Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:17-02-2016 Exécuté par derrien (2016-02-19 10:40:28) Exécuté depuis C:\Users\derrien\Desktop Windows 10 Home (X64) (2015-11-23 18:00:06) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-361793254-2370995334-3555378747-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-361793254-2370995334-3555378747-503 - Limited - Disabled) derrien (S-1-5-21-361793254-2370995334-3555378747-1001 - Administrator - Enabled) => C:\Users\derrien Invité (S-1-5-21-361793254-2370995334-3555378747-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: McAfee Anti-Virus et Anti-Spyware (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: McAfee Anti-Virus et Anti-Spyware (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: Pare-feu McAfee (Disabled) {959DA8E2-3527-57D1-4915-924367AD4FE9} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 4K Video Downloader 3.6 (HKLM-x32\...\4K Video Downloader_is1) (Version: 3.6.1.1770 - Open Media LLC) 7-Zip 15.14 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated) Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.4.144 - Adobe Systems, Inc.) AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games) AnySend (HKLM-x32\...\ASPackage) (Version: - CMI Limited) <==== ATTENTION Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software) Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 6.223.215.5 - Broadcom Corporation) Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.0.9130 - Broadcom Corporation) Build-a-lot (x32 Version: 2.2.0.98 - WildTangent) Hidden Building the Great Wall of China Collector's Edition (x32 Version: 3.0.2.48 - WildTangent) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden Crazy Chicken Soccer (x32 Version: 2.2.0.110 - WildTangent) Hidden CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.6.3728 - CyberLink Corp.) Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4.4824 - CyberLink Corp.) CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.6.3821 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.6.3604 - CyberLink Corp.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3.3709 - CyberLink Corp.) CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.3.3907 - CyberLink Corp.) DisableMSDefender (Version: 1.0.0 - Hewlett-Packard Company) Hidden Dropbox (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company) Evernote v. 5.2 (HKLM-x32\...\{412F6426-A3C7-11E3-8A71-00163E98E7D6}) (Version: 5.2.0.2951 - Evernote Corp.) Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden FR-Minecraft Launcher (HKLM-x32\...\{F22BAB48-ACCA-4F35-9644-4BE948DC534E}) (Version: 1.9.2 - FR-Minecraft) GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.192.0 - International GeoGebra Institute) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.109 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden Host App Service (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\SweetLabs_AP) (Version: 0.269.7.883 - Pokki) HP 3D DriveGuard (HKLM-x32\...\{F90A86C9-7779-47DD-AC06-8EE832C55F55}) (Version: 6.0.18.1 - Hewlett-Packard Company) HP CoolSense (HKLM-x32\...\{E2C8D0C2-1C97-4C05-939A-5B13A0FE655C}) (Version: 2.20.31 - Hewlett-Packard Company) HP Documentation (HKLM-x32\...\{082B1425-0F24-43FA-9B64-E8F617B0AD3B}) (Version: 1.1.0.0 - Hewlett-Packard) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.7493.4758 - Hewlett-Packard) HP SimplePass (HKLM-x32\...\InstallShield_{314FAD12-F785-4471-BCE8-AB506642B9A1}) (Version: 8.01.11 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{8C696B4B-6AB1-44BC-9416-96EAC474CABE}) (Version: 7.5.2.12 - Hewlett-Packard Company) HP System Event Utility (HKLM-x32\...\{DEF23826-DB71-4654-BC00-D5D6C20802EA}) (Version: 1.1.4 - Hewlett-Packard Company) HP Utility Center (HKLM\...\{36F80C5F-DC0D-4DF4-AF09-DC1867F0EB0A}) (Version: 2.4.4 - Hewlett-Packard Company) HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company) Inst5675 (Version: 8.01.11 - Softex Inc.) Hidden Inst5676 (Version: 8.01.11 - Softex Inc.) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Intel(R) Sideband Fabric Device Driver (HKLM-x32\...\C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9) (Version: 1.0.0.1002 - Intel Corporation) Intel(R) Smart Connect Technology (HKLM\...\{B5ADC77D-81D7-483D-9373-3D00A69E5854}) (Version: 4.2.41.2710 - Intel Corporation) Intel(R) Technology Access (HKLM-x32\...\{fb74531f-28c3-4dca-9849-e6b8faa85afe}) (Version: 1.5.0.1021 - Intel Corporation) Intel(R) Technology Access Software Asset Manager (x32 Version: 1.0.1562 - Intel Corporation) Hidden Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1064 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{B991A1BC-DE0F-41B3-9037-B2F948F706EC}) (Version: 3.1.1228 - Intel Corporation) Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation) Jeux WildTangent (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.410 - LogMeIn, Inc.) LogMeIn Hamachi (x32 Version: 2.2.0.410 - LogMeIn, Inc.) Hidden McAfee LiveSafe - Internet Security (HKLM-x32\...