Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 12.02.2018
Exécuté par Gaëtan (16-02-2018 03:50:53)
Exécuté depuis C:\Users\Gaëtan\Desktop
Windows 8.1 (Update) (X64) (2016-06-20 20:09:16)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4132065101-1206133292-3696237546-500 - Administrator - Disabled) => C:\Users\Administrator
Gaëtan (S-1-5-21-4132065101-1206133292-3696237546-1002 - Administrator - Enabled) => C:\Users\Gaëtan
HomeGroupUser$ (S-1-5-21-4132065101-1206133292-3696237546-1004 - Limited - Enabled)
Invité (S-1-5-21-4132065101-1206133292-3696237546-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 16.03 (x64) (HKLM\...\7-Zip) (Version: 16.03 - Igor Pavlov)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.90 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.1.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.4.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.5.14 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MX530 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX530_series) (Version: 1.01 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Utilitaire de numérotation rapide 2 (HKLM-x32\...\Speed Dial Utility2) (Version: 2.0.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Discord (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\Discord) (Version: 0.0.300 - Discord Inc.)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo)
Enregistrement utilisateur de Canon MX530 series (HKLM-x32\...\Enregistrement utilisateur de Canon MX530 series) (Version: - Canon Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.8 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.167 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Guide de l’utilisateur (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.77 - Riot Games, Inc.)
Hola™ 1.81.356 - Better Internet (HKLM\...\Hola) (Version: 1.81.356 - Hola Networks Ltd.) <==== ATTENTION
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.20.1447 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\{E80C09B5-A296-47E9-BD4B-BCCF2FDCA13E}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7850 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.201 - Lenovo)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.1.2.4000 - Maxthon International Limited)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.9001.2138 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 2.13.0.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Mobipocket Reader 6.0 (HKLM-x32\...\{ED386A62-2BA2-4544-A723-5DFFDC283F6A}) (Version: 6.0.580 - Mobipocket.com)
Mozilla Firefox 57.0.4 (x64 fr) (HKLM\...\Mozilla Firefox 57.0.4 (x64 fr)) (Version: 57.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.4.6577 - Mozilla)
Nitro Pro 8 (HKLM\...\{543296CF-C0A4-4407-8CED-1E6F6535CAA3}) (Version: 8.5.7.1 - Nitro)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment)
Package de pilotes Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Package de pilotes Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7030 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Slowin' Killer (HKLM-x32\...\Slowin Killer) (Version: 2.1.3 - Security-HelpZone)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.12 - Synaptics Incorporated)
Twitch (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-4132065101-1206133292-3696237546-1002_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Gaëtan\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => Pas de fichier
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\8.0\NPShellExtension64.dll [2013-08-17] (Nitro PDF)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {026D7945-DEB3-434D-8F2B-6EF94DD52574} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-16] (Google Inc.)
Task: {08B13A7B-D7CF-4E6A-9A53-4251BD66B724} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner64.exe [2017-09-20] (Piriform Ltd)
Task: {1ED5D12F-0029-4C22-ADCF-AFB2D83E8949} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {2A777944-96FE-4117-9DCD-846546501352} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {2B3E1670-AEC2-449C-9E50-C28C591F1820} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
Task: {2DC0FFA9-6DF1-4813-9E31-745B50B13ED6} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {4BC255E9-581D-44D8-972D-C8B80D11E8F0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {6124EF65-ED4D-4E55-BF13-D2C046B19B54} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {66310B25-62FF-4A97-8D38-5CA79DA0903D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {754761F3-169F-4AD7-80FA-16591300B29B} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2013-08-01] (Maxthon International ltd.)
