Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:18-05-2016 Exécuté par karim (2016-05-18 13:40:52) Exécuté depuis C:\Users\karim\Desktop Windows 10 Education Version 1511 (X64) (2015-12-08 04:51:57) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1195691892-1688407287-4143810104-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1195691892-1688407287-4143810104-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1195691892-1688407287-4143810104-1006 - Limited - Enabled) Invité (S-1-5-21-1195691892-1688407287-4143810104-501 - Limited - Disabled) karim (S-1-5-21-1195691892-1688407287-4143810104-1001 - Administrator - Enabled) => C:\Users\karim ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371} AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Pare-feu (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) „Windows Live Essentials“ (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden µTorrent (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\uTorrent) (Version: 3.4.6.42094 - BitTorrent Inc.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.016.20039 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.) Aspire-CCNA (HKLM-x32\...\{B91A776E-8FCB-4B51-AB0C-2E573E2C6CC8}_is1) (Version: - Cisco Systems, Inc) Assassins Creed Syndicate (HKLM-x32\...\Assassins Creed Syndicate_is1) (Version: - ) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1405.0701 - Micro-Star International Co., Ltd.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.17.1000 - Bitdefender) Bitdefender Total Security 2016 (HKLM\...\Bitdefender) (Version: 20.0.25.1378 - Bitdefender) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Boot Configure (HKLM-x32\...\{5563D674-6B02-43F4-B9D0-C2A944E84F3C}) (Version: 20.014.12127 - Micro-Star International Co., Ltd.) Boson NetSim 8.0 (HKLM-x32\...\InstallShield_{543AAEE7-DC34-4636-B266-54BD722A9A48}) (Version: 8.05 - Boson Software, LLC) Boson NetSim 8.0 (x32 Version: 8.05 - Boson Software, LLC) Hidden BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 4.0.1412.2301 - ) Cisco Networking Academy curriculum 4.0.0.0 (HKLM-x32\...\Cisco Networking Academy curriculum_is1) (Version: - Cisco Systems, Inc.) Cisco Packet Tracer 6.0.1 (HKLM-x32\...\Cisco Packet Tracer 6.0.1_is1) (Version: - Cisco Systems, Inc.) Cisco Packet Tracer 6.2 Student (HKLM-x32\...\Cisco Packet Tracer 6.2 Student_is1) (Version: - Cisco Systems, Inc.) CodeBlocks (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team) CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) DayZ (HKLM\...\Steam App 221100) (Version: - Bohemia Interactive) DiRT Rally v1.1 (HKLM\...\ZGlydHJhbGx5_is1) (Version: 1 - ) Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1410.1301 - Micro-Star International Co., Ltd.) Dragon Gaming Center (x32 Version: 1.0.1410.1301 - Micro-Star International Co., Ltd.) Hidden DriversCloud.com (64 bits) (HKLM\...\{77EEC345-B758-45DF-94C2-25D91D520650}) (Version: 8.0.4.0 - Cybelsoft) Firefox Developer Edition 47.0a2 (x64 fr) (HKLM\...\Firefox Developer Edition 47.0a2 (x64 fr)) (Version: 47.0a2 - Mozilla) Fotoattēlu galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Foto-galerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Git version 2.7.2 (HKLM\...\Git_is1) (Version: 2.7.2 - The Git Development Community) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.) Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden InputMapper (HKLM-x32\...\{1A44056A-C7D8-4561-BC43-A0AA7D7AAA64}) (Version: 1.5.31.0 - DSDCS) Intel(R) Chipset Device Software (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4331 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) (HKLM\...\{302600C1-6BDF-4FD1-1411-148929CC1385}) (Version: 17.1.1411.0506 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{a9888f41-68ae-43df-bd7d-d93405a44106}) (Version: 17.13.11 - Intel Corporation) iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.) KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.) La boite a couleurs version 1.6.14 (HKLM-x32\...\La boite a couleurs_is1) (Version: - ) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Lecture à distance PS4 (HKLM-x32\...\{7BEE81A3-3CEE-4B06-BCEA-9DABAF85AE52}) (Version: 1.0.0.15181 - Sony Interactive Entertainment Inc.) MAGIX MX Suite (HKLM-x32\...\MAGIX_{43136332-880B-458A-966C-900C18752B66}) (Version: 1.13.0.121 - MAGIX AG) MAGIX MX Suite (Version: 1.13.0.121 - MAGIX AG) Hidden Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office 365 ProPlus - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.6741.2037 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.11.2.55 (Version: 2.11.2.55 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mortal Kombat X - Patch FR 1.00 (HKLM-x32\...