (Microsoft Corporation)
Task: {892EA4CD-F6CE-490F-BF7B-F600752BDE7D} - System32\Tasks\SmartDefrag_AutoDefrag => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {8C899C75-527C-4772-9535-785FDD766EB6} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-05-18] (IObit)
Task: {926F205F-9240-4D3A-9AF2-1C70EA671453} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23] (Google Inc.)
Task: {AA1073C1-522F-4A64-918B-41F397A99A16} - System32\Tasks\{9BF52694-D68A-434D-B54A-1CFA5506DBE6} => pcalua.exe -a C:\Users\Lucas\AppData\Local\Temp\Temp1_Power4Gear_Hybrid_Win7_32_Win7_64_z1140.zip\Setup.exe <==== ATTENTION
Task: {AFFC5AD3-5578-4478-BCFD-496621DDF4C6} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2016-06-01] (IObit)
Task: {C5357FBD-B2AC-48BB-B85A-919CAED0ED2E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-09-05] (Microsoft Corporation)
Task: {E73D0B17-BBF5-404E-BF5F-03F1D6E6BB28} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {F13E70B8-3419-4085-BFFA-CE8586186DDB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23] (Google Inc.)
Task: {FE6C4C01-4425-4FD1-B7E3-2C206DCD1B91} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-06-13] (IObit)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Lucas.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Lucas.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Fair AdBlocker App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=dcnofaichneijfbkdkghmhjjbepjmble
ShortcutWithArgument: C:\Users\Lucas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Modules chargés (Avec liste blanche) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 ____N () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-17 22:22 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-17 22:22 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-05-09 09:22 - 2016-05-09 09:22 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-12-25 05:32 - 2015-12-25 05:32 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-17 22:23 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-17 22:31 - 2016-07-01 05:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-17 22:31 - 2016-07-01 05:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-17 22:31 - 2016-07-01 05:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-17 22:31 - 2016-07-01 05:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-04 10:57 - 2016-06-04 10:59 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-06-04 10:57 - 2016-06-04 10:59 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-04 10:57 - 2016-06-04 10:59 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-04 09:26 - 2016-03-04 09:28 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-07-17 22:32 - 2016-07-01 05:47 - 00064512 _____ () C:\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\Microsoft.CloudExperienceHost.dll
2016-04-30 17:14 - 2016-04-30 17:15 - 10256384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2016-07-20 08:09 - 2016-07-20 08:51 - 03893952 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.41051.0_x64__8wekyb3d8bbwe\gfxim.dll
2016-10-13 00:13 - 2016-10-12 07:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libglesv2.dll
2016-10-13 00:13 - 2016-10-12 07:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libegl.dll
2016-07-11 09:32 - 2016-03-31 17:57 - 00625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2016-07-11 14:31 - 2016-01-11 17:03 - 00899872 _____ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll
2016-07-11 14:31 - 2016-01-11 17:02 - 00630048 _____ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll
2016-07-11 09:51 - 2016-03-28 16:46 - 00130880 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\Temperature.dll
2016-07-11 09:51 - 2016-02-02 09:53 - 00629056 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\SgbStatistics.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 00829760 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_IG.dll
2016-07-11 09:51 - 2016-01-29 18:03 - 00337216 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\taskMgr.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 00510272 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_ID.dll
2016-07-11 09:51 - 2016-01-29 15:21 - 00276800 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\D3DX8Wrapper.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 01214272 _____ () c:\program files (x86)\superboost\superb game boost\GA_CheackDx.dll
2016-10-20 12:42 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-10-20 12:42 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-12-11 19:18 - 2015-12-11 19:18 - 00437216 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.4\ipm_service.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\webcompanion.com -> hxxp://webcompanion.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\100sexlinks.com -> 100sexlinks.com
Il y a 4788 plus de sites.