Task: {767C9D9A-8749-4828-A31D-6CCE180F7B96} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06] (Adobe Systems Incorporated)
Task: {82CB360D-EE75-412A-98C7-A6F9E4B19B32} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-02-06] (Microsoft Corporation)
Task: {87942093-1F62-4948-B681-1404A38CDEE4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {8CE8CC74-A734-4223-9D2C-F6DB4A2E814A} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [2013-10-25] ()
Task: {971BBAFF-5179-413C-9302-FA9C39FBB823} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-17] (Synaptics Incorporated)
Task: {A26B09F5-1B0F-4975-A2B4-E13873DB6A0A} - System32\Tasks\SweetLabs App Platform => C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2018-01-18] (Pokki)
Task: {B4C1653D-F6D7-479E-BCDB-E116128D16B7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {C198D3EB-7B97-46DA-B2B6-852225F7F063} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {C68D8D12-6D35-4394-BFCC-D8403B619BD4} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {CAF6103F-0AFB-492C-9756-C624013C577D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-16] (Google Inc.)
Task: {E484EB30-70A5-4A53-B9F9-7978B8C2B59D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {FA68200E-80A8-4BAA-A221-2AF6D9B1D2EB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-11-17 01:28 - 2016-11-17 01:28 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-04 20:13 - 2013-09-04 20:13 - 000049368 _____ () C:\Program Files\Lenovo\Bluetooth Software\btwleapi.dll
2016-06-28 21:00 - 2013-06-28 14:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-10-16 11:23 - 2016-12-13 00:35 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-16 11:23 - 2016-12-13 00:36 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2014-02-25 22:44 - 2012-04-24 11:43 - 000390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-02-25 22:12 - 2016-12-29 14:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-02-25 22:48 - 2014-02-25 22:48 - 000068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-02-25 22:48 - 2014-02-25 22:48 - 000669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-02-25 22:30 - 2013-10-25 10:23 - 000053248 _____ () C:\WINDOWS\SysWOW64\UMonit64.exe
2018-02-16 01:41 - 2018-02-16 01:41 - 001434208 _____ () C:\Program Files\Hola\app\lum_sdk64_clr.dll
2018-02-14 02:45 - 2018-02-13 05:25 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.167\libglesv2.dll
2018-02-14 02:45 - 2018-02-13 05:25 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.167\libegl.dll
2014-02-25 22:21 - 2013-08-08 13:25 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 044752080 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\libPokki.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 001413856 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 000164064 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 000235744 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Windows:nlsPreferences [386]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\hola.org -> hxxp://hola.org
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Gaëtan\Desktop\Chase Your Legend_1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "hola"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "Wechat"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "Steam"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{CBEA64FE-B65D-44C0-B231-64E94CE67324}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{A28A1590-9D06-4740-8A64-8B68D9AB3B57}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{0F8EB7B5-1AE6-42A1-BE74-969E49AE7B1B}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{F125A5B6-E0C0-43A2-9F3F-42648CED697F}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{8F76C1E0-E3D5-4897-A987-3C65DD69DFFD}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{50F1BBB9-4D3F-4C01-94DC-86890A195DC3}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{F00B4EBF-A50B-4BDE-9D8A-B55D24D30769}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{51F0A635-C851-494A-837B-250BDEC4BD89}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{580C3A70-B229-4134-B2DB-1A713D0B45F9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{C8BA3F3F-067C-4693-BE4C-26E9EA688A57}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{F1E28999-F341-4738-8629-E014C35BEB36}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{2A8C2173-53DA-446C-AF66-C0E9E7EB6C0C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAD0F7B6-7C5A-47CF-B371-9CB1532AE070}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8CE18610-51BA-4418-9EFD-94875FC1EDF4}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [TCP Query User{139970E1-C44A-4439-838A-1A4D9C765818}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{B20D9072-D913-4171-BAD0-A4295D5C4036}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{5638958B-5CEC-41D9-A9AA-4005E842722C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{29977874-1214-4709-9F2D-E6B8FD2696C8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{84AB21AA-DAA4-4014-A154-68A8B0FD2BC6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{001152DD-1F1C-4CEA-BAEB-4D37499B7BC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F489FC07-38EC-4586-8523-599FBF03DAD5}] => (Allow) C:\Users\Gaëtan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AC8174A2-E234-4AF2-B5BE-541A8D7ACA2E}] => (Allow) C:\Users\Gaëtan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{32489B58-6374-4269-B457-E7D42D168468}C:\users\gaëtan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gaëtan\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7B6F0A7E-4D78-48C5-84E3-A75CEB68AB21}C:\users\gaëtan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gaëtan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{189083D2-3914-4F9C-8BBD-2B3B2656288D}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe
FirewallRules: [UDP Query User{8C0A7097-0C55-4D5D-B979-10B29FD1D710}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe
FirewallRules: [{9F7515BD-265E-4AA8-85F3-0CBAD9E95ACE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{19D39B21-986D-461B-8605-10C04DBA7CA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E98D919B-B76D-409F-901D-9C474E257C30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6D64DCA0-99FE-4293-8572-508B9AA83D35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{AC53C391-FCB8-4E35-8C09-9F03683104C5}C:\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [UDP Query User{7977EEA4-7B05-4E74-B02E-F1BEB5E89259}C:\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [TCP Query User{EDD08252-54BD-4AA5-86AF-ED1E71FC4056}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9FB61870-DEE7-4CC0-A4B3-57C89DD03B94}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{EECBF760-7D7F-4003-9C90-8C05E4F2E32C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{D29C21A4-EC77-45C2-9ACB-851F75F866B3}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{66F08BFD-D330-4101-81EA-43A6A124D05A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2E1E12CD-F611-4FF3-8F01-CB0F181377C7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{55F27051-AC56-4D59-B0B2-383FE3DB1172}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A2D397A4-231B-482A-B99B-4763A612C52C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0CA2F7C7-B11A-4ED3-A0A1-F799545894E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RESIDENT EVIL 7 biohazard\re7.exe
FirewallRules: [{74C944E0-C7AD-4848-AA5D-2136E9EC81F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RESIDENT EVIL 7 biohazard\re7.exe
FirewallRules: [TCP Query User{DFDFEB16-B8A7-4446-9743-0DB38786D3CB}C:\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [UDP Query User{8AF981A2-C2E9-4CF9-B361-40C1B05CE03E}C:\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [TCP Query User{16EE7E09-923A-4210-93CB-33CD4E288C98}C:\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [UDP Query User{A7331851-0516-47E4-B70E-D996F06EB3DE}C:\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [TCP Query User{64030DD9-9F3C-4111-BF6F-3A285963A07A}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5FE706CB-5256-4306-BA1F-04C59D5A0656}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{05516B38-7242-494B-81BC-9B8582794D3E}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3F99BF46-E655-4311-97A0-66FB2677E691}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1056CCC0-CC91-474B-9BC7-E8E204CA086E}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{86E189E1-7A55-481F-AD05-50A6CCE9E6FA}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{BBE55CD1-44A6-4F48-9402-37F17E42FC0C}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E576882B-0915-4D3A-AD0F-912BC55FFB40}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{5DAD1380-05DB-43D0-B896-903741A73931}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{19A76406-276E-4221-B258-3C07BB03F5C5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{BF603DE3-4B5B-4A4F-86C5-2BC029E28161}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{99C9CB00-A6E9-4434-AE54-DF1037A6D192}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D4CD3058-B51B-4CA7-A014-BC1770A9DA96}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{723814AD-652E-44BC-93A3-4BEBB1800F79}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [{A2A09BE1-2308-4192-A73B-AF74C7501767}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{A1B70815-3E6E-4B72-B7F4-4F311B48391E}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{3C25B979-D220-4086-8A24-56F6CC1F413C}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
FirewallRules: [{881417EF-A5AE-49D5-886F-2B165F731310}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
FirewallRules: [TCP Query User{92330EE4-E68D-433F-B85C-9103FB98E706}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CA1BB40E-FC62-47B9-BBFB-D379BF386FB8}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [{D601CAEB-690F-4F55-99F3-C19904BDA54B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{76B91890-57E1-4C9D-8EA8-31CB75BB83D7}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{72994E5A-BA3D-4FA2-AD9E-A1F046985DA3}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{16F622D7-EBA3-49FF-A807-FC4502FA8B76}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{83AC8BA1-F026-496A-B6AB-34A472A91356}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [{F4F54D85-9DCF-4DD7-85BB-1F267EBCB4BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
30-01-2018 15:18:25 Point de contrôle planifié
10-02-2018 00:25:53 Windows Update
13-02-2018 23:13:00 Removed Skype™ 7.40
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Audio Bluetooth
Description: Audio Bluetooth
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Broadcom
Service: btwaudio
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3890
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3890
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2625
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2625
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/15/2018 07:36:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1297
Error: (02/15/2018 07:36:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1297
Erreurs système:
=============
Error: (02/16/2018 01:55:55 AM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Error: (02/16/2018 01:55:55 AM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Error: (02/13/2018 09:48:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel(R) Management and Security Application Local Management Service est en attente de démarrage.