\Mortal Kombat X - Patch FR 1.00) (Version: 1.00 - TraductionJeux.com) Mortal Kombat X (HKLM-x32\...\TW9ydGFsS29tYmF0WA==_is1) (Version: 1 - ) Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 46.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 fr)) (Version: 46.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.1 - Mozilla) MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1412.1801 - Micro-Star International Co., Ltd.) MSI Remind Manager (x32 Version: 1.0.1412.1801 - Micro-Star International Co., Ltd.) Hidden MSI Social Media Collection (HKLM-x32\...\{7ADEC426-BE95-48EF-84D4-086BD0F4D331}) (Version: 1.14.2251 - Micro-Star International Co., Ltd.) MXGP2 (HKLM-x32\...\MXGP2_is1) (Version: - ) Nahimic APO (x32 Version: 1.0.401 - Nahimic) Hidden Nahimic for MSI (HKLM-x32\...\{d790cc66-b17a-4c88-96a8-cb6506bfdfe4}) (Version: 1.0.4 - Nahimic) Nahimic for MSI (Version: 1.0.401 - Nahimic) Hidden NahimicSettingsConfigurator (Version: 1.0.401 - Nahimic) Hidden NARUTO SHIPPUDEN Ultimate Ninja STORM 4 (HKLM-x32\...\NARUTO SHIPPUDEN Ultimate Ninja STORM 4_is1) (Version: - ) NBA 2K16 (HKLM-x32\...\NBA 2K16_is1) (Version: - ) NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote graphique 364.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.51 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (Version: 16.0.6701.1023 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (Version: 16.0.6701.1023 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (Version: 16.0.6701.1023 - Microsoft Corporation) Hidden One Piece Pirate Warriors 3 (HKLM-x32\...\One Piece Pirate Warriors 3_is1) (Version: - ) OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc) Oracle VM VirtualBox 5.0.10 (HKLM\...\{F6E922CF-068D-4AFC-8DBF-4636B84AF0A5}) (Version: 5.0.10 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 9.11.5.17432 - Electronic Arts, Inc.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) Panneau de configuration NVIDIA 364.51 (Version: 364.51 - NVIDIA Corporation) Hidden PhoneRescue 2.0.2 (HKLM-x32\...\{2FAFFE02-4D6B-4C0A-906B-1B33DAF0DD14}}_is1) (Version: 2.0.2 - iMobie Inc.) Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Project CARS (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - ) Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.48.1060 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer E220x Drivers (Version: 1.1.48.1060 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.48.1060 - Qualcomm Atheros) Qualcomm Atheros Network Manager (Version: 1.1.48.1060 - Qualcomm Atheros) Hidden Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10240.31218 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7687 - Realtek Semiconductor Corp.) SCM (HKLM\...\{9BC0C4F3-ACBB-42DF-9559-93175E3B4095}) (Version: 13.014.11068 - Application) Secure Download Manager (HKLM-x32\...\{60232A95-0B96-4BBB-9798-85A6AB6F8210}) (Version: 3.1.60 - Kivuto Solutions Inc.) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.2.55 - NVIDIA Corporation) Hidden Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 2.0.1412.1501 - Application) Sizing Options (x32 Version: 2.0.1412.1501 - Application) Hidden Skype™ 7.18 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.18.112 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries Engine 3.3.3.383 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.3.383 - SteelSeries ApS) Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.22.0 - Synaptics Incorporated) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.56083 - TeamViewer) TrackMania Nations Forever (HKLM-x32\...\Steam App 11020) (Version: - Nadeo) Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft) USBPcap 1.1.0.0-g794bf26 (HKLM\...\USBPcap) (Version: - ) Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) VMware Workstation (HKLM\...\{132E3257-14F1-411A-BC6C-0CA32D3A9BC6}) (Version: 12.0.0 - VMware, Inc.) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) WampServer 2.5 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.2.3) (Version: 4.2.3 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.4.0) (Version: 4.4.0 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.4.1) (Version: 4.4.1 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.4.2) (Version: 4.4.2 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.5.0) (Version: 4.5.0 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.6.3) (Version: 4.6.3 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.7.0) (Version: 4.7.0 - Winamax) Winamax (HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\Winamax 4.7.1) (Version: 4.7.1 - Winamax) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinHTTrack Website Copier 3.48-21 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.48.21 - HTTrack) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) WinSCP 5.7.7 (HKLM-x32\...\winscp3_is1) (Version: 5.7.7 - Martin Prikryl) Wireshark 2.0.2 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.2 - The Wireshark developer community, hxxps://www.wireshark.org) XSplit Gamecaster (HKLM-x32\...\{CD5D1B7C-E018-4F6A-92BD-6BB998CCC82D}) (Version: 1.9.1409.2316 - SplitmediaLabs) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Основи Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотоколекція (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1195691892-1688407287-4143810104-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\karim\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\FileCoAuth.exe (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {067B7D97-1C9A-4E70-9575-607F88E46DE8} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-01-16] () Task: {08807D8F-59AA-403C-B980-2135000B4EB0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-05-02] (Microsoft Corporation) Task: {0AECE9B8-DED2-45C0-9436-DCF5610CE706} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-10-02] (Synaptics Incorporated) Task: {103D3513-76F8-4123-B0F3-D29CE13FA40F} - System32\Tasks\MSI_Reminder => C:\Program Files (x86)\MSI\MSI Remind Manager\MSI Reminder.exe [2014-12-18] () Task: {1AAAD933-FA2B-473D-BA45-7B8187EB2E40} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-05-17] (Microsoft Corporation) Task: {218CBF6E-E983-42BD-9AEA-ECAF55BA88D9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-05-17] (Microsoft Corporation) Task: {21F72534-8516-446C-8147-EC9D6DD63D10} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-05-12] (Microsoft Corporation) Task: {2A5DFB01-6172-40BD-810B-3975782106DC} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-01-16] () Task: {2D610997-A74F-4C78-8647-E93DDBF7F1B3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated) Task: {3B301B19-F7D9-4658-85F8-82FCC8607940} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-01-16] () Task: {468FF0D2-EB5F-4061-A5F6-24FBB29D6A6E} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION Task: {583AEE57-F8A0-4535-B65F-0ACDD2A051EF} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-24] (TODO: <公司名稱>) Task: {67F42EBE-1B2D-472F-BFF7-A5597B2A76B8} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-15] (Adobe Systems Incorporated) Task: {78C09283-EFCB-408D-BDA5-9239F11B52F5} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-05-02] (Microsoft Corporation) Task: {7C30FD8A-555A-41D8-ACA1-F2C7E2AE595E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-01] (Google Inc.) Task: {97AC2138-5CFF-4B68-A589-89AE81AAE642} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-01] (Google Inc.) Task: {99903860-F8BD-4780-B387-24CFF073D5B0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-05-17] (Microsoft Corporation) Task: {C8553A8E-6497-4034-9EFD-2AF309B525F9} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\21.0.0.100\SymErr.exe Task: {ECEC1DAE-641D-4172-A5C2-4713D3C1C3A9} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2016-03-30] (Bitdefender) Task: {F8A17ED6-0861-486C-A985-807844EA5431} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\21.0.0.100\SymErr.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-02-10 12:55 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\bdmetrics.dll 2016-05-09 12:32 - 2016-05-09 12:32 - 01006336 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02251_005\ashttpbr.mdl 2016-05-09 12:32 - 2016-05-09 12:32 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02251_005\ashttpdsp.mdl 2016-05-09 12:32 - 2016-05-09 12:32 - 03035488 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02251_005\ashttpph.mdl 2016-05-09 12:32 - 2016-05-09 12:32 - 01541440 _____ () C:\Program Files\Bitdefender\Bitdefender 2016\otengines_02251_005\ashttprbl.mdl 2015-09-23 16:47 - 2015-09-23 16:47 - 00085800 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-12-17 19:38 - 2015-12-17 19:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-03-02 12:58 - 2016-03-30 03:21 - 00366528 