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2016-01-11 19:33 - 2016-05-21 11:46 - 00001561 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 thislineskipsanyemptylines
127.0.0.1 mirillis.com
127.0.0.1 www.mirillis.com
127.0.0.1 serwer2.paka-service.com
127.0.0.1 ns386119.ovh.net
127.0.0.1 mirillis.pl
127.0.0.1 www.ovh.com
127.0.0.1 176.31.241.10
127.0.0.1 91.121.143.139
127.0.0.1 thislineskipsanyemptylines
127.0.0.1 www.mirillis.com
127.0.0.1 s0ft4pc.com
127.0.0.1 serwer2.paka-service.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucas\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{a871f4d9-012c-4081-8903-ef542a9f3866}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
MSCONFIG\startupreg: Akamai NetSession Interface =>
MSCONFIG\startupreg: CCleaner Monitoring => "c:\program files\ccleaner\ccleaner64.exe" /monitor
MSCONFIG\startupreg: OneDrive => "c:\users\lucas\appdata\local\microsoft\onedrive\onedrive.exe" /background
MSCONFIG\startupreg: Skype => "c:\program files (x86)\skype\phone\skype.exe" /minimized /regrun
MSCONFIG\startupreg: Sony PC Companion =>
MSCONFIG\startupreg: Steam => "d:\games\steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "c:\program files (x86)\common files\java\java update\jusched.exe"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM tray"
HKLM\...\StartupApproved\Run32: => "RazerGameBooster"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\StartupFolder: => "ShareX.lnk"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "kpm.exe"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "ManyCam"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Advanced SystemCare 9"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Sony PC Companion"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A5277C82-1EE3-46D9-A2A0-EABDA2D5EE2A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{75E6FFB0-B73F-426C-ADB2-77115D74E41F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7607016A-0CB8-4D42-9869-D641E9DBA144}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{139DDF03-0978-4C40-BB63-48C654F700B3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{2D9BB0C4-058C-4233-B2A1-7D74E0008BAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{77FC2594-48A0-410F-87F6-3AC71506CFC4}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{CE4FEC23-82FE-4850-ADC4-B899DC437B10}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{93984818-F7D4-4175-91E3-AD68A375E12E}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{743CDA36-99D1-4953-9523-2B825B0D74C0}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{25FD9435-7629-4CFE-A1AA-D8EE9FCE29C2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F7CC7266-BDA6-4181-A9F1-F960C77F58CC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C5AA02B4-2E0B-467F-9487-5EB123AC6D2C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{3B9445A0-679C-416A-A472-0CBCF15F754A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{FF201A0E-23A6-4DD1-A86E-74902211AAF3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{41D1FC98-0CA5-4407-9D4D-12AE2DA36E4E}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{BF11AF1E-D85D-4BFB-AF71-D770928F92B5}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{97C2F07F-AD0B-4D00-9CDE-FE0679184CA4}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{83C3689B-B076-4358-999C-0CB20ACCBCDB}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{65CC7AE9-96D9-4B21-92CA-A040AE5B27AA}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{63091675-CC92-4824-B446-4784F678083B}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{4E8BE794-86F3-47D5-916B-3866E4C937D2}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{3721657B-04A5-4D85-95C7-76981572080F}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{3BD0D69D-6275-4B59-BFD5-8B3F738D4A5E}] => (Allow) D:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{58057528-92C3-4F67-8A4E-EE95A6FBD862}] => (Allow) D:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [TCP Query User{C61E88FD-F932-4ACD-AE2D-9FFA517ED3EE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{23B39E9E-EC02-4430-8672-42D471B64F83}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{26B177DC-BFF5-4979-914F-11CEB0F0D46F}] => (Allow) D:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{741FCF02-5B9E-417A-AC81-5DD219003171}] => (Allow) D:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{B69234E7-D093-4EFE-A9D9-B10B140180EB}D:\games\steam\steamapps\common\garrysmod\hl2.exe] => (Allow) D:\games\steam\steamapps\common\garrysmod\hl2.exe
FirewallRules: [UDP Query User{27F93E84-F21F-4B90-9974-5AA1446AF00E}D:\games\steam\steamapps\common\garrysmod\hl2.exe] => (Allow) D:\games\steam\steamapps\common\garrysmod\hl2.exe