\MSC) (Version: - ) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mozilla Firefox 44.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 fr)) (Version: 44.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla) Mumble 1.2.9 (HKLM-x32\...\{A692D382-A743-4DB4-BF42-F5476BEBA43A}) (Version: 1.2.9 - Thorvald Natvig) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.8 - Notepad++ Team) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Plants vs. Zombies - Game of the Year (x32 Version: 3.0.2.51 - WildTangent) Hidden Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Ranch Rush 2 - Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.273.40 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.24.1218.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7231 - Realtek Semiconductor Corp.) ROBLOX Player for derrien (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation) ROBLOX Studio for derrien (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation) Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam) Selection Tools (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\Selection Tools) (Version: - WTools) <==== ATTENTION Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.) Slime Rancher (HKLM-x32\...\Steam App 433340) (Version: - Monomi Park) Start Menu (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\SweetLabs_Start_Menu) (Version: 0.269.7.883 - Pokki) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.95 - Synaptics Incorporated) Synthesia (HKLM-x32\...\Synthesia) (Version: 9 - Synthesia LLC) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Trinklit Supreme (x32 Version: 2.2.0.98 - WildTangent) Hidden Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden Vegas Pro 13.0 (64-bit) (HKLM\...\{384476AE-091D-11E4-A980-F04DA23A5C58}) (Version: 13.0.373 - Sony) Virtual Families (x32 Version: 2.2.0.98 - WildTangent) Hidden Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden WildTangent Games App pour HP (x32 Version: 4.0.11.2 - WildTangent) Hidden WindApp (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\WindApp) (Version: - Store) <==== ATTENTION WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) Wizard101(FR) (HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\Wizard101(FR)_is1) (Version: - Gameforge 4D GmbH) Youda Jewel Shop (x32 Version: 3.0.2.51 - WildTangent) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\derrien\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\derrien\AppData\Local\Roblox\Versions\version-a171864306c74d84\RobloxProxy64.dll (ROBLOX Corporation) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-361793254-2370995334-3555378747-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\derrien\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {04BF6019-8C5D-4775-BC56-BEBD7DCA873C} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {0F91EFDD-16A2-4F5C-BABE-3B04BB74F3CC} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-09-25] (Intel Corporation) Task: {1846E3B8-9100-491C-9BDC-E7439C0DAF74} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {1B2F2349-A0A5-4F84-9A2D-32AAD7F4B325} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-jimi.valentin@outlook.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {1B87BF52-12F5-4AA1-963A-84728A60F4E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company) Task: {2C683979-022A-4938-96A9-59A88AFC36F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {347C64D0-8679-4C5E-9341-9B50F513EC9B} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {3AE4394A-7D76-4D72-93FF-97E33E013D0D} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2014-03-07] (CyberLink Corp.) Task: {496B64B7-F996-4599-9282-45D8DD0968DC} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {4DCFB3AD-C4FE-4BFB-B312-C8AD1CB4FDCD} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-10] (Adobe Systems Incorporated) Task: {53EF8783-A336-4A2E-9084-376303FF7D40} - System32\Tasks\Selection Tools Update => C:\Users\derrien\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe [2016-01-04] (Nosibay) <==== ATTENTION Task: {54D0E61D-C614-4C62-BCFA-F24FED5C75F0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {58A950B3-AA25-4F21-A570-BF1FD92C5863} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-01-16] (Microsoft Corporation) Task: {58E9822F-81AB-48CD-8270-2BBFB6E9AB73} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {5F62FE07-C5A1-4203-A8EE-94A08EDFC803} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d-Logon => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-04-18] () Task: {5FC598F8-5711-4CDC-9B25-32DD6D4515D8} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {6C37B36A-B6E1-4C0F-AE14-8B5EC114EB13} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {7CD240DB-1968-4D74-9330-0C5CBA9D0ECF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {7E9F316B-01F4-467F-B0C1-4F4B41498888} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company) Task: {98DEA63C-C26A-4239-B5AB-F8FD84A1D219} - System32\Tasks\IntelTA-Upgrade-56460984-97c2-4bc7-a632-d776cf817f5d => C:\Program Files (x86)\Intel Corporation\Intel(R) Technology Access\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-04-18] () Task: {9D0E7AD3-1106-4CE5-BDC0-46F83D2C4DEB} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-361793254-2370995334-3555378747-1001Core => C:\Users\derrien\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.) Task: {A149148F-89DA-4F59-B9BE-331C4188D58C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {AACBCEAB-10E3-49FB-9B67-0B8FD5066A82} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {B0B62FBB-B1A6-48CC-AE18-E4AA81329E0C} - System32\Tasks\WindApp Update => C:\Users\derrien\AppData\Roaming\Store\WindApp\WindApp Update.exe [2015-03-20] (Nosibay) <==== ATTENTION Task: {B4C0B38A-907D-49D9-BD8C-F494D5CF8202} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-19] (AVAST Software) Task: {BCF54753-B34C-4E31-9C14-DCE8AA8234E8} - System32\Tasks\Hewlett-Packard\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2013-11-01] (Hewlett-Packard Development Company, L.P.) Task: {C69A9EDA-B7F9-4E0C-9162-2EAC7CFAA995} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2014-01-13] (Hewlett-Packard Company) Task: {CACAA890-91CD-4D40-A5D7-90A40EAF0FEC} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {DE9797A7-B374-4873-9896-6AC930AF66C5} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {E141507B-9ED4-4E9F-93E7-EAD68F6A2D2E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-12-18] (Hewlett-Packard) Task: {E26032E4-AB86-4617-86F8-ED8BCF79B3D7} - System32\Tasks\SweetLabs App Platform => C:\Users\derrien\AppData\Local\SweetLabs App Platform\Engine\ServiceHostAppUpdater.exe [2016-02-15] (Pokki) Task: {ECDABFB8-414D-45B6-9105-76F2F6BACE11} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-12-18] (Hewlett-Packard) Task: {F9484EFD-043A-4847-98AA-41535822E874} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {FCB0DE24-2190-4D8C-94D1-5E01A69D20D7} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {FF6B643C-805B-448B-BFF8-E4EF58A5C786} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-361793254-2370995334-3555378747-1001UA => C:\Users\derrien\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-19] (Dropbox, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-361793254-2370995334-3555378747-1001Core.job => C:\Users\derrien\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-361793254-2370995334-3555378747-1001UA.job => C:\Users\derrien\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\derrien\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursearching.com/?type=sc&ts=1455807617&z=4f5ab8ab2113c0416293f2fg3zcwewcb6efm7q5g0q&from=brd&uid=ST750LM022XHN-M750MBB_S31PJ9FF601862 ShortcutWithArgument: C:\Users\derrien\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursearching.com/?type=sc&ts=1455807617&z=4f5ab8ab2113c0416293f2fg3zcwewcb6efm7q5g0q&from=brd&uid=ST750LM022XHN-M750MBB_S31PJ9FF601862 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.yoursearching.com/?type=sc&ts=1455807617&z=4f5ab8ab2113c0416293f2fg3zcwewcb6efm7q5g0q&from=brd&uid=ST750LM022XHN-M750MBB_S31PJ9FF601862 ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursearching.com/?type=sc&ts=1455807617&z=4f5ab8ab2113c0416293f2fg3zcwewcb6efm7q5g0q&from=brd&uid=ST750LM022XHN-M750MBB_S31PJ9FF601862 ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.yoursearching.com/?type=sc&ts=1455807617&z=4f5ab8ab2113c0416293f2fg3zcwewcb6efm7q5g0q&from=brd&uid=ST750LM022XHN-M750MBB_S31PJ9FF601862 ==================== Modules chargés (Avec liste blanche) ============== 2015-10-30 08:18 - 2015-10-30 08:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2014-03-28 12:31 - 2014-03-28 12:31 - 02110464 _____ () C:\Program Files\Hewlett-Packard\SimplePass\autheng.dll 2014-03-28 12:27 - 2014-03-28 12:27 - 00021504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\cryptodll.dll 2014-03-28 12:27 - 2014-03-28 12:27 - 00035328 _____ () C:\Program Files\Hewlett-Packard\SimplePass\ssplogon.dll 2014-03-28 12:27 - 2014-03-28 12:27 - 00055296 _____ () C:\Program Files\Hewlett-Packard\SimplePass\RandomPass.dll 2014-03-28 12:48 - 2014-03-28 12:48 - 00367504 _____ () C:\Program Files\Hewlett-Packard\SimplePass\mstrpwd.dll 2014-03-28 12:48 - 2014-03-28 12:48 - 00712080 _____ () C:\Program Files\Hewlett-Packard\SimplePass\GraphicalPwd.dll 2015-07-29 12:48 - 2015-07-29 12:48 - 00088064 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\libglog.dll 2015-07-31 08:55 - 2015-07-31 08:55 - 01793280 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\cpprest120_1_4.dll 2015-07-31 08:55 - 2015-07-31 08:55 - 