Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Exécuté par Pravda (30-10-2018 19:15:40)
Exécuté depuis C:\Users\etienne\Desktop
Windows 10 Pro Version 1803 17134.345 (X64) (2018-10-01 18:13:34)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3066938547-3638948911-1430489309-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3066938547-3638948911-1430489309-503 - Limited - Disabled)
Invité (S-1-5-21-3066938547-3638948911-1430489309-501 - Limited - Disabled)
Pravda (S-1-5-21-3066938547-3638948911-1430489309-1001 - Administrator - Enabled) => C:\Users\etienne
WDAGUtilityAccount (S-1-5-21-3066938547-3638948911-1430489309-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Advanced SystemCare 12 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 12.0.3 - IObit)
Apple Application Support (32 bits) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{77F8C879-88CD-4145-945A-541C35285285}) (Version: 12.0.0.1039 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Borderlands 2_is1) (Version: 1.8.3 - 2K Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Command & Conquer Generals (HKLM-x32\...\{06F80017-8F98-4C94-B868-52358569FC32}) (Version: 0.50.0000 - Electronic Arts) Hidden
Command & Conquer Generals (HKLM-x32\...\InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}) (Version: 0.50.0000 - Electronic Arts)
Command and ConquerTM Generals Zero Hour (HKLM-x32\...\{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}) (Version: 1.00.0000 - Electronic Arts) Hidden
Command and ConquerTM Generals Zero Hour (HKLM-x32\...\InstallShield_{F3E9C243-122E-4D6B-ACC1-E1FEC02F6CA1}) (Version: 1.00.0000 - Electronic Arts)
Command & Conquer™ Alerte Rouge 3 (HKLM-x32\...\{296d8550-cb06-48e4-9a8b-e5034fb64715}) (Version: 1.12.0.0 - Electronic Arts)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0650 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.34 - NVIDIA Corporation) Hidden
Driver Booster 6 (HKLM-x32\...\Driver Booster_is1) (Version: 6.0.2 - IObit)
Epic Games Launcher (HKLM-x32\...\{A98163A6-4350-4195-AB3B-8A5BA4B6C7D8}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Far Cry 5 Gold Edition Repack version 1.0 (HKLM-x32\...\{AC9FF3E5-991E-43DD-B426-77829857FB9C}}_is1) (Version: 1.0 - Ali213.net)
ForHonor (HKLM-x32\...\Uplay Install 569) (Version: - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.77 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.)
iTunes (HKLM\...\{07A7CE9A-1131-4B53-BB1D-5B7F35970DF7}) (Version: 12.9.0.167 - Apple Inc.)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Microsoft OneDrive (HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\OneDriveSetup.exe) (Version: 18.172.0826.0010 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}) (Version: 9.12.0213 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.34 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Pilote graphique 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.34 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.29.14153 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 416.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.34 - NVIDIA Corporation) Hidden
Resanance (HKLM\...\{07BB6181-E1D0-4283-87D0-BE4819535A3C}) (Version: 2.1.3 - WasntAFairFight)
SpyHunter 5 (HKLM-x32\...\SpyHunter5) (Version: 5.0.30.51 - EnigmaSoft Limited)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{133A2E34-3E09-4A1A-A9AA-F9D8E5417199}) (Version: 2.50.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 71.0 - Ubisoft)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
webiums modpack 1.2.0.1 v02 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 02 - myWOTmods.com)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2018-07-06] (IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2018-07-06] (IObit)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-19] (Disc Soft Ltd)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2018-07-06] (IObit)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-11] (NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {00F70E02-97B5-4D14-8A01-9F94E4B3E966} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {182A98B2-36D4-4E20-8E5B-ED553B5A1CC7} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {2470D028-CD2C-4F2F-B068-B07F1191FD44} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2018-10-10] (IObit)
Task: {27D5E3E4-B77B-41DF-AC34-A6A48FF868F9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {37D9BAC8-25FD-4158-A44D-195CDE17A056} - System32\Tasks\Driver Booster Scheduler => F:\Driver Booster\6.0.2\Scheduler.exe [2018-09-20] (IObit)
Task: {3A0BDC5E-3AF9-4E85-9EDA-5D71F3A9A930} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {41A0D7D5-86F5-4FA3-9062-BE1D856EC351} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-09-12] (NVIDIA Corporation)
Task: {421BB09B-7CD9-474E-B926-5AAA8BD4E284} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {524D0D92-33F1-4515-8198-904D5967F690} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-09-29] (Google Inc.)