FirewallRules: [TCP Query User{42AC136E-33E3-491F-8CF0-0F8C3E31578F}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{ACAF185A-4281-4B8E-8359-8B66DE74224F}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [TCP Query User{8F0297A8-30FD-4214-AA96-86A0F00FAA47}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Block) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [UDP Query User{6E0EFF8C-8286-4995-A528-D85E80F807F1}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Block) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [{70B3F31D-5303-4754-9ED6-C84CB328A6EC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{BBAB61C7-288E-4BD1-853D-A2B3C93F5252}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{D7E1BA42-C6C4-4175-BE71-EE56D376F7CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{80644EB1-D047-4703-8DC2-DDD89A0DA145}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2216BD37-01D2-48B5-8B0C-1624BD8ED4BE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{0E31888A-4E1D-4357-A9CF-5118DBDDE6A1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{4686860D-B455-4709-8CB5-4FAE3D889C13}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{6A33D312-6358-4796-9582-9B313B7AEA49}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{EB87B80E-2475-452B-98F9-6F91C673AE6B}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{9CE6637E-2742-4F55-BF9C-D6B0B687563D}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{CC94C1C0-2459-46DF-B3EA-168767610E86}] => (Allow) D:\Games\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{270C4EC4-7E17-44C3-8B8F-23FBA4BB8C8D}] => (Allow) D:\Games\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B564C438-3BA2-4ABA-85A9-067C518EA188}] => (Allow) D:\Games\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{D5014E66-A373-4030-BF6F-54F3823E2EAC}] => (Allow) D:\Games\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{9EB31FCC-95F3-414E-BCA3-63BD9A0C07F0}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{ACFCCD7E-5F53-4D9B-8345-5F9408C80E59}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{C2622FC9-6869-47C7-9DCB-361EEE929C14}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{AA4BAD6F-A08A-4047-AD29-E2C46F765312}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{269933A4-5FFC-4C96-883B-3B8C2D140D10}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{1E9D8AF3-0CFC-47F8-B9C2-2C444BE6C41D}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{334EE1CF-7AE2-49A1-8E84-9AD72FD29D3C}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{14DEE15C-860C-433E-B9C5-C9170D556C4A}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A6B85251-70A5-401D-81F1-5F6024C78C77}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{37223287-1193-4C19-97C1-1F8F4BC890AD}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{5E838BEF-866E-4866-980A-BD146935597F}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0CDE37CD-6089-454F-BFAD-B41309558395}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{AC5D17C9-B7FE-4454-85F1-3F3493B2E638}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4BE355D8-CDF6-4978-8618-0485B355711F}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{21431F0D-A756-42A0-A2DF-3231F6AA55E6}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{9B9A0228-3924-4B58-8991-2569A864F0D3}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A9932DEB-5F83-46CE-95D2-555E242FBF0A}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{28AEAB8B-A2CD-412F-B10C-E5455FD9A56A}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C2EBC75B-D6CA-43C2-A661-D91C01DE4B03}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
==================== Points de restauration =========================
13-10-2016 00:40:59 Driver Booster : Adobe Flash Player NPAPI
13-10-2016 20:23:49 Programme d’installation pour les modules Windows
15-10-2016 18:23:27 Installed TI Connect™ CE
15-10-2016 19:41:25 JRT Pre-Junkware Removal
20-10-2016 00:30:57 JRT Pre-Junkware Removal
20-10-2016 11:13:49 Removed ASUS Power4Gear Hybrid
20-10-2016 13:37:43 Microsoft Software Repair Tool
20-10-2016 14:21:20 Opération de restauration
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/21/2016 02:57:30 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/21/2016 12:37:30 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Le volume ASUS (C:) n’a pas été optimisé, car une erreur s’est produite : Paramètre incorrect. (0x80070057)
Error: (10/20/2016 09:54:01 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 09:44:20 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 08:34:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Le service Services de chiffrement n’a pas réussi à initialiser la base de données du catalogue. L’erreur ESENT était : -550.
Error: (10/20/2016 07:11:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Adobe CEF Helper.exe, version : 3.7.0.271, horodatage : 0x57515883
Nom du module défaillant : libcef.dll, version : 3.2171.2069.0, horodatage : 0x551bdc44
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00444106
ID du processus défaillant : 0x1858
Heure de début de l’application défaillante : 0x01d22ae9968a3ad9
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
ID de rapport : 28ec8529-f7f9-4513-8f35-0f3b9e46b541
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (10/20/2016 06:17:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ASUSTEKCOMPUTER)
Description: Échec de l’activation de l’application Microsoft.WindowsStore_8wekyb3d8bbwe!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (10/20/2016 06:14:35 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 05:55:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_ea85e725b9ba5a4b.manifest.
Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_a2d8b04ea53e3145.manifest.
Error: (10/20/2016 05:53:31 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Erreurs système:
=============
Error: (10/20/2016 10:32:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2016 09:56:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service AdvancedSystemCareService9 n’a pas pu démarrer en raison de l’erreur :
Cette version de AdvancedSystemCareService9 n’est pas compatible avec la version de Windows actuellement exécutée. Vérifiez dans les informations système de votre ordinateur, puis contactez l’éditeur de logiciel.