00354560 _____ () C:\Program Files\Intel Corporation\Intel(R) Technology Access\JsonCpp.dll 2015-12-03 17:49 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-01-22 14:08 - 2016-01-22 14:08 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2014-03-28 12:36 - 2014-03-28 12:36 - 00065024 _____ () C:\Program Files\Hewlett-Packard\SimplePass\opvapp.exe 2015-11-16 17:55 - 2015-11-16 17:55 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2015-12-03 17:49 - 2015-11-22 11:47 - 02653816 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2015-04-15 21:13 - 2015-04-15 21:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2015-12-17 19:25 - 2015-12-07 05:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2015-12-17 19:25 - 2015-12-07 05:00 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-02-12 08:42 - 2016-02-12 08:42 - 09789952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_2016.27.2.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll 2016-01-13 17:34 - 2016-01-05 02:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-01-13 17:34 - 2016-01-05 02:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-01-28 17:06 - 2016-01-16 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-01-28 17:06 - 2016-01-16 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-02-05 16:11 - 2016-02-05 16:11 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionApp.exe 2016-02-05 16:11 - 2016-02-05 16:11 - 05766656 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionApp.dll 2016-02-05 16:11 - 2016-02-05 16:11 - 00628736 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionAppDeviceManager.dll 2015-12-16 12:51 - 2015-12-16 12:51 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-02-19 08:19 - 2016-02-19 08:19 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2016-02-19 08:19 - 2016-02-19 08:19 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2016-02-18 20:42 - 2016-02-18 20:42 - 02835968 _____ () C:\Program Files\AVAST Software\Avast\defs\16021801\algo.dll 2016-02-19 08:19 - 2016-02-19 08:19 - 00480760 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2016-02-19 08:19 - 2016-02-19 08:19 - 00307808 _____ () C:\Program Files\AVAST Software\Avast\browser_pass.dll 2016-01-22 14:08 - 2016-01-22 14:08 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-01-22 14:08 - 2016-01-22 14:08 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-02-19 08:19 - 2016-02-19 08:19 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2016-01-13 19:27 - 2016-01-13 19:27 - 00569856 _____ () C:\Users\derrien\AppData\Local\SweetLabs App Platform\Engine\ppGoogleNaClPluginChrome.dll 2016-01-13 19:27 - 2016-01-13 19:27 - 01400846 _____ () C:\Users\derrien\AppData\Local\SweetLabs App Platform\Engine\avcodec-54.dll 2016-01-13 19:27 - 2016-01-13 19:27 - 00151054 _____ () C:\Users\derrien\AppData\Local\SweetLabs App Platform\Engine\avutil-51.dll 2016-01-13 19:27 - 2016-01-13 19:27 - 00222734 _____ () C:\Users\derrien\AppData\Local\SweetLabs App Platform\Engine\avformat-54.dll 2015-11-22 11:49 - 2015-12-15 06:54 - 00782336 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-11-22 11:49 - 2015-07-03 17:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-11-22 11:49 - 2016-02-04 22:02 - 02546768 _____ () C:\Program Files (x86)\Steam\video.dll 2015-11-22 11:49 - 2015-09-24 01:33 - 02549248 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-11-22 11:49 - 2015-09-24 01:33 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-11-22 11:49 - 2015-09-24 01:33 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-11-22 11:49 - 2015-09-24 01:33 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-11-22 11:49 - 2015-09-24 01:33 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-11-22 11:49 - 2015-07-03 17:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-11-22 11:49 - 2015-07-03 17:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-11-22 11:49 - 2016-02-04 22:01 - 00802896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-11-22 11:49 - 2015-12-30 02:51 - 00208896 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll 2015-11-22 11:49 - 2016-01-06 02:52 - 48387872 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2015-11-22 11:49 - 2015-09-25 00:56 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== EXE Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 14:25 - 2016-02-18 13:54 - 00000967 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-361793254-2370995334-3555378747-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Hewlett-Packard Backgrounds\backgroundDefault.jpg DNS Servers: 104.197.191.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-361793254-2370995334-3555378747-1001\...