Task: {58BE8356-159A-4433-A0E4-2AA33C44623C} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {5BD36BC8-5A6B-4751-A0D0-CC5350316197} - System32\Tasks\Driver Booster SkipUAC (etienne) => F:\Driver Booster\6.0.2\DriverBooster.exe [2018-09-25] (IObit)
Task: {62151421-1B2C-4BEC-84D2-2385F91FCDB4} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {664C1642-2E7C-47BC-8E82-06E44CB41BB3} - System32\Tasks\ASC12_SkipUac_Pravda => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [2018-10-16] (IObit)
Task: {6E59FFA8-2A8F-4CE8-B485-DD31E02E615E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-09-29] (Google Inc.)
Task: {7ED89F38-3399-4E02-B4EF-2B8D0BC7E18B} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-09-12] (NVIDIA Corporation)
Task: {86B57E75-8CED-4915-ADAB-E70FE058E119} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-09-12] (NVIDIA Corporation)
Task: {98ECBE79-6DCF-4CDE-BC3E-4BCA1ED3F974} - System32\Tasks\Driver Booster SkipUAC (Pravda) => F:\Driver Booster\6.0.2\DriverBooster.exe [2018-09-25] (IObit)
Task: {A0B832C6-40D0-47FF-9778-C6506324A02A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {ABE612EC-F35F-42EE-BAB7-3A10F1CD8BE9} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {AFFC185D-15A2-453D-BD37-B7B3F7E7B09D} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {B07F942A-E458-467B-BC23-19DEF449A5C2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-10-23] (Piriform Ltd)
Task: {B920790B-149B-4169-95FE-65EC7719D53E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {BA97170B-6F67-450E-BAD2-A61AEB5C1229} - System32\Tasks\IaELnXDBckRRO2 => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\pniCiAphNVbDXHVB\ktcxDTb.wsf"
Task: {BEC02FFB-1370-4791-9353-40984F2995D8} - \Microsoft\Windows\Google\GoogleUpdateTaskMachineUP -> Pas de fichier <==== ATTENTION
Task: {BED8DD33-B0F1-4BC9-A6DD-92429D326DAB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {C1E9E9BB-734B-4C85-8C0F-4E48CA4C41DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1810.5-0\MpCmdRun.exe [2018-10-23] (Microsoft Corporation)
Task: {C5518051-D7C3-4416-9590-2D234A0CEF07} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-10-23] (Piriform Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\etienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\etienne\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic
==================== Modules chargés (Avec liste blanche) ==============
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-08-22 21:18 - 2018-08-22 21:18 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2018-08-22 21:18 - 2018-08-22 21:18 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-08-31 17:08 - 2013-07-03 19:32 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2018-08-31 17:08 - 2018-09-12 12:45 - 001315024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-10-09 19:49 - 2018-09-20 04:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 010978304 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 002810368 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\skypert.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-10-23 09:32 - 2018-10-23 09:33 - 000183808 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.33.41.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-08-31 17:08 - 2018-09-12 12:45 - 101252304 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-08-31 17:08 - 2018-09-12 12:45 - 004619984 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-08-31 17:08 - 2018-09-12 12:45 - 000108752 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2018-10-27 17:52 - 2018-10-27 17:52 - 035118592 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-10-27 17:52 - 2018-10-27 17:52 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-10-27 17:52 - 2018-10-27 17:52 - 005987328 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-09-29 12:08 - 2018-09-29 12:08 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-27 17:52 - 2018-10-27 17:52 - 009064448 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.13811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-10-25 23:26 - 2018-10-23 22:24 - 005020504 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libglesv2.dll
2018-10-25 23:26 - 2018-10-23 22:24 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\70.0.3538.77\libegl.dll
2018-08-31 17:03 - 2018-08-31 17:03 - 098275328 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2018-08-31 17:03 - 2018-08-31 17:03 - 003922432 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2018-08-31 17:03 - 2018-08-31 17:03 - 000092672 _____ () C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2018-10-24 19:40 - 2018-10-24 19:40 - 003083264 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\DotNetCommon\79e4494cc44180535e95b0aac9640d89\DotNetCommon.ni.dll
2018-10-30 03:53 - 2018-10-30 03:53 - 003859456 _____ () C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_1.16.1012.0_x64__8wekyb3d8bbwe\GameBar.exe