Error: (10/20/2016 09:56:08 PM) (Source: volmgr) (EventID: 46) (User: )
Description: L'initialisation du fichier de vidage sur incident a échoué.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Accès aux données utilisateur_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Stockage des données utilisateur_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Données de contacts_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2016 09:54:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Lucas\AppData\Local\Temp\catchme.sys
Error: (10/20/2016 09:54:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Lucas\AppData\Local\Temp\catchme.sys
CodeIntegrity:
===================================
Date: 2016-10-20 21:54:35.983
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.962
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.688
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.652
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:51:27.220
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.4\kldw.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.309
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.289
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.045
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.025
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:19.194
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Pourcentage de mémoire utilisée: 42%
Mémoire physique - RAM - totale: 3981.73 MB
Mémoire physique - RAM - disponible: 2276.86 MB
Mémoire virtuelle totale: 5837.73 MB
Mémoire virtuelle disponible: 3779.1 MB
==================== Lecteurs ================================
Drive c: (ASUS) (Fixed) (Total:185.86 GB) (Free:69.48 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:258.35 GB) (Free:95.68 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 4FBCD7BE)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par Lucas (21-10-2016 10:47:06)
Exécuté depuis C:\Users\Lucas\Desktop
Windows 10 Home Version 1511 (X64) (2016-01-10 18:15:43)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1486672552-2532302080-2866283257-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1486672552-2532302080-2866283257-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1486672552-2532302080-2866283257-1003 - Limited - Enabled)
Invité (S-1-5-21-1486672552-2532302080-2866283257-501 - Limited - Disabled) => C:\Users\Invité
Lucas (S-1-5-21-1486672552-2532302080-2866283257-1001 - Administrator - Enabled) => C:\Users\Lucas
tnbbxkdkodjg (S-1-5-21-1486672552-2532302080-2866283257-1004 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: IObit Malware Fighter (Enabled - Up to date) {4D381C57-3C7A-6F22-07EB-639F49E836D4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Disabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.017.20050 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Advanced SystemCare 9 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 9.3.0 - IObit)
AdVenture Capitalist (HKLM\...\Steam App 346900) (Version: - Hyper Hippo Games)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.8 - ASUS)
Atom (HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\atom) (Version: 1.9.3 - GitHub Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitTorrent (HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\BitTorrent) (Version: 7.9.9.42607 - BitTorrent Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
Cities Skylines Snowfall (HKLM-x32\...\Cities Skylines Snowfall_is1) (Version: - )
Cities: Skylines (HKLM-x32\...\Steam App 255710) (Version: - Colossal Order Ltd.)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Democracy 3 - Africa (HKLM-x32\...\1459868439_is1) (Version: 2.2.0.3 - GOG.com)
Democracy 3 (HKLM-x32\...\1207659953_is1) (Version: 2.13.0.19 - GOG.com)
DiskCryptor 1.1 (HKLM\...\DiskCryptor_is1) (Version: 1.1 - hxxp://diskcryptor.net/)
Driver Booster 3.4 (HKLM-x32\...\Driver Booster_is1) (Version: 3.4 - IObit)
ELAN Touchpad 15.8.4.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.4.3 - ELAN Microelectronic Corp.)
FileZilla Client 3.17.0.1 (HKLM-x32\...\FileZilla Client) (Version: 3.17.0.1 - Tim Kosse)
Game Dev Tycoon v1.5.28 (HKLM-x32\...\Game Dev Tycoon v1.5.281.5.28) (Version: 1.5.28 - Friends in War)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.59 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
H1Z1 (HKLM-x32\...\Steam App 295110) (Version: - Daybreak Games)
H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company)
Hotspot Shield 5.4.5 (HKLM-x32\...\HotspotShield) (Version: 5.4.5 - AnchorFree Inc.)
Hotspot Shield 5.4.5 Embedded (x32 Version: 5.4.5.9726 - Buildbot) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
IObit Malware Fighter 4 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 4.2 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 5.3.0.142 - IObit)
Java 8 Update 102 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180102F0}) (Version: 8.0.1020.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 92 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218092F0}) (Version: 8.0.920.14 - Oracle Corporation)
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{F46A1003-7E9A-418C-8149-C6AF1EAF6B89}) (Version: 8.0.4.394 - Kaspersky Lab)
Kaspersky Password Manager (x32 Version: 8.0.4.394 - Kaspersky Lab) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Maxx Audio Installer (x64) (Version: 2.6.6168.8 - Waves Audio Ltd.) Hidden
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.7369.2038 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7369.2038 - Microsoft Corporation) Hidden
Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
Prison Architect (HKLM\...\Steam App 233450) (Version: - Introversion Software)
qBittorrent 3.3.4 (HKLM-x32\...\qBittorrent) (Version: 3.3.4 - The qBittorrent project)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.27055 - Realtek Semiconduct Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7891 - Realtek Semiconductor Corp.)