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-02-10 15:48 - 2016-03-30 03:21 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-04-09 03:00 - 2016-03-30 03:21 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-03-02 12:58 - 2016-03-30 03:22 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-04-09 03:00 - 2016-03-30 03:21 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-04-09 03:00 - 2016-03-30 03:21 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-04-09 03:00 - 2016-03-30 03:22 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-02-10 15:48 - 2016-03-30 03:22 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-04-13 12:09 - 2016-05-02 05:16 - 00173248 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-12-08 06:43 - 2016-03-08 08:42 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-04-13 13:40 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-04-13 13:40 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-05-11 15:18 - 2016-04-23 05:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2015-10-01 22:10 - 2015-12-19 02:08 - 00402344 _____ () C:\WINDOWS\system32\igfxTray.exe 2015-12-18 12:13 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-05-11 15:18 - 2016-04-23 06:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-05-11 15:18 - 2016-04-23 06:25 - 00674816 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\MtcUvc.dll 2014-11-07 00:34 - 2014-11-07 00:34 - 00330240 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe 2015-01-19 01:55 - 2015-01-19 01:55 - 17835008 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe 2014-12-02 19:39 - 2014-12-02 19:39 - 00047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\x2api.dll 2014-01-22 20:44 - 2014-01-22 20:44 - 00075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll 2016-04-09 03:00 - 2016-03-30 03:20 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-04-09 03:00 - 2016-03-30 03:20 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-04-19 09:13 - 2016-04-19 09:14 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-03-31 02:25 - 2016-03-31 02:25 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2016-03-31 02:25 - 2016-03-31 02:25 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2016-03-04 12:59 - 2016-03-04 13:02 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-02-05 10:03 - 2016-02-05 10:04 - 00012288 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionApp.exe 2016-02-05 10:03 - 2016-02-05 10:04 - 05766656 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionApp.dll 2016-02-05 10:03 - 2016-02-05 10:04 - 00628736 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\CompanionAppDeviceManager.dll 2015-12-15 14:36 - 2015-12-15 14:37 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1602.3010.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-01-21 10:01 - 2016-01-21 10:01 - 03746816 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\Calculator.exe 2015-12-15 14:36 - 2015-12-15 14:37 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2016-05-11 15:18 - 2016-04-23 06:02 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-05-11 15:18 - 2016-04-23 05:58 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-05-11 15:18 - 2016-04-23 06:01 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-01-28 09:39 - 2015-12-28 14:49 - 00629536 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2014-11-10 22:12 - 2014-11-10 22:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-02-10 15:48 - 2016-03-30 03:28 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-04-19 09:13 - 2016-04-19 09:14 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2016-04-19 09:13 - 2016-04-19 09:15 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2016-05-13 10:51 - 2016-05-11 13:48 - 01738904 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libglesv2.dll 2016-05-13 10:51 - 2016-05-11 13:48 - 00086168 _____ () C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.102\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\karim\Downloads\361.75-notebook-win10-64bit-international-whql.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\adwcleaner_5.117.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\CG_5-0-14-7.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\CG_5.5.1.3.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\CiscoAspire-CCNAEdition_1.0.0.183_Setup.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\dotNetFx40_Full_setup.