2018-09-29 12:14 - 2018-09-29 12:16 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-29 12:14 - 2018-09-29 12:16 - 069128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 014171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 002866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-09-29 12:14 - 2018-09-29 12:16 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-09 19:41 - 2018-10-09 19:41 - 031308288 _____ () C:\Users\etienne\AppData\Local\Google\Chrome\User Data\PepperFlash\31.0.0.122\pepflashplayer.dll
2018-08-31 17:08 - 2018-10-30 16:40 - 000038544 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2018-08-31 17:08 - 2013-07-03 19:32 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2018-10-29 16:37 - 2018-10-29 16:37 - 001940480 _____ () C:\WINDOWS\tiuqshbzpxepffrdf.tiu
2018-08-31 17:08 - 2018-09-12 12:45 - 001032912 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-10-17 13:01 - 2017-10-16 09:14 - 000442144 _____ () F:\Driver Booster\6.0.2\madExcept_.bpl
2018-10-17 13:01 - 2017-10-16 09:14 - 000210720 _____ () F:\Driver Booster\6.0.2\madBasic_.bpl
2018-10-17 13:01 - 2017-10-16 09:14 - 000059680 _____ () F:\Driver Booster\6.0.2\madDisAsm_.bpl
2018-10-17 13:01 - 2018-07-18 14:39 - 000899872 _____ () F:\Driver Booster\6.0.2\webres.dll
2018-10-17 13:01 - 2016-08-01 09:48 - 000524064 _____ () F:\Driver Booster\6.0.2\sqlite3.dll
2018-09-29 11:55 - 2018-04-30 22:01 - 001891672 _____ () C:\Users\etienne\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
2018-09-29 11:55 - 2018-04-30 22:01 - 001937752 _____ () C:\Users\etienne\AppData\Local\Discord\app-0.0.301\libglesv2.dll
2018-09-29 11:55 - 2018-04-30 22:01 - 000095576 _____ () C:\Users\etienne\AppData\Local\Discord\app-0.0.301\libegl.dll
2018-09-29 11:55 - 2018-09-29 11:55 - 011321176 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
2018-09-29 11:55 - 2018-09-29 11:55 - 001615704 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
2018-09-29 11:55 - 2018-09-29 11:55 - 001910104 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
2018-09-29 11:55 - 2018-09-29 11:55 - 000422744 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
2018-09-29 11:55 - 2018-09-29 11:55 - 000145240 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-09-29 11:55 - 2018-09-29 11:55 - 000512856 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
2018-09-29 11:55 - 2018-10-17 12:54 - 001629016 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
2018-10-01 14:58 - 2018-10-10 12:09 - 009621848 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_cloudsync\discord_cloudsync.node
2018-09-29 11:55 - 2018-10-17 12:54 - 001705816 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node
2018-09-29 11:55 - 2018-09-29 11:55 - 002722648 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
2018-09-29 11:56 - 2018-10-23 09:29 - 001253720 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_modules\discord_modules.node
2018-09-29 11:56 - 2018-10-27 17:39 - 025001816 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_dispatch\discord_dispatch.node
2018-09-29 11:56 - 2018-09-29 11:56 - 002760536 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_contact_import\discord_contact_import.node
2018-09-29 11:56 - 2018-09-29 11:56 - 001249112 _____ () \\?\C:\Users\etienne\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 22:03 - 2018-10-30 00:52 - 000001292 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\etienne\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Oxy"
HKLM\...\StartupApproved\Run: => "Cession"
HKLM\...\StartupApproved\Run: => "Toccata"
HKLM\...\StartupApproved\Run32: => "Elevated"
HKLM\...\StartupApproved\Run32: => "Grunting"
HKLM\...\StartupApproved\Run32: => "Hammerlock"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "S6PRH8ATGWKRMFP"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "GRS5DZO1LFX81L6"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "babylonian"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "HY8H7BHKDRML73U"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "K9WRLX23A4H80OX"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "J0XV3HMT9T3ARX1"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "vibrance"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Porches"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Enforcement"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Heike"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Waning"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "JC18JU2JM1FF8VC"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "Spilman"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "UW508ORS90KAGOE"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "XEO0FTJ3ADTABHQ"
HKU\S-1-5-21-3066938547-3638948911-1430489309-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{CA408177-78DC-4239-A682-666302BAA8CD}] => (Allow) F:\iTunes\iTunes.exe