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.0.1 - ShareX Team)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.1.0 - IObit)
Stardock Fences 2 (HKLM-x32\...\Stardock Fences 2) (Version: 2.11 - Stardock Software, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellaris (HKLM-x32\...\Stellaris_is1) (Version: - )
Superb Game Boost 3.0 (HKLM-x32\...\SuperbGameBoost_is1) (Version: 3.0 - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.3 - IObit)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lucas\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Lucas\AppData\Local\Roblox\Versions\version-fcb87185003640ba\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll => Pas de fichier
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0C314D74-04FC-4920-B7E9-2AB8CC3C83FE} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {363E4B2D-4BAF-4146-9B32-5654104438A5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-20] (Microsoft Corporation)
Task: {3A0C79A2-E1E0-42D0-958B-A3AADAC7C0B0} - \rde3028 -> Pas de fichier <==== ATTENTION
Task: {4459D04F-DC95-46F8-BC61-CBABF15C40EE} - System32\Tasks\ASC9_SkipUac_Lucas => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2016-05-16] (IObit)
Task: {5547EE52-C82A-4EBE-95D2-D4E20700B285} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13] (Adobe Systems Incorporated)
Task: {574D41C5-BCC7-4096-83B3-74BB5097683A} - System32\Tasks\Uninstaller_SkipUac_Lucas => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2016-05-12] (IObit)
Task: {59F46AEE-F8DF-4294-8B1A-277AC98A1915} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {6835606C-FD12-4E37-98E2-20FE475FCC6D} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {6EF184D7-49DD-4321-8409-9F9CFFD5C0A7} - System32\Tasks\Driver Booster SkipUAC (Lucas) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2016-05-23] (IObit)
Task: {7213EA34-3745-4FBF-B6F9-E1BEA292C137} - System32\Tasks\SmartDefrag_Defrag => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-06-13] (IObit)
Task: {7693D8E7-3D09-4F57-BE34-6F4DAE57EA5A} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-09-05] (Microsoft Corporation)
Task: {7C4A2ED5-D24D-43C7-A3C3-676F112C0115} - System32\Tasks\SuperbGameBoost => C:\Program Files (x86)\SuperBoost\Superb Game Boost\SuperbGameBoostMain.exe [2016-05-12] (SuperBoost Software)
Task: {800F8592-4C73-4F5D-B58A-1FA57795138B} - System32\Tasks\ASC9_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-05-06] ()
Task: {85780E1B-3A9D-403C-9475-33C5CA5EAB63} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2016-10-20] (Microsoft Corporation)
Task: {892EA4CD-F6CE-490F-BF7B-F600752BDE7D} - System32\Tasks\SmartDefrag_AutoDefrag => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {8C899C75-527C-4772-9535-785FDD766EB6} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2016-05-18] (IObit)
Task: {926F205F-9240-4D3A-9AF2-1C70EA671453} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23] (Google Inc.)
Task: {AA1073C1-522F-4A64-918B-41F397A99A16} - System32\Tasks\{9BF52694-D68A-434D-B54A-1CFA5506DBE6} => pcalua.exe -a C:\Users\Lucas\AppData\Local\Temp\Temp1_Power4Gear_Hybrid_Win7_32_Win7_64_z1140.zip\Setup.exe <==== ATTENTION
Task: {AFFC5AD3-5578-4478-BCFD-496621DDF4C6} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [2016-06-01] (IObit)
Task: {C5357FBD-B2AC-48BB-B85A-919CAED0ED2E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-09-05] (Microsoft Corporation)
Task: {E73D0B17-BBF5-404E-BF5F-03F1D6E6BB28} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-06-25] (Adobe Systems Incorporated)
Task: {F13E70B8-3419-4085-BFFA-CE8586186DDB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-04-23] (Google Inc.)