Error: (02/13/2018 09:41:00 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0x0000000080000002, 0xffffd0014459a8a8, 0xffffd0014459a0b0). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 021318-38218-01.
Error: (02/13/2018 09:40:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 02:17:40 le 13/02/2018 n’était pas prévu.
Error: (02/13/2018 09:40:15 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT)
Description: 32212254731146288
Error: (02/10/2018 03:06:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Centre de sécurité est en attente de démarrage.
Error: (02/10/2018 03:04:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel(R) Management and Security Application Local Management Service est en attente de démarrage.
Windows Defender:
===================================
Date: 2018-01-24 13:46:35.613
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {528AECDB-5BA1-4BA9-8E8A-142E0EC21599}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-19 10:40:31.497
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {842E216B-A200-4526-8455-F75E9C8140F6}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-17 15:07:18.847
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {779034C9-86AD-4128-8908-BA2EE763F675}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-17 03:46:27.949
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {625248E7-601C-4FA2-A62E-0DCEBECE3663}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-09 13:36:58.691
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {4D566188-B53B-4023-BD3F-9D28AF713E71}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2017-10-07 15:53:46.344
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x80004005
Description de l’erreur : Erreur non spécifiée
Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes.
CodeIntegrity:
===================================
Date: 2018-02-16 03:50:37.038
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-02-16 03:50:36.057
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-02-15 03:27:06.939
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 02:56:55.406
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 02:33:38.478
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 01:52:54.751
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-13 23:47:06.786
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-13 23:00:56.406
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 31%
Mémoire physique - RAM - totale: 8138.27 MB
Mémoire physique - RAM - disponible: 5564.88 MB
Mémoire virtuelle totale: 16330.27 MB
Mémoire virtuelle disponible: 13625.96 MB
==================== Lecteurs ================================
Drive c: (Windows8_OS) (Fixed) (Total:891.32 GB) (Free:363.65 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:3.59 GB) NTFS
\\?\Volume{8d46bc77-3e73-4e64-bd67-9409fb4a4969}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.63 GB) NTFS
\\?\Volume{92809ed4-48ea-4c5f-bda6-65b7a9fa5cdd}\ (PBR_DRV) (Fixed) (Total:12.86 GB) (Free:4.25 GB) NTFS
==================== MBR & Table des partitions ==================
==================== Fin de Addition.txt ============================
Exécuté par Gaëtan (16-02-2018 03:50:53)
Exécuté depuis C:\Users\Gaëtan\Desktop
Windows 8.1 (Update) (X64) (2016-06-20 20:09:16)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-4132065101-1206133292-3696237546-500 - Administrator - Disabled) => C:\Users\Administrator
Gaëtan (S-1-5-21-4132065101-1206133292-3696237546-1002 - Administrator - Enabled) => C:\Users\Gaëtan
HomeGroupUser$ (S-1-5-21-4132065101-1206133292-3696237546-1004 - Limited - Enabled)
Invité (S-1-5-21-4132065101-1206133292-3696237546-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 16.03 (x64) (HKLM\...\7-Zip) (Version: 16.03 - Igor Pavlov)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.90 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.1.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.4.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.5.14 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.2.0 - Canon Inc.)