FirewallRules: [{A70F18EB-3E10-4CCF-A279-683A7B0231E7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2F7D2EE6-0EB6-4FF5-9D61-05843045F114}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D60BC7DF-0CA2-46D8-863A-4A1D4D54B9F7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{925CBBC0-82EB-43B0-A0B8-5CC43AF7731A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AA3F17CA-12DB-450C-A5EB-3406E1102C90}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [UDP Query User{45E71EC6-9681-4285-8EF7-8832ADBE79C8}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{309BD8E5-D7C4-4242-98D9-54D242C022E7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{5A897501-4EE4-4CF6-B564-05067D6A1038}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{25BA9FB4-C5CF-43B1-B8CF-030119ABEF9C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{72B0518A-0123-4962-841B-069EC755F1F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B403A822-BB8A-4A0B-A168-D316963C404D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{84D1394E-65B0-4CFA-B741-9C118B0BEA2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E3F0F333-3C7E-4C74-A41B-7829F74250A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{A1392CD0-DF53-418D-B0D4-F77F56A7BEBD}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{57768497-E8D6-46FB-8864-DBE24FEE6E80}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{313DA05E-C3AB-45C6-86EE-9C1FF39B5B90}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{ADCF7BC0-4B90-45F3-9116-F293D6A93BBE}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{B527B14B-1DF3-4F98-B8CA-FF8854B445DA}D:\overwatch\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch\overwatch.exe
FirewallRules: [UDP Query User{A4918FF3-83CE-4273-8AFB-0B5E91FD8699}D:\overwatch\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch\overwatch.exe
FirewallRules: [{D6337CEB-8538-4221-9146-28858554AF13}] => (Allow) F:\Driver Booster\6.0.2\DriverBooster.exe
FirewallRules: [{292CE19F-C746-4816-98B7-2F96B4DBEF39}] => (Allow) F:\Driver Booster\6.0.2\DriverBooster.exe
FirewallRules: [{02FFD7F0-178D-4E89-80D7-48F1B79CE248}] => (Allow) F:\Driver Booster\6.0.2\DBDownloader.exe
FirewallRules: [{B01D23EE-4EA1-4F73-BCD0-FBBFBDD10F83}] => (Allow) F:\Driver Booster\6.0.2\DBDownloader.exe
FirewallRules: [{D4054025-AE7E-4C3C-9174-E4B8E8991F28}] => (Allow) F:\Driver Booster\6.0.2\AutoUpdate.exe
FirewallRules: [{9994F649-AE44-4AF3-991C-616931559235}] => (Allow) F:\Driver Booster\6.0.2\AutoUpdate.exe
FirewallRules: [{AA37C389-7AFE-446A-8836-1564E7108BEE}] => (Allow) F:\Program Files (x86)\Origin Games\Red Alert 3\RA3.exe
FirewallRules: [{B5A4C6DC-61DE-41EA-B280-BE42AB2B8735}] => (Allow) F:\Program Files (x86)\Origin Games\Red Alert 3\RA3.exe
FirewallRules: [TCP Query User{9CD688BA-2DC2-4305-AD02-15D0C762BAC9}D:\world_of_tanks\wotlauncher.exe] => (Allow) D:\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{5B12C435-E505-4DE8-87F4-A58746431187}D:\world_of_tanks\wotlauncher.exe] => (Allow) D:\world_of_tanks\wotlauncher.exe
FirewallRules: [{69F4017F-13D0-4978-924E-B82F698267C6}] => (Allow) C:\Users\etienne\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{29264D7B-FC4E-4049-B635-C57A6FBC36EB}] => (Allow) C:\Users\etienne\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [TCP Query User{C5129DD1-08F8-4D62-B395-6B66FC92B75F}D:\world_of_tanks\worldoftanks.exe] => (Allow) D:\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{CE567F15-F445-42D6-AB7E-63D559FD7174}D:\world_of_tanks\worldoftanks.exe] => (Allow) D:\world_of_tanks\worldoftanks.exe
FirewallRules: [{AA566E6B-3604-42EC-882E-DB624E6EA7EC}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{080BD85B-4797-4A3B-AE4F-46531D44360A}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{8349372E-DCB4-46EE-B67C-CAE7F78C44CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{7CE6BDE5-9298-47C4-95F4-8ED83D457765}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{DA9935C1-0391-48C2-98E5-F94F4BE3D24A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{5E43B42D-B59C-4064-8C49-6967F24FCF82}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{29551EAF-C4B9-4ECC-B224-1C30381FC0CC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{E91BAC18-60A6-46AE-A12A-FEE4F4C654D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{4959E300-9549-4424-A470-0456F7417296}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{4CAE46B6-4D08-49BF-BA91-20DE094A324B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.92.390.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [TCP Query User{E434385B-431F-4F79-8F58-F52280040154}D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [UDP Query User{292609C0-98FB-4777-9FBC-DB1C8FAF9982}D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [{4F398D81-79A3-4031-96A9-350CE92A19AE}] => (Block) D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [{9C138020-FF48-45D0-9F0C-6C11D27A0EE3}] => (Block) D:\league of legends\rads\projects\league_client\releases\0.0.0.169\deploy\leagueclient.exe
FirewallRules: [{87CE94DC-D8B6-48E2-8B47-959E0EC65AD3}] => (Allow) D:\League of Legends\LeagueClient.exe
FirewallRules: [{AB66CE2E-BACF-4DC5-8867-C5F72FCE2A66}] => (Allow) D:\League of Legends\LeagueClient.exe
FirewallRules: [{3918300A-8D51-4336-A25A-6D8AFFA67E58}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [TCP Query User{78EEA96D-06D8-4FCB-A68C-02ABD7E07E78}D:\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe
FirewallRules: [UDP Query User{17FA7C4C-C9C1-4FD5-9E17-EC562FF954A3}D:\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe] => (Allow) D:\league of legends\rads\projects\league_client\releases\0.0.0.170\deploy\leagueclient.exe