Task: {FE6C4C01-4425-4FD1-B7E3-2C206DCD1B91} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2016-06-13] (IObit)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\ASC9_SkipUac_Lucas.job => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Lucas.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Fair AdBlocker App (by STANDS).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=dcnofaichneijfbkdkghmhjjbepjmble
ShortcutWithArgument: C:\Users\Lucas\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Modules chargés (Avec liste blanche) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 ____N () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-17 22:22 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-07-17 22:22 - 2016-07-01 06:48 - 02656408 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-22 19:33 - 2016-05-22 19:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-05-09 09:22 - 2016-05-09 09:22 - 00052912 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2015-12-25 05:32 - 2015-12-25 05:32 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-17 22:23 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-07-17 22:31 - 2016-07-01 05:27 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-17 22:31 - 2016-07-01 05:21 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-17 22:31 - 2016-07-01 05:22 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-17 22:31 - 2016-07-01 05:24 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-06-04 10:57 - 2016-06-04 10:59 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-06-04 10:57 - 2016-06-04 10:59 - 13105152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-04 10:57 - 2016-06-04 10:59 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-04 09:26 - 2016-03-04 09:28 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.526.11220.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-07-17 22:32 - 2016-07-01 05:47 - 00064512 _____ () C:\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\Microsoft.CloudExperienceHost.dll
2016-04-30 17:14 - 2016-04-30 17:15 - 10256384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2016-07-20 08:09 - 2016-07-20 08:51 - 03893952 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6965.41051.0_x64__8wekyb3d8bbwe\gfxim.dll
2016-10-13 00:13 - 2016-10-12 07:56 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libglesv2.dll
2016-10-13 00:13 - 2016-10-12 07:56 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.59\libegl.dll
2016-07-11 09:32 - 2016-03-31 17:57 - 00625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2016-07-11 14:31 - 2016-01-11 17:03 - 00899872 _____ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll
2016-07-11 14:31 - 2016-01-11 17:02 - 00630048 _____ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll
2016-07-11 09:51 - 2016-03-28 16:46 - 00130880 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\Temperature.dll
2016-07-11 09:51 - 2016-02-02 09:53 - 00629056 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\SgbStatistics.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 00829760 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_IG.dll
2016-07-11 09:51 - 2016-01-29 18:03 - 00337216 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\taskMgr.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 00510272 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\GA_ID.dll
2016-07-11 09:51 - 2016-01-29 15:21 - 00276800 _____ () C:\Program Files (x86)\SuperBoost\Superb Game Boost\D3DX8Wrapper.dll
2016-07-11 09:51 - 2016-05-10 14:08 - 01214272 _____ () c:\program files (x86)\superboost\superb game boost\GA_CheackDx.dll
2016-10-20 12:42 - 2015-12-23 18:32 - 00190240 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2016-10-20 12:42 - 2015-12-23 18:32 - 00057632 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2015-12-11 19:18 - 2015-12-11 19:18 - 00437216 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.4\ipm_service.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 15:15 - 2016-04-19 15:16 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\webcompanion.com -> hxxp://webcompanion.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\100sexlinks.com -> 100sexlinks.com
Il y a 4788 plus de sites.
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2016-01-11 19:33 - 2016-05-21 11:46 - 00001561 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 thislineskipsanyemptylines
127.0.0.1 mirillis.com
127.0.0.1 www.mirillis.com
127.0.0.1 serwer2.paka-service.com
127.0.0.1 ns386119.ovh.net
127.0.0.1 mirillis.pl
127.0.0.1 www.ovh.com
127.0.0.1 176.31.241.10
127.0.0.1 91.121.143.139
127.0.0.1 thislineskipsanyemptylines
127.0.0.1 www.mirillis.com
127.0.0.1 s0ft4pc.com
127.0.0.1 serwer2.paka-service.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 union.baidu2019.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucas\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{a871f4d9-012c-4081-8903-ef542a9f3866}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
MSCONFIG\startupreg: Akamai NetSession Interface =>
MSCONFIG\startupreg: CCleaner Monitoring => "c:\program files\ccleaner\ccleaner64.exe" /monitor
MSCONFIG\startupreg: OneDrive => "c:\users\lucas\appdata\local\microsoft\onedrive\onedrive.exe" /background
MSCONFIG\startupreg: Skype => "c:\program files (x86)\skype\phone\skype.exe" /minimized /regrun
MSCONFIG\startupreg: Sony PC Companion =>
MSCONFIG\startupreg: Steam => "d:\games\steam\steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "c:\program files (x86)\common files\java\java update\jusched.exe"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM tray"
HKLM\...\StartupApproved\Run32: => "RazerGameBooster"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\StartupFolder: => "ShareX.lnk"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "kpm.exe"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "ManyCam"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Advanced SystemCare 9"