Canon MX530 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX530_series) (Version: 1.01 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Utilitaire de numérotation rapide 2 (HKLM-x32\...\Speed Dial Utility2) (Version: 2.0.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.35 - Piriform)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
Discord (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\Discord) (Version: 0.0.300 - Discord Inc.)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo)
Enregistrement utilisateur de Canon MX530 series (HKLM-x32\...\Enregistrement utilisateur de Canon MX530 series) (Version: - Canon Inc.)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.8 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.167 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Guide de l’utilisateur (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.77 - Riot Games, Inc.)
Hola™ 1.81.356 - Better Internet (HKLM\...\Hola) (Version: 1.81.356 - Hola Networks Ltd.) <==== ATTENTION
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{0EC7F9CC-4741-45AE-9F55-6E9343F726F5}) (Version: 1.1.0.36960 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.20.1447 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
League of Legends (HKLM-x32\...\{E80C09B5-A296-47E9-BD4B-BCCF2FDCA13E}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7850 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.201 - Lenovo)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.1.2.4000 - Maxthon International Limited)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.9001.2138 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 2.13.0.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.13.0.21 - NVIDIA Corporation) Hidden
Mobipocket Reader 6.0 (HKLM-x32\...\{ED386A62-2BA2-4544-A723-5DFFDC283F6A}) (Version: 6.0.580 - Mobipocket.com)
Mozilla Firefox 57.0.4 (x64 fr) (HKLM\...\Mozilla Firefox 57.0.4 (x64 fr)) (Version: 57.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.4.6577 - Mozilla)
Nitro Pro 8 (HKLM\...\{543296CF-C0A4-4407-8CED-1E6F6535CAA3}) (Version: 8.5.7.1 - Nitro)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.54 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Onekey Theater (HKLM-x32\...\{91CC5BAE-A098-40D3-A43B-C0DC7CE263FE}) (Version: 3.0.1.2 - Lenovo)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwatch Test (HKLM-x32\...\Overwatch Test) (Version: - Blizzard Entertainment)
Package de pilotes Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Package de pilotes Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7030 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Slowin' Killer (HKLM-x32\...\Slowin Killer) (Version: 2.1.3 - Security-HelpZone)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.12 - Synaptics Incorporated)
Twitch (HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-4132065101-1206133292-3696237546-1002_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Gaëtan\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64\FileCoAuthLib64.dll => Pas de fichier
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\8.0\NPShellExtension64.dll [2013-08-17] (Nitro PDF)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Users\Gaëtan\Desktop\7-Zip\7-zip.dll [2016-09-28] (Igor Pavlov)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {026D7945-DEB3-434D-8F2B-6EF94DD52574} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-16] (Google Inc.)
Task: {08B13A7B-D7CF-4E6A-9A53-4251BD66B724} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner64.exe [2017-09-20] (Piriform Ltd)
Task: {1ED5D12F-0029-4C22-ADCF-AFB2D83E8949} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {2A777944-96FE-4117-9DCD-846546501352} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {2B3E1670-AEC2-449C-9E50-C28C591F1820} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
Task: {2DC0FFA9-6DF1-4813-9E31-745B50B13ED6} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2013-03-07] (Intel Corporation)
Task: {4BC255E9-581D-44D8-972D-C8B80D11E8F0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {6124EF65-ED4D-4E55-BF13-D2C046B19B54} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {66310B25-62FF-4A97-8D38-5CA79DA0903D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {754761F3-169F-4AD7-80FA-16591300B29B} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\mxup.exe [2013-08-01] (Maxthon International ltd.)
Task: {767C9D9A-8749-4828-A31D-6CCE180F7B96} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06] (Adobe Systems Incorporated)
Task: {82CB360D-EE75-412A-98C7-A6F9E4B19B32} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-02-06] (Microsoft Corporation)
Task: {87942093-1F62-4948-B681-1404A38CDEE4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-12-13] (NVIDIA Corporation)
Task: {8CE8CC74-A734-4223-9D2C-F6DB4A2E814A} - System32\Tasks\UMonitor Task => C:\WINDOWS\SysWOW64\UMonit64.exe [2013-10-25] ()
Task: {971BBAFF-5179-413C-9302-FA9C39FBB823} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-09-17] (Synaptics Incorporated)
Task: {A26B09F5-1B0F-4975-A2B4-E13873DB6A0A} - System32\Tasks\SweetLabs App Platform => C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2018-01-18] (Pokki)
Task: {B4C1653D-F6D7-479E-BCDB-E116128D16B7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-12-13] (NVIDIA Corporation)
Task: {C198D3EB-7B97-46DA-B2B6-852225F7F063} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-12-13] (NVIDIA Corporation)
Task: {C68D8D12-6D35-4394-BFCC-D8403B619BD4} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {CAF6103F-0AFB-492C-9756-C624013C577D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-16] (Google Inc.)