FirewallRules: [{34A0347A-FE82-4E6B-B571-B532966801CD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CE3785FC-4125-458A-B98B-9616DC5F2673}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{D48C92D1-C067-45AF-B7E3-E73670EEBB30}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
==================== Points de restauration =========================
30-10-2018 18:11:47 Driver Booster : D-Link DGE-528T Gigabit Ethernet Adapter
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/30/2018 06:25:43 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 06:23:42 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 04:38:04 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 04:08:48 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 04:08:48 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 04:04:55 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 04:04:54 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Error: (10/30/2018 03:49:29 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5VDGIQV)
Description: httphttp-2147467263
Erreurs système:
=============
Error: (10/30/2018 07:14:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:12:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:10:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:08:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:06:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:04:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:02:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (10/30/2018 07:00:58 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5VDGIQV)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Windows Defender:
===================================
Date: 2018-10-30 18:10:37.277
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {B081A819-280B-4E0F-A6EC-8D3FD935150E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-5VDGIQV\Pravda
Date: 2018-10-28 11:53:18.027
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Skeeyah.A!rfn&threatid=2147694182&enterprise=0
Nom : Trojan:Win32/Skeeyah.A!rfn
ID : 2147694182
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wabjdhct.lnk; file:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\wabjdhct\iicvvavc.exe; startup:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wabjdhct.lnk
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.279.682.0, AS: 1.279.682.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.15400.4, NIS: 0.0.0.0
Date: 2018-10-28 11:52:54.973
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Skeeyah.A!rfn&threatid=2147694182&enterprise=0
Nom : Trojan:Win32/Skeeyah.A!rfn
ID : 2147694182
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wabjdhct.lnk; file:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\wabjdhct\iicvvavc.exe; file:_C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 4026731009; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BF923EB8-EE66-41C1-A952-5FD1C837A8E0}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Opera scheduled Autoupdate 4026731009; startup:_C:\Users\etienne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wabjdhct.lnk; taskscheduler:_C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 4026731009
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.279.682.0, AS: 1.279.682.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.15400.4, NIS: 0.0.0.0
Date: 2018-10-28 09:52:32.201
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {D8FB272F-02A1-4179-8840-0293D14AB3D8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-5VDGIQV\Pravda
Date: 2018-10-26 03:54:52.204
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Fuerboos.C!cl&threatid=2147723654&enterprise=0
Nom : Trojan:Win32/Fuerboos.C!cl
ID : 2147723654
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\etienne\AppData\Local\cuttma.dll; process:_pid:12004,ProcessStart:131849916395316117; process:_pid:12020,ProcessStart:131849916395381778; regkey:_HKCU@S-1-5-21-3066938547-3638948911-1430489309-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\cuttma; runkey:_HKCU@S-1-5-21-3066938547-3638948911-1430489309-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\cuttma
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Windows\SysWOW64\rundll32.exe
Version de la signature : AV: 1.279.526.0, AS: 1.279.526.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.15400.4, NIS: 0.0.0.0
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 16325.85 MB
Mémoire physique - RAM - disponible: 12416.33 MB
Mémoire virtuelle totale: 18757.85 MB
Mémoire virtuelle disponible: 12964.76 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:223.02 GB) (Free:173.72 GB) NTFS
Drive d: (Jeux) (Fixed) (Total:930.97 GB) (Free:487.27 GB) NTFS
Drive f: (Appli) (Fixed) (Total:931.51 GB) (Free:773.33 GB) NTFS
\\?\Volume{49d172df-522b-452b-ac8c-42652df7e465}\ () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS
\\?\Volume{d276cc06-9906-4958-bd0a-48da53d35a45}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 07FDFFFB)
Partition: GPT.
========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: 55D27932)
Partition: GPT.
==================== Fin de Addition.txt ============================