HKU\S-1-5-21-1486672552-2532302080-2866283257-1001\...\StartupApproved\Run: => "Sony PC Companion"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{A5277C82-1EE3-46D9-A2A0-EABDA2D5EE2A}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{75E6FFB0-B73F-426C-ADB2-77115D74E41F}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{7607016A-0CB8-4D42-9869-D641E9DBA144}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{139DDF03-0978-4C40-BB63-48C654F700B3}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{2D9BB0C4-058C-4233-B2A1-7D74E0008BAB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{77FC2594-48A0-410F-87F6-3AC71506CFC4}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{CE4FEC23-82FE-4850-ADC4-B899DC437B10}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{93984818-F7D4-4175-91E3-AD68A375E12E}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{743CDA36-99D1-4953-9523-2B825B0D74C0}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe
FirewallRules: [{25FD9435-7629-4CFE-A1AA-D8EE9FCE29C2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{F7CC7266-BDA6-4181-A9F1-F960C77F58CC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{C5AA02B4-2E0B-467F-9487-5EB123AC6D2C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{3B9445A0-679C-416A-A472-0CBCF15F754A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{FF201A0E-23A6-4DD1-A86E-74902211AAF3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{41D1FC98-0CA5-4407-9D4D-12AE2DA36E4E}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{BF11AF1E-D85D-4BFB-AF71-D770928F92B5}] => (Allow) D:\Games\Steam\Steam.exe
FirewallRules: [{97C2F07F-AD0B-4D00-9CDE-FE0679184CA4}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{83C3689B-B076-4358-999C-0CB20ACCBCDB}] => (Allow) D:\Games\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{65CC7AE9-96D9-4B21-92CA-A040AE5B27AA}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{63091675-CC92-4824-B446-4784F678083B}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1\LaunchPad.exe
FirewallRules: [{4E8BE794-86F3-47D5-916B-3866E4C937D2}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{3721657B-04A5-4D85-95C7-76981572080F}] => (Allow) D:\Games\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe
FirewallRules: [{3BD0D69D-6275-4B59-BFD5-8B3F738D4A5E}] => (Allow) D:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{58057528-92C3-4F67-8A4E-EE95A6FBD862}] => (Allow) D:\Games\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [TCP Query User{C61E88FD-F932-4ACD-AE2D-9FFA517ED3EE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{23B39E9E-EC02-4430-8672-42D471B64F83}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{26B177DC-BFF5-4979-914F-11CEB0F0D46F}] => (Allow) D:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{741FCF02-5B9E-417A-AC81-5DD219003171}] => (Allow) D:\Games\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{B69234E7-D093-4EFE-A9D9-B10B140180EB}D:\games\steam\steamapps\common\garrysmod\hl2.exe] => (Allow) D:\games\steam\steamapps\common\garrysmod\hl2.exe
FirewallRules: [UDP Query User{27F93E84-F21F-4B90-9974-5AA1446AF00E}D:\games\steam\steamapps\common\garrysmod\hl2.exe] => (Allow) D:\games\steam\steamapps\common\garrysmod\hl2.exe
FirewallRules: [TCP Query User{42AC136E-33E3-491F-8CF0-0F8C3E31578F}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{ACAF185A-4281-4B8E-8359-8B66DE74224F}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [TCP Query User{8F0297A8-30FD-4214-AA96-86A0F00FAA47}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Block) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [UDP Query User{6E0EFF8C-8286-4995-A528-D85E80F807F1}C:\program files (x86)\microsoft office\root\office16\lync.exe] => (Block) C:\program files (x86)\microsoft office\root\office16\lync.exe
FirewallRules: [{70B3F31D-5303-4754-9ED6-C84CB328A6EC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{BBAB61C7-288E-4BD1-853D-A2B3C93F5252}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{D7E1BA42-C6C4-4175-BE71-EE56D376F7CF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{80644EB1-D047-4703-8DC2-DDD89A0DA145}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{2216BD37-01D2-48B5-8B0C-1624BD8ED4BE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{0E31888A-4E1D-4357-A9CF-5118DBDDE6A1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{4686860D-B455-4709-8CB5-4FAE3D889C13}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{6A33D312-6358-4796-9582-9B313B7AEA49}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{EB87B80E-2475-452B-98F9-6F91C673AE6B}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{9CE6637E-2742-4F55-BF9C-D6B0B687563D}] => (Allow) D:\Games\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{CC94C1C0-2459-46DF-B3EA-168767610E86}] => (Allow) D:\Games\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{270C4EC4-7E17-44C3-8B8F-23FBA4BB8C8D}] => (Allow) D:\Games\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B564C438-3BA2-4ABA-85A9-067C518EA188}] => (Allow) D:\Games\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{D5014E66-A373-4030-BF6F-54F3823E2EAC}] => (Allow) D:\Games\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{9EB31FCC-95F3-414E-BCA3-63BD9A0C07F0}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{ACFCCD7E-5F53-4D9B-8345-5F9408C80E59}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{C2622FC9-6869-47C7-9DCB-361EEE929C14}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{AA4BAD6F-A08A-4047-AD29-E2C46F765312}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{269933A4-5FFC-4C96-883B-3B8C2D140D10}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{1E9D8AF3-0CFC-47F8-B9C2-2C444BE6C41D}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{334EE1CF-7AE2-49A1-8E84-9AD72FD29D3C}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{14DEE15C-860C-433E-B9C5-C9170D556C4A}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A6B85251-70A5-