Task: {E484EB30-70A5-4A53-B9F9-7978B8C2B59D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-12-13] (NVIDIA Corporation)
Task: {FA68200E-80A8-4BAA-A221-2AF6D9B1D2EB} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-11-17 01:28 - 2016-11-17 01:28 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-04 20:13 - 2013-09-04 20:13 - 000049368 _____ () C:\Program Files\Lenovo\Bluetooth Software\btwleapi.dll
2016-06-28 21:00 - 2013-06-28 14:28 - 000084616 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-10-16 11:23 - 2016-12-13 00:35 - 001147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-10-16 11:23 - 2016-12-13 00:36 - 004489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2014-02-25 22:44 - 2012-04-24 11:43 - 000390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-02-25 22:12 - 2016-12-29 14:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-02-25 22:48 - 2014-02-25 22:48 - 000068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-02-25 22:48 - 2014-02-25 22:48 - 000669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-02-25 22:30 - 2013-10-25 10:23 - 000053248 _____ () C:\WINDOWS\SysWOW64\UMonit64.exe
2018-02-16 01:41 - 2018-02-16 01:41 - 001434208 _____ () C:\Program Files\Hola\app\lum_sdk64_clr.dll
2018-02-14 02:45 - 2018-02-13 05:25 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.167\libglesv2.dll
2018-02-14 02:45 - 2018-02-13 05:25 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.167\libegl.dll
2014-02-25 22:21 - 2013-08-08 13:25 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 044752080 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\libPokki.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 001413856 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 000164064 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll
2018-01-18 19:08 - 2018-01-18 19:08 - 000235744 _____ () C:\Users\Gaëtan\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Windows:nlsPreferences [386]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\hola.org -> hxxp://hola.org
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Gaëtan\Desktop\Chase Your Legend_1920x1080.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "hola"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "Wechat"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-4132065101-1206133292-3696237546-1002\...\StartupApproved\Run: => "Steam"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{CBEA64FE-B65D-44C0-B231-64E94CE67324}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{A28A1590-9D06-4740-8A64-8B68D9AB3B57}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{0F8EB7B5-1AE6-42A1-BE74-969E49AE7B1B}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{F125A5B6-E0C0-43A2-9F3F-42648CED697F}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{8F76C1E0-E3D5-4897-A987-3C65DD69DFFD}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{50F1BBB9-4D3F-4C01-94DC-86890A195DC3}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{F00B4EBF-A50B-4BDE-9D8A-B55D24D30769}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{51F0A635-C851-494A-837B-250BDEC4BD89}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{580C3A70-B229-4134-B2DB-1A713D0B45F9}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{C8BA3F3F-067C-4693-BE4C-26E9EA688A57}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{F1E28999-F341-4738-8629-E014C35BEB36}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{2A8C2173-53DA-446C-AF66-C0E9E7EB6C0C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAD0F7B6-7C5A-47CF-B371-9CB1532AE070}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8CE18610-51BA-4418-9EFD-94875FC1EDF4}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [TCP Query User{139970E1-C44A-4439-838A-1A4D9C765818}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{B20D9072-D913-4171-BAD0-A4295D5C4036}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{5638958B-5CEC-41D9-A9AA-4005E842722C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{29977874-1214-4709-9F2D-E6B8FD2696C8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{84AB21AA-DAA4-4014-A154-68A8B0FD2BC6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{001152DD-1F1C-4CEA-BAEB-4D37499B7BC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F489FC07-38EC-4586-8523-599FBF03DAD5}] => (Allow) C:\Users\Gaëtan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{AC8174A2-E234-4AF2-B5BE-541A8D7ACA2E}] => (Allow) C:\Users\Gaëtan\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{32489B58-6374-4269-B457-E7D42D168468}C:\users\gaëtan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gaëtan\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{7B6F0A7E-4D78-48C5-84E3-A75CEB68AB21}C:\users\gaëtan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gaëtan\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{189083D2-3914-4F9C-8BBD-2B3B2656288D}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe
FirewallRules: [UDP Query User{8C0A7097-0C55-4D5D-B979-10B29FD1D710}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe
FirewallRules: [{9F7515BD-265E-4AA8-85F3-0CBAD9E95ACE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{19D39B21-986D-461B-8605-10C04DBA7CA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{E98D919B-B76D-409F-901D-9C474E257C30}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6D64DCA0-99FE-4293-8572-508B9AA83D35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{AC53C391-FCB8-4E35-8C09-9F03683104C5}C:\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [UDP Query User{7977EEA4-7B05-4E74-B02E-F1BEB5E89259}C:\battle.net\battle.net.8098\battle.net.exe] => (Allow) C:\battle.net\battle.net.8098\battle.net.exe
FirewallRules: [TCP Query User{EDD08252-54BD-4AA5-86AF-ED1E71FC4056}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{9FB61870-DEE7-4CC0-A4B3-57C89DD03B94}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{EECBF760-7D7F-4003-9C90-8C05E4F2E32C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{D29C21A4-EC77-45C2-9ACB-851F75F866B3}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{66F08BFD-D330-4101-81EA-43A6A124D05A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{2E1E12CD-F611-4FF3-8F01-CB0F181377C7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{55F27051-AC56-4D59-B0B2-383FE3DB1172}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A2D397A4-231B-482A-B99B-4763A612C52C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0CA2F7C7-B11A-4ED3-A0A1-F799545894E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RESIDENT EVIL 7 biohazard\re7.exe
FirewallRules: [{74C944E0-C7AD-4848-AA5D-2136E9EC81F3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RESIDENT EVIL 7 biohazard\re7.exe
FirewallRules: [TCP Query User{DFDFEB16-B8A7-4446-9743-0DB38786D3CB}C:\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [UDP Query User{8AF981A2-C2E9-4CF9-B361-40C1B05CE03E}C:\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [TCP Query User{16EE7E09-923A-4210-93CB-33CD4E288C98}C:\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [UDP Query User{A7331851-0516-47E4-B70E-D996F06EB3DE}C:\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [TCP Query User{64030DD9-9F3C-4111-BF6F-3A285963A07A}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5FE706CB-5256-4306-BA1F-04C59D5A0656}C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{05516B38-7242-494B-81BC-9B8582794D3E}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3F99BF46-E655-4311-97A0-66FB2677E691}C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1056CCC0-CC91-474B-9BC7-E8E204CA086E}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{86E189E1-7A55-481F-AD05-50A6CCE9E6FA}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{BBE55CD1-44A6-4F48-9402-37F17E42FC0C}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E576882B-0915-4D3A-AD0F-912BC55FFB40}C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{5DAD1380-05DB-43D0-B896-903741A73931}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{19A76406-276E-4221-B258-3C07BB03F5C5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{BF603DE3-4B5B-4A4F-86C5-2BC029E28161}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{99C9CB00-A6E9-4434-AE54-DF1037A6D192}C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D4CD3058-B51B-4CA7-A014-BC1770A9DA96}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{723814AD-652E-44BC-93A3-4BEBB1800F79}C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe] => (Block) C:\program files (x86)\heroes of the storm\versions\base54339\heroesofthestorm_x64.exe
FirewallRules: [{A2A09BE1-2308-4192-A73B-AF74C7501767}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{A1B70815-3E6E-4B72-B7F4-4F311B48391E}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe
FirewallRules: [{3C25B979-D220-4086-8A24-56F6CC1F413C}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
FirewallRules: [{881417EF-A5AE-49D5-886F-2B165F731310}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
FirewallRules: [TCP Query User{92330EE4-E68D-433F-B85C-9103FB98E706}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{CA1BB40E-FC62-47B9-BBFB-D379BF386FB8}C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61361\heroesofthestorm_x64.exe
FirewallRules: [{D601CAEB-690F-4F55-99F3-C19904BDA54B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{76B91890-57E1-4C9D-8EA8-31CB75BB83D7}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{72994E5A-BA3D-4FA2-AD9E-A1F046985DA3}C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base61952\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{16F622D7-EBA3-49FF-A807-FC4502FA8B76}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{83AC8BA1-F026-496A-B6AB-34A472A91356}C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base62119\heroesofthestorm_x64.exe