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\DropboxInstaller (1).exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\httrack_x64-3.48.21.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\mbam-setup-2.2.1.1043.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\microsoft-net-framework_4-6-1_fr_12834.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\NDP452-KB2901954-Web.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\NDP46-KB3045560-Web.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\NetFxRepairTool.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\putty.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\RemotePlayInstaller.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\rpc420_setup.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\Setup.X64.fr-fr_O365ProPlusRetail_1a7e8703-8e12-48a0-bd49-0a093f2d44d7_TX_PR_b_48_.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\Setup.X86.fr-FR_O365ProPlusRetail_1a7e8703-8e12-48a0-bd49-0a093f2d44d7_TX_PR_b_48_ (1).exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\Setup.X86.fr-FR_O365ProPlusRetail_1a7e8703-8e12-48a0-bd49-0a093f2d44d7_TX_PR_b_48_.exe:BDU [0] AlternateDataStreams: C:\Users\karim\Downloads\WG111v3_v2.0.0_Setup.zip:BDU [1] AlternateDataStreams: C:\Users\karim\Downloads\winscp577setup.exe:BDU [0] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\sharepoint.com -> hxxps://auvencecom-files.sharepoint.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2016-05-18 13:31 - 00000853 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\karim\Pictures\12628595_1006243186088166_4317331297312798876_o.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "vmware-tray.exe" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "Lync" HKU\S-1-5-21-1195691892-1688407287-4143810104-1001\...\StartupApproved\Run: => "CyberGhost" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [UDP Query User{020FB59E-130A-42C8-BCB4-19E9B673C9EB}C:\program files\oracle\virtualbox\virtualbox.exe] => (Allow) C:\program files\oracle\virtualbox\virtualbox.exe FirewallRules: [TCP Query User{0D884B18-1AE5-4BC1-BFCB-ABC0E470FF14}C:\program files\oracle\virtualbox\virtualbox.exe] => (Allow) C:\program files\oracle\virtualbox\virtualbox.exe FirewallRules: [UDP Query User{B8BE49D9-80B0-4DF7-8C24-14BD16370927}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [TCP Query User{275FF60E-6D28-43E3-A021-27DB9C93415A}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [{B45C536B-F672-4CF9-A7E4-C68BAC9EE4D5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AE5747FF-FEEC-4DD3-8C08-C0CB7C46EC1E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{F50BC9B5-6CB3-4FFE-B466-A3323FC1DBB2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8240232E-D3E9-4C5D-A28A-E5657688B6EB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [UDP Query User{D0538691-BB8A-4580-BDED-FEDD89C70FB6}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{B4864582-D6B7-4E66-831B-EFABA56CC43E}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [{78E117EE-F9F5-4268-B0D7-3B9DC413A51A}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{08600AE7-321C-4F86-9F53-2BF77D20D94A}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{528CF4D8-C4C6-425D-B9BF-5116A0C6E8E0}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BE23F67B-BB71-48D8-8FEE-16691BE6397F}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3E51731C-8263-4166-AB4D-806A0CFF7FD5}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D583E2E7-8F2D-47EE-AC45-6A550BB60313}] => (Allow) C:\Users\karim\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{07C0CF3B-D4D3-4898-BF74-A2D1B085E5BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe FirewallRules: [{437B64BB-B12E-4568-A9C5-D6DB3C9CF0D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForeverLauncher.exe FirewallRules: [{C4955E4B-F980-4555-B9A6-5C263C7A751B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe FirewallRules: [{82FCC9EF-B6C5-4663-BA53-657F11F8ADEC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TrackMania Nations Forever\TmForever.exe FirewallRules: [{41F60222-00CC-4313-BD68-7DE0BC963054}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{9C747669-A436-405E-AE26-E910CBE2D9DB}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{BCECB1D7-ED82-498C-9D04-6992FB15A794}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{6BF674B0-F959-4AB9-A0B6-D87D2CED2134}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{108F4D4B-2232-4AB5-92EF-05573A0BA157}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{613944EC-CF47-426F-978E-529449BF092D}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe FirewallRules: [{117A99B6-8222-4F20-A636-D52A07BED3F3}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe FirewallRules: [{C642237C-E425-4672-9E86-31EF4C09BEC2}] => (Block) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{4DF6D16E-F8B7-40E6-B329-2C4559FA51B3}] => (Block) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [UDP Query User{1ECDA390-2854-4BB2-904F-9E72AFC2809A}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [TCP Query User{BD49C1CA-56C9-4F5A-A837-07F10C1F900F}C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.4.9\bin\httpd.exe FirewallRules: [{D3705640-9BE2-452E-9709-B84FF4039FCC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{47FA0291-5F8E-4E3C-B8C3-FFA3EA150C3E}] => (Allow) LPort=2869 FirewallRules: [{D5E09FDF-A598-42C9-9FB5-C9A1118C0DFD}] => (Allow) LPort=1900 FirewallRules: [{C7A0849C-94E5-4A2E-8D71-4E1EE297D7C2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{E4E7FAB6-0C39-42FA-B1ED-1644603700B4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{99D7B192-CD9F-4E07-8C30-22AD539F297F}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{10575E9A-7E4E-4C8B-869A-2F9652777BE4}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{79460183-8D77-4562-899F-B649EE323A43}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe FirewallRules: [{A79A180F-8D6E-409E-974C-412D50421E7B}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{62D22A28-074D-4E45-9C65-C984320F228D}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe FirewallRules: [{DCBF2200-8C06-4525-95FB-EE0ABB512272}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{327986B5-34B6-4BEC-998C-E47012A6433B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{594A4801-AFB5-444F-837B-E1340C205900}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{AF7A0274-42B1-48F3-ADF2-41822771354A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{940B4637-4091-454C-9266-39B5E1A33B10}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7A417B4A-9F20-4B97-8805-B884E36486F6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{765CBD37-63AC-46D7-8D00-E84D7D1B3DA2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{6BA66FB2-1D32-48F6-8E3D-1A9D26CEE032}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{900327C8-D41E-4F5D-87B0-1E28D9E5E5C4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{0FF71EAB-1E6C-415D-9EAF-02BEDB21BCBA}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{F8E107BA-DD73-4661-81AD-E03A309E9F80}] => (Allow) D:\SteamLibrary\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{90B84268-F1D9-42FE-AA15-CE4E0DDB0DA7}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{D3E425EB-E6DD-4280-AE26-588487A70124}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{2CCB0193-EE04-4CC5-BD74-A1BBA23DC43D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{D6253669-C124-456A-B980-5C17D018DF33}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{DDD15E7D-4390-439D-8FEE-9E80D54D43E8}C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe FirewallRules: [UDP Query User{E3455670-36C0-4ACC-A726-AC4C92AD1D6C}C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.2sv\bin\packettracer6.exe FirewallRules: [{C2857F94-2593-4225-8DA5-B09868D0B209}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{B22E2C69-56CD-455C-8148-A653FD7B995C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe FirewallRules: [{65E03E1C-FB65-41BB-A38D-DE1F55FF6A64}] => (Allow) C:\Program Files (x86)\Sony\PS4 Remote Play\RemotePlay.exe FirewallRules: [{C45DDFAE-8D71-4578-B3D3-0DC226563053}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{BA08F28E-7CA6-4B83-A449-1EC46A1623F1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{AAF27F91-5D21-427F-94AF-BF879E6B5020}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{E5981A99-EF3F-4768-B8E0-581FEF1CA0A5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{6EABCEC1-B447-486F-96C7-B9E3CA5AC223}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{C855AA33-0EE7-4247-B233-FA9BBDF1AD30}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 16-05-2016 01:03:19 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: VirtualBox Host-Only Ethernet Adapter Description: VirtualBox Host-Only Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Oracle Corporation Service: VBoxNetAdp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Intel(R) Wireless Bluetooth(R) Description: Intel(R) Wireless Bluetooth(R) Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Intel Corporation Service: BTHUSB Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/18/2016 10:41:08 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418220 Error: (05/17/2016 10:58:22 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=43, ID d’auteur=9, ID de fournisseur=0, Type de fournisseur=0 Error: (05/17/2016 10:58:22 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=25, ID d’auteur=9, ID de fournisseur=0, Type de fournisseur=0 Error: (05/17/2016 10:58:22 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=17, ID d’auteur=9, ID de fournisseur=0, Type de fournisseur=0 Error: (05/17/2016 10:57:59 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe, version : 10.0.10586.0, horodatage : 0x5632d7ba Nom du module défaillant : ESENT.dll, version : 10.0.10586.212, horodatage : 0x56fa1686 Code d’exception : 0xc0000602 Décalage d’erreur : 0x000000000022885f ID du processus défaillant : 0x994 Heure de début de l’application défaillante : 0xsvchost.exe0 Chemin d’accès de l’application défaillante : svchost.exe1 Chemin d’accès du module défaillant: svchost.exe2 ID de rapport : svchost.exe3 Nom complet du package défaillant : svchost.exe4 ID de l’application relative au package défaillant : svchost.exe5 Error: (05/17/2016 10:57:59 PM) (Source: ESENT) (EventID: 908) (User: ) Description: svchost (2452) Interruption du processus en raison d’une erreur irrécupérable : PV: 10.0.10586.0 SV: 10.0.10586.0 GLE: 0 ERR: -1603(fucb.cxx:359): dllentry.cxx(103) (ESENT[10.0.10586.0] RETAIL RTM MBCS) Error: (05/17/2016 12:35:03 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (05/17/2016 10:50:52 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418220 Error: (05/16/2016 11:22:27 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Subscription licensing service failed: -1073418220 Error: (05/16/2016 01:03:27 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Erreurs système: ============= Error: (05/18/2016 01:40:39 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} Error: (05/18/2016 01:36:47 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Users\karim\AppData\Local\Temp\catchme.sys Error: (05/18/2016 01:36:45 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} Error: (05/18/2016 12:19:12 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {E844CD23-864D-4921-B18B-ED60A150E112} Error: (05/18/2016 12:12:02 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {E844CD23-864D-4921-B18B-ED60A150E112} Error: (05/18/2016 12:11:32 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {E844CD23-864D-4921-B18B-ED60A150E112} Error: (05/18/2016 12:04:23 PM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} Error: (05/18/2016 11:31:17 AM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {E844CD23-864D-4921-B18B-ED60A150E112} Error: (05/18/2016 11:30:47 AM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {E844CD23-864D-4921-B18B-ED60A150E112} Error: (05/18/2016 11:18:19 AM) (Source: DCOM) (EventID: 10010) (User: IPMAN46) Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C} CodeIntegrity: =================================== Date: 2016-05-18 13:36:47.957 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\karim\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2016-05-17 23:00:40.808 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-16 14:02:08.667 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-16 11:15:55.348 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-13 10:36:48.540 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-12 14:50:28.658 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-07 00:32:56.225 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-05-01 20:10:35.173 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-14 13:42:54.513 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-13 22:09:48.395 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz Pourcentage de mémoire utilisée: 44% Mémoire physique - RAM - totale: 8114.2 MB Mémoire physique - RAM - disponible: 4502.24 MB Mémoire virtuelle totale: 9394.2 MB Mémoire virtuelle disponible: 5680.43 MB ==================== Lecteurs ================================ Drive c: (OS_Install) (Fixed) (Total:117.46 GB) (Free:20.22 GB) NTFS Drive d: (Data) (Fixed) (Total:911.15 GB) (Free:98.9 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 14387692) Partition: GPT. ======================================================== Disk: 1 (Size: 119.2 GB) (Disk ID: 143876AC) Partition: GPT. ==================== Fin de Addition.txt ============================