401D-81F1-5F6024C78C77}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{37223287-1193-4C19-97C1-1F8F4BC890AD}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{5E838BEF-866E-4866-980A-BD146935597F}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{0CDE37CD-6089-454F-BFAD-B41309558395}] => (Allow) D:\Games\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{AC5D17C9-B7FE-4454-85F1-3F3493B2E638}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4BE355D8-CDF6-4978-8618-0485B355711F}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{21431F0D-A756-42A0-A2DF-3231F6AA55E6}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{9B9A0228-3924-4B58-8991-2569A864F0D3}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{A9932DEB-5F83-46CE-95D2-555E242FBF0A}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{28AEAB8B-A2CD-412F-B10C-E5455FD9A56A}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{C2EBC75B-D6CA-43C2-A661-D91C01DE4B03}] => (Allow) C:\Users\Lucas\AppData\Roaming\BitTorrent\BitTorrent.exe
==================== Points de restauration =========================
13-10-2016 00:40:59 Driver Booster : Adobe Flash Player NPAPI
13-10-2016 20:23:49 Programme d’installation pour les modules Windows
15-10-2016 18:23:27 Installed TI Connect™ CE
15-10-2016 19:41:25 JRT Pre-Junkware Removal
20-10-2016 00:30:57 JRT Pre-Junkware Removal
20-10-2016 11:13:49 Removed ASUS Power4Gear Hybrid
20-10-2016 13:37:43 Microsoft Software Repair Tool
20-10-2016 14:21:20 Opération de restauration
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/21/2016 02:57:30 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/21/2016 12:37:30 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Le volume ASUS (C:) n’a pas été optimisé, car une erreur s’est produite : Paramètre incorrect. (0x80070057)
Error: (10/20/2016 09:54:01 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 09:44:20 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 08:34:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Le service Services de chiffrement n’a pas réussi à initialiser la base de données du catalogue. L’erreur ESENT était : -550.
Error: (10/20/2016 07:11:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Adobe CEF Helper.exe, version : 3.7.0.271, horodatage : 0x57515883
Nom du module défaillant : libcef.dll, version : 3.2171.2069.0, horodatage : 0x551bdc44
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00444106
ID du processus défaillant : 0x1858
Heure de début de l’application défaillante : 0x01d22ae9968a3ad9
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
ID de rapport : 28ec8529-f7f9-4513-8f35-0f3b9e46b541
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (10/20/2016 06:17:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ASUSTEKCOMPUTER)
Description: Échec de l’activation de l’application Microsoft.WindowsStore_8wekyb3d8bbwe!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (10/20/2016 06:14:35 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Error: (10/20/2016 05:55:45 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_ea85e725b9ba5a4b.manifest.
Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10586.494_none_a2d8b04ea53e3145.manifest.
Error: (10/20/2016 05:53:31 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.
Erreurs système:
=============
Error: (10/20/2016 10:32:34 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2016 09:56:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service AdvancedSystemCareService9 n’a pas pu démarrer en raison de l’erreur :
Cette version de AdvancedSystemCareService9 n’est pas compatible avec la version de Windows actuellement exécutée. Vérifiez dans les informations système de votre ordinateur, puis contactez l’éditeur de logiciel.
Error: (10/20/2016 09:56:08 PM) (Source: volmgr) (EventID: 46) (User: )
Description: L'initialisation du fichier de vidage sur incident a échoué.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Accès aux données utilisateur_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Stockage des données utilisateur_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Données de contacts_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Hôte de synchronisation_2d646 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service.
Error: (10/20/2016 09:55:30 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2016 09:54:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Lucas\AppData\Local\Temp\catchme.sys
Error: (10/20/2016 09:54:35 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Lucas\AppData\Local\Temp\catchme.sys
CodeIntegrity:
===================================
Date: 2016-10-20 21:54:35.983
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.962
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.688
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:54:35.652
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:51:27.220
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 8.0.4\kldw.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.309
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.289
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.045
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:20.025
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2016-10-20 21:50:19.194
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Lucas\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Pourcentage de mémoire utilisée: 42%
Mémoire physique - RAM - totale: 3981.73 MB
Mémoire physique - RAM - disponible: 2276.86 MB
Mémoire virtuelle totale: 5837.73 MB
Mémoire virtuelle disponible: 3779.1 MB
==================== Lecteurs ================================
Drive c: (ASUS) (Fixed) (Total:185.86 GB) (Free:69.48 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:258.35 GB) (Free:95.68 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 4FBCD7BE)
Partition: GPT.
==================== Fin de Addition.txt ============================