FirewallRules: [{F4F54D85-9DCF-4DD7-85BB-1F267EBCB4BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
30-01-2018 15:18:25 Point de contrôle planifié
10-02-2018 00:25:53 Windows Update
13-02-2018 23:13:00 Removed Skype™ 7.40
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Audio Bluetooth
Description: Audio Bluetooth
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Broadcom
Service: btwaudio
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3890
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3890
Error: (02/15/2018 07:36:04 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2625
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2625
Error: (02/15/2018 07:36:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/15/2018 07:36:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1297
Error: (02/15/2018 07:36:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1297
Erreurs système:
=============
Error: (02/16/2018 01:55:55 AM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Error: (02/16/2018 01:55:55 AM) (Source: nvlddmkm) (EventID: 13) (User: )
Description: Event-ID 13
Error: (02/13/2018 09:48:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel(R) Management and Security Application Local Management Service est en attente de démarrage.
Error: (02/13/2018 09:41:00 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0x0000000080000002, 0xffffd0014459a8a8, 0xffffd0014459a0b0). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 021318-38218-01.
Error: (02/13/2018 09:40:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 02:17:40 le 13/02/2018 n’était pas prévu.
Error: (02/13/2018 09:40:15 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT)
Description: 32212254731146288
Error: (02/10/2018 03:06:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Centre de sécurité est en attente de démarrage.
Error: (02/10/2018 03:04:50 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel(R) Management and Security Application Local Management Service est en attente de démarrage.
Windows Defender:
===================================
Date: 2018-01-24 13:46:35.613
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {528AECDB-5BA1-4BA9-8E8A-142E0EC21599}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-19 10:40:31.497
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {842E216B-A200-4526-8455-F75E9C8140F6}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-17 15:07:18.847
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {779034C9-86AD-4128-8908-BA2EE763F675}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-17 03:46:27.949
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {625248E7-601C-4FA2-A62E-0DCEBECE3663}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2018-01-09 13:36:58.691
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {4D566188-B53B-4023-BD3F-9D28AF713E71}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2017-10-07 15:53:46.344
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x80004005
Description de l’erreur : Erreur non spécifiée
Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes.
CodeIntegrity:
===================================
Date: 2018-02-16 03:50:37.038
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-02-16 03:50:36.057
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-02-15 03:27:06.939
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 02:56:55.406
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 02:33:38.478
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-15 01:52:54.751
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-13 23:47:06.786
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
Date: 2018-02-13 23:00:56.406
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 31%
Mémoire physique - RAM - totale: 8138.27 MB
Mémoire physique - RAM - disponible: 5564.88 MB
Mémoire virtuelle totale: 16330.27 MB
Mémoire virtuelle disponible: 13625.96 MB
==================== Lecteurs ================================
Drive c: (Windows8_OS) (Fixed) (Total:891.32 GB) (Free:363.65 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:3.59 GB) NTFS
\\?\Volume{8d46bc77-3e73-4e64-bd67-9409fb4a4969}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.63 GB) NTFS
\\?\Volume{92809ed4-48ea-4c5f-bda6-65b7a9fa5cdd}\ (PBR_DRV) (Fixed) (Total:12.86 GB) (Free:4.25 GB) NTFS
==================== MBR & Table des partitions ==================
==================== Fin de Addition.txt ============================