\StartupApproved\Run: => "Bubble Dock" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [UDP Query User{05A6E57B-5434-4FA4-BA25-11004C6FF2BD}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe FirewallRules: [TCP Query User{5FE8C9BA-611C-468A-BF38-22060475DC7F}C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\javaw.exe FirewallRules: [{1777BC58-16F5-491D-B46F-518960BAA9DE}] => (Allow) C:\Users\derrien\Desktop\Shiginima Launcher SE v1.406.exe FirewallRules: [{3B3795E4-131D-4E07-A564-FC141D222A03}] => (Allow) C:\Users\derrien\Desktop\Shiginima Launcher SE v1.406.exe FirewallRules: [{E336CA9A-AF7B-480F-B254-994C58534A7F}] => (Allow) C:\Users\derrien\Desktop\Shiginima Launcher SE v1.406.exe FirewallRules: [{A7FD57F3-F4E6-45B0-AF01-D064E129EED0}] => (Allow) C:\Users\derrien\Desktop\Shiginima Launcher SE v1.406.exe FirewallRules: [{ACFC03AC-A7B8-4A88-80A6-5D0D250CBB8E}] => (Allow) C:\ProgramData\Wizard101(FR)\Wizard101.exe FirewallRules: [{B8BA55D1-BF5F-401D-8E93-A037771C20F1}] => (Allow) C:\ProgramData\Wizard101(FR)\Wizard101.exe FirewallRules: [{E9A690E5-66B8-4A1A-9B45-51869580371B}] => (Allow) C:\ProgramData\Wizard101(FR)\Wizard101.exe FirewallRules: [{29581E21-8C84-48F5-8A7E-5EFA17659EA4}] => (Allow) C:\ProgramData\Wizard101(FR)\Wizard101.exe FirewallRules: [UDP Query User{71D93D39-AC20-4242-98BF-35A1065AC60D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{49CC327A-8E1C-40F0-B21A-DD0A7BDD9CD7}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{9328FA9C-D326-4A66-AC99-025B933180B1}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{14DFDFD7-D0C0-437F-850E-C24EEA35778E}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{0F16ED0B-B23F-4D63-8C0A-1BBF1F466D43}] => (Allow) C:\Users\derrien\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{C50C2C45-1011-4B1B-83EE-5AC3B29242B6}] => (Allow) C:\Users\derrien\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{8EEBD7D8-6A65-4228-8401-8BA3EB594829}] => (Allow) C:\Users\derrien\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{B3313DD6-5DC5-4C85-8127-348EA402A7A1}] => (Allow) C:\Users\derrien\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{DA271030-AB10-4353-8E74-7E5FA3BF0975}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{DD90F83F-63B3-41D1-855C-259844CC848B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2AD6E255-CB63-47CF-BE68-8CF37974ADAF}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{DDA7061F-B92C-48AE-BAA0-8CB78E68D54F}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [UDP Query User{28262E6E-F288-4149-8D73-DB25826FBA4C}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{3E42C948-2473-4F7C-8769-C88230DF407D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{EDD69915-CF48-4239-B938-19DF0A1EE6EE}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{EF606AEF-BC2C-4063-9A41-3E4A5F17F538}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [UDP Query User{E5BE7E01-3AA0-4E0C-A29C-F486E58D5022}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{DC9C30FC-5483-4684-9574-4C73F3310A15}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [{074B1FB6-106A-41A4-BACC-92C78122BD47}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{FA7D21F1-6FC5-48EE-A625-31B03912B62D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{CCCFE9AA-0DF9-44C7-901F-305966827362}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector10\PDR10.EXE FirewallRules: [{56516D84-B1DC-4A60-BC5A-CD86D479D661}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{335723D4-D198-4363-BB01-EDB1711C5231}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe FirewallRules: [{C553E6AE-4C18-45F4-AAE6-2BDF95CABE68}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe FirewallRules: [{092BEDB6-9C57-440A-9AED-5770017C5655}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe FirewallRules: [{C369E011-4AD6-469E-8ABB-05463A4B17C0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe FirewallRules: [{F5ADCE6D-F885-412E-A146-EEAC7BEBDB7A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe FirewallRules: [{C07E1736-6026-49F8-9B5D-DD5AAEEC3D81}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe FirewallRules: [{EA8C8886-161F-49C2-8DA4-E9A467A24BC5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe FirewallRules: [{5CFB1337-29AC-47A9-ADAA-14662ED28E25}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{CE0DDFD0-C782-40E9-8F45-B380A059C667}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{2102183E-D22B-4A4A-8C5E-022B0DD7EE1F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{59E6F53B-2D79-4594-858B-BC24C7EC6140}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{325FCB01-DC14-4290-AB89-931F83EF270E}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{84FF381B-62AA-4539-8827-E8528C14050E}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{D9E4BE5D-2E66-4A34-AFBC-D1BFF87B53AC}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{B3C0043E-B297-453F-BCFE-C8212745853E}] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{D078346A-9018-4950-BB8E-21ED454CE570}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{118C3A1D-244A-4E66-BFB9-F6CF1DDFA313}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{BB571D83-1307-47EF-8FD6-A5F462F4A7D3}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe FirewallRules: [UDP Query User{CDFFEC54-F8BE-4E50-AD97-FA770016D800}C:\program files (x86)\java\jre1.8.0_40\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_40\bin\java.exe FirewallRules: [{0F0582CC-7E49-4824-8A1E-140A5D1BD8D4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{13466D51-7C35-44B9-92CB-50353722FE0E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{0FDEF472-87CA-4BD6-9A79-568FAF193B2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe FirewallRules: [{7741BF43-7448-417F-A3A8-F464C183814F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe FirewallRules: [{18A1B2EB-39E5-4A07-9D4D-BAB223049328}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{F2CA4962-D17C-4EBB-B542-0E67EF0C3E39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{64B7C684-5222-4E1B-AFA0-AE24E3E06CE4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe FirewallRules: [{738D991E-B7CF-4C88-98C6-88D12D8231DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe FirewallRules: [{FE14DF77-126F-4DEE-A58A-9F8E9842C138}] => (Allow) C:\ProgramData\Boxore\7.1\node.exe FirewallRules: [{B16CAE05-F3CB-43F1-888D-EB5AE111083E}] => (Allow) C:\ProgramData\Boxore\7.1\node.exe ==================== Points de restauration ========================= 03-02-2016 13:10:03 Intel(R) Technology Access 11-02-2016 12:08:02 Windows Update 17-02-2016 11:24:13 Intel(R) Technology Access 19-02-2016 10:03:36 Intel(R) Technology Access ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (02/19/2016 10:03:53 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (02/19/2016 10:02:33 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3531 Error: (02/19/2016 10:02:33 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3531 Error: (02/19/2016 10:02:33 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/19/2016 10:02:32 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2359 Error: (02/19/2016 10:02:32 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2359 Error: (02/19/2016 10:02:32 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (02/19/2016 10:02:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1141 Error: (02/19/2016 10:02:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1141 Error: (02/19/2016 10:02:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Erreurs système: ============= Error: (02/19/2016 10:04:54 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (02/19/2016 10:02:20 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (02/19/2016 08:56:04 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (02/19/2016 08:32:52 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (02/19/2016 08:31:51 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Optimisation de livraison est en attente de démarrage. Error: (02/19/2016 08:31:07 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {784E29F4-5EBE-4279-9948-1E8FE941646D} Error: (02/19/2016 08:28:35 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service McAfee Inc. mfeapfk n’a pas pu démarrer en raison de l’erreur : %%1243 Error: (02/19/2016 08:27:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service wofigudyzbt n’a pas pu démarrer en raison de l’erreur : %%2 Error: (02/19/2016 08:27:28 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Lekreij n’a pas pu démarrer en raison de l’erreur : %%2 Error: (02/19/2016 08:24:35 AM) (Source: DCOM) (EventID: 10010) (User: JIMI-VALENTIN) Description: {D63B10C5-BB46-4990-A94F-E40B9D520160} CodeIntegrity: =================================== Date: 2016-02-19 08:57:57.999 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.925 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.852 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.779 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.706 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.632 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.558 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.485 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.411 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. Date: 2016-02-19 08:57:57.336 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\dnsapi.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Pentium(R) CPU N3530 @ 2.16GHz Pourcentage de mémoire utilisée: 53% Mémoire physique - RAM - totale: 3988.09 MB Mémoire physique - RAM - disponible: 1851.17 MB Mémoire virtuelle totale: 4692.09 MB Mémoire virtuelle disponible: 2282.84 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:677.18 GB) (Free:474.92 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:19.62 GB) (Free:1.95 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 698.6 GB) (Disk ID: 9266D13C) Partition: GPT. ==================== Fin de Addition.txt ============================